diff options
author | Matthew Summers <matthew.summers@liquidustech.com> | 2010-05-10 14:10:46 -0500 |
---|---|---|
committer | Matthew Summers <matthew.summers@liquidustech.com> | 2010-05-10 14:10:46 -0500 |
commit | dcea8f75a3f0f023ff00f5eaa752357171ce3ddd (patch) | |
tree | 956deb5e71e2b945da3943e1856d6f65b74e9924 | |
download | hardened-kernel-dcea8f75a3f0f023ff00f5eaa752357171ce3ddd.tar.gz hardened-kernel-dcea8f75a3f0f023ff00f5eaa752357171ce3ddd.tar.bz2 hardened-kernel-dcea8f75a3f0f023ff00f5eaa752357171ce3ddd.zip |
Initial commit of ebuilds from Anarchy's overlay
-rw-r--r-- | sys-kernel/hardened-sources/ChangeLog | 10 | ||||
-rw-r--r-- | sys-kernel/hardened-sources/Manifest | 20 | ||||
-rw-r--r-- | sys-kernel/hardened-sources/hardened-sources-2.6.31-r11.ebuild | 50 | ||||
-rw-r--r-- | sys-kernel/hardened-sources/hardened-sources-2.6.32-r6.ebuild | 50 | ||||
-rw-r--r-- | sys-kernel/hardened-sources/hardened-sources-2.6.33-r2.ebuild | 45 | ||||
-rw-r--r-- | sys-kernel/hardened-sources/metadata.xml | 22 |
6 files changed, 197 insertions, 0 deletions
diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog new file mode 100644 index 0000000..d5099ad --- /dev/null +++ b/sys-kernel/hardened-sources/ChangeLog @@ -0,0 +1,10 @@ +# ChangeLog for sys-kernel/hardened-sources +# Copyright 1999-2010 Gentoo Foundation; Distributed under the GPL v2 +# $Header: $ + +*hardened-sources-2.6.32-r3 (30 Jan 2010) + + 30 Jan 2010; <zorry@gentoo.org> +hardened-sources-2.6.32-r3.ebuild: + Updated the kernel to 2.6.32.7 and the Grsec/PaX to + 2.1.14-2.6.32.7-201001291848 + diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest new file mode 100644 index 0000000..6eab876 --- /dev/null +++ b/sys-kernel/hardened-sources/Manifest @@ -0,0 +1,20 @@ +DIST deblob-2.6.31 80819 RMD160 20972daf3852336198b5e1ac4f95a9d88f5d1d67 SHA1 41070a790894136913469bdcb3433b3d13b3e797 SHA256 4dce1f711d5098430f15ca0664ad3a1ad83a0ce6faf10d0dc8b8f53f2ab655f0 +DIST deblob-2.6.32 84094 RMD160 394f46ec5b869638a7bc2e87beb118167c9bd6cb SHA1 1a2a1efb72126609d9e3b9be99ae5be2751efd06 SHA256 de625f0bd221c9c38d4453f1b709622f222d86a0ae9350d2b7b0e17795e6de6d +DIST deblob-2.6.33 86599 RMD160 534eb7b76ea29561a0b6e73659f67fc746fad111 SHA1 0c3c2d8c299f3cb5d807bc4a35b20bdca50ccbce SHA256 176aa9c73f27c9c69f198e3637cae61072f152c25c468ffbebf1a4c2494d52d0 +DIST genpatches-2.6.31-10.base.tar.bz2 240152 RMD160 e0d61d003634e7137e915f9e9c44f761b774d6d5 SHA1 d4e6ef579300d85b02d422196bd8fe3509f0c8f4 SHA256 73abf301b2f63f325f12bd93c53ceaa32623c9084b30c6795e6462046d67ef21 +DIST genpatches-2.6.31-10.extras.tar.bz2 24961 RMD160 20c268bccebfe31a2897359ae17534363d0136b4 SHA1 6ba14f68ce80068eb3e4abe1069848e85b6a31a1 SHA256 ccf0dc37d1a799bcc67bd9eb3e971b346af8495d1826d7d3f3711819812c2120 +DIST genpatches-2.6.32-9.base.tar.bz2 307659 RMD160 418b23d23066a8e5e8c144bbc79ea4236dd82f34 SHA1 7f305626d2892a5fe866864c1b1361319cceee0a SHA256 db4df36b3ad1ecd1d7580a49b233287122967fc768fb26017d38227644a3604d +DIST genpatches-2.6.32-9.extras.tar.bz2 24934 RMD160 e3e1d60fb45a3e3c818ddda36b9180d4fc46679e SHA1 d16a34dfa35d163ea4042058b3865c389f3802e9 SHA256 50b70c76461aa52f7f2ad88175e7f08eb555f7f1dfd274759ec0c2a9748bde5e +DIST genpatches-2.6.33-3.base.tar.bz2 135726 RMD160 3e32b98bdc22141ec4262edd1735dedfd1b6e719 SHA1 4d5e95972b3afc41c1d102bf75d1b22edacc11ba SHA256 c1d29084f715c1c30fcbb64a29c8cee076cf29286cf0ad10c9df51eb136b4bb6 +DIST genpatches-2.6.33-3.extras.tar.bz2 23522 RMD160 579e83343a0f6bae8d543abf1d3a52cabd2c8aa8 SHA1 c9023272ea6805878b906affa4dedb50565343f1 SHA256 a301f823a11cbaae5b81092b60d92a9d9b53e8522167713428e74db2b4c629c1 +DIST grsecurity-2.1.14-2.6.33.3-201005012055.patch 1833480 RMD160 528bcecd8097320f249a2fc4427fe1d1f1998f97 SHA1 f47c7e1443f54635528fdf840d149252cb5deeaa SHA256 c68088d7ea4c00cdc2c1dfb4a81e8dce041e320c0de1c34fb4fe158abb7ff13b +DIST hardened-patches-2.6.31-16.extras.tar.bz2 318563 RMD160 a25c3963351b557b255e6fa4498c2232cae11d40 