Home Verkennen Help
Registreren Inloggen
Apq
/
MoeClub-Note
spiegel van https://github.com/MoeClub/Note.git
1
0
Vork 0
Bestanden Issues 0 Wiki
Boom: 44774ead8c
Aftakkingen Labels
MoeClub-Note
/
AnyConnect
/
build
/
static_ocserv.sh

static_ocserv.sh 6.5 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186 
  1. #!/bin/bash -e
    2. 

  2. 

  3. # Build static ocserv 
    4. 

  4. #                   by MoeClub
    5. 

  5. 

  6. # apt install -y gcc bison gawk make autoconf pkg-config xz-utils python3-pip
    7. 

  7. 

  8. #################
    9. 

  9. #################
    10. 

  10. 

  11. ver_glibc=2.31
    12. 

  12. ver_libev=4.33
    13. 

  13. ver_nettle=3.7.3
    14. 

  14. ver_gnutls=3.6.16
    15. 

  15. ver_ocserv=1.1.6
    16. 

  16. 

  17. #################
    18. 

  18. #################
    19. 

  19. 

  20. cd /tmp
    21. 

  21. cores=$(grep -c '^processor' /proc/cpuinfo)
    22. 

  22. installPrefix="/tmp/build"
    23. 

  23. 

  24. export CC=/usr/bin/gcc
    25. 

  25. export PKG_CONFIG_SYSROOT_DIR="$installPrefix"
    26. 

  26. export PKG_CONFIG_LIBDIR="$installPrefix/lib/pkgconfig:$installPrefix/lib64/pkgconfig"
    27. 

  27. 

  28. 

  29. #################
    30. 

  30. #################
    31. 

  31. 

  32. rm -rf $installPrefix
    33. 

  33. mkdir -p $installPrefix
    34. 

  34. ln -s . $installPrefix/usr
    35. 

  35. ln -s . $installPrefix/local
    36. 

  36. 

  37. #################
    38. 

  38. #################
    39. 

  39. 

  40. # glibc
    41. 

  41. wget --no-check-certificate -4 -O glibc.tar.gz https://ftp.gnu.org/pub/gnu/glibc/glibc-${ver_glibc}.tar.gz
    42. 

  42. [ -d glibc ] && rm -rf glibc
    43. 

  43. mkdir -p glibc; tar -xz -f glibc.tar.gz -C glibc --strip-components=1;
    44. 

  44. mkdir -p glibc/build; cd glibc/build
    45. 

  45. CFLAGS="-I$installPrefix/include -ffloat-store -O2 --static" \
    46. 

  46. LDFLAGS="-L$installPrefix/lib -L$installPrefix/lib64 -static -static-libgcc -static-libstdc++ -s -pthread -lpthread" \
    47. 

  47. ../configure \
    48. 

  48.   --prefix=$installPrefix \
    49. 

  49.   --enable-static --enable-static-nss \
    50. 

  50. 	--disable-nscd --disable-sanity-checks
    51. 

  51. [ $? -eq 0 ] || exit 1 
    52. 

  52. make -j$cores
    53. 

  53. [ $? -eq 0 ] || exit 1 
    54. 

  54. make install
    55. 

  55. find "$installPrefix/lib" ! -type d ! -name "*.a" -delete
    56. 

  56. cd ..
    57. 

  57. 

  58. # libev
    59. 

  59. wget --no-check-certificate -4 -O libev.tar.gz http://dist.schmorp.de/libev/Attic/libev-${ver_libev}.tar.gz
    60. 

  60. [ -d libev ] && rm -rf libev
    61. 

  61. mkdir -p libev; tar -xz -f libev.tar.gz -C libev --strip-components=1;
    62. 

  62. cd libev
    63. 

  63. CFLAGS="-I$installPrefix/include -ffloat-store -O0 --static" \
    64. 

  64. LDFLAGS="-L$installPrefix/lib -L$installPrefix/lib64 -static -static-libgcc -static-libstdc++ -s -pthread -lpthread" \
    65. 

  65. ./configure \
    66. 

  66.   --enable-static \
    67. 

  67. 	--disable-shared
    68. 

  68. [ $? -eq 0 ] || exit 1 
    69. 

  69. make -j$cores
    70. 

  70. [ $? -eq 0 ] || exit 1 
    71. 

  71. make DESTDIR=$installPrefix install
    72. 

  72. cd ..
    73. 

  73. 

