1 |
commit: 3065a6cd5fb9f59d27d8b9d3f329dd271a8bc50e |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Thu Jun 28 14:18:58 2012 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Thu Jun 28 14:18:58 2012 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=3065a6cd |
7 |
|
8 |
sys-kernel/hardened-sources: testing new upstream VIRT profiles |
9 |
|
10 |
--- |
11 |
sys-kernel/hardened-sources/ChangeLog | 6 ++ |
12 |
sys-kernel/hardened-sources/Manifest | 18 +++---- |
13 |
.../hardened-sources-3.4.4-r1.ebuild | 51 ++++++++++++++++++++ |
14 |
3 files changed, 64 insertions(+), 11 deletions(-) |
15 |
|
16 |
diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog |
17 |
index 78c4370..948ccd4 100644 |
18 |
--- a/sys-kernel/hardened-sources/ChangeLog |
19 |
+++ b/sys-kernel/hardened-sources/ChangeLog |
20 |
@@ -1,5 +1,11 @@ |
21 |
|
22 |
|
23 |
+*hardened-sources-3.4.4-r1 (28 Jun 2012) |
24 |
+ |
25 |
+ 28 Jun 2012; Anthony G. Basile <blueness@g.o> |
26 |
+ +hardened-sources-3.4.4-r1.ebuild: |
27 |
+ testing new upstream VIRT profiles |
28 |
+ |
29 |
25 Jun 2012; Anthony G. Basile <blueness@g.o> |
30 |
-hardened-sources-2.6.32-r113.ebuild, -hardened-sources-3.2.21-r1.ebuild, |
31 |
-hardened-sources-3.4.4.ebuild: |
32 |
|
33 |
diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest |
34 |
index 9d6873b..60f0c90 100644 |
35 |
--- a/sys-kernel/hardened-sources/Manifest |
36 |
+++ b/sys-kernel/hardened-sources/Manifest |
37 |
@@ -1,12 +1,8 @@ |
38 |
------BEGIN PGP SIGNED MESSAGE----- |
39 |
-Hash: SHA256 |
40 |
- |
41 |
-MISC ChangeLog 26835 RMD160 3405938e61c0452653ffab6afa7ca8fab7f78676 SHA1 dd8865630f476a6b2b96ea643e120fc40ded2193 SHA256 d5b93843e5c3c40fb43a974b9b558554de972d5fc02c3bc74cd68456eed02ff4 |
42 |
+DIST deblob-3.4 109026 RMD160 ef9be1bdfbca2bfe4d5e60dd33ed6ec30a1e5c52 SHA1 83b455ad2db0470704225d1e81864af8fd3516c3 SHA256 2fca296bccfa7dc25447f36975971597f67730168a9bc4db0853e55347950680 |
43 |
+DIST deblob-check-3.4 448778 RMD160 a00d430d137cd9d653a3c42cb36c6e31330ed007 SHA1 4d54aa271cebc0e770e152802f4cadf0dcc9471e SHA256 28ce952c082e765784f9e5b63f5a3a4fb93545e5e788dc94d094c0b3ae8ea3a0 |
44 |
+DIST genpatches-3.4-5.base.tar.bz2 83423 RMD160 5b774777acf009610c8782b469ab938e2733ed99 SHA1 4c954b522a4dafa2be203edd2cbf9d159c557ee1 SHA256 4ee8ef2834f0993536188ad2de8f6d3eddac963cc935c1d77eac4f98b99199eb |
45 |
+DIST genpatches-3.4-5.extras.tar.bz2 17502 RMD160 c5b834a28335f9a173e8e863b377aff513c791e5 SHA1 7278ac0434a59c1981c585e6a49305351b60573c SHA256 2b537431a408445cd1091562755234e840016f26ad63ab3a73812ac7f7e1c8d9 |
46 |
+DIST linux-3.4.tar.bz2 80173484 RMD160 e0bcaa53b6eb3de9498f51b2c8b90d6c52d54889 SHA1 dfc54e7fbee81f77aba85d3d8ff2d992e1e49573 SHA256 a797a15d0b6228381507c14ecf4eec4a6cc5c77cfd521ba3b3e1325e85b5b16d |
47 |
+EBUILD hardened-sources-3.4.4-r1.ebuild 1869 RMD160 f3dffbad8d97771837cde34674522805328ee57d SHA1 063a27d5ec4e9ae9c83b1108d2d367993b82e81c SHA256 442b7b52e69ee8218b21d6edaf7e1a0f9a340daf2e8e182d9dcc57372a67f209 |
48 |
