[gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ - gentoo-commits

From:	"Anthony G. Basile" <blueness@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/
Date:	Fri, 09 Mar 2012 02:02:15
Message-Id:	`1331258513.e2873ebbfae4ef45454cca56404d017ff7f87f58.blueness@gentoo`

1

commit:     e2873ebbfae4ef45454cca56404d017ff7f87f58

2

Author:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>

3

AuthorDate: Fri Mar  9 02:01:53 2012 +0000

4

Commit:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>

5

CommitDate: Fri Mar  9 02:01:53 2012 +0000

6

URL:        http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=e2873ebb

7

8

sys-kernel/hardened-sources: testing patchset 20120306

9

10

(Portage version: 2.1.10.44/git/Linux x86_64, signed Manifest commit with key 0xD0455535)

11

12

---

13

 sys-kernel/hardened-sources/ChangeLog              |    7 +++

14

 sys-kernel/hardened-sources/Manifest               |   22 +++++++--

15

 .../hardened-sources-2.6.32-r94.ebuild             |   52 ++++++++++++++++++++

16

 .../hardened-sources-3.2.9-r1.ebuild               |   51 +++++++++++++++++++

17

 4 files changed, 128 insertions(+), 4 deletions(-)

18

19

diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog

20

index 27cee09..8515360 100644

21

--- a/sys-kernel/hardened-sources/ChangeLog

22

+++ b/sys-kernel/hardened-sources/ChangeLog

23

@@ -1,5 +1,12 @@

24

25

26

+*hardened-sources-3.2.9-r1 (09 Mar 2012)

27

+*hardened-sources-2.6.32-r94 (09 Mar 2012)

28

+

29

+  09 Mar 2012; Anthony G. Basile <blueness@g.o>

30

+  +hardened-sources-2.6.32-r94.ebuild, +hardened-sources-3.2.9-r1.ebuild:

31

+  testing patchset 20120306

32

+

33

   05 Mar 2012; Anthony G. Basile <blueness@g.o>

34

   -hardened-sources-2.6.32-r93.ebuild, -hardened-sources-3.2.9.ebuild:

35

   moved to tree

36

37

diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest

38

index 2a8e51d..e52e0a7 100644

39

--- a/sys-kernel/hardened-sources/Manifest

40

+++ b/sys-kernel/hardened-sources/Manifest

41

@@ -1,12 +1,26 @@

42

 -----BEGIN PGP SIGNED MESSAGE-----

43

 Hash: SHA256

44

45

-MISC ChangeLog 16500 RMD160 e73b2bb500f6accd0e31fd2de64ea9e17049fa92 SHA1 600f3a6e7a2b9f55efc0860c6cb9dc045852c7c3 SHA256 6921010649b543df831313aea14dbad1b2ddfd46836153ac8556005c6ea0c311

46

+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d

47

+DIST deblob-3.2 107602 RMD160 56f1dfe4f0254c802b49ea5220c4f67e56649852 SHA1 83421184d88d02e24de2adbc5debfb03454a7f4b SHA256 5db88405af6d51a77d84354afc3b2bdf673b1a5dcff37bb8db4ccbd12d91db20

48

+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3

49

+DIST deblob-check-3.2 423268 RMD160 8cb0c1b4a289db94543396c4445c4c7a35d2ba70 SHA1 01e50f824a577d15749f24643fdd136180342808 SHA256 9e67dd0885aa8ef356dbc15d487c8dea5a54f74c5b03a5d7946b65ee43f12638

50

+DIST genpatches-2.6.32-48.base.tar.bz2 1033142 RMD160 c42b6a5edbb9965391bbcf6ee40bb79c2080f497 SHA1 95e90447ecd875228121fa32e8cf89eaabde5fa6 SHA256 7438e7b7c0ef32e0c639cf89c4f53a3bc7917ca466b1fcf3931adb65ad05b583

51

+DIST genpatches-2.6.32-48.extras.tar.bz2 24939 RMD160 055706793fb532caeb3d364c5e1bd0ad46aff4b2 SHA1 2a966a4d5f9a718a0d43c25df563d0377154996f SHA256 ee714d14310fd5242ce2e28a8f8e5fda63ba18957960814876506f8754b9d2a0