  74. # Nettle
    75. 

  75. wget --no-check-certificate -4 -O nettle.tar.gz https://ftp.gnu.org/gnu/nettle/nettle-${ver_nettle}.tar.gz
    76. 

  76. [ -d nettle ] && rm -rf nettle
    77. 

  77. mkdir -p nettle; tar -xz -f nettle.tar.gz -C nettle --strip-components=1;
    78. 

  78. cd nettle
    79. 

  79. CFLAGS="-I$installPrefix/include -ffloat-store -O0 --static" \
    80. 

  80. LDFLAGS="-L$installPrefix/lib -L$installPrefix/lib64 -static -static-libgcc -static-libstdc++ -s -pthread -lpthread" \
    81. 

  81. ./configure \
    82. 

  82.   --enable-mini-gmp --enable-x86-aesni --enable-arm-neon --enable-static \
    83. 

  83. 	--disable-{documentation,shared,rpath}
    84. 

  84. [ -f ./cnd-memcpy.c ] && sed -i 's/cnd-copy\.c /&cnd-memcpy.c /' Makefile
    85. 

  85. [ -f ./shake256.c ] && sed -i 's/cnd-copy\.c /&shake256.c /' Makefile
    86. 

  86. [ $? -eq 0 ] || exit 1 
    87. 

  87. make -j$cores
    88. 

  88. [ $? -eq 0 ] || exit 1 
    89. 

  89. make DESTDIR=$installPrefix install
    90. 

  90. cd ..
    91. 

  91. 

  92. # GnuTLS
    93. 

  93. wget --no-check-certificate -4 -O gnutls.tar.xz https://www.gnupg.org/ftp/gcrypt/gnutls/v${ver_gnutls%.*}/gnutls-${ver_gnutls}.tar.xz
    94. 

  94. [ -d gnutls ] && rm -rf gnutls
    95. 

  95. mkdir -p gnutls; tar -xJ -f gnutls.tar.xz -C gnutls --strip-components=1;
    96. 

  96. cd gnutls
    97. 

  97. CFLAGS="-I$installPrefix/include -ffloat-store -O0 --static" \
    98. 

  98. LDFLAGS="-L$installPrefix/lib -L$installPrefix/lib64 -static -static-libgcc -static-libstdc++ -s -pthread -lpthread" \
    99. 

  99. ./configure \
    100. 

  100.   --with-nettle-mini --with-included-{libtasn1,unistring} \
    101. 

  101. 	--without-p11-kit --enable-static --enable-openssl-compatibility \
    102. 

  102. 	--disable-{doc,tools,cxx,tests,nls,guile,rpath,shared}
    103. 

  103. [ $? -eq 0 ] || exit 1 
    104. 

  104. make -j$cores
    105. 

  105. [ $? -eq 0 ] || exit 1 
    106. 

  106. make DESTDIR=$installPrefix install
    107. 

  107. cd ..
    108. 

  108. 

  109. # readline.h
    110. 

  110. cat >$installPrefix/include/readline.h <<EOF
    111. 

  111. #ifndef READLINE_H
    112. 

  112. #define READLINE_H
    113. 

  113. typedef char *rl_compentry_func_t(const char*, int);
    114. 

  114. typedef char **rl_completion_func_t(const char*, int, int);
    115. 

  115. extern char *rl_line_buffer;
    116. 

  116. extern char *rl_readline_name;
    117. 

  117. extern rl_completion_func_t *rl_attempted_completion_function;
    118. 

  118. extern rl_compentry_func_t *rl_completion_entry_function;
    119. 

  119. extern int rl_completion_query_items;
    120. 

  120. char *readline(const char *prompt);
    121. 

  121. void add_history(const char *string);
    122. 

  122. int rl_reset_terminal(const char *terminal_name);
    123. 

  123. char **rl_completion_matches(const char *text, void *entry_func);
    124. 

  124. void rl_redisplay(void);
    125. 

  125. #endif
    126. 

  126. EOF
    127. 

  127. # readline.c
    128. 

  128. $CC -xc - -c -o readline.o -ffloat-store -O0 <<EOF
    129. 

  129. #include <stdio.h>
    130. 

  130. #include <string.h>
    131. 

  131. char *rl_line_buffer = NULL;
    132. 

  132. char *rl_readline_name;
    133. 

  133. void *rl_attempted_completion_function;
    134. 

  134. void *rl_completion_entry_function;
    135. 

