| 1 |
mrness 09/06/24 17:18:36 |
| 2 |
|
| 3 |
Modified: ChangeLog |
| 4 |
Added: openswan-2.6.22.ebuild |
| 5 |
Log: |
| 6 |
Version bump wrt security bug #275233. |
| 7 |
(Portage version: 2.1.6.13/cvs/Linux x86_64) |
| 8 |
|
| 9 |
Revision Changes Path |
| 10 |
1.64 net-misc/openswan/ChangeLog |
| 11 |
|
| 12 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?rev=1.64&view=markup |
| 13 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?rev=1.64&content-type=text/plain |
| 14 |
diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/ChangeLog?r1=1.63&r2=1.64 |
| 15 |
|
| 16 |
Index: ChangeLog |
| 17 |
=================================================================== |
| 18 |
RCS file: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v |
| 19 |
retrieving revision 1.63 |
| 20 |
retrieving revision 1.64 |
| 21 |
diff -u -r1.63 -r1.64 |
| 22 |
--- ChangeLog 14 Jun 2009 10:25:30 -0000 1.63 |
| 23 |
+++ ChangeLog 24 Jun 2009 17:18:36 -0000 1.64 |
| 24 |
@@ -1,6 +1,12 @@ |
| 25 |
# ChangeLog for net-misc/openswan |
| 26 |
# Copyright 2002-2009 Gentoo Foundation; Distributed under the GPL v2 |
| 27 |
-# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.63 2009/06/14 10:25:30 mrness Exp $ |
| 28 |
+# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.64 2009/06/24 17:18:36 mrness Exp $ |
| 29 |
+ |
| 30 |
+*openswan-2.6.22 (24 Jun 2009) |
| 31 |
+ |
| 32 |
+ 24 Jun 2009; Alin Năstac <mrness@g.o> |
| 33 |
+ +files/openswan-2.6.22-gentoo.patch, +openswan-2.6.22.ebuild: |
| 34 |
+ Version bump wrt security bug #275233. |
| 35 |
|
| 36 |
14 Jun 2009; Alin Năstac <mrness@g.o> |
| 37 |
-files/openswan-2.4.13-deprecated-ldap.patch, |
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
1.1 net-misc/openswan/openswan-2.6.22.ebuild |
| 42 |
|
| 43 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild?rev=1.1&view=markup |
| 44 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild?rev=1.1&content-type=text/plain |
| 45 |
|
| 46 |
Index: openswan-2.6.22.ebuild |
| 47 |
=================================================================== |
| 48 |
# Copyright 1999-2009 Gentoo Foundation |
| 49 |
# Distributed under the terms of the GNU General Public License v2 |
| 50 |
# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/openswan-2.6.22.ebuild,v 1.1 2009/06/24 17:18:36 mrness Exp $ |
| 51 |
|
| 52 |
EAPI="2" |
| 53 |
|
| 54 |
inherit eutils linux-info |
| 55 |
|
| 56 |
DESCRIPTION="Open Source implementation of IPsec for the Linux operating system (was SuperFreeS/WAN)." |
| 57 |
HOMEPAGE="http://www.openswan.org/" |
| 58 |
SRC_URI="http://www.openswan.org/download/${P}.tar.gz" |
| 59 |
|
| 60 |
LICENSE="GPL-2" |
| 61 |
SLOT="0" |
| 62 |
KEYWORDS="~amd64 ~ppc ~sparc ~x86" |
| 63 |
IUSE="curl ldap smartcard extra-algorithms weak-algorithms nocrypto-algorithms" |
| 64 |
|
| 65 |
COMMON_DEPEND="!net-misc/strongswan |
| 66 |
dev-libs/gmp |
| 67 |
dev-lang/perl |
| 68 |
smartcard? ( dev-libs/opensc ) |
| 69 |
curl? ( net-misc/curl ) |
| 70 |
ldap? ( net-nds/openldap )" |
| 71 |
DEPEND="${COMMON_DEPEND} |
| 72 |
virtual/linux-sources |
| 73 |
app-text/xmlto |
| 74 |
app-text/docbook-xml-dtd:4.1.2" # see bug 237132 |
| 75 |
RDEPEND="${COMMON_DEPEND} |
| 76 |
virtual/logger |
| 77 |
sys-apps/iproute2" |
| 78 |
|
| 79 |
pkg_setup() { |
| 80 |
if use nocrypto-algorithms && ! use weak-algorithms; then |
| 81 |
ewarn "Enabling nocrypto-algorithms USE flag has no effect when" |
| 82 |
ewarn "weak-algorithms USE flag is disabled" |
| 83 |
fi |
| 84 |
|
| 85 |
linux-info_pkg_setup |
| 86 |
|
| 87 |
if kernel_is 2 6; then |
| 88 |
einfo "This ebuild will set ${P} to use 2.6 native IPsec (KAME)." |
| 89 |
einfo "KLIPS will not be compiled/installed." |
| 90 |
MYMAKE="programs" |
| 91 |
|
| 92 |
elif kernel_is 2 4; then |
| 93 |
if ! [[ -d "${KERNEL_DIR}/net/ipsec" ]]; then |
| 94 |
eerror "You need to have an IPsec enabled 2.4.x kernel." |
| 95 |
eerror "Ensure you have one running and make a symlink to it in /usr/src/linux" |
