Version bump.

(Portage version: 2.1.4.4)

4 files changed, 280 insertions, 1 deletions

diff --git a/net-misc/openswan/ChangeLog b/net-misc/openswan/ChangeLog
index 6b1680835691..af236059da6a 100644
--- a/net-misc/openswan/ChangeLog
+++ b/net-misc/openswan/ChangeLog
@@ -1,6 +1,13 @@
 # ChangeLog for net-misc/openswan
 # Copyright 2002-2008 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.44 2008/01/29 12:44:35 mrness Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/ChangeLog,v 1.45 2008/06/08 14:06:55 mrness Exp $
+
+*openswan-2.4.12 (08 Jun 2008)
+
+  08 Jun 2008; Alin Năstac <mrness@gentoo.org>
+  +files/openswan-2.4.12-deprecated-ldap.patch,
+  +files/openswan-2.4.12-gentoo.patch, +openswan-2.4.12.ebuild:
+  Version bump.
 
 *openswan-2.4.11 (29 Jan 2008)
 
diff --git a/net-misc/openswan/files/openswan-2.4.12-deprecated-ldap.patch b/net-misc/openswan/files/openswan-2.4.12-deprecated-ldap.patch
new file mode 100644
index 000000000000..1b800b899324
--- /dev/null
+++ b/net-misc/openswan/files/openswan-2.4.12-deprecated-ldap.patch
@@ -0,0 +1,11 @@
+diff -Nru openswan-2.4.12.orig/programs/pluto/fetch.c openswan-2.4.12/programs/pluto/fetch.c
+--- openswan-2.4.12.orig/programs/pluto/fetch.c	2004-06-14 05:01:32.000000000 +0300
++++ openswan-2.4.12/programs/pluto/fetch.c	2008-06-08 16:07:07.000000000 +0300
+@@ -28,6 +28,7 @@
+ #include <openswan.h>
+ 
+ #ifdef LDAP_VER
++#define LDAP_DEPRECATED 1
+ #include <ldap.h>
+ #endif
+ 
diff --git a/net-misc/openswan/files/openswan-2.4.12-gentoo.patch b/net-misc/openswan/files/openswan-2.4.12-gentoo.patch
new file mode 100644
index 000000000000..28b451660698
--- /dev/null
+++ b/net-misc/openswan/files/openswan-2.4.12-gentoo.patch
@@ -0,0 +1,135 @@
+diff -Nru openswan-2.4.12.orig/Makefile.inc openswan-2.4.12/Makefile.inc
+--- openswan-2.4.12.orig/Makefile.inc	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/Makefile.inc	2008-06-08 16:30:13.000000000 +0300
+@@ -46,7 +46,7 @@
+ DESTDIR?=
+ 
+ # "local" part of tree, used in building other pathnames
+-INC_USRLOCAL=/usr/local
++INC_USRLOCAL?=/usr
+ 
+ # PUBDIR is where the "ipsec" command goes; beware, many things define PATH
+ # settings which are assumed to include it (or at least, to include *some*
+@@ -91,7 +91,7 @@
+ 
+ # sample configuration files go into
+ INC_DOCDIR?=share/doc
+-FINALEXAMPLECONFDIR=${INC_USRLOCAL}/${INC_DOCDIR}/openswan
++FINALEXAMPLECONFDIR?=${INC_USRLOCAL}/${INC_DOCDIR}/openswan
+ EXAMPLECONFDIR=${DESTDIR}${FINALEXAMPLECONFDIR}
+ 
+ FINALDOCDIR?=${INC_USRLOCAL}/${INC_DOCDIR}/openswan
+diff -Nru openswan-2.4.12.orig/programs/_confread/_confread.in openswan-2.4.12/programs/_confread/_confread.in
+--- openswan-2.4.12.orig/programs/_confread/_confread.in	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/programs/_confread/_confread.in	2008-06-08 16:30:13.000000000 +0300
+@@ -14,7 +14,7 @@
+ #
+ # RCSID $Id: openswan-2.4.12-gentoo.patch,v 1.1 2008/06/08 14:06:56 mrness Exp $
+ #
+-# Extract configuration info from /etc/ipsec.conf, repackage as assignments
++# Extract configuration info from /etc/ipsec/ipsec.conf, repackage as assignments
+ # to shell variables or tab-delimited fields.  Success or failure is reported
+ # inline, as extra data, due to the vagaries of shell backquote handling.
