mirror of
https://github.com/pentoo/pentoo-overlay
synced 2026-04-18 04:40:56 +02:00
app-admin/opensnitch: add 1.6.0
Signed-off-by: Kai-Chun Ning <kaichun.ning@gmail.com>
This commit is contained in:
Kai-Chun Ning
parent
8b3208846f
commit
fc262c5fe7
3 changed files with 165 additions and 0 deletions
|
|
@ -9,6 +9,7 @@ DIST github.com-golang-text-v0.3.7.tar.gz 8354718 BLAKE2B 77eb1d08ff420e0d1fff4e
|
|||
DIST github.com-golang-text-v0.7.0.tar.gz 8361947 BLAKE2B 210702fc9b6cef7a66abc167705cd753aef285eeb679fcd221493d6a64053f33c9042f8156973419a760ca46b9f8abb55740a11ffb38b1fa7cad18dc9e99e9a8 SHA512 f22006d42a0e18ed7f2dcb6566f8ded8cacbd8cea7a475eff7ce581af07266eabc0b7577b3a34c8ea5cb2299d8bcfe78e41b631e4df1a6cff0f4b953b85294f9
|
||||
DIST github.com-google-gopacket-v1.1.14.tar.gz 748336 BLAKE2B f1fe54954b229fafe9cf18e6337f4222cdeb6d71cba0c5c3d0b04eae63952a039cc283eff580db3e79db49b827d64ee54e8d5e64a24546037400faf92c97f086 SHA512 fda58ad503e2547b0e09e511a2ffe5b2e6fa7ba1df3cbf26ae6e08075420586f0f1f553914ee969fcfbdd0a344e240a0d11ae85266c926f138d3efe6afa250b2
|
||||
DIST github.com-google-nftables-v0.1.0.tar.gz 76163 BLAKE2B fefdc09c55ffb817f74d2143815d56cbd306e04280fd1cdb9e7f936bf1cbe431fbebc6b36dd08428a48f7fe3e08d9db3356c47404f657509da7895cf65132d2a SHA512 8706ab05a3dd83f7188bc3f03b6e107bfd2ae89b6b1335e60184a1b7cf7a537c96cfffeaf89b4948b8f0c7071af63425c16cf1f352b086ee058aa65f282b4308
|
||||
DIST github.com-google-uuid-v1.3.0.tar.gz 16210 BLAKE2B 623277ba46440e058a989281b80b8aa6125b692c5cfbd3abe492adaef1e0c78fed5c6116e6944be6d83dc9f650bcdbb76a711ceeada273e626d3a1faaa76ca08 SHA512 5e79d3ca99dc5b94ec97481d9f440a64060f180482adcbbf5debd4e71e585db28dc8561f27d2d16db71a389126539a1950e5aca5ffcd9d702eccbdc0a5094a83
|
||||
DIST github.com-googleapis-go-genproto-0dfe4f8abfcc.tar.gz 6431647 BLAKE2B f23604cd72adfd820dec0aaf16ca3895049554767643a402f7dd65f564b747cfb65723aefd9a5e47a6cceba6cf2eaa24f66b5abe1b568e3456cd1fb29c91bd3a SHA512 5f0496378a2e32e13b1325f8d3a8a0ce6de3e716e1faea3387423f40be9042287541d1479b8bbbd9f0322ca4ce27903ba9ec6077de57fd9683d616889232556d
|
||||
DIST github.com-googleapis-go-genproto-325a89244dc8.tar.gz 12862283 BLAKE2B 6ac945d3b3ee959bab4b8bf59c11976cc7a0fa11e8f5ef6fbbf2ed04c05cf3f2b3e572893c148bb57bbce4e134e3fd8f8e11403987b3293e55317348fb92468e SHA512 b9d91610c4b39447ac56d40a4e7ad57f1c29f6a228aea6931daa1dd680a171a13bfa1a4ebb66f2c423b0d5aedcd232a3d51d6f0c6c8790f977d249129a0879f8
|
||||
DIST github.com-grpc-grpc-go-v1.32.0.tar.gz 1053458 BLAKE2B 34fdd17ef7edecc84df8fbcfaee653192fd370e98929e33ba7bff7ef0e6fa04e3befb3153ab23d4bd98eeecb3c714e77aac2c56d448eb99b1d2e03bfc1a39798 SHA512 004f6ba02a53c67051cfe595ab5ce2692a6ef878d55a48165bd601cdbd5fa3a8e4944ba1ca7f5dc4aafac76f85c23714f8f2cfce8d14ea705ef4897c70cfce29
