1 |
commit: 74f0b631c457cc1be6346f658556b48b89c19f07 |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Sat Jun 2 16:13:16 2012 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Sat Jun 2 16:13:16 2012 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=dev/blueness.git;a=commit;h=74f0b631 |
7 |
|
8 |
sys-kernel/hardened-sources: testing patchset 20120601 |
9 |
|
10 |
(Portage version: 2.1.10.49/git/Linux x86_64, signed Manifest commit with key 0xD0455535) |
11 |
|
12 |
--- |
13 |
sys-kernel/hardened-sources/ChangeLog | 9 ++++ |
14 |
sys-kernel/hardened-sources/Manifest | 29 ++++++++++-- |
15 |
.../hardened-sources-2.6.32-r107.ebuild | 51 ++++++++++++++++++++ |
16 |
.../hardened-sources-3.2.18-r1.ebuild | 50 +++++++++++++++++++ |
17 |
.../hardened-sources-3.3.7-r1.ebuild | 50 +++++++++++++++++++ |
18 |
5 files changed, 185 insertions(+), 4 deletions(-) |
19 |
|
20 |
diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog |
21 |
index cad8366..2714448 100644 |
22 |
--- a/sys-kernel/hardened-sources/ChangeLog |
23 |
+++ b/sys-kernel/hardened-sources/ChangeLog |
24 |
@@ -1,5 +1,14 @@ |
25 |
|
26 |
|
27 |
+*hardened-sources-3.3.7-r1 (02 Jun 2012) |
28 |
+*hardened-sources-3.2.18-r1 (02 Jun 2012) |
29 |
+*hardened-sources-2.6.32-r107 (02 Jun 2012) |
30 |
+ |
31 |
+ 02 Jun 2012; Anthony G. Basile <blueness@g.o> |
32 |
+ +hardened-sources-2.6.32-r107.ebuild, +hardened-sources-3.2.18-r1.ebuild, |
33 |
+ +hardened-sources-3.3.7-r1.ebuild: |
34 |
+ testing patchset 20120601 |
35 |
+ |
36 |
28 May 2012; Anthony G. Basile <blueness@g.o> |
37 |
-hardened-sources-2.6.32-r106.ebuild, -hardened-sources-3.2.18.ebuild, |
38 |
-hardened-sources-3.3.7.ebuild: |
39 |
|
40 |
diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest |
41 |
index 95051da..6121a4c 100644 |
42 |
--- a/sys-kernel/hardened-sources/Manifest |
43 |
+++ b/sys-kernel/hardened-sources/Manifest |
44 |
@@ -1,12 +1,33 @@ |
45 |
-----BEGIN PGP SIGNED MESSAGE----- |
46 |
Hash: SHA256 |
47 |
|
48 |
-MISC ChangeLog 22996 RMD160 cb229896e4c302bd371f5f75e1d51d0e991bddc4 SHA1 d9805adcba3d823a1a09d823603759cc8badb60b SHA256 285a5ea05fabe8904021c7857f59254ca3557088e9515fd9f98fd1b889940a8d |
49 |
+DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d |
50 |
+DIST deblob-3.2 107602 RMD160 56f1dfe4f0254c802b49ea5220c4f67e56649852 SHA1 83421184d88d02e24de2adbc5debfb03454a7f4b SHA256 5db88405af6d51a77d84354afc3b2bdf673b1a5dcff37bb8db4ccbd12d91db20 |
51 |
+DIST deblob-3.3 107222 RMD160 2796d93a1a0e3034af752ac8684f935cfeff024c SHA1 787e17b058a678f54a4f951510206bc8d72c3d5c SHA256 09a4ee54faf7d96a9ca150bfa3a7a2234d589457bac40f03a6e19b5774b1ef5c |
52 |
+DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 |
53 |
+DIST deblob-check-3.2 423268 RMD160 8cb0c1b4a289db94543396c4445c4c7a35d2ba70 SHA1 01e50f824a577d15749f24643fdd136180342808 SHA256 9e67dd0885aa8ef356dbc15d487c8dea5a54f74c5b03a5d7946b65ee43f12638 |
54 |
+DIST deblob-check-3.3 427140 RMD160 98998624c083205452cdc22df60d60d06b807315 SHA1 61161f84859542cd3bfe8e961fc75bf6f72031f7 SHA256 ed8fab94c7f01d89a3007135a1260553b71fa1d8e0b4e42bdecb3ffbba81b3fd |
55 |
+DIST genpatches-2.6.32-48.base.tar.bz2 1033142 RMD160 c42b6a5edbb9965391bbcf6ee40bb79c2080f497 SHA1 95e90447ecd875228121fa32e8cf89eaabde5fa6 SHA256 7438e7b7c0ef32e0c639cf89c4f53a3bc7917ca466b1fcf3931adb65ad05b583 |
56 |
+DIST genpatches-2.6.32-48.extras.tar.bz2 24939 RMD160 055706793fb532caeb3d364c5e1bd0ad46aff4b2 SHA1 2a966a4d5f9a718a0d43c25df563d0377154996f SHA256 ee714d14310fd5242ce2e28a8f8e5fda63ba18957960814876506f8754b9d2a0 |
