[gentoo-commits] gentoo-x86 commit in net-firewall/shorewall/files/4.5.19: shorewall.systemd shorewall.conf-SUBSYSLOCK.patch shorewall.confd shorewallrc shorewall.initd - gentoo-commits

From:	"Constanze Hausner (constanze)" <constanze@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in net-firewall/shorewall/files/4.5.19: shorewall.systemd shorewall.conf-SUBSYSLOCK.patch shorewall.confd shorewallrc shorewall.initd
Date:	Wed, 28 Aug 2013 16:46:04
Message-Id:	`20130828164558.39F3E2004C@flycatcher.gentoo.org`

1

constanze    13/08/28 16:45:58

2

3

  Added:                shorewall.systemd shorewall.conf-SUBSYSLOCK.patch

4

                        shorewall.confd shorewallrc shorewall.initd

5

  Log:

6

  Version bump; Add new files/ structure

7

8

  (Portage version: 2.1.12.2/cvs/Linux x86_64, signed Manifest commit with key BB80F419010E3EC3)

9

10

Revision  Changes    Path

11

1.1                  net-firewall/shorewall/files/4.5.19/shorewall.systemd

12

13

file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.systemd?rev=1.1&view=markup

14

plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.systemd?rev=1.1&content-type=text/plain

15

16

Index: shorewall.systemd

17

===================================================================

18

#

19

#	The Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.5

20

#

21

[Unit]

22

Description=Shorewall IPv4 firewall

23

Documentation=man:shorewall(8) http://www.shorewall.net/Documentation_Index.html

24

After=network.target

25

26

[Service]

27

Type=oneshot

28

RemainAfterExit=yes

29

EnvironmentFile=/etc/conf.d/shorewall

30

ExecStart=/sbin/shorewall $OPTIONS start $STARTOPTIONS

31

ExecStop=/sbin/shorewall $OPTIONS stop $STOPOPTIONS

32

33

[Install]

34

WantedBy=multi-user.target

1.1                  net-firewall/shorewall/files/4.5.19/shorewall.conf-SUBSYSLOCK.patch

39

40

file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.conf-SUBSYSLOCK.patch?rev=1.1&view=markup

41

plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.conf-SUBSYSLOCK.patch?rev=1.1&content-type=text/plain

42

43

Index: shorewall.conf-SUBSYSLOCK.patch

44

===================================================================

45

--- configfiles/shorewall.conf	2013-06-24 22:07:38.000000000 +0200

46

+++ configfiles/shorewall.conf.new	2013-07-01 15:50:54.747711444 +0200

47

@@ -85,7 +85,7 @@

48

49

 SHOREWALL_SHELL=/bin/sh

50

51

-SUBSYSLOCK=/var/lock/subsys/shorewall

52

+SUBSYSLOCK=/run/lock/shorewall

53

54

TC=

55

56

--- configfiles/shorewall.conf.annotated	2013-06-27 20:32:22.000000000 +0200

57

+++ configfiles/shorewall.conf.annotated.new	2013-07-01 15:51:38.448332964 +0200

58

@@ -444,7 +444,7 @@

59

 #     or specified as a null value, /bin/sh is assumed. Using a light-weight

60

 #     shell such as ash or dash can significantly improve performance.

61

#

62

-SUBSYSLOCK=/var/lock/subsys/shorewall

63

+SUBSYSLOCK=/run/lock/shorewall

64

#

65

 # SUBSYSLOCK=[pathname]

66

#

1.1                  net-firewall/shorewall/files/4.5.19/shorewall.confd

71

72

file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.confd?rev=1.1&view=markup

73

plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.confd?rev=1.1&content-type=text/plain

74

75

Index: shorewall.confd

76

===================================================================

77

# Global start/restart/stop options

78

#

79

OPTIONS=""

80

81

# Start options

82

#

83

STARTOPTIONS=""

84

85

# Stop options

86

#

87

STOPOPTIONS=""

