diff options
| author |   John Mylchreest <johnm@gentoo.org> | 2005-05-17 19:35:33 +0000 |
|---|---|---|
| committer | John Mylchreest <johnm@gentoo.org> | 2005-05-17 19:35:33 +0000 |
| commit | 72611d46ca3d9cd8d8f364bb84add48bd285d8b6 (patch) | |
| tree | 130d736ba3222143408993f0b61bf76a5f059c8e /sys-kernel | |
| parent | fix dictionary (#92962) (diff) | |
| download | historical-72611d46ca3d9cd8d8f364bb84add48bd285d8b6.tar.gz historical-72611d46ca3d9cd8d8f364bb84add48bd285d8b6.tar.bz2 historical-72611d46ca3d9cd8d8f364bb84add48bd285d8b6.zip | |
goodbye hardened-dev-sources
Diffstat (limited to 'sys-kernel')
26 files changed, 0 insertions, 967 deletions
diff --git a/sys-kernel/hardened-dev-sources/ChangeLog b/sys-kernel/hardened-dev-sources/ChangeLog deleted file mode 100644 index 8df408a58f2c..000000000000 --- a/sys-kernel/hardened-dev-sources/ChangeLog +++ /dev/null @@ -1,344 +0,0 @@ -# ChangeLog for sys-kernel/hardened-dev-sources -# Copyright 2000-2005 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/ChangeLog,v 1.60 2005/03/11 16:49:14 solar Exp $ - - 11 Mar 2005; <solar@gentoo.org> hardened-dev-sources-2.6.11-r1.ebuild: - - marking 2.1.3 stable for all supporting arches - -*hardened-dev-sources-2.6.11-r1 (10 Mar 2005) - - 10 Mar 2005; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.11-r1.ebuild: - Update grsecurity patch, includes 2.6.11.2 (security update). - Add back PaX curr_ip fixes and optional curr_ip support for SELinux avc. - -*hardened-dev-sources-2.6.11 (07 Mar 2005) - - 07 Mar 2005; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.11.ebuild: - New version, critical security fixes in grsecurity and pax - - 20 Jan 2005; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.10-r3.ebuild: - Stable on x86 and amd64. - -*hardened-dev-sources-2.6.10-r3 (18 Jan 2005) - - 18 Jan 2005; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.10-r3.ebuild: - Remove nsa-selinux-update, required an selinux profile update. Add patches - from -as2, and update to -ac10. Add minor selinux fixes. - - 16 Jan 2005; Dylan Carlson <absinthe@gentoo.org> - hardened-dev-sources-2.6.10-r2.ebuild: - Keywords ~amd64. - - 14 Jan 2005; Adam Mondl <tocharian@gentoo.org> - hardened-dev-sources-2.6.10-r1.ebuild, hardened-dev-sources-2.6.10.ebuild: - Mark stable on x86 - -*hardened-dev-sources-2.6.10-r2 (14 Jan 2005) - - 14 Jan 2005; Adam Mondl <tocharian@gentoo.org> - +hardened-dev-sources-2.6.10-r2.ebuild: - Add latest SELinux patch from the NSA. Fixes several security problems and - also updates base to -ac9 - - 13 Jan 2005; Adam Mondl <tocharian@gentoo.org> - hardened-dev-sources-2.6.7-r18.ebuild: - Fix mistakes in CAN-2004-0814 patch. - -*hardened-dev-sources-2.6.7-r16 (12 Jan 2005) - - 12 Jan 2005; Adam Mondl <tocharian@gentoo.org> - -hardened-dev-sources-2.6.7-r15.ebuild, - -hardened-dev-sources-2.6.7-r16.ebuild, - hardened-dev-sources-2.6.7-r18.ebuild: - Mark 2.6.7-r18 stable for x86; older ebuilds removed. - -*hardened-dev-sources-2.6.10-r1 (11 Jan 2005) - - 11 Jan 2005; Adam Mondl <tocharian@gentoo.org> - +hardened-dev-sources-2.6.10-r1.ebuild: - Rework uselib() exploit patch to allow building under certain .config's. - -*hardened-dev-sources-2.6.10 (11 Jan 2005) - - 11 Jan 2005; Adam Mondl <tocharian@gentoo.org> - +hardened-dev-sources-2.6.10.ebuild: - Update the patchset for 2.6.10 to fix several vulnerabilities. Uses -ac8 as - the new kernel base. - -*hardened-dev-sources-2.6.7-r18 (25 Dec 2004) - - 25 Dec 2004; <plasmaroo@gentoo.org> hardened-dev-sources-2.6.7-r17.ebuild, - +hardened-dev-sources-2.6.7-r18.ebuild: - Marking -r17 stable. Adding -r18 with more security fixes, thank tocharian for - rolling the new patchset... - -*hardened-dev-sources-2.6.7-r17 (05 Dec 2004) - - 05 Dec 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7-r17.ebuild: - The Battle of Who Could Care Less release. Guest starring Jay Pfeifer. - Produced by Adam Mondl. This release merges applicable patches from - genpatches-base 7.53 into hardened-patches. There was no effort to make the - patch dir pretty, look at your own risk. We'll clean this up later. - - 01 Dec 2004; Brandon Hale <tseng@gentoo.org> : - Version bump for several security fixes, see 0000_README - - 24 Nov 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.7-r10.ebuild, - hardened-dev-sources-2.6.7-r13.ebuild, - hardened-dev-sources-2.6.7-r14.ebuild, hardened-dev-sources-2.6.7-r7.ebuild, - hardened-dev-sources-2.6.7-r8.ebuild, - files/hardened-dev-sources-2.6.7-CAN-2004-0814.patch, - files/hardened-dev-sources-2.6.7-CAN-2004-0883.patch: - added patches for 65877, 68421 - -*hardened-dev-sources-2.6.7-r14 (23 Nov 2004) - - 23 Nov 2004; Guillaume Destuynder <kang@gentoo.org> - +files/hardened-dev-sources-2.6.7-ptmx.patch, - +hardened-dev-sources-2.6.7-r14.ebuild: - Fixed ptmx (#62524) issue (remote DoS) - Fixed wrong digests for hds-r7 and r8 - - 24 Nov 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.7-r13.ebuild, - files/hardened-dev-sources-2.6.7-CAN-2004-0814.patch, - files/hardened-dev-sources-2.6.7-CAN-2004-0883.patch: - added patches for 65877, 68421 - -*hardened-dev-sources-2.6.7-r12 (18 Nov 2004) - - 18 Nov 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.7-r12.ebuild, - hardened-dev-sources-2.6.7-r13.ebuild, - files/hardened-2.6.7-binfmt_elf.patch: - replace binfmt_elf patch with a better one - -*hardened-dev-sources-2.6.7-r11 (10 Nov 2004) - - 10 Nov 2004; Travis Tilley <lv@gentoo.org> - +files/h-d-s-2.6.7-amd64-kill-vm_force_exec32.patch, - +hardened-dev-sources-2.6.7-r11.ebuild: - Removed a chunk of code that makes read imply exec for 32bit on amd64. If - you get the error "cannot apply additional memory protection after - relocation: Permission denied" when running 32bit binaries, this should fix - it. Note that there are still bugs in handling 32bit in PaX on amd64, and - that 32bit libraries with text relocations simply will not work at all. Also - note that this update is -only- important for amd64 users. - -*hardened-dev-sources-2.6.7-r10 (01 Nov 2004) - - 01 Nov 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.7-r10.ebuild, hardened-dev-sources-2.6.7-r9.ebuild, - files/hardened-dev-sources-2.6.7.CAN-2004-0816.patch: - Add CAN-2004-0816 iptables patch - -*hardened-dev-sources-2.6.7-r9 (16 Oct 2004) - - 16 Oct 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.7-r9.ebuild: - new revision - - 05 Sep 2004; Chris PeBenito <pebenito@gentoo.org> - hardened-dev-sources-2.6.7-r8.ebuild: - Mark stable for x86 and PPC. - -*hardened-dev-sources-2.6.7-r8 (26 Aug 2004) - - 26 Aug 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7-r8.ebuild: - Version bump for new SELinux headers, masked until policy is updated. - - 09 Aug 2004; Brandon Hale <tseng@gentoo.org> - -hardened-dev-sources-2.6.7-r4.ebuild, - -hardened-dev-sources-2.6.7-r5.ebuild, - -hardened-dev-sources-2.6.7-r6.ebuild: - Cleanup. - -*hardened-dev-sources-2.6.7-r7 (09 Aug 2004) - - 09 Aug 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7-r7.ebuild: - Bump to genpatches-base 7.45 to security bug #59905 and input driver bug #57741 - - 09 Aug 2004; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.7-r6.ebuild: - Stable on x86. - -*hardened-dev-sources-2.6.7-r6 (08 Aug 2004) - - 08 Aug 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7-r6.ebuild: - -m New hardened-patches, updates to newly released grsecurity patch. This - should give a a good solid base to go stable, barring more nasty kernel vulns. - - 07 Aug 2004; Travis Tilley <lv@gentoo.org> - hardened-dev-sources-2.6.7-r5.ebuild: - stable on amd64 - -*hardened-dev-sources-2.6.7-r5 (06 Aug 2004) - - 06 Aug 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7-r5.ebuild: - Bump genpatches to 7.44 from g-d-s -r12, this fixes a security issue (#59378) - and adds some sparc fixes. - - 24 Jul 2004; Brandon Hale <tseng@gentoo.org> - -hardened-dev-sources-2.6.5-r5.ebuild, - -hardened-dev-sources-2.6.7-r1.ebuild, - -hardened-dev-sources-2.6.7-r2.ebuild, - -hardened-dev-sources-2.6.7-r3.ebuild, -hardened-dev-sources-2.6.7.ebuild: - Cleanup. - -*hardened-dev-sources-2.6.7-r4 (24 Jul 2004) - - 24 Jul 2004; Brandon Hale <tseng@gentoo.org> - +files/hardened-dev-sources-2.6.7.CAN-2004-0596.patch, - +hardened-dev-sources-2.6.7-r4.ebuild: - Fix for CAN-2004-0596, Gentoo bug #57826 - -*hardened-dev-sources-2.6.7-r3 (13 Jul 2004) - - 13 Jul 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.7-r3.ebuild: - grsec update - - 04 Jul 2004; Brandon Hale <tseng@gentoo.org> - -files/hardened-dev-sources-2.6.5.CAN-2004-0109.patch: - Remove no longer needed security fix. - - 04 Jul 2004; Brandon Hale <tseng@gentoo.org> metadata.xml: - Remove stray digest, add kernel herd to metadata - -*hardened-dev-sources-2.6.7-r2 (03 Jul 2004) - - 03 Jul 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7-r2.ebuild: - Update to latest genpatches to close two new security vulns. - -*hardened-dev-sources-2.6.7-r1 (01 Jul 2004) - - 01 Jul 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7-r1.ebuild: - Version bump, header fix for iptables and fix for iptables remote DoS. - - 30 Jun 2004; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.7.ebuild: - Commit first public revision for 2.6.7 - -*hardened-dev-sources-2.6.7 (28 Jun 2004) - - 28 Jun 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.7.ebuild: - Add 2.6.7 sources for wider testing, -* for now. This has a pre-release of - grsec. - -*hardened-dev-sources-2.6.5-r5 (16 Jun 2004) - - 16 Jun 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.5-r5.ebuild: - Another rev bump to fix a local DoS vuln in PaX, thanks to x1bncwn for - producing a patch. - - 15 Jun 2004; Brandon Hale <tseng@gentoo.org> - -hardened-dev-sources-2.6.4-r4.ebuild, - -hardened-dev-sources-2.6.5-r3.ebuild: - Cleanup old ebuilds. - -*hardened-dev-sources-2.6.5-r4 (15 Jun 2004) - - 15 Jun 2004; Brandon Hale <tseng@gentoo.org> - +hardened-dev-sources-2.6.5-r4.ebuild: - Added patches to close multiple vulnerabilities, bug #47881. - - 20 May 2004; Travis Tilley <lv@gentoo.org> - hardened-dev-sources-2.6.4-r4.ebuild, hardened-dev-sources-2.6.5-r3.ebuild: - added amd64 keyword - - 07 May 2004; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.4-r4.ebuild: - Added IUSE= - - 24 Apr 2004; Chris PeBenito <pebenito@gentoo.org> - hardened-dev-sources-2.6.5-r3.ebuild: - Mark ~ppc. - - 18 Apr 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.4-r1.ebuild, hardened-dev-sources-2.6.4-r2.ebuild, - hardened-dev-sources-2.6.4-r3.ebuild, hardened-dev-sources-2.6.4.ebuild: - remove old versions - -*hardened-dev-sources-2.6.5-r3 (18 Apr 2004) - - 18 Apr 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.5-r2.ebuild, hardened-dev-sources-2.6.5-r3.ebuild, - hardened-dev-sources-2.6.5.ebuild: - bump for pax fix and remove old faulty versions - - 18 Apr 2004; Joshua Brindle <method@gentoo.org> : - added ramfs-xattr to hardened-patches - -*hardened-dev-sources-2.6.5-r2 (18 Apr 2004) - - 18 Apr 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.5-r2.ebuild, hardened-dev-sources-2.6.5.ebuild: - change keywords to ~x86, updated grsec to final in -r2, added selinux nfs - support - -*hardened-dev-sources-2.6.5 (16 Apr 2004) - - 16 Apr 2004; Joshua Brindle <method@gentoo.org> - hardened-dev-sources-2.6.5.ebuild: - commit 2.6.5 - -*hardened-dev-sources-2.6.4-r4 (15 Apr 2004) - - 15 Apr 2004; Brandon Hale <tseng@gentoo.org> - +files/hardened-dev-sources-2.6.5.CAN-2004-0109.patch, - +hardened-dev-sources-2.6.4-r4.ebuild: - Apply fix for CAN-2004-0109, ISO vuln. - - 14 Apr 2004; Daniel Ahlberg <aliz@gentoo.org> - hardened-dev-sources-2.6.4.ebuild: - Added IUSE=. - -*hardened-dev-sources-2.6.4-r3 (29 Mar 2004) - - 29 Mar 2004; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.4-r3.ebuild: - Version bump, free nmap blocking in every box. - - 24 Mar 2004; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.4-r2.ebuild: - Mask -r2 for now, a few different things turned out to be broken. - -*hardened-dev-sources-2.6.4-r2 (23 Mar 2004) - - 23 Mar 2004; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.4-r2.ebuild: - Version bump. - - 20 Mar 2004; <solar@gentoo.org> : - digest fix - -*hardened-dev-sources-2.6.4-r1 (20 Mar 2004) - - 20 Mar 2004; Brandon Hale <tseng@gentoo.org> - hardened-dev-sources-2.6.4-r1.ebuild: - Version bump, includes grsec test2 and support for disabling module loading. - - 15 Mar 2004; <solar@gentoo.org> hardened-dev-sources-2.6.4.ebuild: - unmasked -r0 after alot of testing from hardened users.. now lets hope nobodys - boxes catch afire - -*hardened-dev-sources-2.6.4 (14 Mar 2004) - - 14 Mar 2004; <solar@gentoo.org> hardened-dev-sources-2.6.4.ebuild, - metadata.xml: - initial hardened base. all masked for now - diff --git a/sys-kernel/hardened-dev-sources/Manifest b/sys-kernel/hardened-dev-sources/Manifest deleted file mode 100644 index a498e0cb57e2..000000000000 --- a/sys-kernel/hardened-dev-sources/Manifest +++ /dev/null @@ -1,37 +0,0 @@ ------BEGIN PGP SIGNED MESSAGE----- -Hash: SHA1 - -MD5 a2be8a9836af42c9226f89173d8500ac hardened-dev-sources-2.6.7-r17.ebuild 846 -MD5 d6c127c9979a911ba536d6fd78455441 hardened-dev-sources-2.6.11.ebuild 899 -MD5 85e543d68ca00bf16abf5f476816d3cc hardened-dev-sources-2.6.10-r2.ebuild 910 -MD5 e3a39cedc30dad423f3f47d0804b43a4 hardened-dev-sources-2.6.11-r1.ebuild 899 -MD5 019f89554fd1b9d7535584af5ecab60f hardened-dev-sources-2.6.10.ebuild 942 -MD5 d7212f71d07d8f1536566fec7bdf4064 hardened-dev-sources-2.6.10-r1.ebuild 903 -MD5 8125ec801acf264e6ea064e47e73c305 hardened-dev-sources-2.6.7-r18.ebuild 857 -MD5 da6839b148464c9d13bf1c29baa980c7 hardened-dev-sources-2.6.10-r3.ebuild 906 -MD5 5b4075d828ba2bd16339d32f2d495bb8 ChangeLog 12089 -MD5 73174f8e07b82c5df563b7196f87611c metadata.xml 299 -MD5 68f01535106afe7239afd44753eda283 files/digest-hardened-dev-sources-2.6.10-r1 145 -MD5 d5805e215fc5275fa9dfdf06242b68d2 files/digest-hardened-dev-sources-2.6.10-r2 145 -MD5 73d345a26186ac7508ba680069f892d7 files/digest-hardened-dev-sources-2.6.10-r3 145 -MD5 240ef418b4a76a5758c5196f18bb7caf files/digest-hardened-dev-sources-2.6.11-r1 145 -MD5 c31bb326fa501ea8c6ae2b8a9bb9856b