1 |
commit: ea02fe462d3b4536f629bc2e7a104ee586bfeccf |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Thu Apr 28 14:03:12 2011 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Thu Apr 28 14:03:12 2011 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=ea02fe46 |
7 |
|
8 |
sys-kernel/hardened-sources: testing patchset 20110423 |
9 |
|
10 |
(Portage version: 2.1.9.42/git/Linux x86_64, signed Manifest commit with key 0xD0455535) |
11 |
|
12 |
--- |
13 |
sys-kernel/hardened-sources/Manifest | 20 +++++++- |
14 |
.../hardened-sources-2.6.32-r45.ebuild | 48 ++++++++++++++++++++ |
15 |
.../hardened-sources-2.6.38-r2.ebuild | 48 ++++++++++++++++++++ |
16 |
3 files changed, 113 insertions(+), 3 deletions(-) |
17 |
|
18 |
diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest |
19 |
index ae2d32e..4465399 100644 |
20 |
--- a/sys-kernel/hardened-sources/Manifest |
21 |
+++ b/sys-kernel/hardened-sources/Manifest |
22 |
@@ -1,12 +1,26 @@ |
23 |
-----BEGIN PGP SIGNED MESSAGE----- |
24 |
Hash: SHA256 |
25 |
|
26 |
+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d |
27 |
+DIST deblob-2.6.38 99773 RMD160 f52e78df8e819319d0aabf24fe471e2ef9e02140 SHA1 0d176aa88f0525123d293e26617f2d287fabdddc SHA256 ddabcd846baa19b7e82adec3ca8ff17f2f7425c292516889098559f639e763eb |
28 |
+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 |
29 |
+DIST deblob-check-2.6.38 345831 RMD160 1caea73e54a21cb1100a4ee8226201ddd8a89985 SHA1 44de3ac14d9a3e94b97553051aff0ebfada45274 SHA256 6f681dbd1c1c44cba2c9902dd77a5a51b2d1cc81567cffc60ba92bd0bdd4ff2f |
30 |
+DIST genpatches-2.6.32-36.base.tar.bz2 848775 RMD160 15102eded74ee4ae5c98052628526b535849f2ce SHA1 b7c33390d3201c9cf87128bd81b3caa35989e373 SHA256 7a0a1a16900c2e926e99cef8290174811fd6c94d2c148f73887cb5328752db17 |
31 |
+DIST genpatches-2.6.32-36.extras.tar.bz2 24934 RMD160 e3e1d60fb45a3e3c818ddda36b9180d4fc46679e SHA1 d16a34dfa35d163ea4042058b3865c389f3802e9 SHA256 50b70c76461aa52f7f2ad88175e7f08eb555f7f1dfd274759ec0c2a9748bde5e |
32 |
+DIST genpatches-2.6.38-4.base.tar.bz2 106077 RMD160 744a5c1fcb0d7ce6e41dee42912ffcecad60c775 SHA1 410744d502d18113626e530cb9860f96c3b007a6 SHA256 a8b2e76ff14e193de26a8992837c3f9f4e2990aed6bed037dfd284ca47ecee45 |
33 |
+DIST genpatches-2.6.38-4.extras.tar.bz2 15668 RMD160 79642f14a75c96f029dfb6ec4f86fe82a34b5094 SHA1 adde8ec89e98f4ee0ada4bfc24d225157efec2be SHA256 ffad6a0c3015fd0fe43f512fa353e0206a4eb0d45102459180391f96d2204caa |
34 |
+DIST hardened-patches-2.6.32-48.extras.tar.bz2 405159 RMD160 11e2199c5615a7e3cab79cee946aa668090ec1d8 SHA1 6a711e0f3af6836b08ff14511ff6602faa536b90 SHA256 efa0385a5c9a014d357d56088a9827cea462c5d21da66a0d877e4ee394f73239 |
35 |
+DIST hardened-patches-2.6.38-3.extras.tar.bz2 358320 RMD160 182461251f861791388519d31144247b97aa1169 SHA1 7a90111629894f75b2474f60cb99d4d91098f7bc SHA256 271c89946aae8d0bf9b7aaeb01abe1705dbd2469f1384fe9db7cf63b5866a38b |
36 |
+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e |
37 |
+DIST linux-2.6.38.tar.bz2 74739098 RMD160 d1179be93f1309303b9aa6008a25b6247726e764 SHA1 02aade5ad3dedd70739c9b4a05de40edbe432d25 SHA256 72f0cfaefb8dc86b219d5a742dd0375332627641ecbdf5badd3158e2127b9304 |
38 |
+EBUILD hardened-sources-2.6.32-r45.ebuild 1758 RMD160 f7df4be43335475ae1e68c92a68481ace6a82f65 SHA1 ea5e32a4a32db7f95340cf70e2309940867190b9 SHA256 534991bb604351c892b8c52a9478ee2de333b9002c8cc90a81214959b0f754f7 |
39 |
+EBUILD hardened-sources-2.6.38-r2.ebuild 1755 RMD160 260b50437bf29d04bd3707d632f011f05a616bb5 SHA1 fe3b351d8afe24e1a4a192bbd3982254c9cf1e5d SHA256 dc9b186e52677d9da5ffec0db4ef849aa509583848a8bf3c20430b02b8a50f72 |
40 |
MISC ChangeLog 13084 RMD160 72b6a3d1f5db3fec8a66461def02aedf675f69f0 SHA1 c4718230722c5ff374d23e82a5139a8495988aca SHA256 2c1177984e3c546d71e4ba24df412d22c7ac3d88a88acc72dd5c565d749b9b5d |
41 |
MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SHA1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8fcfd351f2f39ed63da68af3a5751fc2058d0d03813 |
42 |
-----BEGIN PGP SIGNATURE----- |
43 |
Version: GnuPG v2.0.17 (GNU/Linux) |
44 |
|
45 |
-iEYEAREIAAYFAk2vd7AACgkQl5yvQNBFVTUbQgCeIWiAVImjnx1Ijgn2Q1e3es+e |
46 |
-IEMAnih2XZvauhp0WDqvMWKAOmjRWPpQ |
47 |
-=h+M1 |
48 |
+iEYEAREIAAYFAk25c6AACgkQl5yvQNBFVTXdkgCdEGtpVyQa2/xKYQIhl6MQ3z6W |
49 |
+Um0AniqQV7WVplXsCkWnNUKovAabvEca |
50 |
+=i7Nc |
51 |
-----END PGP SIGNATURE----- |
52 |
|
