PKGBUILDs/core/openssl-cryptodev/PKGBUILD

# $Id$
# Maintainer: Pierre Schmitz <pierre@archlinux.de>

# ALARM: Kevin Mihelich <kevin@archlinuxarm.org>
#  - use linux-armv4 target for our architectures
#  - cryptodev-enabled version
#
#	moonman <moonman [dot] ca [at] gmail [dot] com>
#  - replace eng_cryptodev in openssl with the one provided with cryptodev
#  - get cryptodev.h from cryptodev tarball instead of the kernel headers
#
noautobuild=1
buildarch=6

pkgname=openssl-cryptodev
_pkgname=openssl
_ver=1.0.1e
# use a pacman compatible version scheme
pkgver=${_ver/[a-z]/.${_ver//[0-9.]/}}
#pkgver=$_ver
pkgrel=5
pkgdesc='The Open Source toolkit for Secure Sockets Layer and Transport Layer Security'
arch=('arm' 'armv7h')
url='https://www.openssl.org'
license=('custom:BSD')
depends=('perl')
optdepends=('ca-certificates')
options=('!makeflags')
backup=('etc/ssl/openssl.cnf')
conflicts=('openssl')
provides=("openssl=${pkgver}")
_cryptover=1.6

source=("https://www.openssl.org/source/${_pkgname}-${_ver}.tar.gz"
        'no-rpath.patch'
        'ca-dir.patch'
        'openssl-1.0.1e-fix_pod_syntax-1.patch'
        "http://download.gna.org/cryptodev-linux/cryptodev-linux-${_cryptover}.tar.gz"
        'openssl-1.0.1-Check-DTLS_BAD_VER-for-version-number.patch'
        'openssl-1.0.1-e_aes_cbc_hmac_sha1.c-fix-rare-bad-record-mac-on-AES.patch')

md5sums=('66bf6f10f060d561929de96f9dfe5b8c'
         'dc78d3d06baffc16217519242ce92478'
         '3bf51be3a1bbd262be46dc619f92aa90' 
         '88d3bef4bbdc640b0412315d8d347bdf'
         'eade38998313c25fd7934719cdf8a2ea'
         'ae7848bb152b8834ceff30c8c480d422'
         'c5cc62a47cef72f4e5ad119a88e97ae4')

prepare() {
        cd $srcdir/${_pkgname}-$_ver

        # remove rpath: http://bugs.archlinux.org/task/14367
        patch -p0 -i $srcdir/no-rpath.patch
        # set ca dir to /etc/ssl by default
        patch -p0 -i $srcdir/ca-dir.patch

        patch -p1 -i $srcdir/openssl-1.0.1e-fix_pod_syntax-1.patch

        # OpenSSL 1.0.0k, 1.0.1.d, 1.0.1e fail handshake with DTLS1_BAD_VER
        # http://rt.openssl.org/Ticket/Display.html?id=2984
        patch -p1 -i $srcdir/openssl-1.0.1-Check-DTLS_BAD_VER-for-version-number.patch

        # Communication problems with 1.0.1e
        # http://rt.openssl.org/Ticket/Display.html?id=3002
        patch -p1 -i $srcdir/openssl-1.0.1-e_aes_cbc_hmac_sha1.c-fix-rare-bad-record-mac-on-AES.patch

        #Replace eng_cryptodev.c with cryptodev version
        cp -u ${srcdir}/cryptodev-linux-${_cryptover}/extras/eng_cryptodev.c ${srcdir}/openssl-${_ver}/crypto/engine/

        #Copy the header file
        cp -u ${srcdir}/cryptodev-linux-${_cryptover}/crypto/cryptodev.h ${srcdir}/openssl-${_ver}/crypto/

}

build() {
	cd $srcdir/${_pkgname}-$_ver

	if [ "${CARCH}" == 'x86_64' ]; then
		openssltarget='linux-x86_64'
	elif [ "${CARCH}" == 'i686' ]; then
		openssltarget='linux-elf'
	elif [ "${CARCH}" == 'arm' -o "${CARCH}" == 'armv7h' ]; then
		openssltarget='linux-armv4'
	fi

