diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..b82045c --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +/star-1.5.3.tar.bz2 diff --git a/EMPTY b/EMPTY deleted file mode 100644 index 0519ecb..0000000 --- a/EMPTY +++ /dev/null @@ -1 +0,0 @@ - \ No newline at end of file diff --git a/sources b/sources new file mode 100644 index 0000000..5823060 --- /dev/null +++ b/sources @@ -0,0 +1 @@ +SHA512 (star-1.5.3.tar.bz2) = 622032a0e87f3df06ab1091af0af99d0362f478f70351cfe3d47195eec0fcc96f458fb6e50cae3531183984b1d390b598176ce008bcc5f29764795f66436efef diff --git a/star-1.5-changewarnSegv.patch b/star-1.5-changewarnSegv.patch new file mode 100644 index 0000000..74d4870 --- /dev/null +++ b/star-1.5-changewarnSegv.patch @@ -0,0 +1,80 @@ +--- star-1.5/star/checkerr.c.orig-segv 2006-10-31 18:06:25.000000000 +0100 ++++ star-1.5/star/checkerr.c 2007-08-27 11:42:39.000000000 +0200 +@@ -183,39 +183,45 @@ LOCAL struct eflags { + */ + LOCAL UInt32_t + errflags(eflag, doexit) +- char *eflag; +- BOOL doexit; ++ char *eflag; ++ BOOL doexit; + { +- register char *p = eflag; +- char *ef = _endword(eflag); +- register struct eflags *ep; +- register int slen; +- register UInt32_t nflags = 0; +- +- do { +- for (ep = eflags; ep->fname; ep++) { +- slen = strlen(ep->fname); +- if ((strncmp(ep->fname, p, slen) == 0) && +- (p[slen] == '|' || p[slen] == ' ' || +- p[slen] == '\0')) { +- nflags |= ep->fval; +- break; +- } +- } +- if (ep->fname == NULL) { +- if (doexit) +- comerrno(EX_BAD, "Bad flag '%s'\n", p); +- return (0); +- } +- p = strchr(p, '|'); +- } while (p < ef && p && *p++ == '|'); +- +- if ((nflags & ~(UInt32_t)(E_ABORT|E_WARN)) == 0) { +- if (doexit) +- comerrno(EX_BAD, "Bad error condition '%s'.\n", eflag); +- return (0); +- } +- return (nflags); ++ register struct eflags *ep; ++ register int slen; ++ register UInt32_t nflags = 0; ++ char *curflags; ++ char *curflag; ++ ++ curflags = strdup (eflag); ++ *_endword(curflags) = '\0'; ++ curflag = strtok (curflags, "|"); ++ ++ while (curflag != NULL) { ++ for (ep = eflags; ep->fname; ep++) { ++ slen = strlen (ep->fname); ++ if ((strncmp (ep->fname, curflag, slen)) == 0) { ++ nflags |= ep->fval; ++ goto next; ++ } ++ } ++ ++ if (doexit) ++ comerrno (EX_BAD, "Bad flag '%s' \n", curflag); ++ ++ free (curflags); ++ return (0); ++ next: ++ curflag = strtok (NULL, "|"); ++ } ++ ++ free (curflags); ++ ++ if ((nflags & ~(UInt32_t)(E_ABORT|E_WARN)) == 0) { ++ if (doexit) ++ comerrno(EX_BAD, "Bad error condition '%s'.\n", eflag); ++ return (0); ++ } ++ return (nflags); + } + + LOCAL ec_t * diff --git a/star-1.5.1-crc.patch b/star-1.5.1-crc.patch new file mode 100644 index 0000000..5ab42ad --- /dev/null +++ b/star-1.5.1-crc.patch @@ -0,0 +1,31 @@ +diff --git a/star/cpiohdr.c b/star/cpiohdr.c +index 9c7a774..2785661 100644 +--- a/star/cpiohdr.c ++++ b/star/cpiohdr.c +@@ -536,7 +536,9 @@ cpio_checkswab(ptb) + } + + /* +- * This simple sum is used for the SYSvr4 file content CRC ++ * This simple sum is used for the SYSvr4 file content checksum. This is ++ * implemented like Sum32 algorithm. ++ * + * Use Int32_t to implement the same behavior as the AT&T cpio command. + */ + LOCAL Int32_t +diff --git a/star/star.1 b/star/star.1 +index 95b202c..a931a6f 100644 +--- a/star/star.1 ++++ b/star/star.1 +@@ -913,9 +913,9 @@ archive format because of its limited portability. + .B crc + This format is similar to the + .B asc +-cpio format but in addition uses a simple byte based checksum called ++cpio format but in addition uses a simple byte based checksum called here as + .BR CRC . +-Try to avoid the ++This algorithm is simple Sum32 -- not a polynomial CRC. Try to avoid the + .B crc + archive format because of its limited portability. + diff --git a/star-1.5.1-manpagereferences.patch b/star-1.5.1-manpagereferences.patch new file mode 100644 index 0000000..43b25fe --- /dev/null +++ b/star-1.5.1-manpagereferences.patch @@ -0,0 +1,56 @@ +diff -urNp star-1.5.1-orig/star/spax.1 star-1.5.1/star/spax.1 +--- star-1.5.1-orig/star/spax.1 2009-04-10 23:51:50.000000000 +0200 ++++ star-1.5.1/star/spax.1 2010-08-17 13:32:38.246788583 +0200 +@@ -4043,7 +4043,7 @@ Interfaces volume of IEEE Std 1003.1-200 + .BR chown (2), + .BR creat (2), + .BR mkdir (2), +-.BR mkfifo (2), ++.BR mkfifo (3), + .BR stat (2), + .BR utime (2), + .BR write (2). +@@ -4095,7 +4095,7 @@ entry is added to the ENVIRONMENT VARIAB + IEEE PASC Interpretation 