diff options
| author | Natanael Copa <ncopa@alpinelinux.org> | 2014-10-08 07:47:56 +0000 |
|---|---|---|
| committer | Natanael Copa <ncopa@alpinelinux.org> | 2014-10-08 08:06:19 +0000 |
| commit | 3e103d29533830c4a4688c148d9a8c2d4cfbe8c8 (patch) | |
| tree | bac6dfc8943c36b3fd751753099e033e4e5dfec7 /main/linux-grsec | |
| parent | 4478dd01e0484334817fece70209ee36be9f56f4 (diff) | |
| download | aports-3e103d29533830c4a4688c148d9a8c2d4cfbe8c8.tar.bz2 aports-3e103d29533830c4a4688c148d9a8c2d4cfbe8c8.tar.xz | |
main/linux-grsec: fix booting of xen dom0
Diffstat (limited to 'main/linux-grsec')
| -rw-r--r-- | main/linux-grsec/APKBUILD | 6 | ||||
| -rw-r--r-- | main/linux-grsec/xen-mmu.patch | 20 |
2 files changed, 25 insertions, 1 deletions
diff --git a/main/linux-grsec/APKBUILD b/main/linux-grsec/APKBUILD index dfec8c2bd..1db52ed9a 100644 --- a/main/linux-grsec/APKBUILD +++ b/main/linux-grsec/APKBUILD @@ -7,7 +7,7 @@ case $pkgver in *.*.*) _kernver=${pkgver%.*};; *.*) _kernver=${pkgver};; esac -pkgrel=0 +pkgrel=1 pkgdesc="Linux kernel with grsecurity" url=http://grsecurity.net depends="mkinitfs linux-firmware" @@ -18,6 +18,7 @@ install= source="http://ftp.kernel.org/pub/linux/kernel/v3.x/linux-$_kernver.tar.xz http://ftp.kernel.org/pub/linux/kernel/v3.x/patch-$pkgver.xz grsecurity-3.0-3.14.20-201410062037.patch + xen-mmu.patch fix-memory-map-for-PIE-applications.patch imx6q-no-unclocked-sleep.patch @@ -167,6 +168,7 @@ dev() { md5sums="b621207b3f6ecbb67db18b13258f8ea8 linux-3.14.tar.xz e581089540b747c39d528fc4c47b70b6 patch-3.14.20.xz 149cb0b654a5eb6122c7e47b0f113c98 grsecurity-3.0-3.14.20-201410062037.patch +c9fb26768c16dd7bebeb2380deb3ecc4 xen-mmu.patch c6a4ae7e8ca6159e1631545515805216 fix-memory-map-for-PIE-applications.patch 1a307fc1d63231bf01d22493a4f14378 imx6q-no-unclocked-sleep.patch d14ffce26900130c26cad2d833a7040c kernelconfig.x86 @@ -175,6 +177,7 @@ d14ffce26900130c26cad2d833a7040c kernelconfig.x86 sha256sums="61558aa490855f42b6340d1a1596be47454909629327c49a5e4e10268065dffa linux-3.14.tar.xz b01ba521cce12d3b9e8c25807567837dd88878b861f27c453c29cee80b6cb84b patch-3.14.20.xz 578f55546016f72c9ed3afedebb0cf6e74ab613f25c29d0a2f3a6b4bfbd1456f grsecurity-3.0-3.14.20-201410062037.patch +ab1a1710c06fc6b553075fc861065ea775da6636b518d68ddccf4c4555125d95 xen-mmu.patch 500f3577310be52e87b9fecdc2e9c4ca43210fd97d69089f9005d484563f74c7 fix-memory-map-for-PIE-applications.patch 21179fbb22a5b74af0a609350ae1a170e232908572b201d02e791d2ce0a685d3 imx6q-no-unclocked-sleep.patch 61f34085c2022112d9fd89c0de59c9c45f4a05c524ff919aeabb1cf381db0409 kernelconfig.x86 @@ -183,6 +186,7 @@ a2dc0e30e1d1d691768543a17b51efccfc11ef17c04ac08f2b54c95f25dab75d kernelconfig.a sha512sums="5730d83a7a81134c1e77c0bf89e42dee4f8251ad56c1ac2be20c59e26fdfaa7bea55f277e7af156b637f22e1584914a46089af85039177cb43485089c74ac26e linux-3.14.tar.xz 91231ec4e8e10a09b407d8db123e29a87ef4bf03fa3707f7ed511f22248de7d7b9cfc5169de5e9630854c97166594d3a00293571529d9b7a529118e6d2295b4f patch-3.14.20.xz 2a515f7ef49df5ef1d1de725884f541438f980d364db94789eb8381bf10a7902c7a5647ef1d7e296952980e6918e6697d0212b61cc1b7e171137ca6abba56504 grsecurity-3.0-3.14.20-201410062037.patch +1f74710981f0298303f8c6cfb1d6f903f3fe36b0f55ec84eaa49ba228be4d4d2cc706c96da8e4080b853dde2a77d324ad6672dba83cd6d5a73f9c72332ec4185 xen-mmu.patch 4665c56ae1bbac311f9205d64918e84ee8b01d47d6e2396ff6b8adfb10aada7f7254531ce62e31edbb65c2a54a830f09ad05d314dfcd75d6272f4068945ad7c7 fix-memory-map-for-PIE-applications.patch 87d1ad59732f265a5b0db54490dc1762c14ea4b868e7eb1aedc3ce57b48046de7bbc08cf5cfcf6f1380fa84063b0edb16ba3d5e3c5670be9bbb229275c88b221 imx6q-no-unclocked-sleep.patch 938f1680fecb06e09cbdfd2d0f876e767bd617194ebd83629664315ced3585fc305585527dfbe8f4e5a332f0220a4c9ed6fe0be4c399b1ef12d6de12b2abcd0c kernelconfig.x86 diff --git a/main/linux-grsec/xen-mmu.patch b/main/linux-grsec/xen-mmu.patch new file mode 100644 index 000000000..34db92260 --- /dev/null +++ b/main/linux-grsec/xen-mmu.patch @@ -0,0 +1,20 @@ +--- ./arch/x86/xen/mmu.c.orig ++++ ./arch/x86/xen/mmu.c +@@ -1941,6 +1941,7 @@ + set_page_prot(level2_kernel_pgt, PAGE_KERNEL_RO); + set_page_prot(level2_fixmap_pgt, PAGE_KERNEL_RO); + set_page_prot(level1_fixmap_pgt, PAGE_KERNEL_RO); ++ set_page_prot(level1_vsyscall_pgt, PAGE_KERNEL_RO); + + /* Pin down new L4 */ + pin_pagetable_pfn(MMUEXT_PIN_L4_TABLE, +--- ./arch/x86/include/asm/pgtable_64.h.orig ++++ ./arch/x86/include/asm/pgtable_64.h +@@ -24,6 +24,7 @@ + extern pmd_t level2_fixmap_pgt[512]; + extern pmd_t level2_ident_pgt[512*2]; + extern pte_t level1_fixmap_pgt[512]; ++extern pte_t level1_vsyscall_pgt[512]; + extern pgd_t init_level4_pgt[512]; + + #define swapper_pg_dir init_level4_pgt |