SHA1 1c8b89437614daf3b6e8b29ebfe129840810023f SHA256 3ed6e4706ba6cfd1794440e73d82f8323da7baedaad666c7c68ef56abfc7efbf +DIST hardened-patches-2.6.32-9.extras.tar.bz2 321109 RMD160 9f5f25da483fd696160ca4a39b6468cb4c8a924c SHA1 604f747558fc2680058fffd04191c6dfa0d08296 SHA256 148075ffab351bee6a63ff9248a86c9f74268481f4f40e4d97a8618a7ab40e7d +DIST linux-2.6.31.tar.bz2 61494822 RMD160 c0d88e63740abf0d4f9d82557260a31643f5a01b SHA1 c6e0e6b473ba2b80d164e37cfabf294e783c03d9 SHA256 0acd83f7b85db7ee18c2b0b7505e1ba6fd722c36f49a8870a831c851660e3512 +DIST linux-2.6.32.tar.bz2 64424138 RMD160 b93742cbaf8174f2200d2dbef0d47a26c618039c SHA1 410b4fc818023bfef60064e973ff0ab46d3bfb19 SHA256 5099786d80b8407d98a619df00209c2353517f22d804fdd9533b362adcb4504e +DIST linux-2.6.33.tar.bz2 66266488 RMD160 7f0897db8113bc17249d82d61ca41e3b91eb4664 SHA1 acc8db00f30c7dfb4f04183a88ba35a32b6f8e8d SHA256 63e237de3b3c4c46a21833b9ce7e20574548d52dabbd1a8bf376041e4455d5c6 +EBUILD hardened-sources-2.6.31-r11.ebuild 1878 RMD160 2f8cf01fdc1400c35b1b4f06d9ae4f36d13058a2 SHA1 b7dca96cd19731c56a3a7e89e1ab5fea02895713 SHA256 18619604b870f11bb1c665c18af577d6c96566b981e3e717d0ccfc9ada875d46 +EBUILD hardened-sources-2.6.32-r6.ebuild 1911 RMD160 358ceb6e7e729f11d76a3abfba011a1a47a3dd4d SHA1 edaa00e2108d39d04491176001445e97cd66d909 SHA256 a58f194636edd89bfe03972aa73c00aa47352102f87960f01338ca6fc860209b +EBUILD hardened-sources-2.6.33-r2.ebuild 1374 RMD160 3e5b9a8133847221e877431680b5a4ed90ed7da4 SHA1 5dc0d88180ae82b92804e40131d1541a43d68566 SHA256 1e850ce93c562c581180ee5e55b341ed42490ebe4e29da3b836ced0fa78c119a +MISC ChangeLog 327 RMD160 ab80e8f506536ed713b1ae6b68ebb2669ae29199 SHA1 498d0a8706ba93e45d7bea8f7cf68f18f6ef7b3a SHA256 ad03c58afb4c01b1b805241f41c5110a3b954bacaa98a6d5a0b1bd5b57235324 +MISC metadata.xml 635 RMD160 6f5f3a80e7a75b741d5328e0e3cf574ffa6354b7 SHA1 bf86f71339336c19f665fb373b0c8144fbecbc8e SHA256 072b619e2ac287d035d2452597f05a4f4a0417bd421035a4ec426a5652de3d45 diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.31-r11.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.31-r11.ebuild new file mode 100644 index 0000000..2988b47 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.31-r11.ebuild @@ -0,0 +1,50 @@ +# Copyright 1999-2010 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.29.ebuild,v 1.1 2009/05/25 04:36:12 gengor Exp $ + +ETYPE="sources" +K_WANT_GENPATCHES="base extras" +K_GENPATCHES_VER="10" + +inherit kernel-2 +detect_version + +HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-16" +HGPV_URI="http://dev.gentoo.org/~anarchy/dist/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch" + +DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" +IUSE="" + +KEYWORDS="~alpha ~amd64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT="sys-apps/gradm-2.1.14*" + + ewarn + ewarn "As of ${CATEGORY}/${PN}-2.6.24 the predefined" + ewarn "\"Hardened [Gentoo]\" grsecurity level has been removed." + ewarn "Two improved predefined security levels replace it:" + ewarn "\"Hardened Gentoo [server]\" and \"Hardened Gentoo [workstation]\"" + ewarn + ewarn "Those who intend to use one of these predefined grsecurity levels" + ewarn "should read the help associated with the level. Users importing a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.24," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with kernel series ${OKV}." + ewarn "Therefore, it is strongly recommended that the following command is" + ewarn "issued prior to booting a ${P} series kernel for" + ewarn "the first time:" + ewarn + ewarn "emerge -na =${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.32-r6.