files/digest-hardened-dev-sources-2.6.7-r17 144 -MD5 84526ea581d9c7dcd2322c92088379ba files/digest-hardened-dev-sources-2.6.7-r18 144 -MD5 bc48c226344f94535c3ba2e0ce55bf24 files/hardened-dev-sources-2.6.7.CAN-2004-0816.patch 1694 -MD5 2b67045104aea2284aec6ed346af7895 files/digest-hardened-dev-sources-2.6.10 145 -MD5 97946e6b2b84f7059857d51c0266f91a files/digest-hardened-dev-sources-2.6.11 145 -MD5 8204afea1d572b49a4a80d8da4eef0c9 files/hardened-dev-sources-2.6.7.CAN-2004-0596.patch 1033 -MD5 7e3d1d44b244b238ff3e36bfe1f05c80 files/h-d-s-2.6.7-amd64-kill-vm_force_exec32.patch 871 -MD5 3966432dc4fe85d30f801c37737f0e6c files/hardened-dev-sources-2.6.7-ptmx.patch 570 -MD5 d7ed23c76699efe407ec668eeba30b1e files/hardened-2.6.7-binfmt_aout.patch 983 -MD5 7872d0af6e27fb6007833b113097bb34 files/hardened-dev-sources-2.6.7-CAN-2004-0883.patch 3357 -MD5 4dd5aa98c36db5a352be527634d6d9ea files/hardened-2.6.7-binfmt_elf.patch 2245 ------BEGIN PGP SIGNATURE----- -Version: GnuPG v1.4.0 (GNU/Linux) - -iQCVAwUBQjHMS54WFLgrx1GWAQLBKwP+OuSwlb43AUpFPft3Af7xuYp+0qxGG1sd -uvBhBGYJmMNF97bvo9Vh19nawmLVtN7ZDO+ZemY/tg9zCo7Bvv1KTrQY4jbbTZz8 -BBAY3AiQCZFYQOZJq4V3gw7D9sSTGQ90jZAQiU6hJjn3WR4XzJ9FZ1ft6CkejBOy -0EU2nEyh1+U= -=29xp ------END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10 deleted file mode 100644 index d814877f0190..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 cffcd2919d9c8ef793ce1ac07a440eda linux-2.6.10.tar.bz2 36533484 -MD5 777998a44fb32417ac501ba2ace2978a hardened-patches-2.6-10.0.tar.bz2 335496 diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r1 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r1 deleted file mode 100644 index 71d2407d73f6..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r1 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 cffcd2919d9c8ef793ce1ac07a440eda linux-2.6.10.tar.bz2 36533484 -MD5 094f7ce28dea2583fd20db5ada6fabfb hardened-patches-2.6-10.1.tar.bz2 336265 diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r2 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r2 deleted file mode 100644 index 5fcbd5443fbf..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r2 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 cffcd2919d9c8ef793ce1ac07a440eda linux-2.6.10.tar.bz2 36533484 -MD5 387c772d56b99d45481f47489d175d85 hardened-patches-2.6-10.2.tar.bz2 591771 diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r3 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r3 deleted file mode 100644 index 1a01407dff33..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.10-r3 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 cffcd2919d9c8ef793ce1ac07a440eda linux-2.6.10.tar.bz2 36533484 -MD5 89a0a45c7e255bdf8cbade61946545b6 hardened-patches-2.6-10.3.tar.bz2 584940 diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.11 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.11 deleted file mode 100644 index b7b4ad488ec6..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.11 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 f00fd1b5a80f52baf9d1d83acddfa325 linux-2.6.11.tar.bz2 37075679 -MD5 f998f2b8784e9f30dd2bee97c6b4f363 hardened-patches-2.6-11.1.tar.bz2 194662 diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.11-r1 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.11-r1 deleted file mode 100644 index 05bd8fc78499..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.11-r1 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 f00fd1b5a80f52baf9d1d83acddfa325 linux-2.6.11.tar.bz2 37075679 -MD5 63e55f7477fed719935c94ad8e007306 hardened-patches-2.6-11.2.tar.bz2 195906 diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.7-r17 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.7-r17 deleted file mode 100644 index b2565295c2b4..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.7-r17 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 a74671ea68b0e3c609e8785ed8497c14 linux-2.6.7.tar.bz2 35092228 -MD5 5c912e171448a60e15697db151beabe2 hardened-patches-2.6-7.11.tar.bz2 459086 diff --git a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.7-r18 b/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.7-r18 deleted file mode 100644 index 65ab7e9a7eaf..000000000000 --- a/sys-kernel/hardened-dev-sources/files/digest-hardened-dev-sources-2.6.7-r18 +++ /dev/null @@ -1,2 +0,0 @@ -MD5 a74671ea68b0e3c609e8785ed8497c14 linux-2.6.7.tar.bz2 35092228 -MD5 8f00cac8a008b6365981e64eca1cbeb1 hardened-patches-2.6-7.13.tar.bz2 459469 diff --git a/sys-kernel/hardened-dev-sources/files/h-d-s-2.6.7-amd64-kill-vm_force_exec32.patch b/sys-kernel/hardened-dev-sources/files/h-d-s-2.6.7-amd64-kill-vm_force_exec32.patch deleted file mode 100644 index 42f7b7fe2dc6..000000000000 --- a/sys-kernel/hardened-dev-sources/files/h-d-s-2.6.7-amd64-kill-vm_force_exec32.patch +++ /dev/null @@ -1,35 +0,0 @@ ---- arch/x86_64/ia32/sys_ia32.c.orig 2004-10-05 08:02:13.989209448 -0400 -+++ arch/x86_64/ia32/sys_ia32.c 2004-10-05 08:06:51.533016376 -0400 -@@ -223,8 +223,8 @@ - return -EBADF; - } - -- if (a.prot & PROT_READ) -- a.prot |= vm_force_exec32; -+// if (a.prot & PROT_READ) -+// a.prot |= vm_force_exec32; - - mm = current->mm; - down_write(&mm->mmap_sem); -@@ -240,8 +240,8 @@ - asmlinkage long - sys32_mprotect(unsigned long start, size_t len, unsigned long prot) - { -- if (prot & PROT_READ) -- prot |= vm_force_exec32; -+// if (prot & PROT_READ) -+// prot |= vm_force_exec32; - return sys_mprotect(start,len,prot); - } - -@@ -1054,8 +1054,8 @@ - return -EBADF; - } - -- if (prot & PROT_READ) -- prot |= vm_force_exec32; -+// if (prot & PROT_READ) -+// prot |= vm_force_exec32; - - down_write(&mm->mmap_sem); - error = do_mmap_pgoff(file, addr, len, prot, flags, pgoff); diff --git a/sys-kernel/hardened-dev-sources/files/hardened-2.6.7-binfmt_aout.patch b/sys-kernel/hardened-dev-sources/files/hardened-2.6.7-binfmt_aout.patch deleted file mode 100644 index 10d60f6295da..000000000000 --- a/sys-kernel/hardened-dev-sources/files/hardened-2.6.7-binfmt_aout.patch +++ /dev/null @@ -1,38 +0,0 @@ ---- linux-2.6.7-hardened-r10/fs/binfmt_aout.c 2004-11-13 13:44:36.000000000 -0500 -+++ linux-2.6.7-hardened-r11/fs/binfmt_aout.c 2004-11-13 14:36:45.551223616 -0500 -@@ -45,13 +45,18 @@ - .min_coredump = PAGE_SIZE - }; - --static void set_brk(unsigned long start, unsigned long end) -+#define BAD_ADDR(x) ((unsigned long)(x) >= TASK_SIZE) -+ -+static int set_brk(unsigned long start, unsigned long end) - { - start = PAGE_ALIGN(start); - end = PAGE_ALIGN(end); -- if (end <= start) -- return; -- do_brk(start, end - start); -+ if (end > start) { -+ unsigned long addr = do_brk(start, end - start); -+ if (BAD_ADDR(addr)) -+ return addr; -+ } -+ return 0; - } - - /* -@@ -441,7 +446,11 @@ - beyond_if: - set_binfmt(&aout_format); - -- set_brk(current->mm->start_brk, current->mm->brk); -+ retval = set_brk(current->mm->start_brk, current->mm->brk); -+ if (retval < 0) { -+ send_sig(SIGKILL, current, 0); -+ return retval; -+ } - - retval = setup_arg_pages(bprm, EXSTACK_DEFAULT); - if (retval < 0) { diff --git a/sys-kernel/hardened-dev-sources/files/hardened-2.6.7-binfmt_elf.patch b/sys-kernel/hardened-dev-sources/files/hardened-2.6.7-binfmt_elf.patch deleted file mode 100644 index f4843ed781c9..000000000000 --- a/sys-kernel/hardened-dev-sources/files/hardened-2.6.7-binfmt_elf.patch +++ /dev/null @@ -1,84 +0,0 @@ ---- linux-2.6.7-hardened-r10/fs/binfmt_elf.c 2004-11-14 16:41:45.000000000 -0500 -+++ linux-2.6.7-hardened-r13/fs/binfmt_elf.c 2004-11-16 21:36:31.000000000 -0500 -@@ -347,9 +347,12 @@ - goto out; - - retval = kernel_read(interpreter,interp_elf_ex->e_phoff,(char *)elf_phdata,size); -- error = retval; -- if (retval < 0) -+ error = -EIO; -+ if (retval != size) { -+ if (retval < 0) -+ error = retval; - goto out_close; -+ } - - #ifdef CONFIG_PAX_SEGMEXEC - if (current->flags & PF_PAX_SEGMEXEC) -@@ -767,8 +770,11 @@ - goto out; - - retval = kernel_read(bprm->file, elf_ex.e_phoff, (char *) elf_phdata, size); -- if (retval < 0) -+ if (retval != size) { -+ if (retval >= 0) -+ retval = -EIO; - goto out_free_ph; -+ } - - files = current->files; /* Refcounted so ok */ - retval = unshare_files(); -@@ -805,7 +811,8 @@ - */ - - retval = -ENOMEM; -- if (elf_ppnt->p_filesz > PATH_MAX) -+ if (elf_ppnt->p_filesz > PATH_MAX || -+ elf_ppnt->p_filesz == 0) - goto out_free_file; - elf_interpreter = (char *) kmalloc(elf_ppnt->p_filesz, - GFP_KERNEL); -@@ -815,8 +822,16 @@ - retval = kernel_read(bprm->file, elf_ppnt->p_offset, - elf_interpreter, - elf_ppnt->p_filesz); -- if (retval < 0) -+ if (retval != elf_ppnt->p_filesz) { -+ if (retval >= 0) -+ retval = -EIO; -+ goto out_free_interp; -+ } -+ /* make sure path is NULL terminated */ -+ retval = -EINVAL; -+ if (elf_interpreter[elf_ppnt->p_filesz - 1] != '\0') - goto out_free_interp; -+ - /* If the program interpreter is one of these two, - * then assume an iBCS2 image. Otherwise assume - * a native linux image. -@@ -851,8 +866,11 @@ - if (IS_ERR(interpreter)) - goto out_free_interp; - retval = kernel_read(interpreter, 0, bprm->buf, BINPRM_BUF_SIZE); -- if (retval < 0) -+ if (retval != BINPRM_BUF_SIZE) { -+ if (retval >= 0) -+ retval = -EIO; - goto out_free_dentry; -+ } - - /* Get the exec headers */ - interp_ex = *((struct exec *) bprm->buf); -@@ -1105,8 +1123,10 @@ - } - #endif - -- if (BAD_ADDR(error)) -- continue; -+ if (BAD_ADDR(error)) { -+ send_sig(SIGKILL, current, 0); -+ goto out_free_dentry; -+ } - - /* PaX: mirror at a randomized