52

+DIST genpatches-3.2-10.base.tar.bz2 178347 RMD160 691fdbc19146a2b90ca61856f20b4f1125c4985d SHA1 27364c81a14a475e962b271154ffea37be601122 SHA256 f230d4fd3dcd169fa24366a1c4a0f272675529e14d9b8f1154b037250771b4d9

53

+DIST genpatches-3.2-10.extras.tar.bz2 17208 RMD160 8324da51ce71afb0d375f34b0dd05209079bd7a3 SHA1 c2f4e029aebbc0ae82221aa2643de06a2d08cbd8 SHA256 7f60ab18e2965d024b7a36327577bcc771061f2cfac221ed475a6fd6b2ab89c7

54

+DIST hardened-patches-2.6.32-96.extras.tar.bz2 592770 RMD160 0b5dc0237ebeb9b2d130bf2255c021f2897765db SHA1 d189ebc56dc1041718b25c071821219883de7af5 SHA256 c378f84eb6b51fab99bf36bd467e415dc39bbd65fbde46cdd4cd3791b919caa6

55

+DIST hardened-patches-3.2.9-2.extras.tar.bz2 497120 RMD160 30e3893be47acf5ac49a6770492a6f6b52b84652 SHA1 bae630c0262d0dd553650813aef9b8bbf0b2326e SHA256 2ac009835d01359dccb90551d9ae4d5b101ebb4467bf504e7729e6a51039d571

56

+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e

57

+DIST linux-3.2.tar.bz2 78147838 RMD160 15eb022305dfc8b0e1d59e396911fa86eb9c3bdf SHA1 3460afa971049aa79b8f914e1bfd619eedd19f55 SHA256 c881fc2b53cf0da7ca4538aa44623a7de043a41f76fd5d0f51a31f6ed699d463

58

+EBUILD hardened-sources-2.6.32-r94.ebuild 1889 RMD160 0dd18683faecfe352730e31aaf832ead92ae6952 SHA1 05496fc6964dd4159a3a88e82df26266798b2cdd SHA256 52801c8d8154ae37879b6bc00608be2ccff09f5e70f5599d3c993e7578de4fa7

59

+EBUILD hardened-sources-3.2.9-r1.ebuild 1883 RMD160 88d3c4942673d42f8d01bbeca4f6172238b78e94 SHA1 50272cbaf0f036a8a2e6d2c373fea5c44f434640 SHA256 c19b3a689957e0f69e996e618ca001e3134b73eb07777ab7a2306f9a9bf9eea5

60

+MISC ChangeLog 16743 RMD160 71765674224a259da7e31baf41d27b0753e0b897 SHA1 278d16434a4e6a0ada2b4d0e184980a4eb6ac8cc SHA256 5609329d374260af358cdd00a24351d459331b8f7f49b80c19572feda7d9f837

61

 MISC metadata.xml 651 RMD160 bd2f856b7c5aea29652610491cd60135e1e9b9f1 SHA1 1741d5fc80ad8f934fa7ad177b4662d1993d8584 SHA256 614ce0d6e8cfcf0b4dbf344b2758f25375afdaadccbfa4f68c3f8f058218f0a6

62

 -----BEGIN PGP SIGNATURE-----

63

 Version: GnuPG v2.0.17 (GNU/Linux)

64

65

-iEYEAREIAAYFAk9UHYIACgkQl5yvQNBFVTUBBwCeNgQegXnJKKAVyaCO+nZaefH8

66

-MRgAoJFU3C2vEBT7DskKMRVDwPswIvkD

67

-=G9P7

68

+iEYEAREIAAYFAk9ZZJEACgkQl5yvQNBFVTWnYgCfS5pLxyeR5YpB29VTeG8U2mgG

69

+olAAn3mwg4jjhAKxjeOVuzPpx1+6eaZF

70

+=cKus

71

 -----END PGP SIGNATURE-----

72

73

diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r94.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r94.ebuild

