diff options
| author | rhatto <rhatto@370017ae-e619-0410-ac65-c121f96126d4> | 2006-07-31 20:45:44 +0000 |
|---|---|---|
| committer | rhatto <rhatto@370017ae-e619-0410-ac65-c121f96126d4> | 2006-07-31 20:45:44 +0000 |
| commit | 3ae891bbbaa3f96365f4c9fbe49e5cee26183fbc (patch) | |
| tree | 59f0163f13e99eefb959385243c564c5662bc5c2 /libsafe | |
| download | slackbuilds-3ae891bbbaa3f96365f4c9fbe49e5cee26183fbc.tar.gz slackbuilds-3ae891bbbaa3f96365f4c9fbe49e5cee26183fbc.tar.bz2 | |
initial import
git-svn-id: svn+slack://slack.fluxo.info/var/svn/slackbuilds@1 370017ae-e619-0410-ac65-c121f96126d4
Diffstat (limited to 'libsafe')
| -rw-r--r-- | libsafe/doinst.sh | 57 | ||||
| -rw-r--r-- | libsafe/doinst64.sh | 57 | ||||
| -rwxr-xr-x | libsafe/libsafe.SlackBuild | 65 | ||||
| -rw-r--r-- | libsafe/slack-desc | 19 |
4 files changed, 198 insertions, 0 deletions
diff --git a/libsafe/doinst.sh b/libsafe/doinst.sh new file mode 100644 index 00000000..813767b3 --- /dev/null +++ b/libsafe/doinst.sh @@ -0,0 +1,57 @@ +#!/bin/sh + +# libmove sourcelib targetlib +# +# This allows you to move a new shared library into place, +# even on a running system. +libmove() { + LIBSOURCE=$1 + LIBTARGET=$2 + LIBFOO="`dirname $LIBTARGET`/libfoo.so.0.0.0" + # link duplicate of target lib so we can safely copy over it: + if [ -r $LIBTARGET ]; then + cp -a $LIBTARGET $LIBFOO + if [ -x /sbin/ldconfig ]; then + ldconfig -l $LIBFOO 2> /dev/null + fi + fi + mv $LIBSOURCE $LIBTARGET + if [ -x /sbin/ldconfig ]; then + ldconfig -l $LIBTARGET 2> /dev/null + fi + rm -f $LIBFOO +} + +# Before using libmove, try to install everything we can: +( cd lib/incoming + for file in * ; do + if [ ! -r ../$file ]; then + cp -a $file .. + fi + done ) +# Prepare the library for use with ldconfig: +if [ -x sbin/ldconfig ]; then + chroot . /sbin/ldconfig +fi + +( cd lib/incoming + for file in * ; do + libmove $file ../$file + done ) +#### Now, get rid of the temporary directory: +rm -rf lib/incoming + +# add the library to /etc/ld.so.preload: +if fgrep libsafe.so.2 etc/ld.so.preload 1> /dev/null 2> /dev/null ; then + GOOD=we_found_it +else + echo "/lib/libsafe.so.2" >> etc/ld.so.preload +fi + +# Prepare the library for use with ldconfig: +if [ -x sbin/ldconfig ]; then + chroot . /sbin/ldconfig +else # In case there's no ldconfig, make the links manually: + ( cd lib ; rm -rf libsafe.so.2 ) + ( cd lib ; ln -sf libsafe.so.2.0.9 libsafe.so.2 ) +fi diff --git a/libsafe/doinst64.sh b/libsafe/doinst64.sh new file mode 100644 index 00000000..a5d753a9 --- /dev/null +++ b/libsafe/doinst64.sh @@ -0,0 +1,57 @@ +#!/bin/sh + +# libmove sourcelib targetlib +# +# This allows you to move a new shared library into place, +# even on a running system. +libmove() { + LIBSOURCE=$1 + LIBTARGET=$2 + LIBFOO="`dirname $LIBTARGET`/libfoo.so.0.0.0" + # link duplicate of target lib so we can safely copy over it: + if [ -r $LIBTARGET ]; then + cp -a $LIBTARGET $LIBFOO + if [ -x /sbin/ldconfig ]; then + ldconfig -l $LIBFOO 2> /dev/null + fi + fi + mv $LIBSOURCE $LIBTARGET + if [ -x /sbin/ldconfig ]; then + ldconfig -l $LIBTARGET 2> /dev/null + fi + rm -f $LIBFOO +} + +# Before using libmove, try to install everything we can: +( cd lib64/incoming + for file in * ; do + if [ ! -r ../$file ]; then + cp -a $file .. + fi + done ) +# Prepare the library for use with ldconfig: +if [ -x sbin/ldconfig ]; then + chroot . /sbin/ldconfig +fi + +( cd lib64/incoming + for file in * ; do + libmove $file ../$file + done ) +#### Now, get rid of the temporary directory: +rm -rf lib64/incoming + +# add the library to /etc/ld.so.preload: +if fgrep libsafe.so.2 etc/ld.so.preload 1> /dev/null 2> /dev/null ; then + GOOD=we_found_it +else + echo "/lib64/libsafe.so.2" >> etc/ld.so.preload +fi + +# Prepare the library for use with ldconfig: +if [ -x sbin/ldconfig ]; then + chroot . /sbin/ldconfig +else # In case there's no ldconfig, make the links manually: + ( cd lib64 ; rm -rf libsafe.so.2 ) + ( cd lib64 ; ln -sf libsafe.so.2.0.9 libsafe.so.2 ) +fi diff --git a/libsafe/libsafe.SlackBuild b/libsafe/libsafe.SlackBuild new file mode 100755 index 00000000..033ac5be --- /dev/null +++ b/libsafe/libsafe.SlackBuild @@ -0,0 +1,65 @@ +#!/bin/bash +# +# got it from ftp://ftp.slackware.com/pub/slackware/slackware-10.2/extra/source/libsafe-2.0-16/libsafe.SlackBuild +# small changes by rhatto +# + +CWD="`pwd`" + +if [ -f "/etc/slackbuildrc" ]; then + source /etc/slackbuildrc +fi + +if [ -f "~/.slackbuildrc" ]; then + source ~/.slackbuildrc +fi + +PACKAGE="libsafe" +ARCH=${ARCH:=x86_64} +BUILD=${BUILD:=1rha} +TMP=${TMP:=/tmp} +VERSION=2.0.16 +SRCPKG=2.0-16 +SRC_DIR=${SRC:=$CWD} + +if [ "$ARCH" == "x86_64" ]; then + LIBDIR=lib64 + DOINST="doinst64.sh" +else + LIBDIR=lib + DOINST="doinst.sh" +fi + +RTOOL="wget" +SRC="$PACKAGE-$SRCPKG.tar.gz" +URL="ftp://ftp.slackware.com/pub/slackware/slackware-10.2/extra/source/libsafe-$SRCPKG/$SRC" +PKG=$TMP/package-libsafe + +if [ "$RTOOL" == "wget" ] && [ ! -f "$SRC_DIR/$SRC" ]; then + wget "$URL" -O "$SRC_DIR/$SRC" +fi + +cd $TMP +rm -rf $PKG +mkdir -p $PKG +tar xzvf $SRC_DIR/$SRC +cd libsafe-$SRCPKG +chown -R root.root . +find . -perm 775 -exec chmod 755 {} \; +find . -perm 664 -exec chmod 644 {} \; +make +mkdir -p $PKG/$LIBDIR/incoming +cat src/libsafe.so.$VERSION > $PKG/$LIBDIR/incoming/libsafe.so.$VERSION +chmod 755 $PKG/$LIBDIR/incoming/libsafe.so.$VERSION +mkdir $PKG/install +cat $CWD/$DOINST > $PKG/install/doinst.sh +cat $CWD/slack-desc > $PKG/install/slack-desc +mkdir -p $PKG/usr/doc/libsafe-$VERSION +cp -a \ + COPYING ChangeLog EMAIL_NOTIFICATION INSTALL README doc \ + $PKG/usr/doc/libsafe-$VERSION +mkdir -p $PKG/usr/man/man8 +cat doc/libsafe.8 | gzip -9c > $PKG/usr/man/man8/libsafe.8.gz +cd $PKG +makepkg -l y -c n $TMP/$PACKAGE-$VERSION-$ARCH-$BUILD.tgz + diff --git a/libsafe/slack-desc b/libsafe/slack-desc new file mode 100644 index 00000000..5cf1c752 --- /dev/null +++ b/libsafe/slack-desc @@ -0,0 +1,19 @@ +# HOW TO EDIT THIS FILE: +# The "handy ruler" below makes it easier to edit a package description. Line +# up the first '|' above the ':' following the base package name, and the '|' on +# the right side marks the last column you can put a character in. You must make +# exactly 11 lines for the formatting to be correct. It's also customary to +# leave one space after the ':'. + + |-----handy-ruler------------------------------------------------------| +libsafe: libsafe +libsafe: +libsafe: The libsafe library protects a process against the exploitation of +libsafe: buffer overflow vulnerabilities in process stacks and against format +libsafe: string exploits. Libsafe works with any existing pre-compiled +libsafe: executable and can be used transparently, even on a system-wide basis. +libsafe: The method intercepts all calls to library functions that are known to +libsafe: be vulnerable. Libsafe has been shown to detect several known attacks +libsafe: and can potentially prevent yet unknown attacks. Experiments indicate +libsafe: that the performance overhead of libsafe is negligible. +libsafe: |