kernel patch
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 1780
xlike Kernel Patchset 0.20f
xlike Kernel Patchset is a patch collection for the Linux vanilla kernel. more>>
xlike Kernel Patchset is a patch collection for the Linux vanilla kernel. The project includes as many stable enhancements for the Linux kernel as possible.
These include code from Kernel Mode Linux, Rule Set Based Access Control, Novell AppArmor, Openswan, grsecurity, Linux VServer, Ndiswrapper, web100, Nefilters, Suspend2, Speakup, Amiga Smart File System, Cdemu, SquashFS, fbsplash, QuadDSP, and more. It also contains many drivers and fixes.
Enhancements:
- This version was updated to patch against Linux 2.6.20.
- User Mode Linux with Linux-PHC, LinuxIMQ, Web100, WANPIPE, WRR, ReiserFS4, SquashFS, UnionFS, Bootsplash, and Kernel Color Output were added.
<<lessThese include code from Kernel Mode Linux, Rule Set Based Access Control, Novell AppArmor, Openswan, grsecurity, Linux VServer, Ndiswrapper, web100, Nefilters, Suspend2, Speakup, Amiga Smart File System, Cdemu, SquashFS, fbsplash, QuadDSP, and more. It also contains many drivers and fixes.
Enhancements:
- This version was updated to patch against Linux 2.6.20.
- User Mode Linux with Linux-PHC, LinuxIMQ, Web100, WANPIPE, WRR, ReiserFS4, SquashFS, UnionFS, Bootsplash, and Kernel Color Output were added.
Download (0.45MB)
Added: 2007-08-22 License: GPL (GNU General Public License) Price:
793 downloads
Openwall Linux kernel patch 2.4.35-ow2
Openwall Linux kernel patch is a collection of security-related features for the Linux kernel. more>>
Openwall Linux kernel patch is a collection of security-related features for the Linux kernel, all configurable via the new Security options configuration section. In addition to the new features, some versions of the patch contain various security fixes.
The number of such fixes changes from version to version, as some are becoming obsolete (such as because of the same problem getting fixed with a new kernel release), while other security issues are discovered.
Non-executable user stack area.
Most buffer overflow exploits are based on overwriting a functions return address on the stack to point to some arbitrary code, which is also put onto the stack. If the stack area is non-executable, buffer overflow vulnerabilities become harder to exploit.
Another way to exploit a buffer overflow is to point the return address to a function in libc, usually system(). This patch also changes the default address that shared libraries are mmap()ed at to make it always contain a zero byte. This makes it impossible to specify any more data (parameters to the function, or more copies of the return address when filling with a pattern), -- in many exploits that have to do with ASCIIZ strings.
However, note that this patch is by no means a complete solution, it just adds an extra layer of security. Many buffer overflow vulnerabilities will remain exploitable a more complicated way, and some will even remain unaffected by the patch. The reason for using such a patch is to protect against some of the buffer overflow vulnerabilities that are yet unknown.
Also, note that some buffer overflows can be used for denial of service attacks (usually in non-respawning daemons and network clients). A patch like this cannot do anything against that.
It is important that you fix vulnerabilities as soon as they become known, even if youre using the patch. The same applies to other features of the patch (discussed below) and their corresponding vulnerabilities.
Restricted links in /tmp.
Ive also added a link-in-+t restriction, originally for Linux 2.0 only, by Andrew Tridgell. Ive updated it to prevent from using a hard link in an attack instead, by not allowing regular users to create hard links to files they dont own, unless they could read and write the file (due to group permissions). This is usually the desired behavior anyway, since otherwise users couldnt remove such links theyve just created in a +t directory (unfortunately, this is still possible for group-writable files) and because of disk quotas.
Unfortunately, this may break existing applications.
Restricted FIFOs in /tmp.
In addition to restricting links, you might also want to restrict writes into untrusted FIFOs (named pipes), to make data spoofing attacks harder. Enabling this option disallows writing into FIFOs not owned by the user in +t directories, unless the owner is the same as that of the directory or the FIFO is opened without the O_CREAT flag.
Restricted /proc.
This was originally a patch by route that only changed the permissions on some directories in /proc, so you had to be root to access them. Then there were similar patches by others. I found them all quite unusable for my purposes, on a system where I wanted several admins to be able to see all the processes, etc, without having to su root (or use sudo) each time. So I had to create my own patch that I include here.
This option restricts the permissions on /proc so that non-root users can see their own processes only, and nothing about active network connections, unless theyre in a special group. This groups id is specified via the gid= mount option, and is 0 by default. (Note: if youre using identd, you will need to edit the inetd.conf line to run identd as this special group.) Also, this disables dmesg(8) for the users. You might want to use this on an ISP shell server where privacy is an issue. Note that these extra restrictions can be trivially bypassed with physical access (without having to reboot).
When using this part of the patch, most programs (ps, top, who) work as desired -- they only show the processes of this user (unless root or in the special group, or running with the relevant capabilities on 2.2+), and dont complain they cant access others. However, theres a known problem with w(1) in recent versions of procps, so you should apply the included patch to procps if this applies to you.
