From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.77) (envelope-from ) id 1Sm9cg-0007bG-U9 for garchives@archives.gentoo.org; Tue, 03 Jul 2012 20:22:59 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 6FF33E0552; Tue, 3 Jul 2012 20:22:46 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 28228E0552 for ; Tue, 3 Jul 2012 20:22:46 +0000 (UTC) Received: from hornbill.gentoo.org (hornbill.gentoo.org [94.100.119.163]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 228AF1B404E for ; Tue, 3 Jul 2012 20:22:45 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by hornbill.gentoo.org (Postfix) with ESMTP id 91953E5436 for ; Tue, 3 Jul 2012 20:22:44 +0000 (UTC) From: "Anthony G. Basile" To: gentoo-commits@lists.gentoo.org Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Anthony G. Basile" Message-ID: <1341346747.2a6cf4d459b1e1a264a3ff2324ce12527713e648.blueness@gentoo> Subject: [gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ X-VCS-Repository: dev/blueness X-VCS-Files: sys-kernel/hardened-sources/ChangeLog sys-kernel/hardened-sources/Manifest sys-kernel/hardened-sources/hardened-sources-2.6.32-r114.ebuild sys-kernel/hardened-sources/hardened-sources-3.2.21-r3.ebuild sys-kernel/hardened-sources/hardened-sources-3.4.4-r2.ebuild X-VCS-Directories: sys-kernel/hardened-sources/ X-VCS-Committer: blueness X-VCS-Committer-Name: Anthony G. Basile X-VCS-Revision: 2a6cf4d459b1e1a264a3ff2324ce12527713e648 X-VCS-Branch: master Date: Tue, 3 Jul 2012 20:22:44 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 56e6e3d7-7cc2-440c-b8c5-2c5d85e629cb X-Archives-Hash: 5413ddc562a508c9e26e745c29469b17 commit: 2a6cf4d459b1e1a264a3ff2324ce12527713e648 Author: Anthony G. Basile gentoo org> AuthorDate: Tue Jul 3 20:19:07 2012 +0000 Commit: Anthony G. Basile gentoo org> CommitDate: Tue Jul 3 20:19:07 2012 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=3Ddev/blueness.git;a= =3Dcommit;h=3D2a6cf4d4 sys-kernel/hardened-sources: testing patchset 20120702 (Portage version: 2.1.10.65/git/Linux x86_64, signed Manifest commit with= key 0xD0455535) --- sys-kernel/hardened-sources/ChangeLog | 9 ++++ sys-kernel/hardened-sources/Manifest | 29 ++++++++++-- .../hardened-sources-2.6.32-r114.ebuild | 51 ++++++++++++++= ++++++ .../hardened-sources-3.2.21-r3.ebuild | 50 ++++++++++++++= +++++ .../hardened-sources-3.4.4-r2.ebuild | 50 ++++++++++++++= +++++ 5 files changed, 185 insertions(+), 4 deletions(-) diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-= sources/ChangeLog index 9864487..694f525 100644 --- a/sys-kernel/hardened-sources/ChangeLog +++ b/sys-kernel/hardened-sources/ChangeLog @@ -1,5 +1,14 @@ =20 =20 +*hardened-sources-3.4.4-r2 (03 Jul 2012) +*hardened-sources-3.2.21-r3 (03 Jul 2012) +*hardened-sources-2.6.32-r114 (03 Jul 2012) + + 03 Jul 2012; Anthony G. Basile + +hardened-sources-2.6.32-r114.ebuild, +hardened-sources-3.2.21-r3.ebui= ld, + +hardened-sources-3.4.4-r2.ebuild: + testing patchset 20120702 + 03 Jul 2012; Anthony G. Basile -hardened-sources-3.4.2-r1.ebuild: Moved to tree diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-s= ources/Manifest index 70bef57..1c9adaf 100644 --- a/sys-kernel/hardened-sources/Manifest +++ b/sys-kernel/hardened-sources/Manifest @@ -1,12 +1,33 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =20 -MISC ChangeLog 27376 RMD160 b9628a1e8e004552c7ae89b5a9dbb285ce3e0131 SHA= 1 241de9a6da0629376a15cc9180d3d122cdab1550 SHA256 f1559676ab8b6a6c5b20539= 9dad0eb7dc29d66a285995b774b6d00990d636bc0 +DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb= SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4= 453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d +DIST deblob-3.2 107602 RMD160 56f1dfe4f0254c802b49ea5220c4f67e56649852 S= HA1 83421184d88d02e24de2adbc5debfb03454a7f4b SHA256 5db88405af6d51a77d843= 54afc3b2bdf673b1a5dcff37bb8db4ccbd12d91db20 +DIST deblob-3.4 109026 RMD160 ef9be1bdfbca2bfe4d5e60dd33ed6ec30a1e5c52 S= HA1 83b455ad2db0470704225d1e81864af8fd3516c3 SHA256 2fca296bccfa7dc25447f= 36975971597f67730168a9bc4db0853e55347950680 +DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b= 78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7= f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 +DIST deblob-check-3.2 423268 RMD160 8cb0c1b4a289db94543396c4445c4c7a35d2= ba70 SHA1 01e50f824a577d15749f24643fdd136180342808 SHA256 9e67dd0885aa8ef= 356dbc15d487c8dea5a54f74c5b03a5d7946b65ee43f12638 +DIST deblob-check-3.4 448778 RMD160 a00d430d137cd9d653a3c42cb36c6e31330e= d007 SHA1 4d54aa271cebc0e770e152802f4cadf0dcc9471e SHA256 28ce952c082e765= 784f9e5b63f5a3a4fb93545e5e788dc94d094c0b3ae8ea3a0 +DIST genpatches-2.6.32-48.base.tar.bz2 1033142 RMD160 c42b6a5edbb9965391= bbcf6ee40bb79c2080f497 SHA1 95e90447ecd875228121fa32e8cf89eaabde5fa6 SHA2= 56 7438e7b7c0ef32e0c639cf89c4f53a3bc7917ca466b1fcf3931adb65ad05b583 +DIST genpatches-2.6.32-48.extras.tar.bz2 24939 RMD160 055706793fb532caeb= 3d364c5e1bd0ad46aff4b2 SHA1 2a966a4d5f9a718a0d43c25df563d0377154996f SHA2= 56 ee714d14310fd5242ce2e28a8f8e5fda63ba18957960814876506f8754b9d2a0 +DIST genpatches-3.2-16.base.tar.bz2 445530 RMD160 2032502bc7737ddbadff1b= 333192cdc305ed7a91 SHA1 434476cbe14904778731203f9491de16c554c23a SHA256 3= a3d16b7ffa401598bd131a7e8b2996f729b51dd6e88cae79157fd6bca972842 +DIST genpatches-3.2-16.extras.tar.bz2 17208 RMD160 8324da51ce71afb0d375f= 34b0dd05209079bd7a3 SHA1 c2f4e029aebbc0ae82221aa2643de06a2d08cbd8 SHA256 = 7f60ab18e2965d024b7a36327577bcc771061f2cfac221ed475a6fd6b2ab89c7 +DIST genpatches-3.4-5.base.tar.bz2 83423 RMD160 5b774777acf009610c8782b4= 69ab938e2733ed99 SHA1 4c954b522a4dafa2be203edd2cbf9d159c557ee1 SHA256 4ee= 8ef2834f0993536188ad2de8f6d3eddac963cc935c1d77eac4f98b99199eb +DIST genpatches-3.4-5.extras.tar.bz2 17502 RMD160 c5b834a28335f9a173e8e8= 63b377aff513c791e5 SHA1 7278ac0434a59c1981c585e6a49305351b60573c SHA256 2= b537431a408445cd1091562755234e840016f26ad63ab3a73812ac7f7e1c8d9 +DIST hardened-patches-2.6.32-116.extras.tar.bz2 743040 RMD160 56f14d5bd4= a0c6e89171f608e8f8c54f17a8d248 SHA1 282a8427cd96757a6b0f59122d95e00f5c352= 9e5 SHA256 30355d004fb1cf6a11c35238a9a5f1f7775bc3d0a67f96703329043945f7cb= 64 +DIST hardened-patches-3.2.21-4.extras.tar.bz2 564710 RMD160 ebc8b30af4a8= 9170b655be0556049deba72d38fe SHA1 c3924282eedd5e04840554d8edb116c9cba1d08= 6 SHA256 5989dea33027a1ec8a831532bffafb38653a965665417381467856f7da73daee +DIST hardened-patches-3.4.4-4.extras.tar.bz2 550065 RMD160 d283a2b907767= 9bf136bf612057b056d8dff7a67 SHA1 003e505ff04d456a3c9772661073724db23cba19= SHA256 f0b5d0ae1a0a483b16540385fdb878150e5665da660e2af3674b02ef077cefeb +DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a= 26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d8= 0b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e +DIST linux-3.2.tar.bz2 78147838 RMD160 15eb022305dfc8b0e1d59e396911fa86e= b9c3bdf SHA1 3460afa971049aa79b8f914e1bfd619eedd19f55 SHA256 c881fc2b53cf= 0da7ca4538aa44623a7de043a41f76fd5d0f51a31f6ed699d463 +DIST linux-3.4.tar.bz2 80173484 RMD160 e0bcaa53b6eb3de9498f51b2c8b90d6c5= 2d54889 SHA1 dfc54e7fbee81f77aba85d3d8ff2d992e1e49573 SHA256 a797a15d0b62= 28381507c14ecf4eec4a6cc5c77cfd521ba3b3e1325e85b5b16d +EBUILD hardened-sources-2.6.32-r114.ebuild 1819 RMD160 e6ee5b216b2ac0119= 61b857b57a1d866c93a7f69 SHA1 c7d6480ec7e04f03613748cd08f23533f7a77079 SHA= 256 f72729ac2a648517362a12f47770e44ae0fe0acadf4720bffaa421e809f17326 +EBUILD hardened-sources-3.2.21-r3.ebuild 1816 RMD160 4158c3bb962170bb4b1= 2e842127f6954b73f6e17 SHA1 