From: | "Anthony G. Basile (blueness)" <blueness@g.o> |
---|---|
To: | gentoo-commits@l.g.o |
Subject: | [gentoo-commits] gentoo-x86 commit in sys-kernel/hardened-sources: ChangeLog hardened-sources-2.6.32-r14.ebuild |
Date: | Sat, 21 Aug 2010 11:50:35 |
Message-Id: | 20100821115030.00E7D2004C@flycatcher.gentoo.org |
1 | blueness 10/08/21 11:50:29 |
2 | |
3 | Modified: ChangeLog |
4 | Added: hardened-sources-2.6.32-r14.ebuild |
5 | Log: |
6 | Based on vanilla 2.6.32.19 + genpatches + grsec-2.2.0-2.6.32.19-201008131840 |
7 | (Portage version: 2.1.8.3/cvs/Linux x86_64) |
8 | |
9 | Revision Changes Path |
10 | 1.332 sys-kernel/hardened-sources/ChangeLog |
11 | |
12 | file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.332&view=markup |
13 | plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.332&content-type=text/plain |
14 | diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?r1=1.331&r2=1.332 |
15 | |
16 | Index: ChangeLog |
17 | =================================================================== |
18 | RCS file: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v |
19 | retrieving revision 1.331 |
20 | retrieving revision 1.332 |
21 | diff -u -r1.331 -r1.332 |
22 | --- ChangeLog 14 Aug 2010 19:18:30 -0000 1.331 |
23 | +++ ChangeLog 21 Aug 2010 11:50:29 -0000 1.332 |
24 | @@ -1,6 +1,13 @@ |
25 | # ChangeLog for sys-kernel/hardened-sources |
26 | # Copyright 1999-2010 Gentoo Foundation; Distributed under the GPL v2 |
27 | -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.331 2010/08/14 19:18:30 blueness Exp $ |
28 | +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.332 2010/08/21 11:50:29 blueness Exp $ |
29 | + |
30 | +*hardened-sources-2.6.32-r14 (21 Aug 2010) |
31 | + |
32 | + 21 Aug 2010; Anthony G. Basile <blueness@g.o> |
33 | + +hardened-sources-2.6.32-r14.ebuild: |
34 | + Based on vanilla 2.6.32.19 + genpatches + |
35 | + grsec-2.2.0-2.6.32.19-201008131840 |
36 | |
37 | *hardened-sources-2.6.32-r13 (14 Aug 2010) |
38 | |
39 | |
40 | |
41 | |
42 | 1.1 sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild |
43 | |
44 | file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild?rev=1.1&view=markup |
45 | plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild?rev=1.1&content-type=text/plain |
46 | |
47 | Index: hardened-sources-2.6.32-r14.ebuild |
48 | =================================================================== |
49 | # Copyright 1999-2010 Gentoo Foundation |
50 | # Distributed under the terms of the GNU General Public License v2 |
51 | # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r14.ebuild,v 1.1 2010/08/21 11:50:29 blueness Exp $ |
52 | |
53 | ETYPE="sources" |
54 | K_WANT_GENPATCHES="base extras" |
55 | K_GENPATCHES_VER="17" |
56 | |
57 | inherit kernel-2 |
58 | detect_version |
59 | |
60 | HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-17" |
61 | HGPV_URI="mirror://gentoo/hardened-patches-${HGPV}.extras.tar.bz2" |
62 | SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
63 | |
64 | # Note: 4420_grsecurity-2.2.0-2.6.32.19-201008131840.patch includes |
65 | # 1800_page-table-unmap-for-stack-guard-fix.patch so we don't want |
66 | # to apply it twice: see https://bugzilla.kernel.org/show_bug.cgi?id=16588 |
67 | UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
68 | UNIPATCH_EXCLUDE="1800_page-table-unmap-for-stack-guard-fix.patch 4200_fbcondecor-0.9.6.patch" |
69 | |
70 | DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
71 | HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
72 | IUSE="" |
73 | |
74 | KEYWORDS="~alpha ~amd64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
75 | |
76 | pkg_postinst() { |
77 | kernel-2_pkg_postinst |
78 | |
79 | local GRADM_COMPAT="sys-apps/gradm-2.2.0*" |
80 | |
81 | ewarn |
82 | ewarn "Hardened Gentoo provides four different predefined grsecurity level:" |
83 | ewarn "[server], [server no rbac] [workstation] [workstation no rbac]" |
84 | ewarn |
85 | ewarn "Those who intend to use one of these predefined grsecurity levels" |
86 | ewarn "should read the help associated with the level. Users importing a" |
87 | ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
88 | ewarn "should review their selected grsecurity/PaX options carefully." |
89 | ewarn |
90 | ewarn "Users of grsecurity's RBAC system must ensure they are using" |
91 | ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
92 | ewarn "It is strongly recommended that the following command is issued" |
93 | ewarn "prior to booting a ${PF} kernel for the first time:" |
94 | ewarn |
95 | ewarn "emerge -na =${GRADM_COMPAT}" |
96 | ewarn |
97 | } |