Enhancements:
- This revision adds a fix for the "parent process death signal" vulnerability in the Linux kernel.
- It also adds two security hardening features, both enabled by default: restricted access to VM86 mode (specific to 32-bit x86) and restricted zero page mappings (generic).
<<lessThe number of such fixes changes from version to version, as some are becoming obsolete (such as because of the same problem getting fixed with a new kernel release), while other security issues are discovered.
Non-executable user stack area.
Most buffer overflow exploits are based on overwriting a functions return address on the stack to point to some arbitrary code, which is also put onto the stack. If the stack area is non-executable, buffer overflow vulnerabilities become harder to exploit.
Another way to exploit a buffer overflow is to point the return address to a function in libc, usually system(). This patch also changes the default address that shared libraries are mmap()ed at to make it always contain a zero byte. This makes it impossible to specify any more data (parameters to the function, or more copies of the return address when filling with a pattern), -- in many exploits that have to do with ASCIIZ strings.
However, note that this patch is by no means a complete solution, it just adds an extra layer of security. Many buffer overflow vulnerabilities will remain exploitable a more complicated way, and some will even remain unaffected by the patch. The reason for using such a patch is to protect against some of the buffer overflow vulnerabilities that are yet unknown.
Also, note that some buffer overflows can be used for denial of service attacks (usually in non-respawning daemons and network clients). A patch like this cannot do anything against that.
It is important that you fix vulnerabilities as soon as they become known, even if youre using the patch. The same applies to other features of the patch (discussed below) and their corresponding vulnerabilities.
Restricted links in /tmp.
Ive also added a link-in-+t restriction, originally for Linux 2.0 only, by Andrew Tridgell. Ive updated it to prevent from using a hard link in an attack instead, by not allowing regular users to create hard links to files they dont own, unless they could read and write the file (due to group permissions). This is usually the desired behavior anyway, since otherwise users couldnt remove such links theyve just created in a +t directory (unfortunately, this is still possible for group-writable files) and because of disk quotas.
Unfortunately, this may break existing applications.
Restricted FIFOs in /tmp.
In addition to restricting links, you might also want to restrict writes into untrusted FIFOs (named pipes), to make data spoofing attacks harder. Enabling this option disallows writing into FIFOs not owned by the user in +t directories, unless the owner is the same as that of the directory or the FIFO is opened without the O_CREAT flag.
Restricted /proc.
This was originally a patch by route that only changed the permissions on some directories in /proc, so you had to be root to access them. Then there were similar patches by others. I found them all quite unusable for my purposes, on a system where I wanted several admins to be able to see all the processes, etc, without having to su root (or use sudo) each time. So I had to create my own patch that I include here.
This option restricts the permissions on /proc so that non-root users can see their own processes only, and nothing about active network connections, unless theyre in a special group. This groups id is specified via the gid= mount option, and is 0 by default. (Note: if youre using identd, you will need to edit the inetd.conf line to run identd as this special group.) Also, this disables dmesg(8) for the users. You might want to use this on an ISP shell server where privacy is an issue. Note that these extra restrictions can be trivially bypassed with physical access (without having to reboot).
When using this part of the patch, most programs (ps, top, who) work as desired -- they only show the processes of this user (unless root or in the special group, or running with the relevant capabilities on 2.2+), and dont complain they cant access others. However, theres a known problem with w(1) in recent versions of procps, so you should apply the included patch to procps if this applies to you.
Enhancements:
- This revision adds a fix for the "parent process death signal" vulnerability in the Linux kernel.
- It also adds two security hardening features, both enabled by default: restricted access to VM86 mode (specific to 32-bit x86) and restricted zero page mappings (generic).
Download (0.034MB)
Added: 2007-08-15 License: GPL (GNU General Public License) Price:
800 downloads
Lanshield Watchdog Linux Kernel Patch 0.1
Lanshield Watchdog Linux Kernel Patch drives an onboard (97317VUL) watchdog which resets the device every ten minutes. more>>
Lanshield Watchdog Linux Kernel Patch drives an onboard (97317VUL) watchdog which resets the device every ten minutes.
Lanshield Watchdog Linux Kernel Patch is for the onboard(97317VUL) watchdog which resets the device every 10 minutes.
BOARD: PENT/CPCI-765/
it was really hard to find the necessary information...
if you want to know how it works look in the code !!
You can compile it as module(which makes no sense) or fixed in the kernel in the userspace you just write to file /dev/watchdog.
<<lessLanshield Watchdog Linux Kernel Patch is for the onboard(97317VUL) watchdog which resets the device every 10 minutes.
BOARD: PENT/CPCI-765/
it was really hard to find the necessary information...
if you want to know how it works look in the code !!
You can compile it as module(which makes no sense) or fixed in the kernel in the userspace you just write to file /dev/watchdog.
Download (0.003MB)
Added: 2006-05-02 License: GPL (GNU General Public License) Price:
1272 downloads
Alphagate Systems Kernel Patchset 2.6-AS23
Alphagate Systems Kernel Patchset is a patch collection for the Linux kernel. more>>
Alphagate Systems Kernel Patchset provides new technologies and features, standard enhancements, as well as trivial-but-necessary fixes, that have not yet made it into the mainline (vanilla) Kernel.
