Digi
/
meta-digi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
meta-digi/meta-digi-arm/dynamic-layers/stm-st-stm32mp/recipes-security/optee/optee-client_4.0.bb

63 lines
2.3 KiB
BlitzBasic
Executable File
Raw Blame History

SUMMARY = "OPTEE Client"
HOMEPAGE = "https://github.com/OP-TEE/optee_client"
LICENSE = "BSD-2-Clause"
LIC_FILES_CHKSUM = "file://${S}/LICENSE;md5=69663ab153298557a59c67a60a743e5b"
inherit python3native systemd cmake pkgconfig
SRC_URI = "git://github.com/OP-TEE/optee_client.git;protocol=https;branch=master \
file://tee-supplicant.service \
file://create-tee-supplicant-env \
file://optee-udev.rules \
"
SRCREV = "acb0885c117e73cb6c5c9b1dd9054cb3f93507ee"
PV = "4.0.0+git${SRCPV}"
S = "${WORKDIR}/git"
DEPENDS += "util-linux-libuuid"
SYSTEMD_SERVICE:${PN} = "tee-supplicant.service"
SECURE_STORAGE_PATH ?= "${@oe.utils.vartrue('TRUSTFENCE_FILE_BASED_ENCRYPT', \
'-DCFG_TEE_FS_PARENT_PATH=/mnt/data/tee', \
'${localstatedir}/lib/tee', d)}"
EXTRA_OECMAKE = " \
-DCFG_TEE_FS_PARENT_PATH='${SECURE_STORAGE_PATH}' \
-DCFG_WERROR=OFF \
-DCFG_TEE_CLIENT_LOG_LEVEL=2 \
-DCFG_TEE_CLIENT_LOG_FILE='${localstatedir}/log/tee/teec.log' \
-DBUILD_SHARED_LIBS=ON \
-DRPMB_EMU=0 \
"
do_install:append() {
if ${@bb.utils.contains('DISTRO_FEATURES','systemd','true','false',d)}; then
sed -i -e s:/etc:${sysconfdir}:g \
-e s:/usr/bin:${bindir}:g \
${WORKDIR}/tee-supplicant.service
install -D -p -m0644 ${WORKDIR}/tee-supplicant.service ${D}${systemd_system_unitdir}/tee-supplicant.service
install -D -p -m0755 ${WORKDIR}/create-tee-supplicant-env ${D}${sbindir}/
fi
install -d ${D}${sysconfdir}/udev/rules.d
install -m 0644 ${WORKDIR}/optee-udev.rules ${D}${sysconfdir}/udev/rules.d/optee.rules
install -d -m770 -o root -g tee ${D}${SECURE_STORAGE_PATH}
}
FILES:${PN} += "${sysconfdir} ${localstatedir}"
inherit useradd
USERADD_PACKAGES = "${PN}"
# Create groups 'tee' and 'teeclnt'. Permissions are set elsewhere on
# /dev/teepriv0 and /dev/tee0 so that tee-supplicant should run as a user that
# is a member of the 'tee' group, and TEE client applications should runs as a
# user that is a member of the 'teeclnt' group.
GROUPADD_PARAM:${PN} = "--system tee; --system teeclnt"
# Create user 'tee' member of group 'tee' to run tee-supplicant
USERADD_PARAM:${PN} = "--system -d / -M -s /bin/nologin -c 'User for tee-supplicant' -g tee tee"
Reference in New Issue View Git Blame Copy Permalink