|
||||
|
|
@ -21,11 +22,13 @@ DIST github.com-mdlayher-socket-41a913f399.tar.gz 20712 BLAKE2B 7a5eacf3f607450c
|
|||
DIST github.com-mdlayher-socket-57e3fa563ecb.tar.gz 9712 BLAKE2B 15cf127f26cfb6ca5cffbd7ccf043bffbb50a2079e4ce95f90e8137a218ee0d43bb9257b6dbc568c968303fbf5b007856d5c8b13d3f57396d681e74416e2f663 SHA512 5efab683ba60d4eab50811dce051ab3c2cc427483e9f6bb499f6b5a607c9a3f14fc187bb9e02654296d88f299645e45aa0709d2211a3af491a1ad12cded6d77e
|
||||
DIST github.com-protocolbuffers-protobuf-go-v1.26.0.tar.gz 1270215 BLAKE2B 96c9d80eac5558a2f3af8b018d498f03d6ce396951e68fc4f383aed04f571fbc1325d7bb8641de860454c4e1826a3a35852b724e85dfe04a30531ee592d9affc SHA512 18d3392fae131014e95961cc7490c8a4f0e0a7d95a18f0a469a9f2b119a1b89bf1952881950129e2b96ea4096b220ff8a3250736ca6efd5eca004f56db861844
|
||||
DIST github.com-protocolbuffers-protobuf-go-v1.27.1.tar.gz 1278521 BLAKE2B 1591dbfc5aae2360d69ca3e5e9247c4287114699f732d85011fb1c6b5daa3532d2218ce4ddf0390ffb23a3fd097ffa1b6bc418ba968dab98112a4522cc5fe93b SHA512 a0236bc88b963df0acc2a2c7c247334614b2d555f341e103fd06759665802069a320ced4ab51be658283cc816ec9f2d53ed98728895c5b8ce18954a17663264b
|
||||
DIST github.com-varlink-go-v0.4.0.tar.gz 28064 BLAKE2B ba9fa9b230878abde99b59841a67a04a26b5119a0e473273f83663f0a110206b36c39e8185da47689b6a2e61bf0c5232dd7954b152a8bc42882702dddfc92409 SHA512 a659f364e1d89a09c337902b46c25146495e83bf46cb877a125ed758c7b1c71206e5bc3067843f1f19929df8cdba3ba327f92d53ce24970dfa7017f7ff4207a6
|
||||
DIST github.com-vishvananda-netlink-e1a867c6b452.tar.gz 176331 BLAKE2B fa2eca75c1e66a035cfcbf6040382bc492960b5338762af93119646691303aff7a15481166a1040f0a0ad49a6048fd280ee3de4ee311065f10e5e4498e95044c SHA512 2db2037017f5db53dd820f234373516d319d20621c43445fb6aff4208bfb38912bbc64700ae6d9feff3048a3e959273fff00f02458a7973c49b177deecf0bf6f
|
||||
DIST github.com-vishvananda-netns-7a452d2d15.tar.gz 9748 BLAKE2B 2476dd583f84ee622f4ad00b495e5602348aeb8c7aef86ea6d88ef88d9483d836b1be49cf4e607fdbc50599c8b4dab13782f734900bc94a97f9db1bdc9ccd8a0 SHA512 b81c24996fbd6c1787d4cf629e7d8a04257d50ed9956a6fd8848c22c155bfc322370a3bed0b8d7681c52a72b9a9d7e86161620e090a7685a61b24fa0597f1e64
|
||||
DIST github.com-vishvananda-netns-db3c7e526aae.tar.gz 8281 BLAKE2B d74e12debc35118ccd55abc297e1dd39408c8817ffff06965840a984bd5552b45da42a8f89f91adabd2e27b9a32d7d823ae065834aa7ccd5376d4ab3d429738c SHA512 cc564db276cf3cabba1f7dacbb84e5a90d1b2545bddf69ea84c266dd730e11c3db00d40565c74bf67a2f065f0f8e0a797db53fcdbeeade8cd692178367ce3533
|
||||