57 |
+DIST genpatches-3.2-14.base.tar.bz2 312010 RMD160 4c16517dcac6ef2a80cdc0eb69e149fbb519b127 SHA1 2d15924f45942b98e38fd407b55136cc52857804 SHA256 44f761e24376e75acc9160bbef85127121609e8fe435f55cac0e047a3e883d17 |
58 |
+DIST genpatches-3.2-14.extras.tar.bz2 17208 RMD160 8324da51ce71afb0d375f34b0dd05209079bd7a3 SHA1 c2f4e029aebbc0ae82221aa2643de06a2d08cbd8 SHA256 7f60ab18e2965d024b7a36327577bcc771061f2cfac221ed475a6fd6b2ab89c7 |
59 |
+DIST genpatches-3.3-8.base.tar.bz2 187049 RMD160 43a10a9c1690f2f55878ab241edded9ccde54785 SHA1 6c1edca64253aff8b4a605c60b1b4e5e4c5286a7 SHA256 cddcbf365546c50aae080049d09fe55112443a79426c78c01e9fa6e89f4f72ed |
60 |
+DIST genpatches-3.3-8.extras.tar.bz2 17205 RMD160 eb3141c66ffb16282c2e2ef0fb5227a13172464d SHA1 4376fe5995aaa058cdd9081c003aeef56d099b5e SHA256 9356a196eb8aa74110165bc9d04674785693393c34f4a088d60bb0091ceb1bdc |
61 |
+DIST hardened-patches-2.6.32-109.extras.tar.bz2 740096 RMD160 ca2cc47b3e7b3b1631e34477933e0a85d3c924e7 SHA1 354f3b076a6544f69166eb929dec4823dba9fd2d SHA256 33edcdb802af8643a7b75cdca0ed53f92ae8d022bd4c515b756cd34cdc020db3 |
62 |
+DIST hardened-patches-3.2.18-2.extras.tar.bz2 623109 RMD160 25352d58caa3efac197b23874fd9a5f7be3c13c4 SHA1 c263267c854311fa5aa4ec29cbf4c3cb0dda15d7 SHA256 11957c42224365961a4fca62f22504ea7bb39f1063014f416dde54f3bf305263 |
63 |
+DIST hardened-patches-3.3.7-2.extras.tar.bz2 549752 RMD160 6a3c81687d713606872281fadfba9a3a4ba2de5c SHA1 fec7ec6b1b7b13bb9dca6bd80f652adc5ef9fe54 SHA256 6719eb0d4e58ca3c449ba5df22d5ac04c1ba2dc7649a3d02176822b0e6761c43 |
64 |
+DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e |
65 |
+DIST linux-3.2.tar.bz2 78147838 RMD160 15eb022305dfc8b0e1d59e396911fa86eb9c3bdf SHA1 3460afa971049aa79b8f914e1bfd619eedd19f55 SHA256 c881fc2b53cf0da7ca4538aa44623a7de043a41f76fd5d0f51a31f6ed699d463 |
66 |
+DIST linux-3.3.tar.bz2 78963640 RMD160 2bdb25e5af4549a43d8b202508b85837005146e5 SHA1 dc10fd59e5afbe0f74de06862435dd8bed07ca6a SHA256 8fd669b4e48181b8d44644a45bf421a84bb8d5ec273ef36349796443e442f333 |
67 |
+EBUILD hardened-sources-2.6.32-r107.ebuild 1818 RMD160 edb23d0ca09325fa78781f13b112f3f3c6e0dd99 SHA1 6ad8efd6b9cd9038e16dfe5f4db5b1a47279afd0 SHA256 146f9ea1ed3ad17f96c9f96691570d85dc8fcce97fda4413cc3969de05f04524 |
68 |
+EBUILD hardened-sources-3.2.18-r1.ebuild 1811 RMD160 55a9c62073289b6a2aa369b4f2251aa969dca321 SHA1 c4f37e9dc2f358c3747c4446e510e051350e1057 SHA256 95d274754d987b78d6fc275644f479db6c3c052d8cb0d06f8521f66f1809df7b |
69 |
+EBUILD hardened-sources-3.3.7-r1.ebuild 1839 RMD160 261a32d8c95684a125b5dbbc33a4256ada588ea0 SHA1 76ef4201fd9b5f73e51ee265d535e25f1618db09 SHA256 75be6e9cd62071f83f439f5aaf02911d04803bdfdfeafb7866360908aa74b7a6 |
70 |
+MISC ChangeLog 23321 RMD160 b197c14781a1b8828962992d3d71329b2defb91c SHA1 e099dfdc9d7c19d66a2fce6587e593858016c186 SHA256 bd7134e8622c05027524ecbddac875dc037ee80410fd8875ba689f50ac01660c |
71 |
MISC metadata.xml 576 RMD160 f3d34140c6074436e3861275202f48ba32be6ccc SHA1 d1a11f53284e9ff098b6a5f14eaac6756e238588 SHA256 53e0d3bfb958bcbf62457a89abe76a7a6f5a2b1df5decb04bf8b840184cc5828 |
72 |
-----BEGIN PGP SIGNATURE----- |
73 |
Version: GnuPG v2.0.17 (GNU/Linux) |
74 |
|
75 |
-iEUEAREIAAYFAk/DsYUACgkQl5yvQNBFVTW/RACYsoE2ySnimy+GryrcVcP7gQHM |
76 |
-VQCeMT4XkOOoFjv+CHQUDQ6zf4b8Kik= |
77 |
-=iHa6 |
78 |
+iEYEAREIAAYFAk/KO5wACgkQl5yvQNBFVTVcUQCbBzYjrtD1Rkh3vf+z5iK0Ahnz |
79 |
+WIEAn2kdlaQQmCIzoO7JD21mc4kF106r |
80 |
+=XXtl |
81 |
-----END PGP SIGNATURE----- |
82 |
|
83 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r107.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r107.ebuild |
84 |
new file mode 100644 |
85 |
index 0000000..1dee9a6 |
86 |
--- /dev/null |
87 |
+++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r107.ebuild |
88 |
@@ -0,0 +1,51 @@ |
89 |
+# Copyright 1999-2012 Gentoo Foundation |
90 |
+# Distributed under the terms of the GNU General Public License v2 |
91 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r106.ebuild,v 1.1 2012/05/28 16:52:30 blueness Exp $ |
92 |
+ |
93 |
+EAPI="4" |
94 |
+ |
95 |
+ETYPE="sources" |
96 |
+K_WANT_GENPATCHES="base extras" |
97 |
+K_GENPATCHES_VER="48" |
98 |
+K_DEBLOB_AVAILABLE="1" |
99 |
+ |
100 |
+inherit kernel-2 |
101 |
+detect_version |
102 |
+ |
103 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-109" |
104 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
105 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
106 |
+ |
107 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
108 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
109 |
+ |
110 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
111 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
112 |
+IUSE="deblob" |
113 |
+ |
114 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
115 |
+ |
116 |
+RDEPEND=">=sys-devel/gcc-4.5" |
117 |
+ |
118 |
+pkg_postinst() { |
119 |
+ kernel-2_pkg_postinst |
120 |
+ |
121 |
+ local GRADM_COMPAT="sys-apps/gradm-2.9*" |
122 |
+ |
123 |
+ ewarn |
124 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
125 |
+ ewarn "[server], [workstation], and [virtualization]." |
126 |
+ ewarn |
127 |
+ ewarn "Those who intend to use one of these predefined grsecurity levels" |
128 |
+ ewarn "should read the help associated with the level. Users importing a" |
129 |
+ ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," |
130 |
+ ewarn "should review their selected grsecurity/PaX options carefully." |
131 |
+ ewarn |
132 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
133 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
134 |
+ ewarn "It is strongly recommended that the following command is issued" |
135 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
136 |
+ ewarn |
137 |
+ ewarn "emerge -na =${GRADM_COMPAT}" |
138 |
+ ewarn |
139 |
+} |
140 |
|
141 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-3.2.18-r1.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.2.18-r1.ebuild |
142 |
new file mode 100644 |
143 |
index 0000000..f9b592f |
144 |
--- /dev/null |
145 |
+++ b/sys-kernel/hardened-sources/hardened-sources-3.2.18-r1.ebuild |
146 |
@@ -0,0 +1,50 @@ |
147 |
+# Copyright 1999-2012 Gentoo Foundation |
148 |
+# Distributed under the terms of the GNU General Public License v2 |
149 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.2.18.ebuild,v 1.1 2012/05/28 16:55:15 blueness Exp $ |
150 |
+ |
151 |
+EAPI="4" |
152 |
+ |
153 |
+ETYPE="sources" |
154 |
+K_WANT_GENPATCHES="base extras" |
155 |
+K_GENPATCHES_VER="14" |
156 |
+K_DEBLOB_AVAILABLE="1" |
157 |
+ |
158 |
+inherit kernel-2 |
159 |
+detect_version |
160 |
+ |
161 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2" |
162 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
163 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
164 |
+ |
165 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
166 |
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" |
167 |
+ |
168 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
169 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
170 |
+IUSE="deblob" |
171 |
+ |
172 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
173 |
+ |
174 |
+RDEPEND=">=sys-devel/gcc-4.5" |
175 |
+ |
176 |
+pkg_postinst() { |
177 |
+ kernel-2_pkg_postinst |
178 |
+ |
179 |
+ local GRADM_COMPAT="sys-apps/gradm-2.9" |
180 |
+ |
181 |
+ ewarn |
182 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
183 |
+ ewarn "[server], [workstation], and [virtualization]. Those who intend to" |
184 |
+ ewarn "use one of these predefined grsecurity levels should read the help" |
185 |
+ ewarn "associated with the level. Because some options require >=gcc-4.5," |
186 |
+ ewarn "users with more, than one version of gcc installed should use gcc-config" |
187 |
+ ewarn "to select a compatible version." |
188 |
+ ewarn |
189 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
190 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
191 |
+ ewarn "It is strongly recommended that the following command is issued" |
192 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
193 |
+ ewarn |
194 |
+ ewarn "emerge -na =${GRADM_COMPAT}*" |
195 |
+ ewarn |
196 |
+} |
197 |
|
198 |
diff --git a/sys-kernel/hardened-sources/hardened-sources-3.3.7-r1.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.3.7-r1.ebuild |
199 |
new file mode 100644 |
200 |
index 0000000..5698427 |
201 |
--- /dev/null |
202 |
+++ b/sys-kernel/hardened-sources/hardened-sources-3.3.7-r1.ebuild |
203 |
@@ -0,0 +1,50 @@ |
204 |
+# Copyright 1999-2012 Gentoo Foundation |
205 |
+# Distributed under the terms of the GNU General Public License v2 |
206 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.3.7.ebuild,v 1.1 2012/05/28 16:58:01 blueness Exp $ |
207 |
+ |
208 |
+EAPI="4" |
209 |
+ |
210 |
+ETYPE="sources" |
211 |
+K_WANT_GENPATCHES="base extras" |
212 |
+K_GENPATCHES_VER="8" |
213 |
+K_DEBLOB_AVAILABLE="1" |
214 |
+ |
215 |
+inherit kernel-2 |
216 |
+detect_version |
217 |
+ |
218 |
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2" |
219 |
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" |
220 |
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
221 |
+ |
222 |
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
223 |
+UNIPATCH_EXCLUDE="1800_nohz-load-acct-fix.patch 4200_fbcondecor-0.9.6.patch" |
224 |
+ |
225 |
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
226 |
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
227 |
+IUSE="deblob" |
228 |
+ |
229 |
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
230 |
+ |
231 |
+RDEPEND=">=sys-devel/gcc-4.5" |
232 |
+ |
233 |
+pkg_postinst() { |
234 |
+ kernel-2_pkg_postinst |
235 |
+ |
236 |
+ local GRADM_COMPAT="sys-apps/gradm-2.9" |
237 |
+ |
238 |
+ ewarn |
239 |
+ ewarn "Hardened Gentoo provides three different predefined grsecurity level:" |
240 |
+ ewarn "[server], [workstation], and [virtualization]. Those who intend to" |
241 |
+ ewarn "use one of these predefined grsecurity levels should read the help" |
242 |
+ ewarn "associated with the level. Because some options require >=gcc-4.5," |
243 |
+ ewarn "users with more, than one version of gcc installed should use gcc-config" |
244 |
+ ewarn "to select a compatible version." |
245 |
+ ewarn |
246 |
+ ewarn "Users of grsecurity's RBAC system must ensure they are using" |
247 |
+ ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." |
248 |
+ ewarn "It is strongly recommended that the following command is issued" |
249 |
+ ewarn "prior to booting a ${PF} kernel for the first time:" |
250 |
+ ewarn |
251 |
+ ewarn "emerge -na =${GRADM_COMPAT}*" |
252 |
+ ewarn |
253 |
+} |