Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

hiba: Add initial recipe for hiba #597

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
40 changes: 40 additions & 0 deletions meta-oe/recipes-connectivity/hiba/hiba_git.bb
Original file line number Diff line number Diff line change
@@ -0,0 +1,40 @@
SUMMARY = "Google Host Identity Based Authorization"
DESCRIPTION = "HIBA is a system built on top of regular OpenSSH \
certificate-based authentication that allows to manage flexible \
authorization of principals on pools of target hosts without the need to \
push customized authorized_users files periodically."

S = "${WORKDIR}/git/hiba"
LICENSE = "BSD-3-Clause"
LIC_FILES_CHKSUM = "file://${S}/LICENSE;md5=7e161abe9a4585310725dd86c28d1ae2"

PV = "0.0.0+git${SRCPV}"

inherit autotools

DEPENDS += "openssl zlib"

SRC_URI = " \
git://github.com/google/hiba;protocol=https;branch=main;destsuffix=git/hiba;name=hiba \
git://github.com/openssh/openssh-portable.git;protocol=https;branch=master;destsuffix=git/openssh-portable;name=openssh \
"
SRCREV_hiba = "84b8c4de84078c7a9d4213c2d9553ad9f66661cc"

# Internal OpenSSH version for HIBA to link against (the version doesn't have
# to match the actual installed version).
# Discussion in
# https://lists.openembedded.org/g/openembedded-core/topic/94475279#172977
SRCREV_openssh = "15a01cf15f396f87c6d221c5a6af98331c818962"
SRCREV_FORMAT = "hiba"

EXTRA_OECONF += " \
--with-opensshdir=${S}/../openssh-portable \
wltu marked this conversation as resolved.
Show resolved Hide resolved
"

autotools_preconfigure:append() {
cd "${S}/../openssh-portable"
autoreconf

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Shouldn't this go better in a do_fetch:append() ?

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

And I believe this can even be done in a more idiomatic way:

LIC_FILES_CHKSUM_hiba = "file://${S}/LICENSE;md5=7e161abe9a4585310725dd86c28d1ae2"
LIC_FILES_CHKSUM_openssh = "file://${S}/LICENSE;md5=7e161abe9a4585310725dd86c28d1ae2"
SRC_URI = "
git://github.com/google/hiba;protocol=https;branch=main;destsuffix=git/hiba;name=hiba
git://github.com/openssh/openssh-portable.git;protocol=https;branch=master;destsuffix=git/openssh-portable;name=openssh
"
SRCREV_hiba = "3199239c6a0a89dbd8f155204f44798c78195ab0"
SRCREV_openssh = "0ffb46f2ee2ffcc4daf45ee679e484da8fcf338c"

SRC_URI[hiba.sha256sum] = "79154c8cc144905d552540ef7b395289a029a43ac262bb913b99f475d6da1bec"
SRC_URI[openssh.sha256sum] = "f7a2969530cc025dbbe17b40c1413693e5b57cee04a194ba932b6b2465860bba"

SRCREV_FORMAT="hiba_openssh"
PV = "1.0+git${SRCPV}"

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated. PTAL.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

actually, nevermind. Still some failures.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe you still need the the SRC_URI[xxx.sha256sum] variables set

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it working now? I still do not see SRC_URI checksums for hib and OpenSSH. Is it expected?

./configure ${CONFIGUREOPTS}
oe_runmake
cd "${S}"

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Here and above, this is probably not needed

}