Can you pls update 4420_grsecurity-2.2.0-2.6.32.15-201006192153 to: grsecurity-2.2.0-2.6.32.15-201006271253.patch in hardened-patches and release them as hardened-patches-2.6.32-14.extras.tar.bz2 and add ebuild of hardened-sources-2.6.32-r11 to use hardened-patches version 14? Thx
Patch tested on x86. No issues.
interdiff -wbB /etc/portage/patches/sys-kernel/cilly-sources-2.6.32.15-r3/4420_grsecurity-2.2.0-2.6.32.15-201006261422.patch /etc/portage/patches/sys-kernel/cilly-sources-2.6.32.15-r4/4420_grsecurity-2.2.0-2.6.32.15-201006271253.patch diff -wbBu linux-2.6.32.15/grsecurity/grsec_init.c linux-2.6.32.15/grsecurity/grsec_init.c --- linux-2.6.32.15/grsecurity/grsec_init.c 2010-06-19 21:41:53.854052763 -0400 +++ linux-2.6.32.15/grsecurity/grsec_init.c 2010-06-27 12:52:54.615758098 -0400 @@ -6,6 +6,7 @@ #include <linux/slab.h> #include <linux/vmalloc.h> #include <linux/percpu.h> +#include <linux/module.h> int grsec_enable_link; int grsec_enable_dmesg; @@ -40,6 +41,9 @@ int grsec_enable_tpe; int grsec_tpe_gid; int grsec_enable_blackhole; +#ifdef CONFIG_IPV6_MODULE +EXPORT_SYMBOL(grsec_enable_blackhole); +#endif int grsec_lastack_retries; int grsec_enable_tpe_all; int grsec_enable_socket_all;
This patch has already been outdated by grsecurity-2.2.0-2.6.32.15-201007030913.patch. Upstream is moving very fast and intentionally does not keep around older patches. I am talking with upstream and I'll try to get ebuilds out for the more important releases, but an rev bump for every release is unreasonable.