So on one side, you get the next-gen code, while retaining stability is of concern. We choose SUSE Kernels because it is another stage of quality assurance that things do work reasonably.
2.6-AS22 is based on 2.6.15, which is quite a jump from 2.6.13. Certain things are missing because they are not available yet, such as TPROXY support. Because of this, AS21 and AS22 were released at the same time.
Components:
- Netfilter: IMQ, ROUTE, SYSRQ, TARPIT, XOR, connlimit, layer7, nth, random, u32, rICMP
- ttyrpld 2.10 rpldev
- CDFS 2.6.12
- BalaBit TPROXY 2.0.2 for 2.6.13
- SquashFS 2.2, +xmagic, +scan4it extensions
- UnionFS 20051130
- QuadDSP 1.2 - 4-channel audio output tools
- MultiAdmin 1.0.3
- THKD for Toshiba harddisks
- cdemu 0.7
- NDISwrapper 1.7
- RaLink RT2X00 drivers
- snd-pcsp audio driver and pcspkr emergency sound upon Oops, Panic or BUG
- Partition display upon rootfs mismount
- Boot time improvement by nosynchro RTC
- Visual plus: AS CKO, PureVGA, BSDUnderline, Con Loglevel, pipesize stat
- various /proc hardeners
- various small fixes (incl. UTF-8 console compose and userspace greediness fix)
- mouse button swap
- Staircase 13.2 provided (but not activated by default)
Enhancements:
- Unionfs, tproxy, sonypi, sony_acpi, the staircase scheduler, full preemption, and some other minor parts were updated.
<<lessSo on one side, you get the next-gen code, while retaining stability is of concern. We choose SUSE Kernels because it is another stage of quality assurance that things do work reasonably.
2.6-AS22 is based on 2.6.15, which is quite a jump from 2.6.13. Certain things are missing because they are not available yet, such as TPROXY support. Because of this, AS21 and AS22 were released at the same time.
Components:
- Netfilter: IMQ, ROUTE, SYSRQ, TARPIT, XOR, connlimit, layer7, nth, random, u32, rICMP
- ttyrpld 2.10 rpldev
- CDFS 2.6.12
- BalaBit TPROXY 2.0.2 for 2.6.13
- SquashFS 2.2, +xmagic, +scan4it extensions
- UnionFS 20051130
- QuadDSP 1.2 - 4-channel audio output tools
- MultiAdmin 1.0.3
- THKD for Toshiba harddisks
- cdemu 0.7
- NDISwrapper 1.7
- RaLink RT2X00 drivers
- snd-pcsp audio driver and pcspkr emergency sound upon Oops, Panic or BUG
- Partition display upon rootfs mismount
- Boot time improvement by nosynchro RTC
- Visual plus: AS CKO, PureVGA, BSDUnderline, Con Loglevel, pipesize stat
- various /proc hardeners
- various small fixes (incl. UTF-8 console compose and userspace greediness fix)
- mouse button swap
- Staircase 13.2 provided (but not activated by default)
Enhancements:
- Unionfs, tproxy, sonypi, sony_acpi, the staircase scheduler, full preemption, and some other minor parts were updated.
Download (40MB)
Added: 2006-01-18 License: GPL (GNU General Public License) Price:
1375 downloads
suser-jengelh Kernel Patchset 2.6.22.1-ccj51
suser-jengelh Kernel Patchset is a patch collection for the Linux kernel. more>>
suser-jengelh Kernel Patchset is a patch collection for the Linux kernel. suser-jengelh Kernel Patchset includes code from a lot of projects, such as ttyrpld, MultiAdmin, parts of NF POM, cdfs, unionfs, and various accumulated bugfixes still not present in the vanilla kernel.
Enhancements:
- New netfilter modules (xt_TRACE, xt_connlimit, xt_u32, xt_gateway, xt_TARPIT, xt_time) and tproxy4 have been added.
- A number of patches have been outsourced to standalone packages.
<<lessEnhancements:
- New netfilter modules (xt_TRACE, xt_connlimit, xt_u32, xt_gateway, xt_TARPIT, xt_time) and tproxy4 have been added.
- A number of patches have been outsourced to standalone packages.
Download (1.6MB)
Added: 2007-08-05 License: GPL (GNU General Public License) Price:
814 downloads
KPowersave Icon Patch 0.1
KPowersave Icon Patch changes the way of displaying power state for KPowersave. more>>
KPowersave Icon Patch is intended for KPowersave 0.6.2
This patch changes the way of displaying power state for KPowersave. Using this patch you can better theme KPowersave, by using a series of pixmaps.
Installation instructions:
>>> Patch the sources
1. Copy the patch file in the parent folder of KPowersave sources.
2. Cd into KPowersave
3. issue: patch -Np1 -i ../kpowersave-icon.patch
>>> Compile the sources
>>> Copy the icons
After instalation, you wont get any icons for displaying battery state.
You have to copy them to your theme folder.
