diff options
| author |   Anthony G. Basile <blueness@gentoo.org> | 2012-09-27 14:11:26 +0000 |
|---|---|---|
| committer | Anthony G. Basile <blueness@gentoo.org> | 2012-09-27 14:11:26 +0000 |
| commit | 07bee2c5cf89d5387e13650873eb1361a28eeccb (patch) | |
| tree | 4c268fb33080a1b552615ab8bbbbeb06b82a136e /net-firewall/ipsec-tools | |
| parent | Require >=jdk-1.5 for javacc-5.0. #315557 (diff) | |
| download | gentoo-2-07bee2c5cf89d5387e13650873eb1361a28eeccb.tar.gz gentoo-2-07bee2c5cf89d5387e13650873eb1361a28eeccb.tar.bz2 gentoo-2-07bee2c5cf89d5387e13650873eb1361a28eeccb.zip | |
Remove older unstable version
(Portage version: 2.1.11.9/cvs/Linux x86_64)
Diffstat (limited to 'net-firewall/ipsec-tools')
| -rw-r--r-- | net-firewall/ipsec-tools/ChangeLog | 7 | ||||
| -rw-r--r-- | net-firewall/ipsec-tools/files/ipsec-tools-duplicate-header.patch | 11 | ||||
| -rw-r--r-- | net-firewall/ipsec-tools/ipsec-tools-0.7.3-r1.ebuild | 193 | ||||
| -rw-r--r-- | net-firewall/ipsec-tools/ipsec-tools-0.7.3.ebuild | 272 |
4 files changed, 6 insertions, 477 deletions
diff --git a/net-firewall/ipsec-tools/ChangeLog b/net-firewall/ipsec-tools/ChangeLog index dfa2a4d7ceaf..5ab02ef52e58 100644 --- a/net-firewall/ipsec-tools/ChangeLog +++ b/net-firewall/ipsec-tools/ChangeLog @@ -1,6 +1,11 @@ # ChangeLog for net-firewall/ipsec-tools # Copyright 1999-2012 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/ChangeLog,v 1.103 2012/09/25 01:12:33 vapier Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/ChangeLog,v 1.104 2012/09/27 14:11:26 blueness Exp $ + + 27 Sep 2012; Anthony G. Basile <blueness@gentoo.org> + -ipsec-tools-0.7.3.ebuild, -ipsec-tools-0.7.3-r1.ebuild, + -files/ipsec-tools-duplicate-header.patch: + Remove older unstable version 25 Sep 2012; Mike Frysinger <vapier@gentoo.org> +files/ipsec-tools-0.8.0-sysctl.patch, ipsec-tools-0.8.0-r4.ebuild: diff --git a/net-firewall/ipsec-tools/files/ipsec-tools-duplicate-header.patch b/net-firewall/ipsec-tools/files/ipsec-tools-duplicate-header.patch deleted file mode 100644 index 6e8480405851..000000000000 --- a/net-firewall/ipsec-tools/files/ipsec-tools-duplicate-header.patch +++ /dev/null @@ -1,11 +0,0 @@ ---- src/racoon/Makefile.am -+++ src/racoon/Makefile.am -@@ -3,7 +3,7 @@ - sbin_PROGRAMS = racoon racoonctl plainrsa-gen - noinst_PROGRAMS = eaytest - include_racoon_HEADERS = racoonctl.h var.h vmbuf.h misc.h gcmalloc.h admin.h \ -- schedule.h sockmisc.h vmbuf.h isakmp_var.h isakmp.h isakmp_xauth.h \ -+ schedule.h sockmisc.h isakmp_var.h isakmp.h isakmp_xauth.h \ - isakmp_cfg.h isakmp_unity.h ipsec_doi.h evt.h - lib_LTLIBRARIES = libracoon.la - diff --git a/net-firewall/ipsec-tools/ipsec-tools-0.7.3-r1.ebuild b/net-firewall/ipsec-tools/ipsec-tools-0.7.3-r1.ebuild deleted file mode 100644 index 833fe63d42a3..000000000000 --- a/net-firewall/ipsec-tools/ipsec-tools-0.7.3-r1.ebuild +++ /dev/null @@ -1,193 +0,0 @@ -# Copyright 1999-2012 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/ipsec-tools-0.7.3-r1.ebuild,v 1.8 2012/07/12 00:11:13 blueness Exp $ - -EAPI="4" - -inherit eutils flag-o-matic autotools linux-info - -DESCRIPTION="A port of KAME's IPsec utilities to the Linux-2.6 IPsec implementation" -HOMEPAGE="http://ipsec-tools.sourceforge.net/" -SRC_URI="mirror://sourceforge/${PN}/${P}.tar.bz2" - -LICENSE="BSD GPL-2" -SLOT="0" -KEYWORDS="~amd64 ~ppc ~sparc ~x86" -IUSE="hybrid iconv