freeradius: upgrade 3.2.7 -> 3.2.8

ChangeLog: https://github.com/FreeRADIUS/freeradius-server/releases/tag/release_3_2_8 * Add PACKAGECONFIG[kafka] * Drop backport patch 0018-Fix-Service-start-error.patch * Refresh 0013-raddb-certs-Makefile-fix-the-occasional-verification.patch * Drop 0019-freeradius-Remove-files-which-have-license-issues.patch and backport upstream patches to fix license issue[1]. [1] https://github.com/FreeRADIUS/freeradius-server/issues/5664 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
author: Yi Zhao <yi.zhao@windriver.com> 2025-10-29 23:31:12 +0800
committer: Khem Raj <raj.khem@gmail.com> 2025-10-29 21:02:20 -0700
commit: b6876c517a5510efe71cc6bd71ff27bed2264b3e (patch)
tree: 1cdc55e2a493629a48b291a28da2d9068a701236 /meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb
parent: aa430364a26e2f763644648675d45d62b678cccb (diff)
download: meta-openembedded-b6876c517a5510efe71cc6bd71ff27bed2264b3e.tar.gz
1 files changed, 303 insertions, 0 deletions
diff --git a/meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb b/meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb
new file mode 100644
index 0000000000..2de6ce5bae
--- /dev/null
+++ b/meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb
@@ -0,0 +1,303 @@
+DESCRIPTION = "FreeRADIUS is an Internet authentication daemon, which implements the RADIUS \
+protocol, as defined in RFC 2865 (and others). It allows Network Access \
+Servers (NAS boxes) to perform authentication for dial-up users. There are \
+also RADIUS clients available for Web servers, firewalls, Unix logins, and \
+more.  Using RADIUS allows authentication and authorization for a network to \
+be centralized, and minimizes the amount of re-configuration which has to be \
+done when adding or deleting new users."
+SUMMARY = "High-performance and highly configurable RADIUS server"
+HOMEPAGE = "http://www.freeradius.org/"
+SECTION = "System/Servers"
+LICENSE = "GPL-2.0-only & LGPL-2.0-or-later"
+LIC_FILES_CHKSUM = "file://LICENSE;md5=eb723b61539feef013de476e68b5c50a"
+DEPENDS = "openssl-native openssl libidn libtool libpcap libtalloc"
+PATCHTOOL = "git"
+SRC_URI = "git://github.com/FreeRADIUS/freeradius-server.git;branch=v3.2.x;lfs=0;;protocol=https \
+    file://freeradius \
+    file://volatiles.58_radiusd \
+    file://radiusd.service \
+    file://radiusd-volatiles.conf \
+    file://0001-Add-autogen.sh.patch \
+    file://0002-Enable-and-change-user-and-group-of-freeradius-serve.patch \
+    file://0003-configure.ac-allow-cross-compilation.patch \
+    file://0004-Fix-libtool-detection.patch \
+    file://0005-configure.ac-add-option-for-libcap.patch \
+    file://0006-Avoid-searching-host-dirs.patch \
+    file://0007-rlm_python-add-PY_INC_DIR-in-search-dir.patch \
+    file://0008-libtool-do-not-use-jlibtool.patch \
+    file://0009-Fix-quoting-for-BUILD_WITH.patch \
+    file://0010-fix-error-for-expansion-of-macro-in-thread.h.patch \
+    file://0011-rlm_mschap-Use-includedir-instead-of-hardcoding-usr-.patch \
+    file://0012-raddb-certs-Makefile-fix-the-existed-certificate-err.patch \
+    file://0013-raddb-certs-Makefile-fix-the-occasional-verification.patch \
+    file://0014-Workaround-error-with-autoconf-2.7.patch \
+    file://0015-bootstrap-check-commands-of-openssl-exist.patch \
+    file://0016-version.c-don-t-print-build-flags.patch \
+    file://0017-Add-acinclude.m4-to-include-required-macros.patch \
+    file://0018-update-license-1.patch \
+    file://0019-update-license-2.patch \
+    file://0020-update-license-3.patch \
+"
+raddbdir = "${sysconfdir}/${MLPREFIX}raddb"
+SRCREV = "032be31bb52646171099617928ec1703335bcf73"
+UPSTREAM_CHECK_GITTAGREGEX = "release_(?P<pver>\d+(\_\d+)+)"
+CVE_STATUS[CVE-2002-0318] = "fixed-version: The CPE in the NVD database doesn't reflect correctly the vulnerable versions."
