From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1QUjcY-0005HM-DQ for garchives@archives.gentoo.org; Thu, 09 Jun 2011 18:06:18 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 0C2391C1BD; Thu, 9 Jun 2011 18:06:10 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id C07811C1BD for ; Thu, 9 Jun 2011 18:06:10 +0000 (UTC) Received: from pelican.gentoo.org (unknown [66.219.59.40]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 490341B4001 for ; Thu, 9 Jun 2011 18:06:10 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by pelican.gentoo.org (Postfix) with ESMTP id 9FCEC8003C for ; Thu, 9 Jun 2011 18:06:09 +0000 (UTC) From: "Anthony G. Basile" To: gentoo-commits@lists.gentoo.org Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Anthony G. Basile" Message-ID: <039dca554dbef38cdd8e7300b7196ddacb23df95.blueness@gentoo> Subject: [gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ X-VCS-Repository: dev/blueness X-VCS-Files: sys-kernel/hardened-sources/ChangeLog sys-kernel/hardened-sources/Manifest sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebuild sys-kernel/hardened-sources/hardened-sources-2.6.39-r1.ebuild X-VCS-Directories: sys-kernel/hardened-sources/ X-VCS-Committer: blueness X-VCS-Committer-Name: Anthony G. Basile X-VCS-Revision: 039dca554dbef38cdd8e7300b7196ddacb23df95 Date: Thu, 9 Jun 2011 18:06:09 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: quoted-printable X-Archives-Salt: X-Archives-Hash: 96beb0e80b25ad2a8fc7fa6b9fd6f966 commit: 039dca554dbef38cdd8e7300b7196ddacb23df95 Author: Anthony G. Basile gentoo org> AuthorDate: Thu Jun 9 18:06:04 2011 +0000 Commit: Anthony G. Basile gentoo org> CommitDate: Thu Jun 9 18:06:04 2011 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=3Ddev/blueness.git;a= =3Dcommit;h=3D039dca55 sys-kernel/hardened-sources: testing hardened patchset 20110607 (Portage version: 2.1.9.42/git/Linux x86_64, signed Manifest commit with = key 0xD0455535) --- sys-kernel/hardened-sources/ChangeLog | 7 +++ sys-kernel/hardened-sources/Manifest | 20 +++++++-- .../hardened-sources-2.6.32-r51.ebuild | 48 ++++++++++++++= ++++++ .../hardened-sources-2.6.39-r1.ebuild | 48 ++++++++++++++= ++++++ 4 files changed, 119 insertions(+), 4 deletions(-) diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-= sources/ChangeLog index 81829cc..aac1057 100644 --- a/sys-kernel/hardened-sources/ChangeLog +++ b/sys-kernel/hardened-sources/ChangeLog @@ -1,5 +1,12 @@ =20 =20 +*hardened-sources-2.6.39-r1 (09 Jun 2011) +*hardened-sources-2.6.32-r51 (09 Jun 2011) + + 09 Jun 2011; Anthony G. Basile + +hardened-sources-2.6.32-r51.ebuild, +hardened-sources-2.6.39-r1.ebuil= d: + testing hardened patchset 20110607 + 07 Jun 2011; Anthony G. Basile -hardened-sources-2.6.32-r50.ebuild, -hardened-sources-2.6.39.ebuild: moved to tree diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-s= ources/Manifest index 5c692b7..c0d4529 100644 --- a/sys-kernel/hardened-sources/Manifest +++ b/sys-kernel/hardened-sources/Manifest @@ -1,12 +1,24 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =20 -MISC ChangeLog 15355 RMD160 7e266bc1f8f81e33351a84760e6a039c11de2d48 SHA= 1 7979c654bdf69bb2422eca67ac8b3ec7edd3b46c SHA256 f3409d0917038237b0fc28c= d996e1ec9bfa540e6e33ac4e87533f03a6a152a13 +DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb= SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4= 453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d +DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b= 78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7= f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 +DIST genpatches-2.6.32-38.base.tar.bz2 