88

89

# Restart options

90

#

91

RESTARTOPTIONS=""

1.1                  net-firewall/shorewall/files/4.5.19/shorewallrc

96

97

file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewallrc?rev=1.1&view=markup

98

plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewallrc?rev=1.1&content-type=text/plain

99

100

Index: shorewallrc

101

===================================================================

102

#

103

# Gentoo Shorewall 4.5 rc file

104

#

105

BUILD=                                  #Default is to detect the build system

106

HOST=linux                              #Generic Linux

107

PREFIX=@GENTOO_PORTAGE_EPREFIX@/usr                             #Top-level directory for shared files, libraries, etc.

108

SHAREDIR=${PREFIX}/share                #Directory for arch-neutral files.

109

LIBEXECDIR=${PREFIX}/share              #Directory for executable scripts.

110

PERLLIBDIR=${PREFIX}/share/shorewall    #Directory to install Shorewall Perl module directory

111

CONFDIR=@GENTOO_PORTAGE_EPREFIX@/etc                            #Directory where subsystem configurations are installed

112

SBINDIR=@GENTOO_PORTAGE_EPREFIX@/sbin                           #Directory where system administration programs are installed

113

MANDIR=${PREFIX}/share/man              #Directory where manpages are installed.

114

INITDIR=${CONFDIR}/init.d               #Directory where SysV init scripts are installed.

115

INITFILE=${PRODUCT}                     #Name of the product's installed SysV init script

116

INITSOURCE=init.gentoo.sh               #Name of the distributed file to be installed as the SysV init script

117

ANNOTATED=                              #If non-zero, annotated configuration files are installed

118

SYSTEMD=@GENTOO_PORTAGE_EPREFIX@/usr/lib/systemd/system         #Directory where .service files are installed (systems running systemd only)

119

SYSCONFFILE=default.gentoo              #Name of the distributed file to be installed in $SYSCONFDIR

120

SYSCONFDIR=${CONFDIR}/conf.d            #Directory where SysV init parameter files are installed

121

SPARSE=                                 #If non-empty, only install $PRODUCT/$PRODUCT.conf in $CONFDIR

122

VARLIB=@GENTOO_PORTAGE_EPREFIX@/var/lib                         #Directory where product variable data is stored.

123

VARDIR=${VARLIB}/${PRODUCT}             #Directory where product variable data is stored.

1.1                  net-firewall/shorewall/files/4.5.19/shorewall.initd

128

129

file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.initd?rev=1.1&view=markup

130

plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.initd?rev=1.1&content-type=text/plain

131

132

Index: shorewall.initd

133

===================================================================

134

#!/sbin/runscript

135

# Copyright 1999-2013 Gentoo Foundation

136

# Distributed under the terms of the GNU General Public License v2

137

# $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.initd,v 1.1 2013/08/28 16:45:57 constanze Exp $

138

139

description='The Shoreline Firewall, more commonly known as "Shorewall", is'

140

description="${description} a high-level tool for configuring Netfilter."

141

142

extra_commands="check clear"

143

extra_started_commands="refresh reset"

144

145

description_check="Checks if the configuration will compile or not."

146

147

description_clear="Clear will remove all rules and chains installed by"

148

description_clear="${description_clear} Shorewall. The firewall is then"

149

description_clear="${description_clear} wide open and unprotected."

150

151

description_refresh="The mangle table will be refreshed along with the"

152

description_refresh="${description_refresh} blacklist chain (if any)."

153

154

description_reset="All the packet and byte counters in the firewall are reset."

155

156

depend() {

157

	need net

158

	provide firewall

159

	after ulogd

160

}

161

162

status() {

163

	local _retval

164

	/sbin/shorewall status 1>/dev/null

165

	_retval=$?

