#!/bin/bash # # tor.SlackBuild is free software; you can redistribute # it and/or modify it under the terms of the GNU General Public License as # published by the Free Software Foundation; either version 2 of the License, # or any later version. # # tor.SlackBuild is distributed in the hope that it will # be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General # Public License for more details. # # You should have received a copy of the GNU General Public License along # with this program; if not, write to the Free Software Foundation, Inc., # 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA # # slackbuild for tor, by Silvio Rhatto # requires: # tested: tor-0.2.0.35 # model: generic.mkSlackBuild $Rev: 805 $ # # Look for slackbuildrc if [ -f ~/.slackbuildrc ]; then source ~/.slackbuildrc elif [ -f /etc/slackbuildrc ]; then source /etc/slackbuildrc fi # Set variables CWD="$(pwd)" SRC_NAME="tor" PKG_NAME="tor" ARCH=${ARCH:=i486} SRC_VERSION=${VERSION:=0.2.0.35} PKG_VERSION="$(echo "$SRC_VERSION" | tr '[[:blank:]-]' '_')" BUILD=${BUILD:=1rha} SRC_DIR=${SRC_DIR:=$CWD}/$PKG_NAME TMP=${TMP:=/tmp} PKG=${PKG:=$TMP/package-$PKG_NAME} REPOS=${REPOS:=$TMP} SLACKBUILD_PATH=${SLACKBUILD_PATH:="net/misc/tor"} PREFIX=${PREFIX:=/usr} PKG_WORK="$TMP/$SRC_NAME" CONF_OPTIONS=${CONF_OPTIONS:="--sysconfdir=/etc"} NUMJOBS=${NUMJOBS:=""} # Set system libraries' path and optmization flags based on $ARCH LIBDIR="$PREFIX/lib" if [ "$ARCH" = "i386" ]; then SLKCFLAGS="-O2 -march=i386 -mtune=i686" elif [ "$ARCH" = "i486" ]; then SLKCFLAGS="-O2 -march=i486 -mtune=i686" elif [ "$ARCH" = "i686" ]; then SLKCFLAGS="-O2 -march=i686" elif [ "$ARCH" = "s390" ]; then SLKCFLAGS="-O2" elif [ "$ARCH" = "x86_64" ]; then SLKCFLAGS="-O2 -fPIC" LIBDIR="$PREFIX/lib64" LDFLAGS="-L/lib64 -L/usr/lib64" fi # Set error codes (used by createpkg) ERROR_WGET=31; ERROR_MAKE=32; ERROR_INSTALL=33 ERROR_MD5=34; ERROR_CONF=35; ERROR_HELP=36 ERROR_TAR=37; ERROR_MKPKG=38; ERROR_GPG=39 ERROR_PATCH=40; ERROR_VCS=41; ERROR_MKDIR=42 ERROR_MANIFEST=43; # Clean up any leftovers of previous builds rm -rf "$PKG_WORK" 2> /dev/null rm -rf "$PKG" 2> /dev/null # Create directories if necessary mkdir -p "$SRC_DIR" || exit $ERROR_MKDIR mkdir -p "$PKG" || exit $ERROR_MKDIR mkdir -p "$REPOS" || exit $ERROR_MKDIR mkdir -p "$PKG_WORK" || exit $ERROR_MKDIR # Dowload source if necessary SRC="$SRC_NAME-$VERSION.tar.gz" URL="http://www.torproject.org/dist/$SRC" if [ ! -s "$SRC_DIR/$SRC" ] || ! gunzip -t "$SRC_DIR/$SRC" 2> /dev/null; then wget "$URL" -O "$SRC_DIR/$SRC" || exit $ERROR_WGET fi # Import minimized signing key from if echo [[SIGNING KEY URL]] | grep -q -v "SIGNING KEY URL"; then lynx -dump [[SIGNING KEY URL]] | gpg --import || exit $ERROR_GPG elif echo 0x28988BF5 0x165733EA | grep -q -v "SIGNING KEY ID"; then gpg --recv-keys 0x28988BF5 0x165733EA || exit $ERROR_GPG else gpg --import << EOKEY || exit $ERROR_GPG [[SIGNING KEY]] EOKEY fi # Download source's signature if necessary and check it if echo [[SIGNING URL]] | grep -q -v "SIGNING URL"; then SIGNATURE="`basename [[SIGNING URL]]`" if [ ! -s "$SRC_DIR/$SIGNATURE" ]; then wget "[[SIGNING URL]]" -O "$SRC_DIR/$SIGNATURE" || exit $ERROR_WGET fi else if [ -s "$SRC_DIR/$SRC.sig" ]; then SIGNATURE="$SRC.sig" elif [ -s "$SRC_DIR/$SRC.asc" ]; then SIGNATURE="$SRC.asc" else echo Trying to get signature file from $URL.sig... if wget "$URL.sig" -O "$SRC_DIR/$SRC.sig"; then SIGNATURE="$SRC.sig" else rm $SRC_DIR/$SRC.sig echo Trying to get signature file from $URL.asc... if wget "$URL.asc" -O "$SRC_DIR/$SRC.asc"; then SIGNATURE="$SRC.asc" else rm $SRC_DIR/$SRC.asc echo "Error getting source's signature file" exit $ERROR_GPG fi fi fi fi echo Checking $SRC_DIR/$SRC with gpg using $SRC_DIR/$SIGNATURE... gpg --verify "$SRC_DIR/$SIGNATURE" "$SRC_DIR/$SRC" || exit $ERROR_GPG echo Success. # Check Manifest file if [ -e "$CWD/Manifest" ]; then # Manifest signature checking if grep -q -- "-----BEGIN PGP SIGNED MESSAGE-----" $CWD/Manifest; then echo "Checking Manifest signature..." gpg --verify $CWD/Manifest if [ "$?" != "0" ]; then exit $ERROR_MANIFEST fi fi MANIFEST_LINES="`grep -E -v "^(MKBUILD|SLACKBUILD)" $CWD/Manifest | wc -l`" for ((MANIFEST_COUNT=1; MANIFEST_COUNT <= $MANIFEST_LINES; MANIFEST_COUNT++)); do MANIFEST_LINE="`grep -E -v "^(MKBUILD|SLACKBUILD)" $CWD/Manifest | head -n $MANIFEST_COUNT | tail -n 1`" MANIFEST_FILE="`echo $MANIFEST_LINE | awk '{ print $2 }'`" MANIFEST_FILE_TYPE="`echo $MANIFEST_LINE | awk '{ print $1 }'`" if [ -e "$SRC_DIR/$MANIFEST_FILE" ]; then MANIFEST_FILE="$SRC_DIR/$MANIFEST_FILE" else MANIFEST_FILE="`find $CWD -name $MANIFEST_FILE`" fi if [ ! -e "$MANIFEST_FILE" ] || [ -d "$MANIFEST_FILE" ]; then continue fi echo "Checking Manifest for $MANIFEST_FILE_TYPE $MANIFEST_FILE integrity..." SIZE_SRC="`wc -c $MANIFEST_FILE | awk '{ print $1 }'`" SIZE_MANIFEST="`echo $MANIFEST_LINE | awk '{ print $3 }'`" # Check source code size if [ "$SIZE_SRC" != "$SIZE_MANIFEST" ]; then echo "SIZE Manifest: $SIZE_MANIFEST; SIZE $SRC: $SIZE_SRC" exit $ERROR_MANIFEST else echo "Size match." fi # Check source code integrity for ALGO in md5 rmd160 sha1 sha256 sha512; do if [ $ALGO = "rmd160" ]; then ALGO_SRC="`openssl rmd160 $MANIFEST_FILE | awk '{ print $2 }'`" else ALGO_SRC="`"$ALGO"sum $MANIFEST_FILE | awk '{ print $1 }'`" fi ALGO="`echo $ALGO | tr '[:lower:]' '[:upper:]'`" ALGO_MANIFEST=$(echo $MANIFEST_LINE | sed "s/.* $ALGO //" | awk '{ print $1 }') if [ "$ALGO_SRC" != "$ALGO_MANIFEST" ]; then echo "$ALGO Manifest: $ALGO_MANIFEST; $ALGO $SRC: $ALGO_SRC" exit $ERROR_MANIFEST else echo "$ALGO match." fi done done else exit $ERROR_MANIFEST fi # Untar cd "$PKG_WORK" tar --no-same-owner --no-same-permissions -xvf "$SRC_DIR/$SRC" || exit $ERROR_TAR PKG_SRC="$PWD/`ls -l | awk '/^d/ { print $NF }'`" cd "$PKG_SRC" # Patch source patches=" [[PATCH URLS]] $PKG_NAME.diff $PKG_NAME-$PKG_VERSION.diff $PKG_NAME-$PKG_VERSION-$ARCH.diff $PKG_NAME-$ARCH.diff" for patch in $patches; do patch="`basename $patch`" if [ -f "$CWD/$patch" ]; then patch -Np1 < "$CWD/$patch" || exit $ERROR_PATCH elif [ -f "$CWD/patches/$patch" ]; then patch -Np1 < "$CWD/patches/$patch" || exit $ERROR_PATCH elif [ -f "$CWD/$patch.gz" ]; then gzip -dc "$CWD/$patch.gz" | patch -Np1 || exit $ERROR_PATCH elif [ -f "$CWD/patches/$patch.gz" ]; then gzip -dc "$CWD/patches/$patch.gz" | patch -Np1 || exit $ERROR_PATCH elif [ -f "$SRC_DIR/$patch" ]; then if [ "`basename $patch .gz`" != "$patch" ]; then gzip -dc $SRC_DIR/$patch | patch -Np1 || exit $ERROR_PATCH elif [ "`basename $patch .bz2`" != "$patch" ]; then bzip2 -dc $SRC_DIR/$patch | patch -Np1 || exit $ERROR_PATCH else patch -Np1 < "$SRC_DIR/$patch" || exit $ERROR_PATCH fi fi done # Configure CFLAGS="$SLKCFLAGS" \ CXXFLAGS="$SLKCFLAGS" \ ./configure \ --prefix="$PREFIX" --libdir="$LIBDIR" $CONF_OPTIONS || exit $ERROR_CONF # Compile make $NUMJOBS || exit $ERROR_MAKE # Install make install DESTDIR="$PKG" || exit $ERROR_INSTALL # Strip binaries ( cd "$PKG" find . | xargs file | grep "executable" | grep ELF | cut -f 1 -d : | \ xargs strip --strip-unneeded 2> /dev/null find . | xargs file | grep "shared object" | grep ELF | cut -f 1 -d : | \ xargs strip --strip-unneeded 2> /dev/null ) # Copy init scripts mkdir -p $PKG/etc/rc.d cp $CWD/rc.