From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RnuoW-0005PR-9H for garchives@archives.gentoo.org; Thu, 19 Jan 2012 16:26:12 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 55F2BE07DD; Thu, 19 Jan 2012 16:26:05 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 0E534E07DD for ; Thu, 19 Jan 2012 16:26:04 +0000 (UTC) Received: from pelican.gentoo.org (unknown [66.219.59.40]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 4A0AD1B401C for ; Thu, 19 Jan 2012 16:26:04 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by pelican.gentoo.org (Postfix) with ESMTP id BD56280042 for ; Thu, 19 Jan 2012 16:26:03 +0000 (UTC) From: "Anthony G. Basile" To: gentoo-commits@lists.gentoo.org Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Anthony G. Basile" Message-ID: <976c6aca39d4a0c009424d8994b768df7fc9d6bf.blueness@gentoo> Subject: [gentoo-commits] dev/blueness:master commit in: sys-kernel/hardened-sources/ X-VCS-Repository: dev/blueness X-VCS-Files: sys-kernel/hardened-sources/ChangeLog sys-kernel/hardened-sources/Manifest sys-kernel/hardened-sources/hardened-sources-2.6.32-r86.ebuild sys-kernel/hardened-sources/hardened-sources-3.1.10.ebuild X-VCS-Directories: sys-kernel/hardened-sources/ X-VCS-Committer: blueness X-VCS-Committer-Name: Anthony G. Basile X-VCS-Revision: 976c6aca39d4a0c009424d8994b768df7fc9d6bf Date: Thu, 19 Jan 2012 16:26:03 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 5a95eedb-0edd-41b2-8cb3-1faedab3118f X-Archives-Hash: 3aa6bc54f20362f9707d99e4eeb387ab commit: 976c6aca39d4a0c009424d8994b768df7fc9d6bf Author: Anthony G. Basile gentoo org> AuthorDate: Thu Jan 19 16:13:47 2012 +0000 Commit: Anthony G. Basile gentoo org> CommitDate: Thu Jan 19 16:13:47 2012 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=3Ddev/blueness.git;a= =3Dcommit;h=3D976c6aca sys-kernel/hardened-sources: testing patchset 20120118 (Portage version: 2.1.10.41/git/Linux x86_64, signed Manifest commit with= key 0xD0455535) --- sys-kernel/hardened-sources/ChangeLog | 7 +++ sys-kernel/hardened-sources/Manifest | 22 +++++++-- .../hardened-sources-2.6.32-r86.ebuild | 51 ++++++++++++++= ++++++ .../hardened-sources-3.1.10.ebuild | 50 ++++++++++++++= +++++ 4 files changed, 126 insertions(+), 4 deletions(-) diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-= sources/ChangeLog index c7de118..29711ea 100644 --- a/sys-kernel/hardened-sources/ChangeLog +++ b/sys-kernel/hardened-sources/ChangeLog @@ -1,5 +1,12 @@ =20 =20 +*hardened-sources-3.1.10 (19 Jan 2012) +*hardened-sources-2.6.32-r86 (19 Jan 2012) + + 19 Jan 2012; Anthony G. Basile + +hardened-sources-2.6.32-r86.ebuild, +hardened-sources-3.1.10.ebuild: + testing patchset 20120118 + 13 Jan 2012; Anthony G. Basile -hardened-sources-2.6.32-r85.ebuild, -hardened-sources-3.1.8.ebuild: moved to the tree diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-s= ources/Manifest index 3e9fbad..f820bd0 100644 --- a/sys-kernel/hardened-sources/Manifest +++ b/sys-kernel/hardened-sources/Manifest @@ -1,12 +1,26 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =20 -MISC ChangeLog 12761 RMD160 4b7f4089ae3f830e9f92bc62627a74a1a3371d61 SHA= 1 863b951bc9d1966763428868c5e85d2ea7846d1d SHA256 109296867ffc0a76c042c71= c484c2f97a47e9127a5e705f03ec97656eaa46709 +DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb= SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4= 453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d +DIST deblob-3.1 103909 RMD160 723d36ef2574419417bbf30eda6a83aaa91922d7 S= HA1 39d2c6e69f4e3b84e112b6e3e9389c983976fe4b SHA256 9dcf6f981cb3681f8afab= 0a4f814aebd6c2f46f8e635d2f35657d8344ef6b30e +DIST deblob-check-2.6.32 247608 RMD160 840bf8a229ea79810519eee6241edb85b= 78a6562 SHA1 d45a24eb16e5ac956c0fcddbc1ac4d67e326c7b8 SHA256 da1aecdf3ab7= f1207b90642d303e52262ccc2ed9e49739b729512b88950d17f3 +DIST deblob-check-3.1 405438 RMD160 da7efe959bc7c0017214daa764fcb486ff44= 34f2 SHA1 397157d3f6bf225f8cc4f48b6c05bc56482c2934 SHA256 77d125ae5466049= fb3f1fe39ddb9320b66239de782a348c66133de591049db43 +DIST genpatches-2.6.32-48.base.tar.bz2 1033142 RMD160 c42b6a5edbb9965391= bbcf6ee40bb79c2080f497 SHA1 95e90447ecd875228121fa32e8cf89eaabde5fa6 SHA2= 56 7438e7b7c0ef32e0c639cf89c4f53a3bc7917ca466b1fcf3931adb65ad05b583 +DIST genpatches-2.6.32-48.extras.tar.bz2 24939 RMD160 055706793fb532caeb= 3d364c5e1bd0ad46aff4b2 SHA1 2a966a4d5f9a718a0d43c25df563d0377154996f SHA2= 56 ee714d14310fd5242ce2e28a8f8e5fda63ba18957960814876506f8754b9d2a0 +DIST genpatches-3.1-12.base.tar.bz2 238027 RMD160 b2500215987bb105c33e5e= 0b8e6777e7e3917c88 SHA1 f86522866d908cac030d46cafbe98ff18fc0e14e SHA256 c= 797eaf64d65755f0509cd632813e48a3f7a205cfa43dc9e9f42b701a3cae129 +DIST genpatches-3.1-12.extras.tar.bz2 17197 RMD160 a275874317e13fc9f372e= b6cdb08b79d67df5201 SHA1 85ed96b1602df0f1f68bc8c88de905cf5d1b0a5e SHA256 = aee5dcccb9abc251d31caa0d565b78800cbc8e111cfa02b433cf6ebbdf04d4ea +DIST hardened-patches-2.6.32-88.extras.tar.bz2 554076 RMD160 446e87ee9e6= 104e4a8c8112f41a67a07f783234a SHA1 aacc304c8abe7a50c1691f1ff14941bb615317= a5 SHA256 c37c2bf6c05d66870f438c0f4f5045bf377bfb6b11a070c29d10138e7a05a34= b +DIST hardened-patches-3.1.10-1.extras.tar.bz2 520947 RMD160 c6111dff44be= 1a1a76bd53d5623e0de526490e58 SHA1 26d82e2f0dfc952a50c3d3b1a137541a0f32f08= 8 SHA256 d21ee88942b4a131312f2b93d9548ddb578037a47d11c2ce2c4f0bd13a101b6a +DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a= 26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d8= 0b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e +DIST linux-3.1.tar.bz2 77190238 RMD160 f9a3ce57b9f20a1402ef340792d3c2231= 40ce1d2 SHA1 ac792701561b1cd4279302b8bb8f474731762ad1 SHA256 2573d2378c75= 4b0c602b57586e9311e5b38c5d1e6c137f02873833633a4b9359 +EBUILD hardened-sources-2.6.32-r86.ebuild 1871 RMD160 1f045364e7977fadfa= 1969983ab2c68a39c6da38 SHA1 0611535bac880b98b1c5f0f5c33a4bf3e145cc21 SHA2= 56 dc28f7544dae00c0af932b8816c16f557ea201b0dda1c73b472242f1c197fb12 +EBUILD hardened-sources-3.1.10.ebuild 1812 RMD160 4543a41c8973cc5bb7fbfc= 89941360bf3b4e2ae1 SHA1 f1de7d5a2c42c46f5dd184ae34b63d3905cbfeee SHA256 e= be484785d39deac60a5e8db6437421caf244e045c9d004f893db430ed1e2d15 +MISC ChangeLog 13000 RMD160 a8036b88b144478cc1d4b95c0a1e73eb275e7360 SHA= 1 7ff7a8d4c2f52b397e21500042e720bf4f9d863e SHA256 c9f3c4c289036821702144d= a63a66664e9072d5edd7d2a2a6d2e7f291d1dbcdc MISC metadata.xml 578 RMD160 7ea189a37d0f863ae9c52170bb85df27d21686fb SH= A1 4765c25d7770a69f7b9dda2b1accc8ff27b74ad0 