idea ipv6 kerberos ldap nat pam rc5 readline selinux" - -DEPEND_COMMON=" - selinux? ( sys-libs/libselinux ) - readline? ( sys-libs/readline ) - pam? ( sys-libs/pam ) - ldap? ( net-nds/openldap ) - kerberos? ( virtual/krb5 ) - >=dev-libs/openssl-0.9.8 - iconv? ( virtual/libiconv )" -# radius? ( net-dialup/gnuradius ) - -RDEPEND="${DEPEND_COMMON} - selinux? ( sec-policy/selinux-ipsec )" - -DEPEND="${DEPEND_COMMON} - >=sys-kernel/linux-headers-2.6.30" - -pkg_setup() { - get_version - if kernel_is -ge 2 6 19 ; then - einfo "Checking for suitable kernel configuration (Networking | Networking support | Networking options)" - - if use nat; then - CONFIG_CHECK="${CONFIG_CHECK} ~NETFILTER_XT_MATCH_POLICY" - export WARNING_NETFILTER_XT_MATCH_POLICY="NAT support may fail weirdly unless you enable this option in your kernel" - fi - - for i in XFRM_USER NET_KEY; do - CONFIG_CHECK="${CONFIG_CHECK} ~${i}" - eval "export WARNING_${i}='No tunnels will be available at all (${i})'" - done - - for i in INET_IPCOMP INET_AH INET_ESP \ - INET_XFRM_MODE_TRANSPORT \ - INET_XFRM_MODE_TUNNEL \ - INET_XFRM_MODE_BEET ; do - CONFIG_CHECK="${CONFIG_CHECK} ~${i}" - eval "export WARNING_${i}='IPv4 tunnels will not be available (${i})'" - done - - for i in INET6_IPCOMP INET6_AH INET6_ESP \ - INET6_XFRM_MODE_TRANSPORT \ - INET6_XFRM_MODE_TUNNEL \ - INET6_XFRM_MODE_BEET ; do - CONFIG_CHECK="${CONFIG_CHECK} ~${i}" - eval "export WARNING_${i}='IPv6 tunnels will not be available (${i})'" - done - - CONFIG_CHECK="${CONFIG_CHECK} ~CRYPTO_NULL" - export WARNING_CRYPTO_NULL="Unencrypted tunnels will not be available (CRYPTO_NULL)" - export CONFIG_CHECK - - check_extra_config - else - eerror "You must have a kernel >=2.6.19 to run ipsec-tools." - eerror "Building now, assuming that you will run on a different kernel" - fi -} - -src_prepare() { - # fix for bug #76741 - sed -i 's:#include <sys/sysctl.h>::' src/racoon/pfkey.c src/setkey/setkey.c || die - # fix for bug #124813 - sed -i 's:-Werror::g' "${S}"/configure.ac || die - # Fixing duplicate specification of vmbuf.h #300161 - epatch "${FILESDIR}"/${PN}-duplicate-header.patch - # fix for building with gcc-4.6 - sed -i 's: -R: -Wl,-R:' "${S}"/configure.ac || die - - AT_M4DIR="${S}" eautoreconf - epunt_cxx -} - -src_configure() { - # fix for bug #61025 - filter-flags -march=c3 - - myconf="--with-kernel-headers=/usr/include \ - --enable-dependency-tracking \ - --enable-dpd \ - --enable-frag \ - --enable-stats \ - --enable-fastquit \ - --enable-stats \ - --enable-adminport \ - $(use_enable ipv6) \ - $(use_enable rc5) \ - $(use_enable idea) \ - $(use_with readline) - $(use_enable kerberos gssapi) \ - $(use_with ldap libldap) \ - $(use_with pam libpam)" - -# we do not want broken-natt from the kernel -# myconf="${myconf} $(use_enable broken-natt)" - use nat && myconf="${myconf} --enable-natt --enable-natt-versions=yes" - - # we only need security-context when using selinux - myconf="${myconf} $(use_enable selinux security-context)" - - # enable mode-cfg and xauth support - if use pam; then - myconf="${myconf} --enable-hybrid" - else - myconf="${myconf} $(use_enable hybrid)" - fi - - # dev-libs/libiconv is hard masked - #use iconv && myconf="${myconf} $(use_with iconv libiconv)" - - # the default (/usr/include/openssl/) is OK for Gentoo, leave it - # myconf="${myconf} $(use_with ssl openssl )" - - # No way to get it