[gentoo-commits] proj/hardened-dev:XT_PAX commit in: sys-kernel/xtpax-sources/

[gentoo-commits] proj/hardened-dev:XT_PAX commit in: sys-kernel/xtpax-sources/

[Anthony G. Basile]

commit:     fae5ba11735202b84a3217d6606a027f60b97d79
Author:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>
AuthorDate: Tue Nov 22 13:23:35 2011 +0000
Commit:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>
CommitDate: Tue Nov 22 13:23:35 2011 +0000
URL:        http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-dev.git;a=commit;h=fae5ba11

sys-kernel/xtpax-sources: added kernel sources based on XT_PAX

(Portage version: 2.1.10.11/git/Linux x86_64, signed Manifest commit with key 0xD0455535)

---
 sys-kernel/xtpax-sources/ChangeLog                 |   14 ++++++
 sys-kernel/xtpax-sources/metadata.xml              |   17 +++++++
 .../xtpax-sources/xtpax-sources-3.1.1.ebuild       |   49 ++++++++++++++++++++
 3 files changed, 80 insertions(+), 0 deletions(-)

diff --git a/sys-kernel/xtpax-sources/ChangeLog b/sys-kernel/xtpax-sources/ChangeLog
new file mode 100644
index 0000000..b05c789
--- /dev/null
+++ b/sys-kernel/xtpax-sources/ChangeLog
@@ -0,0 +1,14 @@
+
+
+*xtpax-sources-3.1.1 (20 Nov 2011)
+
+  20 Nov 2011; Anthony G. Basile <blueness@gentoo.org>
+  +xtpax-sources-3.1.1.ebuild, +metadata.xml:
+  Renamed hardened-xtpax-sources to xtpax-sources to avoid name collision
+
+*hardened-xtpax-sources-3.1.1 (20 Nov 2011)
+
+  20 Nov 2011; Anthony G. Basile <blueness@gentoo.org>
+  +hardened-xtpax-sources-3.1.1.ebuild, +metadata.xml:
+  Initial commit XT_PAX based kernel
+

diff --git a/sys-kernel/xtpax-sources/metadata.xml b/sys-kernel/xtpax-sources/metadata.xml
new file mode 100644
index 0000000..6fa414d
--- /dev/null
+++ b/sys-kernel/xtpax-sources/metadata.xml
@@ -0,0 +1,17 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
+<pkgmetadata>
+	<herd>kernel</herd>
+	<herd>hardened</herd>
+	<maintainer>
+		<email>blueness@gentoo.org</email>
+		<name>Anthony G. Basile</name>
+	</maintainer>
+	<longdescription>
+		hardened-sources is based upon genpatches, and adds the grsecurity
+		patch from http://www.grsecurity.net, which also includes PaX.
+	</longdescription>
+	<use>
+		<flag name='deblob'>Remove binary blobs from kernel sources to provide libre license compliance.</flag>
+  	</use>
+</pkgmetadata>

diff --git a/sys-kernel/xtpax-sources/xtpax-sources-3.1.1.ebuild b/sys-kernel/xtpax-sources/xtpax-sources-3.1.1.ebuild
new file mode 100644
index 0000000..c30f6af
--- /dev/null
+++ b/sys-kernel/xtpax-sources/xtpax-sources-3.1.1.ebuild
@@ -0,0 +1,49 @@
+# Copyright 1999-2011 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.1.1.ebuild,v 1.1 2011/11/19 18:57:05 blueness Exp $
+
+EAPI="4"
+
+ETYPE="sources"
+K_WANT_GENPATCHES="base extras"
+K_GENPATCHES_VER="4"
+K_DEBLOB_AVAILABLE="1"
+
+inherit kernel-2
+detect_version
+
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-1"
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-xtpax-patches-${HGPV}.extras.tar.bz2"
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
+
+UNIPATCH_LIST="${DISTDIR}/hardened-xtpax-patches-${HGPV}.extras.tar.bz2"
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"
+
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
+IUSE="deblob"
+
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
+
+pkg_postinst() {
+	kernel-2_pkg_postinst
+
+	local GRADM_COMPAT="sys-apps/gradm-2.2.2*"
+
+	ewarn
+	ewarn "Hardened Gentoo provides three different predefined grsecurity level:"
+	ewarn "[server], [workstation], and [virtualization]."
+	ewarn
+	ewarn "Those who intend to use one of these predefined grsecurity levels"
+	ewarn "should read the help associated with the level.  Users importing a"
+	ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"
+	ewarn "should review their selected grsecurity/PaX options carefully."
+	ewarn
+	ewarn "Users of grsecurity's RBAC system must ensure they are using"
+	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
+	ewarn "It is strongly recommended that the following command is issued"
+	ewarn "prior to booting a ${PF} kernel for the first time:"
+	ewarn
+	ewarn "emerge -na =${GRADM_COMPAT}"
+	ewarn
+}