1003.2 #168 is applied, clarifying that + .BR mkdir (2) + and +-.BR mkfifo (2) ++.BR mkfifo (3) + calls can ignore an [EEXIST] error when + extracting an archive. + .PP +diff -urNp star-1.5.1-orig/star/star.1 star-1.5.1/star/star.1 +--- star-1.5.1-orig/star/star.1 2009-06-02 20:49:21.000000000 +0200 ++++ star-1.5.1/star/star.1 2010-08-17 13:34:50.524789662 +0200 +@@ -4615,20 +4615,18 @@ cron script). + Is used for the intercative user interface. + .SH "SEE ALSO" + .BR spax (1), +-.BR suntar (1), +-.BR scpio (1), + .BR tar (1), + .BR cpio (1), + .BR pax (1), + .BR rcp (1), + .BR mt (1), +-.BR rmt (1), ++.BR rmt (8), + .BR match (1), + .BR dd (1), + .BR sdd (1), + .BR rsh (1), + .BR ssh (1), +-.BR star (4/5), ++.BR star (4), + .BR rcmd (3), + .BR fssnap (1m) + .SH DIAGNOSTICS +@@ -4951,7 +4949,7 @@ is installed suid root, + .B star + is able to make connections to remote archives for non root users. + This is done by using the +-rcmd(3) interface to get a connection to a rmt(1) server. ++rcmd(3) interface to get a connection to a rmt(8) server. + .PP + .B Star + resets its effective uid back to the real user id immediately after setting up diff --git a/star-1.5.1-selinux-segfault.patch b/star-1.5.1-selinux-segfault.patch new file mode 100644 index 0000000..70e630d --- /dev/null +++ b/star-1.5.1-selinux-segfault.patch @@ -0,0 +1,13 @@ +diff --git a/star/xattr.c b/star/xattr.c +index 6493447..4034287 100644 +--- a/star/xattr.c ++++ b/star/xattr.c +@@ -202,7 +202,7 @@ setselinux(info) + register FINFO *info; + { + #if defined(USE_XATTR) && defined(HAVE_SETXATTR) && defined(WITH_SELINUX) +- if (info->f_xattr) { ++ if (info->f_xflags & XF_XATTR) { + star_xattr_t *xap; + for (xap = info->f_xattr; xap->name != NULL; xap++) { + if (strcmp(xap->name, "security.selinux") == 0) { diff --git a/star-1.5.2-bufferoverflow.patch b/star-1.5.2-bufferoverflow.patch new file mode 100644 index 0000000..33d31cb --- /dev/null +++ b/star-1.5.2-bufferoverflow.patch @@ -0,0 +1,22 @@ +diff --git a/star/longnames.c b/star/longnames.c +index 33cbe2a..9d2e303 100644 +--- a/star/longnames.c ++++ b/star/longnames.c +@@ -155,7 +155,7 @@ name_to_tcb(info, ptb) + if (add) + strcatl(ptb->ndbuf.t_name, name, "/", (char *)NULL); + else +- strcpy(ptb->ndbuf.t_name, name); ++ strncpy(ptb->ndbuf.t_name, name, props.pr_maxsname); + return (TRUE); + } + +@@ -198,7 +198,7 @@ name_to_tcb(info, ptb) + if (add) + strcatl(ptb->ndbuf.t_name, &np[1], "/", (char *)NULL); + else +- strcpy(ptb->ndbuf.t_name, &np[1]); ++ strncpy(ptb->ndbuf.t_name, &np[1], props.pr_maxsname); + strncpy(ptb->dbuf.t_prefix, name, np - name); + info->f_flags |= F_SPLIT_NAME; + return (TRUE); diff --git a/star-1.5.2-rmt-rh-access.patch b/star-1.5.2-rmt-rh-access.patch new file mode 100644 index 0000000..88b9c88 --- /dev/null +++ b/star-1.5.2-rmt-rh-access.patch @@ -0,0 +1,18 @@ +diff --git a/rmt/rmt.dfl b/rmt/rmt.dfl +index 7b8ca8b..e0576e8 100644 +--- a/rmt/rmt.dfl ++++ b/rmt/rmt.dfl +@@ -44,7 +44,9 @@ USER=* + # name name + # + #ACCESS=rtape sparky /dev/rmt/* +-ACCESS=* * /dev/rmt/* +-ACCESS=* * /dev/null +-ACCESS=* * /dev/zero +-#ACCESS=* * * ++#ACCESS=* * /dev/rmt/* ++#ACCESS=* * /dev/null ++#ACCESS=* * /dev/zero ++ ++# Historically, Red Hat rmt was not so ^^ restrictive. ++ACCESS=* * * diff --git a/star-1.5.2-use-ssh-by-default.patch b/star-1.5.2-use-ssh-by-default.patch new file mode 100644 index 0000000..1ccc321 --- /dev/null +++ b/star-1.5.2-use-ssh-by-default.patch @@ -0,0 +1,13 @@ +diff --git a/librmt/remote.c b/librmt/remote.c +index 4606484..298ecef 100644 +--- a/librmt/remote.c ++++ b/librmt/remote.c +@@ -1462,7 +1462,7 @@ _rcmdrsh(ahost, inport, locuser, remuser, cmd, rsh) + int pid; + + if (rsh == 0) +- rsh = "rsh"; ++ rsh = "ssh"; + + /* + * Verify that 'locuser' is present on local host. diff --git a/star-1.5.3-default-acl.patch b/star-1.5.3-default-acl.patch new file mode 100644 index 0000000..f95bdfd --- /dev/null +++ b/star-1.5.3-default-acl.patch @@ -0,0 +1,13 @@ +--- acl_unix.c 2018-08-01 12:01:04.218237606 +0200 ++++ star-1.5.3/star/acl_unix.c 2014-03-31 19:44:46.000000000 +0200 +@@ -505,7 +505,7 @@ + } + + if (info->f_xflags & XF_ACL_DEFAULT) { +- ssize_t len = strlen(info->f_acl_access) + 2; ++ ssize_t len = strlen(info->f_acl_default) + 2; + + if (len > aclps.ps_size) { + if (aclps.ps_path == acltext) { + + diff --git a/star-1.5.3-pax-X-option.patch b/star-1.5.3-pax-X-option.patch new file mode 100644 index 0000000..d059499 --- /dev/null +++ b/star-1.5.3-pax-X-option.patch @@ -0,0 +1,26 @@ +From 68f6e16d7d2c8a6c91cd430b12a1a0c7b15672b4 Mon Sep 17 00:00:00 2001 +From: Pavel Raiskup +Date: Wed, 17 Dec 2014 12:57:37 +0100 +Subject: [PATCH] pax: don't segfault with -X option + +Pass a valid address of nomount variable into getallargs(). +--- + star/pax.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/star/pax.c b/star/pax.c +index 9abe3f8..c627a46 100644 +--- a/star/pax.c ++++ b/star/pax.c +@@ -166,7 +166,7 @@ gargs(ac, av) + gethdr, &chdrtype, /* -x */ + gethdr, &chdrtype, /* artype= */ + #endif /* __old__lint */ +- nomount) < 0) { ++ &nomount) < 0) { + errmsgno(EX_BAD, "Bad Option: %s.\n", av[0]); + susage(EX_BAD); + } +-- +2.1.0 + diff --git a/star-1.5.3-selinux.patch b/star-1.5.3-selinux.patch new file mode 100644 index 0000000..2787af1 --- /dev/null +++ b/star-1.5.3-selinux.patch @@ -0,0 +1,273 @@ +diff --git a/autoconf/configure.in b/autoconf/configure.in +index fc9f880..30383e4 100644 +--- a/autoconf/configure.in ++++ b/autoconf/configure.in +@@ -906,6 +906,15 @@ LIBS="$LIBS $lib_cap" + AC_CHECK_FUNCS(cap_get_proc cap_set_proc cap_set_flag cap_clear_flag) + LIBS="$ac_save_LIBS" + ++AC_CHECK_HEADERS(selinux/selinux.h) ++if test "$ac_cv_header_selinux_selinux_h" = yes; then ++ AC_CHECKING(for SELinux support) ++ AC_CHECK_LIB(selinux, is_selinux_enabled, lib_selinux="-lselinux -lattr") ++ ac_save_LIBS="$LIBS" ++ LIBS="$LIBS $lib_selinux" ++ AC_CHECK_FUNCS(is_selinux_enabled) ++fi ++ + dnl Misc OS checks. + AC_CHECK_FILES(/dev/tty /dev/null /dev/zero) + AC_CHECK_FILES(/dev/stdin /dev/stdout /dev/stderr) +@@ -992,6 +1001,7 @@ AC_SUBST(lib_secdb) + AC_SUBST(lib_gen) + AC_SUBST(lib_pthread) + AC_SUBST(lib_rt) ++AC_SUBST(lib_selinux) + AC_SUBST(lib_dl) + AC_SUBST(lib_dir) + AC_SUBST(lib_cap) +diff --git a/autoconf/rules.cnf.in b/autoconf/rules.cnf.in +index affcb5c..2b7bff2 100644 +--- a/autoconf/rules.cnf.in ++++ b/autoconf/rules.cnf.in +@@ -34,6 +34,7 @@ LIB_SECDB = @lib_secdb@ + LIB_GEN = @lib_gen@ + LIB_PTHREAD = @lib_pthread@ + LIB_RT = @lib_rt@ ++LIB_SELINUX = @lib_selinux@ + LIB_DL= @lib_dl@ + LIB_DIR= @lib_dir@ + LIB_CAP= @lib_cap@ +diff --git a/star/cpio.mk b/star/cpio.mk +index 37a6dd2..8bfc3bd 100644 +--- a/star/cpio.mk ++++ b/star/cpio.mk +@@ -19,6 +19,7 @@ CPPOPTS += -DUSE_FIND + CPPOPTS += -DUSE_ACL + CPPOPTS += -DUSE_XATTR + CPPOPTS += -DUSE_FFLAGS ++CPPOPTS += -DWITH_SELINUX + CPPOPTS += -DSCHILY_PRINT + CFILES= cpio.c header.c cpiohdr.c xheader.c xattr.c \ + list.c extract.c create.c append.c diff.c restore.c \ +@@ -34,7 +35,7 @@ CFILES= cpio.c header.c cpiohdr.c xheader.c xattr.c \ + HFILES= star.h starsubs.h dirtime.h xtab.h xutimes.h \ + movearch.h table.h props.h fifo.h diff.h \ + checkerr.h dumpdate.h bitstring.h pathname.h +-LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) ++LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) $(LIB_SELINUX) + XMK_FILE= scpioman.mk + + ########################################################################### +diff --git a/star/extract.c b/star/extract.c +index cf60154..98842e1 100644 +--- a/star/extract.c ++++ b/star/extract.c +@@ -256,6 +256,17 @@ extern struct WALK walkstate; + continue; + } + #endif ++ ++#ifdef WITH_SELINUX ++ if (!to_stdout && selinux_enabled) { ++ if (setselinux(&finfo) == FALSE) { ++ errmsgno(EX_BAD, ++ "Can not setup security context for '%s'. Not created.\n", ++ finfo.f_name); ++ } ++ } ++#endif ++ + if (finfo.f_flags & F_BAD_META) { + if (!void_bad(&finfo)) + break; +diff --git a/star/gnutar.mk b/star/gnutar.mk +index 1a296e1..6595aa2 100644 +--- a/star/gnutar.mk ++++ b/star/gnutar.mk +@@ -19,6 +19,7 @@ CPPOPTS += -DUSE_FIND + CPPOPTS += -DUSE_ACL + CPPOPTS += -DUSE_XATTR + CPPOPTS += -DUSE_FFLAGS ++CPPOPTS += -DWITH_SELINUX + CPPOPTS += -DSCHILY_PRINT + CFILES= gnutar.c header.c cpiohdr.c xheader.c xattr.c \ + list.c extract.c create.c append.c diff.c restore.c \ +@@ -34,7 +35,7 @@ CFILES= gnutar.c header.c cpiohdr.c xheader.c xattr.c \ + HFILES= star.h starsubs.h dirtime.h xtab.h xutimes.h \ + movearch.h table.h props.h fifo.h diff.h \ + checkerr.h dumpdate.h bitstring.h pathname.h +-LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) ++LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) $(LIB_SELINUX) + XMK_FILE= gnutarman.mk + + ########################################################################### +diff --git a/star/pax.mk b/star/pax.mk +index 73c6bc1..d2a52a9 100644 +--- a/star/pax.mk ++++ b/star/pax.mk +@@ -19,6 +19,7 @@ CPPOPTS += -DUSE_FIND + CPPOPTS += -DUSE_ACL + CPPOPTS += -DUSE_XATTR + CPPOPTS += -DUSE_FFLAGS ++CPPOPTS += -DWITH_SELINUX + CPPOPTS += -DPAX + CPPOPTS += -DSCHILY_PRINT + CFILES= pax.c header.c cpiohdr.c xheader.c xattr.c \ +@@ -35,7 +36,7 @@ CFILES= pax.c header.c cpiohdr.c xheader.c xattr.c \ + HFILES= star.h starsubs.h dirtime.h xtab.h xutimes.h \ + movearch.h table.h props.h fifo.h diff.h \ + checkerr.h dumpdate.h bitstring.h pathname.h +-LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) ++LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) $(LIB_SELINUX) + XMK_FILE= spaxman.mk + + ########################################################################### +diff --git a/star/star.c b/star/star.c +index 9dfcef7..464c751 100644 +--- a/star/star.c ++++ b/star/star.c +@@ -48,6 +48,10 @@ static UConst char sccsid[] = + #include "starsubs.h" + #include "checkerr.h" + ++#ifdef WITH_SELINUX ++int selinux_enabled=0; ++#endif ++ + EXPORT int main __PR((int ac, char **av)); + LOCAL void star_create __PR((int ac, char *const *av)); + LOCAL void checkdumptype __PR((GINFO *gp)); +@@ -402,6 +406,10 @@ main(ac, av) + comerr("Panic cannot set back effective uid.\n"); + } + my_uid = geteuid(); ++ ++#ifdef WITH_SELINUX ++ selinux_enabled=is_selinux_enabled()>0; ++#endif + /* + * WARNING: We now are no more able to open a new remote connection + * unless we have been called by root. +diff --git a/star/star.mk b/star/star.mk +index a6f6cff..68d3482 100644 +--- a/star/star.mk ++++ b/star/star.mk +@@ -21,6 +21,7 @@ CPPOPTS += -DUSE_XATTR + CPPOPTS += -DUSE_FFLAGS + CPPOPTS += -DCOPY_LINKS_DELAYED + CPPOPTS += -DSCHILY_PRINT ++CPPOPTS += -DWITH_SELINUX + CFILES= star.c header.c cpiohdr.c xheader.c xattr.c \ + list.c extract.c create.c append.c diff.c restore.c \ + remove.c star_unix.c acl_unix.c acltext.c fflags.c \ +@@ -35,7 +36,7 @@ CFILES= star.c header.c cpiohdr.c xheader.c xattr.c \ + HFILES= star.h starsubs.h dirtime.h xtab.h xutimes.h \ + movearch.h table.h props.h fifo.h diff.h restore.h \ + checkerr.h dumpdate.h bitstring.h +-LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) ++LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_SELINUX) + XMK_FILE= Makefile.man starformatman.mk + + ########################################################################### +diff --git a/star/star_fat.mk b/star/star_fat.mk +index 1975c94..507fbee 100644 +--- a/star/star_fat.mk ++++ b/star/star_fat.mk +@@ -29,6 +29,7 @@ CPPOPTS += -DUSE_FFLAGS + CPPOPTS += -DCOPY_LINKS_DELAYED + CPPOPTS += -DSTAR_FAT + CPPOPTS += -DSCHILY_PRINT ++CPPOPTS += -DWITH_SELINUX + CFILES= star_fat.c header.c cpiohdr.c xheader.c xattr.c \ + list.c extract.c create.c append.c diff.c restore.c \ + remove.c star_unix.c acl_unix.c acltext.c fflags.c \ +@@ -48,7 +49,7 @@ HFILES= star.h starsubs.h dirtime.h xtab.h xutimes.h \ + + #LIBS= -lunos + #LIBS= -lschily -lc /usr/local/lib/gcc-gnulib +-LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) ++LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_SELINUX) + # + # Wenn -lfind, dann auch $(LIB_INTL) + # +diff --git a/star/starsubs.h b/star/starsubs.h +index a914ade..1e2a233 100644 +--- a/star/starsubs.h ++++ b/star/starsubs.h +@@ -317,6 +317,11 @@ extern void opt_xattr __PR((void)); + extern BOOL get_xattr __PR((register FINFO *info)); + extern BOOL set_xattr __PR((register FINFO *info)); + extern void free_xattr __PR((star_xattr_t **xattr)); ++# ifdef WITH_SELINUX ++#include ++extern BOOL setselinux __PR((register FINFO *info)); ++extern int selinux_enabled; ++# endif + #endif + + /* +diff --git a/star/suntar.mk b/star/suntar.mk +index 9b76a23..1842917 100644 +--- a/star/suntar.mk ++++ b/star/suntar.mk +@@ -19,6 +19,7 @@ CPPOPTS += -DUSE_FIND + CPPOPTS += -DUSE_ACL + CPPOPTS += -DUSE_XATTR + CPPOPTS += -DUSE_FFLAGS ++CPPOPTS += -DWITH_SELINUX + CPPOPTS += -DSCHILY_PRINT + CFILES= suntar.c header.c cpiohdr.c xheader.c xattr.c \ + list.c extract.c create.c append.c diff.c restore.c \ +@@ -34,7 +35,7 @@ CFILES= suntar.c header.c cpiohdr.c xheader.c xattr.c \ + HFILES= star.h starsubs.h dirtime.h xtab.h xutimes.h \ + movearch.h table.h props.h fifo.h diff.h \ + checkerr.h dumpdate.h bitstring.h pathname.h +-LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) ++LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_CAP) $(LIB_SELINUX) + XMK_FILE= suntarman.mk + + ########################################################################### +diff --git a/star/xattr.c b/star/xattr.c +index 2e262ef..08fc42e 100644 +--- a/star/xattr.c ++++ b/star/xattr.c +@@ -198,6 +198,27 @@ fail: + #endif /* USE_XATTR */ + } + ++#ifdef WITH_SELINUX ++EXPORT BOOL ++setselinux(info) ++ register FINFO *info; ++{ ++#if defined(USE_XATTR) && defined(HAVE_SETXATTR) && defined(WITH_SELINUX) ++ if (info->f_xattr) { ++ star_xattr_t *xap; ++ for (xap = info->f_xattr; xap->name != NULL; xap++) { ++ if (strcmp(xap->name, "security.selinux") == 0) { ++ if (setfscreatecon(xap->value)) { ++ return FALSE; ++ } ++ } ++ } ++ } ++#endif /* USE_XATTR && WITH_SELINUX */ ++ return TRUE; ++} ++#endif ++ + /* ARGSUSED */ + EXPORT BOOL + set_xattr(info) +@@ -211,6 +232,10 @@ set_xattr(info) + return (TRUE); + + for (xap = info->f_xattr; xap->name != NULL; xap++) { ++#ifdef WITH_SELINUX ++ if (selinux_enabled && (strcmp(xap->name, "security.selinux") == 0)) ++ continue; ++#endif + if (lsetxattr(info->f_name, xap->name, xap->value, + xap->value_len, 0) != 0) { + if (!errhidden(E_SETXATTR, info->f_name)) { diff --git a/star-1.5.3-star-mk.patch b/star-1.5.3-star-mk.patch new file mode 100644 index 0000000..577c451 --- /dev/null +++ b/star-1.5.3-star-mk.patch @@ -0,0 +1,19 @@ +diff --git a/star/star.mk b/star/star.mk +index 68d3482..4961a29 100644 +--- a/star/star.mk ++++ b/star/star.mk +@@ -32,11 +32,11 @@ CFILES= star.c header.c cpiohdr.c xheader.c xattr.c \ + subst.c volhdr.c \ + chdir.c match.c defaults.c dumpdate.c \ + fifo.c device.c checkerr.c \ +- findinfo.c ++ findinfo.c pathname.c + HFILES= star.h starsubs.h dirtime.h xtab.h xutimes.h \ + movearch.h table.h props.h fifo.h diff.h restore.h \ +- checkerr.h dumpdate.h bitstring.h +-LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_SELINUX) ++ checkerr.h dumpdate.h bitstring.h pathname.h ++LIBS= -ldeflt -lrmt -lfind -lschily $(LIB_ACL) $(LIB_ATTR) $(LIB_SOCKET) $(LIB_INTL) $(LIB_SELINUX) $(LIB_CAP) + XMK_FILE= Makefile.man starformatman.mk + + ########################################################################### diff --git a/star.spec b/star.spec new file mode 100644 index 0000000..20590b2 --- /dev/null +++ b/star.spec @@ -0,0 +1,525 @@ +%if %{?WITH_SELINUX:0}%{!?WITH_SELINUX:1} +%global WITH_SELINUX 1 +%endif + +%global ALTERNATIVES %{_sbindir}/alternatives + +Summary: An archiving tool with ACL support +Name: star +Version: 1.5.3 +Release: 13%{?dist} +License: CDDL +Group: Applications/Archiving +URL: http://freecode.com/projects/star +Source: http://downloads.sourceforge.net/s-tar/%{name}-%{version}.tar.bz2 + +# add SELinux support to star(#) +Patch1: star-1.5.3-selinux.patch + +# do not segfault with data-change-warn option (#255261) +Patch2: star-1.5-changewarnSegv.patch + +# Prevent buffer overflow for filenames with length of 100 characters (#556664) +Patch3: star-1.5.2-bufferoverflow.patch + +# Fix some invalid manpage references (#624612) +Patch4: star-1.5.1-manpagereferences.patch + +# do not crash when xattrs are not set on all files (#861848) +Patch5: star-1.5.1-selinux-segfault.patch + +# note that the H=crc format uses Sum32 algorithm, not CRC +Patch6: star-1.5.1-crc.patch + +# Allow rmt to access all files. +# ~> downstream +# ~> #968980 +Patch8: star-1.5.2-rmt-rh-access.patch + +# Use ssh rather than rsh by default +# ~> downstream +# ~> related to #968980 +Patch9: star-1.5.2-use-ssh-by-default.patch + +# Fix broken star.mk in 1.5.3 (included from all.mk) +Patch10: star-1.5.3-star-mk.patch + +# Fix segfault for 'pax -X' (rhbz#1175009) +# ~> downstream +Patch11: star-1.5.3-pax-X-option.patch + +# Fix segfault on restore default acl (rhbz#1567836) +Patch12: star-1.5.3-default-acl.patch + +BuildRequires: libattr-devel libacl-devel libtool libselinux-devel +BuildRequires: e2fsprogs-devel + +%description +Star saves many files together into a single tape or disk archive, +and can restore individual files from the archive. Star supports ACL. + +%package -n spax +Summary: Portable archive exchange +Group: Applications/Archiving +Requires(post): %{ALTERNATIVES} +Requires(preun): %{ALTERNATIVES} + + +%description -n spax +The pax utility shall read and write archives, write lists of the members of +archive files and copy directory hierarchies as is defined