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r6.ebuild new file mode 100644 index 0000000..3170222 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.32-r6.ebuild @@ -0,0 +1,50 @@ +# Copyright 1999-2010 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.29.ebuild,v 1.1 2009/05/25 04:36:12 gengor Exp $ + +ETYPE="sources" +K_WANT_GENPATCHES="base extras" +K_GENPATCHES_VER="9" + +inherit kernel-2 +detect_version + +HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-9" +HGPV_URI="http://dev.gentoo.org/~anarchy/dist/hardened-patches-${HGPV}.extras.tar.bz2" +SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" + +UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.6.patch 4425_grsec-pax-without-grsec.patch" + +DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" +IUSE="" + +KEYWORDS="~alpha ~amd64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT="sys-apps/gradm-2.1.14*" + + ewarn + ewarn "As of ${CATEGORY}/${PN}-2.6.24 the predefined" + ewarn "\"Hardened [Gentoo]\" grsecurity level has been removed." + ewarn "Two improved predefined security levels replace it:" + ewarn "\"Hardened Gentoo [server]\" and \"Hardened Gentoo [workstation]\"" + ewarn + ewarn "Those who intend to use one of these predefined grsecurity levels" + ewarn "should read the help associated with the level. Users importing a" + ewarn "kernel configuration from a kernel prior to ${PN}-2.6.24," + ewarn "should review their selected grsecurity/PaX options carefully." + ewarn + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with kernel series ${OKV}." + ewarn "Therefore, it is strongly recommended that the following command is" + ewarn "issued prior to booting a ${P} series kernel for" + ewarn "the first time:" + ewarn + ewarn "emerge -na =${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.33-r2.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.33-r2.ebuild new file mode 100644 index 0000000..33e2f56 --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.33-r2.ebuild @@ -0,0 +1,45 @@ +# Copyright 1999-2010 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: $ + +ETYPE="sources" +K_WANT_GENPATCHES="base extras" +K_GENPATCHES_VER="3" + +inherit kernel-2 +detect_version + +GRSEC_VERSION="2.1.14-2.6.33.3-201005012055" +GRSEC_PATCH="grsecurity-${GRSEC_VERSION}.patch" +GRSEC_URI="http://grsecurity.com/test/${GRSEC_PATCH}" +SRC_URI="${KERNEL_URI} ${GENPATCHES_URI} ${ARCH_URI} ${GRSEC_URI}" + +UNIPATCH_STRICTORDER="y" +UNIPATCH_LIST="${DISTDIR}/${GRSEC_PATCH}" +UNIPATCH_EXCLUDE="*_fbcondecor-0.9.6.patch" + +DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" +HOMEPAGE="http://www.grsecurity.com" +IUSE="" + +KEYWORDS="~alpha ~amd64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" + +pkg_postinst() { + kernel-2_pkg_postinst + + local GRADM_COMPAT="sys-apps/gradm-2.1.14*" + + ewarn + ewarn "As of ${CATEGORY}/${PN}-2.6.33-r2 the predefined" + ewarn "have been removed, this ensure we are actually using" + ewarn "the same sources that upstream expects unmodified." + ewarn + ewarn "Users of grsecurity's RBAC system must ensure they are using" + ewarn "${GRADM_COMPAT}, which is compatible with kernel series ${OKV}." + ewarn "Therefore, it is strongly recommended that the following command is" + ewarn "issued prior to booting a ${P} series kernel for" + ewarn "the first time:" + ewarn + ewarn "emerge -na =${GRADM_COMPAT}" + ewarn +} diff --git a/sys-kernel/hardened-sources/metadata.xml b/sys-kernel/hardened-sources/metadata.xml new file mode 100644 index 0000000..0dd3a97 --- /dev/null +++ b/sys-kernel/hardened-sources/metadata.xml @@ -0,0 +1,22 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> +<pkgmetadata> + <herd>kernel</herd> + <herd>hardened</herd> + <maintainer> + <email>kerframil@gmail.com</email> + <name>Kerin Millar</name> + </maintainer> + <maintainer> + <email>gengor@gentoo.org</email> + <name>Gordon Malm</name> + </maintainer> + <maintainer> + <email>anarchy@gentoo.org</email> + <name>Jory A. Pratt</name> + </maintainer> + <longdescription> + hardened-sources is based upon genpatches, and adds the grsecurity + patch from http://www.grsecurity.net, which also includes PaX. + </longdescription> +</pkgmetadata> |