base */ - down_write(¤t->mm->mmap_sem); diff --git a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7-CAN-2004-0883.patch b/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7-CAN-2004-0883.patch deleted file mode 100644 index 74840e628699..000000000000 --- a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7-CAN-2004-0883.patch +++ /dev/null @@ -1,93 +0,0 @@ -diff -urN linux-2.6.7-hardened-r14/fs/smbfs/proc.c linux-2.6.7-hardened-r15/fs/smbfs/proc.c ---- linux-2.6.7-hardened-r14/fs/smbfs/proc.c 2004-11-24 12:46:34.000000000 -0500 -+++ linux-2.6.7-hardened-r15/fs/smbfs/proc.c 2004-11-24 12:53:38.883511896 -0500 -@@ -1423,9 +1423,9 @@ - * So we must first calculate the amount of padding used by the server. - */ - data_off -= hdrlen; -- if (data_off > SMB_READX_MAX_PAD) { -- PARANOIA("offset is larger than max pad!\n"); -- PARANOIA("%d > %d\n", data_off, SMB_READX_MAX_PAD); -+ if (data_off > SMB_READX_MAX_PAD || data_off < 0) { -+ PARANOIA("offset is larger than SMB_READX_MAX_PAD or negative!\n"); -+ PARANOIA("%d > %d || %d < 0\n", data_off, SMB_READX_MAX_PAD, data_off); - req->rq_rlen = req->rq_bufsize + 1; - return; - } -diff -urN linux-2.6.7-hardened-r14/fs/smbfs/request.c linux-2.6.7-hardened-r15/fs/smbfs/request.c ---- linux-2.6.7-hardened-r14/fs/smbfs/request.c 2004-11-24 12:46:34.000000000 -0500 -+++ linux-2.6.7-hardened-r15/fs/smbfs/request.c 2004-11-24 12:53:38.885511592 -0500 -@@ -588,6 +588,10 @@ - data_count = WVAL(inbuf, smb_drcnt); - - /* Modify offset for the split header/buffer we use */ -+ if (data_offset < hdrlen) -+ goto out_bad_data; -+ if (parm_offset < hdrlen) -+ goto out_bad_parm; - data_offset -= hdrlen; - parm_offset -= hdrlen; - -@@ -607,6 +611,10 @@ - req->rq_lparm = parm_count; - req->rq_data = req->rq_buffer + data_offset; - req->rq_parm = req->rq_buffer + parm_offset; -+ if (parm_offset + parm_count > req->rq_rlen) -+ goto out_bad_parm; -+ if (data_offset + data_count > req->rq_rlen) -+ goto out_bad_data; - return 0; - } - -@@ -634,6 +642,7 @@ - req->rq_trans2buffer = smb_kmalloc(buf_len, GFP_NOFS); - if (!req->rq_trans2buffer) - goto out_no_mem; -+ memset(req->rq_trans2buffer, 0, buf_len); - - req->rq_parm = req->rq_trans2buffer; - req->rq_data = req->rq_trans2buffer + parm_tot; -@@ -643,8 +652,12 @@ - - if (parm_disp + parm_count > req->rq_total_parm) - goto out_bad_parm; -+ if (parm_offset + parm_count > req->rq_rlen) -+ goto out_bad_parm; - if (data_disp + data_count > req->rq_total_data) - goto out_bad_data; -+ if (data_offset + data_count > req->rq_rlen) -+ goto out_bad_data; - - inbuf = req->rq_buffer; - memcpy(req->rq_parm + parm_disp, inbuf + parm_offset, parm_count); -@@ -657,8 +670,11 @@ - * Check whether we've received all of the data. Note that - * we use the packet totals -- total lengths might shrink! - */ -- if (req->rq_ldata >= data_tot && req->rq_lparm >= parm_tot) -+ if (req->rq_ldata >= data_tot && req->rq_lparm >= parm_tot) { -+ req->rq_ldata = data_tot; -+ req->rq_lparm = parm_tot; - return 0; -+ } - return 1; - - out_too_long: -@@ -676,13 +692,13 @@ - req->rq_errno = -EIO; - goto out; - out_bad_parm: -- printk(KERN_ERR "smb_trans2: invalid parms, disp=%d, cnt=%d, tot=%d\n", -- parm_disp, parm_count, parm_tot); -+ printk(KERN_ERR "smb_trans2: invalid parms, disp=%d, cnt=%d, tot=%d, ofs=%d\n", -+ parm_disp, parm_count, parm_tot, parm_offset); - req->rq_errno = -EIO; - goto out; - out_bad_data: -- printk(KERN_ERR "smb_trans2: invalid data, disp=%d, cnt=%d, tot=%d\n", -- data_disp, data_count, data_tot); -+ printk(KERN_ERR "smb_trans2: invalid data, disp=%d, cnt=%d, tot=%d, ofs=%d\n", -+ data_disp, data_count, data_tot, data_offset); - req->rq_errno = -EIO; - out: - return req->rq_errno; diff --git a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7-ptmx.patch b/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7-ptmx.patch deleted file mode 100644 index e16cab850322..000000000000 --- a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7-ptmx.patch +++ /dev/null @@ -1,20 +0,0 @@ -Index: linux-2.6.5/fs/devpts/inode.c -=================================================================== ---- linux-2.6.5.orig/fs/devpts/inode.c -+++ linux-2.6.5/fs/devpts/inode.c -@@ -178,9 +178,13 @@ struct tty_struct *devpts_get_tty(int nu - { - struct dentry *dentry = get_node(number); - struct tty_struct *tty; -- -- tty = (IS_ERR(dentry) || !dentry->d_inode) ? NULL : -- dentry->d_inode->u.generic_ip; -+ -+ tty = NULL; -+ if (!IS_ERR(dentry)) { -+ if (dentry->d_inode) -+ tty = dentry->d_inode->u.generic_ip; -+ dput(dentry); -+ } - - up(&devpts_root->d_inode->i_sem); diff --git a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7.CAN-2004-0596.patch