1 |
commit: 5e7a8385f0abc9e8446068e4a8a9d652464f3afc |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Thu Aug 18 02:15:15 2011 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Thu Aug 18 02:15:15 2011 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=5e7a8385 |
7 |
|
8 |
sys-kernel/hardened-sources: testing patchset 20110816 |
9 |
|
10 |
--- |
11 |
sys-kernel/hardened-sources/ChangeLog | 7 +++ |
12 |
sys-kernel/hardened-sources/Manifest | 24 +++++----- |
13 |
.../hardened-sources-2.6.32-r63.ebuild | 48 ++++++++++++++++++++ |
14 |
.../hardened-sources-2.6.39-r13.ebuild | 48 ++++++++++++++++++++ |
15 |
4 files changed, 116 insertions(+), 11 deletions(-) |
16 |
|
17 |
diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog |
18 |
index 3ba40aa..909eedd 100644 |
19 |
--- a/sys-kernel/hardened-sources/ChangeLog |
20 |
+++ b/sys-kernel/hardened-sources/ChangeLog |
21 |
@@ -1,5 +1,12 @@ |
22 |
|
23 |
|
24 |
+*hardened-sources-2.6.39-r13 (18 Aug 2011) |
25 |
+*hardened-sources-2.6.32-r63 (18 Aug 2011) |
26 |
+ |
27 |
+ 18 Aug 2011; Anthony G. Basile <blueness@g.o> |
28 |
+ +hardened-sources-2.6.32-r63.ebuild, +hardened-sources-2.6.39-r13.ebuild: |
29 |
+ testing patchset 20110816 |
30 |
+ |
31 |
16 Aug 2011; Anthony G. Basile <blueness@g.o> |
32 |
-hardened-sources-2.6.32-r62.ebuild, -hardened-sources-2.6.39-r12.ebuild: |
33 |
Moved to tree |
34 |
|
35 |
diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest |
36 |
index d40e6ba..d90ea5a 100644 |
37 |
--- a/sys-kernel/hardened-sources/Manifest |
38 |
+++ b/sys-kernel/hardened-sources/Manifest |
39 |
@@ -1,12 +1,14 @@ |
40 |
------BEGIN PGP SIGNED MESSAGE----- |
41 |
-Hash: SHA256 |
42 |
- |
43 |
-MISC ChangeLog 2348 RMD160 7de3b32491d5527ed747e556d0274569a7c24665 SHA1 b56d78574ff29cd1e924bf85711651318f0cd3bc SHA256 ab4e7bb1b93bd1b321b29a2c184ac7b2ff2f52455860aaeca4a8bccf5c0569d0 |
44 |
+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d |
45 |
+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 |
46 |
+DIST genpatches-2.6.32-40.base.tar.bz2 954168 RMD160 09a4ab92cd4a0bb6200a386182d60bf94fcea5dc SHA1 4b937d27ec83398efb5af8a71a8d2b893cfd56fc SHA256 63caf952fa4351813db7c280751e71e635aa0df259ccfd153ecda5ad06960cbe |
47 |
+DIST genpatches-2.6.32-40.extras.tar.bz2 24897 RMD160 fac4ce9c15953ad811b2c500b0145f2eebea5e2d SHA1 8f9cdf4bc06dc5e806698d93c002798faa53fda1 SHA256 309841a94e96d7076bca7fb547caae9786e24258e032da242f64768a413ddbf0 |
48 |
+DIST genpatches-2.6.39-6.base.tar.bz2 129313 RMD160 020469bd8d91d7159b2a44782e64eb4e23a307c6 SHA1 46a3e1569d6f58f5f34e5e54d0947896f842d222 SHA256 fe605a0bc8a1206db73803692179413a605c98415bc35bdb16496afffe241b22 |
49 |
+DIST genpatches-2.6.39-6.extras.tar.bz2 17176 RMD160 daae29a8c922c4cce338ee7ad2e7ea6b3fb7bed5 SHA1 382e3800895b1b56bc7d073808576a0060165bc2 SHA256 6d2bbf1bd936088e10aecaa2f7d1050de72a21a8e4a05a8269caeaec8e8b3f09 |
50 |
+DIST hardened-patches-2.6.32-66.extras.tar.bz2 504349 RMD160 8ec2af5d9a7d0ae351f52e71529330cbb9c89ed2 SHA1 0a1246f432715c404eb830e0a4ddb1d461246957 SHA256 c37b01c41dbb931f890f876382ac03812be6b4531b31b0999537019022ff8495 |
51 |
+DIST hardened-patches-2.6.39-14.extras.tar.bz2 445883 RMD160 9a1fdb44e978f4b4f933a54db0679d38e8ae2f94 SHA1 8a1741c67df39b42a6ab01f31767338724efd981 SHA256 1ccd8029db34222a7d39ab172cc6edd54a6b40e2f970fdf3cb94bc29331011af |
52 |
+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e |
53 |
+DIST linux-2.6.39.tar.bz2 76096559 RMD160 feddc516bc15e78f12f611ff184d38baa4eac4ee SHA1 68518112821e55f4ac1df64f2e0e809cedfcc5ef SHA256 584d17f2a3ee18a9501d7ff36907639e538cfdba4529978b8550c461d45c61f6 |
54 |
+EBUILD hardened-sources-2.6.32-r63.ebuild 1758 RMD160 86be21819cac903ac3e669394321a1e9a7f826e3 SHA1 a35569f0264bbb7f4ea9cbfb5642366e0104a5ea SHA256 4c81519cde6224f2ab229c63899e335693dd20e2cd401b8f058667e2856ccb96 |
55 |
+EBUILD hardened-sources-2.6.39-r13.ebuild 1757 RMD160 18a516a3a5c55de74d89450f0a0e8d749ddf0815 SHA1 3cc402e4b003451ecb2c10b4df0d3cb1b87a90f2 SHA256 fdcbd324034efb3e1ea6e4308eebb422344469a74da7b4ddc41a7a2e5bdc5d08 |
56 |
+MISC ChangeLog 2595 RMD160 1918ca86009c4a36c99ffecfc482188bf518d844 SHA1 1881a6054afb6714742098c28b488ba0a1c8b334 SHA256 faec79cb7b59be299abb4483baa52224025dd2dbe5a6b0c9ee5c0dd400b56011 |
57 |
MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SHA1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8fcfd351f2f39ed63da68af3a5751fc2058d0d03813 |
58 |
------BEGIN PGP SIGNATURE----- |
59 |
-Version: GnuPG v2.0.17 (GNU/Linux) |
60 |
- |
61 |
-iEUEAREIAAYFAk5KOi0ACgkQl5yvQNBFVTUyfQCcDhVLXAZn4czYtG0x6vjz1nN5 |
62 |
-MlsAmIGp+tqd0xgbjytEeEqIVve5cFU= |
63 |
-=UsX1 |
64 |
------END PGP SIGNATURE----- |
65 |
|
66 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r63.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r63.ebuild |
67 |
new file mode 100644 |
68 |
index 0000000..a174b96 |
69 |
--- /dev/null |
70 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r63.ebuild |
71 |
@@ -0,0 +1,48 @@ |
72 |
+# Copyright 1999-2011 Gentoo Foundation |
73 |
+# Distributed under the terms of the GNU General Public License v2 |
74 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r62.ebuild,v 1.1 2011/08/16 09:31:25 blueness Exp $ |
75 |
+ |
76 |
+EAPI="4" |
77 |
+ |
78 |
+ETYPE="sources" |
79 |
+K_WANT_GENPATCHES="base extras" |
80 |
+K_GENPATCHES_VER="40" |
81 |
+ |
82 |
+inherit kernel-2 |
83 |
+detect_version |
84 |
+ |
85 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-66" |
86 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
87 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
88 |
+ |
89 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
90 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
91 |
+ |
92 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
93 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
94 |
+IUSE="" |
95 |
+ |
96 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
97 |
+ |
98 |
+pkg_postinst() { |
99 |
+ kernel-2_pkg_postinst |
100 |
+ |
101 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
102 |
+ |
103 |
+ ewarn |
104 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
105 |
+ ewarn "[server], [workstation], and [virtualization]." |
106 |
+ ewarn |
107 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
108 |
+ ewarn "should read the help associated with the level. Users importing a" |
109 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
110 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
111 |
+ ewarn |
112 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
113 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
114 |
+ ewarn "It is strongly recommended that the following command is issued" |
115 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
116 |
+ ewarn |
117 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
118 |
+ ewarn |
119 |
+} |
120 |
|
121 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.39-r13.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r13.ebuild |
122 |
new file mode 100644 |
123 |
index 0000000..28a454f |
124 |
--- /dev/null |
125 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r13.ebuild |
126 |
@@ -0,0 +1,48 @@ |
127 |
+# Copyright 1999-2011 Gentoo Foundation |
128 |
+# Distributed under the terms of the GNU General Public License v2 |
129 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.39-r12.ebuild,v 1.1 2011/08/16 09:35:08 blueness Exp $ |
130 |
+ |
131 |
+EAPI="4" |
132 |
+ |
133 |
+ETYPE="sources" |
134 |
+K_WANT_GENPATCHES="base extras" |
135 |
+K_GENPATCHES_VER="6" |
136 |
+ |
137 |
+inherit kernel-2 |
138 |
+detect_version |
139 |
+ |
140 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-14" |
141 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
142 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
143 |
+ |
144 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
145 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
146 |
+ |
147 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
148 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
149 |
+IUSE="" |
150 |
+ |
151 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
152 |
+ |
153 |
+pkg_postinst() { |
154 |
+ kernel-2_pkg_postinst |
155 |
+ |
156 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
157 |
+ |
158 |
+ ewarn |
159 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
160 |
+ ewarn "[server], [workstation], and [virtualization]." |
161 |
+ ewarn |
162 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
163 |
+ ewarn "should read the help associated with the level. Users importing a" |
164 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
165 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
166 |
+ ewarn |
167 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
168 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
169 |
+ ewarn "It is strongly recommended that the following command is issued" |
170 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
171 |
+ ewarn |
172 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
173 |
+ ewarn |
174 |
+} |