diff options
| -rw-r--r-- | .SRCINFO | 30 | ||||
| -rw-r--r-- | .gitignore | 9 | ||||
| -rw-r--r-- | PKGBUILD | 76 | ||||
| -rw-r--r-- | appgatedriver.service | 27 | ||||
| -rw-r--r-- | appgatedriver.service.patch | 13 |
5 files changed, 74 insertions, 81 deletions
@@ -1,27 +1,29 @@ pkgbase = appgate-sdp-headless - pkgdesc = Software Defined Perimeter - headless client. Does not support 2FA. - pkgver = 4.2.2 + pkgdesc = Appgate SDP (Software Defined Perimeter) headless client (It does not support 2FA.) + pkgver = 5.4.2 pkgrel = 1 - url = https://www.cyxtera.com/essential-defense/appgate-sdp/support + url = https://www.appgate.com/support/software-defined-perimeter-support arch = x86_64 license = custom - depends = glib2>=2.31.8 - depends = iptables - depends = libsecret>=0.18 - depends = python-dbus - depends = zlib>=1.1.4 + license = custom:commercial depends = dnsmasq - optdepends = bash-completion>=1.18 + depends = libsecret + depends = libxss + depends = nodejs + depends = nss + depends = python-dbus + depends = python-distro + optdepends = bash-completion: allows bash completion for scripts provides = appgate-sdp conflicts = appgate-sdp + options = staticlibs options = !strip options = !emptydirs backup = etc/appgate.conf backup = etc/dbus-1/system.d/appgate.conf - source = https://sdpdownloads.cyxtera.com/AppGate-SDP-4.2/clients/appgate-sdp-headless_4.2.2_amd64.deb - source = appgatedriver.service - md5sums = e33a92ae63f795667532cbe707b30a00 - md5sums = b5946b4a978c39467714f58e04726491 + source = https://bin.appgate-sdp.com/5.4/client/appgate-sdp-headless_5.4.2_amd64.deb + source = appgatedriver.service.patch + sha256sums = a507abc3f3be149b9dc34a0db774b92b005c1713bb43704087e1693b410e96e0 + sha256sums = 0789aa07d6a7af44187e407696d930e78c50370c19b8399722ebecb0655ffcdb pkgname = appgate-sdp-headless - diff --git a/.gitignore b/.gitignore index 94bf332abe8d..980cf4028393 100644 --- a/.gitignore +++ b/.gitignore @@ -1,4 +1,9 @@ -*.pkg.tar.xz -*.deb +appgate-sdp-headless-*.pkg.tar.zst +appgate-sdp-headless-*.pkg.tar.xz +appgate-sdp-headless*.deb +appgate-sdp-headless*.rpm +appgate-sdp-headless_*/ +appgate-sdp-headless-*.log +PKGBUILD-namcap.log pkg/ src/ @@ -1,49 +1,49 @@ -# Maintainer: Pawel Mosakowski <pawel at mosakowski dot net> +# Maintainer: Fredy GarcĂa <frealgagu at gmail dot com> +# Contributor: Pawel Mosakowski <pawel at mosakowski dot net> + pkgname=appgate-sdp-headless -conflicts=('appgate-sdp') -pkgver=4.2.2 -_download_pkgver=4.2 +pkgver=5.4.2 pkgrel=1 -pkgdesc="Software Defined Perimeter - headless client. Does not support 2FA." -arch=('x86_64') -url="https://www.cyxtera.com/essential-defense/appgate-sdp/support" -license=('custom') - -# dependencies calculated by debtap -depends=('glib2>=2.31.8' 'iptables' 'libsecret>=0.18' 'python-dbus' 'zlib>=1.1.4' 'dnsmasq') -optdepends=('bash-completion>=1.18') -provides=('appgate-sdp') +pkgdesc="Appgate SDP (Software Defined Perimeter) headless client (It does not support 2FA.)" +arch=("x86_64") +url="https://www.${pkgname%%-*}.com/support/software-defined-perimeter-support" +license=("custom" "custom:commercial") +depends=("dnsmasq" "libsecret" "libxss" "nodejs" "nss" "python-dbus" "python-distro") +optdepends=("bash-completion: allows bash completion for scripts") +provides=("${pkgname%-*}") +conflicts=("${pkgname%-*}") +backup=("etc/appgate.conf" "etc/dbus-1/system.d/appgate.conf") +options=(staticlibs !strip !emptydirs) +source=( + "https://bin.${pkgname%-*}.com/${pkgver%.*}/client/${pkgname}_${pkgver}_amd64.deb" + "${pkgname%%-*}driver.service.patch" +) +sha256sums=( + "a507abc3f3be149b9dc34a0db774b92b005c1713bb43704087e1693b410e96e0" + "0789aa07d6a7af44187e407696d930e78c50370c19b8399722ebecb0655ffcdb" +) -backup=('etc/appgate.conf' 'etc/dbus-1/system.d/appgate.conf') -options=('!strip' '!emptydirs') +prepare() { + mkdir "${srcdir}/${pkgname}" + cd "${srcdir}/${pkgname}" -# install=${pkgname}.install + bsdtar -xf "${srcdir}/data.tar.xz" -C . -source=("https://sdpdownloads.cyxtera.com/AppGate-SDP-${_download_pkgver}/clients/${pkgname}_${pkgver}_amd64.deb" - "appgatedriver.service") + patch -Np1 -i "${srcdir}/${pkgname%%-*}driver.service.patch" -prepare() { - # Extract package data - tar -xf data.tar.xz -C "${srcdir}" + # Remove unnecessary .deb related directory + rm -rf "${srcdir}/${pkgname}/etc/init.d" } -package(){ - - # Fix directories structure differencies - cp -dpr "${srcdir}"/{etc,lib,opt,usr} "${pkgdir}" - mv -v "$pkgdir/lib/systemd/system" "$pkgdir/usr/lib/systemd/" - mv -v "$pkgdir/usr/sbin" "$pkgdir/usr/bin" - rm -vrf "$pkgdir/lib" +package() { + # Install application files + cp -dpr "${srcdir}/${pkgname}/"{etc,opt,usr} "${pkgdir}" - mv -v "${pkgdir}/usr/share/doc/appgate-headless" "${pkgdir}/usr/share/doc/appgate-sdp-headless" - # copy the service file - cp -v "${srcdir}/appgatedriver.service" "${pkgdir}/usr/lib/systemd/system/appgatedriver.service" + # Install service files + install -dm755 "${pkgdir}/usr/lib/systemd/system" + install -Dm644 "${srcdir}/${pkgname}/lib/systemd/system/"* "${pkgdir}/usr/lib/systemd/system/" + mv "${pkgdir}/usr/sbin" "${pkgdir}/usr/bin" - # install licenses - LICENSE_DIR="${pkgdir}/usr/share/licenses/${pkgname}" - mkdir -vp "$LICENSE_DIR" - cp -v "${pkgdir}/usr/share/doc/appgate-sdp-headless/copyright" "$LICENSE_DIR" + # Install license files + install -Dm644 "${srcdir}/${pkgname}/usr/share/doc/${pkgname/-sdp/}/copyright" "${pkgdir}/usr/share/licenses/${pkgname}/copyright" } - -md5sums=('e33a92ae63f795667532cbe707b30a00' - 'b5946b4a978c39467714f58e04726491') diff --git a/appgatedriver.service b/appgatedriver.service deleted file mode 100644 index 19ecb70e194e..000000000000 --- a/appgatedriver.service +++ /dev/null @@ -1,27 +0,0 @@ -[Unit] -Description=AppGate driver service - -[Service] -# Remove traces of appgate-resolver, if it wasn't terminated properly -ExecStartPre=/bin/sh -c "test -e /etc/resolv.appgate && (chattr -i /etc/resolv.conf || :; mv /etc/resolv.appgate /etc/resolv.conf || :; mv /etc/systemd/resolved.appgate /etc/systemd/resolved.conf || :; cat /etc/resolv.appgatecopy > /etc/resolv.conf) ||:" -ExecStart="/opt/appgate/tun-service" -Type=forking -Restart=always -ProtectHome=true -ProtectKernelTunables=true -ProtectControlGroups=true -PrivateTmp=true -CapabilityBoundingSet=~CAP_SYS_ADMIN -CapabilityBoundingSet=~CAP_WAKE_ALARM -CapabilityBoundingSet=~CAP_SYSLOG -CapabilityBoundingSet=~CAP_SYS_TTY_CONFIG -CapabilityBoundingSet=~CAP_SYS_TIME -CapabilityBoundingSet=~CAP_SYS_RESOURCE -CapabilityBoundingSet=~CAP_SYS_PTRACE -CapabilityBoundingSet=~CAP_SYS_PACCT -CapabilityBoundingSet=~CAP_SYS_CHROOT -CapabilityBoundingSet=~CAP_SYS_BOOT -InaccessiblePaths=-/mnt -/srv -/boot -/media - -[Install] -WantedBy=multi-user.target diff --git a/appgatedriver.service.patch b/appgatedriver.service.patch new file mode 100644 index 000000000000..c2f58bf0bd72 --- /dev/null +++ b/appgatedriver.service.patch @@ -0,0 +1,13 @@ +diff --git a/lib/systemd/system/appgatedriver.service b/lib/systemd/system/appgatedriver.service +index 5e98ca8..1f8cb55 100644 +--- a/lib/systemd/system/appgatedriver.service ++++ b/lib/systemd/system/appgatedriver.service +@@ -21,7 +21,7 @@ CapabilityBoundingSet=~CAP_SYS_PTRACE + CapabilityBoundingSet=~CAP_SYS_PACCT + CapabilityBoundingSet=~CAP_SYS_CHROOT + CapabilityBoundingSet=~CAP_SYS_BOOT +-InaccessiblePaths=/mnt /srv /boot /media ++InaccessiblePaths=-/mnt -/srv -/boot -/media + + [Install] + WantedBy=multi-user.target |