diff options
| author | Zang Ruochen <zangrc.fnst@cn.fujitsu.com> | 2020-10-14 10:54:08 +0800 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2020-10-13 22:33:05 -0700 |
| commit | 2519ac693259ff7ae167d00090af1a278e756b2a (patch) | |
| tree | 669f9104e3e35ec94f4f9f20aa1fc801a3f39b83 /meta-networking/recipes-connectivity/firewalld/firewalld_0.9.1.bb | |
| parent | 780b1ccb6d457a3cfd9d5f508ff914e228a8fa55 (diff) | |
| download | meta-openembedded-2519ac693259ff7ae167d00090af1a278e756b2a.tar.gz | |
firewalld: upgrade 0.9.0 -> 0.9.1
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Diffstat (limited to 'meta-networking/recipes-connectivity/firewalld/firewalld_0.9.1.bb')
| -rw-r--r-- | meta-networking/recipes-connectivity/firewalld/firewalld_0.9.1.bb | 91 |
1 files changed, 91 insertions, 0 deletions
diff --git a/meta-networking/recipes-connectivity/firewalld/firewalld_0.9.1.bb b/meta-networking/recipes-connectivity/firewalld/firewalld_0.9.1.bb new file mode 100644 index 0000000000..eca926ee42 --- /dev/null +++ b/meta-networking/recipes-connectivity/firewalld/firewalld_0.9.1.bb | |||
| @@ -0,0 +1,91 @@ | |||
| 1 | SUMMARY = "Dynamic firewall daemon with a D-Bus interface" | ||
| 2 | HOMEPAGE = "https://firewalld.org/" | ||
| 3 | BUGTRACKER = "https://github.com/firewalld/firewalld/issues" | ||
| 4 | UPSTREAM_CHECK_URI = "https://github.com/firewalld/firewalld/releases" | ||
| 5 | LICENSE = "GPLv2+" | ||
| 6 | LIC_FILES_CHKSUM = "file://COPYING;md5=b234ee4d69f5fce4486a80fdaf4a4263" | ||
| 7 | |||
| 8 | SRC_URI = "https://github.com/${BPN}/${BPN}/releases/download/v${PV}/${BP}.tar.gz \ | ||
| 9 | file://firewalld.init \ | ||
| 10 | " | ||
| 11 | SRC_URI[sha256sum] = "7e3db6ed84919dd10add39cc7a28d97b5a9e27a53aeb73abf8af01ef082b74f9" | ||
| 12 | |||
| 13 | # glib-2.0-native is needed for GSETTINGS_RULES autoconf macro from gsettings.m4 | ||
| 14 | DEPENDS = "intltool-native glib-2.0-native" | ||
| 15 | |||
| 16 | inherit gettext autotools bash-completion python3native gsettings systemd update-rc.d | ||
| 17 | |||
| 18 | PACKAGECONFIG ??= "${@bb.utils.filter('DISTRO_FEATURES', 'systemd', d)}" | ||
| 19 | PACKAGECONFIG[systemd] = "--with-systemd-unitdir=${systemd_system_unitdir},--disable-systemd" | ||
| 20 | PACKAGECONFIG[docs] = "--with-xml-catalog=${STAGING_ETCDIR_NATIVE}/xml/catalog,--disable-docs,libxslt-native docbook-xsl-stylesheets-native" | ||
| 21 | |||
| 22 | PACKAGES += "${PN}-zsh-completion" | ||
| 23 | |||
| 24 | # iptables, ip6tables, ebtables, and ipset *should* be unnecessary | ||
| 25 | # when the nftables backend is available, because nftables supersedes all of them. | ||
| 26 | # However we still need iptables and ip6tables to be available otherwise any | ||
| 27 | # application relying on "direct passthrough" rules (such as docker) will break. | ||
| 28 | # /etc/sysconfig/firewalld is a Red Hat-ism, only referenced by | ||
| 29 | # the Red Hat-specific init script which we aren't using, so we disable that. | ||
| 30 | EXTRA_OECONF = "\ | ||
| 31 | --without-ipset \ | ||
| 32 | --with-iptables=${sbindir}/iptables \ | ||
| 33 | --with-iptables-restore=${sbindir}/iptables-restore \ | ||
| 34 | --with-ip6tables=${sbindir}/ip6tables \ | ||
| 35 | --with-ip6tables-restore=${sbindir}/ip6tables-restore \ | ||
| 36 | --without-ebtables \ | ||
| 37 | --without-ebtables-restore \ | ||
| 38 | --disable-sysconfig \ | ||
| 39 | " | ||
| 40 | |||
| 41 | INITSCRIPT_NAME = "firewalld" | ||
| 42 | SYSTEMD_SERVICE_${PN} = "firewalld.service" | ||
| 43 | |||
| 44 | do_install_append() { | ||
| 45 | if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then | ||
| 46 | : | ||
| 47 | else | ||
| 48 | # firewalld ships an init script but it contains Red Hat-isms, replace it with our own | ||
| 49 | rm -rf ${D}${sysconfdir}/rc.d/ | ||
| 50 | install -d ${D}${sysconfdir}/init.d | ||
| 51 | install -m0755 ${WORKDIR}/firewalld.init ${D}${sysconfdir}/init.d/firewalld | ||
| 52 | fi | ||
| 53 | |||
| 54 | # We ran ./configure with PYTHON pointed at the binary inside $STAGING_BINDIR_NATIVE | ||
| 55 | # so now we need to fix up any references to point at the proper path in the image. | ||
| 56 | # This hack is also in distutils.bbclass, but firewalld doesn't use distutils/setuptools. | ||
| 57 | if [ ${PN} != "${BPN}-native" ]; then | ||
| 58 | sed -i -e s:${STAGING_BINDIR_NATIVE}/python3-native/python3:${bindir}/python3:g \ | ||
| 59 | ${D}${bindir}/* ${D}${sbindir}/* ${D}${sysconfdir}/firewalld/*.xml | ||
| 60 | fi | ||
| 61 | sed -i -e s:${STAGING_BINDIR_NATIVE}:${bindir}:g \ | ||
| 62 | ${D}${bindir}/* ${D}${sbindir}/* ${D}${sysconfdir}/firewalld/*.xml | ||
| 63 | |||
| 64 | # This file contains Red Hat-isms. Modules get loaded without it. | ||
| 65 | rm -f ${D}${sysconfdir}/modprobe.d/firewalld-sysctls.conf | ||
| 66 | } | ||
| 67 | |||
| 68 | FILES_${PN} += "\ | ||
| 69 | ${PYTHON_SITEPACKAGES_DIR}/firewall \ | ||
| 70 | ${nonarch_libdir}/firewalld \ | ||
| 71 | ${datadir}/dbus-1 \ | ||
| 72 | ${datadir}/polkit-1 \ | ||
| 73 | ${datadir}/metainfo \ | ||
| 74 | " | ||
| 75 | FILES_${PN}-zsh-completion = "${datadir}/zsh/site-functions" | ||
| 76 | |||
| 77 | RDEPENDS_${PN} = "\ | ||
| 78 | nftables \ | ||
| 79 | iptables \ | ||
| 80 | python3-core \ | ||
| 81 | python3-io \ | ||
| 82 | python3-fcntl \ | ||
| 83 | python3-shell \ | ||
| 84 | python3-syslog \ | ||
| 85 | python3-xml \ | ||
| 86 | python3-dbus \ | ||
| 87 | python3-slip-dbus \ | ||
| 88 | python3-decorator \ | ||
| 89 | python3-pygobject \ | ||
| 90 | nftables-python \ | ||
| 91 | " | ||