apparmor.d/PKGBUILD

# Maintainer: Alexandre Pujol <alexandre@pujol.io>
# shellcheck disable=SC2034,SC2154,SC2164

pkgname=apparmor.d
pkgver=21
pkgrel=1
pkgdesc="Full set of apparmor profiles"
arch=("any")
url="https://gitlab.com/archlex/hardening/$pkgname"
license=('GPL2')
depends=('apparmor')
makedepends=('bc')

pkgver() {
  echo "$pkgver + 0.01" | bc
}

prepare() {
  git clone "$startdir" "$srcdir/$pkgname"
  cd "$srcdir/$pkgname"

  ./configure --distribution=archlinux
}

package() {
  local _build='.build/apparmor.d'
  cd "$srcdir/$pkgname"

  # Install all files from root/
  mapfile -t root < <(find root -type f -printf "%P\n")
  for file in "${root[@]}"; do
    install -Dm0644 "root/$file" "$pkgdir/$file"
  done

  # Install all files from $_build
  mapfile -t build < <(find "$_build/" -type f -printf "%P\n")
  for file in "${build[@]}"; do
    install -Dm0644 "$_build/$file" "$pkgdir/etc/apparmor.d/$file"
  done

  # Ensure some systemd services do not start before apparmor rules are loaded
  for path in systemd/*; do
    service=$(basename "$path")
    install -Dm0644 "$path" \
      "$pkgdir/usr/lib/systemd/system/$service.d/apparmor.conf"
  done

  # Set special access rights
  chmod 0755 "$pkgdir"/usr/bin/*
}
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00			`# Maintainer: Alexandre Pujol <alexandre@pujol.io>`
			`# shellcheck disable=SC2034,SC2154,SC2164`

			`pkgname=apparmor.d`
New version scheme. 2021-04-10 18:17:23 +02:00			`pkgver=21`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00			`pkgrel=1`
			`pkgdesc="Full set of apparmor profiles"`
			`arch=("any")`
			`url="https://gitlab.com/archlex/hardening/$pkgname"`
			`license=('GPL2')`
			`depends=('apparmor')`
New version scheme. 2021-04-10 18:17:23 +02:00			`makedepends=('bc')`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00
			`pkgver() {`
Better install params. 2021-05-01 15:27:14 +02:00			`echo "$pkgver + 0.01" \| bc`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00			`}`

			`prepare() {`
Fix CI build. 2021-04-04 00:51:57 +02:00			`git clone "$startdir" "$srcdir/$pkgname"`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00			`cd "$srcdir/$pkgname"`

Remove flavor configuration. 2021-04-04 22:38:07 +02:00			`./configure --distribution=archlinux`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00			`}`

			`package() {`
Better install params. 2021-05-01 15:27:14 +02:00			`local _build='.build/apparmor.d'`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00			`cd "$srcdir/$pkgname"`

			`# Install all files from root/`
Better install params. 2021-05-01 15:27:14 +02:00			`mapfile -t root < <(find root -type f -printf "%P\n")`
			`for file in "${root[@]}"; do`
			`install -Dm0644 "root/$file" "$pkgdir/$file"`
			`done`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00
Better install params. 2021-05-01 15:27:14 +02:00			`# Install all files from $_build`
			`mapfile -t build < <(find "$_build/" -type f -printf "%P\n")`
			`for file in "${build[@]}"; do`
			`install -Dm0644 "$_build/$file" "$pkgdir/etc/apparmor.d/$file"`
			`done`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00
			`# Ensure some systemd services do not start before apparmor rules are loaded`
			`for path in systemd/*; do`
			`service=$(basename "$path")`
			`install -Dm0644 "$path" \`
			`"$pkgdir/usr/lib/systemd/system/$service.d/apparmor.conf"`
			`done`
Better install params. 2021-05-01 15:27:14 +02:00
			`# Set special access rights`
			`chmod 0755 "$pkgdir"/usr/bin/*`
Add PKGBUILD & ./configure 2021-04-02 19:12:15 +02:00			`}`