From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 48DBB138200 for ; Thu, 27 Jun 2013 10:47:32 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id CBF77E096D; Thu, 27 Jun 2013 10:47:31 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 244FBE096D for ; Thu, 27 Jun 2013 10:47:31 +0000 (UTC) Received: from hornbill.gentoo.org (hornbill.gentoo.org [94.100.119.163]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 0D2CA33E79F for ; Thu, 27 Jun 2013 10:47:30 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by hornbill.gentoo.org (Postfix) with ESMTP id A2F61E5458 for ; Thu, 27 Jun 2013 10:47:28 +0000 (UTC) From: "Anthony G. Basile" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Anthony G. Basile" Message-ID: <1372330114.fa9c193f5fd2c77c20a0b245e913e9af708961f6.blueness@gentoo> Subject: [gentoo-commits] proj/hardened-dev:master commit in: sys-kernel/hardened-sources/ X-VCS-Repository: proj/hardened-dev X-VCS-Files: sys-kernel/hardened-sources/hardened-sources-2.6.32-r172.ebuild sys-kernel/hardened-sources/hardened-sources-3.2.47-r2.ebuild sys-kernel/hardened-sources/hardened-sources-3.9.7-r1.ebuild X-VCS-Directories: sys-kernel/hardened-sources/ X-VCS-Committer: blueness X-VCS-Committer-Name: Anthony G. Basile X-VCS-Revision: fa9c193f5fd2c77c20a0b245e913e9af708961f6 X-VCS-Branch: master Date: Thu, 27 Jun 2013 10:47:28 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: d374b053-7bea-4c91-b6fe-d36262876f13 X-Archives-Hash: 4afb18349b205379feccb38f155d51e2 commit: fa9c193f5fd2c77c20a0b245e913e9af708961f6 Author: Anthony G. Basile gentoo org> AuthorDate: Thu Jun 27 10:48:34 2013 +0000 Commit: Anthony G. Basile gentoo org> CommitDate: Thu Jun 27 10:48:34 2013 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-dev.git;a=commit;h=fa9c193f sys-kernel/hardened-sources: testing patchset 20130626 --- .../hardened-sources-2.6.32-r172.ebuild | 43 ++++++++++++++++++++++ .../hardened-sources-3.2.47-r2.ebuild | 43 ++++++++++++++++++++++ .../hardened-sources-3.9.7-r1.ebuild | 43 ++++++++++++++++++++++ 3 files changed, 129 insertions(+) diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r172.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r172.ebuild new file mode 100644 index 0000000..3a0888a --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r172.ebuild @@ -0,0 +1,43 @@ +# Copyright 1999-2013 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.32-r171.ebuild,v 1.1 2013/06/21 02:39:29 blueness Exp $ + +EAPI="5" + +ETYPE="sources" +K_WANT_GENPATCHES="base extras" +K_GENPATCHES_VER="48" +K_DEBLOB_AVAILABLE="1" + +inherit kernel-2 +detect_version + +HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-177" +HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" + +DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" +IUSE="deblob" + +KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=">=sys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT="sys-apps/gradm-2.9.1*" + + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-3.2.47-r2.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.2.47-r2.ebuild new file mode 100644 index 0000000..19ad123 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-3.2.47-r2.ebuild @@ -0,0 +1,43 @@ +# Copyright 1999-2013 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.2.47-r1.ebuild,v 1.1 2013/06/25 10:23:12 blueness Exp $ + +EAPI="5" + +ETYPE="sources" +K_WANT_GENPATCHES="base extras" +K_GENPATCHES_VER="16" +K_DEBLOB_AVAILABLE="1" + +inherit kernel-2 +detect_version + +HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-3" +HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" + +DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" +IUSE="deblob" + +KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=">=sys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT="sys-apps/gradm-2.9.1*" + + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-3.9.7-r1.ebuild b/sys-kernel/hardened-sources/hardened-sources-3.9.7-r1.ebuild new file mode 100644 index 0000000..badf120 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-3.9.7-r1.ebuild @@ -0,0 +1,43 @@ +# Copyright 1999-2013 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.9.7.ebuild,v 1.1 2013/06/25 10:25:06 blueness Exp $ + +EAPI="5" + +ETYPE="sources" +K_WANT_GENPATCHES="base" +K_GENPATCHES_VER="12" +K_DEBLOB_AVAILABLE="1" + +inherit kernel-2 +detect_version + +HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2" +HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE="1500_XATTR_USER_PREFIX.patch 1505_dmesg-restrict-fix.patch 2900_dev-root-proc-mount-fix.patch" + +DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" +IUSE="deblob" + +KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=">=sys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT="sys-apps/gradm-2.9.1*" + + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =${GRADM_COMPAT}" + ewarn +}