74

new file mode 100644

75

index 0000000..6aaca60

76

--- /dev/null

77

+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r94.ebuild

78

@@ -0,0 +1,52 @@

79

+# Copyright 1999-2012 Gentoo Foundation

80

+# Distributed under the terms of the GNU General Public License v2

81

+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild,v 1.1 2012/03/05 01:53:22 blueness Exp $

82

+

83

+EAPI="4"

84

+

85

+ETYPE="sources"

86

+K_WANT_GENPATCHES="base extras"

87

+K_GENPATCHES_VER="48"

88

+K_DEBLOB_AVAILABLE="1"

89

+

90

+inherit kernel-2

91

+detect_version

92

+

93

+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-96"

94

+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"

95

+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"

96

+

97

+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"

98

+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"

99

+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"

100

+

101

+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"

102

+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"

103

+IUSE="deblob -xtpax"

104

+

105

+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"

106

+

107

+RDEPEND=">=sys-devel/gcc-4.5"

108

+

109

+pkg_postinst() {

110

+	kernel-2_pkg_postinst

111

+

112

+	local GRADM_COMPAT="sys-apps/gradm-2.9*"

113

+

114

+	ewarn

115

+	ewarn "Hardened Gentoo provides three different predefined grsecurity level:"

116

+	ewarn "[server], [workstation], and [virtualization]."

117

+	ewarn

118

+	ewarn "Those who intend to use one of these predefined grsecurity levels"

119

+	ewarn "should read the help associated with the level.  Users importing a"

120

+	ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"

121

+	ewarn "should review their selected grsecurity/PaX options carefully."

122

+	ewarn

123

+	ewarn "Users of grsecurity's RBAC system must ensure they are using"

124

+	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."

125

+	ewarn "It is strongly recommended that the following command is issued"

126

+	ewarn "prior to booting a ${PF} kernel for the first time:"

127

+	ewarn

128

+	ewarn "emerge -na =${GRADM_COMPAT}"

129

+	ewarn

130

+}

131

132

diff --git a/sys-kernel/hardened-sources/hardened-sources-3.2.9-r1.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.2.9-r1.ebuild

133

new file mode 100644

134

index 0000000..12320d6

135

--- /dev/null

136

+++ b/sys-kernel/hardened-sources/hardened-sources-3.2.9-r1.ebuild

137

@@ -0,0 +1,51 @@

138

+# Copyright 1999-2012 Gentoo Foundation

139

+# Distributed under the terms of the GNU General Public License v2

140

+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild,v 1.1 2012/03/05 01:56:14 blueness Exp $

141

+

142

+EAPI="4"

143

+

144

+ETYPE="sources"

145

+K_WANT_GENPATCHES="base extras"

146

+K_GENPATCHES_VER="10"

147

+K_DEBLOB_AVAILABLE="1"

148

+

149

+inherit kernel-2

150

+detect_version

151

+

152

+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2"

153

+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"

154

+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"

155

+

156

+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"

157

+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"

158

+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"

159

+

160

+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"

161

+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"

162

+IUSE="deblob -xtpax"

163

+

164

+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"

165

+

166

+RDEPEND=">=sys-devel/gcc-4.5"

167

+

168

+pkg_postinst() {

169

+	kernel-2_pkg_postinst

170

+

171

+	local GRADM_COMPAT="sys-apps/gradm-2.9"

172

+

173

+	ewarn

174

+	ewarn "Hardened Gentoo provides three different predefined grsecurity level:"

175

+	ewarn "[server], [workstation], and [virtualization].  Those who intend to"

176

+	ewarn "use one of these predefined grsecurity levels should read the help"

177

+	ewarn "associated with the level.  Because some options require >=gcc-4.5,"

178

+	ewarn "users with more, than one version of gcc installed should use gcc-config"

179

+	ewarn "to select a compatible version."

180

+	ewarn

181

+	ewarn "Users of grsecurity's RBAC system must ensure they are using"

182

+	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."

