diff options
| author |   Armando Di Cianno <fafhrd@gentoo.org> | 2005-06-24 04:43:11 +0000 |
|---|---|---|
| committer | Armando Di Cianno <fafhrd@gentoo.org> | 2005-06-24 04:43:11 +0000 |
| commit | 224338565e71d7be674eeee869377edd899ea822 (patch) | |
| tree | 86e15aac68caf9d685c63f01851afff431f54840 /sys-apps/realtime-lsm | |
| parent | Removing obsolete ebuilds (diff) | |
| download | gentoo-2-224338565e71d7be674eeee869377edd899ea822.tar.gz gentoo-2-224338565e71d7be674eeee869377edd899ea822.tar.bz2 gentoo-2-224338565e71d7be674eeee869377edd899ea822.zip | |
Yes, my additions to -r2 were indeed security concerns; a workaround for jack has been discovered (use jackd instead of jackstart); removing this
(Portage version: 2.0.51.22-r1)
Diffstat (limited to 'sys-apps/realtime-lsm')
4 files changed, 6 insertions, 103 deletions
diff --git a/sys-apps/realtime-lsm/ChangeLog b/sys-apps/realtime-lsm/ChangeLog index 79aea1582785..68073af19c49 100644 --- a/sys-apps/realtime-lsm/ChangeLog +++ b/sys-apps/realtime-lsm/ChangeLog @@ -1,6 +1,11 @@ # ChangeLog for sys-apps/realtime-lsm # Copyright 1999-2005 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sys-apps/realtime-lsm/ChangeLog,v 1.8 2005/06/24 04:26:41 fafhrd Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-apps/realtime-lsm/ChangeLog,v 1.9 2005/06/24 04:43:11 fafhrd Exp $ + + 24 Jun 2005; Armando Di Cianno <fafhrd@gentoo.org> + -files/realtime-lsm-0.8.5-allcaps.patch, -realtime-lsm-0.8.5-r2.ebuild: + Yes, my additions to -r2 were indeed security concerns; a workaround for + jack has been discovered (use jackd instead of jackstart); removing this *realtime-lsm-0.8.5-r2 (24 Jun 2005) diff --git a/sys-apps/realtime-lsm/files/digest-realtime-lsm-0.8.5-r2 b/sys-apps/realtime-lsm/files/digest-realtime-lsm-0.8.5-r2 deleted file mode 100644 index 28e1ced74d3c..000000000000 --- a/sys-apps/realtime-lsm/files/digest-realtime-lsm-0.8.5-r2 +++ /dev/null @@ -1 +0,0 @@ -MD5 89b05985a2d1529c92d74df3dfb357e5 realtime-lsm-0.8.5.tar.gz 11403 diff --git a/sys-apps/realtime-lsm/files/realtime-lsm-0.8.5-allcaps.patch b/sys-apps/realtime-lsm/files/realtime-lsm-0.8.5-allcaps.patch deleted file mode 100644 index a1ae4212d1af..000000000000 --- a/sys-apps/realtime-lsm/files/realtime-lsm-0.8.5-allcaps.patch +++ /dev/null @@ -1,39 +0,0 @@ -diff -ur realtime-lsm-0.8.5/realcap.c realtime-lsm-0.8.5-allcaps/realcap.c ---- realtime-lsm-0.8.5/realcap.c 2004-11-24 13:38:30.000000000 -0500 -+++ realtime-lsm-0.8.5-allcaps/realcap.c 2005-06-23 23:44:03.000000000 -0400 -@@ -43,6 +43,13 @@ - module_param_named(mlock, rt_mlock, int, 0644); - MODULE_PARM_DESC(mlock, " enable memory locking privileges."); - -+/* enable all capabilities */ -+static int rt_allcaps = 0; -+module_param_named(allcaps, rt_allcaps, int, 0644); -+MODULE_PARM_DESC(allcaps, " enable all capabilities, including CAP_SETPCAP."); -+ -+static kernel_cap_t cap_bset_save; /* place to save cap-bound */ -+ - /* helper function for testing group membership */ - static inline int gid_ok(int gid) - { -@@ -112,6 +119,12 @@ - secondary = 1; - } - -+ cap_bset_save = cap_bset; /* save cap-bound */ -+ if (rt_allcaps) { -+ cap_bset = to_cap_t(~0); -+ printk(KERN_INFO "Realtime LSM enabling all capabilities\n"); -+ } -+ - if (rt_any) - printk(KERN_INFO RT_LSM - "initialized (all groups, mlock=%d)\n", rt_mlock); -@@ -127,6 +140,8 @@ - - static void __exit realtime_exit(void) - { -+ cap_bset = cap_bset_save; /* restore cap-bound */ -+ - /* remove ourselves from the security framework */ - if (secondary) { - if (mod_unreg_security(MY_NAME, &capability_ops)) diff --git a/sys-apps/realtime-lsm/realtime-lsm-0.8.5-r2.ebuild b/sys-apps/realtime-lsm/realtime-lsm-0.8.5-r2.ebuild deleted file mode 100644 index b5ce584392cf..000000000000 --- a/sys-apps/realtime-lsm/realtime-lsm-0.8.5-r2.ebuild +++ /dev/null @@ -1,62 +0,0 @@ -# Copyright 1999-2005 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-apps/realtime-lsm/realtime-lsm-0.8.5-r2.ebuild,v 1.1 2005/06/24 04:26:41 fafhrd Exp $ - -inherit linux-mod eutils - -DESCRIPTION="Enable realtime capabilties via a security module." - -HOMEPAGE="http://www.joq.us/" -#HOMEPAGE="http://www.sourceforge.net/projects/realtime-lsm/" -SRC_URI="http://www.joq.us/realtime/${P}.tar.gz" - -LICENSE="GPL-2" -SLOT="0" -KEYWORDS="~ppc ~x86 ~amd64" - -IUSE="allcaps" -DEPEND="${DEPEND}" -RDEPEND="${RDEPEND}" - -MODULE_NAMES="realtime(extra:)" -BUILD_PARAMS="KSRC=${ROOT}${KV_DIR} TOUT=${TMP}/tmp-gas-check" -BUILD_TARGETS="all" -MODULESD_REALTIME_DOCS="AUTHORS ChangeLog README" - -src_unpack() { - if ! linux_chkconfig_present SECURITY - then - eerror "" - eerror "${PN} requires you to compile in the 'different security models option." - eerror "In your .config: CONFIG_SECURITY=y" - eerror " CONFIG_SECURITY_CAPABILITIES=m" - eerror "Through 'make menuconfig': Security options-> [*] Enable different security models" - eerror " Security options-> <M> Default Linux Capabilties" - eerror "" - die "Security support not detected." - fi - - if ! linux_chkconfig_module SECURITY_CAPABILITIES - then - eerror "" - eerror "${PN} requires that 'Default Linux Capabilities' be compiled as a module." - eerror "In your .config: CONFIG_SECURITY_CAPABILITIES=m" - eerror "Through 'make menuconfig': Security options-> <M> Default Linux Capabilties" - eerror "" - die "Default Linux capabilities (security) not detected." - fi - - if ! kernel_is 2 6 - then - die "A Linux kernel of version 2.6 is required." - fi - - unpack ${A} - cd ${S} - epatch ${FILESDIR}/kmisc.patch-0.8.2_pre20041022 - if use allcaps; then - epatch ${FILESDIR}/realtime-lsm-${PV}-allcaps.patch - fi - convert_to_m Makefile -} - |