Gentoo Archives: gentoo-commits

From: "Alin Nastac (mrness)" <mrness@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] gentoo-x86 commit in net-misc/openswan: ChangeLog openswan-2.6.22.ebuild
Date: Wed, 24 Jun 2009 17:18:38
Message-Id: E1MJW7I-0002W9-LA@stork.gentoo.org
1 mrness 09/06/24 17:18:36
2
3 Modified: ChangeLog
4 Added: openswan-2.6.22.ebuild
5 Log:
6 Version bump wrt security bug #275233.
7 (Portage version: 2.1.6.13/cvs/Linux x86_64)
8
9 Revision Changes Path
10 1.64 net-misc/openswan/ChangeLog
11
12 file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?rev=1.64&view=markup
13 plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?rev=1.64&content-type=text/plain
14 diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?r1=1.63&r2=1.64
15
16 Index: ChangeLog
17 ===================================================================
18 RCS file: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v
19 retrieving revision 1.63
20 retrieving revision 1.64
21 diff -u -r1.63 -r1.64
22 --- ChangeLog 14 Jun 2009 10:25:30 -0000 1.63
23 +++ ChangeLog 24 Jun 2009 17:18:36 -0000 1.64
24 @@ -1,6 +1,12 @@
25 # ChangeLog for net-misc/openswan
26 # Copyright 2002-2009 Gentoo Foundation; Distributed under the GPL v2
27 -# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.63 2009/06/14 10:25:30 mrness Exp $
28 +# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.64 2009/06/24 17:18:36 mrness Exp $
29 +
30 +*openswan-2.6.22 (24 Jun 2009)
31 +
32 + 24 Jun 2009; Alin Năstac <mrness@g.o>
33 + +files/openswan-2.6.22-gentoo.patch, +openswan-2.6.22.ebuild:
34 + Version bump wrt security bug #275233.
35
36 14 Jun 2009; Alin Năstac <mrness@g.o>
37 -files/openswan-2.4.13-deprecated-ldap.patch,
38
39
40
41 1.1 net-misc/openswan/openswan-2.6.22.ebuild
42
43 file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild?rev=1.1&view=markup
44 plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild?rev=1.1&content-type=text/plain
45
46 Index: openswan-2.6.22.ebuild
47 ===================================================================
48 # Copyright 1999-2009 Gentoo Foundation
49 # Distributed under the terms of the GNU General Public License v2
50 # $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild,v 1.1 2009/06/24 17:18:36 mrness Exp $
51
52 EAPI="2"
53
54 inherit eutils linux-info
55
56 DESCRIPTION="Open Source implementation of IPsec for the Linux operating system (was SuperFreeS/WAN)."
57 HOMEPAGE="http://www.openswan.org/"
58 SRC_URI="http://www.openswan.org/download/${P}.tar.gz"
59
60 LICENSE="GPL-2"
61 SLOT="0"
62 KEYWORDS="~amd64 ~ppc ~sparc ~x86"
63 IUSE="curl ldap smartcard extra-algorithms weak-algorithms nocrypto-algorithms"
64
65 COMMON_DEPEND="!net-misc/strongswan
66 dev-libs/gmp
67 dev-lang/perl
68 smartcard? ( dev-libs/opensc )
69 curl? ( net-misc/curl )
70 ldap? ( net-nds/openldap )"
71 DEPEND="${COMMON_DEPEND}
72 virtual/linux-sources
73 app-text/xmlto
74 app-text/docbook-xml-dtd:4.1.2" # see bug 237132
75 RDEPEND="${COMMON_DEPEND}
76 virtual/logger
77 sys-apps/iproute2"
78
79 pkg_setup() {
80 if use nocrypto-algorithms && ! use weak-algorithms; then
81 ewarn "Enabling nocrypto-algorithms USE flag has no effect when"
82 ewarn "weak-algorithms USE flag is disabled"
83 fi
84
85 linux-info_pkg_setup
86
87 if kernel_is 2 6; then
88 einfo "This ebuild will set ${P} to use 2.6 native IPsec (KAME)."
89 einfo "KLIPS will not be compiled/installed."
90 MYMAKE="programs"
91
92 elif kernel_is 2 4; then
93 if ! [[ -d "${KERNEL_DIR}/net/ipsec" ]]; then
94 eerror "You need to have an IPsec enabled 2.4.x kernel."
