From mboxrd@z Thu Jan  1 00:00:00 1970
Delivery-date: Mon, 11 Mar 2024 08:44:04 +0100
Received: from metis.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::104])
	by lore.white.stw.pengutronix.de with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96)
	(envelope-from <ptxdist-bounces+lore=lore.pengutronix.de@pengutronix.de>)
	id 1rjaKK-000jTl-2Q
	for lore@lore.pengutronix.de;
	Mon, 11 Mar 2024 08:44:04 +0100
Received: from localhost ([127.0.0.1] helo=metis.whiteo.stw.pengutronix.de)
	by metis.whiteo.stw.pengutronix.de with esmtp (Exim 4.92)
	(envelope-from <ptxdist-bounces@pengutronix.de>)
	id 1rjaKK-0007bX-3O; Mon, 11 Mar 2024 08:44:04 +0100
Received: from mail.cab.de ([213.144.1.196])
 by metis.whiteo.stw.pengutronix.de with esmtps
 (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92)
 (envelope-from <m.heidelberg@cab.de>) id 1rjaK1-0007BZ-FF
 for ptxdist@pengutronix.de; Mon, 11 Mar 2024 08:43:45 +0100
X-cab-MailScanner-Watermark: 1710747810.97552@Jmw0780klpy3wZ+HxmkTsQ
X-cab-MailScanner-From: m.heidelberg@cab.de
X-cab-MailScanner: Found to be clean
X-cab-MailScanner-ID: 0838E12011C.AA293
X-cab-MailScanner-Information: Please contact it@cab.de for more information
Received: from Adranos.cab.de (unknown [10.10.1.54])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by mail.cab.de (Postfix) with ESMTPS id 0838E12011C
 for <ptxdist@pengutronix.de>; Mon, 11 Mar 2024 08:43:30 +0100 (CET)
DMARC-Filter: OpenDMARC Filter v1.3.2 mail.cab.de 0838E12011C
Authentication-Results: vulcanos.cab.de;
 dmarc=none (p=none dis=none) header.from=cab.de
Authentication-Results: vulcanos.cab.de;
 spf=none smtp.mailfrom=M.Heidelberg@cab.de
DKIM-Filter: OpenDKIM Filter v2.11.0 mail.cab.de 0838E12011C
Received: from KAN23-025.cab.de (10.10.3.158) by Adranos.cab.de (10.10.1.54)
 with Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.4; Mon, 11 Mar
 2024 08:43:25 +0100
From: Markus Heidelberg <m.heidelberg@cab.de>
To: <ptxdist@pengutronix.de>
Date: Mon, 11 Mar 2024 08:43:07 +0100
Message-ID: <20240311074308.34315-3-m.heidelberg@cab.de>
X-Mailer: git-send-email 2.34.1
In-Reply-To: <20240311074308.34315-1-m.heidelberg@cab.de>
References: <20240311074308.34315-1-m.heidelberg@cab.de>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-Originating-IP: [10.10.3.158]
X-ClientProxiedBy: Adranos.cab.de (10.10.1.54) To Adranos.cab.de (10.10.1.54)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
 metis.whiteo.stw.pengutronix.de
X-Spam-Level: 
X-Spam-Status: No, score=-1.7 required=4.0 tests=AWL,BAYES_00,SPF_HELO_PASS,
 SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no
 version=3.4.2
Subject: [ptxdist] [PATCH 2/3] host-gnutls: new package
X-BeenThere: ptxdist@pengutronix.de
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: PTXdist Development Mailing List <ptxdist.pengutronix.de>
List-Unsubscribe: <https://metis.pengutronix.de/mailman/options/ptxdist>,
 <mailto:ptxdist-request@pengutronix.de?subject=unsubscribe>
List-Archive: <https://metis.pengutronix.de/mailman/private/ptxdist/>
List-Post: <mailto:ptxdist@pengutronix.de>
List-Help: <mailto:ptxdist-request@pengutronix.de?subject=help>
List-Subscribe: <https://metis.pengutronix.de/mailman/listinfo/ptxdist>,
 <mailto:ptxdist-request@pengutronix.de?subject=subscribe>
Reply-To: ptxdist@pengutronix.de
Cc: Markus Heidelberg <m.heidelberg@cab.de>
Sender: "ptxdist" <ptxdist-bounces@pengutronix.de>
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de
X-SA-Exim-Scanned: No (on metis.whiteo.stw.pengutronix.de); SAEximRunCond expanded to false

Will be needed for certain configurations of U-Boot.

