916564 – sys-kernel/gentoo-kernel: adapt to new upstream hardening fragments for 6.7

Bug 916564 - sys-kernel/gentoo-kernel: adapt to new upstream hardening fragments for 6.7

Summary: sys-kernel/gentoo-kernel: adapt to new upstream hardening fragments for 6.7

Status:	CONFIRMED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Distribution Kernel Project

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2023-10-31 05:53 UTC by Sam James
Modified:	2024-01-19 17:13 UTC (History)
CC List:	2 users (show)

See Also:	https://github.com/KSPP/linux/issues/14
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sam James archtester

2023-10-31 05:53:33 UTC

This is a heads up for 6.7 so nothing to do just yet.

There are now hardened config fragments in the upstream sources (see https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=befaa609f4c784f505c02ea3ff036adf4f4aa814).

This was first mentioned at https://lore.kernel.org/linux-hardening/20230825050618.never.197-kees@kernel.org/.

(CCing kernel@ as there might be something to do for the hardening options there, not sure yet)