1 |
wschlich 09/09/01 09:24:29 |
2 |
|
3 |
Modified: ChangeLog |
4 |
Added: strongswan-4.3.4.ebuild |
5 |
Log: |
6 |
fix bug #279270 + version bump |
7 |
(Portage version: 2.2_rc33/cvs/Linux i686) |
8 |
|
9 |
Revision Changes Path |
10 |
1.76 net-misc/strongswan/ChangeLog |
11 |
|
12 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/ChangeLog?rev=1.76&view=markup |
13 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/ChangeLog?rev=1.76&content-type=text/plain |
14 |
diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/ChangeLog?r1=1.75&r2=1.76 |
15 |
|
16 |
Index: ChangeLog |
17 |
=================================================================== |
18 |
RCS file: /var/cvsroot/gentoo-x86/net-misc/strongswan/ChangeLog,v |
19 |
retrieving revision 1.75 |
20 |
retrieving revision 1.76 |
21 |
diff -u -r1.75 -r1.76 |
22 |
--- ChangeLog 29 Jul 2009 08:33:36 -0000 1.75 |
23 |
+++ ChangeLog 1 Sep 2009 09:24:29 -0000 1.76 |
24 |
@@ -1,6 +1,12 @@ |
25 |
# ChangeLog for net-misc/strongswan |
26 |
# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2 |
27 |
-# $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/ChangeLog,v 1.75 2009/07/29 08:33:36 wschlich Exp $ |
28 |
+# $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/ChangeLog,v 1.76 2009/09/01 09:24:29 wschlich Exp $ |
29 |
+ |
30 |
+*strongswan-4.3.4 (01 Sep 2009) |
31 |
+ |
32 |
+ 01 Sep 2009; Wolfram Schlich <wschlich@g.o> |
33 |
+ +strongswan-4.3.4.ebuild: |
34 |
+ fix bug #279270 + version bump |
35 |
|
36 |
*strongswan-4.3.3 (29 Jul 2009) |
37 |
*strongswan-4.2.17 (29 Jul 2009) |
38 |
|
39 |
|
40 |
|
41 |
1.1 net-misc/strongswan/strongswan-4.3.4.ebuild |
42 |
|
43 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/strongswan-4.3.4.ebuild?rev=1.1&view=markup |
44 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/strongswan/strongswan-4.3.4.ebuild?rev=1.1&content-type=text/plain |
45 |
|
46 |
Index: strongswan-4.3.4.ebuild |
47 |
=================================================================== |
48 |
# Copyright 1999-2009 Gentoo Foundation |
49 |
# Distributed under the terms of the GNU General Public License v2 |
50 |
# $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/strongswan-4.3.4.ebuild,v 1.1 2009/09/01 09:24:29 wschlich Exp $ |
51 |
|
52 |
EAPI=2 |
53 |
inherit eutils linux-info autotools |
54 |
|
55 |
UGID="ipsec" |
56 |
|
57 |
DESCRIPTION="Open Source implementation of IPsec for the Linux operating system." |
58 |
HOMEPAGE="http://www.strongswan.org/" |
59 |
SRC_URI="http://download.strongswan.org/${P}.tar.bz2" |
60 |
|
61 |
LICENSE="GPL-2 RSA-MD2 RSA-MD5 RSA-PKCS11 DES" |
62 |
SLOT="0" |
63 |
KEYWORDS="~ppc ~sparc ~x86 ~amd64" |
64 |
IUSE="caps cisco curl debug ldap nat smartcard static xml" |
65 |
|
66 |
COMMON_DEPEND="!net-misc/openswan |
67 |
dev-libs/gmp |
68 |
dev-libs/libgcrypt |
69 |
caps? ( sys-libs/libcap ) |
70 |
curl? ( net-misc/curl ) |
71 |
ldap? ( net-nds/openldap ) |
72 |
smartcard? ( dev-libs/opensc ) |
73 |
xml? ( dev-libs/libxml2 )" |
74 |
DEPEND="${COMMON_DEPEND} |
75 |
virtual/linux-sources |
76 |
sys-kernel/linux-headers" |
77 |
RDEPEND="${COMMON_DEPEND} |
78 |
virtual/logger |
79 |
sys-apps/iproute2" |
80 |
|
81 |
src_prepare() { |
82 |
epatch "${FILESDIR}"/${PN}-4.3.3-install.patch |
83 |
eautoreconf |
84 |
} |
85 |
|
86 |
pkg_setup() { |
87 |
linux-info_pkg_setup |
88 |
|
89 |
elog "Linux kernel is version ${KV_FULL}" |
90 |
|
91 |
if kernel_is 2 6; then |
92 |
elog "This ebuild will set ${P} to use 2.6 native IPsec (KAME)." |
93 |
else |
94 |
eerror "Sorry, no support for your kernel version ${KV_FULL}." |
95 |
die "Install an IPsec enabled 2.6 kernel." |
96 |
fi |
97 |
|
98 |
if use caps; then |
99 |
# change to an unprivileged user if libcaps support is requested |
100 |
enewgroup ${UGID} |
101 |
enewuser ${UGID} -1 -1 -1 ${UGID} |
102 |
fi |
103 |
} |
104 |
|
105 |
src_configure() { |
106 |
local myconf="" |
107 |
|
108 |
if use caps; then |
109 |
# change to an unprivileged user if libcaps support is requested |
110 |
myconf="${myconf} --with-user=${UGID} --with-group=${UGID}" |
111 |
fi |
112 |
|
113 |
# strongswan enables both by default; switch to the user's wish |
114 |
if use static; then |
115 |
myconf="${myconf} --enable-static --disable-shared" |
116 |
else |
117 |
myconf="${myconf} --disable-static --enable-shared" |
118 |
fi |
119 |
|
120 |
# TODO: Review new configure options such as networkmanager |
121 |
econf \ |
122 |
$(use_with caps capabilities libcap) \ |
123 |
$(use_enable curl) \ |
124 |
$(use_enable ldap) \ |
125 |
$(use_enable xml smp) \ |
126 |
$(use_enable smartcard) \ |
127 |
$(use_enable cisco cisco-quirks) \ |
128 |
$(use_enable debug leak-detective) \ |
129 |
$(use_enable nat nat-transport) \ |
130 |
${myconf} \ |
131 |
|| die "econf failed" |
132 |
} |
133 |
|
134 |
src_install() { |
135 |
einstall || die "einstall failed." |
136 |
|
137 |
doinitd "${FILESDIR}"/ipsec |
138 |
|
139 |
if use caps; then |
140 |
fowners ipsec:ipsec /etc/ipsec.conf |
141 |
fi |
142 |
} |
143 |
|
144 |
pkg_postinst() { |
145 |
if use caps; then |
146 |
echo |
147 |
elog "strongSwan has been installed without superuser privileges as" |
148 |
elog "requested (USE=caps). There are certain restrictions and" |
149 |
elog "issues regarding non-root operation, so please have a look at:" |
150 |
elog " http://wiki.strongswan.org/wiki/nonRoot" |
151 |
echo |
152 |
elog "Please be aware that with dropped privileges most leftupdown and" |
153 |
elog "rightupdown scripts will no longer run if they require root privileges." |
154 |
elog "You might want to use sudo to allow the user \"ipsec\" to run" |
155 |
elog "the ipsec helper script (/usr/sbin/ipsec) as root." |
156 |
elog "Example for /etc/sudoers:" |
157 |
elog " Defaults:ipsec always_set_home,!env_reset" |
158 |
elog " ipsec ALL=(ALL) NOPASSWD: /usr/sbin/ipsec" |
159 |
elog "Example for a connection block in /etc/ipsec.conf:" |
160 |
elog " leftupdown=\"sudo ipsec _updown\"" |
161 |
echo |
162 |
# elog "And please do not forget to add CAP_NET_ADMIN capabilities to" |
163 |
# elog "your charon and pluto binaries each time you emerge this ebuild." |
164 |
# echo |
165 |
# elog "setcap -v cap_net_admin=ep /usr/libexec/ipsec/pluto" |
166 |
# elog "setcap -v cap_net_admin=ep /usr/libexec/ipsec/charon" |
167 |
# echo |
168 |
# elog "For more information reagrding POSIX capabilities support please" |
169 |
# elog "have a look at http://www.friedhoff.org/posixfilecaps.html" |
170 |
# echo |
171 |
fi |
172 |
elog "The up-to-date manual is available online at:" |
173 |
elog " http://wiki.strongswan.org/" |
174 |
echo |
175 |
} |