Re: [gentoo-hardened] XATTR_PAX, paxmark.sh, elog, icedtea, and maybe more

On 12/13/14 18:52, Karl-Johan Karlsson wrote: That's problem number one: paxmark.sh (from sys-apps/elfix-0.9.0) tries to call elog and fails. I'll fix this. I missed it when I copied from the eclass where we do want elog. about elog. So paxmark.sh from 0.8.4 still fails, it's just silen

[gentoo-hardened] missing the meeting

Hi fellow hardened devs: I'm sorry for missing the meeting but things came up and the day got hectic. It is an important meeting because we were to discuss: 1) what we want with toolchain.eclass - There is a move to get rid of the eclas because it is "messy". This is probably a bad thing in

Re: [gentoo-hardened] missing the meeting

On 12/18/2014 07:09 PM, Anthony G. Basile wrote: > Hi fellow hardened devs: > > I'm sorry for missing the meeting but things came up and the day got > hectic. It is an important meeting because we were to discuss: > > 1) what we want with toolchain.eclass - There is a move to get rid of > the ec

Re: [gentoo-hardened] missing the meeting

On Dec 19, 2014 2:38 AM, "Matthew Thode" wrote: > > On 12/18/2014 07:09 PM, Anthony G. Basile wrote: > > 2) what to do about tar and POSIX capabilities in the context of > > building stage3's. Utilities like ping that used to be setuid to root > > are now just using posix caps. But preserving xa

Re: [gentoo-hardened] XATTR_PAX, paxmark.sh, elog, icedtea, and maybe more

On Thu 18 Dec 2014 19.58.11 Anthony G. Basile wrote: > On 12/13/14 18:52, Karl-Johan Karlsson wrote: > > So it works on ext4, but not ext3, even though both have the ext_attr flag > > on disk. Any difference in kernel support? > > Because on ext3 you need to add user_xattr to the mount options. E

Re: [gentoo-hardened] XATTR_PAX, paxmark.sh, elog, icedtea, and maybe more

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 2014/12/19 17:08, Karl-Johan Karlsson wrote: > On Thu 18 Dec 2014 19.58.11 Anthony G. Basile wrote: >> On 12/13/14 18:52, Karl-Johan Karlsson wrote: >>> So it works on ext4, but not ext3, even though both have the ext_attr flag >>> on disk. Any d

Re: [gentoo-hardened] missing the meeting

On 12/19/2014 12:02 AM, Sven Vermeulen wrote: > > On Dec 19, 2014 2:38 AM, "Matthew Thode" > wrote: >> >> On 12/18/2014 07:09 PM, Anthony G. Basile wrote: >> > 2) what to do about tar and POSIX capabilities in the context of >> > building stage3's. Utilities lik

Re: [gentoo-hardened] XATTR_PAX, paxmark.sh, elog, icedtea, and maybe more

On 2014/12/19 17:08, Karl-Johan Karlsson wrote: > On Thu 18 Dec 2014 19.58.11 Anthony G. Basile wrote: >> On 12/13/14 18:52, Karl-Johan Karlsson wrote: >>> So it works on ext4, but not ext3, even though both have the ext_attr flag >>> on disk. Any difference in kernel support? >> >> Because on ex