Copy the iconset in the THEME_FOLDER/22x22/actions/
You can use this theme for start:
http://www.kde-look.org/content/show.php?content=28287
<<lessThis patch changes the way of displaying power state for KPowersave. Using this patch you can better theme KPowersave, by using a series of pixmaps.
Installation instructions:
>>> Patch the sources
1. Copy the patch file in the parent folder of KPowersave sources.
2. Cd into KPowersave
3. issue: patch -Np1 -i ../kpowersave-icon.patch
>>> Compile the sources
>>> Copy the icons
After instalation, you wont get any icons for displaying battery state.
You have to copy them to your theme folder.
Copy the iconset in the THEME_FOLDER/22x22/actions/
You can use this theme for start:
http://www.kde-look.org/content/show.php?content=28287
Download (0.002MB)
Added: 2006-09-20 License: GPL (GNU General Public License) Price:
1130 downloads
Exim DSN Patch 0.1
The Exim DSN patch adds delivery status notification support to Exim 4.xx. more>>
The Exim DSN patch adds delivery status notification support to Exim 4.xx.
DSN Support for Exim. This patch allows Exim 4.xx to support the sending of email Delivery Status Notifications.
<<lessDSN Support for Exim. This patch allows Exim 4.xx to support the sending of email Delivery Status Notifications.
Download (0.036MB)
Added: 2005-07-15 License: IBM Public License Price:
1562 downloads
Kernel-Machine Library 0.1
Kernel-Machine Library is a C++ library to implement kernel machines. more>>
The Kernel-Machine Library is a freely available (released under the GPL) C++ library to promote the use and progress of kernel machines. It is both for academic use and for developing real world applications.
The Kernel-Machine Library draws heavily from features of modern C++ such as template meta-programming to achieve high performance while at the same time offering a comfortable interface.
It enables compile-time selection of specialised algorithms on the basis of data types: for example, the specific case of a SVM in combination with a linear kernel can be computed by a specialised efficient algorithm.
The Kernel-Machine Library has implementations for the following kernel machines and their cited algorithms:
- Support Vector Machine [1, 2, 3]
- Relevance Vector Machine [4]
- Kernel Recursive Least Squares [5]
- Adaptive Sparseness using Jeffreys Prior [6]
- Smooth Relevance Vector Machine [7]
Up till now, the focus has been on regression. The handling of classification and ranking problems is being added.
<<lessThe Kernel-Machine Library draws heavily from features of modern C++ such as template meta-programming to achieve high performance while at the same time offering a comfortable interface.
It enables compile-time selection of specialised algorithms on the basis of data types: for example, the specific case of a SVM in combination with a linear kernel can be computed by a specialised efficient algorithm.
The Kernel-Machine Library has implementations for the following kernel machines and their cited algorithms:
- Support Vector Machine [1, 2, 3]
- Relevance Vector Machine [4]
- Kernel Recursive Least Squares [5]
- Adaptive Sparseness using Jeffreys Prior [6]
- Smooth Relevance Vector Machine [7]
Up till now, the focus has been on regression. The handling of classification and ranking problems is being added.
Download (0.050MB)
Added: 2005-10-08 License: GPL (GNU General Public License) Price:
1478 downloads
POE::Kernel 0.3502
POE::Kernel is an event driven threaded application kernel in Perl. more>>
POE::Kernel is an event driven threaded application kernel in Perl.
SYNOPSIS
POE comes with its own event loop, which is based on select() and written entirely in Perl. To use it, simply:
use POE;
POE can adapt itself to work with other event loops and I/O multiplex systems. Currently it adapts to Gtk, Tk, Event.pm, or IO::Poll when one of those modules is used before POE::Kernel.
use Gtk; # Or Tk, Event, or IO::Poll;
use POE;
or
use POE qw(Loop::Gtk);
or
use POE::Kernel { loop => "Gtk" };
use POE::Session;
Methods to manage the process global Kernel instance:
# Retrieve the kernels unique identifier.
$kernel_id = $kernel->ID;
# Run the event loop, only returning when it has no more sessions to
# dispatch events to. Supports two forms.
$poe_kernel->run();
POE::Kernel->run();
FIFO event methods:
# Post an event to an arbitrary session.
$kernel->post( $session, $event, @event_args );
# Post an event back to the current session.
$kernel->yield( $event, @event_args );
# Call an event handler synchronously. Bypasses POEs event queue
# and returns the handlers return value.
$handler_result = $kernel->call( $session, $event, @event_args );
Original alarm and delay methods:
# Post an event which will be delivered at a given Unix epoch time.
# This clears previous timed events with the same state name.
$kernel->alarm( $event, $epoch_time, @event_args );
# Post an additional alarm, leaving existing ones in the queue.
$kernel->alarm_add( $event, $epoch_time, @event_args );
# Post an event which will be delivered after a delay, specified in
# seconds hence. This clears previous timed events with the same
# name.
$kernel->delay( $event, $seconds, @event_args );
# Post an additional delay, leaving existing ones in the queue.
$kernel->delay_add( $event, $seconds, @event_args );
<<lessSYNOPSIS
POE comes with its own event loop, which is based on select() and written entirely in Perl. To use it, simply:
use POE;
POE can adapt itself to work with other event loops and I/O multiplex systems. Currently it adapts to Gtk, Tk, Event.pm, or IO::Poll when one of those modules is used before POE::Kernel.
