From 2a9b0aa91b01577f161ac96f5fb2d4641d9706ec Mon Sep 17 00:00:00 2001
From: Britney Fransen <brfransen@gmail.com>
Date: Thu, 6 Aug 2015 20:09:57 +0000
Subject: hardening-wrapper: initial inclusion. dep of ffmpeg

---
 abs/extra/hardening-wrapper/PKGBUILD               | 26 ++++++++++++++++++++++
 .../hardening-wrapper/hardening-wrapper-i686.conf  |  6 +++++
 .../hardening-wrapper-x86_64.conf                  |  6 +++++
 abs/extra/hardening-wrapper/path.sh                |  1 +
 4 files changed, 39 insertions(+)
 create mode 100644 abs/extra/hardening-wrapper/PKGBUILD
 create mode 100644 abs/extra/hardening-wrapper/hardening-wrapper-i686.conf
 create mode 100644 abs/extra/hardening-wrapper/hardening-wrapper-x86_64.conf
 create mode 100644 abs/extra/hardening-wrapper/path.sh

diff --git a/abs/extra/hardening-wrapper/PKGBUILD b/abs/extra/hardening-wrapper/PKGBUILD
new file mode 100644
index 0000000..b863f7e
--- /dev/null
+++ b/abs/extra/hardening-wrapper/PKGBUILD
@@ -0,0 +1,26 @@
+# $Id$
+# Maintainer: Daniel Micay <danielmicay@gmail.com>
+pkgname=hardening-wrapper
+pkgver=10
+pkgrel=1
+pkgdesc='Wrapper scripts for building hardened executables by default'
+arch=(i686 x86_64)
+url='https://github.com/thestinger/hardening-wrapper'
+license=('MIT')
+depends=(bash)
+backup=(etc/hardening-wrapper.conf)
+source=("$pkgname-$pkgver.tar.gz::https://github.com/thestinger/hardening-wrapper/archive/$pkgver.tar.gz"
+        path.sh hardening-wrapper-i686.conf hardening-wrapper-x86_64.conf)
+sha1sums=('61e8c7e3062e6830cd7b190aa6b81834138a7137'
+          '1e5f6d9931f01b26bb4b6fbb839e21d34d534cdc'
+          '6729f0a6d2af72b6def9383e8104d0f763d3f01d'
+          '9453d7984a4a90aa884a51a7bf1bd2c72cbddc9f')
+
+package() {
+  install -Dm644 hardening-wrapper-${CARCH}.conf "$pkgdir/etc/hardening-wrapper.conf"
+  install -Dm644 path.sh "$pkgdir/etc/profile.d/hardening-wrapper.sh"
+
+  cd $pkgname-$pkgver
+  make install DESTDIR="$pkgdir" PREFIX=/usr
+  install -Dm644 LICENSE "$pkgdir/usr/share/licenses/$pkgname/LICENSE"
+}
diff --git a/abs/extra/hardening-wrapper/hardening-wrapper-i686.conf b/abs/extra/hardening-wrapper/hardening-wrapper-i686.conf
new file mode 100644
index 0000000..5bc97ed
--- /dev/null
+++ b/abs/extra/hardening-wrapper/hardening-wrapper-i686.conf
@@ -0,0 +1,6 @@
+HARDENING_BINDNOW=0
+HARDENING_PIE=0
+HARDENING_FORTIFY=2
+HARDENING_RELRO=1
+HARDENING_STACK_CHECK=1
+HARDENING_STACK_PROTECTOR=2
diff --git a/abs/extra/hardening-wrapper/hardening-wrapper-x86_64.conf b/abs/extra/hardening-wrapper/hardening-wrapper-x86_64.conf
new file mode 100644
index 0000000..15d4fd1
--- /dev/null
+++ b/abs/extra/hardening-wrapper/hardening-wrapper-x86_64.conf
@@ -0,0 +1,6 @@
+HARDENING_BINDNOW=0
+HARDENING_PIE=1
+HARDENING_FORTIFY=2
+HARDENING_RELRO=1
+HARDENING_STACK_CHECK=1
+HARDENING_STACK_PROTECTOR=2
diff --git a/abs/extra/hardening-wrapper/path.sh b/abs/extra/hardening-wrapper/path.sh
new file mode 100644
index 0000000..640ab75
--- /dev/null
+++ b/abs/extra/hardening-wrapper/path.sh
@@ -0,0 +1 @@
+export PATH="/usr/lib/hardening-wrapper/bin:$PATH"
-- 
cgit v0.12