DIST opensnitch-1.5.3.tar.gz 1034789 BLAKE2B 4bb947931c66799f576659d1c0de47d832f098c26b1d80235d21017270b1fdcb84fc08bc36c77c1deab285beda9dffe98420b17fea88fc374bb0bc3780d6c176 SHA512 26cd48af5867dbf905d742819bab3632e5d7b2df25661088d3c38e4db3641ecd79fb70e03f99a5ca74149926feb40935fa3ded586a49695bb2bad948a2c823e9
|
||||
DIST opensnitch-1.5.8.1.tar.gz 1054371 BLAKE2B 458a31deffec5e50db86151d71fcf950beec523d23a7939cb255391082cfe6ace5c5678f8b3129d7f03d4149bcba016fe0fb3c01371eccd85dcca4db965521a0 SHA512 1023268afb1a49f642ac072116f53dc9abc707c00e76b86f21c88becde62e34b69352ff3e9dbb59cc375d72bbdf3e1246021661ebe6f96a10b555e202847ab0e
|
||||
DIST opensnitch-1.5.8.tar.gz 1054833 BLAKE2B a4ff85524cbe533977cb7740d5c26202444f26286dcb2ebaf081111e6b6152148b0b76c0da7c43e50aeb6ff164ea9154e505c400fac8a292e116e15ba28d4ecf SHA512 d3027f1b84ead4ca870c3aa6442811e1cf1056a29429a069de35d73a3366b474d3d95e5cf8f3666dcf3277375af49e13794290d9914fbeec169d84e2dd610a04
|
||||
DIST opensnitch-1.6.0.tar.gz 1291940 BLAKE2B bc9e131f5cdf0631ca828ab41511e2852d2d694bafa5832204f28f38f1a4b0fc103d019267ad12bee84a3077dbca6acf279226fd679ee46f18fd1f24a49072f5 SHA512 4ff4ab840bc81c6df1d37d3390a7719141f583d5a8079561d0d07f5e67d3af5a7b13e0bf196fbe4b969183f63eb67f065a86c65d9c184f58b804efa4ad9a279c
|
||||
DIST opensnitch_amd64.o 10728 BLAKE2B 398f97a9136c8909955dc0ee2f258d2940b915fbd9142e97540813c977bb67cceb2cfc80df248512bc974960d0936c18c55496c1fd17e3176681560a52518047 SHA512 167b1913c0da8597079bee71063a084724b8326b3587ca91b7b72116ae8e998dae8871976fcb7b98135868ffe274d5d332dbacd53a0e47fb5510122b875674af
|
||||
DIST opensnitch_i386.o 10368 BLAKE2B 15b4abd5da8c2ab29f91b2fdefe6ee095dde09d1dcb3180339ba8ab567e29400e77598f1f969c7a4e9b23140564807c237d52b5601d84e2733b658fa9ccd1aaa SHA512 a8e493f4f62e706d0499fa92777ebd8339c925b1622a75595971ee53a3d73b653749a053c3c43bb4a0dc7b6baaed45442d458626c3731bcbc97af069e2b7b160
|
||||
|
|
|
|||
15
app-admin/opensnitch/files/opensnitch-1.6.0-systemd.patch
Normal file
15
app-admin/opensnitch/files/opensnitch-1.6.0-systemd.patch
Normal file
|
|
@ -0,0 +1,15 @@
|
|||
diff --git a/daemon/opensnitchd.service b/daemon/opensnitchd.service
|
||||
index 3f05fad..bf29739 100644
|
||||
--- a/daemon/opensnitchd.service
|
||||
+++ b/daemon/opensnitchd.service
|
||||
@@ -4,9 +4,7 @@ Documentation=https://github.com/evilsocket/opensnitch/wiki
|
||||
|
||||
[Service]
|
||||
Type=simple
|
||||
-PermissionsStartOnly=true
|
||||
-ExecStartPre=/bin/mkdir -p /etc/opensnitchd/rules
|
||||
-ExecStart=/usr/local/bin/opensnitchd -rules-path /etc/opensnitchd/rules
|
||||
