diff options
author | V3n3RiX <venerix@redcorelinux.org> | 2018-07-14 21:03:06 +0100 |
---|---|---|
committer | V3n3RiX <venerix@redcorelinux.org> | 2018-07-14 21:03:06 +0100 |
commit | 8376ef56580626e9c0f796d5b85b53a0a1c7d5f5 (patch) | |
tree | 7681bbd4e8b05407772df40a4bf04cbbc8afc3fa /dev-libs/opencryptoki | |
parent | 30a9caf154332f12ca60756e1b75d2f0e3e1822d (diff) |
gentoo resync : 14.07.2018
Diffstat (limited to 'dev-libs/opencryptoki')
-rw-r--r-- | dev-libs/opencryptoki/Manifest | 6 | ||||
-rw-r--r-- | dev-libs/opencryptoki/files/pkcsslotd.init.2 | 27 | ||||
-rw-r--r-- | dev-libs/opencryptoki/metadata.xml | 14 | ||||
-rw-r--r-- | dev-libs/opencryptoki/opencryptoki-3.4.1.ebuild | 100 | ||||
-rw-r--r-- | dev-libs/opencryptoki/opencryptoki-3.6.1.ebuild | 101 |
5 files changed, 248 insertions, 0 deletions
diff --git a/dev-libs/opencryptoki/Manifest b/dev-libs/opencryptoki/Manifest new file mode 100644 index 000000000000..abc1ad84a75a --- /dev/null +++ b/dev-libs/opencryptoki/Manifest @@ -0,0 +1,6 @@ +AUX pkcsslotd.init.2 664 BLAKE2B de96f878e55ce5346a3846c99deae28e540964cf4a7dcd42e2893cf540484fa6b3bd914400c2fd39067e8cfc29d030691fd0e4e4fb83b229bc2c03085e5df2f0 SHA512 3bdc6d2f87b2209163ad08915afa900f9c14324d3e48619cffe462c3c651996fe0e0b485eb6331552fcb22297cfa7bda9b6440a8bad9419d6835a047f1b2a0e9 +DIST opencryptoki-3.6.1.tgz 1068197 BLAKE2B 0e7d867bd21863f56471ac2c8664148e5a6988ffc30e71feaf960245a1908d676c1791f2b751de4bdd694096bf7360af3a8f79df895eef1b8f61391aba09aaad SHA512 1874fabba6d3da49596622c7f8142a37329df95f129cb08319bb3900a944dde1ae5ce9d845d400726f4bda4579c730012b9bfd6c69c6d5a16b1f75b28a0ba4af +DIST opencryptoki-v3.4.1.tgz 1014416 BLAKE2B f95f9c4923fb7ce283f2031c21221ec2dacf1afca50a5fcdb4e2e173c952bbc4402fda56664428087a2c5b33af8a94aba9fa361ef5c0e4f0b865391cbc304250 SHA512 98643463102f70226255f17a7c49cc454cce377404155b9624e77e36c9f03fb30c216d1769177666489a539e0886b071103a089c565f8fbf120c2a53239a2dd6 +EBUILD opencryptoki-3.4.1.ebuild 3174 BLAKE2B 5ab81d00513d55ee8c188407bc9a30f9ec05f1d24f8eb3e982214ab394c87cf3b413bb76e59a578d4dce349453cb10e70997dd88d96dfe550f27eb9aad741448 SHA512 076a6d9c12ca0548491fc4d1a0b39ba153f40432374b3ea8e6c870d4fcb8bdfcd7af6d12dd6b05f0ca2976d78f19d6404980fd12a3058dd911854f2f6174fa59 +EBUILD opencryptoki-3.6.1.ebuild 3060 BLAKE2B c7bd97265e5143f5b9502b49c28bd762ad83f5ea1f37975ff9ac9a9bf7dc57f07a6102d26d10ec323c5acc07fe8c010379d2b2eacad81197f5360e2689a56617 SHA512 83afe598c8cd2180f365110991415da4ef3ba0a3a6ec769b17c1093d9e8592ca3c945f186525966c9564d8a49aae901aa2dbbab194ec3d64ed73db15879d2190 +MISC metadata.xml 448 BLAKE2B c471621f15b751b55dd75e9b62d961bcb52df94359ae901119be884dbec71e41ced8bc3ddf9af33b70a78aa0c0ef6927a92d44e9901124ad5811b6fc38aa9fc0 SHA512 a325026f45754e53ae94b7a8d9f5836ab4974a4535a5492727062ee449ecb9d542e04f103662111b9eb3956be7fcad32189f4470b3d8e8c110e0023ae93318d2 diff --git a/dev-libs/opencryptoki/files/pkcsslotd.init.2 b/dev-libs/opencryptoki/files/pkcsslotd.init.2 new file mode 100644 index 000000000000..44056b0e50b7 --- /dev/null +++ b/dev-libs/opencryptoki/files/pkcsslotd.init.2 @@ -0,0 +1,27 @@ +#!/sbin/openrc-run +# Copyright 1999-2017 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 + +depend() { + need localmount + + # Optional services (see ebuild) + use tcsd +} + +start() { + # detect available tokens and set up + # /var/lib/opencryptoki/pk_config_data + ebegin "Preparing pkcs configuration" + /usr/sbin/pkcs11_startup + + ebegin "Starting pkcsslotd" + start-stop-daemon --start --exec /usr/sbin/pkcsslotd --pidfile /var/run/pkcsslotd.pid + eend $? "Check your logs to see why startup failed" +} + +stop() { + ebegin "Stopping pkcsslotd" + start-stop-daemon --stop --exec /usr/sbin/pkcsslotd --pidfile /var/run/pkcsslotd.pid + eend $? +} diff --git a/dev-libs/opencryptoki/metadata.xml b/dev-libs/opencryptoki/metadata.xml new file mode 100644 index 000000000000..6a481bee9cb4 --- /dev/null +++ b/dev-libs/opencryptoki/metadata.xml @@ -0,0 +1,14 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> +<pkgmetadata> + <maintainer type="project"> + <email>crypto@gentoo.org</email> + <name>Crypto</name> + </maintainer> + <use> + <flag name="tpm">Enable support for Trusted Platform Module (TPM) using <pkg>app-crypt/trousers</pkg></flag> + </use> + <upstream> + <remote-id type="sourceforge">opencryptoki</remote-id> + </upstream> +</pkgmetadata> diff --git a/dev-libs/opencryptoki/opencryptoki-3.4.1.ebuild b/dev-libs/opencryptoki/opencryptoki-3.4.1.ebuild new file mode 100644 index 000000000000..c2724bc8d3ed --- /dev/null +++ b/dev-libs/opencryptoki/opencryptoki-3.4.1.ebuild @@ -0,0 +1,100 @@ +# Copyright 1999-2018 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 + +EAPI="5" + +inherit autotools multilib flag-o-matic user + +DESCRIPTION="PKCS#11 provider cryptographic hardware" +HOMEPAGE="https://sourceforge.net/projects/opencryptoki" +SRC_URI="mirror://sourceforge/opencryptoki/${PV}/${PN}-v${PV}.tgz" + +# Upstream is looking into relicensing it into CPL-1.0 entirely; the CCA +# token sources are under CPL-1.0 already. +LICENSE="CPL-0.5" +SLOT="0" +KEYWORDS="~amd64 ~arm ~s390 ~x86" +IUSE="debug libressl +tpm" + +RDEPEND="tpm? ( app-crypt/trousers ) + !libressl? ( dev-libs/openssl:0= ) + libressl? ( dev-libs/libressl:0= )" +DEPEND="${RDEPEND}" + +S="${WORKDIR}/${PN}" + +# tests right now basically don't exist; the only available thing would +# test against an installed copy and would kill a running pcscd, all +# things that we're not interested to. +RESTRICT=test + +pkg_setup() { + enewgroup pkcs11 +} + +src_prepare() { + mv configure.in configure.ac || die + eautoreconf +} + +src_configure() { + # package uses ${localstatedir}/lib as the default path, so if we + # leave it to econf, it'll create /var/lib/lib. + + # Since upstream by default seem to enable any possible token, even + # when they don't seem to be used, we limit ourselves to the + # software emulation token (swtok) and if the user enabled the tpm + # USE flag, tpmtok. The rest of the tokens seem to be hardware- or + # software-dependent even when they build fine without their + # requirements, but until somebody asks for those, I'd rather not + # enable them. + + # We don't use --enable-debug because that tinkers with the CFLAGS + # and we don't want that. Instead we append -DDEBUG which enables + # debug information. + use debug && append-flags -DDEBUG + + econf \ + --localstatedir=/var \ + --enable-fast-install \ + --disable-dependency-tracking \ + --disable-debug \ + --enable-daemon \ + --enable-library \ + --disable-icatok \ + --enable-swtok \ + $(use_enable tpm tpmtok) \ + --disable-ccatok +} + +src_install() { + emake install DESTDIR="${ED}" + + # Install libopencryptoki in the standard directory for libraries. + mv "${D}"/usr/$(get_libdir)/opencryptoki/libopencryptoki.so* "${D}"/usr/$(get_libdir) || die + rm "${D}"/usr/$(get_libdir)/pkcs11/libopencryptoki.so + dosym ../libopencryptoki.so /usr/$(get_libdir)/pkcs11/libopencryptoki.so + + # Remove compatibility symlinks as we _never_ required those and + # they seem unused even upstream. + find "${D}" -name 'PKCS11_*' -delete + + # doesn't use libltdl; only dlopen()-based interfaces + find "${D}" -name '*.la' -delete + + # We replace their ld.so and init files (mostly designed for RedHat + # as far as I can tell) with our own replacements. + rm -rf "${D}"/etc/ld.so.conf.d "${D}"/etc/rc.d + + # make sure that we don't modify the init script if the USE flags + # are enabled for