Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S965283AbeAKRzS (ORCPT + 1 other); Thu, 11 Jan 2018 12:55:18 -0500 Received: from wtarreau.pck.nerim.net ([62.212.114.60]:39612 "EHLO 1wt.eu" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S965239AbeAKRzR (ORCPT ); Thu, 11 Jan 2018 12:55:17 -0500 Date: Thu, 11 Jan 2018 18:55:14 +0100 From: Willy Tarreau To: Corey Minyard Cc: linux-kernel Subject: Re: Backport of KPTI to 2.6.32 available Message-ID: <20180111175514.GD15344@1wt.eu> References: <62683052-9333-b2af-4230-241388c3bc31@mvista.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <62683052-9333-b2af-4230-241388c3bc31@mvista.com> User-Agent: Mutt/1.6.1 (2016-04-27) Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Return-Path: Hi Corey, On Thu, Jan 11, 2018 at 11:42:38AM -0600, Corey Minyard wrote: > I've completed a backport of KPTI from linux-stable-3.2.y to 2.6.32.71, in > case anyone is interested and wants to avoid all the work I went through. > It's available at: > > https://github.com/MontaVista-OpenSourceTechnology/linux-nonlts-secfix.git > linux-2.6.32-secfix Well, good job on this, thanks for sharing! However, this is just a friendly reminder to everyone still running 2.6.32 that during my 3.10 maintenance period after I dropped 2.6.32, I saw a significant number of bugs affecting older versions, 2.6.32 included. So if people are using your branch above to pick your patches and apply them to their locally maintained kernel, that's possibly fine. However please guys don't run just the kernel above as-is as it's definitely missing a few hundreds of fixes (~1300 were fixed in 3.10 since 2.6.32.71 was released, some addressing local privilege escalations). Cheers, Willy