209 lines
6.5 KiB
RPMSpec
209 lines
6.5 KiB
RPMSpec
#
|
|
# spec file for package leancrypto
|
|
#
|
|
# Copyright (c) 2025 SUSE LLC
|
|
# Copyright (c) 2022 - 2025 Stephan Mueller <smueller@chronox.de
|
|
#
|
|
# All modifications and additions to the file contributed by third parties
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
# upon. The license for this file, and modifications and additions to the
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
# license for the pristine package is not an Open Source License, in which
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
# published by the Open Source Initiative.
|
|
|
|
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
|
#
|
|
|
|
%global flavor @BUILD_FLAVOR@%{nil}
|
|
%if "%{flavor}" == "kmp"
|
|
%define psuffix -kmp
|
|
%bcond_without kmp
|
|
%else
|
|
%define psuffix %{nil}
|
|
%bcond_with kmp
|
|
%endif
|
|
|
|
%define pkgname leancrypto
|
|
%define libname lib%{pkgname}
|
|
Name: %{pkgname}%{psuffix}
|
|
Version: 1.5.1
|
|
Release: 1.1
|
|
Summary: Cryptographic library with stack-only support and PQC-safe algorithms
|
|
License: BSD-3-Clause OR GPL-2.0-only
|
|
URL: https://www.leancrypto.org
|
|
Source0: https://www.leancrypto.org/%{pkgname}/releases/%{pkgname}-%{version}/%{pkgname}-%{version}.tar.xz
|
|
Source1: https://www.leancrypto.org/%{pkgname}/releases/%{pkgname}-%{version}/%{pkgname}-%{version}.tar.xz.asc
|
|
Source2: https://leancrypto.org/about/smuellerDD-2024.asc#/leancrypto.keyring
|
|
Source3: baselibs.conf
|
|
BuildRequires: meson
|
|
BuildRequires: clang
|
|
%if %{with kmp}
|
|
BuildRequires: %kernel_module_package_buildreqs
|
|
|
|
%kernel_module_package -n %{pkgname}
|
|
|
|
%endif
|
|
|
|
%description
|
|
Leancrypto provides a general-purpose cryptographic library with PQC-safe
|
|
algorithms. Further it only has POSIX dependencies, and allows all algorithms
|
|
to be used on stack as well as on heap. Accelerated algorithms are transparently
|
|
enabled if possible.
|
|
|
|
|
|
%if %{without kmp}
|
|
%package -n %{libname}1
|
|
Summary: Cryptographic library with stack-only support and PQC-safe algorithms
|
|
|
|
%description -n %{libname}1
|
|
Leancrypto provides a general-purpose cryptographic library with PQC-safe
|
|
algorithms. Further it only has POSIX dependencies, and allows all algorithms
|
|
to be used on stack as well as on heap. Accelerated algorithms are transparently
|
|
enabled if possible.
|
|
|
|
%package devel
|
|
Summary: Development files for leancrypto, a cryptographic library
|
|
Requires: glibc-devel
|
|
Requires: %{libname}1 = %{version}
|
|
|
|
%description devel
|
|
Leancrypto provides a general-purpose cryptographic library with PQC-safe
|
|
algorithms. Further it only has POSIX dependencies, and allows all algorithms
|
|
to be used on stack as well as on heap. Accelerated algorithms are transparently
|
|
enabled if possible.
|
|
|
|
This subpackage holds the development headers for the library.
|
|
|
|
%package devel-static
|
|
Summary: Static library for leancrypto
|
|
Requires: %{name}-devel = %{version}
|
|
Provides: %{name}-devel:%{_libdir}/%{libname}.a
|
|
|
|
%description devel-static
|
|
Leancrypto provides a general-purpose cryptographic library with PQC-safe
|
|
algorithms. Further it only has POSIX dependencies, and allows all algorithms
|
|
to be used on stack as well as on heap. Accelerated algorithms are transparently
|
|
enabled if possible.
|
|
|
|
This subpackage contains the static version of the library
|
|
used for development.
|
|
|
|
%package -n %{libname}-fips1
|
|
Summary: Cryptographic library with stack-only support and PQC-safe algorithms
|
|
|
|
%description -n %{libname}-fips1
|
|
Leancrypto provides a general-purpose cryptographic library with PQC-safe
|
|
algorithms. Further it only has POSIX dependencies, and allows all algorithms
|
|
to be used on stack as well as on heap. Accelerated algorithms are transparently
|
|
enabled if possible.
|
|
|
|
This subpackage contains the FIPS 140 compliant version of the library.
