[gentoo-commits] gentoo-x86 commit in sys-kernel/hardened-sources: ChangeLog hardened-sources-2.6.32-r14.ebuild - gentoo-commits

From:	"Anthony G. Basile (blueness)" <blueness@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in sys-kernel/hardened-sources: ChangeLog hardened-sources-2.6.32-r14.ebuild
Date:	Sat, 21 Aug 2010 11:50:35
Message-Id:	`20100821115030.00E7D2004C@flycatcher.gentoo.org`

1

blueness    10/08/21 11:50:29

2

3

  Modified:             ChangeLog

4

  Added:                hardened-sources-2.6.32-r14.ebuild

5

  Log:

6

  Based on vanilla 2.6.32.19 + genpatches + grsec-2.2.0-2.6.32.19-201008131840

7

  (Portage version: 2.1.8.3/cvs/Linux x86_64)

8

9

Revision  Changes    Path

10

1.332                sys-kernel/hardened-sources/ChangeLog

11

12

file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.332&view=markup

13

plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.332&content-type=text/plain

14

diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?r1=1.331&r2=1.332

15

16

Index: ChangeLog

17

===================================================================

18

RCS file: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v

19

retrieving revision 1.331

20

retrieving revision 1.332

21

diff -u -r1.331 -r1.332

22

--- ChangeLog	14 Aug 2010 19:18:30 -0000	1.331

23

+++ ChangeLog	21 Aug 2010 11:50:29 -0000	1.332

24

@@ -1,6 +1,13 @@

25

 # ChangeLog for sys-kernel/hardened-sources

26

 # Copyright 1999-2010 Gentoo Foundation; Distributed under the GPL v2

27

-# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.331 2010/08/14 19:18:30 blueness Exp $

28

+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.332 2010/08/21 11:50:29 blueness Exp $

29

+

30

+*hardened-sources-2.6.32-r14 (21 Aug 2010)

31

+

32

+  21 Aug 2010; Anthony G. Basile <blueness@g.o>

33

+  +hardened-sources-2.6.32-r14.ebuild:

34

+  Based on vanilla 2.6.32.19 + genpatches +

35

+  grsec-2.2.0-2.6.32.19-201008131840

36

37

 *hardened-sources-2.6.32-r13 (14 Aug 2010)

1.1                  sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild

43

44

file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild?rev=1.1&view=markup

45

plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild?rev=1.1&content-type=text/plain

46

47

Index: hardened-sources-2.6.32-r14.ebuild

48

===================================================================

49

# Copyright 1999-2010 Gentoo Foundation

50

# Distributed under the terms of the GNU General Public License v2

51

# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild,v 1.1 2010/08/21 11:50:29 blueness Exp $

52

53

ETYPE="sources"

54

K_WANT_GENPATCHES="base extras"

55

K_GENPATCHES_VER="17"

56

57

inherit kernel-2

58

detect_version

59

60

HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-17"

61

HGPV_URI="mirror://gentoo/hardened-patches-${HGPV}.extras.tar.bz2"

62

SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"

63

64

# Note: 4420_grsecurity-2.2.0-2.6.32.19-201008131840.patch includes

65

# 1800_page-table-unmap-for-stack-guard-fix.patch so we don't want

66

# to apply it twice: see https://bugzilla.kernel.org/show_bug.cgi?id=16588

67

UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"

68

UNIPATCH_EXCLUDE="1800_page-table-unmap-for-stack-guard-fix.patch 4200_fbcondecor-0.9.6.patch"

69

70

DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"

71

HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"

72

IUSE=""

73

74

KEYWORDS="~alpha ~amd64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"

75

76

pkg_postinst() {

77

	kernel-2_pkg_postinst

78

79

	local GRADM_COMPAT="sys-apps/gradm-2.2.0*"

80

81

	ewarn

82

	ewarn "Hardened Gentoo provides four different predefined grsecurity level:"

83

	ewarn "[server], [server no rbac] [workstation] [workstation no rbac]"

84

	ewarn

85

	ewarn "Those who intend to use one of these predefined grsecurity levels"

86

	ewarn "should read the help associated with the level.  Users importing a"

87

	ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"

88

	ewarn "should review their selected grsecurity/PaX options carefully."

89

	ewarn

90

	ewarn "Users of grsecurity's RBAC system must ensure they are using"

91

	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."

