From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1QnAiS-0000Kc-DH for garchives@archives.gentoo.org; Sat, 30 Jul 2011 14:40:36 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id BE4F121C058; Sat, 30 Jul 2011 14:40:27 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 755CE21C058 for ; Sat, 30 Jul 2011 14:40:27 +0000 (UTC) Received: from pelican.gentoo.org (unknown [66.219.59.40]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id C18E81B401D for ; Sat, 30 Jul 2011 14:40:26 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by pelican.gentoo.org (Postfix) with ESMTP id F12AE8003D for ; Sat, 30 Jul 2011 14:40:25 +0000 (UTC) From: "Anthony G. Basile" To: gentoo-commits@lists.gentoo.org Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Anthony G. Basile" Message-ID: <0e8ab503aace5683abe1a520c49a4ea57dd2ffe8.blueness@gentoo> Subject: [gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ X-VCS-Repository: dev/blueness X-VCS-Files: sys-kernel/hardened-sources/Manifest sys-kernel/hardened-sources/hardened-sources-2.6.32-r59.ebuild sys-kernel/hardened-sources/hardened-sources-2.6.39-r9.ebuild X-VCS-Directories: sys-kernel/hardened-sources/ X-VCS-Committer: blueness X-VCS-Committer-Name: Anthony G. Basile X-VCS-Revision: 0e8ab503aace5683abe1a520c49a4ea57dd2ffe8 Date: Sat, 30 Jul 2011 14:40:25 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: quoted-printable X-Archives-Salt: X-Archives-Hash: bf998025a2bb5e8d476b16d53a0e070c commit: 0e8ab503aace5683abe1a520c49a4ea57dd2ffe8 Author: Anthony G. Basile gentoo org> AuthorDate: Sat Jul 30 14:40:21 2011 +0000 Commit: Anthony G. Basile gentoo org> CommitDate: Sat Jul 30 14:40:21 2011 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=3Ddev/blueness.git;a= =3Dcommit;h=3D0e8ab503 sys-kernel/hardened-sources: testing 4421_remove-legacy-pax-ei.patch (Portage version: 2.1.10.3/git/Linux x86_64, signed Manifest commit with = key 0xD0455535) --- sys-kernel/hardened-sources/Manifest | 22 +++++++++ .../hardened-sources-2.6.32-r59.ebuild | 48 ++++++++++++++= ++++++ .../hardened-sources-2.6.39-r9.ebuild | 48 ++++++++++++++= ++++++ 3 files changed, 118 insertions(+), 0 deletions(-) diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-s= ources/Manifest index 0361467..bb664d7 100644 --- a/sys-kernel/hardened-sources/Manifest +++ b/sys-kernel/hardened-sources/Manifest @@ -1,2 +1,24 @@ +-----BEGIN PGP SIGNED MESSAGE----- +Hash: SHA256 + +DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb= SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4= 453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d +DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b= 78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7= f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 +DIST genpatches-2.6.32-40.base.tar.bz2 954168 RMD160 09a4ab92cd4a0bb6200= a386182d60bf94fcea5dc SHA1 4b937d27ec83398efb5af8a71a8d2b893cfd56fc SHA25= 6 63caf952fa4351813db7c280751e71e635aa0df259ccfd153ecda5ad06960cbe +DIST genpatches-2.6.32-40.extras.tar.bz2 24897 RMD160 fac4ce9c15953ad811= b2c500b0145f2eebea5e2d SHA1 8f9cdf4bc06dc5e806698d93c002798faa53fda1 SHA2= 56 309841a94e96d7076bca7fb547caae9786e24258e032da242f64768a413ddbf0 +DIST genpatches-2.6.39-5.base.tar.bz2 109396 RMD160 4f7e0efad4744ce198b3= 39634ff1879378c7a082 SHA1 518e5b99a4590ecb80c8518a408c0894e9f2376e SHA256= 35b474a21ea78d1d89ad27cf2bc119ba7a43616bdc1eb6df8672287432c37532 +DIST genpatches-2.6.39-5.extras.tar.bz2 17192 RMD160 98260c85537596a9558= daaa693e4e7f5e0ba0c17 SHA1 1b154be1890d87564b4f20e7b09a9d62a2f01061 SHA25= 6 337069a8c019ef301830088343928560634e463857c6463332ecf6a5585f13e7 +DIST hardened-patches-2.6.32-62.extras.tar.bz2 453635 RMD160 e9648a86789= 7c37992428b63663da8118bbb65e9 SHA1 81ec09a96243dc19c9dba4d3d8459078fcd173= a8 SHA256 f33ac126d39b21938c19cae01f5cc44852bb00d7506c555b1484b61d53d5ddc= 7 +DIST hardened-patches-2.6.39-10.extras.tar.bz2 520999 RMD160 e023f9aba4a= 044ebf5b931458e8aa6cc025e0fd4 SHA1 a46c18126ef01ebf19368c21aaf8183953fb38= f3 SHA256 fabaccf26a451f9f7fb6730670994cdecaa7ad208f48347c16c7f00940d93f6= 0 +DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a= 26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d8= 0b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e +DIST linux-2.6.39.tar.bz2 76096559 RMD160 feddc516bc15e78f12f611ff184d38= baa4eac4ee SHA1 68518112821e55f4ac1df64f2e0e809cedfcc5ef SHA256 584d17f2a= 3ee18a9501d7ff36907639e538cfdba4529978b8550c461d45c61f6 +EBUILD hardened-sources-2.6.32-r59.ebuild 1758 RMD160 76c88f9daf30d01bcd= eae7b5412f6d7a052fc02e SHA1 cb8b56832202162ff9b9c3e5cfbdfba76958d742 SHA2= 56 37a70e6e74a1662e19ba51b76e05016816c9a771b91995f8612bc85dbfee90b6 +EBUILD hardened-sources-2.6.39-r9.ebuild 1756 RMD160 fc73151e9e7f5de0fbb= 7fe0377dc6c6f42029335 SHA1 ccbed3e4b39407e2fb0f3c27c5157401ca73c98d SHA25= 6 404767e949365fde4d0f9047b040e8dac2e0952197339a9d7b61fa2544b48c1f MISC ChangeLog 1361 RMD160 25b223204f31d3928774eeba5650e08496e8b079 SHA1= af10d0023fe7d190165e7b65c104c0fc959630cf SHA256 53620a1af4294c699d13f348= 6efc268d8c75c74eaeb33f22f64ce8b9a22416c5 MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SH= A1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8= fcfd351f2f39ed63da68af3a5751fc2058d0d03813 +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v2.0.17 (GNU/Linux) + +iEYEAREIAAYFAk40F9QACgkQl5yvQNBFVTVayACgiox0epHE0XqoCZyq2gMd8iWk +PHgAoI/sWNoIExR3klFaC0c/g2knyCAO +=3DgNB3 +-----END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r59.ebui= ld b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r59.ebuild new file mode 100644 index 0000000..25f924d --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r59.ebuild @@ -0,0 +1,48 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.32-r58.ebuild,v 1.1 2011/07/25 14:09:34 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"40" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-62" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.39-r9.ebuil= d b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r9.ebuild new file mode 100644 index 0000000..6ea482e --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.39-r9.ebuild @@ -0,0 +1,48 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.39-r8.ebuild,v 1.1 2011/07/25 14:13:29 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"5" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-10" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +}