From 2c8ce24cd955142b8ca07713311c83c70bd13348 Mon Sep 17 00:00:00 2001
From: Alexander Miroshnichenko <alex@millerson.name>
Date: Wed, 24 May 2023 19:59:55 +0300
Subject: [PATCH] sys-kernel/hardened-kernel: update to v6.1.29

---
 sys-kernel/hardened-kernel/Manifest           |  8 ++++----
 .../files/linux-6.1.amd64.config              | 20 +++++++++----------
 ...4.ebuild => hardened-kernel-6.1.29.ebuild} |  2 +-
 3 files changed, 14 insertions(+), 16 deletions(-)
 rename sys-kernel/hardened-kernel/{hardened-kernel-6.1.14.ebuild => hardened-kernel-6.1.29.ebuild} (98%)

diff --git a/sys-kernel/hardened-kernel/Manifest b/sys-kernel/hardened-kernel/Manifest
index 91523f6..2dcef96 100644
--- a/sys-kernel/hardened-kernel/Manifest
+++ b/sys-kernel/hardened-kernel/Manifest
@@ -1,7 +1,7 @@
 AUX linux-6.1.amd64.config 174994 BLAKE2B 927affead8ede8b9d47ab8887660a5ab87629c826555d69b899f093ad73e1ea71938eee6b261e9921a4399f856bae0b114f6e86a6f832d692e9b3ff43e5e0842 SHA512 7503c40326c60076df92e29af7b4fbad3e2574021c63217bcb4f580c8217addb37e03b2e8c25ad3f9d57fcbe1666046b246fd66a42981f24f510710958a04bb9
-DIST genpatches-6.1-16.base.tar.xz 820936 BLAKE2B 91554b3c532c7ba9549291a2a6c3ae531922819d896e4a9e69ef36d09ec8a444d2ba0725af6ff213ea554e6fcc9a20ccf5adce1d8e17a3c4fa9c3174a0a228ca SHA512 7bee9944db4397cdbef1cde6083970c5290d9936a9ec17bd0d6b21ba7186eeaa0bb43703ec0974f5121e6cd424817727e6be3aa5980438dee4b27d9a9ff99456
-DIST genpatches-6.1-16.extras.tar.xz 3804 BLAKE2B 72e1824ad6d561359eb287c8f67d94b961c6054a4bbc66af9571caced021d6d3cf64d5d06be4977c22b4c1061b37b5f174db4713040faac069dd9e7b29fa2a6f SHA512 ac2c48ed858be0a2c844646d343de6994f1f8179b0369a6be554f1587369679b651304f967346aa1bf2f462ae62b1c8c0fcb5bca32ec12e2f6100a694aafc6b2
+DIST genpatches-6.1-34.base.tar.xz 1760348 BLAKE2B 9a7672bf2f106e0df50997d746171f80059627f84104b1919098fc75e2e01b0b262ea06905a768d8359fc3df9190b874413724529fa7107265ceab61d0f19af7 SHA512 678c5591831a779f852fcea89c807d256f937e3e01ba84b3b167274a1bd5c69ab20fd31b1f759d83986520223677c0e2e31bb3dfe624339b16fc45845ee8188a
+DIST genpatches-6.1-34.extras.tar.xz 3808 BLAKE2B 9830d4850e5095ef0864df0aaa25a4549678fb76b22807abf61739b42b048455535aff7eaac16bad5d2cdb0cca65efd2e176a50f40a685250df0b75565fadc36 SHA512 13c8f7f596eeaa9b78be7aae7667a196e199fbb8d3cc045318dfdfe1ab340622fd0e958be09ed8608f9667231d6523685af1f03f4f2b52d78810885c0e9fe4a0
 DIST linux-6.1.tar.xz 134728520 BLAKE2B ae60257860b2bd1bd708d183f0443afc60ebbd2b3d535c45e44c2e541bd0928530a3b62de6385dd4e4726ebbedcc0a871d4f3ffb4105b9f1f6d8ed7467f5688e SHA512 6ed2a73c2699d0810e54753715635736fc370288ad5ce95c594f2379959b0e418665cd71bc512a0273fe226fe90074d8b10d14c209080a6466498417a4fdda68
-DIST linux-hardened-6.1.14-hardened1.patch 100241 BLAKE2B 445e29fdcff8794de36b413d322cb0a7ab7f1e1693227a3bffbf9ac3e22b9ab77367f6545e1bc05c130da48e1318d7c17d681ed5396356d53f2c83d0261c1787 SHA512 cd179237aab6d0668ed54468886f125fd420e1e6ffe384a17dc34491272aa9e62afe1da52aca82a1562d0c88001e0e32b36927a57fab193fa7bf0f77dc2f9c93
