1 |
commit: 8a121e13f9fc8b4e1ac5df754a4279a03d0b4e84 |
2 |
Author: Andrey Utkin <andrey_utkin <AT> gentoo <DOT> org> |
3 |
AuthorDate: Mon Aug 12 17:33:26 2019 +0000 |
4 |
Commit: Andrey Utkin <andrey_utkin <AT> gentoo <DOT> org> |
5 |
CommitDate: Mon Aug 12 17:34:21 2019 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8a121e13 |
7 |
|
8 |
net-wireless/hostapd: drop vulnerable old version 2.7 |
9 |
|
10 |
Bug: https://bugs.gentoo.org/688588 |
11 |
Package-Manager: Portage-2.3.66, Repoman-2.3.16 |
12 |
Signed-off-by: Andrey Utkin <andrey_utkin <AT> gentoo.org> |
13 |
|
14 |
net-wireless/hostapd/Manifest | 1 - |
15 |
net-wireless/hostapd/hostapd-2.7-r2.ebuild | 266 ----------------------------- |
16 |
2 files changed, 267 deletions(-) |
17 |
|
18 |
diff --git a/net-wireless/hostapd/Manifest b/net-wireless/hostapd/Manifest |
19 |
index 8224998b89c..db024a402e7 100644 |
20 |
--- a/net-wireless/hostapd/Manifest |
21 |
+++ b/net-wireless/hostapd/Manifest |
22 |
@@ -1,3 +1,2 @@ |
23 |
-DIST hostapd-2.7.tar.gz 2101166 BLAKE2B 4e88b7f0d2c57a02edf4214bb35efa08e87a2cbdac4eda9934a40b09f8c046da6cca1250fe5714cb403eb81739bd99e04ea5a9fad62e47bcee4d72106170905d SHA512 1c9a210dfffb951fb667be19aa44ad8c66dccd2aed26cdab939185923550e3c1998a678ebe6975e560e1b3385bff2098f1b2cb773452ba66fb35246fdd3eb2c1 |
24 |
DIST hostapd-2.8.tar.gz 2169018 BLAKE2B 29e331d8ebb52732d2548734fe9ea55d8401826da7a35962705335da7d81232c785ffa89d77e8ee848148d82bea1d9141cc4d515706eebacb267754829cf7ed6 SHA512 5a352517470912bcb87755a592238eac2d814a7089d4ba1ecb7969f172dbb746a4e9a6c0d47c0d7c4a6a86b04b14ac39147d729fdf3163371c1067490a4897aa |
25 |
DIST net-wireless_hostapd_2.7-r2_extras.tar.xz 1820 BLAKE2B 5c4daf0e4fcf5ae0803cdbe2aabcc75e89b1e92048e8a01894d73639a16b049174b37eca6b6206c337a2874a6e6d5588d50fa5b8a4813e7f6c22bf02efca852f SHA512 65bc4634c8314280ceab44d1f5d6d62092f4bca48253f107b076211020f6f6502388490aee907f9910846a25ba2da7e4122bdb1873eb2b12bf94e867e3295f4c |
26 |
|
27 |
diff --git a/net-wireless/hostapd/hostapd-2.7-r2.ebuild b/net-wireless/hostapd/hostapd-2.7-r2.ebuild |
28 |
deleted file mode 100644 |
29 |
index 7670a1e71d6..00000000000 |
30 |
--- a/net-wireless/hostapd/hostapd-2.7-r2.ebuild |
31 |
+++ /dev/null |
32 |
@@ -1,266 +0,0 @@ |
33 |
-# Copyright 1999-2019 Gentoo Authors |
34 |
-# Distributed under the terms of the GNU General Public License v2 |
35 |
- |
36 |
-EAPI="6" |
37 |
- |
38 |
-inherit toolchain-funcs eutils systemd savedconfig |
39 |
- |
40 |
-DESCRIPTION="IEEE 802.11 wireless LAN Host AP daemon" |
41 |
-HOMEPAGE="http://w1.fi" |
42 |
-EXTRAS_VER="2.7-r2" |
43 |
-EXTRAS_NAME="${CATEGORY}_${PN}_${EXTRAS_VER}_extras" |
44 |
-SRC_URI="https://dev.gentoo.org/~andrey_utkin/distfiles/${EXTRAS_NAME}.tar.xz" |
45 |
- |
46 |
-if [[ $PV == 9999 ]]; then |
47 |
- inherit git-r3 |
48 |
