[gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ - gentoo-commits

From:	"Anthony G. Basile" <blueness@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/
Date:	Sun, 04 Mar 2012 14:54:34
Message-Id:	`1330872855.11cef82e4d8e3c1efb768a39a0560d7e1ab8fe74.blueness@gentoo`

1

commit:     11cef82e4d8e3c1efb768a39a0560d7e1ab8fe74

2

Author:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>

3

AuthorDate: Sun Mar  4 14:54:15 2012 +0000

4

Commit:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>

5

CommitDate: Sun Mar  4 14:54:15 2012 +0000

6

URL:        http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=11cef82e

7

8

sys-kernel/hardened-sources: testing patchset 20120302

9

10

---

11

 sys-kernel/hardened-sources/ChangeLog              |    7 +++

12

 sys-kernel/hardened-sources/Manifest               |   26 ++++++----

13

 .../hardened-sources-2.6.32-r93.ebuild             |   52 ++++++++++++++++++++

14

 .../hardened-sources/hardened-sources-3.2.9.ebuild |   51 +++++++++++++++++++

15

 4 files changed, 125 insertions(+), 11 deletions(-)

16

17

diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog

18

index 7c5b8f2..cda9dbb 100644

19

--- a/sys-kernel/hardened-sources/ChangeLog

20

+++ b/sys-kernel/hardened-sources/ChangeLog

21

@@ -1,5 +1,12 @@

22

23

24

+*hardened-sources-3.2.9 (04 Mar 2012)

25

+*hardened-sources-2.6.32-r93 (04 Mar 2012)

26

+

27

+  04 Mar 2012; Anthony G. Basile <blueness@g.o>

28

+  +hardened-sources-2.6.32-r93.ebuild, +hardened-sources-3.2.9.ebuild:

29

+  Testing patchset 20120302

30

+

31

   25 Feb 2012; Anthony G. Basile <blueness@g.o>

32

   -hardened-sources-2.6.32-r92.ebuild, -hardened-sources-3.2.7.ebuild:

33

   moved to the tree

34

35

diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest

36

index 19f4d5c..024d967 100644

37

--- a/sys-kernel/hardened-sources/Manifest

38

+++ b/sys-kernel/hardened-sources/Manifest

39

@@ -1,12 +1,16 @@

40

------BEGIN PGP SIGNED MESSAGE-----

41

-Hash: SHA256

42

-

43

-MISC ChangeLog 15940 RMD160 7bd0ce8c05bbf374839c582bcd5bfe411424ebd7 SHA1 8c2596ad1017802dfe18626acbbbcbc062332c57 SHA256 af3f162532fba7772fb34be3fcc1a3c4be1997c4da81dbae69b016d7542cd659

44

+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d

45

+DIST deblob-3.2 107602 RMD160 56f1dfe4f0254c802b49ea5220c4f67e56649852 SHA1 83421184d88d02e24de2adbc5debfb03454a7f4b SHA256 5db88405af6d51a77d84354afc3b2bdf673b1a5dcff37bb8db4ccbd12d91db20

46

+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3

47

+DIST deblob-check-3.2 423268 RMD160 8cb0c1b4a289db94543396c4445c4c7a35d2ba70 SHA1 01e50f824a577d15749f24643fdd136180342808 SHA256 9e67dd0885aa8ef356dbc15d487c8dea5a54f74c5b03a5d7946b65ee43f12638

48

+DIST genpatches-2.6.32-48.base.tar.bz2 1033142 RMD160 c42b6a5edbb9965391bbcf6ee40bb79c2080f497 SHA1 95e90447ecd875228121fa32e8cf89eaabde5fa6 SHA256 7438e7b7c0ef32e0c639cf89c4f53a3bc7917ca466b1fcf3931adb65ad05b583

49

+DIST genpatches-2.6.32-48.extras.tar.bz2 24939 RMD160 055706793fb532caeb3d364c5e1bd0ad46aff4b2 SHA1 2a966a4d5f9a718a0d43c25df563d0377154996f SHA256 ee714d14310fd5242ce2e28a8f8e5fda63ba18957960814876506f8754b9d2a0

50

+DIST genpatches-3.2-10.base.tar.bz2 178347 RMD160 691fdbc19146a2b90ca61856f20b4f1125c4985d SHA1 27364c81a14a475e962b271154ffea37be601122 SHA256 f230d4fd3dcd169fa24366a1c4a0f272675529e14d9b8f1154b037250771b4d9

51

+DIST genpatches-3.2-10.extras.tar.bz2 17208 RMD160 8324da51ce71afb0d375f34b0dd05209079bd7a3 SHA1 c2f4e029aebbc0ae82221aa2643de06a2d08cbd8 SHA256 7f60ab18e2965d024b7a36327577bcc771061f2cfac221ed475a6fd6b2ab89c7

52

+DIST hardened-patches-2.6.32-95.extras.tar.bz2 582421 RMD160 86d7ec4c0aedfd0cf4d474bab8b38eede6f408a8 SHA1 e79c3abe1bfbc3fdd1db803b41fed4f204b772ec SHA256 86bccb8047eac3c7cf50d3242fc8f516a2801a7526444c873388b38229f9e41f

53

+DIST hardened-patches-3.2.9-1.extras.tar.bz2 496840 RMD160 c1eca3e66b4bbcb3241559e0becb4638b7ab0383 SHA1 ac296ce1eae37b178334e97fbd0df31bddf02714 SHA256 3fdea0568b5ecc9473cecba3b3f1fcc495f398620de91fd98bbcba84c27dda08

54

+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e

55

+DIST linux-3.2.tar.bz2 78147838 RMD160 15eb022305dfc8b0e1d59e396911fa86eb9c3bdf SHA1 3460afa971049aa79b8f914e1bfd619eedd19f55 SHA256 c881fc2b53cf0da7ca4538aa44623a7de043a41f76fd5d0f51a31f6ed699d463

56

+EBUILD hardened-sources-2.6.32-r93.ebuild 1888 RMD160 b4d5f7c3ea882a120a49fe8908de39b8be9f8f12 SHA1 f783ad5865812c1dda03e27bfca948f956730747 SHA256 a29c8b2c532afd60917ddf26665755fa9d760d45d65eea8b8700ffa625752e1c

57

+EBUILD hardened-sources-3.2.9.ebuild 1882 RMD160 cfe7a74ef5ced247ccab14e9f2b13b5d8c0fd7fe SHA1 990e59dca059d41b3605f3d6fd721aa217ae0e88 SHA256 bcf8a97a6716329d58373a184ad7156be98ddd3e52b5469b36eb06a0c3e099c2

58

+MISC ChangeLog 16177 RMD160 940dc07a29538c0b573cda9b60c1df313948c616 SHA1 e48530d57c208b9b20a913de8ff3e90401da5483 SHA256 a95610ee871b045df64397ed1eb89cc46380cdfa89fe8f21d724dfee74892ff8

59

 MISC metadata.xml 651 RMD160 bd2f856b7c5aea29652610491cd60135e1e9b9f1 SHA1 1741d5fc80ad8f934fa7ad177b4662d1993d8584 SHA256 614ce0d6e8cfcf0b4dbf344b2758f25375afdaadccbfa4f68c3f8f058218f0a6

60

------BEGIN PGP SIGNATURE-----

61

-Version: GnuPG v2.0.17 (GNU/Linux)

62

-

63

-iEYEAREIAAYFAk9JPi8ACgkQl5yvQNBFVTWMgQCfSXdU3ya9ArLf/yF1zQzf2jvm

64

-KGwAnAze+tj8PINlV/ffN/TfsSLqrDkW

65

-=DSkU

66

------END PGP SIGNATURE-----

67

68

diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild

69

new file mode 100644

70

index 0000000..dd5dd38

71

--- /dev/null

72

+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild

73

@@ -0,0 +1,52 @@

74

+# Copyright 1999-2012 Gentoo Foundation

75

+# Distributed under the terms of the GNU General Public License v2

76

+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r92.ebuild,v 1.1 2012/02/25 19:57:31 blueness Exp $

77

+

78

+EAPI="4"

79

+

80

+ETYPE="sources"

81

+K_WANT_GENPATCHES="base extras"

82

+K_GENPATCHES_VER="48"

83

+K_DEBLOB_AVAILABLE="1"

84

+

85

+inherit kernel-2

86

+detect_version

87

+

88

+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-95"

89

+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"

90

+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"

91

+

92

+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"

93

+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"

94

+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"

95

+

96

+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"

97

+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"

98

+IUSE="deblob -xtpax"

99

+

100

+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"

101

+

102

+RDEPEND=">=sys-devel/gcc-4.5"

103

+

104

+pkg_postinst() {

105

+	kernel-2_pkg_postinst

106

+

107

+	local GRADM_COMPAT="sys-apps/gradm-2.9"

108

+

109

+	ewarn

110

+	ewarn "Hardened Gentoo provides three different predefined grsecurity level:"

111

+	ewarn "[server], [workstation], and [virtualization]."

112

+	ewarn

113

+	ewarn "Those who intend to use one of these predefined grsecurity levels"

114

+	ewarn "should read the help associated with the level.  Users importing a"

115

+	ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"

116

+	ewarn "should review their selected grsecurity/PaX options carefully."

117

+	ewarn

118

+	ewarn "Users of grsecurity's RBAC system must ensure they are using"

119

+	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."

120

+	ewarn "It is strongly recommended that the following command is issued"

121

+	ewarn "prior to booting a ${PF} kernel for the first time:"

122

+	ewarn

123

+	ewarn "emerge -na =${GRADM_COMPAT}"

124

+	ewarn

125

+}

126

127

diff --git a/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild

128

new file mode 100644

129

index 0000000..105775b

130

--- /dev/null

131

+++ b/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild

132

@@ -0,0 +1,51 @@

133

+# Copyright 1999-2012 Gentoo Foundation

134

+# Distributed under the terms of the GNU General Public License v2

135

+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.2.7.ebuild,v 1.1 2012/02/25 19:57:31 blueness Exp $

136

+

137

+EAPI="4"

138

+

139

+ETYPE="sources"

140

+K_WANT_GENPATCHES="base extras"

141

+K_GENPATCHES_VER="10"

142

+K_DEBLOB_AVAILABLE="1"

143

+

144

+inherit kernel-2

145

+detect_version

146

+

147

+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-1"

148

+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"

149

+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"

150

+

151

+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"

152

+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"

153

+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"

154

+

155

+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"

156

+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"

157

+IUSE="deblob -xtpax"

158

+

159

+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"

160

+

161

+RDEPEND=">=sys-devel/gcc-4.5"

162

+

163

+pkg_postinst() {

164

+	kernel-2_pkg_postinst

165

+

166

+	local GRADM_COMPAT="sys-apps/gradm-2.9"

167

+

168

+	ewarn

169

+	ewarn "Hardened Gentoo provides three different predefined grsecurity level:"

170

+	ewarn "[server], [workstation], and [virtualization].  Those who intend to"

171

+	ewarn "use one of these predefined grsecurity levels should read the help"

172

+	ewarn "associated with the level.  Because some options require >=gcc-4.5,"

173

+	ewarn "users with more, than one version of gcc installed should use gcc-config"

174

+	ewarn "to select a compatible version."

175

+	ewarn

176

+	ewarn "Users of grsecurity's RBAC system must ensure they are using"

177

+	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."

178

+	ewarn "It is strongly recommended that the following command is issued"

179

+	ewarn "prior to booting a ${PF} kernel for the first time:"

180

+	ewarn

181

+	ewarn "emerge -na =${GRADM_COMPAT}"

182

+	ewarn

183

+}

1	commit: 11cef82e4d8e3c1efb768a39a0560d7e1ab8fe74
2	Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org>
3	AuthorDate: Sun Mar 4 14:54:15 2012 +0000
4	Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org>
5	CommitDate: Sun Mar 4 14:54:15 2012 +0000
6	URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=11cef82e
7
8	sys-kernel/hardened-sources: testing patchset 20120302
9
10	---
11	sys-kernel/hardened-sources/ChangeLog \| 7 +++
12	sys-kernel/hardened-sources/Manifest \| 26 ++++++----
13	.../hardened-sources-2.6.32-r93.ebuild \| 52 ++++++++++++++++++++
14	.../hardened-sources/hardened-sources-3.2.9.ebuild \| 51 +++++++++++++++++++
15	4 files changed, 125 insertions(+), 11 deletions(-)
16
17	diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog
18	index 7c5b8f2..cda9dbb 100644
19	--- a/sys-kernel/hardened-sources/ChangeLog
20	+++ b/sys-kernel/hardened-sources/ChangeLog
21	@@ -1,5 +1,12 @@
22
23
24	+*hardened-sources-3.2.9 (04 Mar 2012)
25	+*hardened-sources-2.6.32-r93 (04 Mar 2012)
26	+
27	+ 04 Mar 2012; Anthony G. Basile <blueness@g.o>
28	+ +hardened-sources-2.6.32-r93.ebuild, +hardened-sources-3.2.9.ebuild:
29	+ Testing patchset 20120302
30	+
31	25 Feb 2012; Anthony G. Basile <blueness@g.o>
32	-hardened-sources-2.6.32-r92.ebuild, -hardened-sources-3.2.7.ebuild:
33	moved to the tree
34
35	diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest
36	index 19f4d5c..024d967 100644
37	--- a/sys-kernel/hardened-sources/Manifest
38	+++ b/sys-kernel/hardened-sources/Manifest
39	@@ -1,12 +1,16 @@
40	------BEGIN PGP SIGNED MESSAGE-----
41	-Hash: SHA256
42	-
43	-MISC ChangeLog 15940 RMD160 7bd0ce8c05bbf374839c582bcd5bfe411424ebd7 SHA1 8c2596ad1017802dfe18626acbbbcbc062332c57 SHA256 af3f162532fba7772fb34be3fcc1a3c4be1997c4da81dbae69b016d7542cd659
44	+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d
45	+DIST deblob-3.2 107602 RMD160 56f1dfe4f0254c802b49ea5220c4f67e56649852 SHA1 83421184d88d02e24de2adbc5debfb03454a7f4b SHA256 5db88405af6d51a77d84354afc3b2bdf673b1a5dcff37bb8db4ccbd12d91db20
46	+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3
47	+DIST deblob-check-3.2 423268 RMD160 8cb0c1b4a289db94543396c4445c4c7a35d2ba70 SHA1 01e50f824a577d15749f24643fdd136180342808 SHA256 9e67dd0885aa8ef356dbc15d487c8dea5a54f74c5b03a5d7946b65ee43f12638
48	+DIST genpatches-2.6.32-48.base.tar.bz2 1033142 RMD160 c42b6a5edbb9965391bbcf6ee40bb79c2080f497 SHA1 95e90447ecd875228121fa32e8cf89eaabde5fa6 SHA256 7438e7b7c0ef32e0c639cf89c4f53a3bc7917ca466b1fcf3931adb65ad05b583
49	+DIST genpatches-2.6.32-48.extras.tar.bz2 24939 RMD160 055706793fb532caeb3d364c5e1bd0ad46aff4b2 SHA1 2a966a4d5f9a718a0d43c25df563d0377154996f SHA256 ee714d14310fd5242ce2e28a8f8e5fda63ba18957960814876506f8754b9d2a0
50	+DIST genpatches-3.2-10.base.tar.bz2 178347 RMD160 691fdbc19146a2b90ca61856f20b4f1125c4985d SHA1 27364c81a14a475e962b271154ffea37be601122 SHA256 f230d4fd3dcd169fa24366a1c4a0f272675529e14d9b8f1154b037250771b4d9
51	+DIST genpatches-3.2-10.extras.tar.bz2 17208 RMD160 8324da51ce71afb0d375f34b0dd05209079bd7a3 SHA1 c2f4e029aebbc0ae82221aa2643de06a2d08cbd8 SHA256 7f60ab18e2965d024b7a36327577bcc771061f2cfac221ed475a6fd6b2ab89c7
52	+DIST hardened-patches-2.6.32-95.extras.tar.bz2 582421 RMD160 86d7ec4c0aedfd0cf4d474bab8b38eede6f408a8 SHA1 e79c3abe1bfbc3fdd1db803b41fed4f204b772ec SHA256 86bccb8047eac3c7cf50d3242fc8f516a2801a7526444c873388b38229f9e41f
53	+DIST hardened-patches-3.2.9-1.extras.tar.bz2 496840 RMD160 c1eca3e66b4bbcb3241559e0becb4638b7ab0383 SHA1 ac296ce1eae37b178334e97fbd0df31bddf02714 SHA256 3fdea0568b5ecc9473cecba3b3f1fcc495f398620de91fd98bbcba84c27dda08
54	+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e
55	+DIST linux-3.2.tar.bz2 78147838 RMD160 15eb022305dfc8b0e1d59e396911fa86eb9c3bdf SHA1 3460afa971049aa79b8f914e1bfd619eedd19f55 SHA256 c881fc2b53cf0da7ca4538aa44623a7de043a41f76fd5d0f51a31f6ed699d463
56	+EBUILD hardened-sources-2.6.32-r93.ebuild 1888 RMD160 b4d5f7c3ea882a120a49fe8908de39b8be9f8f12 SHA1 f783ad5865812c1dda03e27bfca948f956730747 SHA256 a29c8b2c532afd60917ddf26665755fa9d760d45d65eea8b8700ffa625752e1c
57	+EBUILD hardened-sources-3.2.9.ebuild 1882 RMD160 cfe7a74ef5ced247ccab14e9f2b13b5d8c0fd7fe SHA1 990e59dca059d41b3605f3d6fd721aa217ae0e88 SHA256 bcf8a97a6716329d58373a184ad7156be98ddd3e52b5469b36eb06a0c3e099c2
58	+MISC ChangeLog 16177 RMD160 940dc07a29538c0b573cda9b60c1df313948c616 SHA1 e48530d57c208b9b20a913de8ff3e90401da5483 SHA256 a95610ee871b045df64397ed1eb89cc46380cdfa89fe8f21d724dfee74892ff8
59	MISC metadata.xml 651 RMD160 bd2f856b7c5aea29652610491cd60135e1e9b9f1 SHA1 1741d5fc80ad8f934fa7ad177b4662d1993d8584 SHA256 614ce0d6e8cfcf0b4dbf344b2758f25375afdaadccbfa4f68c3f8f058218f0a6
60	------BEGIN PGP SIGNATURE-----
61	-Version: GnuPG v2.0.17 (GNU/Linux)
62	-
63	-iEYEAREIAAYFAk9JPi8ACgkQl5yvQNBFVTWMgQCfSXdU3ya9ArLf/yF1zQzf2jvm
64	-KGwAnAze+tj8PINlV/ffN/TfsSLqrDkW
65	-=DSkU
66	------END PGP SIGNATURE-----
67
68	diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild
69	new file mode 100644
70	index 0000000..dd5dd38
71	--- /dev/null
72	+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild
73	@@ -0,0 +1,52 @@
74	+# Copyright 1999-2012 Gentoo Foundation
75	+# Distributed under the terms of the GNU General Public License v2
76	+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r92.ebuild,v 1.1 2012/02/25 19:57:31 blueness Exp $
77	+
78	+EAPI="4"
79	+
80	+ETYPE="sources"
81	+K_WANT_GENPATCHES="base extras"
82	+K_GENPATCHES_VER="48"
83	+K_DEBLOB_AVAILABLE="1"
84	+
85	+inherit kernel-2
86	+detect_version
87	+
88	+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-95"
89	+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"
90	+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
91	+
92	+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"
93	+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"
94	+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"
95	+
96	+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
97	+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
98	+IUSE="deblob -xtpax"
99	+
100	+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
101	+
102	+RDEPEND=">=sys-devel/gcc-4.5"