183

+	ewarn "It is strongly recommended that the following command is issued"

184

+	ewarn "prior to booting a ${PF} kernel for the first time:"

185

+	ewarn

186

+	ewarn "emerge -na =${GRADM_COMPAT}*"

187

+	ewarn

188

+}

1	commit: e2873ebbfae4ef45454cca56404d017ff7f87f58
2	Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org>
3	AuthorDate: Fri Mar 9 02:01:53 2012 +0000
4	Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org>
5	CommitDate: Fri Mar 9 02:01:53 2012 +0000
6	URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=e2873ebb
7
8	sys-kernel/hardened-sources: testing patchset 20120306
9
10	(Portage version: 2.1.10.44/git/Linux x86_64, signed Manifest commit with key 0xD0455535)
11
12	---
13	sys-kernel/hardened-sources/ChangeLog \| 7 +++
14	sys-kernel/hardened-sources/Manifest \| 22 +++++++--
15	.../hardened-sources-2.6.32-r94.ebuild \| 52 ++++++++++++++++++++
16	.../hardened-sources-3.2.9-r1.ebuild \| 51 +++++++++++++++++++
17	4 files changed, 128 insertions(+), 4 deletions(-)
18
19	diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog
20	index 27cee09..8515360 100644
21	--- a/sys-kernel/hardened-sources/ChangeLog
22	+++ b/sys-kernel/hardened-sources/ChangeLog
23	@@ -1,5 +1,12 @@
24
25
26	+*hardened-sources-3.2.9-r1 (09 Mar 2012)
27	+*hardened-sources-2.6.32-r94 (09 Mar 2012)
28	+
29	+ 09 Mar 2012; Anthony G. Basile <blueness@g.o>
30	+ +hardened-sources-2.6.32-r94.ebuild, +hardened-sources-3.2.9-r1.ebuild:
31	+ testing patchset 20120306
32	+
33	05 Mar 2012; Anthony G. Basile <blueness@g.o>
34	-hardened-sources-2.6.32-r93.ebuild, -hardened-sources-3.2.9.ebuild:
35	moved to tree
36
37	diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest
38	index 2a8e51d..e52e0a7 100644
39	--- a/sys-kernel/hardened-sources/Manifest
40	+++ b/sys-kernel/hardened-sources/Manifest
41	@@ -1,12 +1,26 @@
42	-----BEGIN PGP SIGNED MESSAGE-----
43	Hash: SHA256
44
45	-MISC ChangeLog 16500 RMD160 e73b2bb500f6accd0e31fd2de64ea9e17049fa92 SHA1 600f3a6e7a2b9f55efc0860c6cb9dc045852c7c3 SHA256 6921010649b543df831313aea14dbad1b2ddfd46836153ac8556005c6ea0c311
46	+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d
47	+DIST deblob-3.2 107602 RMD160 56f1dfe4f0254c802b49ea5220c4f67e56649852 SHA1 83421184d88d02e24de2adbc5debfb03454a7f4b SHA256 5db88405af6d51a77d84354afc3b2bdf673b1a5dcff37bb8db4ccbd12d91db20
48	+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3
49	+DIST deblob-check-3.2 423268 RMD160 8cb0c1b4a289db94543396c4445c4c7a35d2ba70 SHA1 01e50f824a577d15749f24643fdd136180342808 SHA256 9e67dd0885aa8ef356dbc15d487c8dea5a54f74c5b03a5d7946b65ee43f12638
50	+DIST genpatches-2.6.32-48.base.tar.bz2 1033142 RMD160 c42b6a5edbb9965391bbcf6ee40bb79c2080f497 SHA1 95e90447ecd875228121fa32e8cf89eaabde5fa6 SHA256 7438e7b7c0ef32e0c639cf89c4f53a3bc7917ca466b1fcf3931adb65ad05b583
51	+DIST genpatches-2.6.32-48.extras.tar.bz2 24939 RMD160 055706793fb532caeb3d364c5e1bd0ad46aff4b2 SHA1 2a966a4d5f9a718a0d43c25df563d0377154996f SHA256 ee714d14310fd5242ce2e28a8f8e5fda63ba18957960814876506f8754b9d2a0
52	+DIST genpatches-3.2-10.base.tar.bz2 178347 RMD160 691fdbc19146a2b90ca61856f20b4f1125c4985d SHA1 27364c81a14a475e962b271154ffea37be601122 SHA256 f230d4fd3dcd169fa24366a1c4a0f272675529e14d9b8f1154b037250771b4d9