166

	if [ ${_retval} = '0' ]; then

167

		einfo 'status: started'

168

		mark_service_started "${SVCNAME}"

169

		return 0

170

	else

171

		einfo 'status: stopped'	

172

		mark_service_stopped "${SVCNAME}"

173

		return 3

174

fi

175

}

176

177

start() {

178

	ebegin "Starting shorewall"

179

	/sbin/shorewall ${OPTIONS} start ${STARTOPTIONS} 1>/dev/null

180

	eend $? 

181

}

182

183

stop() {

184

	ebegin "Stopping shorewall"

185

	/sbin/shorewall ${OPTIONS} stop ${STOPOPTIONS} 1>/dev/null

186

	eend $?

187

}

188

189

restart() {

190

	# shorewall comes with its own control script that includes a

191

	# restart function, so refrain from calling svc_stop/svc_start

192

	# here.  Note that this comment is required to fix bug 55576;

193

	# runscript.sh greps this script...  (09 Jul 2004 agriffis)

194

195

	ebegin "Restarting shorewall"

196

	/sbin/shorewall status 1>/dev/null

197

	if [ $? != 0 ] ; then

198

		svc_start

199

	else

200

		/sbin/shorewall ${OPTIONS} restart ${RESTARTOPTIONS} 1>/dev/null

201

fi

202

	eend $?

203

}

204

205

clear() {

206

	# clear will remove all the rules and bring the system to an unfirewalled

207

	# state. (21 Nov 2004 eldad)

208

209

	ebegin "Clearing all shorewall rules and setting policy to ACCEPT"

210

	/sbin/shorewall ${OPTIONS} clear 1>/dev/null

211

	eend $?

212

}

213

214

reset() {

215

	# reset the packet and byte counters in the firewall

216

217

	ebegin "Resetting the packet and byte counters in shorewall"

218

	/sbin/shorewall ${OPTIONS} reset 1>/dev/null

219

	eend $?

220

}

221

222

refresh() {

223

	# refresh the rules involving the broadcast addresses of firewall 

224

	# interfaces, the black list, traffic control rules and 

225

	# ECN control rules

226

227

	ebegin "Refreshing shorewall rules"

228

	/sbin/shorewall ${OPTIONS} refresh 1>/dev/null

229

	eend $?

230

}

231

232

check() {

233

	# perform cursory validation of the zones, interfaces, hosts, rules

234

	# and policy files. CAUTION: does not parse and validate the generated 

235

	# iptables commands.

236

237

	ebegin "Checking shorewall configuration"

238

	/sbin/shorewall ${OPTIONS} check 1>/dev/null

239

	eend $?