[gentoo-commits] proj/hardened-dev:XT_PAX commit in: sys-kernel/xtpax-sources/

[Anthony G. Basile]

commit:     4e9ef12a7985007118030c407f14d4e33ddefcb6
Author:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>
AuthorDate: Tue Dec 13 01:08:37 2011 +0000
Commit:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>
CommitDate: Tue Dec 13 01:08:37 2011 +0000
URL:        http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-dev.git;a=commit;h=4e9ef12a

sys-kernel/xtpax-sources: bump to vanilla 3.1.5 + patches

---
 sys-kernel/xtpax-sources/ChangeLog                 |    6 ++
 .../xtpax-sources/xtpax-sources-3.1.5.ebuild       |   49 ++++++++++++++++++++
 2 files changed, 55 insertions(+), 0 deletions(-)

diff --git a/sys-kernel/xtpax-sources/ChangeLog b/sys-kernel/xtpax-sources/ChangeLog
index b05c789..08b16c9 100644
--- a/sys-kernel/xtpax-sources/ChangeLog
+++ b/sys-kernel/xtpax-sources/ChangeLog
@@ -1,5 +1,11 @@
 
 
+*xtpax-sources-3.1.5 (13 Dec 2011)
+
+  13 Dec 2011; Anthony G. Basile <blueness@gentoo.org>
+  +xtpax-sources-3.1.5.ebuild:
+  Version bump
+
 *xtpax-sources-3.1.1 (20 Nov 2011)
 
   20 Nov 2011; Anthony G. Basile <blueness@gentoo.org>

diff --git a/sys-kernel/xtpax-sources/xtpax-sources-3.1.5.ebuild b/sys-kernel/xtpax-sources/xtpax-sources-3.1.5.ebuild
new file mode 100644
index 0000000..1942045
--- /dev/null
+++ b/sys-kernel/xtpax-sources/xtpax-sources-3.1.5.ebuild
@@ -0,0 +1,49 @@
+# Copyright 1999-2011 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-3.1.1.ebuild,v 1.1 2011/11/19 18:57:05 blueness Exp $
+
+EAPI="4"
+
+ETYPE="sources"
+K_WANT_GENPATCHES="base extras"
+K_GENPATCHES_VER="8"
+K_DEBLOB_AVAILABLE="1"
+
+inherit kernel-2
+detect_version
+
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-1"
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/xtpax-patches-${HGPV}.extras.tar.bz2"
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
+
+UNIPATCH_LIST="${DISTDIR}/xtpax-patches-${HGPV}.extras.tar.bz2"
+UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch"
+
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/"
+IUSE="deblob"
+
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
+
+pkg_postinst() {
+	kernel-2_pkg_postinst
+
+	local GRADM_COMPAT="sys-apps/gradm-2.2.2*"
+
+	ewarn
+	ewarn "Hardened Gentoo provides three different predefined grsecurity level:"
+	ewarn "[server], [workstation], and [virtualization]."
+	ewarn
+	ewarn "Those who intend to use one of these predefined grsecurity levels"
+	ewarn "should read the help associated with the level.  Users importing a"
+	ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32,"
+	ewarn "should review their selected grsecurity/PaX options carefully."
+	ewarn
+	ewarn "Users of grsecurity's RBAC system must ensure they are using"
+	ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
+	ewarn "It is strongly recommended that the following command is issued"
+	ewarn "prior to booting a ${PF} kernel for the first time:"
+	ewarn
+	ewarn "emerge -na =${GRADM_COMPAT}"
+	ewarn
+}