blob: f9192fecbd38e5c4c53c313d9fd6d61278f54aff (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
|
# Copyright 1999-2022 Gentoo Authors
# Distributed under the terms of the GNU General Public License v2
EAPI="7"
inherit linux-info toolchain-funcs
DESCRIPTION="helper binary and library for sandboxing & restricting privs of service"
HOMEPAGE="https://android.googlesource.com/platform/external/minijail"
# Use GitHub mirror as Gitiles doesn't generate stable tarballs.
SRC_URI="https://github.com/google/${PN}/archive/linux-v${PV}.tar.gz -> ${P}.tar.gz"
LICENSE="BSD"
SLOT="0"
KEYWORDS="~amd64 ~riscv ~x86"
IUSE="+seccomp test"
RESTRICT="!test? ( test )"
RDEPEND="sys-libs/libcap-ng:="
DEPEND="${RDEPEND}
test? (
virtual/pkgconfig
>=dev-cpp/gtest-1.8.0:=
)"
S="${WORKDIR}/${PN}-linux-v${PV}"
PATCHES=(
"${FILESDIR}/minijail-12-makefile.patch"
"${FILESDIR}/minijail-17-no-werror.patch"
)
pkg_pretend() {
local CONFIG_CHECK="~NAMESPACES ~UTS_NS ~IPC_NS ~USER_NS ~PID_NS ~NET_NS
~SECCOMP ~SECCOMP_FILTER ~CGROUPS"
check_extra_config
}
src_configure() {
export LIBDIR="/usr/$(get_libdir)"
export USE_seccomp="$(usex seccomp)"
export USE_SYSTEM_GTEST=yes
if use test; then
export GTEST_CXXFLAGS="$($(tc-getPKG_CONFIG) --cflags gtest_main)"
export GTEST_LIBS="$($(tc-getPKG_CONFIG) --libs gtest_main)"
else
export GTEST_CXXFLAGS='' GTEST_LIBS=''
fi
export VERBOSE=1
}
src_compile() {
tc-env_build emake all parse_seccomp_policy
}
src_test() {
GTEST_FILTER="-NamespaceTest.test_tmpfs_userns:NamespaceTest.test_namespaces" \
tc-env_build emake tests
}
src_install() {
dosbin minijail0
dolib.so libminijail{,preload}.so
dobin parse_seccomp_policy
doman minijail0.[15]
dodoc README.md
local include_dir="/usr/include"
"${S}"/platform2_preinstall.sh "${PV}" "${include_dir}"
insinto "/usr/$(get_libdir)/pkgconfig"
doins libminijail.pc
insinto "${include_dir}"
doins libminijail.h scoped_minijail.h
}
|