Re: Maintaining kernel source in sarge

To: debian-devel@lists.debian.org
Subject: Re: Maintaining kernel source in sarge
From: Christoph Hellwig <hch@lst.de>
Date: Sat, 24 May 2003 20:42:39 +0200
Message-id: <[🔎] 20030524184239.GA5966@lst.de>
In-reply-to: <[🔎] 20030524183417.GT25254@alcor.net>
References: <[🔎] 20030523070405.GF18785@finlandia.infodrom.north.de> <[🔎] E19JAb6-0000gp-00@gondolin.me.apana.org.au> <[🔎] 20030524183417.GT25254@alcor.net>

On Sat, May 24, 2003 at 02:34:17PM -0400, Matt Zimmerman wrote:
> What benefit is there in not announcing these problems?  Security through
> obscurity?  How can we inform our users of their exposure when we are not
> informed ourselves about security problems?

Noise.  You can's accnounce every possibly security-related fix found
by an audit - note that it's not clear whether it actually _is_
security-relevant at this point and certainly no one wrote an exploit
for it.

> It is infortunate if this must sometimes happen, but hopefully it is an
> exception, and in those cases we will need to rebuild modules and provide
> for both kernel images to be installed at once.

It's not an exception.  Fixes can and will change the ABI all the time.
You should not expect to be able to load a binary kernel module into
_any_ other one than the one it was compiled against.  Sometimes
security fixes may even break the source API.  (remember the dcache
issues in 2.2.<early>?).

Reply to:

Follow-Ups:
- Re: Maintaining kernel source in sarge
  - From: Matt Zimmerman <mdz@debian.org>

References:
- Re: Maintaining kernel source in sarge
  - From: Martin Schulze <joey@infodrom.org>
- Re: Maintaining kernel source in sarge
  - From: Herbert Xu <herbert@gondor.apana.org.au>
- Re: Maintaining kernel source in sarge
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: Debian conference in the US?
Next by Date: Re: Maintaining kernel source in sarge
Previous by thread: Re: Maintaining kernel source in sarge
Next by thread: Re: Maintaining kernel source in sarge
Index(es):
- Date
- Thread