+CVE_STATUS[CVE-2011-4966] = "fixed-version: The CPE in the NVD database doesn't reflect correctly the vulnerable versions."
+PARALLEL_MAKE = ""
+LDFLAGS:append:powerpc = " -latomic"
+LDFLAGS:append:mipsarch = " -latomic"
+LDFLAGS:append:armv5 = " -latomic"
+EXTRA_OECONF = " --enable-strict-dependencies \
+        --with-docdir=${docdir}/freeradius-${PV} \
+        --with-openssl-includes=${STAGING_INCDIR} \
+        --with-openssl-libraries=${STAGING_LIBDIR} \
+        --with-raddbdir=${raddbdir} \
+        --without-rlm_ippool \
+        --without-rlm_cache_memcached \
+        --without-rlm_counter \
+        --without-rlm_couchbase \
+        --without-rlm_dbm \
+        --without-rlm_eap_tnc \
+        --without-rlm_eap_ikev2 \
+        --without-rlm_opendirectory \
+        --without-rlm_redis \
+        --without-rlm_rediswho \
+        --without-rlm_cache_redis \
+        --without-rlm_sql_db2 \
+        --without-rlm_sql_firebird \
+        --without-rlm_sql_freetds \
+        --without-rlm_sql_iodbc \
+        --without-rlm_sql_oracle \
+        --without-rlm_sql_sybase \
+        --without-rlm_sql_mongo \
+        --without-rlm_sqlhpwippool \
+        --without-rlm_securid \
+        --without-rlm_unbound \
+        --without-rlm_python \
+        ac_cv_path_PERL=${bindir}/perl \
+        ax_cv_cc_builtin_choose_expr=no \
+        ax_cv_cc_builtin_types_compatible_p=no \
+        ax_cv_cc_builtin_bswap64=no \
+        ax_cv_cc_bounded_attribute=no \
+"
+PACKAGECONFIG ??= "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'pam', '', d)} \
+                   pcre libcap \
+                   openssl rlm-eap-fast rlm-eap-pwd \
+"
+PACKAGECONFIG[krb5] = "--with-rlm_krb5,--without-rlm_krb5,krb5"
+PACKAGECONFIG[pam] = "--with-rlm_pam,--without-rlm_pam,libpam"
+PACKAGECONFIG[libcap] = "--with-libcap,--without-libcap,libcap"
+PACKAGECONFIG[ldap] = "--with-rlm_ldap,--without-rlm_ldap,openldap"
+PACKAGECONFIG[mysql] = "--with-rlm_sql_mysql,--without-rlm_sql_mysql,mysql5"
+PACKAGECONFIG[sqlite] = "--with-rlm_sql_sqlite,--without-rlm_sql_sqlite,sqlite3"
+PACKAGECONFIG[unixodbc] = "--with-rlm_sql_unixodbc,--without-rlm_sql_unixodbc,unixodbc"
+PACKAGECONFIG[postgresql] = "--with-rlm_sql_postgresql,--without-rlm_sql_postgresql,postgresql"
+PACKAGECONFIG[pcre] = "--with-pcre,--without-pcre,libpcre"
+PACKAGECONFIG[perl] = "--with-perl=${STAGING_BINDIR_NATIVE}/perl-native/perl --with-rlm_perl,--without-rlm_perl,perl-native perl,perl"
+PACKAGECONFIG[python3] = "--with-rlm_python3 --with-rlm-python3-bin=${STAGING_BINDIR_NATIVE}/python3-native/python3 --with-rlm-python3-include-dir=${STAGING_INCDIR}/${PYTHON_DIR},--without-rlm_python3,python3-native python3"
+PACKAGECONFIG[rest] = "--with-rlm_rest,--without-rlm_rest --without-rlm_json,curl json-c"
+PACKAGECONFIG[ruby] = "--with-rlm_ruby,--without-rlm_ruby,ruby"
+PACKAGECONFIG[openssl] = "--with-openssl, --without-openssl"
+PACKAGECONFIG[rlm-eap-fast] = "--with-rlm_eap_fast, --without-rlm_eap_fast"
+PACKAGECONFIG[rlm-eap-pwd] = "--with-rlm_eap_pwd, --without-rlm_eap_pwd"
+PACKAGECONFIG[kafka] = "--with-rlm_kafka, --without-rlm_kafka, librdkafka"
+inherit useradd autotools-brokensep update-rc.d systemd multilib_script multilib_header
+MULTILIB_SCRIPTS = "${PN}:${sbindir}/checkrad"
+# This is not a cpan or python based package, but it needs some definitions
+# from cpan-base and python3-dir bbclasses for building rlm_perl and rlm_python
+# correctly.
