1 |
commit: e7fbae855a57b354bc05bf6efa507474c8e8bc1a |
2 |
Author: Ilya Tumaykin <itumaykin <AT> gmail <DOT> com> |
3 |
AuthorDate: Mon Nov 23 15:08:31 2015 +0000 |
4 |
Commit: Ian Delaney <idella4 <AT> gentoo <DOT> org> |
5 |
CommitDate: Tue Nov 24 23:28:02 2015 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e7fbae85 |
7 |
|
8 |
net-firewall/fwknop: remove old |
9 |
|
10 |
net-firewall/fwknop/files/fwknopd.init | 92 ---------------------- |
11 |
net-firewall/fwknop/fwknop-2.6.7.ebuild | 135 -------------------------------- |
12 |
2 files changed, 227 deletions(-) |
13 |
|
14 |
diff --git a/net-firewall/fwknop/files/fwknopd.init b/net-firewall/fwknop/files/fwknopd.init |
15 |
deleted file mode 100644 |
16 |
index 232e1fc..0000000 |
17 |
--- a/net-firewall/fwknop/files/fwknopd.init |
18 |
+++ /dev/null |
19 |
@@ -1,92 +0,0 @@ |
20 |
-#!/sbin/runscript |
21 |
-# Copyright 1999-2015 Gentoo Foundation |
22 |
-# Distributed under the terms of the GNU General Public License v2 |
23 |
-# $Id$ |
24 |
- |
25 |
-extra_commands="checkconfig" |
26 |
-extra_started_commands="reload" |
27 |
- |
28 |
-: ${FWKNOPD_BINARY:=/usr/sbin/fwknopd} |
29 |
-: ${FWKNOPD_CONFDIR:=/etc/fwknop} |
30 |
-: ${FWKNOPD_CONFIG:=${FWKNOPD_CONFDIR}/fwknopd.conf} |
31 |
-: ${FWKNOPD_PIDFILE:=/run/fwknop/${SVCNAME}.pid} |
32 |
- |
33 |
-depend() { |
34 |
- after iptables ip6tables ebtables firewall |
35 |
- use logger |
36 |
- if [ "${rc_need+set}" = "set" ]; then |
37 |
- : # Do nothing, the user has explicitly set rc_need |
38 |
- else |
39 |
- local x warn_intf |
40 |
- for x in $(awk '/^PCAP_INTF/{ sub(";$", ""); print $2 }' "${FWKNOPD_CONFIG}" 2>/dev/null); do |
41 |
- warn_intf="${warn_intf} ${x}" |
42 |
- done |
43 |
- if [ -n "${warn_intf}" ]; then |
44 |
- need net |
45 |
- ewarn "You are binding an interface in PCAP_INTF statement in your fwknopd.conf!" |
46 |
- ewarn "You must add rc_need=\"net.FOO\" to your /etc/conf.d/${SVCNAME}," |
47 |
- ewarn "where FOO is the following interface(s):" |
48 |
- ewarn "${warn_intf}" |
49 |
- else |
50 |
- # if PCAP_INTF and PCAP_FILE are not set, then fwknopd uses eth0 |
51 |
- if ! grep -q '^PCAP_FILE' "${FWKNOPD_CONFIG}"; then |
52 |
- need net |
53 |
- ewarn "You are not binding any interface in PCAP_INTF statement in your fwknopd.conf," |
54 |
- ewarn "neither you are providing PCAP_FILE option. Thus fwknopd will listen on eth0." |
55 |
- ewarn "You must add rc_need=\"net.eth0\" to your /etc/conf.d/${SVCNAME}." |
56 |
- fi |
57 |
- fi |
58 |
- fi |
59 |
-} |
60 |
- |
61 |
-checkconfig() { |
62 |
- if [ ! -e "${FWKNOPD_CONFDIR}"/fwknopd.conf ]; then |
63 |
- eerror "You need ${FWKNOPD_CONFDIR}/fwknopd.conf file to run fwknopd" |
64 |
- eerror "Example is located at /etc/fwknop/fwknopd.conf.example" |
65 |
- return 1 |
66 |
- fi |
67 |
- |
68 |
- if [ ! -e "${FWKNOPD_CONFDIR}"/access.conf ]; then |
69 |
- eerror "You need ${FWKNOPD_CONFDIR}/access.conf file to run fwknopd" |
70 |
- eerror "Example is located at /etc/fwknop/access.conf.example" |
71 |
- return 1 |
72 |
