From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RQcdt-0004yU-PK for garchives@archives.gentoo.org; Wed, 16 Nov 2011 10:22:58 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id AB96321C15E; Wed, 16 Nov 2011 10:22:50 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 6C65D21C15E for ; Wed, 16 Nov 2011 10:22:50 +0000 (UTC) Received: from pelican.gentoo.org (unknown [66.219.59.40]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id AC2A41B400E for ; Wed, 16 Nov 2011 10:22:49 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by pelican.gentoo.org (Postfix) with ESMTP id E773080042 for ; Wed, 16 Nov 2011 10:22:48 +0000 (UTC) From: "Anthony G. Basile" To: gentoo-commits@lists.gentoo.org Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Anthony G. Basile" Message-ID: Subject: [gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ X-VCS-Repository: dev/blueness X-VCS-Files: sys-kernel/hardened-sources/ChangeLog sys-kernel/hardened-sources/Manifest sys-kernel/hardened-sources/hardened-sources-2.6.32-r76.ebuild sys-kernel/hardened-sources/hardened-sources-3.0.9-r1.ebuild X-VCS-Directories: sys-kernel/hardened-sources/ X-VCS-Committer: blueness X-VCS-Committer-Name: Anthony G. Basile X-VCS-Revision: a614c885ad13ad30bd46faca1ce9420ca57c5042 Date: Wed, 16 Nov 2011 10:22:48 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 420c63c3-a53e-409e-b31a-54e28a58d64c X-Archives-Hash: cc064988ba8f7e5d514200d3385bfda1 commit: a614c885ad13ad30bd46faca1ce9420ca57c5042 Author: Anthony G. Basile gentoo org> AuthorDate: Wed Nov 16 10:21:48 2011 +0000 Commit: Anthony G. Basile gentoo org> CommitDate: Wed Nov 16 10:21:48 2011 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=3Ddev/blueness.git;a= =3Dcommit;h=3Da614c885 sys-kernel/hardened-sources: testing patchset 20111115 --- sys-kernel/hardened-sources/ChangeLog | 7 +++ sys-kernel/hardened-sources/Manifest | 26 ++++++---- .../hardened-sources-2.6.32-r76.ebuild | 49 ++++++++++++++= ++++++ .../hardened-sources-3.0.9-r1.ebuild | 49 ++++++++++++++= ++++++ 4 files changed, 120 insertions(+), 11 deletions(-) diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-= sources/ChangeLog index 9ba9b8d..f045ff8 100644 --- a/sys-kernel/hardened-sources/ChangeLog +++ b/sys-kernel/hardened-sources/ChangeLog @@ -1,5 +1,12 @@ =20 =20 +*hardened-sources-3.0.9-r1 (16 Nov 2011) +*hardened-sources-2.6.32-r76 (16 Nov 2011) + + 16 Nov 2011; Anthony G. Basile + +hardened-sources-2.6.32-r76.ebuild, +hardened-sources-3.0.9-r1.ebuild= : + testing patchset 20111115 + 16 Nov 2011; Anthony G. Basile -hardened-sources-2.6.32-r74.ebuild, -hardened-sources-2.6.32-r75.ebui= ld, -hardened-sources-3.0.8-r1.ebuild, -hardened-sources-3.0.9.ebuild: diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-s= ources/Manifest index cd257a1..b2357df 100644 --- a/sys-kernel/hardened-sources/Manifest +++ b/sys-kernel/hardened-sources/Manifest @@ -1,12 +1,16 @@ ------BEGIN PGP SIGNED MESSAGE----- -Hash: SHA256 - -MISC ChangeLog 8047 RMD160 d8eacf874802fd0f88ee8d51137cab529617677f SHA1= 98d7eacd033cbfe47cbadf655cded91219f0e9a3 SHA256 0be0b70cdc4d9ff6f64723a7= 6d6b3c32f763e8555fe2a76badf651028055b1b7 +DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb= SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4= 453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d +DIST deblob-3.0 102531 RMD160 d3ea6f04cd4d6c7f652f4532e7558f931d3952d1 S= HA1 3702cec9da20b8c1141e0fee2549fd475e203812 SHA256 4c9d98faabc226602891e= 6eb36634f1c228017bb90f0d3ceaa42d41d4b27df0f +DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b= 78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7= f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 +DIST deblob-check-3.0 377076 RMD160 8a4f53f0a34c46fc6a2aae5878225851d7bf= 13e1 SHA1 b1b356f55f63746bba284644db8585d15f3da06f SHA256 72ab3f74cbcde9d= 453f8a4e30fd6a6339812806fe6dab3b632c1c68b90b0b104 +DIST genpatches-2.6.32-44.base.tar.bz2 1012021 RMD160 37aae12613e8d5e0f3= cb0ad5f6057a83846e5bdc SHA1 3f4a864c30fd445eff30b480b0b5654c5758b219 SHA2= 56 f00a36ff4e30785eca0816bf1a698b358213e59c5786799b5bddd8322da1c633 +DIST genpatches-2.6.32-44.extras.tar.bz2 24902 RMD160 9e8d686ce4e2bb36e6= f6310835b96f64ad8d0f08 SHA1 29ed146cfcfb4470b0f2cea9b4dad07b359c31df SHA2= 56 e105210bca94660f3292751fea0db38c7dea50ea2c5a729faa1dbc9fb348442f +DIST genpatches-3.0-9.base.tar.bz2 229050 RMD160 2c9832e195851a10b327a74= de668d4f704d1909d SHA1 13e6ec91dad89ba264bba55d8670b77164821bbd SHA256 fe= 4ca0d112efa96bb940f67ada7d981537b536f95bb8c0330a19189049d9d2fe +DIST genpatches-3.0-9.extras.tar.bz2 17207 RMD160 0f04fef1fe76c9b9cbe7c4= 97faae19b015caff72 SHA1 89935647c22c0a8b98dd568e97312ca64378a263 SHA256 e= c88ca4408c668a2c4d2d25c3d4a8c67fad4bb08133db91bbb929c0053305fda +DIST hardened-patches-2.6.32-78.extras.tar.bz2 500875 RMD160 d950c06aca5= 5d051aa0138eb6d094164bc7c741b SHA1 20433717d983032c3f756bb4284fc6f15777b7= 9e SHA256 1421117b4047d4fffa558a77005b1651910ef1d086622073ebbd84a02760b8e= 9 +DIST hardened-patches-3.0.9-2.extras.tar.bz2 586437 RMD160 cdbc1827ecf2b= 4abbe1e76cf068daab3694b1d8a SHA1 c7c6d24caf9f7fd0dff2ceae1264b96b0b072274= SHA256 b38084b02e8b9c5761ad4c4f89417b4aaa16789025160613e3b92ab21d9e459e +DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a= 26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d8= 0b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e +DIST linux-3.0.tar.bz2 76753134 RMD160 e20c9564ec0c8128e28a4c038986d4d93= bbe34bb SHA1 45b64bffc860f70ab7956da4493c488010714650 SHA256 64b0228b54ce= 39b0b2df086109a7b737cde58e3df4f779506ddcaccee90356a0 +EBUILD hardened-sources-2.6.32-r76.ebuild 1787 RMD160 2d2c80531cc077e84b= e734150b1381fe08133039 SHA1 6e685952ed241f1385537e496789e8cb0d57b4e4 SHA2= 56 ad9916a270007be160d74dbf62fb7d3959a91441f0d50135ffb9f8bbe6d8f50b +EBUILD hardened-sources-3.0.9-r1.ebuild 1826 RMD160 b99bbdb1f530ff92562e= 280a8f4a78a401596bbe SHA1 1cce7afe6a297cf00f7cfad7ce722ebcda4b0e5e SHA256= 6841c2d7e4beee0ddb5879bbc87d4263a01f512cc3e62f621ce1fb4d52dc5af5 +MISC ChangeLog 8290 RMD160 376e6f7b175639455b08c8d123499a434322b0cd SHA1= 658b71fe9ac9f672ab2dea69acec2bcfad212232 SHA256 a4cdf22c6dee833574587169= 838170e48cadea9040a8994442e21f813cf84806 MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SH= A1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8= fcfd351f2f39ed63da68af3a5751fc2058d0d03813 ------BEGIN PGP SIGNATURE----- -Version: GnuPG v2.0.17 (GNU/Linux) - -iEYEAREIAAYFAk7DAmYACgkQl5yvQNBFVTXWVACfVIwHXzJhVeU//j+aFHA0SRFT -M1QAoIbxowkgWNRyMhAtv8Q739FNvp07 -=3DnbfB ------END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r76.ebui= ld b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r76.ebuild new file mode 100644 index 0000000..a2c0dc2 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r76.ebuild @@ -0,0 +1,49 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.32-r75.ebuild,v 1.1 2011/11/15 23:37:14 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"44" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-78" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-3.0.9-r1.ebuild= b/sys-kernel/hardened-sources/hardened-sources-3.0.9-r1.ebuild new file mode 100644 index 0000000..46783ab --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-3.0.9-r1.ebuild @@ -0,0 +1,49 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-3.0.9.ebuild,v 1.1 2011/11/15 23:43:09 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"9" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"1700_i386-bigsmp-early-lapicid-override.patch 4200_f= bcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +}