wok-current annotate lighttpd-ssl/receipt @ rev 18056
Up: cookutils, cookutils-daemon (737).
author | Aleksej Bobylev <al.bobylev@gmail.com> |
---|---|
date | Fri May 15 16:51:30 2015 +0300 (2015-05-15) |
parents | 4da6b4009226 |
children | 31fd89019d06 |
rev | line source |
---|---|
pascal@1787 | 1 # SliTaz package receipt. |
pascal@1787 | 2 |
pascal@1787 | 3 PACKAGE="lighttpd-ssl" |
pascal@15579 | 4 VERSION="1.4.33" |
pascal@1787 | 5 CATEGORY="network" |
pascal@1787 | 6 SHORT_DESC="Fast and light HTTP Web server with SSL support." |
pascal@1787 | 7 MAINTAINER="pankso@slitaz.org" |
pascal@15379 | 8 LICENSE="BSD" |
pascal@1787 | 9 SUGGESTED="lighttpd-modules php perl python" |
pascal@1787 | 10 SOURCE="lighttpd" |
pascal@15579 | 11 TARBALL="$SOURCE-$VERSION.tar.xz" |
pascal@1787 | 12 WEB_SITE="http://www.lighttpd.net/" |
pascal@17869 | 13 WGET_URL="http://download.lighttpd.net/lighttpd/releases-${VERSION%.*}.x/$TARBALL" |
slaxemulator@8894 | 14 CONFIG_FILES="/etc/lighttpd/vhosts.conf /etc/lighttpd/lighttpd.conf /etc/ssl/lighttpd" |
pascal@1787 | 15 PROVIDE="lighttpd" |
pankso@16000 | 16 HOST_ARCH="i486 arm" |
pankso@15992 | 17 |
pankso@15992 | 18 DEPENDS="pcre openssl" |
pankso@15992 | 19 BUILD_DEPENDS="pcre-dev bzip2-dev openssl-dev" |
pankso@15992 | 20 |
pascal@1787 | 21 BASE_MODULES=" |
pascal@1787 | 22 access |
pascal@1787 | 23 accesslog |
pascal@1787 | 24 alias |
pascal@1787 | 25 cgi |
pascal@1787 | 26 dirlisting |
pascal@1787 | 27 indexfile |
pascal@1787 | 28 staticfile |
pascal@1787 | 29 rewrite |
pascal@1787 | 30 status |
pascal@1787 | 31 userdir" |
pascal@1787 | 32 |
pascal@1787 | 33 # Rules to configure and make the package. |
pascal@1787 | 34 compile_rules() |
pascal@1787 | 35 { |
pascal@15579 | 36 sed -i '/addrs_left/d' src/mod_extforward.c |
pascal@1787 | 37 ./configure \ |
pascal@1787 | 38 --enable-shared \ |
pascal@1787 | 39 --disable-ipv6 \ |
pascal@1787 | 40 --with-openssl \ |
pascal@1787 | 41 --prefix=/usr \ |
pascal@1787 | 42 --libdir=/usr/lib/lighttpd \ |
pascal@1787 | 43 --mandir=/usr/share/man \ |
pascal@1787 | 44 $CONFIGURE_ARGS && |
pascal@1787 | 45 make && |
pascal@15579 | 46 make DESTDIR=$DESTDIR install |
pascal@1787 | 47 } |
pascal@1787 | 48 |
pascal@1787 | 49 # Rules to gen a SliTaz package suitable for Tazpkg. |
pascal@1787 | 50 # On SliTaz Lighttpd runs as user/group : www/www or 80/80. |
pascal@1787 | 51 genpkg_rules() |
pascal@1787 | 52 { |
pascal@1787 | 53 mkdir -p $fs/usr |
pascal@15579 | 54 #cp -a $install/usr/bin $fs/usr |
pascal@15579 | 55 cp -a $install/usr/sbin $fs/usr |
pankso@4572 | 56 |
pascal@1787 | 57 # Modules. |
pascal@1787 | 58 mkdir -p $fs/usr/lib/lighttpd |
pascal@1787 | 59 for module in $BASE_MODULES |
pascal@1787 | 60 do |