53	+DIST genpatches-3.2-10.extras.tar.bz2 17208 RMD160 8324da51ce71afb0d375f34b0dd05209079bd7a3 SHA1 c2f4e029aebbc0ae82221aa2643de06a2d08cbd8 SHA256 7f60ab18e2965d024b7a36327577bcc771061f2cfac221ed475a6fd6b2ab89c7
54	+DIST hardened-patches-2.6.32-96.extras.tar.bz2 592770 RMD160 0b5dc0237ebeb9b2d130bf2255c021f2897765db SHA1 d189ebc56dc1041718b25c071821219883de7af5 SHA256 c378f84eb6b51fab99bf36bd467e415dc39bbd65fbde46cdd4cd3791b919caa6
55	+DIST hardened-patches-3.2.9-2.extras.tar.bz2 497120 RMD160 30e3893be47acf5ac49a6770492a6f6b52b84652 SHA1 bae630c0262d0dd553650813aef9b8bbf0b2326e SHA256 2ac009835d01359dccb90551d9ae4d5b101ebb4467bf504e7729e6a51039d571
56	+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e
57	+DIST linux-3.2.tar.bz2 78147838 RMD160 15eb022305dfc8b0e1d59e396911fa86eb9c3bdf SHA1 3460afa971049aa79b8f914e1bfd619eedd19f55 SHA256 c881fc2b53cf0da7ca4538aa44623a7de043a41f76fd5d0f51a31f6ed699d463
58	+EBUILD hardened-sources-2.6.32-r94.ebuild 1889 RMD160 0dd18683faecfe352730e31aaf832ead92ae6952 SHA1 05496fc6964dd4159a3a88e82df26266798b2cdd SHA256 52801c8d8154ae37879b6bc00608be2ccff09f5e70f5599d3c993e7578de4fa7
59	+EBUILD hardened-sources-3.2.9-r1.ebuild 1883 RMD160 88d3c4942673d42f8d01bbeca4f6172238b78e94 SHA1 50272cbaf0f036a8a2e6d2c373fea5c44f434640 SHA256 c19b3a689957e0f69e996e618ca001e3134b73eb07777ab7a2306f9a9bf9eea5
60	+MISC ChangeLog 16743 RMD160 71765674224a259da7e31baf41d27b0753e0b897 SHA1 278d16434a4e6a0ada2b4d0e184980a4eb6ac8cc SHA256 5609329d374260af358cdd00a24351d459331b8f7f49b80c19572feda7d9f837
61	MISC metadata.xml 651 RMD160 bd2f856b7c5aea29652610491cd60135e1e9b9f1 SHA1 1741d5fc80ad8f934fa7ad177b4662d1993d8584 SHA256 614ce0d6e8cfcf0b4dbf344b2758f25375afdaadccbfa4f68c3f8f058218f0a6
62	-----BEGIN PGP SIGNATURE-----
63	Version: GnuPG v2.0.17 (GNU/Linux)
64
65	-iEYEAREIAAYFAk9UHYIACgkQl5yvQNBFVTUBBwCeNgQegXnJKKAVyaCO+nZaefH8
66	-MRgAoJFU3C2vEBT7DskKMRVDwPswIvkD
67	-=G9P7
68	+iEYEAREIAAYFAk9ZZJEACgkQl5yvQNBFVTWnYgCfS5pLxyeR5YpB29VTeG8U2mgG
69	+olAAn3mwg4jjhAKxjeOVuzPpx1+6eaZF
70	+=cKus
71	-----END PGP SIGNATURE-----
72
73	diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r94.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r94.ebuild
74	new file mode 100644
75	index 0000000..6aaca60
76	--- /dev/null
77	+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r94.ebuild
78	@@ -0,0 +1,52 @@
79	+# Copyright 1999-2012 Gentoo Foundation
80	+# Distributed under the terms of the GNU General Public License v2
81	+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r93.ebuild,v 1.1 2012/03/05 01:53:22 blueness Exp $
82	+
83	+EAPI="4"
84	+
85	+ETYPE="sources"
86	+K_WANT_GENPATCHES="base extras"
87	+K_GENPATCHES_VER="48"
88	+K_DEBLOB_AVAILABLE="1"
89	+
90	+inherit kernel-2
91	+detect_version
92	+
93	+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-96"
94	+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"
95	+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
96	+
97	+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"
98	+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"
99	+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"
100	+
101	+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
102	+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
103	+IUSE="deblob -xtpax"
104	+
105	+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