* $PKG/etc/rc.d/ # Install documentation DOCS="AUTHORS ChangeLog LICENSE README" mkdir -p "$PKG/usr/doc/$PKG_NAME-$PKG_VERSION" || exit $ERROR_MKDIR for doc in $DOCS; do if [ -f "$doc" ]; then cp -a $doc "$PKG/usr/doc/$PKG_NAME-$PKG_VERSION" fi done # Add package description (slack-desc) mkdir -p "$PKG/install" || exit $ERROR_MKDIR cat << EODESC > "$PKG/install/slack-desc" # HOW TO EDIT THIS FILE: # The "handy ruler" below makes it easier to edit a package description. Line # up the first '|' above the ':' following the base package name, and the '|' # on the right side marks the last column you can put a character in. You must # make exactly 11 lines for the formatting to be correct. It's also # customary to leave one space after the ':'. |-----handy-ruler----------------------------------------------------------| tor: tor (An anonymous Internet communication system) tor: tor: Tor is a toolset for a wide range of organizations and people that tor: want to improve their safety and security on the Internet. Using Tor tor: can help you anonymize web browsing and publishing, instant tor: messaging, IRC, SSH, and other applications that use the TCP tor: protocol. Tor also provides a platform on which software developers tor: can build new applications with built-in anonymity, safety, and tor: privacy features. tor: tor: EODESC # Move config files to .new to avoid overwriting any system config for config_file in etc/tor/tor-tsocks.conf; do mv $PKG/$config_file $PKG/$config_file.new done # Add a post-installation script (doinst.sh) mkdir -p "$PKG/install" || exit $ERROR_MKDIR cat << EOSCRIPT > "$PKG/install/doinst.sh" config() { NEW="\$1" OLD="\$(dirname \$NEW)/\$(basename \$NEW .new)" OLD="\$(dirname \$NEW)/\$(basename \$OLD .sample)" OLD="\$(dirname \$NEW)/\$(basename \$OLD .dist)" # If there's no config file by that name, mv it over: if [ ! -r \$OLD ]; then mv \$NEW \$OLD elif [ "\$(cat \$OLD | md5sum)" = "\$(cat \$NEW | md5sum)" ]; then # toss the redundant copy rm \$NEW fi # Otherwise, we leave the .new copy for the admin to consider... } mkgroup() { GROUP="\$1" if ! grep -qe "^\$GROUP:" etc/group; then echo Creating group \$GROUP... chroot . /usr/sbin/groupadd \$GROUP fi } mkuser() { USER="\$1" if [ ! -z "\$2" ]; then GROUP="\$2" else GROUP="\$USER" fi if ! grep -qe "^\$USER:" etc/passwd; then echo Creating user \$USER... chroot . /usr/sbin/useradd \$USER -g \$GROUP fi } config etc/rc.d/rc.tor.new ; config etc/tor/torrc.sample ; config etc/tor/tor-tsocks.conf.new EOSCRIPT # Copy slack-required mkdir -p "$PKG/install" || exit $ERROR_MKDIR if [ -f "$CWD/slack-required" ]; then cp $CWD/slack-required $PKG/install fi # Build the package cd "$PKG" mkdir -p $REPOS/$SLACKBUILD_PATH makepkg -l y -c n "$REPOS/$SLACKBUILD_PATH/$PKG_NAME-$PKG_VERSION-$ARCH-$BUILD.tgz" || exit $ERROR_MKPKG # Delete source and build directories if requested if [ "$CLEANUP" == "yes" ] || [ "$1" = "--cleanup" ]; then rm -rf "$PKG_WORK" "$PKG" fi