use Gtk; # Or Tk, Event, or IO::Poll;
use POE;
or
use POE qw(Loop::Gtk);
or
use POE::Kernel { loop => "Gtk" };
use POE::Session;
Methods to manage the process global Kernel instance:
# Retrieve the kernels unique identifier.
$kernel_id = $kernel->ID;
# Run the event loop, only returning when it has no more sessions to
# dispatch events to. Supports two forms.
$poe_kernel->run();
POE::Kernel->run();
FIFO event methods:
# Post an event to an arbitrary session.
$kernel->post( $session, $event, @event_args );
# Post an event back to the current session.
$kernel->yield( $event, @event_args );
# Call an event handler synchronously. Bypasses POEs event queue
# and returns the handlers return value.
$handler_result = $kernel->call( $session, $event, @event_args );
Original alarm and delay methods:
# Post an event which will be delivered at a given Unix epoch time.
# This clears previous timed events with the same state name.
$kernel->alarm( $event, $epoch_time, @event_args );
# Post an additional alarm, leaving existing ones in the queue.
$kernel->alarm_add( $event, $epoch_time, @event_args );
# Post an event which will be delivered after a delay, specified in
# seconds hence. This clears previous timed events with the same
# name.
$kernel->delay( $event, $seconds, @event_args );
# Post an additional delay, leaving existing ones in the queue.
$kernel->delay_add( $event, $seconds, @event_args );
Download (0.032MB)
Added: 2006-07-12 License: Perl Artistic License Price:
1200 downloads
OpenSSH SecurID patch 1.3.2
OpenSSH SecurID is a patch that integrates SecurID authentication services directly into the OpenSSH daemon. more>>
OpenSSH SecurID is a patch that integrates SecurID authentication services directly into the OpenSSH daemon. It allows users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
This is how it works:
0) apply patch ;-) You must use GNU patch (get it from ftp.gnu.org, it free.)
1) copy ACE headers (in SecurID inc directory) into either a standard include place (like /usr/local/include) or into the openssh source tree or add the --with-cflags=-I/path/to/ace/inc (where the include files are located)
2) copy the libaceclnt.a (for ACE 5.X) or sdiclient.a (for ACE<<less
This is how it works:
0) apply patch ;-) You must use GNU patch (get it from ftp.gnu.org, it free.)
1) copy ACE headers (in SecurID inc directory) into either a standard include place (like /usr/local/include) or into the openssh source tree or add the --with-cflags=-I/path/to/ace/inc (where the include files are located)
2) copy the libaceclnt.a (for ACE 5.X) or sdiclient.a (for ACE<<less
Download (0.047MB)
Added: 2006-07-13 License: BSD License Price:
702 downloads
Linux Kernel 2.6.10
The latest stable version of the Linux kernel is 2.6.10 more>>
Linux is a clone of the operating system Unix, written from scratch by Linus Torvalds with assistance from a loosely-knit team of hackers across the Net. It aims towards POSIX and Single UNIX Specification compliance.
It has all the features you would expect in a modern fully-fledged Unix, including true multitasking, virtual memory, shared libraries, demand loading, shared copy-on-write executables, proper memory management, and TCP/IP networking.
Linux was first developed for 32-bit x86-based PCs (386 or higher). These days it also runs on (at least) the Compaq Alpha AXP, Sun SPARC and UltraSPARC, Motorola 68000, PowerPC, PowerPC64, ARM, Hitachi SuperH, IBM S/390, MIPS, HP PA-RISC, Intel IA-64, DEC VAX, AMD x86-64 and CRIS architectures.
Linux is easily portable to most general-purpose 32- or 64-bit architectures as long as they have a paged memory management unit (PMMU) and a port of the GNU C compiler (gcc).
Linux has also been ported to a number of architectures without a PMMU, although functionality is then obviously somewhat limited. See the uClinux project for more info.
Enhancements:
- Add flags to frequency -> auto/fixed
- Document (struct iw_quality *)->updated, add new flags (INVALID)
- Wireless Event capability in struct iw_range
- Add support for relative TxPower (yick !)
- Change the way we get to spy_data method for added safety and hostap
- Remove spy #ifdef, they are always on -> cleaner code
- Allow any size GET request if user specifies length > max
- Start migrating get_wireless_stats to struct iw_handler_def
- Based on patch from Pavel Roskin :
- Fix kernel data leak to user space in private handler handling
For the full list , please see the Changelog
<<lessIt has all the features you would expect in a modern fully-fledged Unix, including true multitasking, virtual memory, shared libraries, demand loading, shared copy-on-write executables, proper memory management, and TCP/IP networking.
Linux was first developed for 32-bit x86-based PCs (386 or higher). These days it also runs on (at least) the Compaq Alpha AXP, Sun SPARC and UltraSPARC, Motorola 68000, PowerPC, PowerPC64, ARM, Hitachi SuperH, IBM S/390, MIPS, HP PA-RISC, Intel IA-64, DEC VAX, AMD x86-64 and CRIS architectures.