+inherit cpan-base python3-dir
+# The modules subdirs also need to be processed by autoreconf. Use autogen.sh
+# in order to handle the subdirs correctly.
+do_configure() {
+    ./autogen.sh
+    # the configure of rlm_perl needs this to get correct
+    # mod_cflags and mod_ldflags
+    if ${@bb.utils.contains('PACKAGECONFIG', 'perl', 'true', 'false', d)}; then
+        export PERL5LIB="${STAGING_LIBDIR}${PERL_OWN_DIR}/perl/${@get_perl_version(d)}"
+    fi
+    oe_runconf
+    # we don't need dhcpclient
+    sed -i -e 's/dhcpclient.mk//' ${S}/src/modules/proto_dhcp/all.mk
+}
+INITSCRIPT_NAME = "radiusd"
+SYSTEMD_SERVICE:${PN} = "radiusd.service"
+USERADD_PACKAGES = "${PN}"
+USERADD_PARAM:${PN} = "--system --no-create-home --shell /bin/false --user-group radiusd"
+do_install() {
+    rm -rf ${D}
+    install -d ${D}/${sysconfdir}/logrotate.d
+    install -d ${D}/${sysconfdir}/pam.d
+    install -d ${D}/${localstatedir}/lib/radiusd
+    export LD_LIBRARY_PATH=${D}/${libdir}
+    oe_runmake install R=${D} INSTALLSTRIP=""
+    # remove unsupported config files
+    rm -f ${D}/${raddbdir}/experimental.conf
+    # remove scripts that required Perl(DBI)
+    rm -rf ${D}/${bindir}/radsqlrelay
+    rm -f ${D}/${sbindir}/rc.radiusd
+    rm -rf ${D}/${localstatedir}/run/
+    rm -rf ${D}/${localstatedir}/log/
+    chown -R radiusd:radiusd ${D}/${raddbdir}
+    chown -R radiusd:radiusd ${D}/${localstatedir}/lib/radiusd
+    # For sysvinit
+    if ${@bb.utils.contains('DISTRO_FEATURES', 'sysvinit', 'true', 'false', d)}; then
+        install -d ${D}${sysconfdir}/init.d
+        install -d ${D}${sysconfdir}/default/volatiles
+        install -m 0755 ${UNPACKDIR}/freeradius ${D}/etc/init.d/radiusd
+        install -m 0644 ${UNPACKDIR}/volatiles.58_radiusd ${D}${sysconfdir}/default/volatiles/58_radiusd
+    fi
+    # For systemd
+    if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then
+        install -d ${D}${systemd_unitdir}/system
+        install -m 0644 ${UNPACKDIR}/radiusd.service ${D}${systemd_unitdir}/system
+        sed -i -e 's,@BASE_BINDIR@,${base_bindir},g' \
+            -e 's,@SBINDIR@,${sbindir},g' \
+            -e 's,@STATEDIR@,${localstatedir},g' \
+            -e 's,@SYSCONFDIR@,${sysconfdir},g' \
+            ${D}${systemd_unitdir}/system/radiusd.service
+        install -d ${D}${sysconfdir}/tmpfiles.d/
+        install -m 0644 ${UNPACKDIR}/radiusd-volatiles.conf ${D}${sysconfdir}/tmpfiles.d/radiusd.conf
+    fi
+    oe_multilib_header freeradius/autoconf.h
+    oe_multilib_header freeradius/missing.h
+    oe_multilib_header freeradius/radpaths.h
+}
+# This is only needed when we install/update on a running target.