|
|
|
|
%package -n %{name}-tools
|
|
Summary: Applications provided by leancrypto
|
|
|
|
%description -n %{name}-tools
|
|
Leancrypto provides a general-purpose cryptographic library with PQC-safe
|
|
algorithms. Further it only has POSIX dependencies, and allows all algorithms
|
|
to be used on stack as well as on heap. Accelerated algorithms are transparently
|
|
enabled if possible.
|
|
|
|
This subpackage holds the tools provided by the library, such as sha*sum.
|
|
|
|
%else
|
|
|
|
%package KMP
|
|
Summary: Cryptographic library with stack-only support and PQC-safe algorithms
|
|
Group: System/Kernel
|
|
|
|
%description KMP
|
|
Leancrypto provides a general-purpose cryptographic library with PQC-safe
|
|
algorithms. Further it only has POSIX dependencies, and allows all algorithms
|
|
to be used on stack as well as on heap. Accelerated algorithms are transparently
|
|
enabled if possible.
|
|
|
|
%endif
|
|
|
|
%prep
|
|
%setup -q -n %{pkgname}-%{version}
|
|
|
|
%if %{with kmp}
|
|
set -- *
|
|
mkdir source
|
|
cp -ar "$@" source/
|
|
# broken symlink
|
|
rm source/linux_kernel/kyber768/armv8/kyber_poly_armv8.c
|
|
mkdir obj
|
|
%endif
|
|
|
|
%build
|
|
%meson -Dseedsource=esdm
|
|
# Only build the lib when we need it, if building the kernel module, just build
|
|
# the kernel module.
|
|
%if %{without kmp}
|
|
%meson_build
|
|
%else
|
|
for flavor in %flavors_to_build; do
|
|
KERNELRELEASE=`make -s -C /%{_prefix}/src/linux-obj/%{_target_cpu}/$flavor kernelrelease`
|
|
rm -rf obj/$flavor
|
|
cp -r source obj/$flavor
|
|
make -C $PWD/obj/$flavor/linux_kernel KERNELRELEASE=$KERNELRELEASE
|
|
done
|
|
%endif
|
|
|
|
%check
|
|
%if %{without kmp}
|
|
%meson_test --suite regression
|
|
%endif
|
|
|
|
%install
|
|
%if %{without kmp}
|
|
%meson_install
|
|
%else
|
|
export INSTALL_MOD_PATH=$RPM_BUILD_ROOT
|
|
export INSTALL_MOD_DIR=updates
|
|
for flavor in %flavors_to_build; do
|
|
KERNELRELEASE=`make -s -C /%{_prefix}/src/linux-obj/%{_target_cpu}/$flavor kernelrelease`
|
|
make -C obj/$flavor/linux_kernel modules_install M=$PWD/obj/$flavor KERNELRELEASE=$KERNELRELEASE
|
|
done
|
|
%endif
|
|
|
|
%if %{without kmp}
|
|
%ldconfig_scriptlets -n %{libname}1
|
|
%ldconfig_scriptlets -n %{libname}-fips1
|
|
|
|
%files -n %{libname}1
|
|
%license LICENSE LICENSE.bsd LICENSE.gplv2
|
|
%{_libdir}/%{libname}.so.*
|
|
|
|
%files devel
|
|
%doc README.md CHANGES.md
|
|
%{_includedir}/%{name}.h
|
|
%{_includedir}/%{name}
|
|
%{_libdir}/%{libname}.so
|
|
%{_libdir}/%{libname}-fips.so
|
|
%{_libdir}/pkgconfig/%{name}-fips.pc
|
|
%{_libdir}/pkgconfig/%{name}.pc
|
|
|
|
%files devel-static
|
|
%{_libdir}/%{libname}.a
|
|
%{_libdir}/%{libname}-fips.a
|
|
|
|
%files -n %{libname}-fips1
|
|
%{_libdir}/%{libname}-fips.so.*
|
|
|
|
%files -n %{name}-tools
|
|
%{_libexecdir}/%{name}
|
|
%{_libexecdir}/%{name}/sha256sum
|
|
%{_libexecdir}/%{name}/sha384sum
|
|
%{_libexecdir}/%{name}/sha512sum
|
|
%{_libexecdir}/%{name}/sha3-256sum
|
|
%{_libexecdir}/%{name}/sha3-384sum
|
|
%{_libexecdir}/%{name}/sha3-512sum
|
|
%{_libexecdir}/%{name}/ascon256-sum
|
|
%endif
|
|
|
|
%changelog
|