Ok, here's an updated patchset. Tarball can be found at http://molly.corsac.net/~corsac/debian/kernel-grsec/grsec-patches.tar.xz (and already extracted in grsec-patches/ folder). It's a folder with a quilt patche series * 01_support-linux-3.0.patch This is unrelated but needed to support linux3 naming scheme in genorig.py. * 02_force-hostcc-version.patch This one is needed because grsecurity ships two gcc (>= 4.5) plugins. Those need to be built with the same compiler version as the rest of the kernel, but right now they're built with HOSTCC which is not set right now, so defaults to 'gcc' which is gcc-4.6 at that time. So export HOSTCC to the (non CROSS_COMPILE) version. 03_enable-strict-user-copy-check.patch This one in not directly involved with grsecurity. Could be enabled by itself (#639919) 04_add-linux-grsec-base-templates.patch This one adds basic templates for a linux-grsec-base binary packages to be built by linux-2.6 but I still didn't figured out how to patch genorig.py to make it do it. 05_add-grsec-featureset.patch This is the main part, adding the featureset and config. 06_grsecurity.patch The main grsecurity patch, not really readable since the quilt patch adds a patch :) It's basically the genuine grsecurity patch (right now grsecurity-2.2.2-3.0.4-201108301903.patch) with two little change: * removing the -grsec localversion * oneliner to make it apply against debian sources Regards, -- Yves-Alexis Perez ANSSI/ACE/LAM
Attachment:
signature.asc
Description: This is a digitally signed message part