From: "Andrey Utkin" <andrey_utkin@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Subject: [gentoo-commits] repo/gentoo:master commit in: net-wireless/hostapd/
Date: Wed, 2 May 2018 10:10:58 +0000 (UTC) [thread overview]
Message-ID: <1525255750.3695b0a4d4b752e3401f679ecebfc6490aa2109b.andrey_utkin@gentoo> (raw)
commit: 3695b0a4d4b752e3401f679ecebfc6490aa2109b
Author: Andrey Utkin <andrey_utkin <AT> gentoo <DOT> org>
AuthorDate: Sat Apr 28 13:45:34 2018 +0000
Commit: Andrey Utkin <andrey_utkin <AT> gentoo <DOT> org>
CommitDate: Wed May 2 10:09:10 2018 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3695b0a4
net-wireless/hostapd: drop defunct "ssl" USE flag, add "internal-tls"
Since hostapd-2.5, USE=-ssl fails to build.
Appears USE=-ssl was used to avoid openssl. Since libressl support was
added in 2.6-r3 ebuild, there is an alternative way to avoid openssl
now.
This commit adds another alternative, to use internal TLSv1
implementation instead of openssl/libressl. It doesn't allow to build
hostapd with all the features which are enabled with openssl, though.
I don't anticipate user need for USE=-ssl to have a build which does not
support any encryption at all. Of course I am open to such users'
requests, but at last they have "savedconfig" option to help themselves.
Acked-by: zerochaos <AT> gentoo.org
Bug: https://bugs.gentoo.org/578798
Package-Manager: Portage-2.3.31, Repoman-2.3.9
net-wireless/hostapd/hostapd-2.6-r4.ebuild | 31 ++++++++++++++++++++++--------
net-wireless/hostapd/metadata.xml | 1 +
2 files changed, 24 insertions(+), 8 deletions(-)
diff --git a/net-wireless/hostapd/hostapd-2.6-r4.ebuild b/net-wireless/hostapd/hostapd-2.6-r4.ebuild
index feebb2eda45..ffc16c5ae29 100644
--- a/net-wireless/hostapd/hostapd-2.6-r4.ebuild
+++ b/net-wireless/hostapd/hostapd-2.6-r4.ebuild
@@ -12,12 +12,13 @@ SRC_URI="http://hostap.epitest.fi/releases/${P}.tar.gz"
LICENSE="BSD"
SLOT="0"
KEYWORDS="~amd64 ~arm ~mips ~ppc ~x86"
-IUSE="ipv6 libressl logwatch netlink sqlite +ssl +wps +crda"
+IUSE="internal-tls ipv6 libressl logwatch netlink sqlite +wps +crda"
DEPEND="
- ssl? (
- !libressl? ( dev-libs/openssl:0=[-bindist] )
- libressl? ( dev-libs/libressl:0= )
+ libressl? ( dev-libs/libressl:0= )
+ !libressl? (
+ internal-tls? ( dev-libs/libtommath )
+ !internal-tls? ( dev-libs/openssl:0=[-bindist] )
)
kernel_linux? (
dev-libs/libnl:3
@@ -30,6 +31,16 @@ RDEPEND="${DEPEND}"
S="${S}/${PN}"
+pkg_pretend() {
+ if use internal-tls; then
+ if use libressl; then
+ elog "libressl flag takes precedence over internal-tls"
+ else
+ ewarn "internal-tls implementation is experimental and provides fewer features"
+ fi
+ fi
+}
+
src_prepare() {
# Allow users to apply patches to src/drivers for example,
# i.e. anything outside ${S}/${PN}
@@ -71,7 +82,9 @@ src_configure() {
echo "CONFIG_ERP=y" >> ${CONFIG}
echo "CONFIG_EAP_MD5=y" >> ${CONFIG}
- if use ssl; then
+ if use internal-tls && !use libressl; then
+ echo "CONFIG_TLS=internal" >> ${CONFIG}
+ else
# SSL authentication methods
echo "CONFIG_EAP_FAST=y" >> ${CONFIG}
echo "CONFIG_EAP_TLS=y" >> ${CONFIG}
@@ -80,6 +93,7 @@ src_configure() {
echo "CONFIG_EAP_PEAP=y" >> ${CONFIG}
echo "CONFIG_TLSV11=y" >> ${CONFIG}
echo "CONFIG_TLSV12=y" >> ${CONFIG}
+ echo "CONFIG_EAP_PWD=y" >> ${CONFIG}
fi
if use wps; then
@@ -103,7 +117,6 @@ src_configure() {
echo "CONFIG_EAP_SAKE=y" >> ${CONFIG}
echo "CONFIG_EAP_GPSK=y" >> ${CONFIG}
echo "CONFIG_EAP_GPSK_SHA256=y" >> ${CONFIG}
- echo "CONFIG_EAP_PWD=y" >> ${CONFIG}
einfo "Enabling drivers: "
@@ -170,7 +183,7 @@ src_configure() {
src_compile() {
emake V=1
- if use ssl; then
+ if use libressl || !use internal-tls; then
emake V=1 nt_password_hash
emake V=1 hlr_auc_gw
fi
@@ -185,7 +198,9 @@ src_install() {
dosbin ${PN}
dobin ${PN}_cli
- use ssl && dobin nt_password_hash hlr_auc_gw
+ if use libressl || !use internal-tls; then
+ dobin nt_password_hash hlr_auc_gw
+ fi
newinitd "${FILESDIR}"/${PN}-init.d ${PN}
newconfd "${FILESDIR}"/${PN}-conf.d ${PN}
diff --git a/net-wireless/hostapd/metadata.xml b/net-wireless/hostapd/metadata.xml
index 59217d50546..458eddb0459 100644
--- a/net-wireless/hostapd/metadata.xml
+++ b/net-wireless/hostapd/metadata.xml
@@ -8,6 +8,7 @@
</longdescription>
<use>
<flag name="crda">Add CRDA support</flag>
+ <flag name="internal-tls">Use internal TLSv1 implementation instead of depending on OpenSSL, LibreSSL or GnuTLS</flag>
<flag name="logwatch">Install support files for
<pkg>sys-apps/logwatch</pkg></flag>
<flag name="netlink">Adding support for using netlink to create VLANs</flag>
next reply other threads:[~2018-05-02 10:11 UTC|newest]
Thread overview: 118+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-05-02 10:10 Andrey Utkin [this message]
-- strict thread matches above, loose matches on Subject: below --
2025-04-26 2:56 [gentoo-commits] repo/gentoo:master commit in: net-wireless/hostapd/ Sam James
2025-04-26 2:18 Sam James
2025-02-22 23:37 Sam James
2025-02-22 23:37 Sam James
2025-02-22 23:30 Sam James
2025-02-22 23:30 Sam James
2023-12-28 3:43 Sam James
2023-11-04 10:50 Sam James
2023-08-19 17:29 Rick Farina
2023-08-19 17:29 Rick Farina
2023-06-28 7:19 Sam James
2023-06-19 20:38 Rick Farina
2023-06-19 20:38 Rick Farina
2022-02-19 7:19 Arthur Zamarin
2022-02-19 0:37 Sam James
2022-02-18 7:40 Agostino Sarubbo
2022-02-18 3:36 Sam James
2022-02-18 3:36 Sam James
2022-01-17 2:20 Sam James
2021-08-16 16:17 Sam James
2021-08-16 16:17 Sam James
2021-06-21 19:05 Sam James
2021-06-21 7:19 Sam James
2021-06-21 6:18 Agostino Sarubbo
2021-06-17 22:18 Thomas Deutschmann
2021-06-17 20:32 Thomas Deutschmann
2021-06-17 20:24 Sam James
2021-06-17 20:23 Sam James
2021-06-12 10:56 Sam James
2021-06-02 12:59 Thomas Deutschmann
2021-06-02 12:59 Thomas Deutschmann
2021-06-02 12:59 Thomas Deutschmann
2021-05-03 11:05 Mikle Kolyada
2021-05-03 9:39 Mikle Kolyada
2021-02-05 10:37 Sam James
2021-02-05 10:37 Sam James
2021-01-10 14:42 Sam James
2021-01-10 14:42 Sam James
2021-01-10 14:42 Sam James
2020-12-20 6:29 Sam James
2020-10-09 8:41 Agostino Sarubbo
2020-10-03 16:54 Sam James
2020-10-02 20:41 Sam James
2020-09-29 22:17 Sam James
2020-09-29 11:43 Sam James
2020-09-27 16:59 Sam James
2020-07-28 0:12 Sam James
2020-07-27 23:48 Andrey Utkin
2020-04-21 22:18 Andrey Utkin
2020-02-11 23:39 Andrey Utkin
2020-02-11 23:39 Andrey Utkin
2019-12-02 15:40 Rick Farina
2019-11-27 13:15 Mikle Kolyada
2019-11-12 18:07 Agostino Sarubbo
2019-11-07 0:23 Aaron Bauman
2019-09-01 18:25 Mikle Kolyada
2019-08-22 22:01 Agostino Sarubbo
2019-08-20 22:54 Agostino Sarubbo
2019-08-19 20:05 Agostino Sarubbo
2019-08-13 13:08 Andrey Utkin
2019-08-12 17:35 Andrey Utkin
2019-07-28 13:47 Mikle Kolyada
2019-07-22 16:30 Aaron Bauman
2019-06-27 7:26 Sergei Trofimovich
2019-06-26 9:44 Agostino Sarubbo
2019-06-26 8:32 Agostino Sarubbo
2019-06-24 13:29 Andrey Utkin
2019-05-19 20:41 Stephen Klimaszewski
2019-04-08 18:22 Andrey Utkin
2019-04-01 17:21 Thomas Deutschmann
2019-03-20 21:14 Mikle Kolyada
2019-03-16 21:57 Sergei Trofimovich
2019-03-16 21:39 Agostino Sarubbo
2019-02-19 9:28 Andrey Utkin
2019-02-18 19:29 Andrey Utkin
2018-12-14 17:48 Andrey Utkin
2018-12-14 17:48 Andrey Utkin
2018-12-11 15:01 Andrey Utkin
2018-12-11 15:01 Andrey Utkin
2018-12-09 16:22 Andrey Utkin
2018-09-02 2:46 Andrey Utkin
2018-09-02 2:46 Andrey Utkin
2018-09-02 2:46 Andrey Utkin
2018-07-07 1:40 Andrey Utkin
2018-07-07 1:40 Andrey Utkin
2018-07-07 1:26 Andrey Utkin
2018-06-26 15:57 Mikle Kolyada
2018-06-13 14:45 Andrey Utkin
2018-06-13 14:28 Andrey Utkin
2018-06-10 18:46 Thomas Deutschmann
2018-06-09 19:49 Aaron Bauman
2018-06-07 21:54 Andrey Utkin
2018-06-07 21:54 Andrey Utkin
2018-06-07 21:54 Andrey Utkin
2018-05-02 10:10 Andrey Utkin
2018-04-30 17:51 Mikle Kolyada
2018-04-27 21:14 Andrey Utkin
2018-04-16 19:39 Richard Farina
2018-04-09 1:23 Andrey Utkin
2018-04-09 1:23 Andrey Utkin
2018-04-07 17:21 Andrey Utkin
2018-03-25 17:28 Andrey Utkin
2018-03-13 11:59 Pacho Ramos
2017-10-23 2:16 Richard Farina
2017-10-21 10:46 Sergei Trofimovich
2017-10-16 14:18 Richard Farina
2017-02-02 7:32 Aaron Bauman
2016-11-24 1:50 Thomas Deutschmann
2016-10-14 17:01 Michael Palimaka
2016-10-07 9:01 Agostino Sarubbo
2016-10-07 8:59 Agostino Sarubbo
2016-10-06 7:48 Lars Wendler
2016-10-05 16:47 Bjarke Istrup Pedersen
2016-04-19 20:38 Ian Stakenvicius
2016-03-15 16:39 Agostino Sarubbo
2016-03-15 11:08 Agostino Sarubbo
2015-10-06 18:18 Bjarke Istrup Pedersen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1525255750.3695b0a4d4b752e3401f679ecebfc6490aa2109b.andrey_utkin@gentoo \
--to=andrey_utkin@gentoo.org \
--cc=gentoo-commits@lists.gentoo.org \
--cc=gentoo-dev@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox