Re: [gentoo-hardened] XATTR_PAX, paxmark.sh, elog, icedtea, and maybe more
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 2014/12/19 17:08, Karl-Johan Karlsson wrote: > On Thu 18 Dec 2014 19.58.11 Anthony G. Basile wrote: >> On 12/13/14 18:52, Karl-Johan Karlsson wrote: >>> So it works on ext4, but not ext3, even though both have the ext_attr flag >>> on disk. Any difference in kernel support? >> >> Because on ext3 you need to add user_xattr to the mount options. Either >> `mount -o user_xattr` or in fstab in column 4 like this >> >> /dev/sdb5 /tmpext3 user_xattr 0 1 >> >> Its automatic on ext4. `man mount` for more info. Please let me know >> if this works for you. > > Aha! I was unaware of that mount option. mount(8) documents it, but is unclear > on what the default value is. attr(5) says it's needed on ext2, ext3 and > reiserfs, but says nothing about ext4. > > Unfortunately, the machine is in production, and since it works without that > option when using the ext4 code to read ext3, I would prefer to leave it alone > for now. > Would mount -oremount,user_xattr be an option? Or am I missing the point :) -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBAgAGBQJUk8sJAAoJEHLy9B54fW4wGi8H/2eifOOUy8kkJAiUMALvOcUH aPloeW0ck52Zh0ZZ9qiuXYHJm30E1tNR6ymIihNYY1P8Uiimghv5IbvroMiraTzo bfjQEMXV/hcwNMsSTFLLNZWs2KDpIn36m/uJNjyUszZ5yUnrJVi4XrC7sMoiCcQb DrK24IFLrSmgM5+w0IPe35olHFXlJwQrJT/F+IjrMZkfHuWfl/eWVBPPqYsohv48 OaxWWYO33S5M3Vqr1rtCTeWQ2A/+saThewX5aZTtjaA4n8ZIW2khQuidXeUz/2kU /b8C9BN3ExtwUGHzmWV4W3dQVMdyGkfS/M0doF1TNo8IamfX2QPtKWc02siQ52k= =7vr7 -END PGP SIGNATURE-
Re: [gentoo-hardened] XATTR_PAX, paxmark.sh, elog, icedtea, and maybe more
On 2014/12/19 17:08, Karl-Johan Karlsson wrote: > On Thu 18 Dec 2014 19.58.11 Anthony G. Basile wrote: >> On 12/13/14 18:52, Karl-Johan Karlsson wrote: >>> So it works on ext4, but not ext3, even though both have the ext_attr flag >>> on disk. Any difference in kernel support? >> >> Because on ext3 you need to add user_xattr to the mount options. Either >> `mount -o user_xattr` or in fstab in column 4 like this >> >> /dev/sdb5 /tmp ext3 user_xattr 0 1 >> >> Its automatic on ext4. `man mount` for more info. Please let me know >> if this works for you. > > Aha! I was unaware of that mount option. mount(8) documents it, but is > unclear > on what the default value is. attr(5) says it's needed on ext2, ext3 and > reiserfs, but says nothing about ext4. > > Unfortunately, the machine is in production, and since it works without that > option when using the ext4 code to read ext3, I would prefer to leave it > alone > for now. Would mount -oremount,user_xattr be an option? Or am I missing the point :) P.S. Sorry for my garbled reply earlier, seems I'd forgotten to set Enigmail up properly. signature.asc Description: OpenPGP digital signature
Re: [gentoo-hardened] [musl] A bunch of new compatibles ebuilds for musl
On 2014/12/24 18:27, daggs wrote: >> * www-servers/nginx Yeah, I even got that fix committed upstream, too (borrowed the patch from alpine linux). Probably need to submit a bugzilla for it... Hmm. signature.asc Description: OpenPGP digital signature
[gentoo-hardened] [PATCH] sys-libs/pam: Fixed building under musl using patchset from Alpine Linux