| 96 |
die |
| 97 |
fi |
| 98 |
|
| 99 |
einfo "Using patched-in IPsec code for kernel 2.4" |
| 100 |
einfo "Your kernel only supports KLIPS for kernel level IPsec." |
| 101 |
MYMAKE="confcheck programs" |
| 102 |
|
| 103 |
else |
| 104 |
die "Unsupported kernel version" |
| 105 |
fi |
| 106 |
} |
| 107 |
|
| 108 |
src_prepare() { |
| 109 |
epatch "${FILESDIR}"/${P}-gentoo.patch |
| 110 |
|
| 111 |
find . -regex '.*[.][1-8]' -exec sed -i \ |
| 112 |
-e s:/usr/local:/usr:g '{}' \; || |
| 113 |
die "failed to replace text in xml docs" |
| 114 |
} |
| 115 |
|
| 116 |
get_make_options() { |
| 117 |
echo KERNELSRC=\"${KERNEL_DIR}\" \ |
| 118 |
FINALEXAMPLECONFDIR=/usr/share/doc/${PF} \ |
| 119 |
INC_RCDEFAULT=/etc/init.d \ |
| 120 |
INC_USRLOCAL=/usr \ |
| 121 |
INC_MANDIR=share/man \ |
| 122 |
FINALDOCDIR=/usr/share/doc/${PF}/html \ |
| 123 |
DESTDIR=\"${D}\" \ |
| 124 |
USERCOMPILE=\"${CFLAGS}\" |
| 125 |
if use smartcard ; then |
| 126 |
echo USE_SMARTCARD=true |
| 127 |
fi |
| 128 |
if use extra-algorithms ; then |
| 129 |
echo USE_EXTRACRYPTO=true |
| 130 |
else |
| 131 |
echo USE_EXTRACRYPTO=false |
| 132 |
fi |
| 133 |
if use weak-algorithms ; then |
| 134 |
echo USE_WEAKSTUFF=true |
| 135 |
if use nocrypto-algorithms; then |
| 136 |
echo USE_NOCRYPTO=true |
| 137 |
fi |
| 138 |
fi |
| 139 |
echo USE_LWRES=false # needs bind9 with lwres support |
| 140 |
local USETHREADS=false |
| 141 |
if use curl; then |
| 142 |
echo USE_LIBCURL=true |
| 143 |
USETHREADS=true |
| 144 |
fi |
| 145 |
if use ldap; then |
| 146 |
echo USE_LDAP=true |
| 147 |
USETHREADS=true |
| 148 |
fi |
| 149 |
echo HAVE_THREADS=${USETHREADS} |
| 150 |
} |
| 151 |
|
| 152 |
src_compile() { |
| 153 |
eval set -- $(get_make_options) |
| 154 |
emake "$@" \ |
| 155 |
${MYMAKE} || die "emake failed" |
| 156 |
} |
| 157 |
|
| 158 |
src_install() { |
| 159 |
eval set -- $(get_make_options) |
| 160 |
emake "$@" \ |
| 161 |
install || die "emake install failed" |
| 162 |
|
| 163 |
newinitd "${FILESDIR}"/ipsec-initd ipsec || die "failed to install init script" |
| 164 |
|
| 165 |
dodir /var/run/pluto || die "failed to create /var/run/pluto" |
| 166 |
} |
| 167 |
|
| 168 |
pkg_preinst() { |
| 169 |
if has_version "<net-misc/openswan-2.6.14" && pushd "${ROOT}etc/ipsec"; then |
| 170 |
ewarn "Following files and directories were moved from '${ROOT}etc/ipsec' to '${ROOT}etc':" |
| 171 |
local i err=0 |
| 172 |
if [ -h "../ipsec.d" ]; then |
| 173 |
rm "../ipsec.d" || die "failed to remove ../ipsec.d symlink" |
| 174 |
fi |
| 175 |
for i in *; do |
| 176 |
if [ -e "../$i" ]; then |
| 177 |
eerror " $i NOT MOVED, ../$i already exists!" |
| 178 |
err=1 |
| 179 |
elif [ -d "$i" ]; then |
| 180 |
mv "$i" .. || die "failed to move $i directory" |
| 181 |
ewarn " directory $i" |
| 182 |
elif [ -f "$i" ]; then |
| 183 |
sed -i -e 's:/etc/ipsec/:/etc/:g' "$i" && \ |
| 184 |
mv "$i" .. && ewarn " file $i" || \ |
| 185 |
die "failed to move $i file" |
| 186 |
else |
| 187 |
eerror " $i NOT MOVED, it is not a file nor a directory!" |
| 188 |
err=1 |
| 189 |
fi |
| 190 |
done |
| 191 |
popd |
| 192 |
if [ $err -eq 0 ]; then |
| 193 |
rmdir "${ROOT}etc/ipsec" || eerror "Failed to remove ${ROOT}etc/ipsec" |
| 194 |
else |
| 195 |
ewarn "${ROOT}etc/ipsec is not empty, you will have to remove it yourself" |
| 196 |
fi |
| 197 |
fi |
| 198 |
} |
| 199 |
|
| 200 |
pkg_postinst() { |
| 201 |
if kernel_is 2 6; then |
| 202 |
CONFIG_CHECK="~NET_KEY ~INET_XFRM_MODE_TRANSPORT ~INET_XFRM_MODE_TUNNEL ~INET_AH ~INET_ESP ~INET_IPCOMP" |
| 203 |
WARNING_INET_AH="CONFIG_INET_AH:\tmissing IPsec AH support (needed if you want only authentication)" |
| 204 |
WARNING_INET_ESP="CONFIG_INET_ESP:\tmissing IPsec ESP support (needed if you want authentication and encryption)" |
| 205 |
WARNING_INET_IPCOMP="CONFIG_INET_IPCOMP:\tmissing IPsec Payload Compression (required for compress=yes)" |
| 206 |
check_extra_config |
| 207 |
fi |
| 208 |
} |
Archives