- EGIT_REPO_URI="https://w1.fi/hostap.git" |
49 |
-else |
50 |
- if [[ $PV =~ ^.*_p[0-9]{8}$ ]]; then |
51 |
- SRC_URI+=" https://dev.gentoo.org/~andrey_utkin/distfiles/${P}.tar.xz" |
52 |
- else |
53 |
- SRC_URI+=" https://w1.fi/releases/${P}.tar.gz" |
54 |
- fi |
55 |
- # Never stabilize snapshot ebuilds please |
56 |
- KEYWORDS="amd64 arm ~arm64 ~mips ppc x86" |
57 |
-fi |
58 |
- |
59 |
-LICENSE="BSD" |
60 |
-SLOT="0" |
61 |
-IUSE="internal-tls ipv6 libressl logwatch netlink sqlite +wps +crda" |
62 |
- |
63 |
-DEPEND=" |
64 |
- libressl? ( dev-libs/libressl:0= ) |
65 |
- !libressl? ( |
66 |
- internal-tls? ( dev-libs/libtommath ) |
67 |
- !internal-tls? ( dev-libs/openssl:0=[-bindist] ) |
68 |
- ) |
69 |
- kernel_linux? ( |
70 |
- dev-libs/libnl:3 |
71 |
- crda? ( net-wireless/crda ) |
72 |
- ) |
73 |
- netlink? ( net-libs/libnfnetlink ) |
74 |
- sqlite? ( >=dev-db/sqlite-3 )" |
75 |
- |
76 |
-RDEPEND="${DEPEND}" |
77 |
- |
78 |
-PATCHES=( |
79 |
- "${WORKDIR}/${EXTRAS_NAME}/0001-bug672834-libressl-v2.patch" |
80 |
-) |
81 |
- |
82 |
-S="${S}/${PN}" |
83 |
- |
84 |
-pkg_pretend() { |
85 |
- if use internal-tls; then |
86 |
- if use libressl; then |
87 |
- elog "libressl flag takes precedence over internal-tls" |
88 |
- else |
89 |
- ewarn "internal-tls implementation is experimental and provides fewer features" |
90 |
- fi |
91 |
- fi |
92 |
-} |
93 |
- |
94 |
-src_unpack() { |
95 |
- # Override default one because we need the SRC_URI ones even in case of 9999 ebuilds |
96 |
- default |
97 |
- if [[ ${PV} == 9999 ]] ; then |
98 |
- git-r3_src_unpack |
99 |
- fi |
100 |
-} |
101 |
- |
102 |
-src_prepare() { |
103 |
- # Allow users to apply patches to src/drivers for example, |
104 |
- # i.e. anything outside ${S}/${PN} |
105 |
- pushd ../ >/dev/null || die |
106 |
- default |
107 |
- popd >/dev/null || die |
108 |
- |
109 |
- sed -i -e "s:/etc/hostapd:/etc/hostapd/hostapd:g" \ |
110 |
- "${S}/hostapd.conf" || die |
111 |
-} |
112 |
- |
113 |
-src_configure() { |
114 |
- local CONFIG="${S}/.config" |
115 |
- |
116 |
- restore_config "${CONFIG}" |
117 |
- if [[ -f "${CONFIG}" ]]; then |
118 |
- default_src_configure |
119 |
- return 0 |
120 |
- fi |
121 |
- |
122 |
- # toolchain setup |
123 |
- echo "CC = $(tc-getCC)" > ${CONFIG} |
124 |
- |
125 |
- # EAP authentication methods |
126 |
- echo "CONFIG_EAP=y" >> ${CONFIG} |
127 |
- echo "CONFIG_ERP=y" >> ${CONFIG} |
128 |
- echo "CONFIG_EAP_MD5=y" >> ${CONFIG} |
129 |
- |
130 |
- if use internal-tls && ! use libressl; then |
131 |
- echo "CONFIG_TLS=internal" >> ${CONFIG} |
132 |
- else |
133 |
- # SSL authentication methods |
134 |
- echo "CONFIG_EAP_FAST=y" >> ${CONFIG} |
135 |
- echo "CONFIG_EAP_TLS=y" >> ${CONFIG} |
136 |
- echo "CONFIG_EAP_TTLS=y" >> ${CONFIG} |
137 |
- echo "CONFIG_EAP_MSCHAPV2=y" >> ${CONFIG} |
138 |
- echo "CONFIG_EAP_PEAP=y" >> ${CONFIG} |
139 |
- echo "CONFIG_TLSV11=y" >> ${CONFIG} |
140 |
- echo "CONFIG_TLSV12=y" >> ${CONFIG} |
141 |
- echo "CONFIG_EAP_PWD=y" >> ${CONFIG} |
142 |
- fi |
143 |
- |
144 |
- if use wps; then |
145 |
- # Enable Wi-Fi Protected Setup |
146 |
- echo "CONFIG_WPS=y" >> ${CONFIG} |
147 |
- echo "CONFIG_WPS2=y" >> ${CONFIG} |
148 |
- echo "CONFIG_WPS_UPNP=y" >> ${CONFIG} |
149 |
- echo "CONFIG_WPS_NFC=y" >> ${CONFIG} |
150 |
- einfo "Enabling Wi-Fi Protected Setup support" |
151 |
- fi |
152 |
- |
153 |
- echo "CONFIG_EAP_IKEV2=y" >> ${CONFIG} |
154 |
- echo "CONFIG_EAP_TNC=y" >> ${CONFIG} |
155 |
- echo "CONFIG_EAP_GTC=y" >> ${CONFIG} |
156 |
- echo "CONFIG_EAP_SIM=y" >> ${CONFIG} |
157 |
- echo "CONFIG_EAP_AKA=y" >> ${CONFIG} |
158 |
- echo "CONFIG_EAP_AKA_PRIME=y" >> ${CONFIG} |
159 |
- echo "CONFIG_EAP_EKE=y" >> ${CONFIG} |
160 |
- echo "CONFIG_EAP_PAX=y" >> ${CONFIG} |
161 |
- echo "CONFIG_EAP_PSK=y" >> ${CONFIG} |
162 |
- echo "CONFIG_EAP_SAKE=y" >> ${CONFIG} |
163 |
- echo "CONFIG_EAP_GPSK=y" >> ${CONFIG} |
164 |
- echo "CONFIG_EAP_GPSK_SHA256=y" >> ${CONFIG} |
165 |
- |
166 |
- einfo "Enabling drivers: " |
167 |
- |
168 |
- # drivers |
169 |
- echo "CONFIG_DRIVER_HOSTAP=y" >> ${CONFIG} |
170 |
- einfo " HostAP driver enabled" |
171 |
- echo "CONFIG_DRIVER_WIRED=y" >> ${CONFIG} |
172 |
- einfo " Wired driver enabled" |
173 |
- echo "CONFIG_DRIVER_NONE=y" >> ${CONFIG} |
174 |
- einfo " None driver enabled" |
175 |
- |
176 |
- einfo " nl80211 driver enabled" |
177 |
- echo "CONFIG_DRIVER_NL80211=y" >> ${CONFIG} |
178 |
- |
179 |
- # epoll |
180 |
- echo "CONFIG_ELOOP_EPOLL=y" >> ${CONFIG} |
181 |
- |
182 |
- # misc |
183 |
- echo "CONFIG_DEBUG_FILE=y" >> ${CONFIG} |
184 |
- echo "CONFIG_PKCS12=y" >> ${CONFIG} |
185 |
- echo "CONFIG_RADIUS_SERVER=y" >> ${CONFIG} |
186 |
- echo "CONFIG_IAPP=y" >> ${CONFIG} |
187 |
- echo "CONFIG_IEEE80211R=y" >> ${CONFIG} |
188 |
- echo "CONFIG_IEEE80211W=y" >> ${CONFIG} |
189 |
- echo "CONFIG_IEEE80211N=y" >> ${CONFIG} |
190 |
- echo "CONFIG_IEEE80211AC=y" >> ${CONFIG} |
191 |
- echo "CONFIG_PEERKEY=y" >> ${CONFIG} |
192 |
- echo "CONFIG_RSN_PREAUTH=y" >> ${CONFIG} |
193 |
- echo "CONFIG_INTERWORKING=y" >> ${CONFIG} |
194 |
- echo "CONFIG_FULL_DYNAMIC_VLAN=y" >> ${CONFIG} |
195 |
- echo "CONFIG_HS20=y" >> ${CONFIG} |
196 |
- echo "CONFIG_WNM=y" >> ${CONFIG} |
197 |
- echo "CONFIG_FST=y" >> ${CONFIG} |
198 |
- echo "CONFIG_FST_TEST=y" >> ${CONFIG} |
199 |
- echo "CONFIG_ACS=y" >> ${CONFIG} |
200 |
- |
201 |
- if use netlink; then |
202 |
- # Netlink support |
203 |
- echo "CONFIG_VLAN_NETLINK=y" >> ${CONFIG} |
204 |
- fi |
205 |
- |
206 |
- if use ipv6; then |
207 |
- # IPv6 support |
208 |
- echo "CONFIG_IPV6=y" >> ${CONFIG} |
209 |
- fi |
210 |
- |
211 |
- if use sqlite; then |
212 |
- # Sqlite support |
213 |
