lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-Id: <0e866eb6-8080-1c2b-9759-b02b2bd84ed9@au1.ibm.com>
Date:   Thu, 9 Feb 2017 11:25:15 +1100
From:   Andrew Donnellan <andrew.donnellan@....ibm.com>
To:     Lukasz Majewski <lukma@...x.de>, linux-kernel@...r.kernel.org
Subject: Re: Build Linux kernel to have comparable zImages

On 08/02/17 20:20, Lukasz Majewski wrote:
> Dear All,
>
> Maybe somebody can point me to solution to the following problem:
>
> Problem:
>
> I do want to be able to compare (with e.g. md5sum, sha1) two linux
> zImages. The problem is that Linux compiles in current build time into
> the binary. Hence, even two identical builds will have different hash.
>
> Why:
>
> I do want to do some considerable Kconfig rework and avoid situation
> where some option would be left not enabled.

You might want to look at 
https://github.com/hardenedlinux/grsecurity-reproducible-build, I'm not 
familiar with it at all but it seems to be somewhat in the direction 
you're after.

-- 
Andrew Donnellan              OzLabs, ADL Canberra
andrew.donnellan@....ibm.com  IBM Australia Limited

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