commit: 9d250d23d6c2ff3286a8cdbfbe89f2c040b4a20c
Author: Sam James <sam <AT> gentoo <DOT> org>
AuthorDate: Sun Sep 22 04:38:47 2024 +0000
Commit: Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Sun Sep 22 04:40:13 2024 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9d250d23
app-misc/pax-utils: add 1.3.8
Aliaksei Urbanski (1):
Fix fuzz-dumpelf test
Daniel Verkamp (1):
lddtree: use readlink -f for absolute links
David Riley (1):
lddtree: Add --wrapper-preload
Frederic Cambus (2):
lddtree: allow lddtree.sh to find Xenocara libraries on OpenBSD.
README: fix typo: s/peforming/performing.
George Burgess IV (1):
lddtree: add LD_ARGV0_REL
Mathias Krause (4):
seccomp: make socket() fail with -ENOSYS
tests: add basic pspax test
pspax: fix libcap memory leaks
meson: avoid using replace() to not unnecessarily bump meson >= 0.58.0
Mike Frysinger (45):
Revert "paxinc: include <alloca.h> for alloca"
lddtree: add docstring for all classes
pylintrc: remove old entries
github: update to checkout@v3
lddtree: use f-string in warn message
lddtree: fix argcomplete typing
elf.h: pull from latest glibc
update copyright headers
dumpelf: use explicit 64-bit to display off_t
github: disable fuzzing on macOS
github: update to checkout@v4
lddtree: use older Python typing style
lddtree: disable pyelftools pylint import errors
lddtree: disable mypy import errors
lddtree: add some more typing info for mypy
github: add python checkers
lddtree: raise min version to Python 3.8
pyproject.toml: add black & isort & mypy settings
pylintrc: merge into pyproject.toml
requirements: pin(ish) Python deps that we use to check things
drop old __BOUNDS_CHECKING_ON support
fix various typos found w/codespell
github: add codespell checker
build: use standard config.h naming
build: use standard HAVE_xxx define style
pspax: rework & document get_proc_name
pspax: replace proc_fopen with fopenat_r
pspax: fix buffer limiting in cmdline reading
pspax: fix error handling when reading attr or ipaddr fail
pspax: switch from fgets to getline
unify usage() output across all the tools
ar: handle invalid ascii numbers better
ar: handle invalid extended filename offsets
ar: switch from alloca to malloc
scanelf: fix hashtable overflow checks
README: update macOS name
paxelf: reject ELFs with incomplete Ehdr structures
dumpelf: free elf after fuzzing it to avoid leaking
sanitizer: fix feature tests under clang
dumpelf: check dyn pointer before DT_NULL check too
dumpelf: improve note memory check
dumpelf: limit note name display
fuzz-ar: fuzzer for the archive parsing API
fuzz-dumpelf: fix stats argument
fuzzer: fix unused setting on argc & argv
Mike Gilbert (1):
make-seccomp-filters.sh: split cflags/ldflags for libseccomp
Sam James (10):
Make headers standalone (missing includes, prep for clang-tidy)
*: IWYU fixes
*: IWYU fixes deux
.github: add Alpine CI
Undo IWYU fixes
paxinc: include <alloca.h> for alloca
porting.h: include <stddef.h> for size_t, sort includes
ci: make tests verbose
meson.build: prepare for pax-utils-1.3.8
CI: update muon URL
Takuto Ikuta (1):
lddtree: keep relativeness of invoked program in elf wrapper
Zach van Rijn (1):
paxelf: use correct format string
Bug: https://bugs.gentoo.org/890028
