xref: /OK3568_Linux_fs/yocto/poky/meta/recipes-support/gnutls/gnutls_3.7.4.bb (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1SUMMARY = "GNU Transport Layer Security Library"
2DESCRIPTION = "a secure communications library implementing the SSL, \
3TLS and DTLS protocols and technologies around them."
4HOMEPAGE = "https://gnutls.org/"
5BUGTRACKER = "https://savannah.gnu.org/support/?group=gnutls"
6
7LICENSE = "GPL-3.0-or-later & LGPL-2.1-or-later"
8LICENSE:${PN} = "LGPL-2.1-or-later"
9LICENSE:${PN}-xx = "LGPL-2.1-or-later"
10LICENSE:${PN}-bin = "GPL-3.0-or-later"
11LICENSE:${PN}-openssl = "GPL-3.0-or-later"
12
13LIC_FILES_CHKSUM = "file://LICENSE;md5=71391c8e0c1cfe68077e7fce3b586283 \
14                    file://doc/COPYING;md5=c678957b0c8e964aa6c70fd77641a71e \
15                    file://doc/COPYING.LESSER;md5=a6f89e2100d9b6cdffcea4f398e37343"
16
17DEPENDS = "nettle gmp virtual/libiconv libunistring"
18DEPENDS:append:libc-musl = " argp-standalone"
19
20SHRT_VER = "${@d.getVar('PV').split('.')[0]}.${@d.getVar('PV').split('.')[1]}"
21
22SRC_URI = "https://www.gnupg.org/ftp/gcrypt/gnutls/v${SHRT_VER}/gnutls-${PV}.tar.xz \
23           file://arm_eabi.patch \
24           file://CVE-2022-2509.patch \
25           file://CVE-2023-0361.patch \
26           "
27
28SRC_URI[sha256sum] = "e6adbebcfbc95867de01060d93c789938cf89cc1d1f6ef9ef661890f6217451f"
29
30inherit autotools texinfo pkgconfig gettext lib_package gtk-doc
31
32PACKAGECONFIG ??= "libidn  ${@bb.utils.filter('DISTRO_FEATURES', 'seccomp', d)}"
33
34# You must also have CONFIG_SECCOMP enabled in the kernel for
35# seccomp to work.
36PACKAGECONFIG[seccomp] = "--with-libseccomp-prefix=${STAGING_EXECPREFIXDIR},ac_cv_libseccomp=no,libseccomp"
37PACKAGECONFIG[libidn] = "--with-idn,--without-idn,libidn2"
38PACKAGECONFIG[libtasn1] = "--with-included-libtasn1=no,--with-included-libtasn1,libtasn1"
39PACKAGECONFIG[p11-kit] = "--with-p11-kit,--without-p11-kit,p11-kit"
40PACKAGECONFIG[tpm] = "--with-tpm,--without-tpm,trousers"
41
42EXTRA_OECONF = " \
43    --enable-doc \
44    --disable-libdane \
45    --disable-guile \
46    --disable-rpath \
47    --enable-openssl-compatibility \
48    --with-libpthread-prefix=${STAGING_DIR_HOST}${prefix} \
49    --with-librt-prefix=${STAGING_DIR_HOST}${prefix} \
50    --with-default-trust-store-file=${sysconfdir}/ssl/certs/ca-certificates.crt \
51"
52
53# Otherwise the tools try and use HOSTTOOLS_DIR/bash as a shell.
54export POSIX_SHELL="${base_bindir}/sh"
55
56LDFLAGS:append:libc-musl = " -largp"
57
58do_configure:prepend() {
59	for dir in . lib; do
60		rm -f ${dir}/aclocal.m4 ${dir}/m4/libtool.m4 ${dir}/m4/lt*.m4
61	done
62}
63
64PACKAGES =+ "${PN}-openssl ${PN}-xx"
65
66FILES:${PN}-dev += "${bindir}/gnutls-cli-debug"
67FILES:${PN}-openssl = "${libdir}/libgnutls-openssl.so.*"
68FILES:${PN}-xx = "${libdir}/libgnutlsxx.so.*"
69
70BBCLASSEXTEND = "native nativesdk"
71