Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1754551AbcDKTIf (ORCPT ); Mon, 11 Apr 2016 15:08:35 -0400 Received: from mail-ig0-f196.google.com ([209.85.213.196]:36490 "EHLO mail-ig0-f196.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750936AbcDKTId (ORCPT ); Mon, 11 Apr 2016 15:08:33 -0400 MIME-Version: 1.0 In-Reply-To: <570BF53F.60206@oracle.com> References: <570BE4A5.20200@oracle.com> <570BF53F.60206@oracle.com> Date: Mon, 11 Apr 2016 13:08:31 -0600 Message-ID: Subject: Re: [ANNOUNCE] linux-stable security tree From: Jeff Merkey To: Sasha Levin Cc: LKML , stable , lwn@lwn.net Content-Type: text/plain; charset=UTF-8 Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 2587 Lines: 83 On 4/11/16, Sasha Levin wrote: > On 04/11/2016 02:34 PM, Jeff Merkey wrote: >> On 4/11/16, Sasha Levin wrote: >>> Hi all, >>> >>> >>> I'd like to announce the linux-stable security tree project. The purpose >>> is to create a derivative tree from the regular stable tree that would >>> contain only commits that fix security vulnerabilities. >>> >>> Quite a few users of the stable trees pointed out that on complex >>> deployments, >>> where validation is non-trivial, there is little incentive to follow the >>> stable tree after the product has been deployed to production. There is >>> no >>> interest in "random" kernel fixes and the only requirements are to keep >>> up >>> with security vulnerabilities. >>> >>> Given this, a few projects preferred to delay important kernel updates, >>> and >>> a few even stopped updating the tree altogether, exposing them to >>> critical >>> vulnerabilities. >>> >>> This project provides an easy way to receive only important security >>> commits, >>> which are usually only a few in each release, and makes it easy to >>> incorporate >>> them into existing projects. >>> >>> The tree is available at: >>> >>> https://git.kernel.org/cgit/linux/kernel/git/sashal/linux-stable-security.git/ >>> >>> Support is provided for all active -stable trees >>> (https://www.kernel.org/category/releases.html). >>> Branches/tags for unsupported versions of >=3.0 kernels were also >>> generated >>> for reference. >>> >>> >>> Thanks, >>> Sasha >>> >>> >>> >> >> Hi Sasha, >> >> [root@166-70-213-246 kernel]# >> [root@166-70-213-246 kernel]# >> [root@166-70-213-246 kernel]# git clone >> https://git.kernel.org/cgit/linux/kernel/git/sashal/linux-stable-security.git >> Cloning into 'linux-stable-security'... >> fatal: repository >> 'https://git.kernel.org/cgit/linux/kernel/git/sashal/linux-stable-security.git/' >> not found >> [root@166-70-213-246 kernel]# git clone >> https://git.kernel.org/cgit/linux/kernel/git/sashal/linux-stable-security.git >> Cloning into 'linux-stable-security'... >> fatal: repository >> 'https://git.kernel.org/cgit/linux/kernel/git/sashal/linux-stable-security.git/' >> not found >> [root@166-70-213-246 kernel]# > > Either of the following will let you clone it: > > git://git.kernel.org/pub/scm/linux/kernel/git/sashal/linux-stable-security.git > https://git.kernel.org/pub/scm/linux/kernel/git/sashal/linux-stable-security.git > https://kernel.googlesource.com/pub/scm/linux/kernel/git/sashal/linux-stable-security.git > > > Thanks, > Sasha > Thanks Guys, :-) Jeff