[pull request] [natty] nx-emulation and associated ASLR
Kees Cook
kees.cook at canonical.com
Mon Nov 8 18:07:13 UTC 2010
Hi Tim,
On Mon, Nov 08, 2010 at 07:30:18AM -0500, Tim Gardner wrote:
> On 11/05/2010 06:38 PM, Kees Cook wrote:
> >git://kernel.ubuntu.com/kees/ubuntu-natty.git master
>
> Kees - I think the patch set looks OK, but I'm curious about the
> change in provenance. The first patch in in the series appears to
> originate from a completely different author as compared to the same
> patch in Maverick.
>
> Maverick: UBUNTU: SAUCE: x86: implement cs-limit nx-emulation for ia32
> Natty: i386: NX emulation
>
> Can you provide a brief explanation of your thinking as to why the
> patch sources seem to have changed?
Yes, I asked the Fedora kernel team to publish a central git repository
for the nx-emulation code since both they and us are slowly making
changes to it. This was done:
git://git.kernel.org/pub/scm/linux/kernel/git/frob/linux-2.6-roland.git
fedora/32bit-mmap-exec-randomization [1]
fedora/x86-nx-emulation [2]
But they don't seem to be taking my pull requests[3], even though they've
committed them to Fedora's kernel[4]. I'm trying to get Debian to use the
common tree too, so I'm hoping Roland is just on vacation or something. In
the meantime, I published my tree with the missing pieces for the basis of
the Ubuntu pull request.
-Kees
[1] http://git.kernel.org/?p=linux/kernel/git/frob/linux-2.6-roland.git;a=shortlog;h=refs/heads/fedora/32bit-mmap-exec-randomization
[2] http://git.kernel.org/?p=linux/kernel/git/frob/linux-2.6-roland.git;a=shortlog;h=refs/heads/fedora/x86-nx-emulation
[3] http://lists.fedoraproject.org/pipermail/kernel/2010-November/002809.html
http://lists.fedoraproject.org/pipermail/kernel/2010-November/002810.html
[4] http://lists.fedoraproject.org/pipermail/kernel/2010-October/002805.html
--
Kees Cook
Ubuntu Security Team
More information about the kernel-team
mailing list