LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7906 Commits
1 Branch
46 MiB
Tree: 140b3f2fe0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '140b3f2fe0'
${ noResults }
openwrt-packages-dist/net/wireguard/Makefile

116 lines
3.3 KiB
Raw Normal View History

wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: simple package bump to 0.0.20170214 While I'm at it, add myself as maintainer, since I'm doing many of the bumps anyway. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: new version and usability improvements Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: version bump From upstreams changelog: This rather large snapshot touches quite a few sensitive areas, so I'm releasing it now rather than later to receive feedback on any possible issues. It also contains fixes, so everybody should upgrade. * man: fix psk mention in wg-quick man page * man: update wg-quick(8) to show Debian resolvconf braindamage Documentation cleanups. * wg-quick: use src routing for default routes in v6 ip-rule(8) doesn't do the right thing with source addresses, unless we explicitly set it inside the route. This fixes wg-quick on IPv6 systems. * curve25519: actually, do some things on heap sometimes * curve25519: align the basepoint to 32 bytes * curve25519: add NEON versions for ARM * data: enable BH during parallel crypto on ARM/NEON * chacha20poly1305: move constants to rodata * chacha20poly1305: add NEON versions for ARM and ARM64 We now have faster primitives on ARM and ARM64 processors, which should improve performance. * handshake: process in parallel Handshakes are now processed in parallel using all cores, which should improve throughput during a storm. * noise: no need to store ephemeral public key * noise: precompute static-static ECDH operation We can precompute the ECDH(s, s) calculation, which improves handshake initiation message performance by double. * style: spaces after for loops * peer: use iterator macro instead of callback The most unreadable C ever produced. It might be wise to find a sexier-looking alternative at some point. * compat: remove warning for < 4.1 * compat: ship padata if kernel doesn't have it The usual array of annoying compat things. * rust test: convert screech test to snow * rust test: add icmp ping We now use Jake's snow library for Noise in the test, which we've expanded to complete a ping. * config: do not error out when getting if no peers * tools: allow creating device with no peers Fixing some small things in the tool/config interaction. * device: keep going when share_check fails * routingtable: remove unnecessary check in node_placement() * config: it's faster to memcpy than strncpy * timers: fix typo in comment Nits. * debug: print interface name in dmesg For those who compile with `make debug`, you'll be happy to see a bit better information in dmesg. * timers: rework handshake reply control flow * timers: the completion of a handshake also is on key confirmation * timers: reset retry-attempt counter when not retrying Tightening up our timer implementation, which is quite important. Signed-off-by: Dan Luedtke <mail@danrl.com>
7 years ago
net/wireguard: version bump Simple version bump to 20170320. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
7 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
net/wireguard: version bump Update to new snapshot version. We also make IPV6 optional, and conditionally selecting the udptunnel6 module, using the same trick that the strongswan package also uses for this kind of dependency expression. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: version bump From upstreams changelog: This rather large snapshot touches quite a few sensitive areas, so I'm releasing it now rather than later to receive feedback on any possible issues. It also contains fixes, so everybody should upgrade. * man: fix psk mention in wg-quick man page * man: update wg-quick(8) to show Debian resolvconf braindamage Documentation cleanups. * wg-quick: use src routing for default routes in v6 ip-rule(8) doesn't do the right thing with source addresses, unless we explicitly set it inside the route. This fixes wg-quick on IPv6 systems. * curve25519: actually, do some things on heap sometimes * curve25519: align the basepoint to 32 bytes * curve25519: add NEON versions for ARM * data: enable BH during parallel crypto on ARM/NEON * chacha20poly1305: move constants to rodata * chacha20poly1305: add NEON versions for ARM and ARM64 We now have faster primitives on ARM and ARM64 processors, which should improve performance. * handshake: process in parallel Handshakes are now processed in parallel using all cores, which should improve throughput during a storm. * noise: no need to store ephemeral public key * noise: precompute static-static ECDH operation We can precompute the ECDH(s, s) calculation, which improves handshake initiation message performance by double. * style: spaces after for loops * peer: use iterator macro instead of callback The most unreadable C ever produced. It might be wise to find a sexier-looking alternative at some point. * compat: remove warning for < 4.1 * compat: ship padata if kernel doesn't have it The usual array of annoying compat things. * rust test: convert screech test to snow * rust test: add icmp ping We now use Jake's snow library for Noise in the test, which we've expanded to complete a ping. * config: do not error out when getting if no peers * tools: allow creating device with no peers Fixing some small things in the tool/config interaction. * device: keep going when share_check fails * routingtable: remove unnecessary check in node_placement() * config: it's faster to memcpy than strncpy * timers: fix typo in comment Nits. * debug: print interface name in dmesg For those who compile with `make debug`, you'll be happy to see a bit better information in dmesg. * timers: rework handshake reply control flow * timers: the completion of a handshake also is on key confirmation * timers: reset retry-attempt counter when not retrying Tightening up our timer implementation, which is quite important. Signed-off-by: Dan Luedtke <mail@danrl.com>
7 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: new version and usability improvements Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: new version and usability improvements Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: move into VPN-submenu Wireguard is a VPN-implementation and should be located in VPN-submenu Signed-off-by: Sven Roederer <freifunk@it-solutions.geroedel.de>
7 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: add protocol dependency for endpoints Endpoint dependency implemented. The actual endpoint is used exclusively. Using this approach we are dual-stack safe (not errors on missing protocol) and create only the dependency that are really necessary. Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: simple package bump to 0.0.20170214 While I'm at it, add myself as maintainer, since I'm doing many of the bumps anyway. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: Bump to 0.0.20160722 Also fix a new compilation error, due to upstream changes in the build system. SUBDIRS= is deprecated when building external kernel modules, use M= instead to fix compilation. Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
net/wireguard: add stub install section This is in response to the metapackage discussion in openwrt/luci#1030. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
7 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: add protocol dependency for endpoints Endpoint dependency implemented. The actual endpoint is used exclusively. Using this approach we are dual-stack safe (not errors on missing protocol) and create only the dependency that are really necessary. Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard-tools: Add netifd protocol helper Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard-tools: Add missing directory fixes issue #3515 Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard-tools: Add netifd protocol helper Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
net/wireguard: version bump Update to new snapshot version. We also make IPV6 optional, and conditionally selecting the udptunnel6 module, using the same trick that the strongswan package also uses for this kind of dependency expression. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
wireguard: version bump Signed-off-by: Dan Luedtke <mail@danrl.com>
8 years ago
wireguard: Initial upload Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
8 years ago
 