+#
+pkg_postinst:${PN} () {
+    if [ -z "$D" ]; then
+        if command -v systemd-tmpfiles >/dev/null; then
+            # create /var/log/radius, /var/run/radiusd
+            systemd-tmpfiles --create ${sysconfdir}/tmpfiles.d/radiusd.conf
+        elif [ -e ${sysconfdir}/init.d/populate-volatile.sh ]; then
+            ${sysconfdir}/init.d/populate-volatile.sh update
+        fi
+        # Fix ownership for /etc/raddb/*, /var/lib/radiusd
+        chown -R radiusd:radiusd ${raddbdir}
+        chown -R radiusd:radiusd ${localstatedir}/lib/radiusd
+        # for radiusd.service with multilib
+        if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then
+            install -d ${sysconfdir}/sysconfig
+            echo "MLPREFIX=" > ${sysconfdir}/sysconfig/radiusd
+        fi
+    else
+        if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then
+            install -d $D${sysconfdir}/sysconfig
+            echo "MLPREFIX=" > $D${sysconfdir}/sysconfig/radiusd
+        fi
+    fi
+}
+pkg_postrm:${PN} () {
+    # only try to remove ${sysconfdir}/sysconfig/radiusd for systemd
+    if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'false', 'true', d)}; then
+        exit 0
+    fi
+    if [ -d ${sysconfdir}/raddb ]; then
+        exit 0
+    fi
+    for variant in ${MULTILIB_GLOBAL_VARIANTS}; do
+        if [ -d ${sysconfdir}/${variant}-raddb ]; then
+            exit 0
+        fi
+    done
+    rm -f ${sysconfdir}/sysconfig/radiusd
+    rmdir --ignore-fail-on-non-empty ${sysconfdir}/sysconfig
+}
+# We really need the symlink :(
+INSANE_SKIP:${PN} = "dev-so"
+INSANE_SKIP:${PN}-krb5 = "dev-so"
+INSANE_SKIP:${PN}-ldap = "dev-so"
+INSANE_SKIP:${PN}-mysql = "dev-so"
+INSANE_SKIP:${PN}-perl = "dev-so"
+INSANE_SKIP:${PN}-postgresql = "dev-so"
+INSANE_SKIP:${PN}-python = "dev-so"
+INSANE_SKIP:${PN}-unixodbc = "dev-so"
+PACKAGES =+ "${PN}-utils ${PN}-ldap ${PN}-krb5 ${PN}-perl \
+    ${PN}-python ${PN}-mysql ${PN}-postgresql ${PN}-unixodbc"
+FILES:${PN}-utils = "${bindir}/*"
+FILES:${PN}-ldap = "${libdir}/rlm_ldap.so* \
+    ${raddbdir}/mods-available/ldap \
+"
+FILES:${PN}-krb5 = "${libdir}/rlm_krb5.so* \
+    ${raddbdir}/mods-available/krb5 \
+"
+FILES:${PN}-perl = "${libdir}/rlm_perl.so* \
+    ${raddbdir}/mods-config/perl \
+    ${raddbdir}/mods-available/perl \
+"
+FILES:${PN}-python = "${libdir}/rlm_python3.so* \
+    ${raddbdir}/mods-config/python3 \
+    ${raddbdir}/mods-available/python3 \
+"
+FILES:${PN}-mysql = "${libdir}/rlm_sql_mysql.so* \
+    ${raddbdir}/mods-config/sql/*/mysql \
+    ${raddbdir}/mods-available/sql \
+"
+FILES:${PN}-postgresql = "${libdir}/rlm_sql_postgresql.so* \
+    ${raddbdir}/mods-config/sql/*/postgresql \
+"
+FILES:${PN}-unixodbc = "${libdir}/rlm_sql_unixodbc.so*"
+FILES:${PN} =+ "${libdir}/rlm_*.so* ${libdir}/proto_*so*"
+RDEPENDS:${PN} += "perl"
+RDEPENDS:${PN}-utils = "${PN} perl"
+RDEPENDS:${PN}-krb5 = "${PN}"
+RDEPENDS:${PN}-ldap = "${PN}"
+RDEPENDS:${PN}-mysql = "${PN}"
+RDEPENDS:${PN}-perl = "${PN}"
+RDEPENDS:${PN}-postgresql = "${PN}"
+RDEPENDS:${PN}-python = "${PN}"
+RDEPENDS:${PN}-unixodbc = "${PN}"
+CLEANBROKEN = "1"
author	Yi Zhao <yi.zhao@windriver.com>	2025-10-29 23:31:12 +0800
committer	Khem Raj <raj.khem@gmail.com>	2025-10-29 21:02:20 -0700
commit	b6876c517a5510efe71cc6bd71ff27bed2264b3e (patch)
tree	1cdc55e2a493629a48b291a28da2d9068a701236 /meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb
parent	aa430364a26e2f763644648675d45d62b678cccb (diff)
download	meta-openembedded-b6876c517a5510efe71cc6bd71ff27bed2264b3e.tar.gz

diff --git a/meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb b/meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb new file mode 100644 index 0000000000..2de6ce5bae --- /dev/null +++ b/meta-networking/recipes-connectivity/freeradius/freeradius_3.2.8.bb
@@ -0,0 +1,303 @@
	1	DESCRIPTION = "FreeRADIUS is an Internet authentication daemon, which implements the RADIUS \
	2	protocol, as defined in RFC 2865 (and others). It allows Network Access \
	3	Servers (NAS boxes) to perform authentication for dial-up users. There are \
	4	also RADIUS clients available for Web servers, firewalls, Unix logins, and \
	5	more. Using RADIUS allows authentication and authorization for a network to \
	6	be centralized, and minimizes the amount of re-configuration which has to be \
	7	done when adding or deleting new users."
