1 |
mrness 09/06/24 17:18:36 |
2 |
|
3 |
Modified: ChangeLog |
4 |
Added: openswan-2.6.22.ebuild |
5 |
Log: |
6 |
Version bump wrt security bug #275233. |
7 |
(Portage version: 2.1.6.13/cvs/Linux x86_64) |
8 |
|
9 |
Revision Changes Path |
10 |
1.64 net-misc/openswan/ChangeLog |
11 |
|
12 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?rev=1.64&view=markup |
13 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?rev=1.64&content-type=text/plain |
14 |
diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?r1=1.63&r2=1.64 |
15 |
|
16 |
Index: ChangeLog |
17 |
=================================================================== |
18 |
RCS file: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v |
19 |
retrieving revision 1.63 |
20 |
retrieving revision 1.64 |
21 |
diff -u -r1.63 -r1.64 |
22 |
--- ChangeLog 14 Jun 2009 10:25:30 -0000 1.63 |
23 |
+++ ChangeLog 24 Jun 2009 17:18:36 -0000 1.64 |
24 |
@@ -1,6 +1,12 @@ |
25 |
# ChangeLog for net-misc/openswan |
26 |
# Copyright 2002-2009 Gentoo Foundation; Distributed under the GPL v2 |
27 |
-# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.63 2009/06/14 10:25:30 mrness Exp $ |
28 |
+# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.64 2009/06/24 17:18:36 mrness Exp $ |
29 |
+ |
30 |
+*openswan-2.6.22 (24 Jun 2009) |
31 |
+ |
32 |
+ 24 Jun 2009; Alin Năstac <mrness@g.o> |
33 |
+ +files/openswan-2.6.22-gentoo.patch, +openswan-2.6.22.ebuild: |
34 |
+ Version bump wrt security bug #275233. |
35 |
|
36 |
14 Jun 2009; Alin Năstac <mrness@g.o> |
37 |
-files/openswan-2.4.13-deprecated-ldap.patch, |
38 |
|
39 |
|
40 |
|
41 |
1.1 net-misc/openswan/openswan-2.6.22.ebuild |
42 |
|
43 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild?rev=1.1&view=markup |
44 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild?rev=1.1&content-type=text/plain |
45 |
|
46 |
Index: openswan-2.6.22.ebuild |
47 |
=================================================================== |
48 |
# Copyright 1999-2009 Gentoo Foundation |
49 |
# Distributed under the terms of the GNU General Public License v2 |
50 |
# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild,v 1.1 2009/06/24 17:18:36 mrness Exp $ |
51 |
|
52 |
EAPI="2" |
53 |
|
54 |
inherit eutils linux-info |
55 |
|
56 |
DESCRIPTION="Open Source implementation of IPsec for the Linux operating system (was SuperFreeS/WAN)." |
57 |
HOMEPAGE="http://www.openswan.org/" |
58 |
SRC_URI="http://www.openswan.org/download/${P}.tar.gz" |
59 |
|
60 |
LICENSE="GPL-2" |
61 |
SLOT="0" |
62 |
KEYWORDS="~amd64 ~ppc ~sparc ~x86" |
63 |
IUSE="curl ldap smartcard extra-algorithms weak-algorithms nocrypto-algorithms" |
64 |
|
65 |
COMMON_DEPEND="!net-misc/strongswan |
66 |
dev-libs/gmp |
67 |
dev-lang/perl |
68 |
smartcard? ( dev-libs/opensc ) |
69 |
curl? ( net-misc/curl ) |
70 |
ldap? ( net-nds/openldap )" |
71 |
DEPEND="${COMMON_DEPEND} |
72 |
virtual/linux-sources |
73 |
app-text/xmlto |
74 |
app-text/docbook-xml-dtd:4.1.2" # see bug 237132 |
75 |
RDEPEND="${COMMON_DEPEND} |
76 |
virtual/logger |
77 |
sys-apps/iproute2" |
78 |
|
79 |
pkg_setup() { |
80 |
if use nocrypto-algorithms && ! use weak-algorithms; then |
81 |
ewarn "Enabling nocrypto-algorithms USE flag has no effect when" |
82 |
ewarn "weak-algorithms USE flag is disabled" |
83 |
fi |
84 |
|
85 |
linux-info_pkg_setup |
86 |
|
87 |
if kernel_is 2 6; then |
88 |
einfo "This ebuild will set ${P} to use 2.6 native IPsec (KAME)." |
89 |
einfo "KLIPS will not be compiled/installed." |
90 |
MYMAKE="programs" |
91 |
|
92 |
elif kernel_is 2 4; then |
93 |
if ! [[ -d "${KERNEL_DIR}/net/ipsec" ]]; then |
94 |
eerror "You need to have an IPsec enabled 2.4.x kernel." |
95 |
eerror "Ensure you have one running and make a symlink to it in /usr/src/linux" |