+ # In the absence of --varprefix, output is tab-separated fields, like:
+diff -Nru openswan-2.4.12.orig/programs/_confread/ipsec.conf.in openswan-2.4.12/programs/_confread/ipsec.conf.in
+--- openswan-2.4.12.orig/programs/_confread/ipsec.conf.in	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/programs/_confread/ipsec.conf.in	2008-06-08 16:30:13.000000000 +0300
+@@ -1,4 +1,4 @@
+-# /etc/ipsec.conf - Openswan IPsec configuration file
++# /etc/ipsec/ipsec.conf - Openswan IPsec configuration file
+ # RCSID $Id: openswan-2.4.12-gentoo.patch,v 1.1 2008/06/08 14:06:56 mrness Exp $
+ 
+ # This file:  @FINALEXAMPLECONFDIR@/ipsec.conf-sample
+diff -Nru openswan-2.4.12.orig/programs/examples/l2tp-psk.conf.in openswan-2.4.12/programs/examples/l2tp-psk.conf.in
+--- openswan-2.4.12.orig/programs/examples/l2tp-psk.conf.in	2007-11-02 03:49:40.000000000 +0200
++++ openswan-2.4.12/programs/examples/l2tp-psk.conf.in	2008-06-08 16:37:41.000000000 +0300
+@@ -11,7 +11,7 @@
+ 	#
+ 	# Use a Preshared Key. Disable Perfect Forward Secrecy.
+ 	#
+-	# PreSharedSecret needs to be specified in /etc/ipsec.secrets as
++	# PreSharedSecret needs to be specified in /etc/ipsec/ipsec.secrets as
+ 	# YourIPAddress  %any: "sharedsecret"
+ 	authby=secret
+ 	pfs=no
+diff -Nru openswan-2.4.12.orig/programs/_include/_include.in openswan-2.4.12/programs/_include/_include.in
+--- openswan-2.4.12.orig/programs/_include/_include.in	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/programs/_include/_include.in	2008-06-08 16:30:13.000000000 +0300
+@@ -47,10 +47,10 @@
+ do
+ 	if test ! -r "$f"
+ 	then
+-		if test ! "$f" = "/etc/ipsec.conf"
++		if test ! "$f" = "/etc/ipsec/ipsec.conf"
+ 		then
+ 			echo "#:cannot open configuration file \'$f\'"
+-			if test "$f" = "/etc/ipsec.secrets"
++			if test "$f" = "/etc/ipsec/ipsec.secrets"
+ 			then
+ 				echo "#:Your secrets file will be created when you start FreeS/WAN for the first time."
+ 			fi
+diff -Nru openswan-2.4.12.orig/programs/mailkey/mailkey.in openswan-2.4.12/programs/mailkey/mailkey.in
+--- openswan-2.4.12.orig/programs/mailkey/mailkey.in	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/programs/mailkey/mailkey.in	2008-06-08 16:30:13.000000000 +0300
+@@ -60,7 +60,7 @@
+ 
+ "$test1st"
+ 
+-Common concerns: This account must be able to read /etc/ipsec.secrets. 
++Common concerns: This account must be able to read /etc/ipsec/ipsec.secrets. 
+ If you haven't generated your key yet, please run 'ipsec newhostkey'." 
+ exit 0
+ }
+diff -Nru openswan-2.4.12.orig/programs/pluto/Makefile openswan-2.4.12/programs/pluto/Makefile
+--- openswan-2.4.12.orig/programs/pluto/Makefile	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/programs/pluto/Makefile	2008-06-08 16:30:13.000000000 +0300
+@@ -210,7 +210,7 @@
+ endif
+ 
+ ifeq ($(USE_WEAKSTUFF),true)
+-WEAK_DEFS=-DUSE_VERYWEAK_DH1=1 #-DUSE_1DES
++WEAK_DEFS=-DUSE_VERYWEAK_DH1=1 -DUSE_1DES
+ endif
+ 
+ ifeq ($(USE_EXTRACRYPTO),true)
+diff -Nru openswan-2.4.12.orig/programs/setup/Makefile openswan-2.4.12/programs/setup/Makefile
+--- openswan-2.4.12.orig/programs/setup/Makefile	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/programs/setup/Makefile	2008-06-08 16:30:13.000000000 +0300
+@@ -33,25 +33,10 @@
+ 	@rm -f $(BINDIR)/setup
+ 	@$(INSTALL) $(INSTBINFLAGS) setup $(RCDIR)/ipsec
+ 	@ln -s $(FINALRCDIR)/ipsec $(BINDIR)/setup
+-	-@for i in 0 1 2 3 4 5 6; do mkdir -p $(RCDIR)/../rc$$i.d; done
+-	-@cd $(RCDIR)/../rc0.d && ln -f -s ../init.d/ipsec K76ipsec
+-	-@cd $(RCDIR)/../rc1.d && ln -f -s ../init.d/ipsec K76ipsec
+-	-@cd $(RCDIR)/../rc2.d && ln -f -s ../init.d/ipsec S47ipsec
+-	-@cd $(RCDIR)/../rc3.d && ln -f -s ../init.d/ipsec S47ipsec
+-	-@cd $(RCDIR)/../rc4.d && ln -f -s ../init.d/ipsec S47ipsec
+-	-@cd $(RCDIR)/../rc5.d && ln -f -s ../init.d/ipsec S47ipsec
+-	-@cd $(RCDIR)/../rc6.d && ln -f -s ../init.d/ipsec K76ipsec
+ 
+ install_file_list::
+ 	@echo $(RCDIR)/ipsec
+ 	@echo $(BINDIR)/setup
+-	@echo $(RCDIR)/../rc0.d/K76ipsec
+-	@echo $(RCDIR)/../rc1.d/K76ipsec
+-	@echo $(RCDIR)/../rc2.d/S47ipsec
+-	@echo $(RCDIR)/../rc3.d/S47ipsec
+-	@echo $(RCDIR)/../rc4.d/S47ipsec
+-	@echo $(RCDIR)/../rc5.d/S47ipsec
+-	@echo $(RCDIR)/../rc6.d/K76ipsec
+ 
+ clean::
+ 	@rm -f setup
+diff -Nru openswan-2.4.12.orig/programs/showhostkey/showhostkey.in openswan-2.4.12/programs/showhostkey/showhostkey.in
+--- openswan-2.4.12.orig/programs/showhostkey/showhostkey.in	2008-06-08 16:37:30.000000000 +0300
++++ openswan-2.4.12/programs/showhostkey/showhostkey.in	2008-06-08 16:30:13.000000000 +0300
+@@ -18,7 +18,7 @@
+ usage="Usage: $me [--file secrets] [--left] [--right] [--txt gateway] [--id id]
+                   [--dhclient] [--ipseckey]"
+ 
+-file=/etc/ipsec.secrets
++file=/etc/ipsec/ipsec.secrets
+ fmt=""
+ gw=
+ id=
diff --git a/net-misc/openswan/openswan-2.4.12.ebuild b/net-misc/openswan/openswan-2.4.12.ebuild
new file mode 100644
index 000000000000..055f2a9db288
--- /dev/null
+++ b/net-misc/openswan/openswan-2.4.12.ebuild
@@ -0,0 +1,126 @@
+# Copyright 1999-2008 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/net-misc/openswan/openswan-2.4.12.ebuild,v 1.1 2008/06/08 14:06:55 mrness Exp $
+
+inherit eutils linux-info
+
+DESCRIPTION="Open Source implementation of IPsec for the Linux operating system (was SuperFreeS/WAN)."
+HOMEPAGE="http://www.openswan.org/"
+SRC_URI="http://www.openswan.org/download/${P}.tar.gz"
+
+LICENSE="GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~ppc ~sparc ~x86"
+IUSE="curl ldap smartcard extra-algorithms weak-algorithms"
+
+COMMON_DEPEND="!net-misc/strongswan
+	>=dev-libs/gmp-4.2.1
+	dev-lang/perl
+	smartcard? ( dev-libs/opensc )
+	curl? ( net-misc/curl )
+	ldap? ( net-nds/openldap )"
+DEPEND="${COMMON_DEPEND}
+	virtual/linux-sources"
+RDEPEND="${COMMON_DEPEND}
+	virtual/logger
+	sys-apps/iproute2"
+
+pkg_setup() {
+	linux-info_pkg_setup
+
+	if kernel_is 2 6; then
+		einfo "This ebuild will set ${P} to use 2.6 native IPsec (KAME)."
