You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

155 lines
4.5 KiB

  1. #
  2. # Copyright (C) 2019 Lucian Cristian
  3. #
  4. # This is free software, licensed under the GNU General Public License v2.
  5. # See /LICENSE for more information.
  6. #
  7. include $(TOPDIR)/rules.mk
  8. PKG_NAME:=nss
  9. PKG_VERSION:=3.55
  10. PKG_RELEASE:=1
  11. PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz
  12. PKG_SOURCE_URL:= \
  13. https://download.cdn.mozilla.net/pub/security/$(PKG_NAME)/releases/NSS_$(subst .,_,$(PKG_VERSION))_RTM/src \
  14. https://archive.mozilla.org/pub/security/$(PKG_NAME)/releases/NSS_$(subst .,_,$(PKG_VERSION))_RTM/src
  15. PKG_HASH:=fc692e3db45a082ee6328cd989e795c171a00df9c518df090937f7604f850004
  16. PKG_MAINTAINER:=Lucian Cristian <lucian.cristian@gmail.com>
  17. PKG_LICENCE:=MPL-2.0
  18. PKG_LICENSE_FILES:=nss/COPYING
  19. PKG_CPE_ID:=cpe:/a:mozilla:network_security_services
  20. PKG_BUILD_PARALLEL:=1
  21. include $(INCLUDE_DIR)/package.mk
  22. define Package/libnss
  23. SECTION:=libs
  24. SUBMENU:=SSL
  25. CATEGORY:=Libraries
  26. TITLE:=Mozilla's SSL and TLS implementation
  27. URL:=https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS
  28. DEPENDS:=+libpthread +libsqlite3 +nspr
  29. endef
  30. define Package/nss-utils
  31. SECTION:=utils
  32. CATEGORY:=Utilities
  33. TITLE:=Utilities for Mozilla's SSL and TLS implementation
  34. URL:=https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS
  35. DEPENDS:=+libnss
  36. endef
  37. define Package/libnss/description
  38. Network Security Services (NSS) is a set of libraries designed to support
  39. cross-platform development of security-enabled client and server applications.
  40. Applications built with NSS can support SSL v2 and v3, TLS, PKCS 5, PKCS 7,
  41. PKCS 11, PKCS 12, S/MIME, X.509 v3 certificates, and other security standards.
  42. endef
  43. CONFIGURE_PATH = ./nss
  44. MAKE_PATH = ./nss
  45. LBITS = $(shell $(TARGET_CC) -dM -E - </dev/null | grep -q "__LP64__" && echo 64 || echo 32)
  46. ifeq ($(LBITS),64)
  47. export USE_64=1
  48. endif
  49. ifeq ($(CONFIG_CPU_TYPE),"xscale")
  50. TARGET_CFLAGS+= -mfloat-abi=softfp
  51. endif
  52. ifneq ($(findstring arm,$(CONFIG_ARCH)),)
  53. ifeq ($(findstring neon,$(CONFIG_CPU_TYPE)),)
  54. export NSS_DISABLE_ARM32_NEON
  55. endif
  56. endif
  57. export NATIVE_CC=$(HOSTCC)
  58. export NATIVE_FLAGS=$(HOST_CFLAGS)
  59. export NSS_ENABLE_WERROR=0
  60. MAKE_FLAGS += \
  61. CROSS_COMPILE=1 \
  62. BUILD_OPT=1 \
  63. NSDISTMODE=copy \
  64. NSS_DISABLE_GTESTS=1 \
  65. NSS_USE_SYSTEM_SQLITE=1 \
  66. OS_ARCH=Linux \
  67. OS_TEST=$(ARCH) \
  68. fpic=$(FPIC) \
  69. NSPR_INCLUDE_DIR=$(STAGING_DIR)/usr/include/nspr \
  70. SEED_ONLY_DEV_URANDOM=1 \
  71. NS_USE_GCC=1 \
  72. FREEBL_NO_DEPEND=1 \
  73. NSS_PKIX_NO_LDAP=1 \
  74. ALLOW_OPT_CODE_SIZE=1 \
  75. OPT_CODE_SIZE=1 \
  76. OS_REL_CFLAGS="$(TARGET_CFLAGS)"
  77. #native compile nsinstall
  78. define Build/Prepare
  79. $(call Build/Prepare/Default)
  80. USE_NATIVE=1 OS_REL_CFLAGS="$(HOST_CFLAGS)" LDFLAGS="$(HOST_LDFLAGS)" \
  81. CC="$(HOSTCC)" CPU_ARCH="$(HOST_ARCH)" \
  82. $(MAKE) -C $(PKG_BUILD_DIR)/nss/coreconf/nsinstall
  83. endef
  84. define Build/Compile
  85. $(call Build/Compile/Default,nss_build_all)
  86. endef
  87. define Package/libnss/conffiles
  88. /etc/pki/nssdb
  89. endef
  90. define Build/InstallDev
  91. $(INSTALL_DIR) \
  92. $(1)/usr/include/nss \
  93. $(1)/usr/lib \
  94. $(1)/usr/lib/pkgconfig
  95. $(CP) $(PKG_BUILD_DIR)/dist/private/nss/*.h \
  96. $(1)/usr/include/nss/
  97. $(CP) $(PKG_BUILD_DIR)/dist/public/nss/*.h \
  98. $(1)/usr/include/nss/
  99. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/*.so \
  100. $(1)/usr/lib/
  101. $(CP) $(PKG_BUILD_DIR)/nss/config/*.pc \
  102. $(1)/usr/lib/pkgconfig/
  103. endef
  104. define Package/nss-utils/install
  105. $(INSTALL_DIR) \
  106. $(1)/usr/bin
  107. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/bin/certutil $(1)/usr/bin
  108. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/bin/pk12util $(1)/usr/bin
  109. endef
  110. #for now pack only libreswan needed libs
  111. define Package/libnss/install
  112. $(INSTALL_DIR) \
  113. $(1)/usr/lib \
  114. $(1)/etc/pki/nssdb \
  115. $(1)/etc/ipsec.d
  116. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libfreebl3.so $(1)/usr/lib/
  117. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libnss3.so $(1)/usr/lib/
  118. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libnssckbi.so $(1)/usr/lib/
  119. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libnssutil3.so $(1)/usr/lib/
  120. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libsmime3.so $(1)/usr/lib/
  121. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libsoftokn3.so $(1)/usr/lib/
  122. $(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libssl3.so $(1)/usr/lib/
  123. # Provide databases with a blank certificate
  124. $(CP) ./files/blank-cert9.db $(1)/etc/pki/nssdb/cert9.db
  125. $(CP) ./files/blank-key4.db $(1)/etc/pki/nssdb/key4.db
  126. $(CP) ./files/system-pkcs11.txt $(1)/etc/pki/nssdb/pkcs11.txt
  127. ln -s /etc/pki/nssdb/cert9.db $(1)/etc/ipsec.d/cert9.db
  128. ln -s /etc/pki/nssdb/key4.db $(1)/etc/ipsec.d/key4.db
  129. ln -s /etc/pki/nssdb/pkcs11.txt $(1)/etc/ipsec.d/pkcs11.txt
  130. endef
  131. $(eval $(call BuildPackage,nss-utils))
  132. $(eval $(call BuildPackage,libnss))