- echo "CONFIG_SQLITE=y" >> ${CONFIG} |
214 |
- fi |
215 |
- |
216 |
- # If we are using libnl 2.0 and above, enable support for it |
217 |
- # Removed for now, since the 3.2 version is broken, and we don't |
218 |
- # support it. |
219 |
- if has_version ">=dev-libs/libnl-3.2"; then |
220 |
- echo "CONFIG_LIBNL32=y" >> .config |
221 |
- fi |
222 |
- |
223 |
- # TODO: Add support for BSD drivers |
224 |
- |
225 |
- default_src_configure |
226 |
-} |
227 |
- |
228 |
-src_compile() { |
229 |
- emake V=1 |
230 |
- |
231 |
- if use libressl || ! use internal-tls; then |
232 |
- emake V=1 nt_password_hash |
233 |
- emake V=1 hlr_auc_gw |
234 |
- fi |
235 |
-} |
236 |
- |
237 |
-src_install() { |
238 |
- insinto /etc/${PN} |
239 |
- doins ${PN}.{conf,accept,deny,eap_user,radius_clients,sim_db,wpa_psk} |
240 |
- |
241 |
- fperms -R 600 /etc/${PN} |
242 |
- |
243 |
- dosbin ${PN} |
244 |
- dobin ${PN}_cli |
245 |
- |
246 |
- if use libressl || ! use internal-tls; then |
247 |
- dobin nt_password_hash hlr_auc_gw |
248 |
- fi |
249 |
- |
250 |
- newinitd "${WORKDIR}/${EXTRAS_NAME}"/${PN}-init.d ${PN} |
251 |
- newconfd "${WORKDIR}/${EXTRAS_NAME}"/${PN}-conf.d ${PN} |
252 |
- systemd_dounit "${WORKDIR}/${EXTRAS_NAME}"/${PN}.service |
253 |
- |
254 |
- doman ${PN}{.8,_cli.1} |
255 |
- |
256 |
- dodoc ChangeLog README |
257 |
- use wps && dodoc README-WPS |
258 |
- |
259 |
- docinto examples |
260 |
- dodoc wired.conf |
261 |
- |
262 |
- if use logwatch; then |
263 |
- insinto /etc/log.d/conf/services/ |
264 |
- doins logwatch/${PN}.conf |
265 |
- |
266 |
- exeinto /etc/log.d/scripts/services/ |
267 |
- doexe logwatch/${PN} |
268 |
- fi |
269 |
- |
270 |
- save_config .config |
271 |
-} |
272 |
- |
273 |
-pkg_postinst() { |
274 |
- einfo |
275 |
- einfo "If you are running openRC you need to follow this instructions:" |
276 |
- einfo "In order to use ${PN} you need to set up your wireless card" |
277 |
- einfo "for master mode in /etc/conf.d/net and then start" |
278 |
- einfo "/etc/init.d/${PN}." |
279 |
- einfo |
280 |
- einfo "Example configuration:" |
281 |
- einfo |
282 |
- einfo "config_wlan0=( \"192.168.1.1/24\" )" |
283 |
- einfo "channel_wlan0=\"6\"" |
284 |
- einfo "essid_wlan0=\"test\"" |
285 |
- einfo "mode_wlan0=\"master\"" |
286 |
- einfo |
287 |
- #if [ -e "${KV_DIR}"/net/mac80211 ]; then |
288 |
- # einfo "This package now compiles against the headers installed by" |
289 |
- # einfo "the kernel source for the mac80211 driver. You should " |
290 |
- # einfo "re-emerge ${PN} after upgrading your kernel source." |
291 |
- #fi |
292 |
- |
293 |
- if use wps; then |
294 |
- einfo "You have enabled Wi-Fi Protected Setup support, please" |
295 |
- einfo "read the README-WPS file in /usr/share/doc/${P}" |
296 |
- einfo "for info on how to use WPS" |
297 |
- fi |
298 |
-} |