forked from NetBSD/pkgsrc
-
Notifications
You must be signed in to change notification settings - Fork 51
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Packaged in wip by Iku Iwasa with minor cleanups by myself. CFSSL is CloudFlare's PKI/TLS swiss army knife. It is both a command line tool and an HTTP API server for signing, verifying, and bundling TLS certificates. CFSSL consists of: * a set of packages useful for building custom TLS PKI tools * the cfssl program, which is the canonical command line utility using the CFSSL packages. * the multirootca program, which is a certificate authority server that can use multiple signing keys. * the mkbundle program is used to build certificate pool bundles. * the cfssljson program, which takes the JSON output from the cfssl and multirootca programs and writes certificates, keys, CSRs, and bundles to disk.
- Loading branch information
Showing
5 changed files
with
6,285 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,20 @@ | ||
CFSSL is CloudFlare's PKI/TLS swiss army knife. It is both a command line | ||
tool and an HTTP API server for signing, verifying, and bundling TLS | ||
certificates. It requires Go 1.16+ to build. | ||
|
||
Note that certain linux distributions have certain algorithms removed | ||
(RHEL-based distributions in particular), so the golang from the official | ||
repositories will not work. Users of these distributions should install go | ||
manually to install CFSSL. | ||
|
||
CFSSL consists of: | ||
|
||
* a set of packages useful for building custom TLS PKI tools | ||
* the cfssl program, which is the canonical command line utility using the | ||
CFSSL packages. | ||
* the multirootca program, which is a certificate authority server that can | ||
use multiple signing keys. | ||
* the mkbundle program is used to build certificate pool bundles. | ||
* the cfssljson program, which takes the JSON output from the cfssl and | ||
multirootca programs and writes certificates, keys, CSRs, and bundles | ||
to disk. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,44 @@ | ||
# $NetBSD: Makefile,v 1.1 2023/02/21 14:05:05 jperkin Exp $ | ||
|
||
DISTNAME= cfssl-1.6.3 | ||
CATEGORIES= security | ||
MASTER_SITES= ${MASTER_SITE_GITHUB:=cloudflare/} | ||
GITHUB_TAG= v${PKGVERSION_NOREV} | ||
|
||
MAINTAINER= [email protected] | ||
HOMEPAGE= https://cfssl.org/ | ||
COMMENT= CloudFlare PKI toolkit | ||
LICENSE= mit | ||
|
||
EXTRACT_USING= bsdtar | ||
|
||
.include "go-modules.mk" | ||
|
||
CHECK_RELRO_SKIP+= bin/cfssl | ||
CHECK_RELRO_SKIP+= bin/cfssl-bundle | ||
CHECK_RELRO_SKIP+= bin/cfssl-certinfo | ||
CHECK_RELRO_SKIP+= bin/cfssl-newkey | ||
CHECK_RELRO_SKIP+= bin/cfssl-scan | ||
CHECK_RELRO_SKIP+= bin/cfssljson | ||
CHECK_RELRO_SKIP+= bin/mkbundle | ||
CHECK_RELRO_SKIP+= bin/multirootca | ||
|
||
INSTALLATION_DIRS+= bin | ||
INSTALLATION_DIRS+= share/doc/cfssl share/doc/cfssl/api share/doc/cfssl/cmd | ||
|
||
GO_XFLAG_PREFIX= -X github.com/cloudflare/cfssl/cli/version | ||
GO_LDFLAGS+= ${GO_XFLAG_PREFIX}.version=${PKGVERSION_NOREV} | ||
|
||
do-build: | ||
${RUN}${_ULIMIT_CMD} cd ${WRKSRC} && ${PKGSRC_SETENV} ${MAKE_ENV} \ | ||
${GO} install -v -ldflags ${GO_LDFLAGS:Q} ./cmd/... | ||
|
||
do-install: | ||
${INSTALL_PROGRAM} ${WRKDIR}/.gopath/bin/* ${DESTDIR}${PREFIX}/bin | ||
${INSTALL_DATA} ${WRKSRC}/doc/*.txt ${DESTDIR}${PREFIX}/share/doc/cfssl | ||
${INSTALL_DATA} ${WRKSRC}/doc/*.sample ${DESTDIR}${PREFIX}/share/doc/cfssl | ||
${INSTALL_DATA} ${WRKSRC}/doc/api/*.txt ${DESTDIR}${PREFIX}/share/doc/cfssl/api | ||
${INSTALL_DATA} ${WRKSRC}/doc/cmd/*.txt ${DESTDIR}${PREFIX}/share/doc/cfssl/cmd | ||
|
||
.include "../../lang/go/go-module.mk" | ||
.include "../../mk/bsd.pkg.mk" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,30 @@ | ||
@comment $NetBSD: PLIST,v 1.1 2023/02/21 14:05:05 jperkin Exp $ | ||
bin/cfssl | ||
bin/cfssl-bundle | ||
bin/cfssl-certinfo | ||
bin/cfssl-newkey | ||
bin/cfssl-scan | ||
bin/cfssljson | ||
bin/mkbundle | ||
bin/multirootca | ||
share/doc/cfssl/README.txt | ||
share/doc/cfssl/api/endpoint_authsign.txt | ||
share/doc/cfssl/api/endpoint_bundle.txt | ||
share/doc/cfssl/api/endpoint_certinfo.txt | ||
share/doc/cfssl/api/endpoint_crl.txt | ||
share/doc/cfssl/api/endpoint_health.txt | ||
share/doc/cfssl/api/endpoint_info.txt | ||
share/doc/cfssl/api/endpoint_init_ca.txt | ||
share/doc/cfssl/api/endpoint_newcert.txt | ||
share/doc/cfssl/api/endpoint_newkey.txt | ||
share/doc/cfssl/api/endpoint_revoke.txt | ||
share/doc/cfssl/api/endpoint_scan.txt | ||
share/doc/cfssl/api/endpoint_scaninfo.txt | ||
share/doc/cfssl/api/endpoint_sign.txt | ||
share/doc/cfssl/api/intro.txt | ||
share/doc/cfssl/authentication.txt | ||
share/doc/cfssl/ca-bundle.crt.metadata.sample | ||
share/doc/cfssl/cmd/cfssl.txt | ||
share/doc/cfssl/cmd/multiroot.txt | ||
share/doc/cfssl/errorcode.txt | ||
share/doc/cfssl/transport.txt |
Oops, something went wrong.