blob: c390263d1b15ea6b9e070ac3013d5a413d8a60cd (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
|
# Maintainer: Chris Billington <chrisjbillington@gmail.com>
_pkgname=linux-hardened
_pkgver=6.11.11.hardened1
_kernver=6.11.11
_hardenedver=hardened1
_pkgrel=1
pkgbase="${_pkgname}-versioned-bin"
_KERNNAME=6.11.11-hardened1-1-hardened
_versioned_pkgname="linux${_pkgver}-${_pkgrel}-hardened"
pkgname=("${_pkgname}-versioned-bin"
"${_pkgname}-versioned-headers-bin"
"${_pkgname}-versioned-docs-bin"
"${_versioned_pkgname}-bin"
"${_versioned_pkgname}-headers-bin"
"${_versioned_pkgname}-docs-bin")
pkgver=${_pkgver}
pkgrel=${_pkgrel}
pkgdesc="The Security-Hardened Linux kernel and modules | repackaged with a unique package name for each version"
url="https://github.com/anthraxx/linux-hardened"
arch=(x86_64)
license=(GPL2)
options=('!strip')
_kernpkg=linux-hardened-6.11.11.hardened1-1-x86_64.pkg.tar.zst
_headerspkg=linux-hardened-headers-6.11.11.hardened1-1-x86_64.pkg.tar.zst
_docspkg=linux-hardened-docs-6.11.11.hardened1-1-x86_64.pkg.tar.zst
source=("https://archive.archlinux.org/packages/.all/${_kernpkg}"
"https://archive.archlinux.org/packages/.all/${_headerspkg}"
"https://archive.archlinux.org/packages/.all/${_docspkg}")
noextract=("${source[@]##*/}")
sha256sums=('984e02560b34b0a8c86c5962c8c3ce8ea47830de680cc63f14994d1e9ae8753c'
'282b0cd993f18c06ebf9d9c7b94c4449d96412846d53e82740481e559f829bd4'
'd4b3cc32e62d2a1802be24715ec4a7d1655566959a3b7b9fa9c2e398ca980066')
package_linux-hardened-versioned-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-bin"
depends=("${_versioned_pkgname}-bin")
optdepends=('grub-hook: to run grub-mkconfig when kernels are added/removed')
}
package_linux-hardened-versioned-headers-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-headers-bin"
depends=("${_versioned_pkgname}-headers-bin")
}
package_linux-hardened-versioned-docs-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-docs-bin"
depends=("${_versioned_pkgname}-docs-bin")
}
package_linux6.11.11.hardened1-1-hardened-bin() {
pkgdesc="The Security-Hardened Linux kernel and modules, version ${_KERNNAME}"
depends=(coreutils
initramfs
kmod)
conflicts=("${_pkgname}")
optdepends=('linux-firmware: firmware images needed for some devices'
'usbctl: deny_new_usb control'
'wireless-regdb: to set the correct wireless channels of your country')
provides=(KSMBD-MODULE
VIRTUALBOX-GUEST-MODULES
WIREGUARD-MODULE)
tar -xf "${_kernpkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
sed -ic "s/${_pkgname}/${_KERNNAME}/" "${pkgdir}/usr/lib/modules/${_KERNNAME}/pkgbase"
}
package_linux6.11.11.hardened1-1-hardened-headers-bin() {
pkgdesc="Headers and scripts for building modules for the Security-Hardened Linux kernel ${_KERNNAME}"
depends=(pahole)
conflicts=("${_pkgname}-headers")
tar -xf "${_headerspkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
mv "${pkgdir}/usr/src/"{"${_pkgname}","${_versioned_pkgname}"}
}
package_linux6.11.11.hardened1-1-hardened-docs-bin() {
pkgdesc="Documentation for the Security-Hardened Linux kernel ${_KERNNAME}"
conflicts=("${_pkgname}-docs")
tar -xf "${_docspkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
mv "${pkgdir}/usr/share/doc/"{"${_pkgname}","${_versioned_pkgname}"}
}
|