	# mark stack as non-executable: http://bugs.archlinux.org/task/12434
	./Configure --prefix=/usr --openssldir=/etc/ssl --libdir=lib \
		-DHAVE_CRYPTODEV -DUSE_CRYPTODEV_DIGESTS -DHASH_MAX_LEN=64 \
		shared threads zlib \
		"${openssltarget}" \
		-Wa,--noexecstack "${CFLAGS}"

	make depend
	make
}

check() {
	cd $srcdir/$_pkgname-$_ver
	# the test fails due to missing write permissions in /etc/ssl
	# revert this patch for make test
	patch -p0 -R -i $srcdir/ca-dir.patch
#	make test
	patch -p0 -i $srcdir/ca-dir.patch
}

package() {
	depends=('cryptodev_friendly')
	cd $srcdir/$_pkgname-$_ver
	make INSTALL_PREFIX=$pkgdir MANDIR=/usr/share/man MANSUFFIX=ssl install
	install -D -m644 LICENSE $pkgdir/usr/share/licenses/$_pkgname/LICENSE
}
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`# $Id$`
			`# Maintainer: Pierre Schmitz <pierre@archlinux.de>`

			`# ALARM: Kevin Mihelich <kevin@archlinuxarm.org>`
			`# - use linux-armv4 target for our architectures`
core/openssl-cryptodev fixes 2012-03-01 04:56:40 +00:00			`# - cryptodev-enabled version`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`#`
			`# moonman <moonman [dot] ca [at] gmail [dot] com>`
			`# - replace eng_cryptodev in openssl with the one provided with cryptodev`
core/openssl-cryptodev fix md5sum 2013-12-16 10:41:26 +00:00			`# - get cryptodev.h from cryptodev tarball instead of the kernel headers`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`#`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`noautobuild=1`
core/openssl-cryptodev: fixes for our builders 2012-11-12 18:26:11 +00:00			`buildarch=6`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00
			`pkgname=openssl-cryptodev`
			`_pkgname=openssl`
core/openssl to 1.0.1.e-1 2013-02-16 20:07:58 +00:00			`_ver=1.0.1e`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`# use a pacman compatible version scheme`
			`pkgver=${_ver/[a-z]/.${_ver//[0-9.]/}}`
core/openssl-cryptodev to 1.0.1a-1 2012-04-19 14:31:02 +00:00			`#pkgver=$_ver`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`pkgrel=5`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`pkgdesc='The Open Source toolkit for Secure Sockets Layer and Transport Layer Security'`
core/openssl-cryptodev: fixes for our builders 2012-11-12 18:26:11 +00:00			`arch=('arm' 'armv7h')`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`url='https://www.openssl.org'`
			`license=('custom:BSD')`
core/openssl-cryptodev: fixes for our builders 2012-11-12 18:26:11 +00:00			`depends=('perl')`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`optdepends=('ca-certificates')`
			`options=('!makeflags')`
			`backup=('etc/ssl/openssl.cnf')`
			`conflicts=('openssl')`
			`provides=("openssl=${pkgver}")`
core/openssl-cryptodev more fixes 2013-12-16 10:28:41 +00:00			`_cryptover=1.6`

core/openssl-cryptodev: fix sources 2012-04-19 18:35:55 +00:00			`source=("https://www.openssl.org/source/${_pkgname}-${_ver}.tar.gz"`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`'no-rpath.patch'`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`'ca-dir.patch'`
			`'openssl-1.0.1e-fix_pod_syntax-1.patch'`
core/openssl-cryptodev more fixes 2013-12-16 10:28:41 +00:00			`"http://download.gna.org/cryptodev-linux/cryptodev-linux-${_cryptover}.tar.gz"`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`'openssl-1.0.1-Check-DTLS_BAD_VER-for-version-number.patch'`
			`'openssl-1.0.1-e_aes_cbc_hmac_sha1.c-fix-rare-bad-record-mac-on-AES.patch')`

core/openssl to 1.0.1.e-1 2013-02-16 20:07:58 +00:00			`md5sums=('66bf6f10f060d561929de96f9dfe5b8c'`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`'dc78d3d06baffc16217519242ce92478'`
core/openssl-cryptodev to 1.0.1.e-4 2013-10-23 14:09:06 +00:00			`'3bf51be3a1bbd262be46dc619f92aa90'`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`'88d3bef4bbdc640b0412315d8d347bdf'`
core/openssl-cryptodev fix md5sum 2013-12-16 10:41:26 +00:00			`'eade38998313c25fd7934719cdf8a2ea'`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`'ae7848bb152b8834ceff30c8c480d422'`
			`'c5cc62a47cef72f4e5ad119a88e97ae4')`
core/openssl-cryptodev to 1.0.1.e-4 2013-10-23 14:09:06 +00:00
			`prepare() {`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`cd $srcdir/${_pkgname}-$_ver`
core/openssl-cryptodev to 1.0.1.e-4 2013-10-23 14:09:06 +00:00
			`# remove rpath: http://bugs.archlinux.org/task/14367`
			`patch -p0 -i $srcdir/no-rpath.patch`
			`# set ca dir to /etc/ssl by default`
			`patch -p0 -i $srcdir/ca-dir.patch`

			`patch -p1 -i $srcdir/openssl-1.0.1e-fix_pod_syntax-1.patch`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00
			`# OpenSSL 1.0.0k, 1.0.1.d, 1.0.1e fail handshake with DTLS1_BAD_VER`
			`# http://rt.openssl.org/Ticket/Display.html?id=2984`
			`patch -p1 -i $srcdir/openssl-1.0.1-Check-DTLS_BAD_VER-for-version-number.patch`

			`# Communication problems with 1.0.1e`
			`# http://rt.openssl.org/Ticket/Display.html?id=3002`
			`patch -p1 -i $srcdir/openssl-1.0.1-e_aes_cbc_hmac_sha1.c-fix-rare-bad-record-mac-on-AES.patch`

core/openssl-cryptodev more fixes 2013-12-16 10:28:41 +00:00			`#Replace eng_cryptodev.c with cryptodev version`
			`cp -u ${srcdir}/cryptodev-linux-${_cryptover}/extras/eng_cryptodev.c ${srcdir}/openssl-${_ver}/crypto/engine/`

			`#Copy the header file`
			`cp -u ${srcdir}/cryptodev-linux-${_cryptover}/crypto/cryptodev.h ${srcdir}/openssl-${_ver}/crypto/`

core/openssl-cryptodev to 1.0.1.e-4 2013-10-23 14:09:06 +00:00			`}`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00
			`build() {`
core/openssl-cryptodev to 1.0.1.e-5 and fixes 2013-12-16 08:15:32 +00:00			`cd $srcdir/${_pkgname}-$_ver`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00
			`if [ "${CARCH}" == 'x86_64' ]; then`
			`openssltarget='linux-x86_64'`
			`elif [ "${CARCH}" == 'i686' ]; then`
			`openssltarget='linux-elf'`
			`elif [ "${CARCH}" == 'arm' -o "${CARCH}" == 'armv7h' ]; then`
			`openssltarget='linux-armv4'`
			`fi`
core/linux-cubox: cryptodev support. 2012-11-07 00:34:09 +00:00
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`# mark stack as non-executable: http://bugs.archlinux.org/task/12434`
			`./Configure --prefix=/usr --openssldir=/etc/ssl --libdir=lib \`
			`-DHAVE_CRYPTODEV -DUSE_CRYPTODEV_DIGESTS -DHASH_MAX_LEN=64 \`
core/openssl to 1.0.1.e-3 2013-02-17 18:50:21 +00:00			`shared threads zlib \`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`"${openssltarget}" \`
core/openssl-cryptodev more fixes 2013-12-16 10:28:41 +00:00			`-Wa,--noexecstack "${CFLAGS}"`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00
			`make depend`
			`make`
			`}`

			`check() {`
			`cd $srcdir/$_pkgname-$_ver`
			`# the test fails due to missing write permissions in /etc/ssl`
			`# revert this patch for make test`
			`patch -p0 -R -i $srcdir/ca-dir.patch`
core/openssl-cryptodev: fixes for our builders 2012-11-12 18:26:11 +00:00			`# make test`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`patch -p0 -i $srcdir/ca-dir.patch`
			`}`

			`package() {`
core/openssl-cryptodev: fixes for our builders 2012-11-12 18:26:11 +00:00			`depends=('cryptodev_friendly')`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`cd $srcdir/$_pkgname-$_ver`
core/openssl to 1.0.1.e-1 2013-02-16 20:07:58 +00:00			`make INSTALL_PREFIX=$pkgdir MANDIR=/usr/share/man MANSUFFIX=ssl install`
revert the 'fixing' of openssl, split into separate package 2012-02-28 21:05:38 +00:00			`install -D -m644 LICENSE $pkgdir/usr/share/licenses/$_pkgname/LICENSE`
			`}`