Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

rebase OPNSense based on HardenedBSD #6

Closed
opntr opened this issue Apr 29, 2015 · 11 comments
Closed

rebase OPNSense based on HardenedBSD #6

opntr opened this issue Apr 29, 2015 · 11 comments
Assignees
@fichtner
Labels
feature Adding new functionality

Comments

@opntr
Copy link

opntr commented Apr 29, 2015

;)
@opntr opntr changed the title rebase OPNSense into HardenedBSD rebase OPNSense based on HardenedBSD Apr 29, 2015
@fichtner
Copy link
Member

Depends on how cool upstream is, huh! :)

@opntr
Copy link
Author

opntr commented Apr 29, 2015

We plan to backport our patches to 10-STABLE and 10.{1/2} until the end of July.

@fichtner
Copy link
Member

10-STABLE interests me, takes forever to go to 10.2... I am willing to merge all sanity patches you throw our way before that, too

@fichtner fichtner self-assigned this Apr 29, 2015
@fichtner fichtner added the feature Adding new functionality label Apr 29, 2015
@opntr
Copy link
Author

opntr commented May 5, 2015

Hey! Take a look at hardened/experimental/10-stable branch or to this article: https://www.linkedin.com/pulse/hardenedbsd-10-stable-experimental-oliv%C3%A9r-pint%C3%A9r ;)

@fichtner
Copy link
Member

fichtner commented May 7, 2015

WATCH ME DO IT. SNAPSHOTS AVAILABLE SOON IN A THEATRE NEAR YOU. :)

@fichtner
Copy link
Member

fichtner commented May 8, 2015

We've done a test build and the iso works, but PAX kernel foo needs to be enabled still and so on. Great progress so far, thanks! :D

@fichtner
Copy link
Member

At our current meetup, we decided to get rid of more custom patches, the ones we immediately zapped are:

a5b56aa
f06bb08

@fichtner fichtner added this to the 16.1 milestone Jun 12, 2015
@fichtner
Copy link
Member

Started to migrate to 10.2 on master, put our patches on top. Next step: plug in ASLR. :)

@AdSchellevis
Copy link
Member

nice!

@fichtner
Copy link
Member

As soon as 16.1 is out on top of 10.2 we shall look into merging ABI compatible patches from hbsd as discussed with Shawn, the transition path is smooooooooooooth then. :)

@fichtner fichtner modified the milestones: 16.7, 16.1 Jan 13, 2016
@fichtner fichtner removed this from the 16.7 milestone Feb 2, 2016
@fichtner fichtner mentioned this issue Feb 2, 2016
Closed
@fichtner
Copy link
Member

ASLR patch has been tested on amd64, i386, small issues weeded out with @lattera and @opntr

Public test builds for ASLR soon. :)

Next target for inclusion may be SEGVGUARG.

Thanks guys!!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@fichtner fichtner

Labels
feature Adding new functionality
Milestone
No milestone
Development

No branches or pull requests
3 participants
@fichtner @opntr @AdSchellevis