6334861f23f787e9a2ccef7303d55178762634d3 SHA25= 6 3fd56f9e2f2882197dea15ca42a3acaa3cdd6a52e60775ecae195c16e0c7d6a5 +EBUILD hardened-sources-3.4.4-r2.ebuild 1881 RMD160 e34392bebfc54e568c2e= 765ccfd247c98292d478 SHA1 a2ea33ed9815f17312d26f03f81f92e1d16717b7 SHA256= f81ce1ee7461765eeeba7949e2a63314d21ba8114d7914daf69bd1149cd74555 +MISC ChangeLog 27701 RMD160 0014d8b898263d0163ffc7ae1b15433bbfcc16bd SHA= 1 c1aa00386d89423e9ff177b94b0f6d168498c8bc SHA256 3c9277f655aa6be7d4a02ab= 5d237b5242854faa4297faf05b1f3c7ecc04f28a9 MISC metadata.xml 576 RMD160 f3d34140c6074436e3861275202f48ba32be6ccc SH= A1 d1a11f53284e9ff098b6a5f14eaac6756e238588 SHA256 53e0d3bfb958bcbf62457a= 89abe76a7a6f5a2b1df5decb04bf8b840184cc5828 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.19 (GNU/Linux) =20 -iEYEAREIAAYFAk/y+00ACgkQl5yvQNBFVTXYNgCfa6AjYt/57TwpZs6hmusZI9fF -sWUAnRatC232iTcmGC8c7L4yrLW5ltvk -=3DTZbX +iEYEAREIAAYFAk/zU7sACgkQl5yvQNBFVTU8dQCePYs7PUtu6j/NUe7cvVcLsU47 +OHcAn0x1o1t995+/QBuhWbsxj/YcnerY +=3D8Xw0 -----END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r114.ebu= ild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r114.ebuild new file mode 100644 index 0000000..27d129d --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r114.ebuild @@ -0,0 +1,51 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.32-r113.ebuild,v 1.1 2012/06/25 22:07:44 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"48" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-116" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=3D">=3Dsys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.9.1" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-3.2.21-r3.ebuil= d b/sys-kernel/hardened-sources/hardened-sources-3.2.21-r3.ebuild new file mode 100644 index 0000000..867c27e --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-3.2.21-r3.ebuild @@ -0,0 +1,50 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-3.2.21-r2.ebuild,v 1.1 2012/07/01 20:37:35 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"16" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-4" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=3D">=3Dsys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.9.1" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]. Those who intend= to" + ewarn "use one of these predefined grsecurity levels should read the he= lp" + ewarn "associated with the level. Because some options require >=3Dgcc= -4.5," + ewarn "users with more, than one version of gcc installed should use gc= c-config" + ewarn "to select a compatible version." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}*" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-3.4.4-r2.ebuild= b/sys-kernel/hardened-sources/hardened-sources-3.4.4-r2.ebuild new file mode 100644 index 0000000..8211f47 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-3.4.4-r2.ebuild @@ -0,0 +1,50 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-3.4.4-r1.ebuild,v 1.1 2012/07/01 19:47:50 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"5" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-4" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch 4455_grsec-kconfig-gento= o.patch 4460-grsec-kconfig-proc-user.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=3D">=3Dsys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.9.1" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]. Those who intend= to" + ewarn "use one of these predefined grsecurity levels should read the he= lp" + ewarn "associated with the level. Because some options require >=3Dgcc= -4.5," + ewarn "users with more, than one version of gcc installed should use gc= c-config" + ewarn "to select a compatible version." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}*" + ewarn +}