926828 RMD160 e7223f2252af7936613= c0ce388ec2ee0b3f1b040 SHA1 b76991a3330a57a6235fb6de3dccd2d583947898 SHA25= 6 d2a9fd274a168855aafc35181977e6dc5d2e618b5c9f69264f028c56aa6281f3 +DIST genpatches-2.6.32-38.extras.tar.bz2 24934 RMD160 e3e1d60fb45a3e3c81= 8ddda36b9180d4fc46679e SHA1 d16a34dfa35d163ea4042058b3865c389f3802e9 SHA2= 56 50b70c76461aa52f7f2ad88175e7f08eb555f7f1dfd274759ec0c2a9748bde5e +DIST genpatches-2.6.39-2.base.tar.bz2 57467 RMD160 c20f1d07ea619bbd1d9ed= ab6418507127f8ae4c5 SHA1 d32a62dc405c0fbc002b7d1946959a036c5a2217 SHA256 = 0cc7c4b536be7eaba3a3f1875132570d5ccc0ea1317ff9891544c492330350e6 +DIST genpatches-2.6.39-2.extras.tar.bz2 15672 RMD160 e94ef6536034ccb5e8c= f7d5b0282c2274f33cc0d SHA1 68edf710278d5c0454f361b140663d9eb4ea6998 SHA25= 6 8cd7268fc0329278e0fd00fdde9e928c353e591c5147fb4eed50a80fefbf87fa +DIST hardened-patches-2.6.32-54.extras.tar.bz2 444807 RMD160 9f49c9db992= bbb3d70ae6effaaa422822bcecf8d SHA1 7f3182f05793b0a6e2b404b04400e8f988c000= d9 SHA256 2cf5950cad79e743bb616588cf979bbf15c1587734057abb1fbb5088d1ca773= b +DIST hardened-patches-2.6.39-2.extras.tar.bz2 513128 RMD160 e7a90638c317= d7fc7e376115efa93d652bdcc716 SHA1 3f4ae89b55bf21cd4247fbd7766c376d8b49f93= 4 SHA256 7d60e35494ea2babcee128aa61ee00715c5317826a91f32469234fa816c66f90 +DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a= 26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d8= 0b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e +DIST linux-2.6.39.tar.bz2 76096559 RMD160 feddc516bc15e78f12f611ff184d38= baa4eac4ee SHA1 68518112821e55f4ac1df64f2e0e809cedfcc5ef SHA256 584d17f2a= 3ee18a9501d7ff36907639e538cfdba4529978b8550c461d45c61f6 +EBUILD hardened-sources-2.6.32-r51.ebuild 1758 RMD160 9ee57eb4f2003f6bd6= 2ef68364fb6394b8bfe30f SHA1 1df7c7c3ea513ee6b97a4a02a899dd60398ae5f7 SHA2= 56 df77a5ea74136c07282950887026272fc9f747c188576fedc4847e81d4fe9b67 +EBUILD hardened-sources-2.6.39-r1.ebuild 1752 RMD160 d63db70cab39d273a22= 8400c09345147839b30b6 SHA1 7a4c994b975da83ecaa0981e07a148c5560ac3c3 SHA25= 6 fb1a4ffe9deb1416820dc5a9a50369b594ee2b4eb831bc9c14eda9f6997efe7f +MISC ChangeLog 15609 RMD160 b889f2c5ae296956b4177d301bf28cd3d711a9f0 SHA= 1 ab345fbb72447bb9f3a7e4d2820d30b2ecad3b91 SHA256 5bbee9cabbd1fe36aa61ef9= e6ee86021b1190bb6c008ef6de94774f2c863c3b7 MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SH= A1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8= fcfd351f2f39ed63da68af3a5751fc2058d0d03813 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (GNU/Linux) =20 -iEYEAREIAAYFAk3ukNAACgkQl5yvQNBFVTURBQCggdqV5SlfgD140lPIrYAauMF2 -qaoAn3AsulQMOWefz6PQibH20UEvCatj -=3DfpRm +iEYEAREIAAYFAk3xC4wACgkQl5yvQNBFVTWALgCfZwJsx95BkDTwulpIPc0OsR0G +JQQAoIvD5cI7LABhKyPHHi9vnXplJEbk +=3D4jmo -----END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebui= ld b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebuild new file mode 100644 index 0000000..6c4d3fb --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r51.ebuild @@ -0,0 +1,48 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.32-r50.ebuild,v 1.1 2011/06/07 20:24:42 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"38" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-54" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.39-r1.ebuil= d b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r1.ebuild new file mode 100644 index 0000000..d41f3fc --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r1.ebuild @@ -0,0 +1,48 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.39.ebuild,v 1.1 2011/06/07 20:28:15 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"2" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +}