diff options
| author |   Anthony G. Basile <blueness@gentoo.org> | 2012-04-30 07:25:21 -0400 |
|---|---|---|
| committer | Anthony G. Basile <blueness@gentoo.org> | 2012-04-30 07:25:21 -0400 |
| commit | 79d0eae0e9c3957e56af094c45383af07967f635 (patch) | |
| tree | c86a98185e7a69934e8bb285794c52393f820fbf | |
| parent | fixed CONFIG_PAX_MEMORY_STACKLEAK issue in xenserver guests, needed to (diff) | |
| download | hardened-patchset-prometheanfire.tar.gz hardened-patchset-prometheanfire.tar.bz2 hardened-patchset-prometheanfire.zip | |
4455_grsec-kconfig-gentoo.patch: fixed CONFIG_PAX_MEMORY_STACKLEAK issue in xenserver guestsprometheanfire
| -rw-r--r-- | 2.6.32/4455_grsec-kconfig-gentoo.patch | 20 | ||||
| -rw-r--r-- | 3.2.16/4455_grsec-kconfig-gentoo.patch | 20 |
2 files changed, 20 insertions, 20 deletions
diff --git a/2.6.32/4455_grsec-kconfig-gentoo.patch b/2.6.32/4455_grsec-kconfig-gentoo.patch index e578aa6..e18ba0b 100644 --- a/2.6.32/4455_grsec-kconfig-gentoo.patch +++ b/2.6.32/4455_grsec-kconfig-gentoo.patch @@ -77,7 +77,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select GRKERNSEC_SYSCTL_ON + select PAX + select PAX_ASLR -+ select PAX_RANDKSTACK ++ select PAX_RANDKSTACK if (X86_TSC && X86) + select PAX_RANDUSTACK + select PAX_RANDMMAP + select PAX_NOEXEC @@ -85,8 +85,8 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_EI_PAX + select PAX_PT_PAX_FLAGS + select PAX_HAVE_ACL_FLAGS -+ select PAX_KERNEXEC -+ select PAX_MEMORY_UDEREF ++ select PAX_KERNEXEC if ((PPC || X86) && (!X86_32 || X86_WP_WORKS_OK) && !XEN) ++ select PAX_MEMORY_UDEREF if (X86 && !XEN) + select PAX_SEGMEXEC if (X86_32) + select PAX_PAGEEXEC + select PAX_EMUPLT if (ALPHA || PARISC || SPARC) @@ -95,7 +95,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_REFCOUNT if (X86 || SPARC64) + select PAX_USERCOPY if ((X86 || PPC || SPARC || ARM) && (SLAB || SLUB || SLOB)) + select PAX_MEMORY_SANITIZE -+ select PAX_MEMORY_STACKLEAK ++ select PAX_MEMORY_STACKLEAK if (!XEN) + help + If you say Y here, a configuration for grsecurity/PaX features + will be used that is endorsed by the Hardened Gentoo project. @@ -162,7 +162,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select GRKERNSEC_SYSCTL_ON + select PAX + select PAX_ASLR -+ select PAX_RANDKSTACK ++ select PAX_RANDKSTACK if (X86_TSC && X86) + select PAX_RANDUSTACK + select PAX_RANDMMAP + select PAX_NOEXEC @@ -170,8 +170,8 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_EI_PAX + select PAX_PT_PAX_FLAGS + select PAX_HAVE_ACL_FLAGS -+ select PAX_KERNEXEC -+ select PAX_MEMORY_UDEREF ++ select PAX_KERNEXEC if ((PPC || X86) && (!X86_32 || X86_WP_WORKS_OK) && !XEN) ++ select PAX_MEMORY_UDEREF if (X86 && !XEN) + select PAX_SEGMEXEC if (X86_32) + select PAX_PAGEEXEC + select PAX_EMUPLT if (ALPHA || PARISC || SPARC) @@ -180,7 +180,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_REFCOUNT if (X86 || SPARC64) + select PAX_USERCOPY if ((X86 || PPC || SPARC || ARM) && (SLAB || SLUB || SLOB)) + select PAX_MEMORY_SANITIZE -+ select PAX_MEMORY_STACKLEAK ++ select PAX_MEMORY_STACKLEAK if (!XEN) + help + If you say Y here, a configuration for grsecurity/PaX features + will be used that is endorsed by the Hardened Gentoo project. @@ -247,7 +247,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select GRKERNSEC_SYSCTL_ON + select PAX + select PAX_ASLR -+ select PAX_RANDKSTACK ++ select PAX_RANDKSTACK if (X86_TSC && X86) + select PAX_RANDUSTACK + select PAX_RANDMMAP + select PAX_NOEXEC @@ -263,7 +263,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_REFCOUNT if (X86 || SPARC64) + select PAX_USERCOPY if ((X86 || PPC || SPARC || ARM) && (SLAB || SLUB || SLOB)) + select PAX_MEMORY_SANITIZE -+ select PAX_MEMORY_STACKLEAK ++ select PAX_MEMORY_STACKLEAK if (!XEN) + help + If you say Y here, a configuration for grsecurity/PaX features + will be used that is endorsed by the Hardened Gentoo project. diff --git a/3.2.16/4455_grsec-kconfig-gentoo.patch b/3.2.16/4455_grsec-kconfig-gentoo.patch index 2527bad..87b5454 100644 --- a/3.2.16/4455_grsec-kconfig-gentoo.patch +++ b/3.2.16/4455_grsec-kconfig-gentoo.patch @@ -77,7 +77,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select GRKERNSEC_SYSCTL_ON + select PAX + select PAX_ASLR -+ select PAX_RANDKSTACK ++ select PAX_RANDKSTACK if (X86_TSC && X86) + select PAX_RANDUSTACK + select PAX_RANDMMAP + select PAX_NOEXEC @@ -85,8 +85,8 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_EI_PAX + select PAX_PT_PAX_FLAGS + select PAX_HAVE_ACL_FLAGS -+ select PAX_KERNEXEC -+ select PAX_MEMORY_UDEREF ++ select PAX_KERNEXEC if ((PPC || X86) && (!X86_32 || X86_WP_WORKS_OK) && !XEN) ++ select PAX_MEMORY_UDEREF if (X86 && !XEN) + select PAX_SEGMEXEC if (X86_32) + select PAX_PAGEEXEC + select PAX_EMUPLT if (ALPHA || PARISC || SPARC) @@ -95,7 +95,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_REFCOUNT if (X86 || SPARC64) + select PAX_USERCOPY if ((X86 || PPC || SPARC || ARM) && (SLAB || SLUB || SLOB)) + select PAX_MEMORY_SANITIZE -+ select PAX_MEMORY_STACKLEAK ++ select PAX_MEMORY_STACKLEAK if (!XEN) + help + If you say Y here, a configuration for grsecurity/PaX features + will be used that is endorsed by the Hardened Gentoo project. @@ -162,7 +162,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select GRKERNSEC_SYSCTL_ON + select PAX + select PAX_ASLR -+ select PAX_RANDKSTACK ++ select PAX_RANDKSTACK if (X86_TSC && X86) + select PAX_RANDUSTACK + select PAX_RANDMMAP + select PAX_NOEXEC @@ -170,8 +170,8 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_EI_PAX + select PAX_PT_PAX_FLAGS + select PAX_HAVE_ACL_FLAGS -+ select PAX_KERNEXEC -+ select PAX_MEMORY_UDEREF ++ select PAX_KERNEXEC if ((PPC || X86) && (!X86_32 || X86_WP_WORKS_OK) && !XEN) ++ select PAX_MEMORY_UDEREF if (X86 && !XEN) + select PAX_SEGMEXEC if (X86_32) + select PAX_PAGEEXEC + select PAX_EMUPLT if (ALPHA || PARISC || SPARC) @@ -180,7 +180,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_REFCOUNT if (X86 || SPARC64) + select PAX_USERCOPY if ((X86 || PPC || SPARC || ARM) && (SLAB || SLUB || SLOB)) + select PAX_MEMORY_SANITIZE -+ select PAX_MEMORY_STACKLEAK ++ select PAX_MEMORY_STACKLEAK if (!XEN) + help + If you say Y here, a configuration for grsecurity/PaX features + will be used that is endorsed by the Hardened Gentoo project. @@ -247,7 +247,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select GRKERNSEC_SYSCTL_ON + select PAX + select PAX_ASLR -+ select PAX_RANDKSTACK ++ select PAX_RANDKSTACK if (X86_TSC && X86) + select PAX_RANDUSTACK + select PAX_RANDMMAP + select PAX_NOEXEC @@ -263,7 +263,7 @@ diff -Naur a/grsecurity/Kconfig b/grsecurity/Kconfig + select PAX_REFCOUNT if (X86 || SPARC64) + select PAX_USERCOPY if ((X86 || PPC || SPARC || ARM) && (SLAB || SLUB || SLOB)) + select PAX_MEMORY_SANITIZE -+ select PAX_MEMORY_STACKLEAK ++ select PAX_MEMORY_STACKLEAK if (!XEN) + help + If you say Y here, a configuration for grsecurity/PaX features + will be used that is endorsed by the Hardened Gentoo project. |