1 |
commit: 695fa37eb19a8b012b4a6ecabc176b7281028f9a |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Wed Jun 15 16:43:45 2011 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Wed Jun 15 16:43:45 2011 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=695fa37e |
7 |
|
8 |
sys-kernel/hardened-sources: testing patchset 20110613 |
9 |
|
10 |
(Portage version: 2.1.9.42/git/Linux x86_64, signed Manifest commit with key 0xD0455535) |
11 |
|
12 |
--- |
13 |
sys-kernel/hardened-sources/ChangeLog | 6 +++ |
14 |
sys-kernel/hardened-sources/Manifest | 20 +++++++-- |
15 |
.../hardened-sources-2.6.32-r51.ebuild | 48 ++++++++++++++++++++ |
16 |
.../hardened-sources-2.6.39-r2.ebuild | 48 ++++++++++++++++++++ |
17 |
4 files changed, 118 insertions(+), 4 deletions(-) |
18 |
|
19 |
diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog |
20 |
index 9a19a21..4688b8c 100644 |
21 |
--- a/sys-kernel/hardened-sources/ChangeLog |
22 |
+++ b/sys-kernel/hardened-sources/ChangeLog |
23 |
@@ -1,5 +1,11 @@ |
24 |
|
25 |
|
26 |
+*hardened-sources-2.6.39-r2 (15 Jun 2011) |
27 |
+ |
28 |
+ 15 Jun 2011; Anthony G. Basile <blueness@g.o> |
29 |
+ +hardened-sources-2.6.32-r51.ebuild, +hardened-sources-2.6.39-r2.ebuild: |
30 |
+ testing patchset 20110613 |
31 |
+ |
32 |
11 Jun 2011; Anthony G. Basile <blueness@g.o> |
33 |
-hardened-sources-2.6.32-r51.ebuild, -hardened-sources-2.6.39-r1.ebuild: |
34 |
moved to tree |
35 |
|
36 |
diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest |
37 |
index f85f12a..609baa5 100644 |
38 |
--- a/sys-kernel/hardened-sources/Manifest |
39 |
+++ b/sys-kernel/hardened-sources/Manifest |
40 |
@@ -1,12 +1,24 @@ |
41 |
-----BEGIN PGP SIGNED MESSAGE----- |
42 |
Hash: SHA256 |
43 |
|
44 |
-MISC ChangeLog 15756 RMD160 795d1566e997398c5fdcd8cac20a2358272cd244 SHA1 7ca9af8695691594289aa15da1fcf6c69ce8d792 SHA256 e18873ab7806c1aa3a9ed9e6e16eeafd03dcef3f4b2afe93bd619da86833b30c |
45 |
+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d |
46 |
+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 |
47 |
+DIST genpatches-2.6.32-38.base.tar.bz2 926828 RMD160 e7223f2252af7936613c0ce388ec2ee0b3f1b040 SHA1 b76991a3330a57a6235fb6de3dccd2d583947898 SHA256 d2a9fd274a168855aafc35181977e6dc5d2e618b5c9f69264f028c56aa6281f3 |
48 |
+DIST genpatches-2.6.32-38.extras.tar.bz2 24934 RMD160 e3e1d60fb45a3e3c818ddda36b9180d4fc46679e SHA1 d16a34dfa35d163ea4042058b3865c389f3802e9 SHA256 50b70c76461aa52f7f2ad88175e7f08eb555f7f1dfd274759ec0c2a9748bde5e |
49 |
+DIST genpatches-2.6.39-2.base.tar.bz2 57467 RMD160 c20f1d07ea619bbd1d9edab6418507127f8ae4c5 SHA1 d32a62dc405c0fbc002b7d1946959a036c5a2217 SHA256 0cc7c4b536be7eaba3a3f1875132570d5ccc0ea1317ff9891544c492330350e6 |
50 |
+DIST genpatches-2.6.39-2.extras.tar.bz2 15672 RMD160 e94ef6536034ccb5e8cf7d5b0282c2274f33cc0d SHA1 68edf710278d5c0454f361b140663d9eb4ea6998 SHA256 8cd7268fc0329278e0fd00fdde9e928c353e591c5147fb4eed50a80fefbf87fa |
51 |
+DIST hardened-patches-2.6.32-55.extras.tar.bz2 445719 RMD160 0587512624177e31df1e6ebb9a976e84508a6113 SHA1 571d99ceb11236fd641de3c9bfbbf5ff72c1ec70 SHA256 b3f35d2dd645b91735d2bd5a398e9394e16799bba8070ce45188818436ae6fb4 |
52 |
+DIST hardened-patches-2.6.39-3.extras.tar.bz2 514344 RMD160 af171b3bea782102e7b63873e6273049e92c0091 SHA1 2f5968b68de927619384629fc442391e60c20ebf SHA256 3f1d55129505722336d02158c2161b135d7f0bde619528b84454a1870adf28a8 |
53 |
+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e |
54 |
+DIST linux-2.6.39.tar.bz2 76096559 RMD160 feddc516bc15e78f12f611ff184d38baa4eac4ee SHA1 68518112821e55f4ac1df64f2e0e809cedfcc5ef SHA256 584d17f2a3ee18a9501d7ff36907639e538cfdba4529978b8550c461d45c61f6 |
55 |
+EBUILD hardened-sources-2.6.32-r51.ebuild 1758 RMD160 116e7b99d7f39fb48405c3c88bd2abf2723e484c SHA1 19b00125f00a5ab1ac355a6f8658027ac3fd495e SHA256 4ef7e371190c96bb17087d08dc09226d456022b17ed2ea1fdf073d443bdfb4b3 |
56 |
+EBUILD hardened-sources-2.6.39-r2.ebuild 1755 RMD160 494cbebcf2ccbcc35d877924fccc55f0688f9dc4 SHA1 73421cb961c3c6ebda7ac56e03385da1c9d019de SHA256 1c7e8c89574a83693081792713ad0ec9164714c24414d27b1ba438325e90c7c6 |
57 |
+MISC ChangeLog 15958 RMD160 b7f6614d721ff87df82e25ff148e3fc7a06f904e SHA1 ea46f4d68d74630b65d6d54c31eaf184460a7711 SHA256 c0bb1f5cf6de8739e8d0ef36fbb3d127bf8a89bb06a22400330b79cd3bb0e639 |
58 |
MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SHA1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8fcfd351f2f39ed63da68af3a5751fc2058d0d03813 |
59 |
-----BEGIN PGP SIGNATURE----- |
60 |
Version: GnuPG v2.0.17 (GNU/Linux) |
61 |
|
62 |