pascal@15579 | 61 cp $install/usr/lib/lighttpd/mod_${module}.so $fs/usr/lib/lighttpd |
pascal@1787 | 62 echo -n "Copying : mod_${module}.so" && status |
pascal@1787 | 63 done |
pankso@4572 | 64 |
pascal@1787 | 65 # Server root and config file. |
slaxemulator@8652 | 66 cp -a $WOK/$SOURCE/stuff/etc $fs |
pascal@1787 | 67 chown -R 0.0 $fs/etc |
pascal@1790 | 68 mkdir -p $fs/etc/ssl/lighttpd |
pascal@1790 | 69 cat >> $fs/etc/lighttpd/lighttpd.conf <<EOT |
pascal@1789 | 70 |
pascal@1789 | 71 # Enable HTTPS support |
pascal@1789 | 72 # |
pascal@1791 | 73 \$SERVER["socket"] == ":443" { |
pascal@1789 | 74 protocol = "https://" |
pascal@1789 | 75 ssl.engine = "enable" |
pascal@17237 | 76 # Unsafe, see CVE-2014-3566 POODLE |
pascal@17237 | 77 ssl.use-sslv2 = "disable" |
pascal@17237 | 78 ssl.use-sslv3 = "disable" |
pascal@1789 | 79 ssl.pemfile = "/etc/ssl/lighttpd/lighttpd.pem" |
pascal@1789 | 80 } |
pascal@1789 | 81 EOT |
pankso@4572 | 82 |
pascal@1787 | 83 # Logs directory. |
pascal@1787 | 84 mkdir -p $fs/var/log/lighttpd |
pascal@1787 | 85 chown 80.80 $fs/var/log/lighttpd |
pascal@1787 | 86 } |
pascal@1787 | 87 |
pankso@15992 | 88 # Make sur it as cross compile properly |
pankso@15992 | 89 testsuite() |
pankso@15992 | 90 { |
pankso@15992 | 91 readelf -h $install/usr/sbin/lighttpd |
pankso@15992 | 92 } |
pankso@15992 | 93 |
pascal@1787 | 94 # Pre and post install commands for Tazpkg. |
pascal@1787 | 95 # We stop the server by default in case of upgarde. |
pascal@1787 | 96 pre_install() |
pascal@1787 | 97 { |
pascal@1787 | 98 echo "Processing pre-install commands..." |
pascal@1788 | 99 [ -f /etc/init.d/lighttpd ] && /etc/init.d/lighttpd stop |
pascal@1787 | 100 } |
pascal@1906 | 101 |
pascal@1787 | 102 post_install() |
pascal@1787 | 103 { |
pascal@1787 | 104 echo "Processing post-install commands..." |
pascal@1789 | 105 if [ ! -f $1/etc/ssl/lighttpd/lighttpd.pem ]; then |
pascal@1789 | 106 openssl req -new -x509 \ |
pascal@1789 | 107 -keyout $1/etc/ssl/lighttpd/lighttpd.pem \ |
pascal@1789 | 108 -out $1/etc/ssl/lighttpd/lighttpd.pem \ |
pascal@1906 | 109 -days 3650 -nodes <<EOT |
pascal@1789 | 110 $(. /etc/locale.conf ; echo ${LANG#*_}) |
pascal@1789 | 111 $(cat /etc/TZ) |
pascal@1789 | 112 |
pascal@1789 | 113 $(cat /etc/hostname) |
pascal@1789 | 114 |
pascal@1789 | 115 |
pascal@1789 | 116 |
pascal@1789 | 117 EOT |
pascal@1789 | 118 fi |
pascal@1787 | 119 # Just in case. |
pascal@1905 | 120 chown www.www $1/var/log/lighttpd |
pascal@1905 | 121 if [ -z "$1" ]; then |
pascal@1905 | 122 for i in apache ; do |
pascal@1905 | 123 [ -f /etc/init.d/$i ] && /etc/init.d/$i stop |
pascal@1905 | 124 done |
erjo@2620 | 125 /etc/init.d/lighttpd start |
pascal@1905 | 126 fi |
pascal@1787 | 127 } |