jeans/motioneyeos
jeans/motioneyeos
1
0
Fork 0
mirror of https://github.com/motioneye-project/motioneyeos.git synced 2025-07-29 14:16:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #37 from ccrisan/feature-letsencrypt-support

Browse Source 
Add Let's Encrypt support
This commit is contained in:
Calin Crisan 2019-11-03 11:10:39 +02:00 committed by GitHub
commit 1a5e54b9a3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
10 changed files with 111 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
board/common/busybox.config
View File

@ -1,7 +1,7 @@
# #
# Automatically generated make config: don't edit # Automatically generated make config: don't edit
# Busybox version: 1.29.2 # Busybox version: 1.29.3
# Fri Feb 1 22:19:53 2019 # Thu Oct 31 23:22:38 2019
# #
CONFIG_HAVE_DOT_CONFIG=y CONFIG_HAVE_DOT_CONFIG=y
@ -266,7 +266,7 @@ CONFIG_FEATURE_MD5_SHA1_SUM_CHECK=y
CONFIG_MKDIR=y CONFIG_MKDIR=y
CONFIG_MKFIFO=y CONFIG_MKFIFO=y
CONFIG_MKNOD=y CONFIG_MKNOD=y
# CONFIG_MKTEMP is not set CONFIG_MKTEMP=y
CONFIG_MV=y CONFIG_MV=y
CONFIG_NICE=y CONFIG_NICE=y
CONFIG_NL=y CONFIG_NL=y
@ -500,7 +500,7 @@ CONFIG_FEATURE_SHADOWPASSWDS=y
# CONFIG_USE_BB_PWD_GRP is not set # CONFIG_USE_BB_PWD_GRP is not set
# CONFIG_USE_BB_SHADOW is not set # CONFIG_USE_BB_SHADOW is not set
CONFIG_USE_BB_CRYPT=y CONFIG_USE_BB_CRYPT=y
# CONFIG_USE_BB_CRYPT_SHA is not set CONFIG_USE_BB_CRYPT_SHA=y
# CONFIG_ADDGROUP is not set # CONFIG_ADDGROUP is not set
# CONFIG_FEATURE_ADDUSER_TO_GROUP is not set # CONFIG_FEATURE_ADDUSER_TO_GROUP is not set
# CONFIG_ADD_SHELL is not set # CONFIG_ADD_SHELL is not set

3
board/common/overlay/etc/crontabs/root
View File

@ -1,2 +1,3 @@
14 3 * * * /usr/sbin/logrotate /etc/logrotate.conf 14 3 * * * /usr/sbin/logrotate /etc/logrotate.conf
0 2 * * 0 /usr/sbin/dehydrated-wrapper
*/15 * * * * /usr/sbin/dyndns-update

6
board/common/overlay/etc/dehydrated/config Normal file
View File

@ -0,0 +1,6 @@
BASEDIR="/var/lib/dehydrated"
DOMAINS_TXT="/data/etc/ssl/domain"
WELLKNOWN="/tmp/dehydrated"
HOOK="/usr/libexec/dehydrated-hook"
CONTACT_EMAIL="$(</data/etc/ssl/email)"
AUTO_CLEANUP="yes"

27
board/common/overlay/etc/init.d/S97dyndns Executable file
View File

@ -0,0 +1,27 @@
#!/bin/bash
PROG="/usr/sbin/dyndns-update"
SCRIPT="/data/etc/dyndns-update.sh"
test -s ${SCRIPT} || exit 0
test -n "${OS_VERSION}" || source /etc/init.d/base
case "$1" in
start)
msg_begin "Updating dynamic DNS"
${PROG} &>/dev/null
test $? == 0 && msg_done || msg_fail
;;
stop)
true
;;
*)
echo "Usage: $0 {start}"
exit 1
esac
exit $?

