lighttpd: add build patches and add mbedtls EC patch from upstream #28187
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
gstrauss
force-pushed
the
lighttpd-1.4.82-2
branch
3 times, most recently
from
0920b8a to
537c540
Compare
x-ref: "tree-wide: $SDK in conditionals dependency issues?" openwrt#28173 "include: remove SDK exception from package install targets" automa1on/openwrt-archive@6272e95 Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
Dependencies for plugin authn_gssapi, authn_ldap, authn_pam, authn_dbi and authn_sasl are not correctly written. This cause lighttpd package to always compile krb5-libs, libopenldap and libpam, even if not selected Before the fix: grep -e libpam -e krb5-libs -e libopenldap .config \# CONFIG_PACKAGE_libpam is not set \# CONFIG_PACKAGE_libopenldap is not set \# CONFIG_PACKAGE_krb5-libs is not set make | grep -e libpam -e krb5 -e ldap make[3] -C feeds/packages/net/krb5 compile make[3] -C feeds/packages/libs/libpam compile make[3] -C feeds/packages/libs/openldap compile With the fix: make | grep -e libpam -e krb5 -e ldap "nothing compiled" Check that fix works when mod-authn tokens are selected (select lighttpd-mod-authn_xxx): grep lighttpd-mod-authn .config CONFIG_PACKAGE_lighttpd-mod-authn_file=y CONFIG_PACKAGE_lighttpd-mod-authn_gssapi=m CONFIG_PACKAGE_lighttpd-mod-authn_ldap=m CONFIG_PACKAGE_lighttpd-mod-authn_pam=y make | grep -e libpam -e krb5 -e ldap make[3] -C feeds/packages/net/krb5 compile make[3] -C feeds/packages/libs/libpam compile make[3] -C feeds/packages/libs/openldap compile x-ref: "lighttpd: Malformed dependencies cause unselected packages to be compiled" openwrt#28157 github: closes openwrt#28157 Signed-off-by: Alarcon Laurent <laurent.alarcon@sagemcom.com> Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
gstrauss
force-pushed
the
lighttpd-1.4.82-2
branch
from
537c540 to
66d67f4
Compare
EC certs require drbg init with mbedtls >= 3.0.0 in addition to MBEDTLS_USE_PSA_CRYPTO requiring drbg init x-ref: "mbedtls error with ec certificates" https://redmine.lighttpd.net/boards/2/topics/12097 "mod_mbedtls: ECDSA OpenSSL certificates do not work with lighttpd + mbedTLS/PSA (MBEDTLS_USE_PSA_CRYPTO)" https://redmine.lighttpd.net/issues/3288 Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
release 1.4.82-2 with patches Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
gstrauss
force-pushed
the
lighttpd-1.4.82-2
branch
from
66d67f4 to
a0590a1
Compare
Contributor
Author
|
mips_24kc docker build is broken early in setup, well before trying to build and test lighttpd. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
📦 Package Details
Maintainer: @gstrauss
Compile tested: arm_cortex-a9 OpenWrt master
Description:
lighttpd: add build patches and add mbedtls EC patch from upstream
✅ Formalities
If your PR contains a patch:
git am