From aead36d5ac921339de9b1abc70d37fd0533530d3 Mon Sep 17 00:00:00 2001
From: Oliver Smith <ollieparanoid@postmarketos.org>
Date: Thu, 21 Oct 2021 09:41:13 +0200
Subject: [PATCH] pmbootstrap kconfig check: add iwd check (MR 2133)

iwd seems like a promising alternative to wpa_supplicant. It uses crypto
implementations from the kernel, so let's make kconfig check aware of
the options it needs.
---
 pmb/config/__init__.py  | 28 ++++++++++++++++++++++++++++
 pmb/helpers/frontend.py |  1 +
 pmb/parse/arguments.py  |  2 ++
 pmb/parse/kconfig.py    |  7 +++++++
 4 files changed, 38 insertions(+)

diff --git a/pmb/config/__init__.py b/pmb/config/__init__.py
index f24af285..6b0b6a1c 100644
--- a/pmb/config/__init__.py
+++ b/pmb/config/__init__.py
@@ -352,6 +352,34 @@ necessary_kconfig_options_apparmor = {
     },
 }
 
+# Necessary iwd kernel config options (inet wireless daemon)
+# Obtained from 'grep ADD_MISSING src/main.c' in iwd.git
+necessary_kconfig_options_iwd = {
+    ">=0.0.0": {  # all versions
+        "all": {  # all arches
+            "ASYMMETRIC_KEY_TYPE": True,
+            "ASYMMETRIC_PUBLIC_KEY_SUBTYPE": True,
+            "CRYPTO_AES": True,
+            "CRYPTO_CBC": True,
+            "CRYPTO_CMAC": True,
+            "CRYPTO_DES": True,
+            "CRYPTO_ECB": True,
+            "CRYPTO_HMAC": True,
+            "CRYPTO_MD5": True,
+            "CRYPTO_SHA1": True,
+            "CRYPTO_SHA256": True,
+            "CRYPTO_SHA512": True,
+            "CRYPTO_USER_API_HASH": True,
+            "CRYPTO_USER_API_SKCIPHER": True,
+            "KEYS": True,
+            "KEY_DH_OPERATIONS": True,
+            "PKCS7_MESSAGE_PARSER": True,
+            "PKCS8_PRIVATE_KEY_PARSER": True,
+            "X509_CERTIFICATE_PARSER": True,
+        },
+    },
+}
+
 # Necessary nftables kernel config options (firewall)
 necessary_kconfig_options_nftables = {
     ">=3.13.0": {  # nftables support introduced here
diff --git a/pmb/helpers/frontend.py b/pmb/helpers/frontend.py
index 57e4e659..3b933954 100644
--- a/pmb/helpers/frontend.py
+++ b/pmb/helpers/frontend.py
@@ -404,6 +404,7 @@ def kconfig(args):
                     args, package,
                     force_anbox_check=args.anbox,
                     force_apparmor_check=args.apparmor,
+                    force_iwd_check=args.iwd,
                     force_nftables_check=args.nftables,
                     force_containers_check=args.containers,
                     force_zram_check=args.zram,
diff --git a/pmb/parse/arguments.py b/pmb/parse/arguments.py
index d66194b2..792312f9 100644
--- a/pmb/parse/arguments.py
+++ b/pmb/parse/arguments.py
@@ -436,6 +436,8 @@ def arguments_kconfig(subparser):
                        " options needed for anbox too")
     check.add_argument("--apparmor", action="store_true", help="check"
                        " options needed for apparmor too")
+    check.add_argument("--iwd", action="store_true", help="check"
+                       " options needed for iwd too")
     check.add_argument("--nftables", action="store_true", help="check"
                        " options needed for nftables too")
     check.add_argument("--containers", action="store_true",
diff --git a/pmb/parse/kconfig.py b/pmb/parse/kconfig.py
index 347e8fce..1a6dba6e 100644
--- a/pmb/parse/kconfig.py
+++ b/pmb/parse/kconfig.py
@@ -87,6 +87,7 @@ def check_option(component, details, config, config_path_pretty, option,
 def check_config(config_path, config_path_pretty, config_arch, pkgver,
                  anbox=False,
                  apparmor=False,
+                 iwd=False,
                  nftables=False,
                  containers=False,
                  zram=False,
@@ -100,6 +101,8 @@ def check_config(config_path, config_path_pretty, config_arch, pkgver,
         components["anbox"] = pmb.config.necessary_kconfig_options_anbox
     if apparmor:
         components["apparmor"] = pmb.config.necessary_kconfig_options_apparmor
+    if iwd:
+        components["iwd"] = pmb.config.necessary_kconfig_options_iwd
     if nftables:
         components["nftables"] = pmb.config.necessary_kconfig_options_nftables
     if containers:
@@ -152,6 +155,7 @@ def check_config_options_set(config, config_path_pretty, config_arch, options,
 def check(args, pkgname,
           force_anbox_check=False,
           force_apparmor_check=False,
+          force_iwd_check=False,
           force_nftables_check=False,
           force_containers_check=False,
           force_zram_check=False,
@@ -178,6 +182,8 @@ def check(args, pkgname,
         "pmb:kconfigcheck-anbox" in apkbuild["options"])
     check_apparmor = force_apparmor_check or (
         "pmb:kconfigcheck-apparmor" in apkbuild["options"])
+    check_iwd = force_iwd_check or (
+        "pmb:kconfigcheck-iwd" in apkbuild["options"])
     check_nftables = force_nftables_check or (
         "pmb:kconfigcheck-nftables" in apkbuild["options"])
     check_containers = force_containers_check or (
@@ -193,6 +199,7 @@ def check(args, pkgname,
                             pkgver,
                             anbox=check_anbox,
                             apparmor=check_apparmor,
+                            iwd=check_iwd,
                             nftables=check_nftables,
                             containers=check_containers,
                             zram=check_zram,