in IEEE Std 1003.1. + +%package -n scpio +Summary: Copy file archives in and out (LEGACY) +Group: Applications/Archiving + +%description -n scpio +The scpio utility, depending on the options used: copies files to an archive +file, extracts files from an archive file, lists files from an archive file or +copies files from one directory tree to another. + +%package -n rmt +Summary: Provides certain programs with access to remote tape devices +Group: Applications/Archiving +# we need to be greater than the version from 'dump' package +Epoch: 2 + +%description -n rmt +The rmt utility provides remote access to tape devices for programs +like dump (a filesystem backup program), restore (a program for +restoring files from a backup), and tar (an archiving program). + +# "desired" alternative constants +%global ALT_NAME pax +%global ALT_LINK %{_bindir}/pax +%global ALT_SL1_NAME pax-man +%global ALT_SL1_LINK %{_mandir}/man1/pax.1.gz + +# "local" alternative constants +%global ALT_PATH %{_bindir}/spax +%global ALT_SL1_PATH %{_mandir}/man1/spax.1.gz + +%prep +%setup -q +%if %{WITH_SELINUX} +%patch1 -p1 -b .selinux +%endif +%patch2 -p1 -b .changewarnSegv +%patch3 -p1 -b .namesoverflow +%patch4 -p1 -b .references +%patch5 -p1 -b .selinux-segfault +%patch6 -p1 -b .crc +%patch8 -p1 -b .rmt-access-rules +%patch9 -p1 -b .ssh-by-default +%patch10 -p1 -b .bug-config-1.5.3 +%patch11 -p1 -b .pax-X +%patch12 -p1 -b .default-acl + +# disable single "fat" binary +cp -a star/all.mk star/Makefile + +star_recode() +{ + for i in $@; do + iconv -f iso_8859-1 -t utf-8 $i > .tmp_file + mv .tmp_file $i + done +} + +star_recode AN-1.5 AN-1.5.2 star/star.4 + +for PLAT in %{arm} %{power64} aarch64 %{mips} x86_64 s390 s390x sh3 sh4 sh4a sparcv9; do + for AFILE in gcc cc; do + [ ! -e RULES/${PLAT}-linux-${AFILE}.rul ] \ + && ln -s i586-linux-${AFILE}.rul RULES/${PLAT}-linux-${AFILE}.rul + done +done + +%build +# This is config/work-around for atypical build system. Variables used are +# docummented makefiles.5. GMAKE_NOWARN silences irritating warnings in +# GNU/Linux ecosystem. +%global make_flags GMAKE_NOWARN=true \\\ + RUNPATH= \\\ + LDPATH= \\\ + PARCH=%{_target_cpu} \\\ + K_ARCH=%{_target_cpu} \\\ + INS_BASE=$RPM_BUILD_ROOT%{_prefix} \\\ + INS_RBASE=$RPM_BUILD_ROOT \\\ + INSTALL='sh $(SRCROOT)/conf/install-sh -c -m $(INSMODEINS)' \\\ + COPTX="$RPM_OPT_FLAGS -DTRY_EXT2_FS" \\\ + LDOPTX="$RPM_LD_FLAGS" \\\ + DEFCCOM=gcc + +# Note: disable optimalisation by COPTX='-g3 -O0' LDOPTX='-g3 -O0' +make %{?_smp_mflags} %make_flags + +%install +make install -s %make_flags + +ln -s star.1.gz ${RPM_BUILD_ROOT}%{_mandir}/man1/ustar.1 +mkdir -p ${RPM_BUILD_ROOT}%{_sysconfdir} +mkdir -p ${RPM_BUILD_ROOT}%{_pkgdocdir} +ln -s %{_sbindir}/rmt ${RPM_BUILD_ROOT}%{_sysconfdir}/rmt +install -p -m 644 COPYING star/README CDDL.Schily.txt AN-* \ + ${RPM_BUILD_ROOT}%{_pkgdocdir} + +# XXX Nuke unpackaged files. +( cd ${RPM_BUILD_ROOT} + rm -f .%{_bindir}/mt + rm -f .%{_bindir}/smt + rm -f .%{_bindir}/tartest + rm -f .%{_bindir}/tar + rm -f .%{_bindir}/gnutar + rm -f .%{_bindir}/star_fat + rm -f .%{_bindir}/star_sym + rm -f .%{_bindir}/suntar + rm -f .%{_sysconfdir}/default/star + rm -rf .%{_prefix}%{_sysconfdir} + rm -rf .%{_prefix}/include + rm -rf .%{_prefix}/lib # hard-wired intently + rm -rf .%{_mandir}/man3 + rm -rf .%{_mandir}/man5/{makefiles,makerules}.5* + rm -rf .%{_mandir}/man1/{tartest,gnutar,smt,mt,suntar,match}.1* + rm -rf .%{_docdir}/star/testscripts + rm -rf .%{_docdir}/star/TODO + rm -rf .%{_docdir}/rmt +) + +%clean + +%global general_docs \ +%dir %{_pkgdocdir} \ +%doc %{_pkgdocdir}/COPYING \ +%doc %{_pkgdocdir}/CDDL.Schily.txt \ + +%post -n spax +%{ALTERNATIVES} \ + --install %{ALT_LINK} %{ALT_NAME} %{ALT_PATH} 66 \ + --slave %{ALT_SL1_LINK} %{ALT_SL1_NAME} %{ALT_SL1_PATH} + +%preun -n spax +if [ $1 -eq 0 ]; then + # only on pure uninstall (not upgrade) + %{ALTERNATIVES} --remove %{ALT_NAME} %{ALT_PATH} +fi + +%files +%doc %{_pkgdocdir} +%{_bindir}/star +%{_bindir}/ustar +%{_mandir}/man1/star.1* +%{_mandir}/man1/ustar.1* +%{_mandir}/man5/star.5* + +%files -n scpio +%general_docs +%doc %{_mandir}/man1/scpio.1* +%{_bindir}/scpio + +%files -n spax +%general_docs +%doc %{_mandir}/man1/spax.1* +%{_bindir}/spax +%ghost %verify(not md5 size mode mtime) %{ALT_LINK} +%ghost %verify(not md5 size mode mtime) %{ALT_SL1_LINK} + +%files -n rmt +%general_docs +%{_sbindir}/rmt +%{_mandir}/man1/rmt.1* +%config %{_sysconfdir}/default/rmt +# This symlink is used by cpio, star, spax, scpio, .. thus it is needed. Even +# if the cpio may be configured to use /sbin/rmt rather than /etc/rmt, star (and +# thus spax, ..) has the lookup path hardcoded to '/etc/rmt' (it means that even +# non rpm based systems will try to look for /etc/rmt). And - the conclusion is +# - it does not make sense to fight against /etc/rmt symlink ATM (year 2013). +%{_sysconfdir}/rmt + +%changelog +* Wed Aug 01 2018 Vaclav Danek - 1.5.3-13 +- Fix segfault on restore default acl (rhbz#1567836) + +* Mon Apr 09 2018 Rafael Santos - 1.5.3-12 +- Use standard Fedora linker flags (bug #1548670) + +* Fri Feb 09 2018 Fedora Release Engineering - 1.5.3-11 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild + +* Thu Aug 03 2017 Fedora Release Engineering - 1.5.3-10 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild + +* Thu Jul 27 2017 Fedora Release Engineering - 1.5.3-9 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild + +* Sat Feb 11 2017 Fedora Release Engineering - 1.5.3-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild + +* Fri Aug 12 2016 Michal Toman - 1.5.3-7 +- Build properly on MIPS + +* Fri Feb 05 2016 Fedora Release Engineering - 1.5.3-6 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild + +* Fri Jun 19 2015 Fedora Release Engineering - 1.5.3-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild + +* Wed Dec 17 2014 Pavel Raiskup - 1.5.3-4 +- fix segfault for pax -X (#1175009) + +* Tue Sep 16 2014 Peter Robinson 1.5.3-3 +- Re-enable profiling on aarch64 + +* Mon Aug 18 2014 Fedora Release Engineering - 1.5.3-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild + +* Fri Jun 27 2014 Pavel Raiskup - 1.5.3-1 +- rebase to 1.5.3 + +* Sun Jun 08 2014 Fedora Release Engineering - 1.5.2-11 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild + +* Fri Jan 17 2014 Pavel Raiskup - 1.5.2-10 +- enable build for ppc64le (#1054401) + +* Mon Jan 13 2014 Peter Robinson 1.5.2-9 +- Temporarily disable profiling on aarch64 + +* Sun Aug 04 2013 Fedora Release Engineering - 1.5.2-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild + +* Thu Jun 20 2013 Pavel Raiskup - 1.5.2-7 +- we should provide /etc/rmt symlink for a while (related to #968980) +- use the ssh as the default remote access method + +* Thu May 30 2013 Pavel Raiskup - 1.5.2-6 +- subpackage also 'rmt' (#968980) + +* Fri May 24 2013 Pavel Raiskup - 1.5.2-5 +- add missing ghost files (#960007) +- fix the upgrade path, sorry for the noise (#959917, #960007) + +* Mon May 06 2013 Pavel Raiskup - 1.5.2-2 +- package spax and scpio separately (#959917) +- fedora-review fixes, unapplied patch +- make the spax to be pax alternative (#960007) + +* Wed Apr 10 2013 Pavel Raiskup - 1.5.2-1 +- rebase to most up2date upstream tarball, remove patches already upstream, fix + code movements in patches (#928758) +- fix man-page-day objections (private #948866) +- fix the build for aarch64 (#926571) + +* Thu Mar 21 2013 Pavel Raiskup - 1.5.1-12 +- package also the 'scpio' utility (#771926) + +* Fri Feb 15 2013 Fedora Release Engineering - 1.5.1-11 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild + +* Thu Oct 18 2012 Pavel Raiskup - 1.5.1-10 +- do not crash during extracting if extended attributes are not set on all + archived files (#861848) +- note in man page that H=crc format uses Sum32 algorithm (FIPS refuses CRC) + +* Sat Jul 21 2012 Fedora Release Engineering - 1.5.1-9 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild + +* Sat Jan 14 2012 Fedora Release Engineering - 1.5.1-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild + +* Wed Feb 09 2011 Fedora Release Engineering - 1.5.1-7 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild + +* Tue Jan 04 2011 Ondrej Vasik 1.5.1-6 +- fix segfault with multivol option due to signedness(#666015) + +* Wed Sep 29 2010 jkeating - 1.5.1-5 +- Rebuilt for gcc bug 634757 + +* Tue Sep 14 2010 Ondrej Vasik 1.5.1-4 +- fix another instance of buffer overflow for files with + long names(#632384) + +* Tue Aug 17 2010 Ondrej Vasik 1.5.1-3 +- Fix some invalid manpage references (#624612) +- ship star.4 manpage with star format description + +* Wed Feb 03 2010 Ondrej Vasik 1.5.1-2 +- fix buffer overflow for files with names of length + 100 chars(#556664) + +* Wed Jan 13 2010 Ondrej Vasik 1.5.1-1 +- new upstream