1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
|
# -*-makefile-*-
#
# Copyright (C) 2015 by Michael Olbrich <m.olbrich@pengutronix.de>
#
# See CREDITS for details about who has contributed to this project.
#
# For further information about the PTXdist project and license conditions
# see the README file.
#
#
# We provide this package
#
PACKAGES-$(PTXCONF_CA_CERTIFICATES) += ca-certificates
#
# Paths and names
#
CA_CERTIFICATES_VERSION := 2016.08.08
# The commit hash of the default branch. Update this in sync with the date above.
CA_CERTIFICATES_HASH := 79f079284141
CA_CERTIFICATES_MD5 := 4be3172ed2528ade3574cfbe35eec421
CA_CERTIFICATES := ca-certificates-$(CA_CERTIFICATES_VERSION)
CA_CERTIFICATES_SUFFIX := txt
CA_CERTIFICATES_URL := https://hg.mozilla.org/releases/mozilla-release/raw-file/$(CA_CERTIFICATES_HASH)/security/nss/lib/ckfw/builtins/certdata.$(CA_CERTIFICATES_SUFFIX)
CA_CERTIFICATES_SOURCE := $(SRCDIR)/certdata-$(CA_CERTIFICATES_VERSION).$(CA_CERTIFICATES_SUFFIX)
CA_CERTIFICATES_DIR := $(BUILDDIR)/$(CA_CERTIFICATES)
CA_CERTIFICATES_LICENSE := MPL-2.0
# Use '=' to delay $(shell ...) calls until this is needed
CA_CERTIFICATES_CERTDATA2PEM = $(call ptx/in-path, PTXDIST_PATH_SCRIPTS, certdata2pem.py)
CA_CERTIFICATES_BLACKLIST = $(call ptx/get-alternative, config/ca-certificates, blacklist.txt)
# ----------------------------------------------------------------------------
# Extract
# ----------------------------------------------------------------------------
$(STATEDIR)/ca-certificates.extract:
@$(call targetinfo)
@rm -rf $(CA_CERTIFICATES_DIR)
@mkdir -p $(CA_CERTIFICATES_DIR)
@cp -v $(CA_CERTIFICATES_SOURCE) $(CA_CERTIFICATES_DIR)/certdata.txt
@cp -v $(CA_CERTIFICATES_BLACKLIST) $(CA_CERTIFICATES_DIR)
@$(call touch)
# ----------------------------------------------------------------------------
# Prepare
# ----------------------------------------------------------------------------
CA_CERTIFICATES_CONF_TOOL := NO
# ----------------------------------------------------------------------------
# Compile
# ----------------------------------------------------------------------------
$(STATEDIR)/ca-certificates.compile:
@$(call targetinfo)
@$(call world/execute, CA_CERTIFICATES, $(CA_CERTIFICATES_CERTDATA2PEM))
@$(call touch)
# ----------------------------------------------------------------------------
# Install
# ----------------------------------------------------------------------------
$(STATEDIR)/ca-certificates.install:
@$(call targetinfo)
@$(call world/execute, CA_CERTIFICATES, \
install -d -m 0755 $(CA_CERTIFICATES_PKGDIR)/etc/ssl/certs/)
ifdef PTXCONF_CA_CERTIFICATES_BUNDLE
@for crt in $(CA_CERTIFICATES_DIR)/*.crt; do \
sed -e '$$a\\' "$${crt}" >> \
$(CA_CERTIFICATES_PKGDIR)/etc/ssl/certs/ca-certificates.crt; \
done
endif
ifdef PTXCONF_CA_CERTIFICATES_CERTS
@install -m 0644 $(CA_CERTIFICATES_DIR)/*.crt \
$(CA_CERTIFICATES_PKGDIR)/etc/ssl/certs/
@$(call execute, CA_CERTIFICATES, \
OPENSSL_CONF=$(SYSROOT)/usr/lib/ssl/openssl.cnf SSL_CERT_FILE="" \
c_rehash $(CA_CERTIFICATES_PKGDIR)/etc/ssl/certs/)
endif
@$(call touch)
# ----------------------------------------------------------------------------
# Target-Install
# ----------------------------------------------------------------------------
$(STATEDIR)/ca-certificates.targetinstall:
@$(call targetinfo)
@$(call install_init, ca-certificates)
@$(call install_fixup, ca-certificates,PRIORITY,optional)
@$(call install_fixup, ca-certificates,SECTION,base)
@$(call install_fixup, ca-certificates,AUTHOR,"Michael Olbrich <m.olbrich@pengutronix.de>")
@$(call install_fixup, ca-certificates,DESCRIPTION,missing)
@$(call install_tree, ca-certificates, 0, 0, -, /etc/ssl/certs)
@$(call install_finish, ca-certificates)
@$(call touch)
# ----------------------------------------------------------------------------
# Clean
# ----------------------------------------------------------------------------
#$(STATEDIR)/ca-certificates.clean:
# @$(call targetinfo)
# @$(call clean_pkg, CA_CERTIFICATES)
# vim: syntax=make
|