Yes you were absolutely right. On 161025-14:46-0400, Fernando Rodriguez wrote: > On Tue, Oct 25, 2016 at 07:38:01PM +0200, Miroslav Rovis wrote: > > Sorry about noticing your reply only now. > > > > Namely, thinking that people over at hardened ML would tell more about > > it, I indirectly initiated a thread over at hardened ML: > > https://archives.gentoo.org/gentoo-hardened/message/09bbf3bfe59a938f11ac044e891db77e > > > > Will surely check it! And am CC'ing hardened about this patch at the > > hardened ML. Maybe they patch and forward the 4.4.8-r1 to 4.4.8-r2 . > > --- > > Only now looked at the patch. > > > > No, you don't get it. And I'm not CC'ing this to hardened ML. Sorry about that. I was not getting it. After all if a patch isn't meant to patch something it only fails :-) .
> > > > You can't just run the patch for a vanilla kernel onto a > > grsecurity-patched kernel. Look up the hardened-sources, and how they > > are patched, and what the mm.h and the gup.c in question (there are a > > few of so named files in various directories) look in the > > hardened-sources, and how they look in the vanilla-sources... > > fernan@navi /usr/src/linux-4.4.8-hardened-r1 $ sudo patch -p1 < > /home/fernan/dirtycow.patch > patching file include/linux/mm.h > Hunk #1 succeeded at 2131 (offset 19 lines). > patching file mm/gup.c > Hunk #3 succeeded at 357 (offset -5 lines). > It did work here too: # patch -p1 < /home/miro/dirtycow.patch patching file include/linux/mm.h Hunk #1 succeeded at 2131 (offset 19 lines). patching file mm/gup.c Hunk #3 succeeded at 357 (offset -5 lines). # where: # pwd /usr/src/linux # ls -l ../linux lrwxrwxrwx 1 root root 23 2016-10-23 02:37 ../linux -> linux-4.4.8-hardened-r1 # > It works so I guess you can. Never say you can't do something before > trying cause then you look like an idiot. > > And the patch says which are the files in question! > > > > > If I'm not mistaken, and I did check it. No, I'm not mistaken, you just > > sent me the Linus's patch. > > Yes you are mistaken, cause if you've tried it you wouldb't be asking > the question. And yes, that is Linus patch. Right! ... > > > > > > Did you tried it? > > > The patch attached comes straight from the git repo, just run: > > > > > > # cd /usr/src/linux > > > # patch -p1 < path/to/patch > > > > > > It'll likely work. > > > And it did, as above... > > > > Thanks for trying to help! Regards! Wrong on my part! Thanks for teaching me! And to teach an obstinate misunderstanding old man takes a little nerve. Regards! -- Miroslav Rovis Zagreb, Croatia http://www.CroatiaFidelis.hr
signature.asc
Description: Digital signature
