diff options
Diffstat (limited to 'PKGBUILD')
-rw-r--r-- | PKGBUILD | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/PKGBUILD b/PKGBUILD new file mode 100644 index 000000000000..6b6223eb92ec --- /dev/null +++ b/PKGBUILD @@ -0,0 +1,43 @@ +# Maintainer: Luke R. <g4jc@openmailbox.org> GPG: rsa4096/3EAE8697 + +pkgname=samhain +pkgver=4.1.2 +pkgrel=1 +pkgdesc="file integrity / intrusion detection system" +arch=(i686 x86_64) +url="http://www.la-samhna.de/" +license=('GPL') +makedepends=('gcc' 'openssl' 'procps-ng') +source=("http://www.la-samhna.de/samhain/${pkgname}-current.tar.gz" +'PKGBUILD.sig' +'PKGBUILD') +validpgpkeys=('CB6E213A349B8DF9E96B622AC3F4FFCF3EAE8697' # PKGBUILD Maintainer's key +'EF6CEF54701A0AFDB86AF4C31AAD26C80F571F6C') # Rainer Wichmann +sha512sums=('0dcb89b7a11b0aaef7b306360857c64b505651b526f7c3030ac7186f1c334c745df7b544e16fa9edac260156b1fa32d44e2276cf2476807d0ea0c011d05c9e4f' + 'SKIP' + 'SKIP') + +pkgver() { +tar -ztvf samhain-current.tar.gz | head -n1 | awk '{print $6}' | sed "s/samhain-//" | sed "s/.tar.gz//" # get latest version number +} + +build() { + gpg --verify PKGBUILD.sig PKGBUILD + echo "Note: If the GPG verification fails, import the PKGBUILD maintainer's GPG key. See: https://wiki.parabola.nu/GnuPG#Import_key" + whirlpoolsum=('09be99572c31d76dc58ccb5963e615ea87faf689858cd4372883df5905d1fff792807641adb85c9719269577ae81e679936d0488a27cdb055724c6ed6eaa3d5b') + [[ "$(openssl dgst -r -whirlpool samhain-current.tar.gz | awk '{print $1}')" = ${whirlpoolsum} ]] && echo "Whirlpool checksum passed." || { echo "Whirlpool checksum failed!!" ; exit 1; } # This is an added security layer. If SHA512 for some unlikely reason fails, whirlpool will check and abort if it too fails to match. + gpg --verify samhain-${pkgver}.tar.gz.asc samhain-${pkgver}.tar.gz + echo "Note: If the GPG verification fails, import the Samhain GPG key: http://www.la-samhna.de/samhain/s_rkey.html" + tar -zxvf "${srcdir}/${pkgname}-current.tar.gz" -C "${srcdir}"/. + cd "${srcdir}" + tar -zxvf ${pkgname}-${pkgver}.tar.gz + cd "${pkgname}-${pkgver}" + ./configure --prefix=/usr --localstatedir=/var --sysconfdir=/etc --with-trusted=0 --sbindir=/usr/bin + # see samhain documentation, lots of other options available. e.g. use --enable-network=server to run in server mode. +} + +package() { + cd "${pkgname}-${pkgver}" + make || return 1 + make DESTDIR="$pkgdir/" install +} |