compiling with freeradius or gnuradius - # We would need libradius which only exists on FreeBSD - - # See bug #77369 - #myconf="${myconf} --enable-samode-unspec" - - econf ${myconf} -} - -src_compile() { - emake -j1 -} - -src_install() { - emake DESTDIR="${D}" install - keepdir /var/lib/racoon - newconfd "${FILESDIR}"/racoon.conf.d racoon - newinitd "${FILESDIR}"/racoon.init.d racoon - - dodoc ChangeLog README NEWS - dodoc -r src/racoon/samples - dodoc src/racoon/doc/* - - docinto setkey - dodoc src/setkey/sample.cf - - dodir /etc/racoon - - # RFC are only available from CVS for the moment, see einfo below - #docinto "rfc" - #dodoc ${S}/src/racoon/rfc/* -} - -pkg_postinst() { - if use nat; then - elog - elog " You have enabled the nat traversal functionnality." - elog " Nat versions wich are enabled by default are 00,02,rfc" - elog " you can find those drafts in the CVS repository:" - elog "cvs -d anoncvs@anoncvs.netbsd.org:/cvsroot co ipsec-tools" - elog - elog "If you feel brave enough and you know what you are" - elog "doing, you can consider emerging this ebuild" - elog "with" - elog "EXTRA_ECONF=\"--enable-natt-versions=08,07,06\"" - elog - fi; - - if use ldap; then - elog - elog " You have enabled ldap support with {$PN}." - elog " The man page does NOT contain any information on it yet." - elog " Consider to use a more recent version or CVS" - elog - fi; - - elog - elog "Please have a look in /usr/share/doc/${P} and visit" - elog "http://www.netbsd.org/Documentation/network/ipsec/" - elog "to find a lot of information on how to configure this great tool." - elog -} - -# vim: set foldmethod=marker nowrap : diff --git a/net-firewall/ipsec-tools/ipsec-tools-0.7.3.ebuild b/net-firewall/ipsec-tools/ipsec-tools-0.7.3.ebuild deleted file mode 100644 index c43dcf156445..000000000000 --- a/net-firewall/ipsec-tools/ipsec-tools-0.7.3.ebuild +++ /dev/null @@ -1,272 +0,0 @@ -# Copyright 1999-2012 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/ipsec-tools-0.7.3.ebuild,v 1.6 2012/07/12 00:11:13 blueness Exp $ - -inherit eutils flag-o-matic autotools linux-info - -DESCRIPTION="A port of KAME's IPsec utilities to the Linux-2.6 IPsec implementation" -HOMEPAGE="http://ipsec-tools.sourceforge.net/" -SRC_URI="mirror://sourceforge/${PN}/${P}.tar.bz2" - -LICENSE="BSD GPL-2" -SLOT="0" -KEYWORDS="~amd64 ~ppc ~sparc ~x86" -IUSE="hybrid iconv idea ipv6 kerberos ldap nat pam rc5 readline selinux" - -# FIXME: what is the correct syntax for ~sparc ??? -DEPEND="!sparc? ( >=sys-kernel/linux-headers-2.6 ) - readline? ( sys-libs/readline ) - pam? ( sys-libs/pam ) - ldap? ( net-nds/openldap ) - kerberos? ( virtual/krb5 ) - >=dev-libs/openssl-0.9.8 - iconv? ( virtual/libiconv ) - selinux? ( sys-libs/libselinux )" -# radius? ( net-dialup/gnuradius ) - -RDEPEND="${DEPEND} - selinux? ( sec-policy/selinux-ipsec )" - -# {{{ kernel_check() -kernel_check() { - get_version - if kernel_is -ge 2 6 ; then - if test "${KV_PATCH}" -ge 19 ; then - # Just for kernel >=2.6.19 - ebegin "Checking for suitable kernel configuration (Networking | Networking support | Networking options)" - - if use nat ; then - if ! { linux_chkconfig_present NETFILTER_XT_MATCH_POLICY; } ; then - ewarn "[NETFILTER_XT_MATCH_POLICY] IPsec policy match support is NOT enabled" - eerror "${P} won't compile with use nat traversal (USE=nat) until you enable NETFILTER_XT_MATCH_POLICY in your kernel" - die - else - einfo "....