Bug: https://bugs.gentoo.org/890577
Bug: https://bugs.gentoo.org/890579
Bug: https://bugs.gentoo.org/922906
Signed-off-by: Sam James <sam <AT> gentoo.org>
app-misc/pax-utils/Manifest | 1 +
app-misc/pax-utils/pax-utils-1.3.8.ebuild | 77 +++++++++++++++++++++++++++++++
2 files changed, 78 insertions(+)
diff --git a/app-misc/pax-utils/Manifest b/app-misc/pax-utils/Manifest
index 4a045ee193d3..728eb78cac4b 100644
--- a/app-misc/pax-utils/Manifest
+++ b/app-misc/pax-utils/Manifest
@@ -1 +1,2 @@
DIST pax-utils-1.3.7.tar.xz 113740 BLAKE2B
d801df9c426f318c871655f238fe27b53e656c2789ef8508019997c98bbc540987b611642d87e76ae9f76a95f6cce1acd0b10e3491a146d1e3b3f727a6f96bdc
SHA512
f1b87a564573da838a02c4cc10e0d5f9754c3b004ecb172a6290b48a8179b30695ae556942457dfac3caf07b91dd56eb1d801475c35e9708e4d671aa507f9576
+DIST pax-utils-1.3.8.tar.xz 123556 BLAKE2B
9e658334f37bfee90d4d168cdb81bc3b4012c38b569c22c3b01688408e90f4727043636ff8908e6c049fce7be5476ba86773f07cb192e3a34721c1469f69b48d
SHA512
0dde95f86802729d80b7b38af84dec636e973f6abc70600633edcb05d3d5f95c1b2861300ce478dd7f798c7a1e5eccb1011c06c53adba38e11a996b69d463656
diff --git a/app-misc/pax-utils/pax-utils-1.3.8.ebuild
b/app-misc/pax-utils/pax-utils-1.3.8.ebuild
new file mode 100644
index 000000000000..55af02c264b3
--- /dev/null
+++ b/app-misc/pax-utils/pax-utils-1.3.8.ebuild
@@ -0,0 +1,77 @@
+# Copyright 2022-2024 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=8
+
+# Note: if bumping pax-utils because of syscall changes in glibc, please
+# revbump glibc and update the dependency in its ebuild for the affected
+# versions.
+PYTHON_COMPAT=( python3_{10..12} )
+
+inherit meson python-single-r1
+
+DESCRIPTION="ELF utils that can check files for security relevant properties"
+HOMEPAGE="https://wiki.gentoo.org/wiki/Hardened/PaX_Utilities";
+
+if [[ ${PV} == 9999 ]]; then
+ EGIT_REPO_URI="https://anongit.gentoo.org/git/proj/pax-utils.git";
+ inherit git-r3
+else
+ SRC_URI="
+
https://dev.gentoo.org/~sam/distfiles/${CATEGORY}/${PN}/${P}.tar.xz
+ https://dev.gentoo.org/~vapier/dist/${P}.tar.xz
+ "
+ KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~loong ~m68k ~mips ~ppc
~ppc64 ~riscv ~s390 ~sparc ~x86 ~amd64-linux ~x86-linux ~arm64-macos ~ppc-macos
~x64-macos ~x64-solaris"
+fi
+
+LICENSE="GPL-2"
+SLOT="0"
+IUSE="caps man python seccomp test"
+REQUIRED_USE="
+ python? ( ${PYTHON_REQUIRED_USE} )
+ test? ( python )
+"
+RESTRICT="!test? ( test )"
+
+MY_PYTHON_DEPS="
+ ${PYTHON_DEPS}
+ $(python_gen_cond_dep '
+ dev-python/pyelftools[${PYTHON_USEDEP}]
+ ')
+"
+RDEPEND="
+ caps? ( >=sys-libs/libcap-2.24 )
+ python? ( ${MY_PYTHON_DEPS} )
+"
+DEPEND="${RDEPEND}"
+BDEPEND="
+ caps? ( virtual/pkgconfig )
+ man? ( app-text/xmlto )
+ python? ( ${MY_PYTHON_DEPS} )
+"
+
+pkg_setup() {
+ if use test || use python; then
+ python-single-r1_pkg_setup
+ fi
+}
+
+src_configure() {
+ local emesonargs=(
+ "-Dlddtree_implementation=$(usex python python sh)"
+ $(meson_feature caps use_libcap)
+ $(meson_feature man build_manpages)
+ $(meson_use seccomp use_seccomp)
+ $(meson_use test tests)
+
+ # fuzzing is currently broken
+ -Duse_fuzzing=false
+ )
+ meson_src_configure
+}
+
+src_install() {
+ meson_src_install
+
+ use python && python_fix_shebang "${ED}"/usr/bin/lddtree
+}
