# SliTaz package receipt.

PACKAGE="openssh"
VERSION="5.9p1"
CATEGORY="security"
SHORT_DESC="Openbsd Secure Shell."
MAINTAINER="pascal.bellard@slitaz.org"
TARBALL="$PACKAGE-$VERSION.tar.gz"
WEB_SITE="http://www.openssh.org/"
WGET_URL="ftp://ftp.fr.openbsd.org/pub/OpenBSD/OpenSSH/portable/$TARBALL"
DEPENDS="sftp-server libcrypto zlib"
BUILD_DEPENDS="libcrypto-dev zlib-dev openssl-dev"
PROVIDE="ssh"
TAGS="ssh"

# Rules to configure and make the package.
compile_rules()
{
	cd $src
	./configure --prefix=/usr --sysconfdir=/etc/ssh --without-pam \
		--with-privsep-user=nobody --with-privsep-path=/var/run/sshd \
		--with-xauth=/usr/bin/xauth --libexecdir=/usr/sbin \
		$CONFIGURE_ARGS &&
	make &&
	make DESTDIR=$DESTDIR install
}

# Rules to gen a SliTaz package suitable for Tazpkg.
genpkg_rules()
{
	mkdir -p $fs/usr $fs/etc/init.d $fs/etc/ssh $fs/var/run/sshd
	cp -a $_pkg/usr/sbin $_pkg/usr/bin $fs/usr
	rm -f $fs/usr/sbin/sftp-server
	cp -a $_pkg/etc $fs
	cp $stuff/openssh $fs/etc/init.d
	sed -i 's|/usr/libexec/sftp-server|/usr/sbin/sftp-server|' \
		$fs/etc/ssh/sshd_config

	# client bug CVE-2016-0777 and CVE-2016-0778
	echo -e '\nHost *\nUseRoaming no' >> $fs/etc/ssh/ssh_config
}

# Pre and post install commands for Tazpkg.
post_install()
{
	while read dropbear openssh ; do
		[ -s $1$dropbear ] || continue
		dropbearconvert dropbear openssh $1$dropbear $1$openssh
		dropbearkey -y -f $1$dropbear | grep ssh > $1$openssh.pub
		dropbearkey -y -f $1$dropbear | grep Fingerprint
	done <<EOT
/etc/dropbear/dropbear_rsa_host_key	/etc/ssh/ssh_host_rsa_key
/etc/dropbear/dropbear_dss_host_key	/etc/ssh/ssh_host_dsa_key
EOT
}