[NETFILTER_XT_MATCH_POLICY] IPsec policy match support is enabled :-)" - fi - fi - # {{{ general stuff - if ! { linux_chkconfig_present XFRM_USER; }; then - ewarn "[XFRM_USER] Transformation user configuration interface is NOT enabled." - else - einfo "....[XFRM_USER] Transformation user configuration interface is enabled :-)" - fi - - if ! { linux_chkconfig_present NET_KEY; }; then - ewarn "[NET_KEY] PF_KEY sockets is NOT enabled." - else - einfo "....[NET_KEY] PF_KEY sockets is enabled :-)" - fi - # }}} - # {{{ IPv4 stuff - if ! { linux_chkconfig_present INET_IPCOMP; }; then - ewarn "[INET_IPCOMP] IP: IPComp transformation is NOT enabled" - else - einfo "....[INET_IPCOMP] IP: IPComp transformation is enabled :-)" - fi - - if ! { linux_chkconfig_present INET_AH; }; then - ewarn "[INET_AH] AH Transformation is NOT enabled." - else - einfo "....[INET_AH] AH Transformation is enabled :-)" - fi - - if ! { linux_chkconfig_present INET_ESP; }; then - ewarn "[INET_ESP] ESP Transformation is NOT enabled." - else - einfo "....[INET_ESP] ESP Transformation is enabled :-)" - fi - - if ! { linux_chkconfig_present INET_XFRM_MODE_TRANSPORT; }; then - ewarn "[INET_XFRM_MODE_TRANSPORT] IP: IPsec transport mode is NOT enabled." - else - einfo "....[INET_XFRM_MODE_TRANSPORT] IP: IPsec transport mode is enabled :-)" - fi - - if ! { linux_chkconfig_present INET_XFRM_MODE_TUNNEL; }; then - ewarn "[INET_XFRM_MODE_TUNNEL] IP: IPsec tunnel mode is NOT enabled." - else - einfo "....[INET_XFRM_MODE_TUNNEL] IP: IPsec tunnel mode is enabled :-)" - fi - - if ! { linux_chkconfig_present INET_XFRM_MODE_BEET; }; then - ewarn "[INET_XFRM_MODE_BEET] IP: IPsec BEET mode is NOT enabled." - else - einfo "....[INET_XFRM_MODE_BEET] IP: IPsec BEET mode is enabled :-)" - fi - # }}} - # {{{ IPv6 stuff - if use ipv6 ; then - if ! { linux_chkconfig_present INET6_IPCOMP; }; then - ewarn "[INET6_IPCOMP] IPv6: IPComp transformation is NOT enabled" - else - einfo "....[INET6_IPCOMP] IPv6: IPComp transformation is enabled :-)" - fi - - if ! { linux_chkconfig_present INET6_AH; }; then - ewarn "[INET6_AH] IPv6: AH Transformation is NOT enabled." - else - einfo "....[INET6_AH] IPv6: AH Transformation is enabled :-)" - fi - - if ! { linux_chkconfig_present INET6_ESP; }; then - ewarn "[INET6_ESP] IPv6: ESP Transformation is NOT enabled." - else - einfo "....[INET6_ESP] IPv6: ESP Transformation is enabled :-)" - fi - - if ! { linux_chkconfig_present INET6_XFRM_MODE_TRANSPORT; }; then - ewarn "[INET6_XFRM_MODE_TRANSPORT] IPv6: IPsec transport mode is NOT enabled." - else - einfo "....[INET6_XFRM_MODE_TRANSPORT] IPv6: IPsec transport mode is enabled :-)" - fi - - if ! { linux_chkconfig_present INET6_XFRM_MODE_TUNNEL; }; then - ewarn "[INET6_XFRM_MODE_TUNNEL] IPv6: IPsec tunnel mode is NOT enabled." - else - einfo "....[INET6_XFRM_MODE_TUNNEL] IPv6: IPsec tunnel mode is enabled :-)" - fi - - if ! { linux_chkconfig_present INET6_XFRM_MODE_BEET; }; then - ewarn "[INET6_XFRM_MODE_BEET] IPv6: IPsec BEET mode is NOT enabled." - else - einfo "....[INET6_XFRM_MODE_BEET] IPv6: IPsec BEET mode is enabled :-)" - fi - if ! { linux_chkconfig_present CRYPTO_NULL; }; then - ewarn "[CRYPTO_NULL] Crypto: NULL algorithm is NOT enabled" - else - einfo "....