blob: 089986fc589e0a6bca3cb2438786d42c0a7e330f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
|
# Maintainer: Chris Billington <chrisjbillington@gmail.com>
_pkgname=linux-hardened
_pkgver=6.13.7.hardened1
_kernver=6.13.7
_hardenedver=hardened1
_pkgrel=1
pkgbase="${_pkgname}-versioned-bin"
_KERNNAME=6.13.7-hardened1-1-hardened
_versioned_pkgname="linux${_pkgver}-${_pkgrel}-hardened"
pkgname=("${_pkgname}-versioned-bin"
"${_pkgname}-versioned-headers-bin"
"${_pkgname}-versioned-docs-bin"
"${_versioned_pkgname}-bin"
"${_versioned_pkgname}-headers-bin"
"${_versioned_pkgname}-docs-bin")
pkgver=${_pkgver}
pkgrel=${_pkgrel}
pkgdesc="The Security-Hardened Linux kernel and modules | repackaged with a unique package name for each version"
url="https://github.com/anthraxx/linux-hardened"
arch=(x86_64)
license=(GPL2)
options=('!strip')
_kernpkg=linux-hardened-6.13.7.hardened1-1-x86_64.pkg.tar.zst
_headerspkg=linux-hardened-headers-6.13.7.hardened1-1-x86_64.pkg.tar.zst
_docspkg=linux-hardened-docs-6.13.7.hardened1-1-x86_64.pkg.tar.zst
source=("https://archive.archlinux.org/packages/.all/${_kernpkg}"
"https://archive.archlinux.org/packages/.all/${_headerspkg}"
"https://archive.archlinux.org/packages/.all/${_docspkg}")
noextract=("${source[@]##*/}")
sha256sums=('3dbcb8364a1882bb63561991d2e6ce60fac1732cc64b86f7bb9c57c75e3593fa'
'e4476e24329b22536df11322af9631843a3c6e39503f5b9489c0a4ca425a14fe'
'46df94bd7219b61a78476d91ba06a6b0e7c259221043bee4b9bbb18a68df2252')
package_linux-hardened-versioned-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-bin"
depends=("${_versioned_pkgname}-bin")
optdepends=('grub-hook: to run grub-mkconfig when kernels are added/removed')
}
package_linux-hardened-versioned-headers-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-headers-bin"
depends=("${_versioned_pkgname}-headers-bin")
}
package_linux-hardened-versioned-docs-bin() {
pkgdesc="Metapackage depending on ${_versioned_pkgname}-docs-bin"
depends=("${_versioned_pkgname}-docs-bin")
}
package_linux6.13.7.hardened1-1-hardened-bin() {
pkgdesc="The Security-Hardened Linux kernel and modules, version ${_KERNNAME}"
depends=(coreutils
initramfs
kmod)
conflicts=("${_pkgname}")
optdepends=('linux-firmware: firmware images needed for some devices'
'scx-scheds: to use sched-ext schedulers'
'usbctl: deny_new_usb control'
'wireless-regdb: to set the correct wireless channels of your country')
provides=(KSMBD-MODULE
VIRTUALBOX-GUEST-MODULES
WIREGUARD-MODULE)
tar -xf "${_kernpkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
sed -ic "s/${_pkgname}/${_KERNNAME}/" "${pkgdir}/usr/lib/modules/${_KERNNAME}/pkgbase"
}
package_linux6.13.7.hardened1-1-hardened-headers-bin() {
pkgdesc="Headers and scripts for building modules for the Security-Hardened Linux kernel ${_KERNNAME}"
depends=(pahole)
conflicts=("${_pkgname}-headers")
tar -xf "${_headerspkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
mv "${pkgdir}/usr/src/"{"${_pkgname}","${_versioned_pkgname}"}
}
package_linux6.13.7.hardened1-1-hardened-docs-bin() {
pkgdesc="Documentation for the Security-Hardened Linux kernel ${_KERNNAME}"
conflicts=("${_pkgname}-docs")
tar -xf "${_docspkg}" -C "${pkgdir}"
rm "${pkgdir}"/{.MTREE,.BUILDINFO,.PKGINFO}
mv "${pkgdir}/usr/share/doc/"{"${_pkgname}","${_versioned_pkgname}"}
}
|