LILiK
/
openwrt-packages-dist

#
# Copyright (C) 2019 Lucian Cristian
#
# This is free software, licensed under the GNU General Public License v2.
# See /LICENSE for more information.
#
include $(TOPDIR)/rules.mk
PKG_NAME:=nssPKG_VERSION:=3.47PKG_RELEASE:=1
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gzPKG_SOURCE_URL:= \
    https://download.cdn.mozilla.net/pub/security/$(PKG_NAME)/releases/NSS_$(subst .,_,$(PKG_VERSION))_RTM/src \
    https://archive.mozilla.org/pub/security/$(PKG_NAME)/releases/NSS_$(subst .,_,$(PKG_VERSION))_RTM/srcPKG_HASH:=6cd0c4438b616bdacc0b5f25ff1506b0d07ee97ea6c95d514c5487200a155fa7
PKG_MAINTAINER:=Lucian Cristian <lucian.cristian@gmail.com>PKG_LICENCE:=MPL-2.0PKG_LICENSE_FILES:=nss/COPYINGPKG_CPE_ID:=cpe:/a:mozilla:network_security_services
PKG_BUILD_PARALLEL:=0
include $(INCLUDE_DIR)/package.mk
define Package/libnss  SECTION:=libs  SUBMENU:=SSL  CATEGORY:=Libraries  TITLE:=Mozilla's SSL and TLS implementation  URL:=https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS  DEPENDS:=+libpthread +libsqlite3 +nsprendef
define Package/nss-utils  SECTION:=utils  CATEGORY:=Utilities  TITLE:=Utilities for Mozilla's SSL and TLS implementation  URL:=https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS  DEPENDS:=+libnssendef
define Package/libnss/description  Network Security Services (NSS) is a set of libraries designed to support  cross-platform development of security-enabled client and server applications.  Applications built with NSS can support SSL v2 and v3, TLS, PKCS 5, PKCS 7,  PKCS 11, PKCS 12, S/MIME, X.509 v3 certificates, and other security standards.endef
CONFIGURE_PATH = ./nssMAKE_PATH = ./nss
LBITS = $(shell $(TARGET_CC) -dM -E - </dev/null | grep -q "__LP64__" && echo 64 || echo 32)
ifeq ($(LBITS),64)    export USE_64=1endif
TARGET_LDFLAGS += -Wl,--gc-sections,--as-needed
export CROSS_COMPILE=1export BUILD_OPT=1export NATIVE_CC=$(HOSTCC)export NATIVE_FLAGS=$(HOST_CFLAGS)export NSDISTMODE=copyexport NSS_ENABLE_WERROR=0export NSS_DISABLE_GTESTS=1export NSS_USE_SYSTEM_SQLITE=1export OS_TARGET=Linuxexport OS_ARCH=Linuxexport OS_TEST=$(ARCH)export CPU_ARCH=$(ARCH)export fpic=$(FPIC)export NSPR_INCLUDE_DIR=$(STAGING_DIR)/usr/include/nsprexport SEED_ONLY_DEV_URANDOM=1export OS_REL_CFLAGS=$(TARGET_CFLAGS)export NS_USE_GCC=1export FREEBL_NO_DEPEND=1#size optimisation, seems to not impact speed
export NSS_DISABLE_DBM=1export NSS_PKIX_NO_LDAP=1export ALLOW_OPT_CODE_SIZE=1export OPT_CODE_SIZE=1
#native compile nsinstall
define Build/Prepare	$(call Build/Prepare/Default)	USE_NATIVE=1 OS_REL_CFLAGS="$(HOST_CFLAGS)" LDFLAGS="$(HOST_LDFLAGS)" CC="$(HOSTCC)" \
	    $(MAKE) -C $(PKG_BUILD_DIR)/nss/coreconf/nsinstallendef
define Package/libnss/conffiles/etc/pki/nssdbendef
define Build/InstallDev	$(INSTALL_DIR) \
	 $(1)/usr/include/nss \
	 $(1)/usr/lib \
	 $(1)/usr/lib/pkgconfig	$(CP) $(PKG_BUILD_DIR)/dist/private/nss/*.h \
	  $(1)/usr/include/nss/	$(CP) $(PKG_BUILD_DIR)/dist/public/nss/*.h \
	  $(1)/usr/include/nss/	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/*.so \
	  $(1)/usr/lib/	$(CP) $(PKG_BUILD_DIR)/nss/config/*.pc \
	  $(1)/usr/lib/pkgconfig/endef
define Package/nss-utils/install	$(INSTALL_DIR) \
	 $(1)/usr/bin	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/bin/certutil $(1)/usr/bin	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/bin/pk12util $(1)/usr/binendef
#for now pack only libreswan needed libs
define Package/libnss/install	$(INSTALL_DIR) \
	 $(1)/usr/lib \
	 $(1)/etc/pki/nssdb \
	 $(1)/etc/ipsec.d
	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libfreebl3.so $(1)/usr/lib/	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libnss3.so $(1)/usr/lib/	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libnssutil3.so $(1)/usr/lib/	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libsmime3.so $(1)/usr/lib/	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libsoftokn3.so $(1)/usr/lib/	$(CP) $(PKG_BUILD_DIR)/dist/build_dir/lib/libssl3.so $(1)/usr/lib/#	Provide databases with a blank certificate
	$(CP)	./files/blank-cert9.db $(1)/etc/pki/nssdb/cert9.db	$(CP)	./files/blank-key4.db $(1)/etc/pki/nssdb/key4.db	$(CP)	./files/system-pkcs11.txt $(1)/etc/pki/nssdb/pkcs11.txt	ln -s /etc/pki/nssdb/cert9.db $(1)/etc/ipsec.d/cert9.db	ln -s /etc/pki/nssdb/key4.db $(1)/etc/ipsec.d/key4.db	ln -s /etc/pki/nssdb/pkcs11.txt $(1)/etc/ipsec.d/pkcs11.txtendef
$(eval $(call BuildPackage,nss-utils))$(eval $(call BuildPackage,libnss))