	8
	9	SUMMARY = "High-performance and highly configurable RADIUS server"
	10	HOMEPAGE = "http://www.freeradius.org/"
	11	SECTION = "System/Servers"
	12	LICENSE = "GPL-2.0-only & LGPL-2.0-or-later"
	13	LIC_FILES_CHKSUM = "file://LICENSE;md5=eb723b61539feef013de476e68b5c50a"
	14	DEPENDS = "openssl-native openssl libidn libtool libpcap libtalloc"
	15
	16	PATCHTOOL = "git"
	17
	18	SRC_URI = "git://github.com/FreeRADIUS/freeradius-server.git;branch=v3.2.x;lfs=0;;protocol=https \
	19	file://freeradius \
	20	file://volatiles.58_radiusd \
	21	file://radiusd.service \
	22	file://radiusd-volatiles.conf \
	23	file://0001-Add-autogen.sh.patch \
	24	file://0002-Enable-and-change-user-and-group-of-freeradius-serve.patch \
	25	file://0003-configure.ac-allow-cross-compilation.patch \
	26	file://0004-Fix-libtool-detection.patch \
	27	file://0005-configure.ac-add-option-for-libcap.patch \
	28	file://0006-Avoid-searching-host-dirs.patch \
	29	file://0007-rlm_python-add-PY_INC_DIR-in-search-dir.patch \
	30	file://0008-libtool-do-not-use-jlibtool.patch \
	31	file://0009-Fix-quoting-for-BUILD_WITH.patch \
	32	file://0010-fix-error-for-expansion-of-macro-in-thread.h.patch \
	33	file://0011-rlm_mschap-Use-includedir-instead-of-hardcoding-usr-.patch \
	34	file://0012-raddb-certs-Makefile-fix-the-existed-certificate-err.patch \
	35	file://0013-raddb-certs-Makefile-fix-the-occasional-verification.patch \
	36	file://0014-Workaround-error-with-autoconf-2.7.patch \
	37	file://0015-bootstrap-check-commands-of-openssl-exist.patch \
	38	file://0016-version.c-don-t-print-build-flags.patch \
	39	file://0017-Add-acinclude.m4-to-include-required-macros.patch \
	40	file://0018-update-license-1.patch \
	41	file://0019-update-license-2.patch \
	42	file://0020-update-license-3.patch \
	43	"
	44
	45	raddbdir = "${sysconfdir}/${MLPREFIX}raddb"
	46
	47	SRCREV = "032be31bb52646171099617928ec1703335bcf73"
	48
	49	UPSTREAM_CHECK_GITTAGREGEX = "release_(?P<pver>\d+(\_\d+)+)"
	50
	51	CVE_STATUS[CVE-2002-0318] = "fixed-version: The CPE in the NVD database doesn't reflect correctly the vulnerable versions."
	52	CVE_STATUS[CVE-2011-4966] = "fixed-version: The CPE in the NVD database doesn't reflect correctly the vulnerable versions."