  1. #

  2. # Copyright (C) 2016-2017 Jason A. Donenfeld <Jason@zx2c4.com>

  3. # Copyright (C) 2016 Baptiste Jonglez <openwrt@bitsofnetworks.org>

  4. # Copyright (C) 2016-2017 Dan Luedtke <mail@danrl.com>

  5. #

  6. # This is free software, licensed under the GNU General Public License v2.

  7. # See /LICENSE for more information.

  8. 

  9. include $(TOPDIR)/rules.mk
  10. include $(INCLUDE_DIR)/kernel.mk
  11. 

  12. PKG_NAME:=wireguard
  13. 

  14. PKG_VERSION:=0.0.20170531
  15. PKG_RELEASE:=1
  16. 

  17. PKG_SOURCE:=WireGuard-$(PKG_VERSION).tar.xz
  18. PKG_SOURCE_URL:=https://git.zx2c4.com/WireGuard/snapshot/
  19. PKG_HASH:=2eb7d9aaf11dcb35e5066837bb1c768398ad3655744fdeb656bd7e7c7ad7cacc
  20. 

  21. PKG_LICENSE:=GPL-2.0
  22. PKG_LICENSE_FILES:=COPYING
  23. 

  24. PKG_BUILD_DIR:=$(BUILD_DIR)/WireGuard-$(PKG_VERSION)
  25. PKG_BUILD_PARALLEL:=1
  26. PKG_USE_MIPS16:=0
  27. 

  28. # Wireguard's makefile needs this to know where to build the kernel module

  29. export KERNELDIR:=$(LINUX_DIR)
  30. 