+MISC ChangeLog 27007 RMD160 b9d35ddccfd1a25c52cff574f2fda8bbf1584a8a SHA1 03c696fa56c303046b6466c9f2a0fd2112e5e1ea SHA256 da03d1a173cdc8c8cbc43ea7c7a1ddbd1c02f7016be5225f434574750651811e |
49 |
MISC metadata.xml 576 RMD160 f3d34140c6074436e3861275202f48ba32be6ccc SHA1 d1a11f53284e9ff098b6a5f14eaac6756e238588 SHA256 53e0d3bfb958bcbf62457a89abe76a7a6f5a2b1df5decb04bf8b840184cc5828 |
50 |
------BEGIN PGP SIGNATURE----- |
51 |
-Version: GnuPG v2.0.17 (GNU/Linux) |
52 |
- |
53 |
-iEYEAREIAAYFAk/o5FUACgkQl5yvQNBFVTUmRACdHK9p/hclp8oMM3b5EDvz2kbK |
54 |
-QwQAoKeeBhfR2cIP1AVWEUmEyJuah+Cm |
55 |
-=gPPl |
56 |
------END PGP SIGNATURE----- |
57 |
|
58 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-3.4.4-r1.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.4.4-r1.ebuild |
59 |
new file mode 100644 |
60 |
index 0000000..a58ef03 |
61 |
--- /dev/null |
62 |
+++ b/sys-kernel/hardened-sources/hardened-sources-3.4.4-r1.ebuild |
63 |
@@ -0,0 +1,51 @@ |
64 |
+# Copyright 1999-2012 Gentoo Foundation |
65 |
+# Distributed under the terms of the GNU General Public License v2 |
66 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.4.4.ebuild,v 1.1 2012/06/25 22:18:16 blueness Exp $ |
67 |
+ |
68 |
+EAPI="4" |
69 |
+ |
70 |
+ETYPE="sources" |
71 |
+K_WANT_GENPATCHES="base extras" |
72 |
+K_GENPATCHES_VER="5" |
73 |
+K_DEBLOB_AVAILABLE="1" |
74 |
+ |
75 |
+inherit kernel-2 |
76 |
+detect_version |
77 |
+ |
78 |
+#HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2" |
79 |
+#HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
80 |
+#SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
81 |
+SRC_URI="${KERNEL_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
82 |
+ |
83 |
+#UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
84 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
85 |
+ |
86 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
87 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
88 |
+IUSE="deblob" |
89 |
+ |
90 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
91 |
+ |
92 |
+RDEPEND=">=sys-devel/gcc-4.5" |
93 |
+ |
94 |
+pkg_postinst() { |
95 |
+ kernel-2_pkg_postinst |
96 |
+ |
97 |
+ local GRADM_COMPAT="sys-apps/gradm-2.9.1" |
98 |
+ |
99 |
+ ewarn |
100 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
101 |
+ ewarn "[server], [workstation], and [virtualization]. Those who intend to" |
102 |
+ ewarn "use one of these predefined grsecurity levels should read the help" |
103 |
+ ewarn "associated with the level. Because some options require >=gcc-4.5," |
104 |
+ ewarn "users with more, than one version of gcc installed should use gcc-config" |
105 |
+ ewarn "to select a compatible version." |
106 |
+ ewarn |
107 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
108 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
109 |
+ ewarn "It is strongly recommended that the following command is issued" |
110 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
111 |
+ ewarn |
112 |
+ ewarn "emerge -na =${GRADM_COMPAT}*" |
113 |
+ ewarn |
114 |
+} |