+ExecStart=/usr/bin/opensnitchd -rules-path /etc/opensnitchd/rules -ui-socket unix:///tmp/osui.sock -cpu-profile /tmp/cpu.profile -mem-profile /tmp/mem.profile
|
||||
Restart=always
|
||||
RestartSec=30
|
||||
TimeoutStopSec=10
|
||||
147
app-admin/opensnitch/opensnitch-1.6.0.ebuild
Normal file
147
app-admin/opensnitch/opensnitch-1.6.0.ebuild
Normal file
|
|
@ -0,0 +1,147 @@
|
|||
# Copyright 1999-2023 Gentoo Authors
|
||||
# Distributed under the terms of the GNU General Public License v2
|
||||
|
||||
EAPI=7
|
||||
|
||||
PYTHON_COMPAT=( python3_{10..11} )
|
||||
inherit distutils-r1 linux-info systemd xdg-utils
|
||||
|
||||
DESCRIPTION="Desktop application firewall"
|
||||
HOMEPAGE="https://github.com/evilsocket/opensnitch"
|
||||
|
||||
EGO_PN="github.com/evilsocket/opensnitch"
|
||||
# modified from opensnitch/daemon/go.mod
|
||||
# NOTE: build fails with github.com/josharian/native after commit 5c7d0dd6ab
|
||||
EGO_VENDOR=(
|
||||
"github.com/fsnotify/fsnotify v1.4.7"
|
||||
"github.com/golang/protobuf v1.5.0"
|
||||
"github.com/google/gopacket v1.1.14"
|
||||
"github.com/google/nftables v0.1.0"
|
||||
"github.com/google/uuid v1.3.0"
|
||||
"github.com/iovisor/gobpf v0.2.0"
|
||||
"github.com/varlink/go v0.4.0"
|
||||
"github.com/vishvananda/netlink e1a867c6b452"
|
||||
"golang.org/x/net 491a49abca63 github.com/golang/net"
|
||||
"golang.org/x/sys v0.2.0 github.com/golang/sys"
|
||||
"google.golang.org/grpc v1.32.0 github.com/grpc/grpc-go"
|
||||
"google.golang.org/protobuf v1.27.1 github.com/protocolbuffers/protobuf-go"
|
||||
|
||||
"golang.org/x/sync v0.1.0 github.com/golang/sync"
|
||||
"golang.org/x/text v0.7.0 github.com/golang/text"
|
||||
"google.golang.org/genproto 0dfe4f8abfcc github.com/googleapis/go-genproto"
|
||||
"github.com/mdlayher/netlink v1.7.1"
|
||||
"github.com/mdlayher/socket 41a913f399"
|
||||
"github.com/josharian/native v1.1.0"
|
||||
"github.com/vishvananda/netns 7a452d2d15"
|
||||
)
|
||||
|
||||
inherit golang-vcs-snapshot
|
||||
|
||||
SRC_URI="
|
||||
https://github.com/evilsocket/opensnitch/archive/refs/tags/v${PV}.tar.gz -> ${P}.tar.gz
|
||||
${EGO_VENDOR_URI}
|
||||
"
|
||||
|
||||
LICENSE="GPL-3"
|
||||
SLOT="0"
|
||||
IUSE="bpf systemd"
|
||||
KEYWORDS="~amd64 ~x86"
|
||||
|
||||
DEPEND=">=dev-lang/go-1.19
|
||||
net-libs/libnetfilter_queue
|
||||
dev-go/go-protobuf
|
||||
dev-go/protoc-gen-go-grpc
|
||||
"
|
||||
RDEPEND="
|
||||
dev-python/grpcio-tools[${PYTHON_USEDEP}]
|
||||
dev-python/notify2[${PYTHON_USEDEP}]
|
||||
dev-python/python-slugify[${PYTHON_USEDEP}]
|
||||
dev-python/pyinotify[${PYTHON_USEDEP}]
|
||||
dev-python/PyQt5[sql,${PYTHON_USEDEP}]
|
||||
bpf? ( ~app-admin/opensnitch-ebpf-module-$PV )
|
||||
