blob: e47735e74bb0b7897143c7c51cacd8a401521591 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
|
# Maintainer: Chris Billington <chrisjbillington@gmail.com>
_pkgname=linux-hardened
_pkgver=6.11.9.hardened1
_kernver=6.11.9
_hardenedver=hardened1
_pkgrel=1
pkgbase="${_pkgname}-versioned-bin"
_KERNNAME=6.11.9-hardened1-1-hardened
_versioned_pkgname="linux${_pkgver}-${_pkgrel}-hardened"
pkgname=("${_pkgname}-versioned-bin"
"${_pkgname}-versioned-headers-bin"
"${_pkgname}-versioned-docs-bin"
"${_versioned_pkgname}-bin"
"${_versioned_pkgname}-headers-bin"
"${_versioned_pkgname}-docs-bin")
pkgver=${_pkgver}
pkgrel=${_pkgrel}
pkgdesc="The Security-Hardened Linux kernel and modules | repackaged with a unique package name for each version"
url="https://github.com/anthraxx/linux-hardened"
arch=(x86_64)
license=(GPL2)
options=('!strip')
_kernpkg=linux-hardened-6.11.9.hardened1-1-x86_64.pkg.tar.zst
_headerspkg=linux-hardened-headers-6.11.9.hardened1-1-x86_64.pkg.tar.zst
_docspkg=linux-hardened-docs-6.11.9.hardened1-1-x86_64.pkg.tar.zst
source=("https://archive.archlinux.org/packages/.all/${_kernpkg}"
"https://archive.archlinux.org/packages/.all/${_headerspkg}"
"https://archive.archlinux.org/packages/.all/${_docspkg}")
noextract=("${source[@]##*/}")
sha256sums=('1f6bfc61ead214ddd694ea65261d1382896dba980fc91c19f392a75d5ab8c72c'
'397686ded7b9b0b4a340bd85fa4dca2e3a362123010fc66528f2f9e66e1b27cb'
'20ec3985068903d62abfd3c898b19a3494bc297341360072b2398bf1dad6aa50')
package_linux-hardened-versioned-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-bin"
depends=("${_versioned_pkgname}-bin")
optdepends=('grub-hook: to run grub-mkconfig when kernels are added/removed')
}
package_linux-hardened-versioned-headers-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-headers-bin"
depends=("${_versioned_pkgname}-headers-bin")
}
package_linux-hardened-versioned-docs-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-docs-bin"
depends=("${_versioned_pkgname}-docs-bin")
}
package_linux6.11.9.hardened1-1-hardened-bin() {
pkgdesc="The Security-Hardened Linux kernel and modules, version ${_KERNNAME}"
depends=(coreutils
initramfs
kmod)
conflicts=("${_pkgname}")
optdepends=('linux-firmware: firmware images needed for some devices'
'usbctl: deny_new_usb control'
'wireless-regdb: to set the correct wireless channels of your country')
provides=(KSMBD-MODULE
VIRTUALBOX-GUEST-MODULES
WIREGUARD-MODULE)
tar -xf "${_kernpkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
sed -ic "s/${_pkgname}/${_KERNNAME}/" "${pkgdir}/usr/lib/modules/${_KERNNAME}/pkgbase"
}
package_linux6.11.9.hardened1-1-hardened-headers-bin() {
pkgdesc="Headers and scripts for building modules for the Security-Hardened Linux kernel ${_KERNNAME}"
depends=(pahole)
conflicts=("${_pkgname}-headers")
tar -xf "${_headerspkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
mv "${pkgdir}/usr/src/"{"${_pkgname}","${_versioned_pkgname}"}
}
package_linux6.11.9.hardened1-1-hardened-docs-bin() {
pkgdesc="Documentation for the Security-Hardened Linux kernel ${_KERNNAME}"
conflicts=("${_pkgname}-docs")
tar -xf "${_docspkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
mv "${pkgdir}/usr/share/doc/"{"${_pkgname}","${_versioned_pkgname}"}
}
|