92

	ewarn "It is strongly recommended that the following command is issued"

93

	ewarn "prior to booting a ${PF} kernel for the first time:"

94

	ewarn

95

	ewarn "emerge -na =${GRADM_COMPAT}"

96

	ewarn

97

}

1	blueness 10/08/21 11:50:29
2
3	Modified: ChangeLog
4	Added: hardened-sources-2.6.32-r14.ebuild
5	Log:
6	Based on vanilla 2.6.32.19 + genpatches + grsec-2.2.0-2.6.32.19-201008131840
7	(Portage version: 2.1.8.3/cvs/Linux x86_64)
8
9	Revision Changes Path
10	1.332 sys-kernel/hardened-sources/ChangeLog
11
12	file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.332&view=markup
13	plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.332&content-type=text/plain
14	diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?r1=1.331&r2=1.332
15
16	Index: ChangeLog
17	===================================================================
18	RCS file: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v
19	retrieving revision 1.331
20	retrieving revision 1.332
21	diff -u -r1.331 -r1.332
22	--- ChangeLog 14 Aug 2010 19:18:30 -0000 1.331
23	+++ ChangeLog 21 Aug 2010 11:50:29 -0000 1.332
24	@@ -1,6 +1,13 @@
25	# ChangeLog for sys-kernel/hardened-sources
26	# Copyright 1999-2010 Gentoo Foundation; Distributed under the GPL v2
27	-# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.331 2010/08/14 19:18:30 blueness Exp $
28	+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.332 2010/08/21 11:50:29 blueness Exp $
29	+
30	+*hardened-sources-2.6.32-r14 (21 Aug 2010)
31	+
32	+ 21 Aug 2010; Anthony G. Basile <blueness@g.o>
33	+ +hardened-sources-2.6.32-r14.ebuild:
34	+ Based on vanilla 2.6.32.19 + genpatches +
35	+ grsec-2.2.0-2.6.32.19-201008131840
36
37	*hardened-sources-2.6.32-r13 (14 Aug 2010)
38
39
40
41
42	1.1 sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild
43
44	file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild?rev=1.1&view=markup
45	plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild?rev=1.1&content-type=text/plain
46
47	Index: hardened-sources-2.6.32-r14.ebuild
48	===================================================================
49	# Copyright 1999-2010 Gentoo Foundation
50	# Distributed under the terms of the GNU General Public License v2
51	# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild,v 1.1 2010/08/21 11:50:29 blueness Exp $
52
53	ETYPE="sources"
54	K_WANT_GENPATCHES="base extras"
55	K_GENPATCHES_VER="17"
56
57	inherit kernel-2
58	detect_version
59
60	HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-17"
61	HGPV_URI="mirror://gentoo/hardened-patches-${HGPV}.extras.tar.bz2"
62	SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
63
64	# Note: 4420_grsecurity-2.2.0-2.6.32.19-201008131840.patch includes
65	# 1800_page-table-unmap-for-stack-guard-fix.patch so we don't want
66	# to apply it twice: see https://bugzilla.kernel.org/show_bug.cgi?id=16588
67	UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"
68	UNIPATCH_EXCLUDE="1800_page-table-unmap-for-stack-guard-fix.patch 4200_fbcondecor-0.9.6.patch"
69
70	DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
71	HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
72	IUSE=""
73
74	KEYWORDS="~alpha ~amd64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
75
76	pkg_postinst() {
77	kernel-2_pkg_postinst
78
79	local GRADM_COMPAT="sys-apps/gradm-2.2.0*"
80
81	ewarn
82	ewarn "Hardened Gentoo provides four different predefined grsecurity level:"
83	ewarn "[server], [server no rbac] [workstation] [workstation no rbac]"
84	ewarn
85	ewarn "Those who intend to use one of these predefined grsecurity levels"
86	ewarn "should read the help associated with the level. Users importing a"
87	ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"
88	ewarn "should review their selected grsecurity/PaX options carefully."
89	ewarn
90	ewarn "Users of grsecurity's RBAC system must ensure they are using"
91	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
92	ewarn "It is strongly recommended that the following command is issued"
93	ewarn "prior to booting a ${PF} kernel for the first time:"
94	ewarn
95	ewarn "emerge -na =${GRADM_COMPAT}"
96	ewarn
97	}

Gentoo Archives: gentoo-commits