  31. include $(INCLUDE_DIR)/package.mk
  32. 

  33. define Package/wireguard/Default
  34.   SECTION:=net
  35.   CATEGORY:=Network
  36.   SUBMENU:=VPN
  37.   URL:=https://www.wireguard.io
  38.   MAINTAINER:=Baptiste Jonglez <openwrt@bitsofnetworks.org>, \

  39.               Dan Luedtke <mail@danrl.com>, \

  40.               Jason A. Donenfeld <Jason@zx2c4.com>
  41. endef
  42. 

  43. define Package/wireguard/Default/description
  44.   WireGuard is a novel VPN that runs inside the Linux Kernel and utilizes
  45.   state-of-the-art cryptography. It aims to be faster, simpler, leaner, and
  46.   more useful than IPSec, while avoiding the massive headache. It intends to
  47.   be considerably more performant than OpenVPN.  WireGuard is designed as a
  48.   general purpose VPN for running on embedded interfaces and super computers
  49.   alike, fit for many different circumstances.
  50.   It runs over UDP.
  51. endef
  52. 

  53. define Package/wireguard
  54.   $(call Package/wireguard/Default)
  55.   TITLE:=Wireguard meta-package
  56.   DEPENDS:=+wireguard-tools +kmod-wireguard
  57. endef
  58. 

  59. include $(INCLUDE_DIR)/kernel-defaults.mk
  60. include $(INCLUDE_DIR)/package-defaults.mk
  61. 

  62. # Used by Build/Compile/Default

  63. MAKE_PATH:=src/tools
  64. 

  65. define Build/Compile
  66. 	$(MAKE) $(KERNEL_MAKEOPTS) M="$(PKG_BUILD_DIR)/src" modules
  67. 	$(call Build/Compile/Default)
  68. endef
  69. 

  70. define Package/wireguard/install
  71.   true
  72. endef
  73. 

  74. define Package/wireguard/description
  75.   $(call Package/wireguard/Default/description)
  76. endef
  77. 

  78. define Package/wireguard-tools
  79.   $(call Package/wireguard/Default)
  80.   TITLE:=Wireguard userspace control program (wg)
  81.   DEPENDS:=+libmnl
  82. endef
  83. 

  84. define Package/wireguard-tools/description
  85.   $(call Package/wireguard/Default/description)
  86. 

  87.   This package provides the userspace control program for wireguard, `wg`,
  88.   and a netifd protocol helper.
  89. endef
  90. 

  91. define Package/wireguard-tools/install
  92. 	$(INSTALL_DIR) $(1)/usr/bin/
  93. 	$(INSTALL_BIN) $(PKG_BUILD_DIR)/src/tools/wg $(1)/usr/bin/
  94. 	$(INSTALL_DIR) $(1)/lib/netifd/proto/
  95. 	$(INSTALL_BIN) ./files/wireguard.sh $(1)/lib/netifd/proto/
  96. endef
  97. 

  98. define KernelPackage/wireguard
  99.   SECTION:=kernel
  100.   CATEGORY:=Kernel modules
  101.   SUBMENU:=Network Support
  102.   TITLE:=Wireguard kernel module
  103.   DEPENDS:=+IPV6:kmod-udptunnel6 +kmod-udptunnel4 +kmod-ipt-hashlimit
  104.   FILES:= $(PKG_BUILD_DIR)/src/wireguard.$(LINUX_KMOD_SUFFIX)
  105.   AUTOLOAD:=$(call AutoProbe,wireguard)
  106. endef
  107. 

  108. define KernelPackage/wireguard/description
  109.   $(call Package/wireguard/Default/description)
  110. 

  111.   This package provides the kernel module for wireguard.
  112. endef
  113. 

  114. $(eval $(call BuildPackage,wireguard))
  115. $(eval $(call BuildPackage,wireguard-tools))
  116. $(eval $(call KernelPackage,wireguard))