+		einfo "KLIPS will not be compiled/installed."
+		MYMAKE="programs"
+
+	elif kernel_is 2 4; then
+		if ! [[ -d "${KERNEL_DIR}/net/ipsec" ]]; then
+			eerror "You need to have an IPsec enabled 2.4.x kernel."
+			eerror "Ensure you have one running and make a symlink to it in /usr/src/linux"
+			die
+		fi
+
+		einfo "Using patched-in IPsec code for kernel 2.4"
+		einfo "Your kernel only supports KLIPS for kernel level IPsec."
+		MYMAKE="confcheck programs"
+
+	else
+		die "Unsupported kernel version"
+	fi
+}
+
+src_unpack() {
+	unpack ${A}
+
+	cd "${S}"
+	epatch "${FILESDIR}"/${P}-gentoo.patch
+	epatch "${FILESDIR}"/${P}-deprecated-ldap.patch
+
+	find . -regex '.*[.][1-8]\' -exec sed -i \
+	    -e s:/usr/local:/usr:g \
+	    -e s:/etc/ipsec[.]conf:/etc/ipsec/ipsec.conf:g \
+	    -e s:/etc/ipsec[.]secrets:/etc/ipsec/ipsec.secrets:g '{}' \; ||
+	    die "failed to replace text in xml docs"
+}
+
+get_make_options() {
+	echo KERNELSRC=\"${KERNEL_DIR}\" \
+		FINALCONFDIR=/etc/ipsec \
+		FINALCONFFILE=/etc/ipsec/ipsec.conf \
+		FINALEXAMPLECONFDIR=/usr/share/doc/${P} \
+		INC_RCDEFAULT=/etc/init.d \
+		INC_USRLOCAL=/usr \
+		INC_MANDIR=share/man \
+		FINALDOCDIR=/usr/share/doc/${P} \
+		DESTDIR=\"${D}\" \
+		USERCOMPILE=\"${CFLAGS}\"
+	if use smartcard ; then
+		echo USE_SMARTCARD=true
+	fi
+	if use extra-algorithms ; then
+		echo USE_EXTRACRYPTO=true
+	fi
+	if use weak-algorithms ; then
+		echo USE_WEAKSTUFF=true
+	fi
+	echo USE_OE=false # by default, turn off Opportunistic Encryption
+	echo USE_LWRES=false # needs bind9 with lwres support
+	local USETHREADS=false
+	if use curl; then
+		echo USE_LIBCURL=true
+		USETHREADS=true
+	fi
+	if use ldap; then
+		echo USE_LDAP=true
+		USETHREADS=true
+	fi
+	echo HAVE_THREADS=${USETHREADS}
+}
+
+src_compile() {
+	eval set -- $(get_make_options)
+	emake "$@" \
+		${MYMAKE} || die "emake failed"
+}
+
+src_install() {
+	eval set -- $(get_make_options)
+	emake "$@" \
+		install || die "emake install failed"
+
+	dosym /etc/ipsec/ipsec.d /etc/ipsec.d
+
+	doinitd "${FILESDIR}"/ipsec || die "failed to install init script"
+
+	dodir /var/run/pluto || die "failed to create /var/run/pluto"
+}
+
+pkg_postinst() {
+	if kernel_is 2 6; then
+		CONFIG_CHECK="~NET_KEY ~INET_XFRM_MODE_TRANSPORT ~INET_XFRM_MODE_TUNNEL ~INET_AH ~INET_ESP ~INET_IPCOMP"
+		WARNING_INET_AH="CONFIG_INET_AH:\tmissing IPsec AH support (needed if you want only authentication)"
+		WARNING_INET_ESP="CONFIG_INET_ESP:\tmissing IPsec ESP support (needed if you want authentication and encryption)"
+		WARNING_INET_IPCOMP="CONFIG_INET_IPCOMP:\tmissing IPsec Payload Compression (required for compress=yes)"
+		check_extra_config
+	fi
+}