Re: thoughts on kernel security issues

From: Arjan van de Ven
Date: Wed Jan 19 2005 - 14:56:50 EST

Next message: Bill Davidsen: "Re: thoughts on kernel security issues"
Previous message: Arjan van de Ven: "Re: thoughts on kernel security issues"
In reply to: Valdis . Kletnieks: "Re: thoughts on kernel security issues"
Next in thread: Valdis . Kletnieks: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> 700K. In one patch. If PAX is available for 2.6.10 by itself, it certainly
> hasn't been posted to http://pax.grsecurity.net - that's still showing a 2.6.7
> patch. But even there, that's a single monolithic 280K patch. That's never
> going to get merged, simply because *nobody* can review a single patch that big.
>
> Now look at http://www.kernel.org/pub/linux/kernel/people/arjan/execshield/.
> 4 separate hunks, the biggest is under 7K. Other chunks of similar size
> for non-exec stack and NX support are already merged.
>
> And why were they merged? Because they showed up in 4-8K chunks.
>
note to readers: I'm still not happy about the split up and want to
split this up even further in smaller pieces; the split up there is only
a first order split.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Bill Davidsen: "Re: thoughts on kernel security issues"
Previous message: Arjan van de Ven: "Re: thoughts on kernel security issues"
In reply to: Valdis . Kletnieks: "Re: thoughts on kernel security issues"
Next in thread: Valdis . Kletnieks: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]