Gentoo Archives: gentoo-commits

From: "Wolfram Schlich (wschlich)" <wschlich@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] gentoo-x86 commit in net-misc/strongswan: ChangeLog strongswan-4.3.4.ebuild
Date: Tue, 01 Sep 2009 04:15:41
Message-Id: E1MiPbJ-00028W-Bm@stork.gentoo.org
1 wschlich 09/09/01 09:24:29
2
3 Modified: ChangeLog
4 Added: strongswan-4.3.4.ebuild
5 Log:
6 fix bug #279270 + version bump
7 (Portage version: 2.2_rc33/cvs/Linux i686)
8
9 Revision Changes Path
10 1.76 net-misc/strongswan/ChangeLog
11
12 file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/ChangeLog?rev=1.76&view=markup
13 plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/ChangeLog?rev=1.76&content-type=text/plain
14 diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/ChangeLog?r1=1.75&r2=1.76
15
16 Index: ChangeLog
17 ===================================================================
18 RCS file: /var/cvsroot/gentoo-x86/net-misc/strongswan/ChangeLog,v
19 retrieving revision 1.75
20 retrieving revision 1.76
21 diff -u -r1.75 -r1.76
22 --- ChangeLog 29 Jul 2009 08:33:36 -0000 1.75
23 +++ ChangeLog 1 Sep 2009 09:24:29 -0000 1.76
24 @@ -1,6 +1,12 @@
25 # ChangeLog for net-misc/strongswan
26 # Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2
27 -# $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/ChangeLog,v 1.75 2009/07/29 08:33:36 wschlich Exp $
28 +# $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/ChangeLog,v 1.76 2009/09/01 09:24:29 wschlich Exp $
29 +
30 +*strongswan-4.3.4 (01 Sep 2009)
31 +
32 + 01 Sep 2009; Wolfram Schlich <wschlich@g.o>
33 + +strongswan-4.3.4.ebuild:
34 + fix bug #279270 + version bump
35
36 *strongswan-4.3.3 (29 Jul 2009)
37 *strongswan-4.2.17 (29 Jul 2009)
38
39
40
41 1.1 net-misc/strongswan/strongswan-4.3.4.ebuild
42
43 file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/strongswan-4.3.4.ebuild?rev=1.1&view=markup
44 plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/strongswan-4.3.4.ebuild?rev=1.1&content-type=text/plain
45
46 Index: strongswan-4.3.4.ebuild
47 ===================================================================
48 # Copyright 1999-2009 Gentoo Foundation
49 # Distributed under the terms of the GNU General Public License v2
50 # $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/strongswan-4.3.4.ebuild,v 1.1 2009/09/01 09:24:29 wschlich Exp $
51
52 EAPI=2
53 inherit eutils linux-info autotools
54
55 UGID="ipsec"
56
57 DESCRIPTION="Open Source implementation of IPsec for the Linux operating system."
58 HOMEPAGE="http://www.strongswan.org/"
59 SRC_URI="http://download.strongswan.org/${P}.tar.bz2"
60
61 LICENSE="GPL-2 RSA-MD2 RSA-MD5 RSA-PKCS11 DES"
62 SLOT="0"
63 KEYWORDS="~ppc ~sparc ~x86 ~amd64"
64 IUSE="caps cisco curl debug ldap nat smartcard static xml"
65
66 COMMON_DEPEND="!net-misc/openswan
67 dev-libs/gmp
68 dev-libs/libgcrypt
69 caps? ( sys-libs/libcap )
70 curl? ( net-misc/curl )
71 ldap? ( net-nds/openldap )
72 smartcard? ( dev-libs/opensc )
73 xml? ( dev-libs/libxml2 )"
74 DEPEND="${COMMON_DEPEND}
75 virtual/linux-sources
76 sys-kernel/linux-headers"
77 RDEPEND="${COMMON_DEPEND}
78 virtual/logger
79 sys-apps/iproute2"
80
81 src_prepare() {
82 epatch "${FILESDIR}"/${PN}-4.3.3-install.patch
83 eautoreconf
84 }
85
86 pkg_setup() {
87 linux-info_pkg_setup
88
89 elog "Linux kernel is version ${KV_FULL}"
90
91 if kernel_is 2 6; then
92 elog "This ebuild will set ${P} to use 2.6 native IPsec (KAME)."
93 else
94 eerror "Sorry, no support for your kernel version ${KV_FULL}."
95 die "Install an IPsec enabled 2.6 kernel."
96 fi
97
98 if use caps; then
99 # change to an unprivileged user if libcaps support is requested
100 enewgroup ${UGID}
101 enewuser ${UGID} -1 -1 -1 ${UGID}
102 fi
103 }
104
105 src_configure() {
106 local myconf=""
107
108 if use caps; then
109 # change to an unprivileged user if libcaps support is requested
110 myconf="${myconf} --with-user=${UGID} --with-group=${UGID}"
111 fi
112
113 # strongswan enables both by default; switch to the user's wish
114 if use static; then
115 myconf="${myconf} --enable-static --disable-shared"
116 else
117 myconf="${myconf} --disable-static --enable-shared"
118 fi
119
120 # TODO: Review new configure options such as networkmanager
121 econf \
122 $(use_with caps capabilities libcap) \
123 $(use_enable curl) \
124 $(use_enable ldap) \
125 $(use_enable xml smp) \
126 $(use_enable smartcard) \
127 $(use_enable cisco cisco-quirks) \
128 $(use_enable debug leak-detective) \
129 $(use_enable nat nat-transport) \
130 ${myconf} \
131 || die "econf failed"
132 }
133
134 src_install() {
135 einstall || die "einstall failed."
136
137 doinitd "${FILESDIR}"/ipsec
138
139 if use caps; then
140 fowners ipsec:ipsec /etc/ipsec.conf
141 fi
142 }
143
144 pkg_postinst() {
145 if use caps; then
146 echo
147 elog "strongSwan has been installed without superuser privileges as"
148 elog "requested (USE=caps). There are certain restrictions and"
149 elog "issues regarding non-root operation, so please have a look at:"
150 elog " http://wiki.strongswan.org/wiki/nonRoot"
151 echo
152 elog "Please be aware that with dropped privileges most leftupdown and"
153 elog "rightupdown scripts will no longer run if they require root privileges."
154 elog "You might want to use sudo to allow the user \"ipsec\" to run"
155 elog "the ipsec helper script (/usr/sbin/ipsec) as root."
156 elog "Example for /etc/sudoers:"
157 elog " Defaults:ipsec always_set_home,!env_reset"
158 elog " ipsec ALL=(ALL) NOPASSWD: /usr/sbin/ipsec"
159 elog "Example for a connection block in /etc/ipsec.conf:"
160 elog " leftupdown=\"sudo ipsec _updown\""
161 echo
162 # elog "And please do not forget to add CAP_NET_ADMIN capabilities to"
163 # elog "your charon and pluto binaries each time you emerge this ebuild."
164 # echo
165 # elog "setcap -v cap_net_admin=ep /usr/libexec/ipsec/pluto"
166 # elog "setcap -v cap_net_admin=ep /usr/libexec/ipsec/charon"
167 # echo
168 # elog "For more information reagrding POSIX capabilities support please"
169 # elog "have a look at http://www.friedhoff.org/posixfilecaps.html"
170 # echo
171 fi
172 elog "The up-to-date manual is available online at:"
173 elog " http://wiki.strongswan.org/"
174 echo
175 }