e17b830387
Upgrade Openscap tool to release 1.3.6, using the debianized version 1.3.6+dsfg-6 for the packaging files available at https://salsa.debian.org/debian/openscap/-/blob/debian/1.3.6+dfsg-6/debian/changelog Didn't change any files or patches. Segmentation faults during Openscap usage seen in Starlingx were fixed in this release of Openscap, and are the reason of this upgrade. Test Plan: PASS: Build iso. PASS: Deploy AIO-SX. PASS: Check version (oscap --version). Result should be 1.3.6. PASS: Run openscap using one of default manifests. There should be no segmentation fault issues. Command i.e.: "oscap xccdf eval --profile \ xccdf_org.ssgproject.content_profile_anssi_np_nt28_high \ --report controller-0-report.html \ /usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml". Closes-Bug: 2006782 Signed-off-by: Marcelo de Castro Loebens <Marcelo.DeCastroLoebens@windriver.com> Change-Id: I34ff193227ae51ec709b7d69b6a97abc074721f3
75 lines
2.5 KiB
Makefile
Executable File
75 lines
2.5 KiB
Makefile
Executable File
#!/usr/bin/make -f
|
|
# -*- makefile -*-
|
|
|
|
# Uncomment this to turn on verbose mode.
|
|
#export DH_VERBOSE=1
|
|
|
|
export DEB_BUILD_MAINT_OPTIONS := hardening=+all
|
|
|
|
PYVERS=$(shell py3versions --supported --version)
|
|
PERL_VERSION:=$(shell perl -e 'my @ver=split /\./, sprintf("%vd", $$^V); print("$$ver[0].$$ver[1]");')
|
|
CMAKE_OPTS = -DCMAKE_BUILD_RPATH_USE_ORIGIN=ON \
|
|
-DENABLE_DOCS=ON \
|
|
-DENABLE_PERL=ON \
|
|
-DOPENSCAP_PROBE_UNIX_GCONF=OFF \
|
|
-DGCONF_LIBRARY= \
|
|
-DPERL_VERSION=$(PERL_VERSION) \
|
|
-DPYTHON_EXECUTABLE=/usr/bin/python$$V
|
|
|
|
override_dh_auto_clean:
|
|
for V in $(PYVERS); do \
|
|
dh_auto_clean --builddir=build-py$$V ; \
|
|
done
|
|
|
|
override_dh_auto_configure:
|
|
for V in $(PYVERS); do \
|
|
dh_auto_configure --builddir=build-py$$V -- \
|
|
$(CMAKE_OPTS) ; \
|
|
done
|
|
|
|
override_dh_auto_build:
|
|
for V in $(PYVERS); do \
|
|
dh_auto_build --builddir=build-py$$V ; \
|
|
done
|
|
|
|
override_dh_auto_install:
|
|
# Move Python files to separate folders so they don't overwrite
|
|
# each other at install time.
|
|
for V in $(PYVERS); do \
|
|
dh_auto_install --builddir=build-py$$V ; \
|
|
mv ${CURDIR}/debian/tmp/usr/lib/python3 ${CURDIR}/debian/tmp/usr/lib/python$$V ; \
|
|
chmod 0644 ${CURDIR}/debian/tmp/usr/lib/python$$V/dist-packages/openscap_py.py ; \
|
|
chmod 0644 ${CURDIR}/debian/tmp/usr/lib/python$$V/dist-packages/openscap_api.py ; \
|
|
done
|
|
|
|
find debian/tmp -name "*.la" -delete
|
|
mv debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/perl5/$(PERL_VERSION)* debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/perl5/$(PERL_VERSION)
|
|
$(RM) $(CURDIR)/debian/tmp/usr/share/doc/openscap/html/*.md5 \
|
|
$(CURDIR)/debian/tmp/usr/share/doc/openscap/html/*.map
|
|
|
|
override_dh_strip:
|
|
dh_strip -popenscap-scanner --dbgsym-migration='libopenscap8-dbg (<< 1.3.4-1.1~)'
|
|
dh_strip -plibopenscap25 --dbgsym-migration='libopenscap8-dbg (<< 1.3.4-1.1~)'
|
|
dh_strip -ppython3-openscap --dbgsym-migration='libopenscap8-dbg (<< 1.3.4-1.1~)'
|
|
dh_strip -plibopenscap-perl --dbgsym-migration='libopenscap8-dbg (<< 1.3.4-1.1~)'
|
|
|
|
override_dh_python3:
|
|
dh_python3 -popenscap-utils -ppython3-openscap --shebang=/usr/bin/python3
|
|
|
|
override_dh_installchangelogs:
|
|
dh_installchangelogs NEWS
|
|
|
|
override_dh_auto_test:
|
|
for V in $(PYVERS); do \
|
|
dh_auto_test --builddir=build-py$$V ; \
|
|
done
|
|
|
|
execute_before_dh_missing:
|
|
$(RM) $(CURDIR)/debian/tmp/lib/systemd/system/oscap-remediate.service \
|
|
$(CURDIR)/debian/tmp/usr/bin/oscap-remediate-offline \
|
|
$(CURDIR)/debian/tmp/usr/libexec/oscap-remediate \
|
|
$(CURDIR)/debian/tmp/usr/share/man/man8/oscap-remediate-offline.8
|
|
|
|
%:
|
|
dh $@ --with python3
|