mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-10-02 02:51:06 +02:00
Code Issues Packages Projects Releases Wiki Activity

sys-fs/cryptsetup: sync with ::gentoo

Browse Source 
this pulls fips support.

Commit-Ref: 1746c2caf8

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
This commit is contained in:
Mathieu Tortuyaux 2022-03-22 09:46:43 +01:00
parent 5907650a82
commit 226eae7bc3
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
sdk_container/src/third_party/portage-stable/sys-fs/cryptsetup/cryptsetup-2.4.3-r1.ebuild vendored
View File

@ -16,10 +16,10 @@ KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~mips ~ppc ~ppc64 ~riscv ~s390 ~
CRYPTO_BACKENDS="gcrypt kernel nettle +openssl" CRYPTO_BACKENDS="gcrypt kernel nettle +openssl"
# we don't support nss since it doesn't allow cryptsetup to be built statically # we don't support nss since it doesn't allow cryptsetup to be built statically
# and it's missing ripemd160 support so it can't provide full backward compatibility # and it's missing ripemd160 support so it can't provide full backward compatibility
IUSE="${CRYPTO_BACKENDS} +argon2 nls pwquality reencrypt ssh static static-libs test +udev urandom" IUSE="${CRYPTO_BACKENDS} +argon2 fips nls pwquality reencrypt ssh static static-libs test +udev urandom"
RESTRICT="!test? ( test )" RESTRICT="!test? ( test )"
REQUIRED_USE="^^ ( ${CRYPTO_BACKENDS//+/} ) REQUIRED_USE="^^ ( ${CRYPTO_BACKENDS//+/} )
static? ( !gcrypt !ssh !udev )" # 496612, 832711 static? ( !gcrypt !ssh !udev !fips )" # 496612, 832711
LIB_DEPEND=" LIB_DEPEND="
dev-libs/json-c:=[static-libs(+)] dev-libs/json-c:=[static-libs(+)]
@ -91,6 +91,7 @@ src_configure() {
$(use_enable !urandom dev-random) $(use_enable !urandom dev-random)
$(use_enable ssh ssh-token) $(use_enable ssh ssh-token)
$(usex argon2 '' '--with-luks2-pbkdf=pbkdf2') $(usex argon2 '' '--with-luks2-pbkdf=pbkdf2')
$(use_enable fips)
) )
econf "${myeconfargs[@]}" econf "${myeconfargs[@]}"
} }

1
sdk_container/src/third_party/portage-stable/sys-fs/cryptsetup/metadata.xml vendored
View File

@ -7,6 +7,7 @@
</maintainer> </maintainer>
<use> <use>
<flag name="argon2">Enable password hashing algorithm from <pkg>app-crypt/argon2</pkg></flag> <flag name="argon2">Enable password hashing algorithm from <pkg>app-crypt/argon2</pkg></flag>
<flag name="fips">Enable FIPS mode restrictions</flag>
<flag name="gcrypt">Use <pkg>dev-libs/libgcrypt</pkg> crypto backend</flag> <flag name="gcrypt">Use <pkg>dev-libs/libgcrypt</pkg> crypto backend</flag>
<flag name="kernel">Use kernel crypto backend (mainly for embedded systems)</flag> <flag name="kernel">Use kernel crypto backend (mainly for embedded systems)</flag>
<flag name="nettle">Use <pkg>dev-libs/nettle</pkg> crypto backend</flag> <flag name="nettle">Use <pkg>dev-libs/nettle</pkg> crypto backend</flag>