Branch: refs/heads/master
Home: https://github.com/NixOS/nixpkgs
Commit: 1bb7b44cd7970780170f1c4bb4bba8d91f5e06d7
https://github.com/NixOS/nixpkgs/commit/1bb7b44cd7970780170f1c4bb4bba8d91f5e06d7
Author: Joachim Fasting <joach...@fastmail.fm>
Date: 2016-10-02 (Sun, 02 Oct 2016)
Changed paths:
M nixos/modules/security/grsecurity.xml
M pkgs/build-support/grsecurity/default.nix
M pkgs/os-specific/linux/kernel/grsecurity-nixos-config.nix
M pkgs/top-level/all-packages.nix
Log Message:
-----------
grsecurity: make GRKERNSEC y and PAX y implicit
These options should always be specified. Note, an implication of this
change is that not specifying any grsec/PaX options results in a build
failure.
Commit: 9a9237e0aa9a834604ec0ce5c2ef3483654a0314
https://github.com/NixOS/nixpkgs/commit/9a9237e0aa9a834604ec0ce5c2ef3483654a0314
Author: Joachim Fasting <joach...@fastmail.fm>
Date: 2016-10-02 (Sun, 02 Oct 2016)
Changed paths:
M pkgs/os-specific/linux/kernel/grsecurity-nixos-config.nix
Log Message:
-----------
grsecurity: revamp nixos kernel config
Cleanup:
- Restructure & add some commentary
- Remove redundant option specs given the auto config
constraints (some are left in for documentation purposes)
Changes:
- GRKERNSEC_CONFIG_VIRT_HOST -> GUEST
The former deselects paravirtualization and friends
- PAX_LATENT_ENTROPY n -> y (implied by auto)
- GRKERNSEC_ACL_HIDEKERN y -> n
Possibly useless with redistribution
Commit: 98e2b90cf382e3323f7f5d7b9dcc808099e53685
https://github.com/NixOS/nixpkgs/commit/98e2b90cf382e3323f7f5d7b9dcc808099e53685
Author: Joachim Fasting <joach...@fastmail.fm>
Date: 2016-10-02 (Sun, 02 Oct 2016)
Changed paths:
M nixos/modules/security/grsecurity.xml
Log Message:
-----------
grsecurity doc: note that module autoload hardening is disabled
Compare: https://github.com/NixOS/nixpkgs/compare/a58f5ffbb9a2...98e2b90cf382
_______________________________________________
nix-commits mailing list
nix-comm...@lists.science.uu.nl
http://lists.science.uu.nl/mailman/listinfo/nix-commits