]> git.ipfire.org Git - ipfire-2.x.git/blob - lfs/openssl
projects / ipfire-2.x.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge remote-tracking branch 'mfischer/newt' into next
[ipfire-2.x.git] / lfs / openssl
1 ###############################################################################
2 # #
3 # IPFire.org - A linux based firewall #
4 # Copyright (C) 2007-2015 IPFire Team <info@ipfire.org> #
5 # #
6 # This program is free software: you can redistribute it and/or modify #
7 # it under the terms of the GNU General Public License as published by #
8 # the Free Software Foundation, either version 3 of the License, or #
9 # (at your option) any later version. #
10 # #
11 # This program is distributed in the hope that it will be useful, #
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
14 # GNU General Public License for more details. #
15 # #
16 # You should have received a copy of the GNU General Public License #
17 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
18 # #
19 ###############################################################################
20
21 ###############################################################################
22 # Definitions
23 ###############################################################################
24
25 include Config
26
27 VER = 1.0.2a
28
29 THISAPP = openssl-$(VER)
30 DL_FILE = $(THISAPP).tar.gz
31 DL_FROM = $(URL_IPFIRE)
32 DIR_APP = $(DIR_SRC)/$(THISAPP)
33
34 TARGET = $(DIR_INFO)/$(THISAPP)$(KCFG)
35
36 ifneq "$(KCFG)" "-sse2"
37 CFLAGS += -DPURIFY
38 else
39 CFLAGS =-O2 -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fPIC
40 CFLAGS+= -fstack-protector-all --param=ssp-buffer-size=4
41 CFLAGS+= -march=i686 -mmmx -msse -msse2 -mfpmath=sse
42 CFLAGS+= -fomit-frame-pointer -DPURIFY
43 CXXFLAGS="${CFLAGS}"
44 endif
45
46 export RPM_OPT_FLAGS = $(CFLAGS)
47
48 CONFIGURE_OPTIONS = \
49 --prefix=/usr \
50 --openssldir=/etc/ssl \
51 --enginesdir=/usr/lib/openssl/engines \
52 shared \
53 zlib-dynamic \
54 enable-camellia \
55 enable-md2 \
56 enable-seed \
57 enable-tlsext \
58 enable-rfc3779 \
59 no-idea \
60 no-mdc2 \
61 no-rc5 \
62 no-srp \
63 -DSSL_FORBID_ENULL
64
65 ifeq "$(MACHINE)" "i586"
66 CONFIGURE_OPTIONS += linux-elf
67
68 ifneq "$(KCFG)" "-sse2"
69 CONFIGURE_OPTIONS += no-sse2
70 endif
71 endif
72
73 ifeq "$(MACHINE)" "armv5tel"
74 CONFIGURE_OPTIONS += linux-generic32
75 endif
76
77 ###############################################################################
78 # Top-level Rules
79 ###############################################################################
80
81 objects = $(DL_FILE)
82
83 $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
84
85 $(DL_FILE)_MD5 = a06c547dac9044161a477211049f60ef
86
87 install : $(TARGET)
88
89 check : $(patsubst %,$(DIR_CHK)/%,$(objects))
90
91 download :$(patsubst %,$(DIR_DL)/%,$(objects))
92
93 md5 : $(subst %,%_MD5,$(objects))
94
95 ###############################################################################
96 # Downloading, checking, md5sum
97 ###############################################################################
98
99 $(patsubst %,$(DIR_CHK)/%,$(objects)) :
100 @$(CHECK)
101
102 $(patsubst %,$(DIR_DL)/%,$(objects)) :
103 @$(LOAD)
104
105 $(subst %,%_MD5,$(objects)) :
106 @$(MD5)
107
108 ###############################################################################
109 # Installation Details
110 ###############################################################################
111
112 $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
113 @$(PREBUILD)
114 @rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE)
115 cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/openssl-1.0.0-beta5-enginesdir.patch
116 cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/openssl-1.0.2a-rpmbuild.patch
117 cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/openssl-1.0.1m-weak-ciphers.patch
118 cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/openssl-disable-sslv2-sslv3.patch
119
120 # i586 specific patches
121 ifeq "$(MACHINE)" "i586"
122 cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/openssl-1.0.2a_auto_enable_padlock.patch
123 cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/openssl-1.0.2a_disable_ssse3_for_amd.patch
124 endif
125
126 # Apply our CFLAGS
127 cd $(DIR_APP) && sed -i Configure \
128 -e "s/-O3 -fomit-frame-pointer/$(CFLAGS)/g"
129
130 cd $(DIR_APP) && find crypto/ -name Makefile -exec \
131 sed 's/^ASFLAGS=/&-Wa,--noexecstack /' -i {} \;
132
133 cd $(DIR_APP) && ./Configure $(CONFIGURE_OPTIONS)
134
135 cd $(DIR_APP) && make depend
136 cd $(DIR_APP) && make
137
138 ifeq "$(KCFG)" "-sse2"
139 -mkdir -pv /usr/lib/sse2
140 cd $(DIR_APP) && install -m 755 \
141 libcrypto.so.10 /usr/lib/sse2
142 else
143 # Install everything.
144 cd $(DIR_APP) && make install
145 install -m 0644 $(DIR_SRC)/config/ssl/openssl.cnf /etc/ssl
146
147 # Remove man pages.
148 -rm -vfr /etc/ssl/man
149
150 # Move engines to the right place.
151 -mkdir -pv /usr/lib/openssl
152 rm -vfr /usr/lib/openssl/engines
153 mv -v /usr/lib/engines /usr/lib/openssl
154 endif
155
156 @rm -rf $(DIR_APP)
157 @$(POSTBUILD)
IPFire 2.x development tree