SHA256 64140e091b51002a5355d8= fcfd351f2f39ed63da68af3a5751fc2058d0d03813 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (GNU/Linux) =20 -iEYEAREIAAYFAk8QbBcACgkQl5yvQNBFVTWlpQCffNDZ7Nvsk/bXncBQDzVJFpzj -pqUAnj70N1+iEDGaldg7o2Hzki6kQlyt -=3DCdJK +iEYEAREIAAYFAk8YQTsACgkQl5yvQNBFVTW7CQCgjPwkcHAiUMYp0FB0x9vUZGzy +EvwAn09G8B96WgqGVvmiFJe1N/iK/1xI +=3DLf5a -----END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r86.ebui= ld b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r86.ebuild new file mode 100644 index 0000000..794c6b8 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r86.ebuild @@ -0,0 +1,51 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-2.6.32-r85.ebuild,v 1.1 2012/01/13 17:33:11 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"48" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-88" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"2901_kbuild-fix-passing-wno-options-to-gcc-4.4.patch= 4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=3D">=3Dsys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]." + ewarn + ewarn "Those who intend to use one of these predefined grsecurity level= s" + ewarn "should read the help associated with the level. Users importing= a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.32," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-3.1.10.ebuild b= /sys-kernel/hardened-sources/hardened-sources-3.1.10.ebuild new file mode 100644 index 0000000..dd6b4e0 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-3.1.10.ebuild @@ -0,0 +1,50 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-= sources-3.1.8.ebuild,v 1.1 2012/01/13 17:36:22 blueness Exp $ + +EAPI=3D"4" + +ETYPE=3D"sources" +K_WANT_GENPATCHES=3D"base extras" +K_GENPATCHES_VER=3D"12" +K_DEBLOB_AVAILABLE=3D"1" + +inherit kernel-2 +detect_version + +HGPV=3D"${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-1" +HGPV_URI=3D"http://dev.gentoo.org/~blueness/hardened-sources/hardened-pa= tches/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI=3D"${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST=3D"${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE=3D"4200_fbcondecor-0.9.6.patch" + +DESCRIPTION=3D"Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_M= INOR})" +HOMEPAGE=3D"http://www.gentoo.org/proj/en/hardened/" +IUSE=3D"deblob" + +KEYWORDS=3D"~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +RDEPEND=3D">=3Dsys-devel/gcc-4.5" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT=3D"sys-apps/gradm-2.2.2*" + + ewarn + ewarn "Hardened Gentoo provides three different predefined grsecurity l= evel:" + ewarn "[server], [workstation], and [virtualization]. Those who intend= to" + ewarn "use one of these predefined grsecurity levels should read the he= lp" + ewarn "associated with the level. Because some options require >=3Dgcc= -4.5," + ewarn "users with more, than one version of gcc installed should use gc= c-config" + ewarn "to select a compatible version." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with ${PF}." + ewarn "It is strongly recommended that the following command is issued" + ewarn "prior to booting a ${PF} kernel for the first time:" + ewarn + ewarn "emerge -na =3D${GRADM_COMPAT}" + ewarn +}