103	+
104	+pkg_postinst() {
105	+ kernel-2_pkg_postinst
106	+
107	+ local GRADM_COMPAT="sys-apps/gradm-2.9"
108	+
109	+ ewarn
110	+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:"
111	+ ewarn "[server], [workstation], and [virtualization]."
112	+ ewarn
113	+ ewarn "Those who intend to use one of these predefined grsecurity levels"
114	+ ewarn "should read the help associated with the level. Users importing a"
115	+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"
116	+ ewarn "should review their selected grsecurity/PaX options carefully."
117	+ ewarn
118	+ ewarn "Users of grsecurity's RBAC system must ensure they are using"
119	+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
120	+ ewarn "It is strongly recommended that the following command is issued"
121	+ ewarn "prior to booting a ${PF} kernel for the first time:"
122	+ ewarn
123	+ ewarn "emerge -na =${GRADM_COMPAT}"
124	+ ewarn
125	+}
126
127	diff --git a/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild
128	new file mode 100644
129	index 0000000..105775b
130	--- /dev/null
131	+++ b/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild
132	@@ -0,0 +1,51 @@
133	+# Copyright 1999-2012 Gentoo Foundation
134	+# Distributed under the terms of the GNU General Public License v2
135	+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.2.7.ebuild,v 1.1 2012/02/25 19:57:31 blueness Exp $
136	+
137	+EAPI="4"
138	+
139	+ETYPE="sources"
140	+K_WANT_GENPATCHES="base extras"
141	+K_GENPATCHES_VER="10"
142	+K_DEBLOB_AVAILABLE="1"
143	+
144	+inherit kernel-2
145	+detect_version
146	+
147	+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-1"
148	+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"
149	+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
150	+
151	+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"
152	+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"
153	+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"
154	+
155	+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
156	+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
157	+IUSE="deblob -xtpax"
158	+
159	+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
160	+
161	+RDEPEND=">=sys-devel/gcc-4.5"
162	+
163	+pkg_postinst() {
164	+ kernel-2_pkg_postinst
165	+
166	+ local GRADM_COMPAT="sys-apps/gradm-2.9"
167	+
168	+ ewarn
169	+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:"
170	+ ewarn "[server], [workstation], and [virtualization]. Those who intend to"
171	+ ewarn "use one of these predefined grsecurity levels should read the help"
172	+ ewarn "associated with the level. Because some options require >=gcc-4.5,"
173	+ ewarn "users with more, than one version of gcc installed should use gcc-config"
174	+ ewarn "to select a compatible version."
175	+ ewarn
176	+ ewarn "Users of grsecurity's RBAC system must ensure they are using"
177	+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
178	+ ewarn "It is strongly recommended that the following command is issued"
179	+ ewarn "prior to booting a ${PF} kernel for the first time:"
180	+ ewarn
181	+ ewarn "emerge -na =${GRADM_COMPAT}"
182	+ ewarn
183	+}

Gentoo Archives: gentoo-commits