+commit a0b31ddd80510c595b1db203edd009a721e68cfa
+Merge: f9c6bb9 c8102ee
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sun Mar 5 18:02:18 2017 -0500
+
+ Merge branch 'pax-test' into grsec-test
+
+commit c8102eef049988a1905817e4dc4e859287c2923e
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sun Mar 5 18:01:22 2017 -0500
+
+ Update to pax-linux-4.9.13-test6.patch:
+ - fixed a regression where on amd64 STACKLEAK instrumented functions executed in IRQ context caused a preempt counter overdecrement, by Jason A. Donenfeld <Jason@zx2c4.com>, reported by nail (https://forums.grsecurity.net/viewtopic.php?f=3&t=4668)
+ - fixed an unbalanced pax_open_kernel call that would trigger a BUG in the zt5550 driver
+
+commit f9c6bb92aa1205f0402085e363fa914ea34beceb
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Mon Feb 27 06:55:25 2017 -0500
+
+ Fix softirq warnings reported by nail at:
+ https://forums.grsecurity.net/viewtopic.php?f=3&t=4668
+ and reported and debugged by Jason Donenfeld.
+
+ A stray put_cpu() was left in the pax_check_alloca code when
+ porting to Linux 4.9, which would cause a preempt imbalance
+ on interrupts making use of alloca() (either explicitly or through
+ variable length arrays).
+
+commit 8019276815d5d50fb57b4a1bd9f33af0c5cd7615
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sun Feb 26 10:28:40 2017 -0500
+
+ Update size_overflow hash table, from Toralf Foerster
+
+commit 5996b10c778c1b3378219a3c29ae90b504482a50
+Merge: 1d6d9f9 ef547fe
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sun Feb 26 07:41:37 2017 -0500
+
+ Merge branch 'pax-test' into grsec-test
+
+commit ef547fea89fc7818dec64af7db1c7528fc3c1436
+Merge: bce7062 3737a5f
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sun Feb 26 07:41:28 2017 -0500
+
+ Merge branch 'linux-4.9.y' into pax-test
+
+commit 1d6d9f9363ebed20318f0c047dccb5a39a4441e7
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Fri Feb 24 07:11:39 2017 -0500
+
+ Silence a compiler warning, reported by Etienne Buira
+
+commit e47311b356a178a1652c88cf47aea011f0211061
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Thu Feb 23 18:25:41 2017 -0500
+
+ Update size_overflow hash table
+
+commit 7852bd5868a61b1a9c4210c0214ef8c1d3e0e7e2
+Merge: 15fc570 bce7062
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Thu Feb 23 17:41:07 2017 -0500
+
+ Merge branch 'pax-test' into grsec-test
+
+commit bce7062ee9c933a4188dec2691155442df3a79e8
+Merge: b26ab25 ae7d431
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Thu Feb 23 17:40:59 2017 -0500
+
+ Merge branch 'linux-4.9.y' into pax-test
+
+commit 15fc5704b74ec1d5c4a9ecd00c9e24e9955a1e24
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Thu Feb 23 17:35:05 2017 -0500
+
+ Fix !GRKERNSEC_KMEM && GRKERNSEC_SYSFS_RESTRICT incompatibility with
+ KVM, reported at https://bugs.gentoo.org/show_bug.cgi?id=597554
+ by Christian Roessner, Miro Rovis, and Étienne Buira
+
+commit c26d7750fb91d084a1ba3fbf84fa892cabf2cee9
+Merge: f0e6f87 b26ab25
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Wed Feb 22 20:46:04 2017 -0500
+
+ Merge branch 'pax-test' into grsec-test
+
+commit b26ab25c73a41147b14a8edb35eec6a08fafd927
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Wed Feb 22 20:45:31 2017 -0500
+
+ Update to pax-linux-4.9.10-test5.patch:
+ - fixed resume regression on i386/UDEREF caused by upstream commit ffa64eff956a25548cad0391dbc14c672827be7b, reported by corsac
+ - fixed compile regression on i386/XEN, reported by bugmenot (https://forums.grsecurity.net/viewtopic.php?f=3&t=4677)
+ - worked around an intentional integer overflow caused by the amdgpu driver that was caught by the size overflow plugin, reported by foxxx0 (https://forums.grsecurity.net/viewtopic.php?f=3&t=4667)
+ - made better use of upstream's idea of invpcid
+
+commit f0e6f87d2d7d767eba1534fd8c1fa4e8e26e00c8
+Author: Andrey Konovalov <andreyknvl@google.com>
+Date: Thu Feb 16 17:22:46 2017 +0100
+
+ dccp: fix freeing skb too early for IPV6_RECVPKTINFO
+
+ In the current DCCP implementation an skb for a DCCP_PKT_REQUEST packet
+ is forcibly freed via __kfree_skb in dccp_rcv_state_process if
+ dccp_v6_conn_request successfully returns.
+
+ However, if IPV6_RECVPKTINFO is set on a socket, the address of the skb
+ is saved to ireq->pktopts and the ref count for skb is incremented in
+ dccp_v6_conn_request, so skb is still in use. Nevertheless, it gets freed
+ in dccp_rcv_state_process.
+
+ Fix by calling consume_skb instead of doing goto discard and therefore
+ calling __kfree_skb.
+
+ Similar fixes for TCP:
+
+ fb7e2399ec17f1004c0e0ccfd17439f8759ede01 [TCP]: skb is unexpectedly freed.
+ 0aea76d35c9651d55bbaf746e7914e5f9ae5a25d tcp: SYN packets are now
+ simply consumed
+
+ Signed-off-by: Andrey Konovalov <andreyknvl@google.com>
+ Acked-by: Eric Dumazet <edumazet@google.com>
+ Signed-off-by: David S. Miller <davem@davemloft.net>
+
+commit 9f575ef66df46cb78f751e0d8d509171afe3933e
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sat Feb 18 13:09:26 2017 -0500
+
+ Update size_overflow hash table
+
+commit e927308508ef20392a61e493bc411e73d597682f
+Merge: 55d2e75 d711991
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sat Feb 18 11:35:11 2017 -0500
+
+ Merge branch 'pax-test' into grsec-test
+
+commit d711991b1628e84076fde9b2c94d25920cca7882
+Merge: 70fbe2f eee1550
+Author: Brad Spengler <spender@grsecurity.net>
+Date: Sat Feb 18 11:34:56 2017 -0500
+
+ Merge branch 'linux-4.9.y' into pax-test
+
commit 55d2e7501a1db909073644bb1b5c58effb627754
Author: Brad Spengler <spender@grsecurity.net>
Date: Thu Feb 16 19:47:51 2017 -0500
projects / thirdparty / grsecurity-scrape.git / blobdiff