- fi |
73 |
- |
74 |
- [ "${FWKNOPD_PIDFILE}" != "/run/fwknop/${SVCNAME}.pid" ] \ |
75 |
- && FWKNOPD_OPTS="${FWKNOPD_OPTS} --pid-file=${FWKNOPD_PIDFILE}" |
76 |
- |
77 |
- [ "${FWKNOPD_CONFDIR}" != "/etc/fwknop" ] \ |
78 |
- && FWKNOPD_OPTS="${FWKNOPD_OPTS} \ |
79 |
- --config=${FWKNOPD_CONFDIR}/fwknopd.conf \ |
80 |
- --access-file=${FWKNOPD_CONFDIR}/access.conf" |
81 |
- |
82 |
- return 0 |
83 |
-} |
84 |
- |
85 |
-start() { |
86 |
- checkconfig || return 1 |
87 |
- |
88 |
- ebegin "Starting ${SVCNAME}" |
89 |
- start-stop-daemon --start \ |
90 |
- --exec ${FWKNOPD_BINARY} --pidfile ${FWKNOPD_PIDFILE} \ |
91 |
- -- ${FWKNOPD_OPTS} |
92 |
- eend $? |
93 |
-} |
94 |
- |
95 |
-stop() { |
96 |
- if [ "${RC_CMD}" = "restart" ]; then |
97 |
- checkconfig || return 1 |
98 |
- fi |
99 |
- |
100 |
- ebegin "Stopping ${SVCNAME}" |
101 |
- start-stop-daemon --stop --pidfile ${FWKNOPD_PIDFILE} |
102 |
- eend $? |
103 |
-} |
104 |
- |
105 |
-reload() { |
106 |
- checkconfig || return 1 |
107 |
- |
108 |
- ebegin "Reloading ${SVCNAME} configuration" |
109 |
- start-stop-daemon --signal HUP --pidfile ${FWKNOPD_PIDFILE} |
110 |
- eend $? |
111 |
-} |
112 |
|
113 |
diff --git a/net-firewall/fwknop/fwknop-2.6.7.ebuild b/net-firewall/fwknop/fwknop-2.6.7.ebuild |
114 |
deleted file mode 100644 |
115 |
index bbad392..0000000 |
116 |
--- a/net-firewall/fwknop/fwknop-2.6.7.ebuild |
117 |
+++ /dev/null |
118 |
@@ -1,135 +0,0 @@ |
119 |
-# Copyright 1999-2015 Gentoo Foundation |
120 |
-# Distributed under the terms of the GNU General Public License v2 |
121 |
-# $Id$ |
122 |
- |
123 |
-EAPI=5 |
124 |
- |
125 |
-AUTOTOOLS_AUTORECONF=1 |
126 |
-DISABLE_AUTOFORMATTING=1 |
127 |
- |
128 |
-DISTUTILS_OPTIONAL=1 |
129 |
-# Python extension supports only Python2 |
130 |
-# See https://github.com/mrash/fwknop/issues/167 |
131 |
-PYTHON_COMPAT=( python2_7 ) |
132 |
- |
133 |
-inherit autotools-utils distutils-r1 linux-info readme.gentoo systemd |
134 |
- |
135 |
-DESCRIPTION="Single Packet Authorization and Port Knocking application" |
136 |
-HOMEPAGE="http://www.cipherdyne.org/fwknop/" |
137 |
-SRC_URI="https://github.com/mrash/${PN}/archive/${PV}.tar.gz -> ${P}.tar.gz" |
138 |
- |
139 |
-LICENSE="GPL-2" |
140 |
-SLOT="0" |
141 |
-KEYWORDS="~amd64 ~x86" |
142 |
-IUSE="client extras firewalld gdbm gpg iptables python server udp-server" |
143 |
- |
144 |
-RDEPEND=" |
145 |
- client? ( net-misc/wget[ssl] ) |
146 |
- gpg? ( |
147 |
- dev-libs/libassuan |
148 |
- dev-libs/libgpg-error |
149 |
- ) |
150 |
- python? ( ${PYTHON_DEPS} ) |
151 |
-" |
152 |
-DEPEND="${RDEPEND} |
153 |
- gdbm? ( sys-libs/gdbm ) |
154 |
- gpg? ( app-crypt/gpgme ) |
155 |
- firewalld? ( net-firewall/firewalld[${PYTHON_USEDEP}] ) |
156 |
- iptables? ( net-firewall/iptables ) |
157 |
- server? ( !udp-server? ( net-libs/libpcap ) ) |
158 |
-" |
159 |
- |
160 |
-REQUIRED_USE=" |
161 |
- python? ( ${PYTHON_REQUIRED_USE} ) |
162 |
- firewalld? ( server ) |
163 |
- iptables? ( server ) |
164 |
- server? ( ^^ ( firewalld iptables ) ) |
165 |
- udp-server? ( server ) |
166 |
-" |
167 |
- |
168 |
-DOCS=( ChangeLog README.md ) |
169 |
-DOC_CONTENTS=" |
170 |
-Example configuration files were installed in /etc/fwknopd directory. |
171 |
-Please edit them to fit your needs and then remove the .example suffix. |
172 |
- |
173 |
-fwknopd supports several backends: firewalld, iptables, ipfw, pf, ipf. |
174 |
-You can set the desired backend via FIREWALL_EXE option in fwknopd.conf |
175 |
-instead of the default one chosen at compile time. |
176 |
-" |
177 |
- |
178 |
-pkg_pretend() { |
179 |
- if use server; then |
180 |
- if ! linux_config_exists || ! linux_chkconfig_present NETFILTER_XT_MATCH_COMMENT; then |
181 |
- ewarn "fwknopd uses the iptables 'comment' match to expire SPA rules," |
182 |
- ewarn "which is a major security feature and is enabled by default." |
183 |
- ewarn "Please either enable NETFILTER_XT_MATCH_COMMENT support in your" |
184 |
- ewarn "kernel, or set the appropriate ENABLE_{FIREWD,IPT}_COMMENT_CHECK" |
185 |
- ewarn "to 'N' in your fwknopd.conf file." |
186 |
- fi |
187 |
- fi |
188 |
-} |
189 |
- |
190 |
-src_prepare() { |
191 |
- # Install example configs with .example suffix |
192 |
- if use server; then |
193 |
- sed -i -e 's/conf;/conf.example;/g' "${S}"/Makefile.am || die |
194 |
- fi |
195 |
- |
196 |
- autotools-utils_src_prepare |
197 |
- |
198 |
- if use python; then |
199 |
- cd "${S}"/python || die |
200 |
- distutils-r1_src_prepare |
201 |
- fi |
202 |
-} |
203 |
- |
204 |
-src_configure() { |
205 |
- local myeconfargs=( |
206 |
- --localstatedir=/run |
207 |
- --enable-digest-cache |
208 |
- $(use_enable client) |
209 |
- $(use_enable !gdbm file-cache) |
210 |
- $(use_enable server) |
211 |
- $(use_enable udp-server) |
212 |
- $(use_with gpg gpgme) |
213 |
- ) |
214 |
- use firewalld && myeconfargs+=(--with-firewalld=/usr/sbin/firewalld) |
215 |
- use iptables && myeconfargs+=(--with-iptables=/sbin/iptables) |
216 |
- |
217 |
- autotools-utils_src_configure |
218 |
-} |
219 |
- |
220 |
-src_compile() { |
221 |
- autotools-utils_src_compile |
222 |
- |
223 |
- if use python; then |
224 |
- cd "${S}"/python || die |
225 |
- distutils-r1_src_compile |
226 |
- fi |
227 |
-} |
228 |
- |
229 |
-src_install() { |
230 |
- autotools-utils_src_install |
231 |
- prune_libtool_files --modules |
232 |
- |
233 |
- if use server; then |
234 |
- newinitd "${FILESDIR}/fwknopd.init" fwknopd |
235 |
- newconfd "${FILESDIR}/fwknopd.confd" fwknopd |
236 |
- systemd_dounit extras/systemd/fwknopd.service |
237 |
- systemd_newtmpfilesd extras/systemd/fwknopd.tmpfiles.conf fwknopd.conf |
238 |
- readme.gentoo_create_doc |
239 |
- fi |
240 |
- |
241 |
- use extras && dodoc "${S}/extras/apparmor/usr.sbin.fwknopd" |
242 |
- |
243 |
- if use python; then |
244 |
- # Unset DOCS since distutils-r1.eclass interferes |
245 |
- local DOCS=() |
246 |
- cd "${S}"/python || die |
247 |
- distutils-r1_src_install |
248 |
- fi |
249 |
-} |
250 |
- |
251 |
-pkg_postinst() { |
252 |
- use server && readme.gentoo_print_elog |
253 |
-} |