-EBUILD hardened-kernel-6.1.14.ebuild 3046 BLAKE2B d0e14f97f0f43386faa7a78eb3ce3a9905ff52470dae050a47358d849f9b4f43234665a405ba7b5deef6e679526687fdb4485b8fb7656be9f46d60f9fb1e76a5 SHA512 b5b30c60c60695fa23bb3a227c684ae608e22f8abdf85b60161fe7ae3550d21f1f8eec5ba4de14b3fbeb974cfd56cd32e504bc6a5f7b8ee4afe3aac5f1f71d39
+DIST linux-hardened-6.1.29-hardened1.patch 101151 BLAKE2B 812ff7f7791340fb110adf1b3ab9b51abc01be01f1ba185580d17fb4a5dd5d22baaf051c2fe7cfd9300d1fa9f1dbbb13f8dd0b2598178ae909a2ec0f9722e7cc SHA512 9a3352b19521718d31fa52439f7c829cb10a3dbfc687cd4a063c57f10c8205f09803c9ae21a6d292e1d27518890126b58e4d55d60fa7ae1ac536f33cdbd74ad1
+EBUILD hardened-kernel-6.1.29.ebuild 3046 BLAKE2B 2f26f27930cc1923ae12710c7e618c06f04da684b34bed90e62e77b2e2e4e9585704705052a9a55cd657a42e131e36827e13acc5ec7fed9707f89621e5bbf218 SHA512 b03a1ff99f3ce4d9801881fe3c939a6fb6983d966a9fc6e34a04cf421b271d51dc6ff1197487ff5f1c4b6f00ea6f96aa02446448d7a79b76a47841b554ecfd27
 MISC metadata.xml 345 BLAKE2B 4003222d76459210cbeba27d68bcef9b42f500dd3dafe53505dae42004c5224eeae395fb30d7582de614654d2fde19d118c8c31fbc35e5335c9150d93f42efc9 SHA512 994d288cd16858bad3177d383a279f0f549ddf40ef87c62683815540b331bd48d4afa4d0c6af947e409c58f8abb5e1da045bb98dc00a422ea724cdf0610d6619
diff --git a/sys-kernel/hardened-kernel/files/linux-6.1.amd64.config b/sys-kernel/hardened-kernel/files/linux-6.1.amd64.config
index 521385d..41b8d68 100644
--- a/sys-kernel/hardened-kernel/files/linux-6.1.amd64.config
+++ b/sys-kernel/hardened-kernel/files/linux-6.1.amd64.config
@@ -1,10 +1,10 @@
 #
 # Automatically generated file; DO NOT EDIT.
-# Linux/x86 6.1.10 Kernel Configuration
+# Linux/x86 6.1.29 Kernel Configuration
 #
-CONFIG_CC_VERSION_TEXT="gcc (Gentoo Hardened 11.3.1_p20221209 p3) 11.3.1 20221209"
+CONFIG_CC_VERSION_TEXT="gcc (Gentoo Hardened 12.2.1_p20230121-r1 p10) 12.2.1 20230121"
 CONFIG_CC_IS_GCC=y
-CONFIG_GCC_VERSION=110301
+CONFIG_GCC_VERSION=120201
 CONFIG_CLANG_VERSION=0
 CONFIG_AS_IS_GNU=y
 CONFIG_AS_VERSION=23900
@@ -188,7 +188,6 @@ CONFIG_ARCH_WANT_BATCHED_UNMAP_TLB_FLUSH=y
 CONFIG_CC_HAS_INT128=y
 CONFIG_CC_IMPLICIT_FALLTHROUGH="-Wimplicit-fallthrough=5"
 CONFIG_GCC11_NO_ARRAY_BOUNDS=y
-CONFIG_GCC12_NO_ARRAY_BOUNDS=y
 CONFIG_CC_NO_ARRAY_BOUNDS=y
 CONFIG_ARCH_SUPPORTS_INT128=y
 CONFIG_NUMA_BALANCING=y
@@ -1554,7 +1553,6 @@ CONFIG_DEFAULT_NET_SCH="pfifo_fast"
 #
 CONFIG_NET_CLS=y
 CONFIG_NET_CLS_BASIC=m
-CONFIG_NET_CLS_TCINDEX=m
 CONFIG_NET_CLS_ROUTE4=m
 CONFIG_NET_CLS_FW=m
 CONFIG_NET_CLS_U32=m
@@ -4039,6 +4037,7 @@ CONFIG_SND_HDA_CODEC_SI3054=m
 CONFIG_SND_HDA_GENERIC=m
 CONFIG_SND_HDA_POWER_SAVE_DEFAULT=60
 # CONFIG_SND_HDA_INTEL_HDMI_SILENT_STREAM is not set
+# CONFIG_SND_HDA_CTL_DEV_ID is not set
 # end of HD-Audio
 