-iEYEAREIAAYFAk3zSXEACgkQl5yvQNBFVTUBYgCfZ+Vud7ZdeoKIyidiqIfeoAPC |
63 |
-/PwAn213v3QdSVh1clgqSbK024CuBu4N |
64 |
-=HQqX |
65 |
+iEYEAREIAAYFAk344UEACgkQl5yvQNBFVTXwRACfcIiEshTQPxP1kD3yIJHsm9Cm |
66 |
+xIoAn3z3PWwSiRcSU2OeMGkXgSwkVrPP |
67 |
+=c8f2 |
68 |
-----END PGP SIGNATURE----- |
69 |
|
70 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebuild |
71 |
new file mode 100644 |
72 |
index 0000000..2aa2238 |
73 |
--- /dev/null |
74 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebuild |
75 |
@@ -0,0 +1,48 @@ |
76 |
+# Copyright 1999-2011 Gentoo Foundation |
77 |
+# Distributed under the terms of the GNU General Public License v2 |
78 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebuild,v 1.1 2011/06/11 10:42:22 blueness Exp $ |
79 |
+ |
80 |
+EAPI="4" |
81 |
+ |
82 |
+ETYPE="sources" |
83 |
+K_WANT_GENPATCHES="base extras" |
84 |
+K_GENPATCHES_VER="38" |
85 |
+ |
86 |
+inherit kernel-2 |
87 |
+detect_version |
88 |
+ |
89 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-55" |
90 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
91 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
92 |
+ |
93 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
94 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
95 |
+ |
96 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
97 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
98 |
+IUSE="" |
99 |
+ |
100 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
101 |
+ |
102 |
+pkg_postinst() { |
103 |
+ kernel-2_pkg_postinst |
104 |
+ |
105 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
106 |
+ |
107 |
+ ewarn |
108 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
109 |
+ ewarn "[server], [workstation], and [virtualization]." |
110 |
+ ewarn |
111 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
112 |
+ ewarn "should read the help associated with the level. Users importing a" |
113 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
114 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
115 |
+ ewarn |
116 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
117 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
118 |
+ ewarn "It is strongly recommended that the following command is issued" |
119 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
120 |
+ ewarn |
121 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
122 |
+ ewarn |
123 |
+} |
124 |
|
125 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.39-r2.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r2.ebuild |
126 |
new file mode 100644 |
127 |
index 0000000..1f7218e |
128 |
--- /dev/null |
129 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r2.ebuild |
130 |
@@ -0,0 +1,48 @@ |
131 |
+# Copyright 1999-2011 Gentoo Foundation |
132 |
+# Distributed under the terms of the GNU General Public License v2 |
133 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.39-r1.ebuild,v 1.1 2011/06/11 10:44:26 blueness Exp $ |
134 |
+ |
135 |
+EAPI="4" |
136 |
+ |
137 |
+ETYPE="sources" |
138 |
+K_WANT_GENPATCHES="base extras" |
139 |
+K_GENPATCHES_VER="2" |
140 |
+ |
141 |
+inherit kernel-2 |
142 |
+detect_version |
143 |
+ |
144 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-3" |
145 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
146 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
147 |
+ |
148 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
149 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
150 |
+ |
151 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
152 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
153 |
+IUSE="" |
154 |
+ |
155 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
156 |
+ |
157 |
+pkg_postinst() { |
158 |
+ kernel-2_pkg_postinst |
159 |
+ |
160 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
161 |
+ |
162 |
+ ewarn |
163 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
164 |
+ ewarn "[server], [workstation], and [virtualization]." |
165 |
+ ewarn |
166 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
167 |
+ ewarn "should read the help associated with the level. Users importing a" |
168 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
169 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
170 |
+ ewarn |
171 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
172 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
173 |
+ ewarn "It is strongly recommended that the following command is issued" |
174 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
175 |
+ ewarn |
176 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
177 |
+ ewarn |
178 |
+} |