Release goals for 22.XX - procd-seccomp and procd-ujail

Alberto Bursi bobafetthotmail at gmail.com
Thu Oct 7 01:30:42 PDT 2021



On 07/10/21 08:51, Paul Spooren wrote:
> 
> On 9/29/21 10:28, Hauke Mehrtens wrote:
>> Hi,
>>
>> The OpenWrt 21.02 release is done and we should plan the next release.
>> We already talked about this in the last meeting, see 
>> https://openwrt.org/meetings/20210920
>>
>> To monitor the current state I created this wiki page based on the 
>> wiki page from the previous release:
>> https://openwrt.org/docs/guide-developer/releases/goals/22.xx
>>
>> I would like to get an overview about the "big" changes, if an 
>> additional board is added or something is improved we do not need to 
>> plan it.
>>
>> I would like to get the following:
>>
> --- %< ----
>>
>> Is there anything else which is blocking, should be added or needs a 
>> discussion?
>>
> I'd like to se procd-seccomp and procd-ujail land per default on 
> !SMALL_FLASH targets. The two patches have been in Daniels[1] staging 
> tree since forever.
> 

+1 to this, it's part of the effort to run processes with the lowest 
possible privileges (i.e. not run everything as root) and system 
hardening effort that has been going on for a while.

I've been using these packages in x86 targets for months btw.

-Alberto



More information about the openwrt-devel mailing list