b/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7.CAN-2004-0596.patch deleted file mode 100644 index 3e20a2e41372..000000000000 --- a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7.CAN-2004-0596.patch +++ /dev/null @@ -1,46 +0,0 @@ ---- 1.13/drivers/net/eql.c 2004-07-21 03:13:40 -07:00 -+++ 1.14/drivers/net/eql.c 2004-07-21 03:13:40 -07:00 -@@ -495,6 +495,8 @@ - return -EFAULT; - - slave_dev = dev_get_by_name(sc.slave_name); -+ if (!slave_dev) -+ return -ENODEV; - - ret = -EINVAL; - -@@ -527,11 +529,13 @@ - if (copy_from_user(&sc, scp, sizeof (slave_config_t))) - return -EFAULT; - -- eql = dev->priv; - slave_dev = dev_get_by_name(sc.slave_name); -+ if (!slave_dev) -+ return -ENODEV; - - ret = -EINVAL; - -+ eql = dev->priv; - spin_lock_bh(&eql->queue.lock); - if (eql_is_slave(slave_dev)) { - slave = __eql_find_slave_dev(&eql->queue, slave_dev); ---- 1.14/drivers/net/eql.c 2004-07-21 03:13:33 -07:00 -+++ 1.15/drivers/net/eql.c 2004-07-21 03:13:33 -07:00 -@@ -499,6 +499,8 @@ - return -ENODEV; - - ret = -EINVAL; -+ if (!slave_dev) -+ return ret; - - spin_lock_bh(&eql->queue.lock); - if (eql_is_slave(slave_dev)) { -@@ -534,6 +536,8 @@ - return -ENODEV; - - ret = -EINVAL; -+ if (!slave_dev) -+ return ret; - - eql = dev->priv; - spin_lock_bh(&eql->queue.lock); diff --git a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7.CAN-2004-0816.patch b/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7.CAN-2004-0816.patch deleted file mode 100644 index 2cf3599efc47..000000000000 --- a/sys-kernel/hardened-dev-sources/files/hardened-dev-sources-2.6.7.CAN-2004-0816.patch +++ /dev/null @@ -1,44 +0,0 @@ -Subject: Prevent ICMP crash in netfilter logging -From: Olaf Kirch <okir@suse.de> -References: 46016 - -This patch fixes a remotely triggerable crash in the netfilter code -when looking at ICMP unreachables. It dies when trying to copy -BIGNUM bytes... - -Index: linux-2.6.5/net/ipv4/netfilter/ipt_LOG.c -=================================================================== ---- linux-2.6.5.orig/net/ipv4/netfilter/ipt_LOG.c 2004-02-19 11:36:37.000000000 +0100 -+++ linux-2.6.5/net/ipv4/netfilter/ipt_LOG.c 2004-09-24 15:48:54.000000000 +0200 -@@ -71,7 +71,7 @@ - printk("FRAG:%u ", ntohs(iph.frag_off) & IP_OFFSET); - - if ((info->logflags & IPT_LOG_IPOPT) -- && iph.ihl * 4 != sizeof(struct iphdr)) { -+ && iph.ihl * 4 > sizeof(struct iphdr)) { - unsigned char opt[4 * 15 - sizeof(struct iphdr)]; - unsigned int i, optsize; - -@@ -138,7 +138,7 @@ - printk("URGP=%u ", ntohs(tcph.urg_ptr)); - - if ((info->logflags & IPT_LOG_TCPOPT) -- && tcph.doff * 4 != sizeof(struct tcphdr)) { -+ && tcph.doff * 4 > sizeof(struct tcphdr)) { - unsigned char opt[4 * 15 - sizeof(struct tcphdr)]; - unsigned int i, optsize; - -Index: linux-2.6.5/net/ipv6/netfilter/ip6t_LOG.c -=================================================================== ---- linux-2.6.5.orig/net/ipv6/netfilter/ip6t_LOG.c 2004-09-24 15:47:00.000000000 +0200 -+++ linux-2.6.5/net/ipv6/netfilter/ip6t_LOG.c 2004-09-24 15:48:35.000000000 +0200 -@@ -188,7 +188,7 @@ - printk("URGP=%u ", ntohs(tcph->urg_ptr)); - - if ((info->logflags & IP6T_LOG_TCPOPT) -- && tcph->doff * 4 != sizeof(struct tcphdr)) { -+ && tcph->doff * 4 > sizeof(struct tcphdr)) { - unsigned int i; - - /* Max length: 127 "OPT (" 15*4*2chars ") " */ - diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r1.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r1.ebuild deleted file mode 100644 index 43cc1a799e47..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r1.ebuild +++ /dev/null @@ -1,25 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r1.ebuild,v 1.2 2005/01/14 09:08:19 tocharian Exp $ - -IUSE="" -ETYPE="sources" -inherit kernel-2 -detect_version - -HGPV=10.1 -HGPV_SRC="http://dev.gentoo.org/~tocharian/kernels/${PN}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README \ - ${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0001_README-AC8" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="x86" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r2.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r2.ebuild deleted file mode 100644 index 02d6be390155..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r2.ebuild +++ /dev/null @@ -1,25 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r2.ebuild,v 1.2 2005/01/17 04:21:08 absinthe Exp $ - -IUSE="" -ETYPE="sources" -inherit kernel-2 -detect_version - -HGPV=10.2 -HGPV_SRC="http://dev.gentoo.org/~tocharian/kernels/${PN}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README \ - ${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0001_README-AC9" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="~x86 ~amd64" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r3.