[Bug 8551] IBM Stack Smashing Protector (a.k.a ProPolice) kernel-level helpers

bugzilla-daemon at bugzilla.ubuntu.com bugzilla-daemon at bugzilla.ubuntu.com
Wed Apr 13 17:37:27 UTC 2005 

Please do not reply to this email.  You can add comments at
http://bugzilla.ubuntu.com/show_bug.cgi?id=8551
Ubuntu | linux





------- Additional Comments From fabbione at ubuntu.com  2005-04-13 18:37 UTC -------
(In reply to comment #4)
> (In reply to comment #3)
> > Why isn't this patch upstream? has it ever been proposed for inclusion?
> > If so please provide a reference to the thread on LKML.
> 
> No, and it won't be proposed.
> It will be send to IBM people working on SSP though, just for mention, but
> anyways, It's distro-specific stuff and I wrote it with Ubuntu in mind (even if
> it will be very helpful after I get time to work out some things around it).
> 
> > While the patch looks clean, it can easily clash with further kernel development
> > since the syscalls are numbered in sequence, that would require extra
maintainance
> > for us.
> 
> Right, I will take care of that and even try to propose (I said the opposite a
> few lines above, but nothing to loss if I propose it, it's just that they will
> reply with the usual statement).
> Also, it won't be really a problem, 2.6 will get more "stable" (in development
> terms) in a near future ;D

I would prefer that at least 2 syscalls will be officially assigned to it.
While i do believe that you can take care of this patch, there will be situations
in which we might need to work it out by ourself.

> 
> > Also the fact that patch is not portable makes it use very limited and specific.
> > 
> > What are the plans for porting it?
> 
> Right, I have plans for porting it ASAP and as soon as I get (access to) a
> sparc{,64} machine or any other one to start testing.
> I have very limited infrastructure here, so, by now I just own i386 (or I just
> only have access to i386).

Ok please start the porting process as soon as you can. Since the patch is not
that intrusive, we can easily include it at a later stage.

Fabio



-- 
Configure bugmail: http://bugzilla.ubuntu.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug, or are watching the QA contact.

More information about the kernel-bugs mailing list