 CONFIG_SND_HDA_CORE=m
@@ -4340,7 +4339,6 @@ CONFIG_SND_SOC_HDAC_HDA=m
 # CONFIG_SND_SOC_WM8974 is not set
 # CONFIG_SND_SOC_WM8978 is not set
 # CONFIG_SND_SOC_WM8985 is not set
-# CONFIG_SND_SOC_ZL38060 is not set
 # CONFIG_SND_SOC_MT6351 is not set
 # CONFIG_SND_SOC_MT6358 is not set
 # CONFIG_SND_SOC_MT6660 is not set
@@ -5780,16 +5778,16 @@ CONFIG_LSM="selinux,safesetid,yama,lockdown,landlock,bpf"
 #
 # Kernel hardening options
 #
-CONFIG_GCC_PLUGIN_STRUCTLEAK=y
 
 #
 # Memory initialization
 #
+CONFIG_CC_HAS_AUTO_VAR_INIT_PATTERN=y
+CONFIG_CC_HAS_AUTO_VAR_INIT_ZERO_BARE=y
+CONFIG_CC_HAS_AUTO_VAR_INIT_ZERO=y
 # CONFIG_INIT_STACK_NONE is not set
-# CONFIG_GCC_PLUGIN_STRUCTLEAK_USER is not set
-# CONFIG_GCC_PLUGIN_STRUCTLEAK_BYREF is not set
-CONFIG_GCC_PLUGIN_STRUCTLEAK_BYREF_ALL=y
-# CONFIG_GCC_PLUGIN_STRUCTLEAK_VERBOSE is not set
+# CONFIG_INIT_STACK_ALL_PATTERN is not set
+CONFIG_INIT_STACK_ALL_ZERO=y
 CONFIG_GCC_PLUGIN_STACKLEAK=y
 CONFIG_STACKLEAK_TRACK_MIN_SIZE=100
 # CONFIG_STACKLEAK_METRICS is not set
diff --git a/sys-kernel/hardened-kernel/hardened-kernel-6.1.14.ebuild b/sys-kernel/hardened-kernel/hardened-kernel-6.1.29.ebuild
similarity index 98%
rename from sys-kernel/hardened-kernel/hardened-kernel-6.1.14.ebuild
rename to sys-kernel/hardened-kernel/hardened-kernel-6.1.29.ebuild
index 5a2449a..1759288 100644
--- a/sys-kernel/hardened-kernel/hardened-kernel-6.1.14.ebuild
+++ b/sys-kernel/hardened-kernel/hardened-kernel-6.1.29.ebuild
@@ -6,7 +6,7 @@ EAPI=8
 inherit kernel-build
 
 MY_P=linux-${PV%.*}
-GENPATCHES_P=genpatches-${PV%.*}-$((${PV##*.}+2))
+GENPATCHES_P=genpatches-${PV%.*}-$((${PV##*.}+5))
 HARDENED_PATCH_VER="${PV}-hardened1"
 GENPATCHES_EXCLUDE="1500_XATTR_USER_PREFIX.patch
 	1510_fs-enable-link-security-restrictions-by-default.patch