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r3.ebuild deleted file mode 100644 index 5ce8924c007c..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r3.ebuild +++ /dev/null @@ -1,25 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10-r3.ebuild,v 1.2 2005/01/21 00:23:28 tseng Exp $ - -IUSE="" -ETYPE="sources" -inherit kernel-2 -detect_version - -HGPV=10.3 -HGPV_SRC="http://dev.gentoo.org/~tocharian/kernels/${PN}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README \ - ${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0001_README-AC10" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="x86 amd64" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10.ebuild deleted file mode 100644 index f3d619772035..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10.ebuild +++ /dev/null @@ -1,26 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.10.ebuild,v 1.2 2005/01/14 09:08:19 tocharian Exp $ - -IUSE="" -ETYPE="sources" -DEPEND="grsec? ( =sys-apps/gradm-2.1.0 )" -inherit kernel-2 -detect_version - -HGPV=10.0 -HGPV_SRC="http://dev.gentoo.org/~tocharian/kernels/${PN}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README \ - ${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0001_README-AC8" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="x86" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11-r1.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11-r1.ebuild deleted file mode 100644 index 3f91ec65a137..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11-r1.ebuild +++ /dev/null @@ -1,25 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11-r1.ebuild,v 1.2 2005/03/11 16:49:14 solar Exp $ - -IUSE="" -ETYPE="sources" -inherit kernel-2 -detect_version - -HGPV=11.2 -HGPV_SRC="http://dev.gentoo.org/~tseng/kernel/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README \ - ${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0001_README-AC10" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="x86 ppc amd64" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11.ebuild deleted file mode 100644 index fbc4b369aba9..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11.ebuild +++ /dev/null @@ -1,25 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.11.ebuild,v 1.2 2005/03/07 21:27:23 tseng Exp $ - -IUSE="" -ETYPE="sources" -inherit kernel-2 -detect_version - -HGPV=11.1 -HGPV_SRC="http://dev.gentoo.org/~tseng/kernel/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README \ - ${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0001_README-AC10" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="~x86 ~ppc ~amd64" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r17.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r17.ebuild deleted file mode 100644 index 34bad69eed5c..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r17.ebuild +++ /dev/null @@ -1,26 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r17.ebuild,v 1.4 2005/01/11 21:15:57 tocharian Exp $ - -IUSE="" -ETYPE="sources" -inherit kernel-2 -detect_version - -DEPEND="!>=sys-apps/gradm-2.0.2" - -HGPV=7.11 -HGPV_SRC="http://dev.gentoo.org/~tseng/kernel/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="x86 ~ppc ~amd64" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r18.ebuild b/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r18.ebuild deleted file mode 100644 index 5f2673a23a13..000000000000 --- a/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r18.ebuild +++ /dev/null @@ -1,26 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-dev-sources/hardened-dev-sources-2.6.7-r18.ebuild,v 1.4 2005/01/13 19:27:25 tocharian Exp $ - -IUSE="" -ETYPE="sources" -inherit kernel-2 -detect_version - -DEPEND="!>=sys-apps/gradm-2.0.2" - -HGPV=7.13 -HGPV_SRC="http://dev.gentoo.org/~tocharian/kernels/${PN}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" - -UNIPATCH_STRICTORDER="yes" -UNIPATCH_LIST="${DISTDIR}/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}.tar.bz2" -UNIPATCH_DOCS="${WORKDIR}/patches/hardened-patches-${KV_MAJOR}.${KV_MINOR}-${HGPV}/0000_README" - -DESCRIPTION="Hardened sources for the ${KV_MAJOR}.${KV_MINOR} kernel tree" - -SRC_URI="${KERNEL_URI} ${HGPV_SRC}" -KEYWORDS="x86 ~ppc ~amd64" - -pkg_postinst() { - postinst_sources -} diff --git a/sys-kernel/hardened-dev-sources/metadata.xml b/sys-kernel/hardened-dev-sources/metadata.xml deleted file mode 100644 index 6ab52a17d53f..000000000000 --- a/sys-kernel/hardened-dev-sources/metadata.xml +++ /dev/null @@ -1,7 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> -<pkgmetadata> -<herd>hardened</herd> -<herd>kernel</herd> -<longdescription>This kernel source contains a security hardened version of the Linux 2.6.x Kernel.</longdescription> -</pkgmetadata> |