From 157f6be1e6ec54a8c2eca131df24de96e0cddb7d Mon Sep 17 00:00:00 2001 From: James Taylor Date: Fri, 20 Feb 2015 13:33:35 + Subject: [PATCH] sys-libs/pam: Fixed building under musl using patchset from Alpine Linux --- sys-libs/pam/Manifest | 7 + sys-libs/pam/files/pam-1.1.8-doc-install.patch | 142 + sys-libs/pam/files/pam-1.1.8-fix-compat.patch | 21 +++ sys-libs/pam/files/pam-1.1.8-innetgr.patch | 54 +++ sys-libs/pam/metadata.xml | 32 sys-libs/pam/pam-1.1.8-r99.ebuild | 205 + 6 files changed, 461 insertions(+) create mode 100644 sys-libs/pam/Manifest create mode 100644 sys-libs/pam/files/pam-1.1.8-doc-install.patch create mode 100644 sys-libs/pam/files/pam-1.1.8-fix-compat.patch create mode 100644 sys-libs/pam/files/pam-1.1.8-innetgr.patch create mode 100644 sys-libs/pam/metadata.xml create mode 100644 sys-libs/pam/pam-1.1.8-r99.ebuild diff --git a/sys-libs/pam/Manifest b/sys-libs/pam/Manifest new file mode 100644 index 000..db75f3a --- /dev/null +++ b/sys-libs/pam/Manifest @@ -0,0 +1,7 @@ +AUX pam-1.1.8-doc-install.patch 6592 SHA256 83edb1f57e3fa579bde4cd9ba05966063106f0dc8e57458eea9857250b1a0fb5 SHA512 335220790207c3cb9c84420f13e5e1ea8e42e2b5402def0d0f9425ae89b37c8aef66eb9906c58eeb249bd1ca27af711015c363421d4096206ea44c4c4beea302 WHIRLPOOL ae6df174b9457bcfd85f41b72ec22054898c0c86f9bb0b170ec3e6c747140d1ac3fba3e684e2c4c9c12bb4a1429996a5bb999c9dc2c7693d5109e52f383d1fcf +AUX pam-1.1.8-fix-compat.patch 402 SHA256 c783156888287b44816b4a32c946af657c0a43d8926fe7bd9f54d9768ee8f699 SHA512 1178ead83fdc872a626576c620876d013cbeb6199edb704c8d91cb906b9aabc1dd02e11a27a792cb87179554dcaf3080d04478317e03cf34cea23bf42b65fe2f WHIRLPOOL 692d3df998b7c29f1a7ea4c75cbeabdb6a907d7a8ca0b9e22f9c02df883db6af6b2052f67f4778cf97667456d54abed7f89fb43ed1bcb01c9fdef42f63d2762f +AUX pam-1.1.8-innetgr.patch 1662 SHA256 fb609212837c67da7da033a0daa01d1c2e34166867530e6924102b655e00ebde SHA512 ca32ecdacfc5b8f1482031203b616932b646a008b02080315ea2589af5962180d4ff4339c27fe9f6a878a89f47fb69429f4ac75d67b0e70ad7765a4db1dc74d9 WHIRLPOOL 3034a8cd10f26c303546a99c0ae7de38d016d537deae81e52cc510c515d7e8b7d703bf257fac8d737588add225e125d7a90f6f35cc811eb1330cb3cc88d67048 +DIST Linux-PAM-1.1.8-docs.tar.bz2 147887 SHA256 c4bb6a0e8307d2ab5611457fecf20fcbd6cdfff51dea524f0f06c74e4f3b4ff8 SHA512 36aa6f8cc0640686d2af40845e18ad4b48183f18de9e1495427550ad5b61e2f59e25f6d5e8df1277cd3f171fd69bf6c49fe7c5b31f0b290e3641b65521e8 WHIRLPOOL c4b373e59fac30a29c2b16f01419492c72fae2ceb15b157418bba4899b75cf4b97bac4559b688ef8d5a231cc972f72654c4e10d63a0b72a0d6573388f7125f87 +DIST Linux-PAM-1.1.8.tar.bz2 1148944 SHA256 c4b1f23a236d169e2496fea20721578d864ba00f7242d2b41d81050ac87a1e55 SHA512 245785ab4e187ceaab6393967352c8d2a2319c64e1e83285d0251cc02995dc2edab8e3001301b6d9f6774c441b7557d9caf4dfdf94c7cd5d44aa53ae759d9e5d WHIRLPOOL b4ec7baeb57b9d987086fe3e007e08e8b9c92b2ff86a94f8003a87c8448925835808661cd719d2445570aa8dd1c20fcbbe8bd465d73f4af8cd7edde0f650a734 +EBUILD pam-1.1.8-r99.ebuild 6289 SHA256 d9fac218f4e3a095a1d7bbe62d65db2c73a5183681b28006972c2575a1473221 SHA512 f341057c9234e57e102c38d46bdb2670bc6e2c50e53a3175cf3e65a35bd37e633712608f458b2e59fb7ec61a41169279efdbeeb4be468d5ba9287239ca5033e1 WHIRLPOOL 