1*eaae0b33SPatrick WilliamsSUMMARY = "A full-featured SSL VPN solution via tun device." 2*eaae0b33SPatrick WilliamsHOMEPAGE = "https://openvpn.net/" 3*eaae0b33SPatrick WilliamsSECTION = "net" 4*eaae0b33SPatrick WilliamsLICENSE = "GPL-2.0-only" 5*eaae0b33SPatrick WilliamsLIC_FILES_CHKSUM = "file://COPYING;md5=89196bacc47ed37a5b242a535661a049" 6*eaae0b33SPatrick WilliamsDEPENDS = "lzo lz4 openssl iproute2 libcap-ng ${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)} ${@bb.utils.contains('PTEST_ENABLED', '1', 'cmocka', '', d)} " 7*eaae0b33SPatrick Williams 8*eaae0b33SPatrick Williamsinherit autotools systemd update-rc.d pkgconfig ptest 9*eaae0b33SPatrick Williams 10*eaae0b33SPatrick WilliamsSRC_URI = "http://swupdate.openvpn.org/community/releases/${BP}.tar.gz \ 11*eaae0b33SPatrick Williams file://0001-configure.ac-eliminate-build-path-from-openvpn-versi.patch \ 12*eaae0b33SPatrick Williams file://openvpn \ 13*eaae0b33SPatrick Williams file://run-ptest \ 14*eaae0b33SPatrick Williams " 15*eaae0b33SPatrick Williams 16*eaae0b33SPatrick WilliamsUPSTREAM_CHECK_URI = "https://openvpn.net/community-downloads" 17*eaae0b33SPatrick Williams 18*eaae0b33SPatrick WilliamsSRC_URI[sha256sum] = "9eb6a6618352f9e7b771a9d38ae1631b5edfeed6d40233e243e602ddf2195e7a" 19*eaae0b33SPatrick Williams 20*eaae0b33SPatrick WilliamsCVE_STATUS[CVE-2020-27569] = "not-applicable-config: Applies only Aviatrix OpenVPN client, not openvpn" 21*eaae0b33SPatrick Williams 22*eaae0b33SPatrick WilliamsINITSCRIPT_PACKAGES = "${PN}" 23*eaae0b33SPatrick WilliamsINITSCRIPT_NAME:${PN} = "openvpn" 24*eaae0b33SPatrick WilliamsINITSCRIPT_PARAMS:${PN} = "start 10 2 3 4 5 . stop 70 0 1 6 ." 25*eaae0b33SPatrick Williams 26*eaae0b33SPatrick WilliamsCFLAGS += "-fno-inline" 27*eaae0b33SPatrick Williams 28*eaae0b33SPatrick Williams# I want openvpn to be able to read password from file (hrw) 29*eaae0b33SPatrick WilliamsEXTRA_OECONF += "--enable-iproute2" 30*eaae0b33SPatrick WilliamsEXTRA_OECONF += "${@bb.utils.contains('DISTRO_FEATURES', 'pam', '', '--disable-plugin-auth-pam', d)}" 31*eaae0b33SPatrick Williams 32*eaae0b33SPatrick Williams# Explicitly specify IPROUTE to bypass the configure-time check for /sbin/ip on the host. 33*eaae0b33SPatrick WilliamsEXTRA_OECONF += "IPROUTE=${base_sbindir}/ip" 34*eaae0b33SPatrick Williams 35*eaae0b33SPatrick WilliamsEXTRA_OECONF += "SYSTEMD_UNIT_DIR=${systemd_system_unitdir} \ 36*eaae0b33SPatrick Williams TMPFILES_DIR=${nonarch_libdir}/tmpfiles.d \ 37*eaae0b33SPatrick Williams " 38*eaae0b33SPatrick Williams 39*eaae0b33SPatrick WilliamsPACKAGECONFIG ??= "${@bb.utils.filter('DISTRO_FEATURES', 'systemd', d)} \ 40*eaae0b33SPatrick Williams ${@bb.utils.filter('DISTRO_FEATURES', 'selinux', d)} \ 41*eaae0b33SPatrick Williams " 42*eaae0b33SPatrick Williams 43*eaae0b33SPatrick WilliamsPACKAGECONFIG[systemd] = "--enable-systemd,--disable-systemd,systemd" 44*eaae0b33SPatrick WilliamsPACKAGECONFIG[selinux] = "--enable-selinux,--disable-selinux,libselinux" 45*eaae0b33SPatrick Williams 46*eaae0b33SPatrick WilliamsRDEPENDS:${PN}-ptest:append = " make bash" 47*eaae0b33SPatrick Williams 48*eaae0b33SPatrick Williamsdo_install:append() { 49*eaae0b33SPatrick Williams install -d ${D}/${sysconfdir}/init.d 50*eaae0b33SPatrick Williams install -m 755 ${UNPACKDIR}/openvpn ${D}/${sysconfdir}/init.d 51*eaae0b33SPatrick Williams 52*eaae0b33SPatrick Williams install -d ${D}/${sysconfdir}/openvpn 53*eaae0b33SPatrick Williams install -d ${D}/${sysconfdir}/openvpn/server 54*eaae0b33SPatrick Williams install -d ${D}/${sysconfdir}/openvpn/client 55*eaae0b33SPatrick Williams 56*eaae0b33SPatrick Williams install -d ${D}/${sysconfdir}/openvpn/sample 57*eaae0b33SPatrick Williams install -m 644 ${S}/sample/sample-config-files/loopback-server ${D}${sysconfdir}/openvpn/sample/loopback-server.conf 58*eaae0b33SPatrick Williams install -m 644 ${S}/sample/sample-config-files/loopback-client ${D}${sysconfdir}/openvpn/sample/loopback-client.conf 59*eaae0b33SPatrick Williams install -dm 755 ${D}${sysconfdir}/openvpn/sample/sample-config-files 60*eaae0b33SPatrick Williams install -dm 755 ${D}${sysconfdir}/openvpn/sample/sample-keys 61*eaae0b33SPatrick Williams install -dm 755 ${D}${sysconfdir}/openvpn/sample/sample-scripts 62*eaae0b33SPatrick Williams install -m 644 ${S}/sample/sample-config-files/* ${D}${sysconfdir}/openvpn/sample/sample-config-files 63*eaae0b33SPatrick Williams install -m 644 ${S}/sample/sample-keys/* ${D}${sysconfdir}/openvpn/sample/sample-keys 64*eaae0b33SPatrick Williams install -m 644 ${S}/sample/sample-scripts/* ${D}${sysconfdir}/openvpn/sample/sample-scripts 65*eaae0b33SPatrick Williams 66*eaae0b33SPatrick Williams install -d -m 710 ${D}/${localstatedir}/lib/openvpn 67*eaae0b33SPatrick Williams} 68*eaae0b33SPatrick Williams 69*eaae0b33SPatrick Williamsdo_compile_ptest () { 70*eaae0b33SPatrick Williams for x in `find ${B}/tests/unit_tests -name Makefile -exec grep -l buildtest-TESTS {} \;`; do 71*eaae0b33SPatrick Williams dir=`dirname ${x}` 72*eaae0b33SPatrick Williams case $dir in 73*eaae0b33SPatrick Williams *example*) 74*eaae0b33SPatrick Williams echo "Skipping directory: $dir" 75*eaae0b33SPatrick Williams ;; 76*eaae0b33SPatrick Williams *) 77*eaae0b33SPatrick Williams oe_runmake -C ${dir} buildtest-TESTS 78*eaae0b33SPatrick Williams ;; 79*eaae0b33SPatrick Williams esac 80*eaae0b33SPatrick Williams done 81*eaae0b33SPatrick Williams} 82*eaae0b33SPatrick Williams 83*eaae0b33SPatrick Williamsdo_install_ptest() { 84*eaae0b33SPatrick Williams for x in $(find ${B}/tests/unit_tests -name Makefile -exec grep -l buildtest-TESTS {} \;); do 85*eaae0b33SPatrick Williams dir=$(dirname ${x}) 86*eaae0b33SPatrick Williams 87*eaae0b33SPatrick Williams if [[ "$dir" == *example* ]]; then 88*eaae0b33SPatrick Williams continue 89*eaae0b33SPatrick Williams fi 90*eaae0b33SPatrick Williams 91*eaae0b33SPatrick Williams target_dir="${D}/${PTEST_PATH}/unit_tests/$(basename ${dir})" 92*eaae0b33SPatrick Williams mkdir -p ${target_dir} 93*eaae0b33SPatrick Williams cp -f ${dir}/Makefile ${target_dir}/ 94*eaae0b33SPatrick Williams sed -i "s/^Makefile:/MM:/g" ${target_dir}/Makefile 95*eaae0b33SPatrick Williams sed -i 's/^#TESTS = $(am__EXEEXT_4)/TESTS = $(am__EXEEXT_4)/' ${target_dir}/Makefile 96*eaae0b33SPatrick Williams 97*eaae0b33SPatrick Williams for testfile in $(find ${dir} -name "*testdriver"); do 98*eaae0b33SPatrick Williams cp -rf ${testfile} ${target_dir}/ 99*eaae0b33SPatrick Williams done 100*eaae0b33SPatrick Williams done 101*eaae0b33SPatrick Williams sed -i 's|find ./|find ${PTEST_PATH}|g' ${D}${PTEST_PATH}/run-ptest 102*eaae0b33SPatrick Williams sed -i 's|${top_builddir}/src/openvpn|${sbindir}|g' ${S}/tests/t_lpback.sh 103*eaae0b33SPatrick Williams cp -f ${S}/tests/t_lpback.sh ${D}/${PTEST_PATH} 104*eaae0b33SPatrick Williams cp -f ${B}/tests/Makefile ${D}/${PTEST_PATH} 105*eaae0b33SPatrick Williams sed -i "s/^Makefile:/MM:/g" ${D}/${PTEST_PATH}/Makefile 106*eaae0b33SPatrick Williams sed -i "s/^test_scripts = t_client.sh t_lpback.sh t_cltsrv.sh/test_scripts = t_lpback.sh/g" ${D}/${PTEST_PATH}/Makefile 107*eaae0b33SPatrick Williams 108*eaae0b33SPatrick Williams} 109*eaae0b33SPatrick Williams 110*eaae0b33SPatrick WilliamsPACKAGES =+ " ${PN}-sample " 111*eaae0b33SPatrick Williams 112*eaae0b33SPatrick WilliamsRRECOMMENDS:${PN} = "kernel-module-tun" 113*eaae0b33SPatrick Williams 114*eaae0b33SPatrick WilliamsFILES:${PN}-dbg += "${libdir}/openvpn/plugins/.debug" 115*eaae0b33SPatrick WilliamsFILES:${PN} += "${systemd_system_unitdir}/openvpn-server@.service \ 116*eaae0b33SPatrick Williams ${systemd_system_unitdir}/openvpn-client@.service \ 117*eaae0b33SPatrick Williams ${nonarch_libdir}/tmpfiles.d \ 118*eaae0b33SPatrick Williams " 119*eaae0b33SPatrick WilliamsFILES:${PN}-sample = "${sysconfdir}/openvpn/sample/ \ 120*eaae0b33SPatrick Williams " 121