Fincer
/
openntpd-openbsd
mirror of https://github.com/Fincer/openntpd-openbsd
1
0
Fork 0
Code Issues 0 Projects 0 Releases 61 Wiki Activity
Browse Source

Enable builds with a dedicated user that cannot elevate privileges or write 

to /usr/src or /usr/xenocara.
Change /usr/{,x}obj to owner build:wobj with mode 770 and install the
systemwide makefiles before starting a build.  The root of the noperm fs
containing DESTDIR should also be owned by build:wobj.
Developers will need to add their users to group wobj to be able to write
to /usr/{,x}obj/.
"push forward" deraadt; testing, input & ok rpe
OPENBSD_6_1
tb 8 years ago
parent
b597d6355c
commit
9ee6e93f88
1 changed files with 5 additions and 2 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +5
    -2
      src/etc/Makefile

+ 5
- 2
src/etc/Makefile View File

@ -1,4 +1,4 @@
# $OpenBSD: Makefile,v 1.444 2016/11/05 09:14:37 rpe Exp $
# $OpenBSD: Makefile,v 1.445 2016/11/19 14:20:58 tb Exp $
TZDIR= /usr/share/zoneinfo TZDIR= /usr/share/zoneinfo
LOCALTIME= Canada/Mountain LOCALTIME= Canada/Mountain
@ -238,6 +238,9 @@ release:
.else .else
release: release:
umask ${WOBJUMASK}; exec ${MAKE} do-release
do-release:
@if [[ `id -u` -ne 0 ]]; then \ @if [[ `id -u` -ne 0 ]]; then \
echo $@ must be called by root >&2; \ echo $@ must be called by root >&2; \
false; \ false; \
@ -273,7 +276,7 @@ sha:
.endif # DESTDIR check .endif # DESTDIR check
distrib: distrib:
cd ../distrib && \
umask 022; cd ../distrib && \
${MAKE} && exec ${MAKE} install ${MAKE} && exec ${MAKE} install
.PHONY: distribution-etc-root-var distribution distrib-dirs \ .PHONY: distribution-etc-root-var distribution distrib-dirs \


Write Preview
Loading…
Cancel
Save