074506f012d3d820951d003b1350f62f9745d841b26ad7c89a345c819734c6cfd26d69a89f4f08dfb4c3ac67bf68e9b938d630fa3887cea33dcc0a7dcde18e7c +MISC metadata.xml 1218 SHA256 9ea95e669c343b7e7184d3fb3b1bbad013493bfdca0e8f184ddf4728e6b5e884 SHA512 60ae70d605f654867e4c444c7489ecd76083c286039febd71ffd18a9e120b151a47488df925ec97e6768c62e5e48068abb864a6b978abd67623fb0b6c414f248 WHIRLPOOL a96d70fd81604dd265f15672183b793d0c3f48508b317f973481c460d56ea05d917a446fd60998536f7a3d811407ca3573554f9dcdc8f45ab88dbbf7875985ab diff --git a/sys-libs/pam/files/pam-1.1.8-doc-install.patch b/sys-libs/pam/files/pam-1.1.8-doc-install.patch new file mode 100644 index 000..bdd5b9d --- /dev/null +++ b/sys-libs/pam/files/pam-1.1.8-doc-install.patch @@ -0,0 +1,142 @@ +https://bugs.gentoo.org/473650 +https://fedorahosted.org/linux-pam/ticket/31 + +fix doc installs when doing out of tree builds + +--- a/doc/adg/Makefile.in b/doc/adg/Makefile.in +@@ -463,17 +463,17 @@ install-data-local: + $(mkinstalldirs) $(DESTDIR)$(docdir) + $(mkinstalldirs) $(DESTDIR)$(pdfdir) + $(mkinstalldirs) $(DESTDIR)$(htmldir) +- test -f html/Linux-PAM_ADG.html || exit 0; \ ++ test -f html/Linux-PAM_ADG.html -o -f $(srcdir)/html/Linux-PAM_ADG.html || exit 0; \ + $(install_sh_DATA) html/Linux-PAM_ADG.html html/adg-*.html \ + $(DESTDIR)$(htmldir)/ || \ + $(install_sh_DATA) $(srcdir)/html/Linux-PAM_ADG.html \ +- $(srcdir)/html/sag-*.html \ ++ $(srcdir)/html/adg-*.html \ + $(DESTDIR)$(htmldir)/ +- test -f Linux-PAM_ADG.txt || exit 0; \ ++ test -f Linux-PAM_ADG.txt -o -f $(srcdir)/Linux-PAM_ADG.txt
[gentoo-hardened] [PATCH] sys-libs/pam: Fixed building under musl using patchset from Alpine Linux -- this time in an attachment
Not sure if there is any preferred method for sending patches, but here's a second attempt with an attachment :) -- James Taylor Keybase (https://keybase.io/jamestr) From 157f6be1e6ec54a8c2eca131df24de96e0cddb7d Mon Sep 17 00:00:00 2001 From: James Taylor Date: Fri, 20 Feb 2015 13:33:35 + Subject: [PATCH] sys-libs/pam: Fixed building under musl using patchset from Alpine Linux --- sys-libs/pam/Manifest | 7 + sys-libs/pam/files/pam-1.1.8-doc-install.patch | 142 + sys-libs/pam/files/pam-1.1.8-fix-compat.patch | 21 +++ sys-libs/pam/files/pam-1.1.8-innetgr.patch | 54 +++ sys-libs/pam/metadata.xml | 32 sys-libs/pam/pam-1.1.8-r99.ebuild | 205 + 6 files changed, 461 insertions(+) create mode 100644 sys-libs/pam/Manifest create mode 100644 sys-libs/pam/files/pam-1.1.8-doc-install.patch create mode 100644 sys-libs/pam/files/pam-1.1.8-fix-compat.patch create mode 100644 sys-libs/pam/files/pam-1.1.8-innetgr.patch create mode 100644 sys-libs/pam/metadata.xml create mode 100644 sys-libs/pam/pam-1.1.8-r99.ebuild diff --git a/sys-libs/pam/Manifest b/sys-libs/pam/Manifest new file mode 100644 index 000..db75f3a --- /dev/null +++ b/sys-libs/pam/Manifest @@ -0,0 +1,7 @@ +AUX pam-1.1.8-doc-install.patch 6592 SHA256 83edb1f57e3fa579bde4cd9ba05966063106f0dc8e57458eea9857250b1a0fb5 SHA512 335220790207c3cb9c84420f13e5e1ea8e42e2b5402def0d0f9425ae89b37c8aef66eb9906c58eeb249bd1ca27af711015c363421d4096206ea44c4c4beea302 WHIRLPOOL ae6df174b9457bcfd85f41b72ec22054898c0c86f9bb0b170ec3e6c747140d1ac3fba3e684e2c4c9c12bb4a1429996a5bb999c9dc2c7693d5109e52f383d1fcf +AUX pam-1.1.8-fix-compat.patch 