diff options
| author | V3n3RiX <venerix@redcorelinux.org> | 2017-10-09 18:53:29 +0100 |
|---|---|---|
| committer | V3n3RiX <venerix@redcorelinux.org> | 2017-10-09 18:53:29 +0100 |
| commit | 4f2d7949f03e1c198bc888f2d05f421d35c57e21 (patch) | |
| tree | ba5f07bf3f9d22d82e54a462313f5d244036c768 /metadata/news/2015-10-21-future-support-of-hardened-sources-kernel | |
reinit the tree, so we can have metadata
Diffstat (limited to 'metadata/news/2015-10-21-future-support-of-hardened-sources-kernel')
2 files changed, 79 insertions, 0 deletions
diff --git a/metadata/news/2015-10-21-future-support-of-hardened-sources-kernel/2015-10-21-future-support-of-hardened-sources-kernel.en.txt b/metadata/news/2015-10-21-future-support-of-hardened-sources-kernel/2015-10-21-future-support-of-hardened-sources-kernel.en.txt new file mode 100644 index 000000000000..3d5c76cba3d4 --- /dev/null +++ b/metadata/news/2015-10-21-future-support-of-hardened-sources-kernel/2015-10-21-future-support-of-hardened-sources-kernel.en.txt @@ -0,0 +1,62 @@ +Title: Future Support of hardened-sources Kernel +Author: Anthony G. Basile <blueness@gentoo.org> +Content-Type: text/plain +Posted: 2015-10-21 +Revision: 3 +News-Item-Format: 1.0 +Display-If-Installed: sys-kernel/hardened-sources +Display-If-Profile: hardened/linux/amd64 +Display-If-Profile: hardened/linux/amd64/no-multilib +Display-If-Profile: hardened/linux/amd64/no-multilib/selinux +Display-If-Profile: hardened/linux/amd64/selinux +Display-If-Profile: hardened/linux/amd64/x32 +Display-If-Profile: hardened/linux/arm/armv6j +Display-If-Profile: hardened/linux/arm/armv7a +Display-If-Profile: hardened/linux/ia64 +Display-If-Profile: hardened/linux/musl/amd64 +Display-If-Profile: hardened/linux/musl/amd64/x32 +Display-If-Profile: hardened/linux/musl/arm/armv7a +Display-If-Profile: hardened/linux/musl/mips +Display-If-Profile: hardened/linux/musl/mips/mipsel +Display-If-Profile: hardened/linux/musl/ppc +Display-If-Profile: hardened/linux/musl/x86 +Display-If-Profile: hardened/linux/powerpc/ppc32 +Display-If-Profile: hardened/linux/powerpc/ppc64/32bit-userland +Display-If-Profile: hardened/linux/powerpc/ppc64/64bit-userland +Display-If-Profile: hardened/linux/uclibc/amd64 +Display-If-Profile: hardened/linux/uclibc/arm/armv7a +Display-If-Profile: hardened/linux/uclibc/mips +Display-If-Profile: hardened/linux/uclibc/mips/mipsel +Display-If-Profile: hardened/linux/uclibc/ppc +Display-If-Profile: hardened/linux/uclibc/x86 +Display-If-Profile: hardened/linux/x86 +Display-If-Profile: hardened/linux/x86/selinux + +For many years, the Grsecurity team [1] has been supporting two versions of +their security patches against the Linux kernel, a stable and a testing +version, and Gentoo has made both of these available to our users through the +hardened-sources package. However, on August 26 of this year, the team +announced they would no longer be making the stable version publicly +available, citing trademark infringement by a major embedded systems company +as the reason. [2] The stable patches are now only available to sponsors of +Grsecurity and can no longer be distributed in Gentoo. However, the team did +assure us that they would continue to release and support the testing version +as they have in the past. + +What does this means for users of hardened-sources? Gentoo will continue to +make the testing version available through our hardened-sources package but we +will have to drop support for the 3.x series. In a few days, those ebuilds +will be removed from the tree and you will be required to upgrade to a 4.x +series kernel. Since the hardened-sources package only installs the kernel +source tree, you can continue using a currently built 3.x series kernel but +bear in mind that we cannot support you, nor will upstream. Also keep in mind +that the 4.x series will not be as reliable as the 3.x series was, so +reporting bugs promptly will be even more important. Gentoo will continue to +work closely with upstream to stay on top of any problems, but be prepared for +the occasional "bad" kernel. The more reporting we receive from our users, +the better we will be able to decide which hardened-sources kernels to mark +stable and which to drop. + +Refs. +[1] https://grsecurity.net +[2] https://grsecurity.net/announce.php diff --git a/metadata/news/2015-10-21-future-support-of-hardened-sources-kernel/2015-10-21-future-support-of-hardened-sources-kernel.en.txt.asc b/metadata/news/2015-10-21-future-support-of-hardened-sources-kernel/2015-10-21-future-support-of-hardened-sources-kernel.en.txt.asc new file mode 100644 index 000000000000..31e9f2489610 --- /dev/null +++ b/metadata/news/2015-10-21-future-support-of-hardened-sources-kernel/2015-10-21-future-support-of-hardened-sources-kernel.en.txt.asc @@ -0,0 +1,17 @@ +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v2 + +iQIcBAABCAAGBQJWLOeNAAoJEGYZIgZZJvHWlRwP/28YwYuwqSrJ8eOKl+PFITKI +0wlMT/zSSvLU5vOV/ukfS1mILWHIYMr6hNwKu4gqA9YLKUgmhCL1R5HsujFQo1/3 +4n9tSnBsNvdLTJEB15fe5htavwnLaxMBqVGCGALRl1INlYFBbmQjm2W5nX8Jw1Uv +WwayBk+9tfhvCw/gvfo904MNaS7Xhj3XiE8YIwpom6mjrjJV6hRX0OpcL/dByRfh +MN/03EdYzPl+sUd7LD3zMsmLCKSiOw+OoWg8zF/2Qr0oEuTrJIwtbxPCMQrMwh7p +NhDZwot2yQhlLqLN5jHtaxWo2HL+jnljWcbvuUlx5K9S4swhcYfVze4PdKszf5E0 +Nc/YCzewL+26f5F2xkD60B8lx5EXSL3ysdzm7zgqhn2rkSVy0AMNg+GduR81T+j1 +VmzFKDGWsthgH0xd552zs22dA3tAFya575pNFi5JlMUpu0Qha6zC9UDZ5RVcJmBJ +EBJVeAJLLkDpuPC3IMcVNr1UCG2TK5W3GimdY9nzjgZL2fvcXLmEYVHjVm/scDOy +8zJ8Nw/LWshT/jXgZfelFrgyL0+gm8NB4mVWTGZWAlBhzAoolIv+KbhVgyLQ1Pjh +7AQfyrr0KTpgW24kd9dnzCD2QnAM07AHNRmG/XMbtls8g+zVGl7zFQvWXGDPdrUC +2YBiOa9vmqOjbTJWeV7r +=R4yN +-----END PGP SIGNATURE----- |