106	+
107	+RDEPEND=">=sys-devel/gcc-4.5"
108	+
109	+pkg_postinst() {
110	+ kernel-2_pkg_postinst
111	+
112	+ local GRADM_COMPAT="sys-apps/gradm-2.9*"
113	+
114	+ ewarn
115	+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:"
116	+ ewarn "[server], [workstation], and [virtualization]."
117	+ ewarn
118	+ ewarn "Those who intend to use one of these predefined grsecurity levels"
119	+ ewarn "should read the help associated with the level. Users importing a"
120	+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"
121	+ ewarn "should review their selected grsecurity/PaX options carefully."
122	+ ewarn
123	+ ewarn "Users of grsecurity's RBAC system must ensure they are using"
124	+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
125	+ ewarn "It is strongly recommended that the following command is issued"
126	+ ewarn "prior to booting a ${PF} kernel for the first time:"
127	+ ewarn
128	+ ewarn "emerge -na =${GRADM_COMPAT}"
129	+ ewarn
130	+}
131
132	diff --git a/sys-kernel/hardened-sources/hardened-sources-3.2.9-r1.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.2.9-r1.ebuild
133	new file mode 100644
134	index 0000000..12320d6
135	--- /dev/null
136	+++ b/sys-kernel/hardened-sources/hardened-sources-3.2.9-r1.ebuild
137	@@ -0,0 +1,51 @@
138	+# Copyright 1999-2012 Gentoo Foundation
139	+# Distributed under the terms of the GNU General Public License v2
140	+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.2.9.ebuild,v 1.1 2012/03/05 01:56:14 blueness Exp $
141	+
142	+EAPI="4"
143	+
144	+ETYPE="sources"
145	+K_WANT_GENPATCHES="base extras"
146	+K_GENPATCHES_VER="10"
147	+K_DEBLOB_AVAILABLE="1"
148	+
149	+inherit kernel-2
150	+detect_version
151	+
152	+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2"
153	+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2"
154	+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
155	+
156	+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"
157	+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"
158	+! use xtpax && UNIPATCH_EXCLUDE+=" 4425_grsec_enable_xtpax.patch"
159	+
160	+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
161	+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
162	+IUSE="deblob -xtpax"
163	+
164	+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
165	+
166	+RDEPEND=">=sys-devel/gcc-4.5"
167	+
168	+pkg_postinst() {
169	+ kernel-2_pkg_postinst
170	+
171	+ local GRADM_COMPAT="sys-apps/gradm-2.9"
172	+
173	+ ewarn
174	+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:"
175	+ ewarn "[server], [workstation], and [virtualization]. Those who intend to"
176	+ ewarn "use one of these predefined grsecurity levels should read the help"
177	+ ewarn "associated with the level. Because some options require >=gcc-4.5,"
178	+ ewarn "users with more, than one version of gcc installed should use gcc-config"
179	+ ewarn "to select a compatible version."
180	+ ewarn
181	+ ewarn "Users of grsecurity's RBAC system must ensure they are using"
182	+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
183	+ ewarn "It is strongly recommended that the following command is issued"
184	+ ewarn "prior to booting a ${PF} kernel for the first time:"
185	+ ewarn
186	+ ewarn "emerge -na =${GRADM_COMPAT}*"
187	+ ewarn
188	+}

Gentoo Archives: gentoo-commits