[gentoo-commits] proj/hardened-dev:master commit in: sys-kernel/hardened-sources/

Mon, 24 Aug 2015 09:35:20 -0700 

commit:     20598882659f2d9cc713afef96d3faa389aa827b
Author:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>
AuthorDate: Mon Aug 24 16:38:33 2015 +0000
Commit:     Anthony G. Basile <blueness <AT> gentoo <DOT> org>
CommitDate: Mon Aug 24 16:38:33 2015 +0000
URL:        https://gitweb.gentoo.org/proj/hardened-dev.git/commit/?id=20598882

sys-kernel/hardened-sources: testing patchset 20150823

Package-Manager: portage-2.2.20.1
Manifest-Sign-Key: 0x9384FA6EF52D4BBA

 .../hardened-sources-4.1.6-r1.ebuild               | 45 ++++++++++++++++++++++
 1 file changed, 45 insertions(+)

diff --git a/sys-kernel/hardened-sources/hardened-sources-4.1.6-r1.ebuild 
b/sys-kernel/hardened-sources/hardened-sources-4.1.6-r1.ebuild
new file mode 100644
index 0000000..7ff4c74
--- /dev/null
+++ b/sys-kernel/hardened-sources/hardened-sources-4.1.6-r1.ebuild
@@ -0,0 +1,45 @@
+# Copyright 1999-2015 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Id$
+
+EAPI="5"
+
+ETYPE="sources"
+K_WANT_GENPATCHES="base"
+K_GENPATCHES_VER="9"
+K_DEBLOB_AVAILABLE="1"
+
+inherit kernel-2
+detect_version
+
+HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-2"
+HGPV_URI="http://dev.gentoo.org/~blueness/hardened-sources/hardened-patches/hardened-patches-${HGPV}.extras.tar.bz2";
+SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}"
+
+UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2"
+UNIPATCH_EXCLUDE="
+       1500_XATTR_USER_PREFIX.patch
+       2900_dev-root-proc-mount-fix.patch"
+
+DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})"
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/";
+IUSE="deblob"
+
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86"
+
+RDEPEND=">=sys-devel/gcc-4.5"
+
+pkg_postinst() {
+       kernel-2_pkg_postinst
+
+       local GRADM_COMPAT="sys-apps/gradm-3.1*"
+
+       ewarn
+       ewarn "Users of grsecurity's RBAC system must ensure they are using"
+       ewarn "${GRADM_COMPAT}, which is compatible with ${PF}."
+       ewarn "It is strongly recommended that the following command is issued"
+       ewarn "prior to booting a ${PF} kernel for the first time:"
+       ewarn
+       ewarn "emerge -na =${GRADM_COMPAT}"
+       ewarn
+}

Reply via email to