53 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r45.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r45.ebuild |
54 |
new file mode 100644 |
55 |
index 0000000..9e5143c |
56 |
--- /dev/null |
57 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r45.ebuild |
58 |
@@ -0,0 +1,48 @@ |
59 |
+# Copyright 1999-2011 Gentoo Foundation |
60 |
+# Distributed under the terms of the GNU General Public License v2 |
61 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r44.ebuild,v 1.1 2011/04/20 23:34:55 blueness Exp $ |
62 |
+ |
63 |
+EAPI="2" |
64 |
+ |
65 |
+ETYPE="sources" |
66 |
+K_WANT_GENPATCHES="base extras" |
67 |
+K_GENPATCHES_VER="36" |
68 |
+ |
69 |
+inherit kernel-2 |
70 |
+detect_version |
71 |
+ |
72 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-48" |
73 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
74 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
75 |
+ |
76 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
77 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
78 |
+ |
79 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
80 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
81 |
+IUSE="" |
82 |
+ |
83 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
84 |
+ |
85 |
+pkg_postinst() { |
86 |
+ kernel-2_pkg_postinst |
87 |
+ |
88 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
89 |
+ |
90 |
+ ewarn |
91 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
92 |
+ ewarn "[server], [workstation], and [virtualization]." |
93 |
+ ewarn |
94 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
95 |
+ ewarn "should read the help associated with the level. Users importing a" |
96 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
97 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
98 |
+ ewarn |
99 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
100 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
101 |
+ ewarn "It is strongly recommended that the following command is issued" |
102 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
103 |
+ ewarn |
104 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
105 |
+ ewarn |
106 |
+} |
107 |
|
108 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.38-r2.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.38-r2.ebuild |
109 |
new file mode 100644 |
110 |
index 0000000..5c02d72 |
111 |
--- /dev/null |
112 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.38-r2.ebuild |
113 |
@@ -0,0 +1,48 @@ |
114 |
+# Copyright 1999-2011 Gentoo Foundation |
115 |
+# Distributed under the terms of the GNU General Public License v2 |
116 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.38-r1.ebuild,v 1.1 2011/04/20 23:38:06 blueness Exp $ |
117 |
+ |
118 |
+EAPI="2" |
119 |
+ |
120 |
+ETYPE="sources" |
121 |
+K_WANT_GENPATCHES="base extras" |
122 |
+K_GENPATCHES_VER="4" |
123 |
+ |
124 |
+inherit kernel-2 |
125 |
+detect_version |
126 |
+ |
127 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-3" |
128 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
129 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
130 |
+ |
131 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
132 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
133 |
+ |
134 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
135 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
136 |
+IUSE="" |
137 |
+ |
138 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
139 |
+ |
140 |
+pkg_postinst() { |
141 |
+ kernel-2_pkg_postinst |
142 |
+ |
143 |
+ local GRADM_COMPAT="sys-apps/gradm-2.2.2*" |
144 |
+ |
145 |
+ ewarn |
146 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
147 |
+ ewarn "[server], [workstation], and [virtualization]." |
148 |
+ ewarn |
149 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
150 |
+ ewarn "should read the help associated with the level. Users importing a" |
151 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
152 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
153 |
+ ewarn |
154 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
155 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
156 |
+ ewarn "It is strongly recommended that the following command is issued" |
157 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
158 |
+ ewarn |
159 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
160 |
+ ewarn |
161 |
+} |