On Mon, 1 Aug 2016 14:08:57 +0300 Andrew Savchenko wrote: > Hi, > > On Wed, 20 Jul 2016 13:13:49 -0400 NP-Hardass wrote: > > This is the first draft of a news item describing a packaging change for > > OpenAFS so that we no longer require the DEBUG_RODATA be turned off. > > This is a second try with rewording of the first paragraph, since > it was suggested that it is a bit awkward. > > Title: OpenAFS no longer needs kernel option DEBUG_RODATA > Author: NP-Hardass <np-hard...@gentoo.org> > Author: Andrew Savchenko <birc...@gentoo.org> > Content-Type: text/plain > Posted: 2016-07-23 > Revision: 1 > News-Item-Format: 1.0 > Display-If-Installed: <=net-fs/openafs-kernel-1.6.18.2 > Display-If-Keyword: amd64 > Display-If-Keyword: ~amd64-linux > Display-If-Keyword: ~sparc > Display-If-Keyword: x86 > Display-If-Keyword: ~x86-linux > > As a result of bug #127084 [1], it was determined that OpenAFS's > kernel module required that the kernel's data structures be > read-write (CONFIG_DEBUG_RODATA=n). With recent OpenAFS versions > this limitation is no longer required. We tested the latest version > of OpenAFS with Linux kernels from 3.4 till 4.6, and determined that > OpenAFS kernel module works fine with CONFIG_DEBUG_RODATA=y. > > Starting with net-fs/openafs-kernel-1.6.18.2, this condition is no > longer forced in the ebuild. Considering the security implications > of having CONFIG_DEBUG_RODATA turned off, it is highly advised that > you adjust your kernel config accordingly. Please note that the > default setting for CONFIG_DEBUG_RODATA is "y" and unless you have > another reason for keeping it disabled, we highly recommend that > you re-enable CONFIG_DEBUG_RODATA. > > [1] https://bugs.gentoo.org/show_bug.cgi?id=127084
No comments for a week => submitted. Best regards, Andrew Savchenko
pgpZO8cqeP0uo.pgp
Description: PGP signature
