1 |
commit: 0e8ab503aace5683abe1a520c49a4ea57dd2ffe8 |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Sat Jul 30 14:40:21 2011 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Sat Jul 30 14:40:21 2011 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=0e8ab503 |
7 |
|
8 |
sys-kernel/hardened-sources: testing 4421_remove-legacy-pax-ei.patch |
9 |
|
10 |
(Portage version: 2.1.10.3/git/Linux x86_64, signed Manifest commit with key 0xD0455535) |
11 |
|
12 |
--- |
13 |
sys-kernel/hardened-sources/Manifest | 22 +++++++++ |
14 |
.../hardened-sources-2.6.32-r59.ebuild | 48 ++++++++++++++++++++ |
15 |
.../hardened-sources-2.6.39-r9.ebuild | 48 ++++++++++++++++++++ |
16 |
3 files changed, 118 insertions(+), 0 deletions(-) |
17 |
|
18 |
diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest |
19 |
index 0361467..bb664d7 100644 |
20 |
--- a/sys-kernel/hardened-sources/Manifest |
21 |
+++ b/sys-kernel/hardened-sources/Manifest |
22 |
@@ -1,2 +1,24 @@ |
23 |
+-----BEGIN PGP SIGNED MESSAGE----- |
24 |
+Hash: SHA256 |
25 |
+ |
26 |
+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d |
27 |
+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 |
28 |
+DIST genpatches-2.6.32-40.base.tar.bz2 954168 RMD160 09a4ab92cd4a0bb6200a386182d60bf94fcea5dc SHA1 4b937d27ec83398efb5af8a71a8d2b893cfd56fc SHA256 63caf952fa4351813db7c280751e71e635aa0df259ccfd153ecda5ad06960cbe |
29 |
+DIST genpatches-2.6.32-40.extras.tar.bz2 24897 RMD160 fac4ce9c15953ad811b2c500b0145f2eebea5e2d SHA1 8f9cdf4bc06dc5e806698d93c002798faa53fda1 SHA256 309841a94e96d7076bca7fb547caae9786e24258e032da242f64768a413ddbf0 |
30 |
+DIST genpatches-2.6.39-5.base.tar.bz2 109396 RMD160 4f7e0efad4744ce198b339634ff1879378c7a082 SHA1 518e5b99a4590ecb80c8518a408c0894e9f2376e SHA256 35b474a21ea78d1d89ad27cf2bc119ba7a43616bdc1eb6df8672287432c37532 |
31 |
+DIST genpatches-2.6.39-5.extras.tar.bz2 17192 RMD160 98260c85537596a9558daaa693e4e7f5e0ba0c17 SHA1 1b154be1890d87564b4f20e7b09a9d62a2f01061 SHA256 337069a8c019ef301830088343928560634e463857c6463332ecf6a5585f13e7 |
32 |
+DIST hardened-patches-2.6.32-62.extras.tar.bz2 453635 RMD160 e9648a867897c37992428b63663da8118bbb65e9 SHA1 81ec09a96243dc19c9dba4d3d8459078fcd173a8 SHA256 f33ac126d39b21938c19cae01f5cc44852bb00d7506c555b1484b61d53d5ddc7 |
33 |
+DIST hardened-patches-2.6.39-10.extras.tar.bz2 520999 RMD160 e023f9aba4a044ebf5b931458e8aa6cc025e0fd4 SHA1 a46c18126ef01ebf19368c21aaf8183953fb38f3 SHA256 fabaccf26a451f9f7fb6730670994cdecaa7ad208f48347c16c7f00940d93f60 |
34 |
+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e |
35 |
+DIST linux-2.6.39.tar.bz2 76096559 RMD160 feddc516bc15e78f12f611ff184d38baa4eac4ee SHA1 68518112821e55f4ac1df64f2e0e809cedfcc5ef SHA256 584d17f2a3ee18a9501d7ff36907639e538cfdba4529978b8550c461d45c61f6 |
36 |
+EBUILD hardened-sources-2.6.32-r59.ebuild 1758 RMD160 76c88f9daf30d01bcdeae7b5412f6d7a052fc02e SHA1 cb8b56832202162ff9b9c3e5cfbdfba76958d742 SHA256 37a70e6e74a1662e19ba51b76e05016816c9a771b91995f8612bc85dbfee90b6 |
37 |
+EBUILD hardened-sources-2.6.39-r9.ebuild 1756 RMD160 fc73151e9e7f5de0fbb7fe0377dc6c6f42029335 SHA1 ccbed3e4b39407e2fb0f3c27c5157401ca73c98d SHA256 404767e949365fde4d0f9047b040e8dac2e0952197339a9d7b61fa2544b48c1f |
38 |
MISC ChangeLog 1361 RMD160 25b223204f31d3928774eeba5650e08496e8b079 SHA1 af10d0023fe7d190165e7b65c104c0fc959630cf SHA256 53620a1af4294c699d13f3486efc268d8c75c74eaeb33f22f64ce8b9a22416c5 |
39 |
MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SHA1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8fcfd351f2f39ed63da68af3a5751fc2058d0d03813 |
40 |
+-----BEGIN PGP SIGNATURE----- |
41 |
+Version: GnuPG v2.0.17 (GNU/Linux) |
42 |
+ |
43 |
+iEYEAREIAAYFAk40F9QACgkQl5yvQNBFVTVayACgiox0epHE0XqoCZyq2gMd8iWk |
44 |
+PHgAoI/sWNoIExR3klFaC0c/g2knyCAO |
45 |
+=gNB3 |
46 |
+-----END PGP SIGNATURE----- |
47 |
|
48 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r59.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r59.ebuild |
49 |
new file mode 100644 |
50 |
index 0000000..25f924d |
51 |
--- /dev/null |
52 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r59.ebuild |
53 |
@@ -0,0 +1,48 @@ |
54 |
+# Copyright 1999-2011 Gentoo Foundation |
55 |
+# Distributed under the terms of the GNU General Public License v2 |
56 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r58.ebuild,v 1.1 2011/07/25 14:09:34 blueness Exp $ |
57 |
+ |
58 |
+EAPI="4" |
59 |
+ |
60 |
+ETYPE="sources" |
61 |
+K_WANT_GENPATCHES="base extras" |
62 |
+K_GENPATCHES_VER="40" |
63 |
+ |
64 |
+inherit kernel-2 |
65 |
+detect_version |
66 |
+ |
67 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-62" |
68 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
69 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
70 |
+ |
71 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
72 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
73 |
+ |
74 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
75 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
76 |
+IUSE="" |
77 |
+ |
78 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
79 |
+ |
80 |
+pkg_postinst() { |
81 |
+ kernel-2_pkg_postinst |
82 |
+ |
83 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
84 |
+ |
85 |
+ ewarn |
86 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
87 |
+ ewarn "[server], [workstation], and [virtualization]." |
88 |
+ ewarn |
89 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
90 |
+ ewarn "should read the help associated with the level. Users importing a" |
91 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
92 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
93 |
+ ewarn |
94 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
95 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
96 |
+ ewarn "It is strongly recommended that the following command is issued" |
97 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
98 |
+ ewarn |
99 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
100 |
+ ewarn |
101 |
+} |
102 |
|
103 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.39-r9.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r9.ebuild |
104 |
new file mode 100644 |
105 |
index 0000000..6ea482e |
106 |
--- /dev/null |
107 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r9.ebuild |
108 |
@@ -0,0 +1,48 @@ |
109 |
+# Copyright 1999-2011 Gentoo Foundation |
110 |
+# Distributed under the terms of the GNU General Public License v2 |
111 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.39-r8.ebuild,v 1.1 2011/07/25 14:13:29 blueness Exp $ |
112 |
+ |
113 |
+EAPI="4" |
114 |
+ |
115 |
+ETYPE="sources" |
116 |
+K_WANT_GENPATCHES="base extras" |
117 |
+K_GENPATCHES_VER="5" |
118 |
+ |
119 |
+inherit kernel-2 |
120 |
+detect_version |
121 |
+ |
122 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-10" |
123 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
124 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
125 |
+ |
126 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
127 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
128 |
+ |
129 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
130 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
131 |
+IUSE="" |
132 |
+ |
133 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
134 |
+ |
135 |
+pkg_postinst() { |
136 |
+ kernel-2_pkg_postinst |
137 |
+ |
138 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
139 |
+ |
140 |
+ ewarn |
141 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
142 |
+ ewarn "[server], [workstation], and [virtualization]." |
143 |
+ ewarn |
144 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
145 |
+ ewarn "should read the help associated with the level. Users importing a" |
146 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
147 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
148 |
+ ewarn |
149 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
150 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
151 |
+ ewarn "It is strongly recommended that the following command is issued" |
152 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
153 |
+ ewarn |
154 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
155 |
+ ewarn |
156 |
+} |