Linux is easily portable to most general-purpose 32- or 64-bit architectures as long as they have a paged memory management unit (PMMU) and a port of the GNU C compiler (gcc).
Linux has also been ported to a number of architectures without a PMMU, although functionality is then obviously somewhat limited. See the uClinux project for more info.
Enhancements:
- Add flags to frequency -> auto/fixed
- Document (struct iw_quality *)->updated, add new flags (INVALID)
- Wireless Event capability in struct iw_range
- Add support for relative TxPower (yick !)
- Change the way we get to spy_data method for added safety and hostap
- Remove spy #ifdef, they are always on -> cleaner code
- Allow any size GET request if user specifies length > max
- Start migrating get_wireless_stats to struct iw_handler_def
- Based on patch from Pavel Roskin :
- Fix kernel data leak to user space in private handler handling
For the full list , please see the Changelog
Download (43.6MB)
Added: 2009-04-06 License: GPL Price:
202 downloads
Install Kernel 0.9.3
Install Kernel is an advanced script which installs the kernel and sets up LILO or GRUB. more>>
Install Kernel interfaces with the Linux operating system by running a series of functions or groups of commands that automate the compiling or recompiling and installation process.
Install Kernel project consists of three groups of functions: building the kernel and moving files, checking dependencies, and editing the boot loader configuration file. Grouping all of the functions in these three groups makes maintaining and altering the script much easier.
Install Kernel can also be considered a program, because a program does checking and makes choices accordingly. A script is usually a file, which contains a certain number of commands with no logic in mind. Therefore, while ik is technically a script, it can also be called a program.
Dependency checks are to make sure the current system configuration and settings are properly setup before proceeding with the kernel build. There are seven dependency checks, they are: a root check, space check, link check, boot check, boot loader check, configuration check, and a module check.
First, the root check makes sure the user is a super user; which means they are capable of editing important system files only accessible to the root account. The space check makes sure there is at least 200 megabytes available.
The kernel source these days is around 150 megabytes just for the source code. When one compiles the kernel, it may increase the size to 50 megabytes or more. Therefore, ik
checks for at least 200MB available in order to successfully compile the kernel without running out of space. Next, it is not required, but it is standard to have a symbolic link of /usr/src/linux pointing to /usr/src/linux-x.y.z.
The fourth check makes sure the user has a /boot directory, this is where the Linux kernel files will be installed to. The fifth check determines the bootloader that will be used. There are two main boot loaders in Linux. LILO and GRUB are the two most popular for booting the operating system.
This check accurately finds whether the kernel was booted from either LILO or GRUB by checking which bootloader was used last. It then tells the rest of the script to edit the correct one accordingly. The sixth configuration check is to make sure users have created a proper kernel configuration file, which is used in the process of building the Linux kernel.
The final check is a module check, if modules are turned off, the script will determine this and alter the installation process to install with no module support. The main idea behind the depdency checks is to make sure the user cannot damage his or her system if they do not do something right.
The installation process also contains seven functions. The installation process is usually several commands. However, because of the differences that can occur in a users configuration file, each part of the building process must be checked and the building process may need to be altered.
The first function makes sure the dependencies are setup correctly for all files in the kernel source tree. The second function deletes stale object files and or old kernel files. Next, the third function is the kernel build function; this function runs a command to build the Linux kernel. Next, functions four and five make and install modules if the user had specified module support in his or her kernel configuration file.
The sixth function moves the Linux kernel and its System dependency map to the boot partition. The last function of the build process sets up module dependencies for the new kernel if modules were defined. The installation process also includes a small error check for each part of the kernel build process.
If any part of the kernel build process fails; the script will abort, not modifying any boot loader configuration files. This is important; because if it did not abort, it may alter the boot loader configuration files, thus rendering the system unbootable. It is important to support every Linux configuration possible because of the wide use of this script.
The boot loader configuration and setup process is probably the most important aspect of installing a new kernel. An improper boot loader configuration may leave one with system that does not boot; or simply does not boot the new kernel.
It is also important, as some systems may have two or more boot loaders installed. There are four functions defined for this process. The first function uses the boot loader, which was defined during the configuration checks. The second function defines where the LILO or GRUB configuration files are located.
Next, depending on which boot loader is found, either LILO or GRUB configuration files are edited automatically by sed. Sed is a stream editor, which edits a file with no user intervention. If user intervention were required, the user would have to be present between certain parts of the kernel installation. With ik, it makes efficient use of a users time because only one command needs to be entered to complete the entire installation and setup process.
Install Kernel is a useful tool for those who are new to Linux, rebuild their kernel often, or value their time. It reduces the commands for installing the kernel from about thirteen to one. Users new to Linux may find this attractive.
This is because the entire process is automated; and if something is not correct, in most cases ik will notify the user what is incorrect, and how to fix the error. On the other side, for experienced users who do not wish to spend valuable time installing a new kernel, this is also very handy. Install Kernel is efficient by requiring no user intervention and reducing time spent on kernel installs, and effective by giving new to Linux the option for an easy kernel upgrade.
Enhancements:
- Updated to work with the newer version of coreutils for head and tail.