"
|
||||
|
||||
RESTRICT+=" test"
|
||||
|
||||
# needed by iptable rules
|
||||
CONFIG_CHECK="
|
||||
NETFILTER_XT_MATCH_CONNTRACK
|
||||
NETFILTER_XT_TARGET_NFQUEUE
|
||||
"
|
||||
|
||||
pkg_pretend() {
|
||||
linux-info_pkg_setup
|
||||
}
|
||||
|
||||
src_prepare() {
|
||||
rm -rf src/${EGO_PN}/ui/tests || die
|
||||
|
||||
if use systemd; then
|
||||
pushd ${WORKDIR}/${P}/src/${EGO_PN} > /dev/null || die
|
||||
eapply "${FILESDIR}/${P}-systemd.patch"
|
||||
popd > /dev/null || die
|
||||
fi
|
||||
|
||||
pushd src/${EGO_PN} > /dev/null || die
|
||||
eapply_user
|
||||
popd > /dev/null || die
|
||||
}
|
||||
|
||||
src_compile() {
|
||||
emake -C src/${EGO_PN} protocol
|
||||
|
||||
pushd src/${EGO_PN}/ui > /dev/null || die
|
||||
pyrcc5 -o opensnitch/{resources_rc.py,/res/resources.qrc}
|
||||
# workaround for namespace conflict
|
||||
# see https://github.com/evilsocket/opensnitch/issues/496
|
||||
# and https://github.com/evilsocket/opensnitch/pull/442
|
||||
sed -i 's/^import ui_pb2/from . import ui_pb2/' opensnitch/ui_pb2* || die
|
||||
popd > /dev/null || die
|
||||
|
||||
# see https://github.com/evilsocket/opensnitch/issues/851
|
||||
# opensnitch does not build without -fcf-protection when using go >= 1.19,
|
||||
# error message:
|
||||
# cgo: cannot load DWARF output from $WORK/..//_cgo_.o: zlib: invalid header
|
||||
GOPATH="${S}:$(get_golibdir_gopath)" \
|
||||
GOCACHE="${T}/go-cache" \
|
||||
CGO_CPPFLAGS="${CPPFLAGS} -fcf-protection" \
|
||||
CGO_CFLAGS="${CFLAGS} -fcf-protection" \
|
||||
CGO_CXXFLAGS="${CXXFLAGS} -fcf-protection" \
|
||||
go build -v \
|
||||
-buildmode=pie \
|
||||
-ldflags "-compressdwarf=false -linkmode external" \
|
||||
-o opensnitchd \
|
||||
"${EGO_PN}/daemon" || die
|
||||
|
||||
pushd src/${EGO_PN}/ui > /dev/null || die
|
||||
distutils-r1_src_compile
|
||||
popd > /dev/null || die
|
||||
}
|
||||
|
||||
src_install(){
|
||||
dobin opensnitchd
|
||||
|
||||
pushd src/${EGO_PN}/ui > /dev/null || die
|
||||
distutils-r1_src_install
|
||||
popd > /dev/null || die
|
||||
|
||||
pushd src/${EGO_PN}/daemon > /dev/null || die
|
||||
insinto /etc/opensnitchd/rules
|
||||
insinto /etc/opensnitchd/
|
||||
doins default-config.json
|
||||
doins system-fw.json
|
||||
|
||||
popd > /dev/null || die
|
||||
|
||||
if use systemd; then
|
||||
pushd src/${EGO_PN}/daemon > /dev/null || die
|
||||
systemd_dounit opensnitchd.service
|
||||
popd > /dev/null || die
|
||||
else
|
||||
newinitd "${FILESDIR}"/opensnitch.initd ${PN}
|
||||
fi
|
||||
}
|
||||
|
||||
pkg_postinst() {
|
||||
xdg_icon_cache_update
|
||||
}
|
||||
Loading…
Reference in a new issue