From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RKVBr-0003fo-Qi for garchives@archives.gentoo.org; Sun, 30 Oct 2011 13:12:44 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 220C8E04CB; Sun, 30 Oct 2011 13:12:36 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id D57F3E04CB for ; Sun, 30 Oct 2011 13:12:35 +0000 (UTC) Received: from pelican.gentoo.org (unknown [66.219.59.40]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 45D591B400B for ; Sun, 30 Oct 2011 13:12:35 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by pelican.gentoo.org (Postfix) with ESMTP id 7838380042 for ; Sun, 30 Oct 2011 13:12:34 +0000 (UTC) From: "Anthony G. Basile" To: gentoo-commits@lists.gentoo.org Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Anthony G. Basile" Message-ID: <5400c7cea9a6592f20475c1c48816f89e1aa2efa.blueness@gentoo> Subject: [gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ X-VCS-Repository: dev/blueness X-VCS-Files: sys-kernel/hardened-sources/ChangeLog sys-kernel/hardened-sources/Manifest sys-kernel/hardened-sources/hardened-sources-2.6.32-r73.ebuild sys-kernel/hardened-sources/hardened-sources-3.0.8.ebuild X-VCS-Directories: sys-kernel/hardened-sources/ X-VCS-Committer: blueness X-VCS-Committer-Name: Anthony G. Basile X-VCS-Revision: 5400c7cea9a6592f20475c1c48816f89e1aa2efa Date: Sun, 30 Oct 2011 13:12:34 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: quoted-printable X-Archives-Salt: X-Archives-Hash: b1cfcc84e7224eab8fbef793c4900663 commit: 5400c7cea9a6592f20475c1c48816f89e1aa2efa Author: Anthony G. Basile gentoo org> AuthorDate: Sun Oct 30 13:12:28 2011 +0000 Commit: Anthony G. Basile gentoo org> CommitDate: Sun Oct 30 13:12:28 2011 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=3Ddev/blueness.git;a= =3Dcommit;h=3D5400c7ce sys-kernel/hardened-sources: testing patchset 201110250925 (Portage version: 2.1.10.11/git/Linux x86_64, signed Manifest commit with= key 0xD0455535) --- sys-kernel/hardened-sources/ChangeLog | 7 +++ sys-kernel/hardened-sources/Manifest | 22 +++++++-- .../hardened-sources-2.6.32-r73.ebuild | 49 ++++++++++++++= ++++++ .../hardened-sources/hardened-sources-3.0.8.ebuild | 49 ++++++++++++++= ++++++ 4 files changed, 123 insertions(+), 4 deletions(-) diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-= sources/ChangeLog index 2c657be..90626c2 100644 --- a/sys-kernel/hardened-sources/ChangeLog +++ b/sys-kernel/hardened-sources/ChangeLog @@ -1,5 +1,12 @@ =20 =20 +*hardened-sources-3.0.8 (30 Oct 2011) +*hardened-sources-2.6.32-r73 (30 Oct 2011) + + 30 Oct 2011; Anthony G. Basile + +hardened-sources-2.6.32-r73.ebuild, +hardened-sources-3.0.8.ebuild: + Testing patchset 201110250925 + 23 Oct 2011; Anthony G. Basile -hardened-sources-2.6.32-r71.ebuild, -hardened-sources-3.0.7.ebuild: Moved to tree diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-s= ources/Manifest index 2694fb3..05064a4 100644 --- a/sys-kernel/hardened-sources/Manifest +++ b/sys-kernel/hardened-sources/Manifest @@ -1,12 +1,26 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =20 -MISC ChangeLog 6711 RMD160 1a93a6db7635ea7c6933c03ca3ccb8f324ee5ed4 SHA1= c2bcfc512e1b80b619d54339a74ac5ea60c4b98b SHA256 4d870474618a0a70f37ac327= 1d6ebbf1f6bfd51922fd9c74d10d9c6e68d2774e +DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb= SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4= 453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d +DIST deblob-3.0 102531 RMD160 d3ea6f04cd4d6c7f652f4532e7558f931d3952d1 S= HA1 3702cec9da20b8c1141e0fee2549fd475e203812 SHA256 4c9d98faabc226602891e= 6eb36634f1c228017bb90f0d3ceaa42d41d4b27df0f +DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b= 78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7= f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 +DIST deblob-check-3.0 377076 RMD160 8a4f53f0a34c46fc6a2aae5878225851d7bf= 13e1 SHA1 b1b356f55f63746bba284644db8585d15f3da06f