	53
	54	PARALLEL_MAKE = ""
	55
	56
	57	LDFLAGS:append:powerpc = " -latomic"
	58	LDFLAGS:append:mipsarch = " -latomic"
	59	LDFLAGS:append:armv5 = " -latomic"
	60
	61	EXTRA_OECONF = " --enable-strict-dependencies \
	62	--with-docdir=${docdir}/freeradius-${PV} \
	63	--with-openssl-includes=${STAGING_INCDIR} \
	64	--with-openssl-libraries=${STAGING_LIBDIR} \
	65	--with-raddbdir=${raddbdir} \
	66	--without-rlm_ippool \
	67	--without-rlm_cache_memcached \
	68	--without-rlm_counter \
	69	--without-rlm_couchbase \
	70	--without-rlm_dbm \
	71	--without-rlm_eap_tnc \
	72	--without-rlm_eap_ikev2 \
	73	--without-rlm_opendirectory \
	74	--without-rlm_redis \
	75	--without-rlm_rediswho \
	76	--without-rlm_cache_redis \
	77	--without-rlm_sql_db2 \
	78	--without-rlm_sql_firebird \
	79	--without-rlm_sql_freetds \
	80	--without-rlm_sql_iodbc \
	81	--without-rlm_sql_oracle \
	82	--without-rlm_sql_sybase \
	83	--without-rlm_sql_mongo \
	84	--without-rlm_sqlhpwippool \
	85	--without-rlm_securid \
	86	--without-rlm_unbound \
	87	--without-rlm_python \
	88	ac_cv_path_PERL=${bindir}/perl \
	89	ax_cv_cc_builtin_choose_expr=no \
	90	ax_cv_cc_builtin_types_compatible_p=no \
	91	ax_cv_cc_builtin_bswap64=no \
	92	ax_cv_cc_bounded_attribute=no \
	93	"
	94
	95	PACKAGECONFIG ??= "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'pam', '', d)} \
	96	pcre libcap \
	97	openssl rlm-eap-fast rlm-eap-pwd \
	98	"
	99
	100	PACKAGECONFIG[krb5] = "--with-rlm_krb5,--without-rlm_krb5,krb5"
	101	PACKAGECONFIG[pam] = "--with-rlm_pam,--without-rlm_pam,libpam"
	102	PACKAGECONFIG[libcap] = "--with-libcap,--without-libcap,libcap"
	103	PACKAGECONFIG[ldap] = "--with-rlm_ldap,--without-rlm_ldap,openldap"
	104	PACKAGECONFIG[mysql] = "--with-rlm_sql_mysql,--without-rlm_sql_mysql,mysql5"
	105	PACKAGECONFIG[sqlite] = "--with-rlm_sql_sqlite,--without-rlm_sql_sqlite,sqlite3"
	106	PACKAGECONFIG[unixodbc] = "--with-rlm_sql_unixodbc,--without-rlm_sql_unixodbc,unixodbc"
	107	PACKAGECONFIG[postgresql] = "--with-rlm_sql_postgresql,--without-rlm_sql_postgresql,postgresql"
	108	PACKAGECONFIG[pcre] = "--with-pcre,--without-pcre,libpcre"
	109	PACKAGECONFIG[perl] = "--with-perl=${STAGING_BINDIR_NATIVE}/perl-native/perl --with-rlm_perl,--without-rlm_perl,perl-native perl,perl"
	110	PACKAGECONFIG[python3] = "--with-rlm_python3 --with-rlm-python3-bin=${STAGING_BINDIR_NATIVE}/python3-native/python3 --with-rlm-python3-include-dir=${STAGING_INCDIR}/${PYTHON_DIR},--without-rlm_python3,python3-native python3"
	111	PACKAGECONFIG[rest] = "--with-rlm_rest,--without-rlm_rest --without-rlm_json,curl json-c"
	112	PACKAGECONFIG[ruby] = "--with-rlm_ruby,--without-rlm_ruby,ruby"
	113	PACKAGECONFIG[openssl] = "--with-openssl, --without-openssl"
	114	PACKAGECONFIG[rlm-eap-fast] = "--with-rlm_eap_fast, --without-rlm_eap_fast"
	115	PACKAGECONFIG[rlm-eap-pwd] = "--with-rlm_eap_pwd, --without-rlm_eap_pwd"
	116	PACKAGECONFIG[kafka] = "--with-rlm_kafka, --without-rlm_kafka, librdkafka"
	117
	118	inherit useradd autotools-brokensep update-rc.d systemd multilib_script multilib_header
	119
	120	MULTILIB_SCRIPTS = "${PN}:${sbindir}/checkrad"
	121
	122	# This is not a cpan or python based package, but it needs some definitions
	123	# from cpan-base and python3-dir bbclasses for building rlm_perl and rlm_python
	124	# correctly.