240

}

1	constanze 13/08/28 16:45:58
2
3	Added: shorewall.systemd shorewall.conf-SUBSYSLOCK.patch
4	shorewall.confd shorewallrc shorewall.initd
5	Log:
6	Version bump; Add new files/ structure
7
8	(Portage version: 2.1.12.2/cvs/Linux x86_64, signed Manifest commit with key BB80F419010E3EC3)
9
10	Revision Changes Path
11	1.1 net-firewall/shorewall/files/4.5.19/shorewall.systemd
12
13	file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.systemd?rev=1.1&view=markup
14	plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.systemd?rev=1.1&content-type=text/plain
15
16	Index: shorewall.systemd
17	===================================================================
18	#
19	# The Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.5
20	#
21	[Unit]
22	Description=Shorewall IPv4 firewall
23	Documentation=man:shorewall(8) http://www.shorewall.net/Documentation_Index.html
24	After=network.target
25
26	[Service]
27	Type=oneshot
28	RemainAfterExit=yes
29	EnvironmentFile=/etc/conf.d/shorewall
30	ExecStart=/sbin/shorewall $OPTIONS start $STARTOPTIONS
31	ExecStop=/sbin/shorewall $OPTIONS stop $STOPOPTIONS
32
33	[Install]
34	WantedBy=multi-user.target
35
36
37
38	1.1 net-firewall/shorewall/files/4.5.19/shorewall.conf-SUBSYSLOCK.patch
39
40	file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.conf-SUBSYSLOCK.patch?rev=1.1&view=markup
41	plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.conf-SUBSYSLOCK.patch?rev=1.1&content-type=text/plain
42
43	Index: shorewall.conf-SUBSYSLOCK.patch
44	===================================================================
45	--- configfiles/shorewall.conf 2013-06-24 22:07:38.000000000 +0200
46	+++ configfiles/shorewall.conf.new 2013-07-01 15:50:54.747711444 +0200
47	@@ -85,7 +85,7 @@
48
49	SHOREWALL_SHELL=/bin/sh
50
51	-SUBSYSLOCK=/var/lock/subsys/shorewall
52	+SUBSYSLOCK=/run/lock/shorewall
53
54	TC=
55
56	--- configfiles/shorewall.conf.annotated 2013-06-27 20:32:22.000000000 +0200
57	+++ configfiles/shorewall.conf.annotated.new 2013-07-01 15:51:38.448332964 +0200
58	@@ -444,7 +444,7 @@
59	# or specified as a null value, /bin/sh is assumed. Using a light-weight
60	# shell such as ash or dash can significantly improve performance.
61	#
62	-SUBSYSLOCK=/var/lock/subsys/shorewall
63	+SUBSYSLOCK=/run/lock/shorewall
64	#
65	# SUBSYSLOCK=[pathname]
66	#
67
68
69
70	1.1 net-firewall/shorewall/files/4.5.19/shorewall.confd
71
72	file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.confd?rev=1.1&view=markup
73	plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.confd?rev=1.1&content-type=text/plain
74
75	Index: shorewall.confd
76	===================================================================
77	# Global start/restart/stop options
78	#
79	OPTIONS=""
80
81	# Start options
82	#
83	STARTOPTIONS=""
84
85	# Stop options
86	#
87	STOPOPTIONS=""
88
89	# Restart options
90	#
91	RESTARTOPTIONS=""
92
93
94
95	1.1 net-firewall/shorewall/files/4.5.19/shorewallrc
96
97	file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewallrc?rev=1.1&view=markup
98	plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewallrc?rev=1.1&content-type=text/plain
99
100	Index: shorewallrc
101	===================================================================
102	#
103	# Gentoo Shorewall 4.5 rc file
104	#
105	BUILD= #Default is to detect the build system
106	HOST=linux #Generic Linux
107	PREFIX=@GENTOO_PORTAGE_EPREFIX@/usr #Top-level directory for shared files, libraries, etc.
108	SHAREDIR=${PREFIX}/share #Directory for arch-neutral files.
109	LIBEXECDIR=${PREFIX}/share #Directory for executable scripts.
110	PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory
111	CONFDIR=@GENTOO_PORTAGE_EPREFIX@/etc #Directory where subsystem configurations are installed
112	SBINDIR=@GENTOO_PORTAGE_EPREFIX@/sbin #Directory where system administration programs are installed
113	MANDIR=${PREFIX}/share/man #Directory where manpages are installed.
114	INITDIR=${CONFDIR}/init.d #Directory where SysV init scripts are installed.
115	INITFILE=${PRODUCT} #Name of the product's installed SysV init script
116	INITSOURCE=init.gentoo.sh #Name of the distributed file to be installed as the SysV init script
117	ANNOTATED= #If non-zero, annotated configuration files are installed
