Refactor finalization #149
Draft
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
night1rider
force-pushed
the
refactor-finalization
branch
3 times, most recently
from
e3fa29d to
12c4514
Compare
…elpers in bbclass Refactored layer.conf to unconditionally include all recipes, moved feature-specific configuration into modular .inc files, created wolfssl-helper.bbclass with reusable do_wolfssl_autogen and do_wolfssl_check_package tasks, updated all recipes to use the new pattern, and standardized commercial license variables to be recipe-specific. Use a virtual wolfssl to make library switching easier for fips vs non fips or other wolfSSL packages Set wolfssl libraries as the deafualt weak Preferred_Provider option for packages
* Fixes 7z extraction issues, mostly around using password when the password has already been stripped out * Fixes autoreconf and configure issues with the FIPS package * Fixes wolfcrypttest and wolfcryptbenchmark not being isntalled with FIPS when they are selected
The execution of QEMU to get the hash would fail when cross-compiling to a different CPU target. This fixes it.
Added 3 layers - gnutls: gnutls fork patched to use wolfssl as cryptographic provider - wolfssl: wolfssl configured to work against gnutls - wolfssl-gnutls-wrapper: shim layer that gets called by gnutls applications when linked against gnutls-wolfssl - gnutls-wolfssl-tests: tests from the wolfssl-gnutls-wrapper folder installed under /usr/lib/wolfssl-gnutls-wrapper/ Everything gets installed under /usr ovverriding the system installed recipes, the wrapper is symlinked in /opt. Fips currently not supported.
happening on the base recipe
rebased against the new staging branch (refactor-meta-wolfssl)
- update layer.conf to conditionally include gnutls-image-minimal if included in the WOLFSSL_DEMOS; - minor update to inc/gnutls/gnutls-enable-wolfssl.inc to by pass the fuzzing binaries from the base recipes;
…ssues on some builds)
The commercial package can now be retrieved from GCP and can be a tarball without password protection.
Add commercial FIPS LinuxKM recipe. Signed-off-by: Sameeh Jubran <sameeh@wolfssl.com> Signed-off-by: Zackery Backman <zackery@wolfssl.com>
fixing compatability and file layout for .incs porting
…r347 Update ref version for cmd test specific commit to pr 347
fix buggy paths in meta-wolfssl
FIPS-off gnutls recipes + minimal fips-off image.
night1rider
force-pushed
the
refactor-finalization
branch
from
12c4514 to
366dde7
Compare
night1rider
force-pushed
the
refactor-finalization
branch
from
320914a to
0f9843b
Compare
There was a problem hiding this comment.
Pull request overview
This pull request implements a comprehensive refactoring of the wolfSSL meta layer build system. The changes introduce a new architecture using virtual providers, helper classes, and a modern/legacy split for Yocto version compatibility.
Changes:
- Introduces
virtual/wolfsslprovider pattern for flexible wolfssl/wolfssl-fips selection - Replaces hardcoded paths (
COMPONENTS_DIR) with standard Yocto variables (STAGING_EXECPREFIXDIR) - Implements helper-based configuration system with modern/legacy Yocto version support
- Refactors autogen handling from inline Python to proper BitBake tasks
- Standardizes commercial license variable naming (WOLF_LICENSE → package-specific names)
- Adds new include file structure for modular configuration
Reviewed changes
Copilot reviewed 280 out of 283 changed files in this pull request and generated no comments.
Show a summary per file
| File | Description |
|---|---|
| recipes-wolfssl/*/*.bb | Updated to use virtual/wolfssl, standard staging paths, helper classes, and task-based autogen |
| recipes-wolfssl/*/commercial/*.bbappend | Renamed license variables, added wolfssl-compatibility, converted autogen to tasks |
| recipes-wolfssl/*/*.bbappend | Migrated from inline EXTRA_OECONF to conditional helper-based configuration |
| inc/*/*.inc | New modular include file structure with modern/legacy split for Yocto compatibility |
| recipes-core/images/*/*.bb | New image recipes using helper functions and manual configuration |
| conf/wolfssl-fips.conf.sample | New FIPS configuration template |
| .gitignore | Added conf/wolfssl-fips.conf exclusion |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
7 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Remade from #146 due to being against wrong branch