96 |
die |
97 |
fi |
98 |
|
99 |
einfo "Using patched-in IPsec code for kernel 2.4" |
100 |
einfo "Your kernel only supports KLIPS for kernel level IPsec." |
101 |
MYMAKE="confcheck programs" |
102 |
|
103 |
else |
104 |
die "Unsupported kernel version" |
105 |
fi |
106 |
} |
107 |
|
108 |
src_prepare() { |
109 |
epatch "${FILESDIR}"/${P}-gentoo.patch |
110 |
|
111 |
find . -regex '.*[.][1-8]' -exec sed -i \ |
112 |
-e s:/usr/local:/usr:g '{}' \; || |
113 |
die "failed to replace text in xml docs" |
114 |
} |
115 |
|
116 |
get_make_options() { |
117 |
echo KERNELSRC=\"${KERNEL_DIR}\" \ |
118 |
FINALEXAMPLECONFDIR=/usr/share/doc/${PF} \ |
119 |
INC_RCDEFAULT=/etc/init.d \ |
120 |
INC_USRLOCAL=/usr \ |
121 |
INC_MANDIR=share/man \ |
122 |
FINALDOCDIR=/usr/share/doc/${PF}/html \ |
123 |
DESTDIR=\"${D}\" \ |
124 |
USERCOMPILE=\"${CFLAGS}\" |
125 |
if use smartcard ; then |
126 |
echo USE_SMARTCARD=true |
127 |
fi |
128 |
if use extra-algorithms ; then |
129 |
echo USE_EXTRACRYPTO=true |
130 |
else |
131 |
echo USE_EXTRACRYPTO=false |
132 |
fi |
133 |
if use weak-algorithms ; then |
134 |
echo USE_WEAKSTUFF=true |
135 |
if use nocrypto-algorithms; then |
136 |
echo USE_NOCRYPTO=true |
137 |
fi |
138 |
fi |
139 |
echo USE_LWRES=false # needs bind9 with lwres support |
140 |
local USETHREADS=false |
141 |
if use curl; then |
142 |
echo USE_LIBCURL=true |
143 |
USETHREADS=true |
144 |
fi |
145 |
if use ldap; then |
146 |
echo USE_LDAP=true |
147 |
USETHREADS=true |
148 |
fi |
149 |
echo HAVE_THREADS=${USETHREADS} |
150 |
} |
151 |
|
152 |
src_compile() { |
153 |
eval set -- $(get_make_options) |
154 |
emake "$@" \ |
155 |
${MYMAKE} || die "emake failed" |
156 |
} |
157 |
|
158 |
src_install() { |
159 |
eval set -- $(get_make_options) |
160 |
emake "$@" \ |
161 |
install || die "emake install failed" |
162 |
|
163 |
newinitd "${FILESDIR}"/ipsec-initd ipsec || die "failed to install init script" |
164 |
|
165 |
dodir /var/run/pluto || die "failed to create /var/run/pluto" |
166 |
} |
167 |
|
168 |
pkg_preinst() { |
169 |
if has_version "<net-misc/openswan-2.6.14" && pushd "${ROOT}etc/ipsec"; then |
170 |
ewarn "Following files and directories were moved from '${ROOT}etc/ipsec' to '${ROOT}etc':" |
171 |
local i err=0 |
172 |
if [ -h "../ipsec.d" ]; then |
173 |
rm "../ipsec.d" || die "failed to remove ../ipsec.d symlink" |
174 |
fi |
175 |
for i in *; do |
176 |
if [ -e "../$i" ]; then |
177 |
eerror " $i NOT MOVED, ../$i already exists!" |
178 |
err=1 |
179 |
elif [ -d "$i" ]; then |
180 |
mv "$i" .. || die "failed to move $i directory" |
181 |
ewarn " directory $i" |
182 |
elif [ -f "$i" ]; then |
183 |
sed -i -e 's:/etc/ipsec/:/etc/:g' "$i" && \ |
184 |
mv "$i" .. && ewarn " file $i" || \ |
185 |
die "failed to move $i file" |
186 |
else |
187 |
eerror " $i NOT MOVED, it is not a file nor a directory!" |
188 |
err=1 |
189 |
fi |
190 |
done |
191 |
popd |
192 |
if [ $err -eq 0 ]; then |
193 |
rmdir "${ROOT}etc/ipsec" || eerror "Failed to remove ${ROOT}etc/ipsec" |
194 |
else |
195 |
ewarn "${ROOT}etc/ipsec is not empty, you will have to remove it yourself" |
196 |
fi |
197 |
fi |
198 |
} |
199 |
|
200 |
pkg_postinst() { |
201 |
if kernel_is 2 6; then |
202 |
CONFIG_CHECK="~NET_KEY ~INET_XFRM_MODE_TRANSPORT ~INET_XFRM_MODE_TUNNEL ~INET_AH ~INET_ESP ~INET_IPCOMP" |
203 |
WARNING_INET_AH="CONFIG_INET_AH:\tmissing IPsec AH support (needed if you want only authentication)" |
204 |
WARNING_INET_ESP="CONFIG_INET_ESP:\tmissing IPsec ESP support (needed if you want authentication and encryption)" |
205 |
WARNING_INET_IPCOMP="CONFIG_INET_IPCOMP:\tmissing IPsec Payload Compression (required for compress=yes)" |
206 |
check_extra_config |
207 |
fi |
208 |
} |