- The MAKE_JOBS directive has been removed in favor of make -j2 to prevent make from spawning hundreds of jobs if /proc/cpuinfo did not exist.
<<lessInstall Kernel project consists of three groups of functions: building the kernel and moving files, checking dependencies, and editing the boot loader configuration file. Grouping all of the functions in these three groups makes maintaining and altering the script much easier.
Install Kernel can also be considered a program, because a program does checking and makes choices accordingly. A script is usually a file, which contains a certain number of commands with no logic in mind. Therefore, while ik is technically a script, it can also be called a program.
Dependency checks are to make sure the current system configuration and settings are properly setup before proceeding with the kernel build. There are seven dependency checks, they are: a root check, space check, link check, boot check, boot loader check, configuration check, and a module check.
First, the root check makes sure the user is a super user; which means they are capable of editing important system files only accessible to the root account. The space check makes sure there is at least 200 megabytes available.
The kernel source these days is around 150 megabytes just for the source code. When one compiles the kernel, it may increase the size to 50 megabytes or more. Therefore, ik
checks for at least 200MB available in order to successfully compile the kernel without running out of space. Next, it is not required, but it is standard to have a symbolic link of /usr/src/linux pointing to /usr/src/linux-x.y.z.
The fourth check makes sure the user has a /boot directory, this is where the Linux kernel files will be installed to. The fifth check determines the bootloader that will be used. There are two main boot loaders in Linux. LILO and GRUB are the two most popular for booting the operating system.
This check accurately finds whether the kernel was booted from either LILO or GRUB by checking which bootloader was used last. It then tells the rest of the script to edit the correct one accordingly. The sixth configuration check is to make sure users have created a proper kernel configuration file, which is used in the process of building the Linux kernel.
The final check is a module check, if modules are turned off, the script will determine this and alter the installation process to install with no module support. The main idea behind the depdency checks is to make sure the user cannot damage his or her system if they do not do something right.
The installation process also contains seven functions. The installation process is usually several commands. However, because of the differences that can occur in a users configuration file, each part of the building process must be checked and the building process may need to be altered.
The first function makes sure the dependencies are setup correctly for all files in the kernel source tree. The second function deletes stale object files and or old kernel files. Next, the third function is the kernel build function; this function runs a command to build the Linux kernel. Next, functions four and five make and install modules if the user had specified module support in his or her kernel configuration file.
The sixth function moves the Linux kernel and its System dependency map to the boot partition. The last function of the build process sets up module dependencies for the new kernel if modules were defined. The installation process also includes a small error check for each part of the kernel build process.
If any part of the kernel build process fails; the script will abort, not modifying any boot loader configuration files. This is important; because if it did not abort, it may alter the boot loader configuration files, thus rendering the system unbootable. It is important to support every Linux configuration possible because of the wide use of this script.
The boot loader configuration and setup process is probably the most important aspect of installing a new kernel. An improper boot loader configuration may leave one with system that does not boot; or simply does not boot the new kernel.
It is also important, as some systems may have two or more boot loaders installed. There are four functions defined for this process. The first function uses the boot loader, which was defined during the configuration checks. The second function defines where the LILO or GRUB configuration files are located.
Next, depending on which boot loader is found, either LILO or GRUB configuration files are edited automatically by sed. Sed is a stream editor, which edits a file with no user intervention. If user intervention were required, the user would have to be present between certain parts of the kernel installation. With ik, it makes efficient use of a users time because only one command needs to be entered to complete the entire installation and setup process.
Install Kernel is a useful tool for those who are new to Linux, rebuild their kernel often, or value their time. It reduces the commands for installing the kernel from about thirteen to one. Users new to Linux may find this attractive.
This is because the entire process is automated; and if something is not correct, in most cases ik will notify the user what is incorrect, and how to fix the error. On the other side, for experienced users who do not wish to spend valuable time installing a new kernel, this is also very handy. Install Kernel is efficient by requiring no user intervention and reducing time spent on kernel installs, and effective by giving new to Linux the option for an easy kernel upgrade.
Enhancements:
- Updated to work with the newer version of coreutils for head and tail.
- The MAKE_JOBS directive has been removed in favor of make -j2 to prevent make from spawning hundreds of jobs if /proc/cpuinfo did not exist.
Download (0.004MB)
Added: 2006-05-24 License: GPL (GNU General Public License) Price:
1249 downloads
Linux Kernel Monitor 0.3 Alpha
Linux Kernel Monitor is a tool for monitoring and managing linuxs kernel. more>>
Linux Kernel Monitor is a tool for monitoring and managing linuxs kernel. It has been developed for GNOME, using Glib and Gtk libraries in C language.
lkmonitor tries to offer detailed information of the characteristics of the system, as type of cpu, state of the memory or the file system registered in kernel.
lkmonitor is an open source project with information about the source code and software architecture to make easy the development of new characteristics.
Enhancements:
- IO information, kernel information, networking info, processes specific information, filesystems, modules, etc.
<<lesslkmonitor tries to offer detailed information of the characteristics of the system, as type of cpu, state of the memory or the file system registered in kernel.
lkmonitor is an open source project with information about the source code and software architecture to make easy the development of new characteristics.