	125	inherit cpan-base python3-dir
	126
	127	# The modules subdirs also need to be processed by autoreconf. Use autogen.sh
	128	# in order to handle the subdirs correctly.
	129	do_configure() {
	130	./autogen.sh
	131
	132	# the configure of rlm_perl needs this to get correct
	133	# mod_cflags and mod_ldflags
	134	if ${@bb.utils.contains('PACKAGECONFIG', 'perl', 'true', 'false', d)}; then
	135	export PERL5LIB="${STAGING_LIBDIR}${PERL_OWN_DIR}/perl/${@get_perl_version(d)}"
	136	fi
	137
	138	oe_runconf
	139
	140	# we don't need dhcpclient
	141	sed -i -e 's/dhcpclient.mk//' ${S}/src/modules/proto_dhcp/all.mk
	142	}
	143
	144	INITSCRIPT_NAME = "radiusd"
	145
	146	SYSTEMD_SERVICE:${PN} = "radiusd.service"
	147
	148	USERADD_PACKAGES = "${PN}"
	149	USERADD_PARAM:${PN} = "--system --no-create-home --shell /bin/false --user-group radiusd"
	150
	151	do_install() {
	152	rm -rf ${D}
	153	install -d ${D}/${sysconfdir}/logrotate.d
	154	install -d ${D}/${sysconfdir}/pam.d
	155	install -d ${D}/${localstatedir}/lib/radiusd
	156
	157	export LD_LIBRARY_PATH=${D}/${libdir}
	158	oe_runmake install R=${D} INSTALLSTRIP=""
	159
	160	# remove unsupported config files
	161	rm -f ${D}/${raddbdir}/experimental.conf
	162
	163	# remove scripts that required Perl(DBI)
	164	rm -rf ${D}/${bindir}/radsqlrelay
	165
	166	rm -f ${D}/${sbindir}/rc.radiusd
	167	rm -rf ${D}/${localstatedir}/run/
	168	rm -rf ${D}/${localstatedir}/log/
	169
	170	chown -R radiusd:radiusd ${D}/${raddbdir}
	171	chown -R radiusd:radiusd ${D}/${localstatedir}/lib/radiusd
	172
	173	# For sysvinit
	174	if ${@bb.utils.contains('DISTRO_FEATURES', 'sysvinit', 'true', 'false', d)}; then
	175	install -d ${D}${sysconfdir}/init.d
	176	install -d ${D}${sysconfdir}/default/volatiles
	177	install -m 0755 ${UNPACKDIR}/freeradius ${D}/etc/init.d/radiusd
	178	install -m 0644 ${UNPACKDIR}/volatiles.58_radiusd ${D}${sysconfdir}/default/volatiles/58_radiusd
	179	fi
	180
	181	# For systemd
	182	if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then
	183	install -d ${D}${systemd_unitdir}/system
	184	install -m 0644 ${UNPACKDIR}/radiusd.service ${D}${systemd_unitdir}/system
	185	sed -i -e 's,@BASE_BINDIR@,${base_bindir},g' \
	186	-e 's,@SBINDIR@,${sbindir},g' \
	187	-e 's,@STATEDIR@,${localstatedir},g' \
	188	-e 's,@SYSCONFDIR@,${sysconfdir},g' \
	189	${D}${systemd_unitdir}/system/radiusd.service
	190
	191	install -d ${D}${sysconfdir}/tmpfiles.d/
	192	install -m 0644 ${UNPACKDIR}/radiusd-volatiles.conf ${D}${sysconfdir}/tmpfiles.d/radiusd.conf
	193	fi
	194
	195	oe_multilib_header freeradius/autoconf.h
	196	oe_multilib_header freeradius/missing.h
	197	oe_multilib_header freeradius/radpaths.h
	198	}
	199
	200	# This is only needed when we install/update on a running target.