the needed services. + cp "${FILESDIR}"/pkcsslotd.init.2 "${T}"/pkcsslotd.init + use tpm || sed -i -e '/use tcsd/d' "${T}"/pkcsslotd.init + newinitd "${T}/pkcsslotd.init" pkcsslotd + + # We create /var dirs at runtime as needed, so don't bother installing + # our own. + rm -r "${D}"/var/{lib,lock} || die + + dodoc README AUTHORS FAQ TODO doc/openCryptoki-HOWTO.pdf +} diff --git a/dev-libs/opencryptoki/opencryptoki-3.6.1.ebuild b/dev-libs/opencryptoki/opencryptoki-3.6.1.ebuild new file mode 100644 index 000000000000..4f6f1383102a --- /dev/null +++ b/dev-libs/opencryptoki/opencryptoki-3.6.1.ebuild @@ -0,0 +1,101 @@ +# Copyright 1999-2017 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 + +EAPI="6" + +inherit autotools multilib ltprune flag-o-matic user + +DESCRIPTION="PKCS#11 provider cryptographic hardware" +HOMEPAGE="https://sourceforge.net/projects/opencryptoki" +SRC_URI="mirror://sourceforge/opencryptoki/${PV}/${P}.tgz" + +# Upstream is looking into relicensing it into CPL-1.0 entirely; the CCA +# token sources are under CPL-1.0 already. +LICENSE="CPL-0.5" +SLOT="0" +KEYWORDS="~amd64 ~arm ~x86" +IUSE="debug libressl +tpm" + +RDEPEND="tpm? ( app-crypt/trousers ) + >=dev-libs/openssl-1.1.0:0=" +DEPEND="${RDEPEND}" + +DOCS=( + README AUTHORS FAQ TODO + doc/openCryptoki-HOWTO.pdf +) + +# tests right now basically don't exist; the only available thing would +# test against an installed copy and would kill a running pcscd, all +# things that we're not interested to. +RESTRICT=test + +S="${WORKDIR}/${PN}" + +pkg_setup() { + enewgroup pkcs11 +} + +src_prepare() { + default + mv configure.in configure.ac || die + eautoreconf +} + +src_configure() { + # package uses ${localstatedir}/lib as the default path, so if we + # leave it to econf, it'll create /var/lib/lib. + + # Since upstream by default seem to enable any possible token, even + # when they don't seem to be used, we limit ourselves to the + # software emulation token (swtok) and if the user enabled the tpm + # USE flag, tpmtok. The rest of the tokens seem to be hardware- or + # software-dependent even when they build fine without their + # requirements, but until somebody asks for those, I'd rather not + # enable them. + + # We don't use --enable-debug because that tinkers with the CFLAGS + # and we don't want that. Instead we append -DDEBUG which enables + # debug information. + use debug && append-flags -DDEBUG + + econf \ + --localstatedir=/var \ + --enable-fast-install \ + --disable-dependency-tracking \ + --disable-debug \ + --enable-daemon \ + --enable-library \ + --disable-icatok \ + --enable-swtok \ + $(use_enable tpm tpmtok) \ + --disable-ccatok +} + +src_install() { + default + prune_libtool_files --all + + # Install libopencryptoki in the standard directory for libraries. + mv "${ED}"/usr/$(get_libdir)/opencryptoki/libopencryptoki.so* "${ED}"/usr/$(get_libdir) || die + rm "${ED}"/usr/$(get_libdir)/pkcs11/libopencryptoki.so + dosym ../libopencryptoki.so /usr/$(get_libdir)/pkcs11/libopencryptoki.so + + # Remove compatibility symlinks as we _never_ required those and + # they seem unused even upstream. + find "${ED}" -name 'PKCS11_*' -delete + + # We replace their ld.so and init files (mostly designed for RedHat + # as far as I can tell) with our own replacements. + rm -rf "${ED}"/etc/ld.so.conf.d "${ED}"/etc/rc.d + + # make sure that we don't modify the init script if the USE flags + # are enabled for the needed services. + cp "${FILESDIR}"/pkcsslotd.init.2 "${T}"/pkcsslotd.init + use tpm || sed -i -e '/use tcsd/d' "${T}"/pkcsslotd.init + newinitd "${T}/pkcsslotd.init" pkcsslotd + + # We create /var dirs at runtime as needed, so don't bother installing + # our own. + rm -r "${ED}"/var/{lib,lock} || die +} |