wok-current annotate lighttpd-ssl/receipt @ rev 18056

Up: cookutils, cookutils-daemon (737).
author Aleksej Bobylev <al.bobylev@gmail.com>
date Fri May 15 16:51:30 2015 +0300 (2015-05-15)
parents 4da6b4009226
children 31fd89019d06
rev   line source
pascal@1787 1 # SliTaz package receipt.
pascal@1787 2
pascal@1787 3 PACKAGE="lighttpd-ssl"
pascal@15579 4 VERSION="1.4.33"
pascal@1787 5 CATEGORY="network"
pascal@1787 6 SHORT_DESC="Fast and light HTTP Web server with SSL support."
pascal@1787 7 MAINTAINER="pankso@slitaz.org"
pascal@15379 8 LICENSE="BSD"
pascal@1787 9 SUGGESTED="lighttpd-modules php perl python"
pascal@1787 10 SOURCE="lighttpd"
pascal@15579 11 TARBALL="$SOURCE-$VERSION.tar.xz"
pascal@1787 12 WEB_SITE="http://www.lighttpd.net/"
pascal@17869 13 WGET_URL="http://download.lighttpd.net/lighttpd/releases-${VERSION%.*}.x/$TARBALL"
slaxemulator@8894 14 CONFIG_FILES="/etc/lighttpd/vhosts.conf /etc/lighttpd/lighttpd.conf /etc/ssl/lighttpd"
pascal@1787 15 PROVIDE="lighttpd"
pankso@16000 16 HOST_ARCH="i486 arm"
pankso@15992 17
pankso@15992 18 DEPENDS="pcre openssl"
pankso@15992 19 BUILD_DEPENDS="pcre-dev bzip2-dev openssl-dev"
pankso@15992 20
pascal@1787 21 BASE_MODULES="
pascal@1787 22 access
pascal@1787 23 accesslog
pascal@1787 24 alias
pascal@1787 25 cgi
pascal@1787 26 dirlisting
pascal@1787 27 indexfile
pascal@1787 28 staticfile
pascal@1787 29 rewrite
pascal@1787 30 status
pascal@1787 31 userdir"
pascal@1787 32
pascal@1787 33 # Rules to configure and make the package.
pascal@1787 34 compile_rules()
pascal@1787 35 {
pascal@15579 36 sed -i '/addrs_left/d' src/mod_extforward.c
pascal@1787 37 ./configure \
pascal@1787 38 --enable-shared \
pascal@1787 39 --disable-ipv6 \
pascal@1787 40 --with-openssl \
pascal@1787 41 --prefix=/usr \
pascal@1787 42 --libdir=/usr/lib/lighttpd \
pascal@1787 43 --mandir=/usr/share/man \
pascal@1787 44 $CONFIGURE_ARGS &&
pascal@1787 45 make &&
pascal@15579 46 make DESTDIR=$DESTDIR install
pascal@1787 47 }
pascal@1787 48
pascal@1787 49 # Rules to gen a SliTaz package suitable for Tazpkg.
pascal@1787 50 # On SliTaz Lighttpd runs as user/group : www/www or 80/80.
pascal@1787 51 genpkg_rules()
pascal@1787 52 {
pascal@1787 53 mkdir -p $fs/usr
pascal@15579 54 #cp -a $install/usr/bin $fs/usr
pascal@15579 55 cp -a $install/usr/sbin $fs/usr
pankso@4572 56
pascal@1787 57 # Modules.
pascal@1787 58 mkdir -p $fs/usr/lib/lighttpd
pascal@1787 59 for module in $BASE_MODULES
pascal@1787 60 do
pascal@15579 61 cp $install/usr/lib/lighttpd/mod_${module}.so $fs/usr/lib/lighttpd
pascal@1787 62 echo -n "Copying : mod_${module}.so" && status
pascal@1787 63 done
pankso@4572 64
pascal@1787 65 # Server root and config file.
slaxemulator@8652 66 cp -a $WOK/$SOURCE/stuff/etc $fs
pascal@1787 67 chown -R 0.0 $fs/etc
pascal@1790 68 mkdir -p $fs/etc/ssl/lighttpd
pascal@1790 69 cat >> $fs/etc/lighttpd/lighttpd.conf <<EOT
pascal@1789 70
pascal@1789 71 # Enable HTTPS support
pascal@1789 72 #
pascal@1791 73 \$SERVER["socket"] == ":443" {
pascal@1789 74 protocol = "https://"
pascal@1789 75 ssl.engine = "enable"
pascal@17237 76 # Unsafe, see CVE-2014-3566 POODLE
pascal@17237 77 ssl.use-sslv2 = "disable"
pascal@17237 78 ssl.use-sslv3 = "disable"
pascal@1789 79 ssl.pemfile = "/etc/ssl/lighttpd/lighttpd.pem"
pascal@1789 80 }
pascal@1789 81 EOT
pankso@4572 82
pascal@1787 83 # Logs directory.
pascal@1787 84 mkdir -p $fs/var/log/lighttpd
pascal@1787 85 chown 80.80 $fs/var/log/lighttpd
pascal@1787 86 }
pascal@1787 87
pankso@15992 88 # Make sur it as cross compile properly
pankso@15992 89 testsuite()
pankso@15992 90 {
pankso@15992 91 readelf -h $install/usr/sbin/lighttpd
pankso@15992 92 }
pankso@15992 93
pascal@1787 94 # Pre and post install commands for Tazpkg.
pascal@1787 95 # We stop the server by default in case of upgarde.
pascal@1787 96 pre_install()
pascal@1787 97 {
pascal@1787 98 echo "Processing pre-install commands..."
pascal@1788 99 [ -f /etc/init.d/lighttpd ] && /etc/init.d/lighttpd stop
pascal@1787 100 }
pascal@1906 101
pascal@1787 102 post_install()
pascal@1787 103 {
pascal@1787 104 echo "Processing post-install commands..."
pascal@1789 105 if [ ! -f $1/etc/ssl/lighttpd/lighttpd.pem ]; then
pascal@1789 106 openssl req -new -x509 \
pascal@1789 107 -keyout $1/etc/ssl/lighttpd/lighttpd.pem \
pascal@1789 108 -out $1/etc/ssl/lighttpd/lighttpd.pem \
pascal@1906 109 -days 3650 -nodes <<EOT
pascal@1789 110 $(. /etc/locale.conf ; echo ${LANG#*_})
pascal@1789 111 $(cat /etc/TZ)
pascal@1789 112
pascal@1789 113 $(cat /etc/hostname)
pascal@1789 114
pascal@1789 115
pascal@1789 116
pascal@1789 117 EOT
pascal@1789 118 fi
pascal@1787 119 # Just in case.
pascal@1905 120 chown www.www $1/var/log/lighttpd
pascal@1905 121 if [ -z "$1" ]; then
pascal@1905 122 for i in apache ; do
pascal@1905 123 [ -f /etc/init.d/$i ] && /etc/init.d/$i stop
pascal@1905 124 done
erjo@2620 125 /etc/init.d/lighttpd start
pascal@1905 126 fi
pascal@1787 127 }