	201	#
	202	pkg_postinst:${PN} () {
	203	if [ -z "$D" ]; then
	204	if command -v systemd-tmpfiles >/dev/null; then
	205	# create /var/log/radius, /var/run/radiusd
	206	systemd-tmpfiles --create ${sysconfdir}/tmpfiles.d/radiusd.conf
	207	elif [ -e ${sysconfdir}/init.d/populate-volatile.sh ]; then
	208	${sysconfdir}/init.d/populate-volatile.sh update
	209	fi
	210
	211	# Fix ownership for /etc/raddb/*, /var/lib/radiusd
	212	chown -R radiusd:radiusd ${raddbdir}
	213	chown -R radiusd:radiusd ${localstatedir}/lib/radiusd
	214
	215	# for radiusd.service with multilib
	216	if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then
	217	install -d ${sysconfdir}/sysconfig
	218	echo "MLPREFIX=" > ${sysconfdir}/sysconfig/radiusd
	219	fi
	220	else
	221	if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then
	222	install -d $D${sysconfdir}/sysconfig
	223	echo "MLPREFIX=" > $D${sysconfdir}/sysconfig/radiusd
	224	fi
	225	fi
	226	}
	227
	228	pkg_postrm:${PN} () {
	229	# only try to remove ${sysconfdir}/sysconfig/radiusd for systemd
	230	if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'false', 'true', d)}; then
	231	exit 0
	232	fi
	233
	234	if [ -d ${sysconfdir}/raddb ]; then
	235	exit 0
	236	fi
	237	for variant in ${MULTILIB_GLOBAL_VARIANTS}; do
	238	if [ -d ${sysconfdir}/${variant}-raddb ]; then
	239	exit 0
	240	fi
	241	done
	242
	243	rm -f ${sysconfdir}/sysconfig/radiusd
	244	rmdir --ignore-fail-on-non-empty ${sysconfdir}/sysconfig
	245	}
	246
	247	# We really need the symlink :(
	248	INSANE_SKIP:${PN} = "dev-so"
	249	INSANE_SKIP:${PN}-krb5 = "dev-so"
	250	INSANE_SKIP:${PN}-ldap = "dev-so"
	251	INSANE_SKIP:${PN}-mysql = "dev-so"
	252	INSANE_SKIP:${PN}-perl = "dev-so"
	253	INSANE_SKIP:${PN}-postgresql = "dev-so"
	254	INSANE_SKIP:${PN}-python = "dev-so"
	255	INSANE_SKIP:${PN}-unixodbc = "dev-so"
	256
	257	PACKAGES =+ "${PN}-utils ${PN}-ldap ${PN}-krb5 ${PN}-perl \
	258	${PN}-python ${PN}-mysql ${PN}-postgresql ${PN}-unixodbc"
	259
	260	FILES:${PN}-utils = "${bindir}/*"
	261
	262	FILES:${PN}-ldap = "${libdir}/rlm_ldap.so* \
	263	${raddbdir}/mods-available/ldap \
	264	"
	265
	266	FILES:${PN}-krb5 = "${libdir}/rlm_krb5.so* \
	267	${raddbdir}/mods-available/krb5 \
	268	"
	269
	270	FILES:${PN}-perl = "${libdir}/rlm_perl.so* \
	271	${raddbdir}/mods-config/perl \
	272	${raddbdir}/mods-available/perl \
	273	"
	274
	275	FILES:${PN}-python = "${libdir}/rlm_python3.so* \
	276	${raddbdir}/mods-config/python3 \
	277	${raddbdir}/mods-available/python3 \
	278	"
	279
	280	FILES:${PN}-mysql = "${libdir}/rlm_sql_mysql.so* \
	281	${raddbdir}/mods-config/sql/*/mysql \
	282	${raddbdir}/mods-available/sql \
	283	"
	284
	285	FILES:${PN}-postgresql = "${libdir}/rlm_sql_postgresql.so* \
	286	${raddbdir}/mods-config/sql/*/postgresql \
	287	"
	288
	289	FILES:${PN}-unixodbc = "${libdir}/rlm_sql_unixodbc.so*"
	290
	291	FILES:${PN} =+ "${libdir}/rlm_.so ${libdir}/proto_so"
	292
	293	RDEPENDS:${PN} += "perl"
	294	RDEPENDS:${PN}-utils = "${PN} perl"
	295	RDEPENDS:${PN}-krb5 = "${PN}"
	296	RDEPENDS:${PN}-ldap = "${PN}"
	297	RDEPENDS:${PN}-mysql = "${PN}"
	298	RDEPENDS:${PN}-perl = "${PN}"
	299	RDEPENDS:${PN}-postgresql = "${PN}"
	300	RDEPENDS:${PN}-python = "${PN}"
	301	RDEPENDS:${PN}-unixodbc = "${PN}"
	302
	303	CLEANBROKEN = "1"