  135. int rl_completion_query_items;
    136. 

  136. char *readline(const char *prompt) {
    137. 

  137. 	char buf[512], *ptr;
    138. 

  138. 	if(prompt) printf("%s", prompt);
    139. 

  139. 	fflush(stdout); ptr = buf;
    140. 

  140. 	while((*ptr = getchar()) != '\n') ptr++;
    141. 

  141. 	*ptr = '\0';
    142. 

  142. 	return strdup(buf);
    143. 

  143. }
    144. 

  144. void add_history(const char *string) {}
    145. 

  145. int rl_reset_terminal(const char *terminal_name) {return 0;}
    146. 

  146. char **rl_completion_matches(const char *text, void *entry_func) {return NULL;}
    147. 

  147. void rl_redisplay(void) {}
    148. 

  148. EOF
    149. 

  149. # readline.a
    150. 

  150. ar rcs $installPrefix/lib/libreadline.a readline.o
    151. 

  151. rm -rf readline.o
    152. 

  152. 

  153. 

  154. # OpenConnect Server
    155. 

  155. rm -rf $HOME/ocserv-build
    156. 

  156. mkdir -p $HOME/ocserv-build
    157. 

  157. wget --no-check-certificate -4 -O ocserv.tar.xz ftp://ftp.infradead.org/pub/ocserv/ocserv-${ver_ocserv}.tar.xz
    158. 

  158. [ -d ocserv ] && rm -rf ocserv
    159. 

  159. mkdir -p ocserv; tar -xJ -f ocserv.tar.xz -C ocserv --strip-components=1;
    160. 

  160. cd ocserv
    161. 

  161. #autoreconf -fvi
    162. 

  162. sed -i 's/#define DEFAULT_CONFIG_ENTRIES 96/#define DEFAULT_CONFIG_ENTRIES 200/' src/vpn.h
    163. 

  163. sed -i 's/login_end = OC_LOGIN_END;/&\n\t\tif (ws->req.user_agent_type == AGENT_UNKNOWN) {\n\t\t\tcstp_cork(ws);\n\t\t\tret = (cstp_printf(ws, "HTTP\/1.%u 200 OK\\r\\nContent-Type: text\/plain\\r\\nContent-Length: 0\\r\\n\\r\\n", http_ver) < 0 || cstp_uncork(ws) < 0);\n\t\t\tstr_clear(\&str);\n\t\t\treturn -1;\n\t\t}/' src/worker-auth.c
    164. 

  164. #sed -i 's/case AC_PKT_DPD_OUT:/&\n\t\tws->last_nc_msg = now;/' src/worker-vpn.c
    165. 

  165. #sed -i 's/\$LIBS \$LIBEV/\$LIBEV \$LIBS/g' configure
    166. 

  166. CFLAGS="-I$installPrefix/include -ffloat-store -O0 --static" \
    167. 

  167. LDFLAGS="-L$installPrefix/lib -L$installPrefix/lib64 -static -static-libgcc -static-libstdc++ -s -pthread -lpthread" \
    168. 

  168. LIBS="-lev -lm -lnettle -lhogweed -lreadline" \
    169. 

  169. ./configure --prefix=/usr \
    170. 

  170. 	--disable-rpath \
    171. 

  171. 	--with-local-talloc \
    172. 

  172. 	--without-{root-tests,docker-tests,nuttcp-tests} \
    173. 

  173. 	--without-{protobuf,maxmind,geoip,liboath,pam,radius,utmp,lz4,http-parser,gssapi,pcl-lib}
    174. 

  174. [ $? -eq 0 ] || exit 1 
    175. 

  175. make -j$cores
    176. 

  176. [ $? -eq 0 ] || exit 1 
    177. 

  177. make DESTDIR=$HOME/ocserv-build install
    178. 

  178. cd ..
    179. 

  179. 

  180. # Package
    181. 

  181. cd $HOME/ocserv-build
    182. 

  182. for item in `find . -type f`; do strip -s "$item" 2>/dev/null; done
    183. 

  183. case `uname -m` in aarch64|arm64) arch="arm64";; x86_64|amd64) arch="amd64";; *) arch="unknown";; esac
    184. 

  184. tar -cvf "../ocserv_${arch}_v${ver_ocserv}.tar" ./
    185. 

  185. # tar --overwrite -xvf "ocserv_${arch}_v${ver_ocserv}.tar" -C /
    186. 

  186.