SliTaz Packages

Receipt for package "openssh"

# SliTaz package receipt.

PACKAGE="openssh"
VERSION="5.9p1"
CATEGORY="security"
SHORT_DESC="Openbsd Secure Shell."
MAINTAINER="pascal.bellard@slitaz.org"
TARBALL="$PACKAGE-$VERSION.tar.gz"
WEB_SITE="http://www.openssh.org/"
WGET_URL="ftp://ftp.fr.openbsd.org/pub/OpenBSD/OpenSSH/portable/$TARBALL"
DEPENDS="sftp-server libcrypto zlib"
BUILD_DEPENDS="libcrypto-dev zlib-dev openssl-dev"
PROVIDE="ssh"
TAGS="ssh"

# Rules to configure and make the package.
compile_rules()
{
    cd $src
    ./configure --prefix=/usr --sysconfdir=/etc/ssh --without-pam \
        --with-privsep-user=nobody --with-privsep-path=/var/run/sshd \
        --with-xauth=/usr/bin/xauth --libexecdir=/usr/sbin \
        $CONFIGURE_ARGS &&
    make &&
    make DESTDIR=$DESTDIR install
}

# Rules to gen a SliTaz package suitable for Tazpkg.
genpkg_rules()
{
    mkdir -p $fs/usr $fs/etc/init.d $fs/etc/ssh $fs/var/run/sshd
    cp -a $_pkg/usr/sbin $_pkg/usr/bin $fs/usr
    rm -f $fs/usr/sbin/sftp-server
    cp -a $_pkg/etc $fs
    cp $stuff/openssh $fs/etc/init.d
    sed -i 's|/usr/libexec/sftp-server|/usr/sbin/sftp-server|' \
        $fs/etc/ssh/sshd_config

    # client bug CVE-2016-0777 and CVE-2016-0778
    echo -e '\nHost *\nUseRoaming no' >> $fs/etc/ssh/ssh_config
}

# Pre and post install commands for Tazpkg.
post_install()
{
    while read dropbear openssh ; do
        [ -s $1$dropbear ] || continue
        dropbearconvert dropbear openssh $1$dropbear $1$openssh
        dropbearkey -y -f $1$dropbear | grep ssh > $1$openssh.pub
        dropbearkey -y -f $1$dropbear | grep Fingerprint
    done <<EOT
/etc/dropbear/dropbear_rsa_host_key    /etc/ssh/ssh_host_rsa_key
/etc/dropbear/dropbear_dss_host_key    /etc/ssh/ssh_host_dsa_key
EOT
}