27
board/common/overlay/usr/libexec/dehydrated-dumb-httpd Executable file
View File

@ -0,0 +1,27 @@
#!/bin/bash
CHALLENGE="$1"
PORT=80
LIFETIME=10
if [[ -z "${CHALLENGE}" ]]; then
echo "Usage $0 <challenge>"
exit 1
fi
function make_response() {
echo -en "HTTP/1.1 200 OK\r\n"
echo -en "Content-Length: ${#CHALLENGE}\r\n"
echo -en "Content-Type: text/plain\r\n"
echo -en "Connection: close\r\n\r\n${CHALLENGE}"
}
start_time=$(date +%s)
echo "Dumb httpd started"
while true; do
make_response | nc -l -w "${LIFETIME}" -p ${PORT} >/dev/null
if (( $(date +%s) - ${start_time} > ${LIFETIME} )); then
break
fi
done
echo "Dumb httpd exit"

15
board/common/overlay/usr/libexec/dehydrated-hook Executable file
View File

@ -0,0 +1,15 @@
#!/bin/bash
SSL_DIR="/data/etc/ssl"
CERT_FILE="${SSL_DIR}/cert.pem"
KEY_FILE="${SSL_DIR}/privkey.pem"
if [[ "$1" == "deploy_challenge" ]]; then
/usr/libexec/dehydrated-dumb-httpd "$4" &
elif [[ "$1" == "deploy_cert" ]]; then
logger -t dehydrated "deploying certificate & rebooting"
mkdir -p "${SSL_DIR}"
cp "$3" "${KEY_FILE}"
cp "$4" "${CERT_FILE}"
reboot
fi

16
board/common/overlay/usr/sbin/dehydrated-wrapper Executable file
View File

@ -0,0 +1,16 @@
#!/bin/bash
PROG="/usr/bin/dehydrated"
BASE_DIR="/var/lib/dehydrated"
TMP_DIR="/tmp/dehydrated"
SSL_DIR="/data/etc/ssl"
if ! [[ -x "${PROG}" && -r "${SSL_DIR}/domain" && -r "${SSL_DIR}/email" ]]; then
exit 0 # not installed or not configured
fi
mkdir -p "${BASE_DIR}"
mkdir -p "${TMP_DIR}"
logger -t dehydrated "checking for certificate renewal"
dehydrated -c

11
board/common/overlay/usr/sbin/dyndns-update Normal file
View File

@ -0,0 +1,11 @@
#!/bin/bash
SCRIPT="/data/etc/dyndns-update.sh"
if ! [[ -f "${SCRIPT}" ]]; then
exit 0
fi
logger -t dyndns "updating dynamic DNS"
bash "${SCRIPT}" 2>&1 | logger -t dyndns
exit ${PIPESTATUS[0]}

4
package/dehydrated/dehydrated.hash
View File

@ -1,6 +1,6 @@
# Locally computed after verifying # Locally computed after verifying
# https://github.com/lukas2511/dehydrated/releases/download/v0.6.2/dehydrated-0.6.2.tar.gz.asc # https://github.com/lukas2511/dehydrated/releases/download/v0.6.5/dehydrated-0.6.5.tar.gz.asc
# with key 3C2F2605E078A1E18F4793909C4DBE6CF438F333 from https://keybase.io/lukas2511 # with key 3C2F2605E078A1E18F4793909C4DBE6CF438F333 from https://keybase.io/lukas2511
sha256 163384479199f06f59382ceb6291a299567a2f4f0b963b9b61f2db65a407e80e dehydrated-0.6.2.tar.gz sha256 10aabd0027450bc70a18e49acaca7a9697e0cfb92368d3e508b7a4d6d69bfa35 dehydrated-0.6.5.tar.gz
# License, locally computed # License, locally computed
sha256 b4583b7dd07e3e2a08906de38e7e329d41f921ed9dcb6310b3886e013a6b8723 LICENSE sha256 b4583b7dd07e3e2a08906de38e7e329d41f921ed9dcb6310b3886e013a6b8723 LICENSE

2
package/dehydrated/dehydrated.mk
View File

@ -4,7 +4,7 @@
# #
################################################################################ ################################################################################
DEHYDRATED_VERSION = 0.6.2 DEHYDRATED_VERSION = 0.6.5
DEHYDRATED_SITE = https://github.com/lukas2511/dehydrated/releases/download/v$(DEHYDRATED_VERSION) DEHYDRATED_SITE = https://github.com/lukas2511/dehydrated/releases/download/v$(DEHYDRATED_VERSION)
DEHYDRATED_LICENSE = MIT DEHYDRATED_LICENSE = MIT