Enhancements:
- IO information, kernel information, networking info, processes specific information, filesystems, modules, etc.
Download (0.084MB)
Added: 2007-07-30 License: GPL (GNU General Public License) Price:
816 downloads
Unified Qmail Patch 2004_05_02
Unified Qmail Patch provides a concatenation of various patches. more>>
Unified Qmail Patch provides a concatenation of various patches.
Unified Qmail Patch is a concatenation of various patches for the qmail MTA. It supports SMTP AUTH after STARTTLS, Maildir++, regexp support in badmailfrom, and lots of features for high-end production servers.
Main features:
- Maildir++
- TLS encryption
- SMTP AUTH + SMTP AUTH close
- regexps in badmailfrom and support for badmailto
- external todo
- big remote concurrency patch
- external queue manager
- oversized dns responses
- reverse dns check
- tarpitting
- ESMTP size check from Gentoo
- tab bug fix in .qmail files
- linux link sync
- errno patch (compiles with gcc 3.x too)
- auth only after TLS patch from Gentoo
- Maildir quota fix patch from Gentoo
- qregex memleak fix patch from Gentoo
- David Phillips sendmail flagf patch
- Russ Nelsons QMTP patch for qmail-remote
- Jay Austads random qmqp pickup
- Alin-Adrian Antons integer overflow fix in qmail-smtpd.c
- Added support for SMTP throttling, using relayd
- Added my own patch, that checks whether the mail from value is different from the username used for SMTP AUTH, thus preventing source address spoofing. Useful for ISPs that only relay mails from authenticated users.
- The mail from verification is now configurable through a knob defined in /var/qmail/control/spoofcheck or in the environment variable $SPOOFCHECK
- It seems that in previous versions I accidentally ommited the support for a big todo, so heres a patch that finally supports it. My apologies to all :(
<<lessUnified Qmail Patch is a concatenation of various patches for the qmail MTA. It supports SMTP AUTH after STARTTLS, Maildir++, regexp support in badmailfrom, and lots of features for high-end production servers.
Main features:
- Maildir++
- TLS encryption
- SMTP AUTH + SMTP AUTH close
- regexps in badmailfrom and support for badmailto
- external todo
- big remote concurrency patch
- external queue manager
- oversized dns responses
- reverse dns check
- tarpitting
- ESMTP size check from Gentoo
- tab bug fix in .qmail files
- linux link sync
- errno patch (compiles with gcc 3.x too)
- auth only after TLS patch from Gentoo
- Maildir quota fix patch from Gentoo
- qregex memleak fix patch from Gentoo
- David Phillips sendmail flagf patch
- Russ Nelsons QMTP patch for qmail-remote
- Jay Austads random qmqp pickup
- Alin-Adrian Antons integer overflow fix in qmail-smtpd.c
- Added support for SMTP throttling, using relayd
- Added my own patch, that checks whether the mail from value is different from the username used for SMTP AUTH, thus preventing source address spoofing. Useful for ISPs that only relay mails from authenticated users.
- The mail from verification is now configurable through a knob defined in /var/qmail/control/spoofcheck or in the environment variable $SPOOFCHECK
- It seems that in previous versions I accidentally ommited the support for a big todo, so heres a patch that finally supports it. My apologies to all :(
Download (0.16MB)
Added: 2007-02-23 License: Freeware Price:
974 downloads
Kernel Configuration Comparison 0.2
Kernel Configuration Comparison (kccmp) provides a GUI for comparing two Linux kernel .config files. more>>
Kernel Configuration Comparison (kccmp) provides a GUI for comparing two Linux kernel ".config" files.
It shows configuration variables with different values in a tabular format. It also shows configuration variables found in only one of the input configuration files.
Building:
kccmp by default requires Qt 3.x. However, by changing one line in kccmp.pro you can build against Qt 4.x. Note that the Qt 4.x build requilres libboost_regex as well.
The standard build is as easy as:
example:
% qmake
% make
Usage
% kccmp /path/to/first/.config path/to/second/.config
example:
% kccmp /usr/src/linux/.config /usr/src/linux/.config.old
Enhancements:
- This release was ported to Qt 3.x.
- The requirement for libboost_regex was removed.
- Building with either Qt 4.x or Qt 3.x is now supported.
<<lessIt shows configuration variables with different values in a tabular format. It also shows configuration variables found in only one of the input configuration files.
Building:
kccmp by default requires Qt 3.x. However, by changing one line in kccmp.pro you can build against Qt 4.x. Note that the Qt 4.x build requilres libboost_regex as well.
The standard build is as easy as:
example:
% qmake
% make
Usage
% kccmp /path/to/first/.config path/to/second/.config
example:
% kccmp /usr/src/linux/.config /usr/src/linux/.config.old
Enhancements:
- This release was ported to Qt 3.x.
- The requirement for libboost_regex was removed.
- Building with either Qt 4.x or Qt 3.x is now supported.
Download (0.012MB)
Added: 2005-10-03 License: GPL (GNU General Public License) Price:
1482 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above kernel patch search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