Signed-off-by: Markus Heidelberg <m.heidelberg@cab.de>
---

That was left from configure_helper.py -p host-gnutls:

+       --with-default-trust-store-pkcs11=URI
+       --with-default-trust-store-dir=DIR
        --with-default-trust-store-file=/etc/ssl/certs/ca-certificates.crt
+       --with-default-crl-file=FILE
+       --with-default-blacklist-file=FILE
+       --with-guile-site-dir=DIR
+       --with-guile-site-ccache-dir=DIR
+       --with-guile-extension-dir=DIR

I guess these options don't have an influence, but is there some
approach to apply dummy values to get configure_helper.py silent?

 rules/host-gnutls.in   |  7 ++++
 rules/host-gnutls.make | 95 ++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 102 insertions(+)
 create mode 100644 rules/host-gnutls.in
 create mode 100644 rules/host-gnutls.make

diff --git a/rules/host-gnutls.in b/rules/host-gnutls.in
new file mode 100644
index 000000000..9178fa7ef
--- /dev/null
+++ b/rules/host-gnutls.in
@@ -0,0 +1,7 @@
+## SECTION=hosttools_noprompt
+
+config HOST_GNUTLS
+	tristate
+	default y if ALLYES
+	select HOST_LIBTASN1
+	select HOST_NETTLE
diff --git a/rules/host-gnutls.make b/rules/host-gnutls.make
new file mode 100644
index 000000000..ddba332c8
--- /dev/null
+++ b/rules/host-gnutls.make
@@ -0,0 +1,95 @@
+# -*-makefile-*-
+#
+# Copyright (C) 2024 by Markus Heidelberg <m.heidelberg@cab.de>
+#
+# For further information about the PTXdist project and license conditions
+# see the README file.
+#
+
+#
+# We provide this package
+#
+HOST_PACKAGES-$(PTXCONF_HOST_GNUTLS) += host-gnutls
+
+# ----------------------------------------------------------------------------
+# Prepare
+# ----------------------------------------------------------------------------
+
+#
+# autoconf
+#
+HOST_GNUTLS_CONF_TOOL	:= autoconf
+HOST_GNUTLS_CONF_OPT	:=  \
+	$(HOST_AUTOCONF) \
+	$(GLOBAL_LARGE_FILE_OPTION) \
+	--enable-threads=posix \
+	--disable-code-coverage \
+	--disable-bash-tests \
+	--disable-doc \
+	--disable-manpages \
+	--disable-tools \
+	--enable-cxx \
+	--disable-dyn-ncrypt \
+	--enable-hardware-acceleration \
+	--enable-tls13-interop \
+	--enable-padlock \
+	--enable-strict-der-time \
+	--enable-sha1-support \
+	--disable-ssl3-support \
+	--enable-ssl2-support \
+	--enable-dtls-srtp-support \
+	--enable-alpn-support \
+	--enable-heartbeat-support \
+	--enable-srp-authentication \
+	--enable-psk-authentication \
+	--enable-anon-authentication \
+	--enable-dhe \
+	--enable-ecdhe \
+	--enable-gost \
+	--disable-cryptodev \
+	--disable-afalg \
+	--disable-ktls \
+	--enable-ocsp \
+	--disable-openssl-compatibility \
+	--disable-tests \
+	--disable-fuzzer-target \
+	--disable-gtk-doc \
+	--disable-gtk-doc-html \
+	--disable-gtk-doc-pdf \
+	--disable-nls \
+	--disable-rpath \
+	--disable-seccomp-tests \
+	--enable-cross-guesses=conservative \
+	--disable-valgrind-tests \
+	--disable-full-test-suite \
+	--disable-oldgnutls-interop \
+	--disable-gcc-warnings \
+	--disable-static \
+	--enable-shared \
+	--disable-fips140-mode \
+	--disable-strict-x509 \
+	--enable-non-suiteb-curves \
+	--disable-libdane \
+	--disable-guile \
+	--without-gcov \
+	--with-nettle-mini \
+	--without-included-libtasn1 \
+	--with-included-unistring \
+	--without-fips140-key \
+	--without-fips140-module-name \
+	--without-fips140-module-version \
+	--with-pkcs12-iter-count=600000 \
+	--without-idn \
+	--without-unbound-root-key-file \
+	--without-system-priority-file \
+	--without-default-priority-string \
+	--without-p11-kit \
+	--without-tpm2 \
+	--without-tpm \
+	--without-trousers-lib \
+	--without-zlib \
+	--without-brotli \
+	--without-zstd \
+	--with-default-trust-store-file=/etc/ssl/certs/ca-certificates.crt
+
+# vim: syntax=make
-- 
2.34.1