CyberMind-FR
a9130715e9
Implement mesh-distributed, cryptographically-validated control center: - Add factory.sh library with Ed25519 signing via signify-openbsd - Add Merkle tree calculation for /etc/config validation - Add CGI endpoints: dashboard, tools, run, snapshot, pubkey - Add KISS Web UI (~280 lines vanilla JS, inline CSS, zero deps) - Add gossip-based 3-peer fanout for snapshot synchronization - Add offline operations queue with replay on reconnect - Add LuCI iframe integration under MirrorBox > Factory tab - Configure uhttpd alias for /factory/ on port 7331 - Bump secubox-p2p version to 0.4.0 Factory UI accessible at http://<device>:7331/factory/ Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
93 lines
2.7 KiB
Makefile
93 lines
2.7 KiB
Makefile
include $(TOPDIR)/rules.mk
|
|
|
|
PKG_NAME:=secubox-p2p
|
|
PKG_VERSION:=0.4.0
|
|
PKG_RELEASE:=1
|
|
|
|
PKG_MAINTAINER:=SecuBox Team
|
|
PKG_LICENSE:=MIT
|
|
|
|
include $(INCLUDE_DIR)/package.mk
|
|
|
|
define Package/secubox-p2p
|
|
SECTION:=secubox
|
|
CATEGORY:=SecuBox
|
|
TITLE:=SecuBox P2P Hub Backend
|
|
DEPENDS:=+jsonfilter +curl +avahi-daemon +avahi-utils +uhttpd
|
|
PKGARCH:=all
|
|
endef
|
|
|
|
define Package/secubox-p2p/description
|
|
SecuBox P2P Hub backend providing peer discovery, mesh networking,
|
|
DNS federation, and distributed service management. Includes mDNS
|
|
service announcement, REST API on port 7331 for mesh visibility,
|
|
and SecuBox Factory unified dashboard with Ed25519 signed Merkle
|
|
snapshots for cryptographic configuration validation.
|
|
endef
|
|
|
|
define Package/secubox-p2p/conffiles
|
|
/etc/config/secubox-p2p
|
|
endef
|
|
|
|
define Build/Compile
|
|
endef
|
|
|
|
define Package/secubox-p2p/install
|
|
$(INSTALL_DIR) $(1)/usr/sbin
|
|
$(INSTALL_BIN) ./root/usr/sbin/secubox-p2p $(1)/usr/sbin/
|
|
|
|
$(INSTALL_DIR) $(1)/usr/bin
|
|
$(INSTALL_BIN) ./root/usr/bin/secubox-restore $(1)/usr/bin/
|
|
|
|
$(INSTALL_DIR) $(1)/usr/libexec/rpcd
|
|
$(INSTALL_BIN) ./root/usr/libexec/rpcd/luci.secubox-p2p $(1)/usr/libexec/rpcd/
|
|
|
|
$(INSTALL_DIR) $(1)/etc/config
|
|
$(INSTALL_CONF) ./root/etc/config/secubox-p2p $(1)/etc/config/
|
|
|
|
$(INSTALL_DIR) $(1)/etc/init.d
|
|
$(INSTALL_BIN) ./root/etc/init.d/secubox-p2p $(1)/etc/init.d/
|
|
|
|
$(INSTALL_DIR) $(1)/etc/uci-defaults
|
|
$(INSTALL_BIN) ./root/etc/uci-defaults/99-secubox-p2p-api $(1)/etc/uci-defaults/
|
|
|
|
$(INSTALL_DIR) $(1)/www/api
|
|
$(INSTALL_BIN) ./root/www/api/peers $(1)/www/api/
|
|
$(INSTALL_BIN) ./root/www/api/status $(1)/www/api/
|
|
$(INSTALL_BIN) ./root/www/api/services $(1)/www/api/
|
|
$(INSTALL_BIN) ./root/www/api/sync $(1)/www/api/
|
|
|
|
# Factory API endpoints
|
|
$(INSTALL_DIR) $(1)/www/api/factory
|
|
$(INSTALL_BIN) ./root/www/api/factory/dashboard $(1)/www/api/factory/
|
|
$(INSTALL_BIN) ./root/www/api/factory/tools $(1)/www/api/factory/
|
|
$(INSTALL_BIN) ./root/www/api/factory/run $(1)/www/api/factory/
|
|
$(INSTALL_BIN) ./root/www/api/factory/snapshot $(1)/www/api/factory/
|
|
$(INSTALL_BIN) ./root/www/api/factory/pubkey $(1)/www/api/factory/
|
|
|
|
# Factory Web UI
|
|
$(INSTALL_DIR) $(1)/www/factory
|
|
$(INSTALL_DATA) ./root/www/factory/index.html $(1)/www/factory/
|
|
|
|
# Factory library
|
|
$(INSTALL_DIR) $(1)/usr/lib/secubox
|
|
$(INSTALL_BIN) ./root/usr/lib/secubox/factory.sh $(1)/usr/lib/secubox/
|
|
endef
|
|
|
|
define Package/secubox-p2p/postinst
|
|
#!/bin/sh
|
|
[ -n "$${IPKG_INSTROOT}" ] || {
|
|
# Run UCI defaults
|
|
[ -x /etc/uci-defaults/99-secubox-p2p-api ] && /etc/uci-defaults/99-secubox-p2p-api
|
|
# Reload uhttpd to pick up new instance
|
|
/etc/init.d/uhttpd reload 2>/dev/null
|
|
# Enable and start P2P service
|
|
/etc/init.d/secubox-p2p enable
|
|
/etc/init.d/secubox-p2p start
|
|
/etc/init.d/rpcd restart
|
|
}
|
|
exit 0
|
|
endef
|
|
|
|
$(eval $(call BuildPackage,secubox-p2p))
|