release 1.5.1 + +* Thu Aug 27 2009 Ondrej Vasik 1.5-8 +- provide symlinked manpage for ustar + +* Thu Aug 27 2009 Ondrej Vasik 1.5-7 +- Merge review (#226434) changes: convert AN-1.5 to utf-8, + spec file cosmetic/policy changes, ship README.linux in doc + +* Sun Jul 26 2009 Fedora Release Engineering - 1.5-6 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild + +* Sun May 10 2009 Ville Skyttä - 1.5-5 +- Build with $RPM_OPT_FLAGS. +- Convert specfile to UTF-8. + +* Wed Apr 08 2009 Ondrej Vasik 1.5-4 +- fix build failure due to symbols conflicting + with stdio(#494213) + +* Wed Feb 25 2009 Fedora Release Engineering - 1.5-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild + +* Wed Jan 28 2009 Ondrej Vasik 1.5-2 +- remove names.c requirements from non-fat Makefiles, + do not ship names.c (#255261 for details) + +* Tue Jan 27 2009 Ondrej Vasik 1.5-1 +- use final instead of beta +- ship missing names.c separately +- enable optimalization again + +* Wed Dec 03 2008 Ondrej Vasik 1.5a89-1 +- update to latest upstream release + +* Fri Jun 06 2008 Dennis Gilmore 1.5a84-6 +- add sparcv9 support + +* Mon May 12 2008 Peter Vrabec 1.5a84-5 +- add super-H(sh3,4) architecture support (#442883) + +* Tue Feb 19 2008 Fedora Release Engineering - 1.5a84-4 +- Autorebuild for GCC 4.3 + +* Fri Aug 31 2007 Dan Kopecek 1.5a84-3 +- added -O0 to COPTX (CFLAGS) (see #255261) + +* Mon Aug 27 2007 Peter Vrabec 1.5a84-2 +- fix segfault of data-change-warn option (#255261), + patch from dkopecek@redhat.com + +* Fri Aug 24 2007 Peter Vrabec 1.5a84-1 +- new upstream release with CVE-2007-4134 fix + +* Sun Jun 24 2007 Peter Vrabec 1.5a76-3 +- build star on ARM platforms (#245465) + +* Mon Jan 29 2007 Peter Vrabec 1.5a76-2 +- fix buildreq. and rebuild + +* Thu Jan 18 2007 Jan Cholasta 1.5a76-1 +- upgrade + +* Tue Aug 08 2006 Peter Vrabec 1.5a75-1 +- upgrade + +* Wed Jul 12 2006 Jesse Keating - 1.5a74-3.1 +- rebuild + +* Tue Jun 13 2006 Peter Vrabec 1.5a74-3 +- use autoconf provided by star + +* Fri Jun 02 2006 Peter Vrabec 1.5a74-2 +- update tarball + +* Mon Apr 24 2006 Peter Vrabec 1.5a74-1 +- upgrade + +* Wed Mar 22 2006 Peter Vrabec 1.5a73-1 +- upgrade + +* Wed Mar 01 2006 Peter Vrabec 1.5a72-1 +- upgrade + +* Wed Feb 22 2006 Peter Vrabec 1.5a71-1 +- upgrade + +* Fri Dec 09 2005 Jesse Keating +- rebuilt + +* Tue Nov 08 2005 Peter Vrabec 1.5a69-1 +- upgrade + +* Mon Oct 10 2005 Peter Vrabec 1.5a68-1 +- upgrade + +* Thu Sep 22 2005 Peter Vrabec 1.5a67-1 +- upgrade + +* Fri Aug 26 2005 Peter Vrabec 1.5a65-1 +- upgrade 1.5a65-1 made by Horst H. von Brand +- Source URL changed, no homepage now +- License changed from GPL to CDDL 1.0 +- Define MAKEPROG=gmake like the Gmake.linux script does +- Disable fat binary as per star/Makefile, update star-1.5-selinux.patch for + the various *.mk files used in that case +- Axe /usr/share/man/man1/match.1*, /usr/etc/default/rmt too +- Explicit listing in %%files, allow for compressed or plain manpages + +* Fri Aug 26 2005 Peter Vrabec +- do not remove star_fat + +* Fri Aug 12 2005 Peter Vrabec +- upgrade 1.5a64-1 + +* Thu Aug 04 2005 Karsten Hopp 1.5a54-3 +- remove /usr/bin/tar symlink + +* Fri Mar 18 2005 Peter Vrabec +- rebuilt + +* Mon Nov 22 2004 Peter Vrabec +- upgrade 1.5a54-1 & rebuild + +* Mon Oct 25 2004 Peter Vrabec +- fix dependencie (#123770) + +* Tue Jun 15 2004 Elliot Lee +- rebuilt + +* Fri Feb 13 2004 Elliot Lee +- rebuilt + +* Mon Jan 26 2004 Dan Walsh 1.5a25-4 +- Fix call to is_selinux_enabled + +* Mon Jan 19 2004 Jeff Johnson 1.5.a25-3 +- fix: (!(x & 1)) rather than (!x & 1) patch. + +* Wed Sep 24 2003 Dan Walsh 1.5a25-2 +- turn selinux off + +* Tue Sep 16 2003 Dan Walsh 1.5a25-1.sel +- turn selinux on + +* Fri Sep 5 2003 Dan Walsh 1.5a18-5 +- turn selinux off + +* Mon Aug 25 2003 Dan Walsh 1.5a18-3 +- Add SELinux modification to handle setting security context before creation. + +* Thu Aug 21 2003 Dan Walsh 1.5a18-2 +- Fix free_xattr bug + +* Wed Jul 16 2003 Dan Walsh 1.5a18-1 +- Add SELinux support + +* Wed Jun 04 2003 Elliot Lee +- rebuilt + +* Wed Jan 22 2003 Tim Powers +- rebuilt + +* Tue Nov 12 2002 Elliot Lee 1.5a08-3 +- Build when uname -m != _target_platform +- Use _smp_mflags +- Build on x86_64 + +* Mon Nov 11 2002 Jeff Johnson 1.5a08-2 +- update to 1.5a08. +- build from cvs. + +* Wed Jun 26 2002 Trond Eivind Glomsrød 1.5a04 +- Initial build. Alpha version - it's needed for ACLs.