blob: bcd7e7b292682dd86c22c0b48617c6dde07515ae (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
|
# Copyright 1999-2021 Gentoo Authors
# Distributed under the terms of the GNU General Public License v2
EAPI=7
PYTHON_COMPAT=( python3_{7..9} )
inherit toolchain-funcs python-single-r1 linux-info
if [[ ${PV} != 9999 ]]; then
KEYWORDS="~amd64 ~x86"
SRC_URI="https://github.com/netblue30/${PN}/releases/download/${PV}/${P}.tar.xz"
else
inherit git-r3
EGIT_REPO_URI="https://github.com/netblue30/firejail.git"
EGIT_BRANCH="master"
fi
DESCRIPTION="Security sandbox for any type of processes"
HOMEPAGE="https://firejail.wordpress.com/"
LICENSE="GPL-2"
SLOT="0"
IUSE="X apparmor +chroot contrib +dbusproxy +file-transfer +globalcfg +network +private-home +suid test +userns +whitelist"
# Needs a lot of work to function within sandbox/portage
# bug #769731
RESTRICT="test"
RDEPEND="!sys-apps/firejail-lts
apparmor? ( sys-libs/libapparmor )
contrib? ( ${PYTHON_DEPS} )
dbusproxy? ( sys-apps/xdg-dbus-proxy )"
DEPEND="${RDEPEND}
sys-libs/libseccomp
test? ( dev-tcltk/expect )"
REQUIRED_USE="contrib? ( ${PYTHON_REQUIRED_USE} )"
pkg_setup() {
python-single-r1_pkg_setup
}
src_prepare() {
default
find -type f -name Makefile.in -exec sed -i -r -e '/^\tinstall .*COPYING /d; /CFLAGS/s: (-O2|-ggdb) : :g' {} + || die
sed -i -r -e '/CFLAGS/s: (-O2|-ggdb) : :g' ./src/common.mk.in || die
# remove compression of man pages
sed -i -r -e '/rm -f \$\$man.gz; \\/d; /gzip -9n \$\$man; \\/d; s|\*\.([[:digit:]])\) install -m 0644 \$\$man\.gz|\*\.\1\) install -m 0644 \$\$man|g' Makefile.in || die
if use contrib; then
python_fix_shebang -f contrib/*.py
fi
}
src_configure() {
econf \
--disable-firetunnel \
$(use_enable apparmor) \
$(use_enable chroot) \
$(use_enable dbusproxy) \
$(use_enable file-transfer) \
$(use_enable globalcfg) \
$(use_enable network) \
$(use_enable private-home) \
$(use_enable suid) \
$(use_enable userns) \
$(use_enable whitelist) \
$(use_enable X x11)
}
src_compile() {
emake CC="$(tc-getCC)"
}
src_install() {
default
if use contrib; then
python_scriptinto /usr/$(get_libdir)/firejail
python_doscript contrib/*.py
insinto /usr/$(get_libdir)/firejail
dobin contrib/*.sh
fi
}
pkg_postinst() {
CONFIG_CHECK="~SQUASHFS"
local ERROR_SQUASHFS="CONFIG_SQUASHFS: required for firejail --appimage mode"
check_extra_config
}
|