From: "Jason A. Donenfeld" <zx2c4@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Subject: [gentoo-commits] repo/gentoo:master commit in: app-crypt/tpm2-tss/, app-crypt/tpm2-tss/files/
Date: Mon, 18 May 2020 05:00:41 +0000 (UTC) [thread overview]
Message-ID: <1589777991.911b35667b9e66b5d29f0ef2927219cacabd2e30.zx2c4@gentoo> (raw)
commit: 911b35667b9e66b5d29f0ef2927219cacabd2e30
Author: Salah Coronya <salah.coronya <AT> gmail <DOT> com>
AuthorDate: Thu May 14 03:12:06 2020 +0000
Commit: Jason A. Donenfeld <zx2c4 <AT> gentoo <DOT> org>
CommitDate: Mon May 18 04:59:51 2020 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=911b3566
app-crypt/tpm2-tss: Fix sandbox violation for systemd users
Closes: https://bugs.gentoo.org/722864
Package-Manager: Portage-2.3.99, Repoman-2.3.22
Signed-off-by: Salah Coronya <salah.coronya <AT> gmail.com>
Signed-off-by: Jason A. Donenfeld <zx2c4 <AT> gentoo.org>
...-tss-2.4.0-Dont-run-systemd-sysusers-in-Makefile.patch | 15 +++++++++++++++
app-crypt/tpm2-tss/tpm2-tss-2.4.0.ebuild | 5 +++--
2 files changed, 18 insertions(+), 2 deletions(-)
diff --git a/app-crypt/tpm2-tss/files/tpm2-tss-2.4.0-Dont-run-systemd-sysusers-in-Makefile.patch b/app-crypt/tpm2-tss/files/tpm2-tss-2.4.0-Dont-run-systemd-sysusers-in-Makefile.patch
new file mode 100644
index 00000000000..c916bbf0133
--- /dev/null
+++ b/app-crypt/tpm2-tss/files/tpm2-tss-2.4.0-Dont-run-systemd-sysusers-in-Makefile.patch
@@ -0,0 +1,15 @@
+diff --git a/Makefile.am b/Makefile.am
+index c543a287..58187f7e 100644
+--- a/Makefile.am
++++ b/Makefile.am
+@@ -558,10 +558,6 @@ uninstall-local:
+ -rm $(DESTDIR)$(udevrulesdir)/$(udevrulesprefix)tpm-udev.rules
+ endif
+
+-# Create tss user and FAPI directories directly after installation (vs. after a reboot)
+-install-exec-hook:
+- systemd-sysusers && systemd-tmpfiles --create || true
+-
+ uninstall-hook:
+ cd $(DESTDIR)$(man3dir) && \
+ [ -L Tss2_TctiLdr_Initialize_Ex.3 ] && \
diff --git a/app-crypt/tpm2-tss/tpm2-tss-2.4.0.ebuild b/app-crypt/tpm2-tss/tpm2-tss-2.4.0.ebuild
index f8986d88dc9..76c8cc9bf6d 100644
--- a/app-crypt/tpm2-tss/tpm2-tss-2.4.0.ebuild
+++ b/app-crypt/tpm2-tss/tpm2-tss-2.4.0.ebuild
@@ -34,7 +34,8 @@ BDEPEND="virtual/pkgconfig
PATCHES=(
"${FILESDIR}/${PN}-2.4.0-fix-tmpfiles-path.patch"
-)
+ "${FILESDIR}/${PN}-2.4.0-Dont-run-systemd-sysusers-in-Makefile.patch"
+ )
pkg_setup() {
local CONFIG_CHECK=" \
@@ -57,7 +58,7 @@ src_configure() {
--with-runstatedir=/run \
--with-udevrulesdir="$(get_udevdir)/rules.d" \
--with-udevrulesprefix=60- \
- --with-sysusersdir="/usr/lib/sysusers.d"
+ --with-sysusersdir="/usr/lib/sysusers.d" \
--with-tmpfilesdir="/usr/lib/tmpfiles.d"
}
next reply other threads:[~2020-05-18 5:00 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-05-18 5:00 Jason A. Donenfeld [this message]
-- strict thread matches above, loose matches on Subject: below --
2025-01-07 19:54 [gentoo-commits] repo/gentoo:master commit in: app-crypt/tpm2-tss/, app-crypt/tpm2-tss/files/ Sam James
2024-05-22 17:11 Sam James
2024-03-08 18:28 Michał Górny
2023-06-27 9:42 David Seifert
2022-12-21 23:37 Sam James
2021-06-10 8:13 Joonas Niilola
2020-11-20 10:12 Joonas Niilola
2020-09-06 5:55 Joonas Niilola
2020-06-17 17:00 Joonas Niilola
2020-05-13 13:17 Joonas Niilola
2019-05-30 23:46 Alon Bar-Lev
2019-01-09 20:12 Alon Bar-Lev
2018-12-30 21:00 Alon Bar-Lev
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1589777991.911b35667b9e66b5d29f0ef2927219cacabd2e30.zx2c4@gentoo \
--to=zx2c4@gentoo.org \
--cc=gentoo-commits@lists.gentoo.org \
--cc=gentoo-dev@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox