diff options
| author |   Heinz Wiesinger | 2024-04-25 11:11:40 +0200 |
|---|---|---|
| committer |   Willy Sudiarto Raharjo | 2024-04-27 04:28:36 +0200 |
| commit | 1dac12a621a0de79ea77adc7a1c976a251256c59 (patch) | |
| tree | 6001c70e8c1c0b937f80d1c1f117c2f7beea1add | |
| parent | 9b22098fa8db6f22fdc094b936b21fba8bdf444b (diff) | |
| download | slackbuilds-1dac12a621a0de79ea77adc7a1c976a251256c59.tar.gz | |
system/virtualbox: Updated for version 6.1.50
Signed-off-by: Heinz Wiesinger <pprkut@slackbuilds.org>
Signed-off-by: Willy Sudiarto Raharjo <willysr@slackbuilds.org>
| -rw-r--r-- | system/virtualbox/vboxdrv.sh-setup.diff | 65 | ||||
| -rw-r--r-- | system/virtualbox/virtualbox.SlackBuild | 4 | ||||
| -rw-r--r-- | system/virtualbox/virtualbox.info | 18 |
3 files changed, 60 insertions, 27 deletions
diff --git a/system/virtualbox/vboxdrv.sh-setup.diff b/system/virtualbox/vboxdrv.sh-setup.diff index 97e0d0af23..80a04aa65e 100644 --- a/system/virtualbox/vboxdrv.sh-setup.diff +++ b/system/virtualbox/vboxdrv.sh-setup.diff @@ -1,5 +1,5 @@ ---- vboxdrv.sh.orig 2023-01-11 18:59:15.000000000 +0100 -+++ vboxdrv.sh 2023-03-11 16:35:46.673798632 +0100 +--- vboxdrv.sh.orig 2024-02-28 15:40:56.680861821 +0100 ++++ vboxdrv.sh 2024-02-28 15:47:52.417842405 +0100 @@ -45,39 +45,13 @@ MODPROBE="$MODPROBE --allow-unsupported-modules" fi @@ -40,7 +40,7 @@ if test -u "${VIRTUALBOX}"; then GROUP=root DEVICE_MODE=0600 -@@ -173,299 +147,12 @@ +@@ -173,333 +147,12 @@ lsmod | grep -q "$1[^_-]" } @@ -215,7 +215,7 @@ - --state "$opt_name" 2>/dev/null - elif test -f /lib/modules/"$KERN_VER"/build/.config; then - # Extract config option manually. -- grep "$opt_name" /lib/modules/"$KERN_VER"/build/.config | sed -e "s/^$opt_name=//" -e "s/\"//g" +- grep "$opt_name=" /lib/modules/"$KERN_VER"/build/.config | sed -e "s/^$opt_name=//" -e "s/\"//g" - fi -} - @@ -242,6 +242,40 @@ - echo "1" -} - +-# Check if kernel configuration requires modules signature. +-kernel_requires_module_signature() +-{ +- vbox_sys_lockdown_path="/sys/kernel/security/lockdown" +- +- requires="" +- # We consider that if kernel is running in the following configurations, +- # it will require modules to be signed. +- if [ "$(kernel_get_config_opt "CONFIG_MODULE_SIG")" = "y" ]; then +- +- # Modules signature verification is hardcoded in kernel config. +- [ "$(kernel_get_config_opt "CONFIG_MODULE_SIG_FORCE")" = "y" ] && requires="1" +- +- # Unsigned modules loading is restricted by "lockdown" feature in runtime. +- if [ "$(kernel_get_config_opt "CONFIG_LOCK_DOWN_KERNEL")" = "y" \ +- -o "$(kernel_get_config_opt "CONFIG_SECURITY_LOCKDOWN_LSM")" = "y" \ +- -o "$(kernel_get_config_opt "CONFIG_SECURITY_LOCKDOWN_LSM_EARLY")" = "y" ]; then +- +- # Once lockdown level is set to something different than "none" (e.g., "integrity" +- # or "confidentiality"), kernel will reject unsigned modules loading. +- if [ -r "$vbox_sys_lockdown_path" ]; then +- [ -n "$(cat "$vbox_sys_lockdown_path" | grep "\[integrity\]")" ] && requires="1" +- [ -n "$(cat "$vbox_sys_lockdown_path" | grep "\[confidentiality\]")" ] && requires="1" +- fi +- +- # This configuration is used by a number of modern Linux distributions and restricts +- # unsigned modules loading when Secure Boot mode is enabled. +- [ "$(kernel_get_config_opt "CONFIG_LOCK_DOWN_IN_EFI_SECURE_BOOT")" = "y" -a -n "$HAVE_SEC_BOOT" ] && requires="1" +- fi +- fi +- +- [ -n "$requires" ] && echo "1" +-} +- -# Returns "1" if module is signed and signature can be verified -# with public key provided in DEB_PUB_KEY. Or empty string otherwise. -module_signed() @@ -318,8 +352,8 @@ - mod_dir="$(dirname "$mod_path" | sed 's;^.*/;;')" - [ "$mod_dir" = "misc" ] || return - -- # In case if system is running in Secure Boot mode, check if module is signed. -- if test -n "$HAVE_SEC_BOOT"; then +- # In case if kernel configuration requires module signature, check if module is signed. +- if test "$(kernel_requires_module_signature)" = "1"; then - [ "$(module_signed "$mod")" = "1" ] || return - fi - @@ -340,18 +374,17 @@ start() { begin_msg "Starting VirtualBox services" console -@@ -483,10 +170,6 @@ - fi +@@ -518,9 +171,6 @@ if ! running vboxdrv; then -- + - # Check if system already has matching modules installed. - [ "$(setup_complete)" = "1" ] || setup - if ! rm -f $DEVICE; then failure "Cannot remove $DEVICE" fi -@@ -538,8 +221,6 @@ +@@ -572,8 +222,6 @@ mkdir -p -m 0750 /dev/vboxusb 2>/dev/null chown root:vboxusers /dev/vboxusb 2>/dev/null fi @@ -360,7 +393,7 @@ succ_msg "VirtualBox services started" } -@@ -620,153 +301,10 @@ +@@ -654,153 +302,10 @@ fi } @@ -425,7 +458,7 @@ - module_build_log "$myerr" - failure "Look at $LOG to find out what went wrong" - fi -- log "Building the net adaptor module." +- log "Building the net adapter module." - if ! myerr=`$BUILDINTMP \ - --use-module-symvers /tmp/vboxdrv-Module.symvers \ - --module-source "$MODULE_SRC/vboxnetadp" \ @@ -450,8 +483,8 @@ - sync - succ_msg "VirtualBox kernel modules built" - -- # Secure boot on Ubuntu, Debian and Oracle Linux. -- if test -n "$HAVE_SEC_BOOT"; then +- # Sign kernel modules if kernel configuration requires it. +- if test "$(kernel_requires_module_signature)" = "1"; then - begin_msg "Signing VirtualBox kernel modules" console - - # Generate new signing key if needed. @@ -515,7 +548,7 @@ } dmnstatus() -@@ -816,20 +354,7 @@ +@@ -850,20 +355,7 @@ stop && start ;; setup) @@ -537,7 +570,7 @@ ;; force-reload) stop -@@ -839,7 +364,7 @@ +@@ -873,7 +365,7 @@ dmnstatus ;; *) diff --git a/system/virtualbox/virtualbox.SlackBuild b/system/virtualbox/virtualbox.SlackBuild index 665cb7aeab..e4c4d04639 100644 --- a/system/virtualbox/virtualbox.SlackBuild +++ b/system/virtualbox/virtualbox.SlackBuild @@ -2,7 +2,7 @@ # Slackware build script for virtualbox -# Copyright 2008-2023 Heinz Wiesinger, Amsterdam, The Netherlands +# Copyright 2008-2024 Heinz Wiesinger, Amsterdam, The Netherlands # Copyright 2008 Mauro Giachero <mauro.giachero@gmail.com> # All rights reserved. # @@ -27,7 +27,7 @@ cd $(dirname $0) ; CWD=$(pwd) PRGNAM=virtualbox SRCNAM=VirtualBox -VERSION=${VERSION:-6.1.44} +VERSION=${VERSION:-6.1.50} BUILD=${BUILD:-1} TAG=${TAG:-_SBo} PKGTYPE=${PKGTYPE:-tgz} diff --git a/system/virtualbox/virtualbox.info b/system/virtualbox/virtualbox.info index adbeae3452..44e1b2819c 100644 --- a/system/virtualbox/virtualbox.info +++ b/system/virtualbox/virtualbox.info @@ -1,16 +1,16 @@ PRGNAM="virtualbox" -VERSION="6.1.44" +VERSION="6.1.50" HOMEPAGE="https://www.virtualbox.org" DOWNLOAD="UNSUPPORTED" MD5SUM="" -DOWNLOAD_x86_64="http://download.virtualbox.org/virtualbox/6.1.44/VirtualBox-6.1.44.tar.bz2 \ - http://download.virtualbox.org/virtualbox/6.1.44/VBoxGuestAdditions_6.1.44.iso \ - http://download.virtualbox.org/virtualbox/6.1.44/UserManual.pdf \ - http://download.virtualbox.org/virtualbox/6.1.44/SDKRef.pdf" -MD5SUM_x86_64="309f868297447291db980a1d8fa11ec6 \ - 282a2d395eac07d7bcde128b529f2bc9 \ - 8b4b2dccba569cba4a82b7441010d86f \ - 62847ffd60056b3377c9974ca98791c7" +DOWNLOAD_x86_64="http://download.virtualbox.org/virtualbox/6.1.50/VirtualBox-6.1.50.tar.bz2 \ + http://download.virtualbox.org/virtualbox/6.1.50/VBoxGuestAdditions_6.1.50.iso \ + http://download.virtualbox.org/virtualbox/6.1.50/UserManual.pdf \ + http://download.virtualbox.org/virtualbox/6.1.50/SDKRef.pdf" +MD5SUM_x86_64="57073540cb522ded3ad142c7f1fb01ac \ + 1041bbc411d15720694a76ca06c2795b \ + ede83ce195f62c406e5fd77639101a0f \ + 3cb39e3b30f5fb64c4ba00eee8a4833d" REQUIRES="acpica virtualbox-kernel" MAINTAINER="Heinz Wiesinger" EMAIL="pprkut@slackbuilds.org" |