upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-04-28 09:37:08 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Don't install KO's with the "schg" flag.

Browse source 
We are way too inconsistent with our setting of the "schg" flag, and in
our default install, it doesn't really offer any additional security.

Reviewed by:	arch@
This commit is contained in:
David E. O'Brien 2001-04-25 20:56:15 +00:00
parent 58c9a20771
commit ea87b3cb61
6 changed files with 11 additions and 46 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
sys/conf/Makefile.alpha
View file

@ -292,23 +292,16 @@ kernel-install kernel-install.debug:
fi
.if exists(${DESTDIR}${KODIR})
.if exists(${DESTDIR}${KODIR}.old)
@-chflags -R noschg ${DESTDIR}${KODIR}.old
-rm -rf ${DESTDIR}${KODIR}.old
.endif
mv ${DESTDIR}${KODIR} ${DESTDIR}${KODIR}.old
.endif
mkdir -p ${DESTDIR}${KODIR}
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-install//} ${DESTDIR}${KODIR}
kernel-reinstall kernel-reinstall.debug:
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-reinstall//} ${DESTDIR}${KODIR}
.if !defined(MODULES_WITH_WORLD) && !defined(NO_MODULES) && exists($S/modules)

11
sys/conf/Makefile.i386
View file

@ -252,23 +252,16 @@ kernel-install kernel-install.debug:
fi
.if exists(${DESTDIR}${KODIR})
.if exists(${DESTDIR}${KODIR}.old)
@-chflags -R noschg ${DESTDIR}${KODIR}.old
-rm -rf ${DESTDIR}${KODIR}.old
.endif
mv ${DESTDIR}${KODIR} ${DESTDIR}${KODIR}.old
.endif
mkdir -p ${DESTDIR}${KODIR}
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-install//} ${DESTDIR}${KODIR}
kernel-reinstall kernel-reinstall.debug:
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-reinstall//} ${DESTDIR}${KODIR}
.if !defined(MODULES_WITH_WORLD) && !defined(NO_MODULES) && exists($S/modules)

11
sys/conf/Makefile.ia64
View file

@ -256,23 +256,16 @@ kernel-install kernel-install.debug:
fi
.if exists(${DESTDIR}${KODIR})
.if exists(${DESTDIR}${KODIR}.old)
@-chflags -R noschg ${DESTDIR}${KODIR}.old
-rm -rf ${DESTDIR}${KODIR}.old
.endif
mv ${DESTDIR}${KODIR} ${DESTDIR}${KODIR}.old
.endif
mkdir -p ${DESTDIR}${KODIR}
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-install//} ${DESTDIR}${KODIR}
kernel-reinstall kernel-reinstall.debug:
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-reinstall//} ${DESTDIR}${KODIR}
.if !defined(MODULES_WITH_WORLD) && !defined(NO_MODULES) && exists($S/modules)

11
sys/conf/Makefile.pc98
View file

@ -255,23 +255,16 @@ kernel-install kernel-install.debug:
fi
.if exists(${DESTDIR}${KODIR})
.if exists(${DESTDIR}${KODIR}.old)
@-chflags -R noschg ${DESTDIR}${KODIR}.old
-rm -rf ${DESTDIR}${KODIR}.old
.endif
mv ${DESTDIR}${KODIR} ${DESTDIR}${KODIR}.old
.endif
mkdir -p ${DESTDIR}${KODIR}
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-install//} ${DESTDIR}${KODIR}
kernel-reinstall kernel-reinstall.debug:
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-reinstall//} ${DESTDIR}${KODIR}
.if !defined(MODULES_WITH_WORLD) && !defined(NO_MODULES) && exists($S/modules)

11
sys/conf/Makefile.powerpc
View file

@ -252,23 +252,16 @@ kernel-install kernel-install.debug:
fi
.if exists(${DESTDIR}${KODIR})
.if exists(${DESTDIR}${KODIR}.old)
@-chflags -R noschg ${DESTDIR}${KODIR}.old
-rm -rf ${DESTDIR}${KODIR}.old
.endif
mv ${DESTDIR}${KODIR} ${DESTDIR}${KODIR}.old
.endif
mkdir -p ${DESTDIR}${KODIR}
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-install//} ${DESTDIR}${KODIR}
kernel-reinstall kernel-reinstall.debug:
@-if [ -f ${DESTDIR}${KODIR}/${KERNEL_KO} ] ; then \
chflags noschg ${DESTDIR}${KODIR}/${KERNEL_KO} ; \
fi
install -c -m 555 -o root -g wheel -fschg \
install -c -m 555 -o root -g wheel \
${KERNEL_KO}${.TARGET:S/kernel-reinstall//} ${DESTDIR}${KODIR}
.if !defined(MODULES_WITH_WORLD) && !defined(NO_MODULES) && exists($S/modules)

2
sys/conf/kmod.mk
View file

@ -205,7 +205,7 @@ beforeinstall:
afterinstall:
.endif
_INSTALLFLAGS:= -fschg ${INSTALLFLAGS}
_INSTALLFLAGS:= ${INSTALLFLAGS}
.for ie in ${INSTALLFLAGS_EDIT}
_INSTALLFLAGS:= ${_INSTALLFLAGS${ie}}
.endfor