118	SYSTEMD=@GENTOO_PORTAGE_EPREFIX@/usr/lib/systemd/system #Directory where .service files are installed (systems running systemd only)
119	SYSCONFFILE=default.gentoo #Name of the distributed file to be installed in $SYSCONFDIR
120	SYSCONFDIR=${CONFDIR}/conf.d #Directory where SysV init parameter files are installed
121	SPARSE= #If non-empty, only install $PRODUCT/$PRODUCT.conf in $CONFDIR
122	VARLIB=@GENTOO_PORTAGE_EPREFIX@/var/lib #Directory where product variable data is stored.
123	VARDIR=${VARLIB}/${PRODUCT} #Directory where product variable data is stored.
124
125
126
127	1.1 net-firewall/shorewall/files/4.5.19/shorewall.initd
128
129	file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.initd?rev=1.1&view=markup
130	plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.initd?rev=1.1&content-type=text/plain
131
132	Index: shorewall.initd
133	===================================================================
134	#!/sbin/runscript
135	# Copyright 1999-2013 Gentoo Foundation
136	# Distributed under the terms of the GNU General Public License v2
137	# $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall/files/4.5.19/shorewall.initd,v 1.1 2013/08/28 16:45:57 constanze Exp $
138
139	description='The Shoreline Firewall, more commonly known as "Shorewall", is'
140	description="${description} a high-level tool for configuring Netfilter."
141
142	extra_commands="check clear"
143	extra_started_commands="refresh reset"
144
145	description_check="Checks if the configuration will compile or not."
146
147	description_clear="Clear will remove all rules and chains installed by"
148	description_clear="${description_clear} Shorewall. The firewall is then"
149	description_clear="${description_clear} wide open and unprotected."
150
151	description_refresh="The mangle table will be refreshed along with the"
152	description_refresh="${description_refresh} blacklist chain (if any)."
153
154	description_reset="All the packet and byte counters in the firewall are reset."
155
156	depend() {
157	need net
158	provide firewall
159	after ulogd
160	}
161
162	status() {
163	local _retval
164	/sbin/shorewall status 1>/dev/null
165	_retval=$?
166	if [ ${_retval} = '0' ]; then
167	einfo 'status: started'
168	mark_service_started "${SVCNAME}"
169	return 0
170	else
171	einfo 'status: stopped'
172	mark_service_stopped "${SVCNAME}"
173	return 3
174	fi
175	}
176
177	start() {
178	ebegin "Starting shorewall"
179	/sbin/shorewall ${OPTIONS} start ${STARTOPTIONS} 1>/dev/null
180	eend $?
181	}
182
183	stop() {
184	ebegin "Stopping shorewall"
185	/sbin/shorewall ${OPTIONS} stop ${STOPOPTIONS} 1>/dev/null
186	eend $?
187	}
188
189	restart() {
190	# shorewall comes with its own control script that includes a
191	# restart function, so refrain from calling svc_stop/svc_start
192	# here. Note that this comment is required to fix bug 55576;
193	# runscript.sh greps this script... (09 Jul 2004 agriffis)
194
195	ebegin "Restarting shorewall"
196	/sbin/shorewall status 1>/dev/null
197	if [ $? != 0 ] ; then
198	svc_start
199	else
200	/sbin/shorewall ${OPTIONS} restart ${RESTARTOPTIONS} 1>/dev/null
201	fi
202	eend $?
203	}
204
205	clear() {
206	# clear will remove all the rules and bring the system to an unfirewalled
207	# state. (21 Nov 2004 eldad)
208
209	ebegin "Clearing all shorewall rules and setting policy to ACCEPT"
210	/sbin/shorewall ${OPTIONS} clear 1>/dev/null
211	eend $?
212	}
213
214	reset() {
215	# reset the packet and byte counters in the firewall
216
217	ebegin "Resetting the packet and byte counters in shorewall"
218	/sbin/shorewall ${OPTIONS} reset 1>/dev/null
219	eend $?
220	}
221
222	refresh() {
223	# refresh the rules involving the broadcast addresses of firewall
224	# interfaces, the black list, traffic control rules and
225	# ECN control rules
226
227	ebegin "Refreshing shorewall rules"
228	/sbin/shorewall ${OPTIONS} refresh 1>/dev/null
229	eend $?
230	}
231
232	check() {
233	# perform cursory validation of the zones, interfaces, hosts, rules
234	# and policy files. CAUTION: does not parse and validate the generated
235	# iptables commands.
236
237	ebegin "Checking shorewall configuration"
238	/sbin/shorewall ${OPTIONS} check 1>/dev/null
239	eend $?
240	}

Gentoo Archives: gentoo-commits