[CRYPTO_NULL] Cyrpto: Crypto NULL algorithm enabled :-)" - fi -fi - # }}} - - eend $? - fi - fi -} -# }}} - -src_unpack() { - unpack ${A} - cd "${S}" - # fix for bug #76741 - sed -i 's:#include <sys/sysctl.h>::' src/racoon/pfkey.c src/setkey/setkey.c - # fix for bug #124813 - sed -i 's:-Werror::g' "${S}"/configure.ac - # Fixing duplicate specification of vmbuf.h #300161 - epatch "${FILESDIR}"/${PN}-duplicate-header.patch - - AT_M4DIR="${S}" eautoreconf - epunt_cxx -} - -src_compile() { - # fix for bug #61025 - filter-flags -march=c3 - - kernel_check - - myconf="--with-kernel-headers=${KV_DIR}/include \ - --enable-dependency-tracking \ - --enable-dpd \ - --enable-frag \ - --enable-stats \ - --enable-fastquit \ - --enable-stats \ - --enable-adminport \ - $(use_enable ipv6) \ - $(use_enable rc5) \ - $(use_enable idea) \ - $(use_with readline) - $(use_enable kerberos gssapi) \ - $(use_with ldap libldap) \ - $(use_with pam libpam)" - -# we do not want broken-natt from the kernel -# myconf="${myconf} $(use_enable broken-natt)" - use nat && myconf="${myconf} --enable-natt --enable-natt-versions=yes" - - # we only need security-context when using selinux - myconf="${myconf} $(use_enable selinux security-context)" - - # enable mode-cfg and xauth support - if use pam; then - myconf="${myconf} --enable-hybrid" - else - myconf="${myconf} $(use_enable hybrid)" - fi - - # dev-libs/libiconv is hard masked - #use iconv && myconf="${myconf} $(use_with iconv libiconv)" - - # the default (/usr/include/openssl/) is OK for Gentoo, leave it - # myconf="${myconf} $(use_with ssl openssl )" - - # No way to get it compiling with freeradius or gnuradius - # We would need libradius which only exists on FreeBSD - - # See bug #77369 - #myconf="${myconf} --enable-samode-unspec" - - econf ${myconf} || die - emake -j1 || die -} - -src_install() { - emake DESTDIR="${D}" install || die - keepdir /var/lib/racoon - newconfd "${FILESDIR}"/racoon.conf.d racoon - newinitd "${FILESDIR}"/racoon.init.d racoon - - dodoc ChangeLog README NEWS - dodoc src/racoon/samples/* - dodoc src/racoon/doc/* - - docinto roadwarrior - dodoc src/racoon/samples/roadwarrior/* - - docinto roadwarrior/client - dodoc src/racoon/samples/roadwarrior/client/* - docinto roadwarrior/server - dodoc src/racoon/samples/roadwarrior/server/* - - docinto setkey - dodoc src/setkey/sample.cf - - dodir /etc/racoon - - # RFC are only available from CVS for the moment, see einfo below - #docinto "rfc" - #dodoc ${S}/src/racoon/rfc/* -} - -pkg_postinst() { - if use nat; then - elog - elog " You have enabled the nat traversal functionnality." - elog " Nat versions wich are enabled by default are 00,02,rfc" - elog " you can find those drafts in the CVS repository:" - elog "cvs -d anoncvs@anoncvs.netbsd.org:/cvsroot co ipsec-tools" - elog - elog "If you feel brave enough and you know what you are" - elog "doing, you can consider emerging this ebuild" - elog "with" - elog "EXTRA_ECONF=\"--enable-natt-versions=08,07,06\"" - elog - fi; - - if use ldap; then - elog - elog " You have enabled ldap support with {$PN}." - elog " The man page does NOT contain any information on it yet." - elog " Consider to use a more recent version or CVS" - elog - fi; - - elog - elog "Please have a look in /usr/share/doc/${P} and visit" - elog "http://www.netbsd.org/Documentation/network/ipsec/" - elog "to find a lot of information on how to configure this great tool." - elog -} - -# vim: set foldmethod=marker nowrap : |