402 SHA256 c783156888287b44816b4a32c946af657c0a43d8926fe7bd9f54d9768ee8f699 SHA512 1178ead83fdc872a626576c620876d013cbeb6199edb704c8d91cb906b9aabc1dd02e11a27a792cb87179554dcaf3080d04478317e03cf34cea23bf42b65fe2f WHIRLPOOL 692d3df998b7c29f1a7ea4c75cbeabdb6a907d7a8ca0b9e22f9c02df883db6af6b2052f67f4778cf97667456d54abed7f89fb43ed1bcb01c9fdef42f63d2762f +AUX pam-1.1.8-innetgr.patch 1662 SHA256 fb609212837c67da7da033a0daa01d1c2e34166867530e6924102b655e00ebde SHA512 ca32ecdacfc5b8f1482031203b616932b646a008b02080315ea2589af5962180d4ff4339c27fe9f6a878a89f47fb69429f4ac75d67b0e70ad7765a4db1dc74d9 WHIRLPOOL 3034a8cd10f26c303546a99c0ae7de38d016d537deae81e52cc510c515d7e8b7d703bf257fac8d737588add225e125d7a90f6f35cc811eb1330cb3cc88d67048 +DIST Linux-PAM-1.1.8-docs.tar.bz2 147887 SHA256 c4bb6a0e8307d2ab5611457fecf20fcbd6cdfff51dea524f0f06c74e4f3b4ff8 SHA512 36aa6f8cc0640686d2af40845e18ad4b48183f18de9e1495427550ad5b61e2f59e25f6d5e8df1277cd3f171fd69bf6c49fe7c5b31f0b290e3641b65521e8 WHIRLPOOL c4b373e59fac30a29c2b16f01419492c72fae2ceb15b157418bba4899b75cf4b97bac4559b688ef8d5a231cc972f72654c4e10d63a0b72a0d6573388f7125f87 +DIST Linux-PAM-1.1.8.tar.bz2 1148944 SHA256 c4b1f23a236d169e2496fea20721578d864ba00f7242d2b41d81050ac87a1e55 SHA512 245785ab4e187ceaab6393967352c8d2a2319c64e1e83285d0251cc02995dc2edab8e3001301b6d9f6774c441b7557d9caf4dfdf94c7cd5d44aa53ae759d9e5d WHIRLPOOL b4ec7baeb57b9d987086fe3e007e08e8b9c92b2ff86a94f8003a87c8448925835808661cd719d2445570aa8dd1c20fcbbe8bd465d73f4af8cd7edde0f650a734 +EBUILD pam-1.1.8-r99.ebuild 6289 SHA256 d9fac218f4e3a095a1d7bbe62d65db2c73a5183681b28006972c2575a1473221 SHA512 f341057c9234e57e102c38d46bdb2670bc6e2c50e53a3175cf3e65a35bd37e633712608f458b2e59fb7ec61a41169279efdbeeb4be468d5ba9287239ca5033e1 WHIRLPOOL 074506f012d3d820951d003b1350f62f9745d841b26ad7c89a345c819734c6cfd26d69a89f4f08dfb4c3ac67bf68e9b938d630fa3887cea33dcc0a7dcde18e7c +MISC metadata.xml 1218 SHA256 9ea95e669c343b7e7184d3fb3b1bbad013493bfdca0e8f184ddf4728e6b5e884 SHA512 60ae70d605f654867e4c444c7489ecd76083c286039febd71ffd18a9e120b151a47488df925ec97e6768c62e5e48068abb864a6b978abd67623fb0b6c414f248 WHIRLPOOL a96d70fd81604dd265f15672183b793d0c3f48508b317f973481c460d56ea05d917a446fd60998536f7a3d811407ca3573554f9dcdc8f45ab88dbbf7875985ab diff --git a/sys-libs/pam/files/pam-1.1.8-doc-install.patch b/sys-libs/pam/files/pam-1.1.8-doc-install.patch new file mode 100644 index 000..bdd5b9d --- /dev/null +++ b/sys-libs/pam/files/pam-1.1.8-doc-install.patch @@ -0,0 +1,142 @@ +https://bugs.gentoo.org/473650 +https://fedorahosted.org/linux-pam/ticket/31 + +fix doc installs when doing out of tree builds + +--- a/doc/adg/Makefile.in b/doc/adg/Makefile.in +@@ -463,17 +463,17 @@ install-data-local: + $(mkinstalldirs) $(DESTDIR)$(docdir) + $(mkinstalldirs) $(DESTDIR)$(pdfdir) + $(mkinstalldirs) $(DESTDIR)$(htmldir) +- test -f html/Linux-PAM_ADG.html || exit 0; \ ++ test -f html/Linux-PAM_ADG.html -o -f $(srcdir)/html/Linux-PAM_ADG.html || exit 0; \ + $(install_sh_DATA) html/Linux-PAM_ADG.html html/adg-*.html \ + $(DESTDIR)$(htmldir)/ || \ + $(install_sh_DATA) $(srcdir)/html/Linux-PAM_ADG.html \ +- $(srcdir)/html/sag-*.html \ ++ $(srcdir)/html/adg-*.html \ + $(DESTDIR)$(htmldir)/ +- test -f Linux-PAM_AD