SHA256 72ab3f74cbcde9d= 453f8a4e30fd6a6339812806fe6dab3b632c1c68b90b0b104 +DIST genpatches-2.6.32-43.base.tar.bz2 979911 RMD160 d221c448adb8116fa32= 8304f7cde9ce92f6c5432 SHA1 6038e46e09e8dccbf80563998fc9ebd14718d0e3 SHA25= 6 92f71a7ac87fd7117ce28e1666e8c95473cd4b4701a78984c2ba4b87d0a8c705 +DIST genpatches-2.6.32-43.extras.tar.bz2 24897 RMD160 fac4ce9c15953ad811= b2c500b0145f2eebea5e2d SHA1 8f9cdf4bc06dc5e806698d93c002798faa53fda1 SHA2= 56 309841a94e96d7076bca7fb547caae9786e24258e032da242f64768a413ddbf0 +DIST genpatches-3.0-8.base.tar.bz2 216509 RMD160 4ca8618b482a013adea3b5a= 66222975288c3f589 SHA1 68caec5b7080ab7140ad09ec7caa3414f185e5f8 SHA256 85= 7d6ccd8bf965ec82c944c229218fb71a37c0c13f26228dc69c4e556dbfa17d +DIST genpatches-3.0-8.extras.tar.bz2 17207 RMD160 0f04fef1fe76c9b9cbe7c4= 97faae19b015caff72 SHA1 89935647c22c0a8b98dd568e97312ca64378a263 SHA256 e= c88ca4408c668a2c4d2d25c3d4a8c67fad4bb08133db91bbb929c0053305fda +DIST hardened-patches-2.6.32-75.extras.tar.bz2 503981 RMD160 e1fd0769e59= 5f15c8646b537b90c610d6e3f1726 SHA1 ccb4161fc4d1d2965df75d7f0975581a5bae19= 6d SHA256 eb950ae795deda34a599cde01250270693aba782168dbb741f884da0db6ff3a= 2 +DIST hardened-patches-3.0.8-1.extras.tar.bz2 484808 RMD160 86d667c9428bc= 622ac18cc6a7e97b71b2374e97a SHA1 c5d91f02ab7a723413e376f5292e08ac0554b547= SHA256 53007d9c3174243af0f9f812bc274098cd3cd9471835360d6884bab169f17ef8 +DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a= 26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d8= 0b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e +DIST linux-3.0.tar.bz2 76753134 RMD160 e20c9564ec0c8128e28a4c038986d4d93= bbe34bb SHA1 45b64bffc860f70ab7956da4493c488010714650 SHA256 64b0228b54ce= 39b0b2df086109a7b737cde58e3df4f779506ddcaccee90356a0 +EBUILD hardened-sources-2.6.32-r73.ebuild 1835 RMD160 8bb8d8be2bb6227fcf= 41a9cb6d3c1ef2512df0f3 SHA1 46204307229946c28c1b3275f26df0253a487488 SHA2= 56 1edf485c1a409bf8072b7c3453d9d9543cb3648eb24f6845a53062f24b069796 +EBUILD hardened-sources-3.0.8.ebuild 1783 RMD160 b619e60b4b217ddfeaa27c9= 86827854598023c42 SHA1 3d9f60a2d47f041f089a3f7543acec69548cb1a0 SHA256 0c= 6f2f20756bb13b5a58aecedde883fbd9f3d1824e2ca25efc4a8d71e4188e7f +MISC ChangeLog 6952 RMD160 1d567424265677eb04bbf0f31f3d364568b2fa04 SHA1= 05c00cffeae6ad9f36342e928dd44134cc8411d2 SHA256 a99593b1ad643d14e4de208e= e12d53325bbca5f2570e1ec882e1c6619d989ee1 MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SH= A1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8= fcfd351f2f39ed63da68af3a5751fc2058d0d03813 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (GNU/Linux) =20 -iEYEAREIAAYFAk6j+GMACgkQl5yvQNBFVTVhpQCdGy9EKylojbeqoWpByYSn+Fs2 -0t4AnAqKMGsHoYr27PKg9ekr0oqUxsFU -=3DFSDK +iEYEAREIAAYFAk6tTTwACgkQl5yvQNBFVTWZYACeLvxZn1dqu9rc1o4+Mdl5zONW +CxoAmgNOBSNCAIIRR16AwzCZer2BiPXN +=3DJYrb -----END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r73.ebui= ld b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r73.ebuild new file mode 100644 index 0000000..e4ee7cb --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r73.ebuild @@ -0,0 +1,49 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.32-r72.ebuild,v 1.1 2011/10/30 00:35:55 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"43" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-75" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"2000_fix-broken-backport-for-ipv6-tunnels.patch 4200= _fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-3.0.8.ebuild b/= sys-kernel/hardened-sources/hardened-sources-3.0.8.ebuild new file mode 100644 index 0000000..fb434f7 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-3.0.8.ebuild @@ -0,0 +1,49 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-3.0.7-r1.ebuild,v 1.1 2011/10/30 00:29:16 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"8" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-1" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +}