aboutsummaryrefslogtreecommitdiffstats
path: root/mail/qmail-tls/Makefile
blob: d295799e61f122fbce83cdd4f68632b1ef617e65 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
# New ports collection makefile for:    qmail-tls
# Date created:             03 Dec 2000
# Whom:                 Mario S F Ferreira <lioux@linf.unb.br> et al.
#
# $FreeBSD$
#

PORTNAME=   qmail
PORTVERSION=    ${QMAIL_VERSION}.${TLS_PATCH_DATE}
CATEGORIES= mail
PKGNAMESUFFIX=  -tls

PATCH_SITES+=   http://www.esat.kuleuven.ac.be/~vermeule/qmail/:tls
PATCHFILES+=    tls.patch:tls
PATCH_DIST_STRIP+=  -p1

MAINTAINER= lioux@FreeBSD.org
COMMENT=    A SECURE, reliable, and FAST MTA for UNIX systems WITH TLS support

USE_OPENSSL=    YES

# Patches from the main qmail port are not wanted
MAIN_QMAIL_PORT_WITH_OUTGOINGIP_PATCH_BARRIER=  yes

TLS_PATCH_DATE= 20020825

# Using default from master port, i.e., /var/qmail
PREFIX?=    ${QMAIL_PORT_PREFIX}
#PREFIX=        /var/qmail-tls

.if !defined(PRE_MK_INCLUDED)
.include <bsd.port.pre.mk>
.endif

CFLAGS+=    -I${OPENSSLBASE}/include -L${OPENSSLBASE}/lib -DTLS

.if defined(WITH_TLS_DEBUG)
CFLAGS+=    -DDEBUG
.endif # WITH_TLS_DEBUG

#QMAIL_PORT=    ${PORTSDIR}/mail/qmail
QMAIL_PORT= ${.CURDIR}/../qmail
QMAIL_PORT_PREFIX!= cd ${QMAIL_PORT} && ${MAKE} -V PREFIX

DOCFILES+=  ${WRKDIR}/TLS.readme

slaveport-pre-fetch: qmail-tls-pre-fetch

qmail-tls-pre-fetch:
    @${ECHO_MSG} "WITH_TLS_DEBUG=yes        enable additional debug information"

slaveport-post-patch: qmail-tls-post-patch

qmail-tls-post-patch:
    @${HEAD} -74 ${DISTDIR}/tls.patch > ${WRKDIR}/TLS.readme
    @${PERL} -pi -ne "s|/usr/local/ssl|${OPENSSLBASE}|" ${WRKSRC}/Makefile

# Primary Ugh... ;-)
# idea stolen from www/apache13-ssl, a target written by adam@algroup.co.uk
# internal code ripped from tls.patch guts ;-) written by Frederik Vermeulen <jos-tls@kotnet.org>

certificate:
    @if [ -f ${OPENSSLDIR}/openssl.cnf ]; \
    then \
        if [ ! -d ${WRKDIR} ]; \
        then \
            ${MKDIR} ${WRKDIR} ; \
        fi ; \
        ${OPENSSLBASE}/bin/openssl req -new -x509 -nodes \
            -out ${WRKDIR}/servercert.pem -days 366 \
            -keyout ${WRKDIR}/servercert.pem ; \
        ${INSTALL} -o qmaild -g qmail -m 0640 ${WRKDIR}/servercert.pem ${PREFIX}/control/servercert.pem ; \
        ${ECHO_MSG} "===> Do not forget to do 'make clean' to clean up temporary files" ; \
    else \
        ${ECHO_MSG} "===> You must create the file ${OPENSSLDIR}/openssl.cnf first." ; \
    fi

certificate-req:
    @if [ -f ${OPENSSLDIR}/openssl.cnf ]; \
    then \
        if [ ! -d ${WRKDIR} ]; \
        then \
            ${MKDIR} ${WRKDIR} ; \
        fi ; \
        ${OPENSSLBASE}/bin/openssl req -new -nodes \
            -out ${WRKDIR}/req.pem \
            -keyout ${WRKDIR}/servercert.pem ; \
        ${INSTALL} -o qmaild -g qmail -m 0640 ${WRKDIR}/servercert.pem ${PREFIX}/control/servercert.pem ; \
        ${ECHO_MSG} ; \
        ${ECHO_MSG} "===> Do not forget to do 'make clean' to clean up temporary files" ; \
        ${ECHO_MSG} "===> Send ${WRKDIR}/req.pem to your CA to obtain signed_req.pem, and do:" ; \
        ${ECHO_MSG} "===> cat signed_req.pem >> ${PREFIX}/control/servercert.pem" ; \
    else \
        ${ECHO_MSG} "===> You must create the file ${OPENSSLDIR}/openssl.cnf first." ; \
    fi

# Local overrides
MASTERDIR=  ${QMAIL_PORT}
PKGDIR_LOCAL=   ${.CURDIR}
DESCR=      ${PKGDIR_LOCAL}/pkg-descr
PKGMESSAGE= ${PKGDIR_LOCAL}/pkg-message
PLIST=      ${PKGDIR_LOCAL}/pkg-plist

.include "${MASTERDIR}/Makefile"