95 eerror "Ensure you have one running and make a symlink to it in /usr/src/linux"
96 die
97 fi
98
99 einfo "Using patched-in IPsec code for kernel 2.4"
100 einfo "Your kernel only supports KLIPS for kernel level IPsec."
101 MYMAKE="confcheck programs"
102
103 else
104 die "Unsupported kernel version"
105 fi
106 }
107
108 src_prepare() {
109 epatch "${FILESDIR}"/${P}-gentoo.patch
110
111 find . -regex '.*[.][1-8]' -exec sed -i \
112 -e s:/usr/local:/usr:g '{}' \; ||
113 die "failed to replace text in xml docs"
114 }
115
116 get_make_options() {
117 echo KERNELSRC=\"${KERNEL_DIR}\" \
118 FINALEXAMPLECONFDIR=/usr/share/doc/${PF} \
119 INC_RCDEFAULT=/etc/init.d \
120 INC_USRLOCAL=/usr \
121 INC_MANDIR=share/man \
122 FINALDOCDIR=/usr/share/doc/${PF}/html \
123 DESTDIR=\"${D}\" \
124 USERCOMPILE=\"${CFLAGS}\"
125 if use smartcard ; then
126 echo USE_SMARTCARD=true
127 fi
128 if use extra-algorithms ; then
129 echo USE_EXTRACRYPTO=true
130 else
131 echo USE_EXTRACRYPTO=false
132 fi
133 if use weak-algorithms ; then
134 echo USE_WEAKSTUFF=true
135 if use nocrypto-algorithms; then
136 echo USE_NOCRYPTO=true
137 fi
138 fi
139 echo USE_LWRES=false # needs bind9 with lwres support
140 local USETHREADS=false
141 if use curl; then
142 echo USE_LIBCURL=true
143 USETHREADS=true
144 fi
145 if use ldap; then
146 echo USE_LDAP=true
147 USETHREADS=true
148 fi
149 echo HAVE_THREADS=${USETHREADS}
150 }
151
152 src_compile() {
153 eval set -- $(get_make_options)
154 emake "$@" \
155 ${MYMAKE} || die "emake failed"
156 }
157
158 src_install() {
159 eval set -- $(get_make_options)
160 emake "$@" \
161 install || die "emake install failed"
162
163 newinitd "${FILESDIR}"/ipsec-initd ipsec || die "failed to install init script"
164
165 dodir /var/run/pluto || die "failed to create /var/run/pluto"
166 }
167
168 pkg_preinst() {
169 if has_version "<net-misc/openswan-2.6.14" && pushd "${ROOT}etc/ipsec"; then
170 ewarn "Following files and directories were moved from '${ROOT}etc/ipsec' to '${ROOT}etc':"
171 local i err=0
172 if [ -h "../ipsec.d" ]; then
173 rm "../ipsec.d" || die "failed to remove ../ipsec.d symlink"
174 fi
175 for i in *; do
176 if [ -e "../$i" ]; then
177 eerror " $i NOT MOVED, ../$i already exists!"
178 err=1
179 elif [ -d "$i" ]; then
180 mv "$i" .. || die "failed to move $i directory"
181 ewarn " directory $i"
182 elif [ -f "$i" ]; then
183 sed -i -e 's:/etc/ipsec/:/etc/:g' "$i" && \
184 mv "$i" .. && ewarn " file $i" || \
185 die "failed to move $i file"
186 else
187 eerror " $i NOT MOVED, it is not a file nor a directory!"
188 err=1
189 fi
190 done
191 popd
192 if [ $err -eq 0 ]; then
193 rmdir "${ROOT}etc/ipsec" || eerror "Failed to remove ${ROOT}etc/ipsec"
194 else
195 ewarn "${ROOT}etc/ipsec is not empty, you will have to remove it yourself"
196 fi
197 fi
198 }
199
200 pkg_postinst() {
201 if kernel_is 2 6; then
202 CONFIG_CHECK="~NET_KEY ~INET_XFRM_MODE_TRANSPORT ~INET_XFRM_MODE_TUNNEL ~INET_AH ~INET_ESP ~INET_IPCOMP"
203 WARNING_INET_AH="CONFIG_INET_AH:\tmissing IPsec AH support (needed if you want only authentication)"
204 WARNING_INET_ESP="CONFIG_INET_ESP:\tmissing IPsec ESP support (needed if you want authentication and encryption)"
205 WARNING_INET_IPCOMP="CONFIG_INET_IPCOMP:\tmissing IPsec Payload Compression (required for compress=yes)"
206 check_extra_config
207 fi
208 }