procd: rework makefile, split ujail/seccomp

[openwrt/openwrt.git] / package / system / procd / Makefile
diff --git a/package/system/procd/Makefile b/package/system/procd/Makefile

index 27af3af97bdfe5c4462b7b522b01c8b577a67605..37523328a86619edd3a476cf0d723f1e9d15866f 100644 (file)
--- a/package/system/procd/Makefile
+++ b/package/system/procd/Makefile
@@ -1,5 +1,5 @@
  #
-# Copyright (C) 2014 OpenWrt.org
+# Copyright (C) 2014-2015 OpenWrt.org
  #
  # This is free software, licensed under the GNU General Public License v2.
  # See /LICENSE for more information.
@@ -8,14 +8,14 @@
  include $(TOPDIR)/rules.mk
  
  PKG_NAME:=procd
-PKG_VERSION:=2014-12-02
+PKG_VERSION:=2015-08-16
  
  PKG_RELEASE=$(PKG_SOURCE_VERSION)
  
  PKG_SOURCE_PROTO:=git
  PKG_SOURCE_URL:=git://nbd.name/luci2/procd.git
  PKG_SOURCE_SUBDIR:=$(PKG_NAME)-$(PKG_VERSION)
-PKG_SOURCE_VERSION:=e1a27d486c2374f46abd264f3fd6561815155ebd
+PKG_SOURCE_VERSION:=0da5bf2ff222d1a499172a6e09507388676b5a08
  PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION)-$(PKG_SOURCE_VERSION).tar.gz
  CMAKE_INSTALL:=1
  
@@ -24,18 +24,35 @@ PKG_LICENSE_FILES:=
  
  PKG_MAINTAINER:=John Crispin <blogic@openwrt.org>
  
+PKG_CONFIG_DEPENDS:= CONFIG_KERNEL_SECCOMP CONFIG_NAND_SUPPORT CONFIG_PROCD_SHOW_BOOT CONFIG_PROCD_ZRAM_TMPFS \
+       CONFIG_KERNEL_NAMESPACES CONFIG_PACKAGE_procd-ujail CONFIG_PACKAGE_procd-seccomp
+
  include $(INCLUDE_DIR)/package.mk
  include $(INCLUDE_DIR)/cmake.mk
  
-TARGET_LDFLAGS += $(if $(CONFIG_USE_EGLIBC),-lrt)
+TARGET_LDFLAGS += $(if $(CONFIG_USE_GLIBC),-lrt)
  
  define Package/procd
    SECTION:=base
    CATEGORY:=Base system
-  DEPENDS:=+ubusd +ubus +libjson-script +ubox +USE_EGLIBC:librt +libubox +libubus +NAND_SUPPORT:procd-nand +PROCD_ZRAM_TMPFS:kmod-zram +PROCD_ZRAM_TMPFS:e2fsprogs
+  DEPENDS:=+ubusd +ubus +libjson-script +ubox +USE_GLIBC:librt +libubox +libubus +NAND_SUPPORT:procd-nand
    TITLE:=OpenWrt system process manager
  endef
  
+define Package/procd-ujail
+  SECTION:=base
+  CATEGORY:=Base system
+  DEPENDS:=@KERNEL_NAMESPACES +@KERNEL_UTS_NS +@KERNEL_IPC_NS +@KERNEL_PID_NS +libubox +libblobmsg-json
+  TITLE:=OpenWrt process jail helper
+endef
+
+define Package/procd-seccomp
+  SECTION:=base
+  CATEGORY:=Base system
+  DEPENDS:=@arm||@armeb||@mips||@mipsel||@i386||@x86_64 @!TARGET_uml @KERNEL_SECCOMP +libubox +libblobmsg-json
+  TITLE:=OpenWrt process seccomp helper + utrace
+endef
+
  define Package/procd-nand
    SECTION:=utils
    CATEGORY:=Utilities
@@ -43,6 +60,13 @@ define Package/procd-nand
    TITLE:=OpenWrt sysupgrade nand helper
  endef
  
+define Package/procd-nand-firstboot
+  SECTION:=utils
+  CATEGORY:=Utilities
+  DEPENDS:=procd-nand
+  TITLE:=OpenWrt firstboot nand helper
+endef
+
  define Package/procd/config
  menu "Configuration"
         depends on PACKAGE_procd
@@ -59,7 +83,10 @@ config PROCD_ZRAM_TMPFS
  endmenu
  endef
  
-PKG_CONFIG_DEPENDS:= PROCD_SHOW_BOOT PROCD_ZRAM_TMPFS
+
+ifeq ($(CONFIG_NAND_SUPPORT),y)
+  CMAKE_OPTIONS += -DBUILD_UPGRADED=1
+endif
  
  ifeq ($(CONFIG_PROCD_SHOW_BOOT),y)
    CMAKE_OPTIONS += -DSHOW_BOOT_ON_CONSOLE=1
@@ -69,21 +96,51 @@ ifeq ($(CONFIG_PROCD_ZRAM_TMPFS),y)
    CMAKE_OPTIONS += -DZRAM_TMPFS=1
  endif
  
+ifdef CONFIG_PACKAGE_procd-ujail
+  CMAKE_OPTIONS += -DJAIL_SUPPORT=1
+endif
+
+ifdef CONFIG_PACKAGE_procd-seccomp
+  CMAKE_OPTIONS += -DSECCOMP_SUPPORT=1 -DUTRACE_SUPPORT=1
+endif
+
  define Package/procd/install
         $(INSTALL_DIR) $(1)/sbin $(1)/etc $(1)/lib/functions
  
-       $(CP) $(PKG_INSTALL_DIR)/usr/sbin/{init,procd,askfirst,udevtrigger} $(1)/sbin/
+       $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/sbin/{init,procd,askfirst,udevtrigger} $(1)/sbin/
+       $(INSTALL_DATA) $(PKG_INSTALL_DIR)/usr/lib/libsetlbf.so $(1)/lib
         $(INSTALL_BIN) ./files/reload_config $(1)/sbin/
         $(INSTALL_DATA) ./files/hotplug*.json $(1)/etc/
         $(INSTALL_DATA) ./files/procd.sh $(1)/lib/functions/
  endef
  
+define Package/procd-ujail/install
+       $(INSTALL_DIR) $(1)/sbin
+       $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/sbin/ujail $(1)/sbin/
+endef
+
+define Package/procd-seccomp/install
+       $(INSTALL_DIR) $(1)/sbin $(1)/lib
+       $(INSTALL_DATA) $(PKG_INSTALL_DIR)/usr/lib/libpreload-seccomp.so $(1)/lib
+       $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/sbin/utrace $(1)/sbin/
+       $(INSTALL_DATA) $(PKG_INSTALL_DIR)/usr/lib/libpreload-trace.so $(1)/lib
+endef
+
  define Package/procd-nand/install
         $(INSTALL_DIR) $(1)/sbin $(1)/lib/upgrade
  
-       $(CP) $(PKG_INSTALL_DIR)/usr/sbin/upgraded $(1)/sbin/
+       $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/sbin/upgraded $(1)/sbin/
         $(INSTALL_DATA) ./files/nand.sh $(1)/lib/upgrade/
  endef
  
+define Package/procd-nand-firstboot/install
+       $(INSTALL_DIR) $(1)/lib/preinit
+
+       $(INSTALL_DATA) ./files/nand-preinit.sh $(1)/lib/preinit/60-nand-firstboot.sh
+endef
+
  $(eval $(call BuildPackage,procd))
+$(eval $(call BuildPackage,procd-ujail))
+$(eval $(call BuildPackage,procd-seccomp))
  $(eval $(call BuildPackage,procd-nand))
+$(eval $(call BuildPackage,procd-nand-firstboot))