| SUMMARY = "Platform AbstRaction for SECurity Daemon" |
| HOMEPAGE = "https://github.com/parallaxsecond/parsec" |
| LICENSE = "Apache-2.0" |
| LIC_FILES_CHKSUM = "file://LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57" |
| |
| inherit cargo pkgconfig cargo-update-recipe-crates |
| |
| DEPENDS += "clang-native" |
| |
| SRC_URI += "crate://crates.io/parsec-service/${PV} \ |
| file://parsec_init \ |
| file://systemd.patch \ |
| file://parsec-tmpfiles.conf \ |
| " |
| SRC_URI[parsec-service-1.2.0.sha256sum] = "f58e7ba859c22cc1904dc8298b1a7d94ee1ba3b4d4808f28e4cc0c96ddb149c9" |
| |
| B = "${CARGO_VENDORING_DIRECTORY}/${BP}" |
| |
| PACKAGECONFIG ??= "PKCS11 MBED-CRYPTO" |
| have_TPM = "${@bb.utils.contains('DISTRO_FEATURES', 'tpm2', 'TPM', '', d)}" |
| PACKAGECONFIG:append = " ${@bb.utils.contains('BBFILE_COLLECTIONS', 'tpm-layer', '${have_TPM}', '', d)}" |
| |
| PACKAGECONFIG[ALL] = "all-providers cryptoki/generate-bindings tss-esapi/generate-bindings,,tpm2-tss libts,tpm2-tss libtss2-tcti-device libts" |
| PACKAGECONFIG[TPM] = "tpm-provider tss-esapi/generate-bindings,,tpm2-tss,tpm2-tss libtss2-tcti-device" |
| PACKAGECONFIG[PKCS11] = "pkcs11-provider cryptoki/generate-bindings," |
| PACKAGECONFIG[MBED-CRYPTO] = "mbed-crypto-provider," |
| PACKAGECONFIG[CRYPTOAUTHLIB] = "cryptoauthlib-provider," |
| PACKAGECONFIG[TS] = "trusted-service-provider,,libts,libts" |
| |
| PARSEC_FEATURES = "${@d.getVar('PACKAGECONFIG_CONFARGS',True).strip().replace(' ', ',')}" |
| CARGO_BUILD_FLAGS += " --features ${PARSEC_FEATURES}" |
| |
| export BINDGEN_EXTRA_CLANG_ARGS |
| target = "${@d.getVar('TARGET_SYS',True).replace('-', ' ')}" |
| BINDGEN_EXTRA_CLANG_ARGS = "${@bb.utils.contains('target', 'arm', \ |
| '--sysroot=${WORKDIR}/recipe-sysroot -I${WORKDIR}/recipe-sysroot/usr/include -mfloat-abi=hard', \ |
| '--sysroot=${WORKDIR}/recipe-sysroot -I${WORKDIR}/recipe-sysroot/usr/include', \ |
| d)}" |
| |
| inherit systemd |
| SYSTEMD_SERVICE:${PN} = "parsec.service" |
| |
| inherit update-rc.d |
| INITSCRIPT_NAME = "parsec" |
| |
| # A local file can be defined in build/local.conf |
| # The file should also be included into SRC_URI then |
| PARSEC_CONFIG ?= "${S}/config.toml" |
| |
| do_install () { |
| # Binaries |
| install -d -m 700 -o parsec -g parsec "${D}${libexecdir}/parsec" |
| install -m 700 -o parsec -g parsec "${B}/target/${CARGO_TARGET_SUBDIR}/parsec" ${D}${libexecdir}/parsec/parsec |
| |
| # Config file |
| install -d -m 700 -o parsec -g parsec "${D}${sysconfdir}/parsec" |
| install -m 400 -o parsec -g parsec "${PARSEC_CONFIG}" ${D}${sysconfdir}/parsec/config.toml |
| |
| if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then |
| install -d ${D}${systemd_unitdir}/system |
| install -m 644 ${S}/systemd-daemon/parsec.service ${D}${systemd_unitdir}/system |
| |
| install -d ${D}${libdir}/tmpfiles.d |
| install -m 644 ${WORKDIR}/parsec-tmpfiles.conf ${D}${libdir}/tmpfiles.d |
| fi |
| |
| if ${@bb.utils.contains('DISTRO_FEATURES', 'sysvinit', 'true', 'false', d)}; then |
| install -d ${D}${sysconfdir}/init.d |
| install -m 755 ${WORKDIR}/parsec_init ${D}${sysconfdir}/init.d/parsec |
| # Data dir |
| install -d -m 700 -o parsec -g parsec "${D}${localstatedir}/lib/parsec" |
| fi |
| } |
| |
| inherit useradd |
| USERADD_PACKAGES = "${PN}" |
| GROUPADD_PARAM:${PN} = "-r parsec" |
| USERADD_PARAM:${PN} = "-r -g parsec -s /bin/false -d ${localstatedir}/lib/parsec parsec" |
| GROUPMEMS_PARAM:${PN} = "${@bb.utils.contains('PACKAGECONFIG_CONFARGS', 'tpm-provider', '-a parsec -g tss ;', '', d)}" |
| GROUPMEMS_PARAM:${PN} += "${@bb.utils.contains('PACKAGECONFIG_CONFARGS', 'trusted-service-provider', '-a parsec -g teeclnt', '', d)}" |
| |
| FILES:${PN} += " \ |
| ${sysconfdir}/parsec/config.toml \ |
| ${libexecdir}/parsec/parsec \ |
| ${systemd_unitdir}/system/parsec.service \ |
| ${libdir}/tmpfiles.d/parsec-tmpfiles.conf \ |
| ${sysconfdir}/init.d/parsec \ |
| " |
| |
| require parsec-service-crates.inc |
| |
| # The QA check has been temporarily disabled. An issue has been created |
| # upstream to fix this. |
| # https://github.com/parallaxsecond/parsec/issues/645 |
| INSANE_SKIP:${PN}-dbg += "buildpaths" |
| |