Bug 173860 - [maintainer update] security/strongswan 4.5.3 -> 5.0.1
Summary: [maintainer update] security/strongswan 4.5.3 -> 5.0.1
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: TAKATSU Tomonari
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-11-23 12:50 UTC by Riaan Kruger
Modified: 2013-01-07 21:06 UTC (History)
0 users

See Also:


Attachments
file.diff (10.44 KB, patch)
2012-11-23 12:50 UTC, Riaan Kruger
no flags Details | Diff
strongswan-5.0.1.patch (11.49 KB, patch)
2012-12-30 10:58 UTC, TAKATSU Tomonari
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Riaan Kruger 2012-11-23 12:50:00 UTC
Update security/strongswan from 4.5.3 to 5.0.1

Fix: Patch attached with submission follows:
Comment 1 TAKATSU Tomonari freebsd_committer freebsd_triage 2012-12-30 10:58:14 UTC
Hi,

I have modified the patch.
Please confirm it.

- Trim Makefile header
- Convert to new options framework
- Cleanup

Thanks,

-- 
TAKATSU Tomonari
Comment 2 Francois ten Krooden 2013-01-07 11:32:52 UTC
Hi,

I checked the patch and everything seems in order.
I can confirm that it does work.

Thank You


> -----Original Message-----
> From: takatsu.tomonari@gmail.com [mailto:takatsu.tomonari@gmail.com]
> On Behalf Of TAKATSU Tomonari
> Sent: 30 December 2012 12:58 PM
> To: bug-followup@FreeBSD.org; riaank@gmail.com; strongswan
> Subject: Re: ports/173860: [maintainer update] security/strongswan 4.5.3 =
->
> 5.0.1
>
> Hi,
>
> I have modified the patch.
> Please confirm it.
>
> - Trim Makefile header
> - Convert to new options framework
> - Cleanup
>
> Thanks,
>
> --
> TAKATSU Tomonari

Important Notice:

This e-mail and its contents are subject to the Nanoteq (Pty) Ltd e-mail le=
gal notice available at:
http://www.nanoteq.com/AboutUs/EmailDisclaimer.aspx
Comment 3 TAKATSU Tomonari freebsd_committer freebsd_triage 2013-01-07 12:08:41 UTC
Responsible Changed
From-To: freebsd-ports-bugs->tota

I'll take it.
Comment 4 dfilter service freebsd_committer freebsd_triage 2013-01-07 12:11:23 UTC
Author: tota
Date: Mon Jan  7 12:11:14 2013
New Revision: 310039
URL: http://svnweb.freebsd.org/changeset/ports/310039

Log:
  - Update to 5.0.1
  - Change maintainer address
  - Trim Makefile header
  - Convert to new options framework
  - Cleanup
  
  PR:		ports/173860 (based on)
  Submitted by:	Riaan Kruger (maintainer)

Added:
  head/security/strongswan/files/strongswan.sh.in
     - copied, changed from r309655, head/security/strongswan/files/strongswan.in
Deleted:
  head/security/strongswan/files/patch-src__ipsec__ipsec.in
  head/security/strongswan/files/strongswan.in
Modified:
  head/security/strongswan/Makefile
  head/security/strongswan/distinfo
  head/security/strongswan/pkg-plist

Modified: head/security/strongswan/Makefile
==============================================================================
--- head/security/strongswan/Makefile	Mon Jan  7 11:25:41 2013	(r310038)
+++ head/security/strongswan/Makefile	Mon Jan  7 12:11:14 2013	(r310039)
@@ -1,29 +1,22 @@
-# New ports collection makefile for:	strongswan
-# Date created:				30 May 2010
-# Whom:					<riaank@gmail.com>
-#
+# Created by: Riaan Kruger <riaank@gmail.com>
 # $FreeBSD$
 
 PORTNAME=	strongswan
-PORTVERSION=	4.5.3
+PORTVERSION=	5.0.1
 CATEGORIES=	security
 MASTER_SITES=	http://download.strongswan.org/ \
 		http://download2.strongswan.org/
 
-MAINTAINER=	riaank@gmail.com
+MAINTAINER=	strongswan@nanoteq.com
 COMMENT=	Open Source IKEv2 IPsec-based VPN solution
 
-OPTIONS=	SQLITE		"Enable SQLite" off \
-		MYSQL		"Enable MySQL" off \
-		CURL		"Enable CURL to fetch CRL/OCSP" off \
-		EAPAKA3GPP2	"Enable EAP AKA with 3gpp2 backend" off \
-		EAPSIMFILE	"Enable EAP SIM with filebased backend" off
+LIB_DEPENDS=	execinfo:${PORTSDIR}/devel/libexecinfo
 
-USE_RC_SUBR=	strongswan
 USE_BZIP2=	yes
+USE_OPENSSL=	yes
 USE_AUTOTOOLS=	libtool
+USE_RC_SUBR=	strongswan.sh
 GNU_CONFIGURE=	yes
-USE_OPENSSL=	yes
 USE_LDCONFIG=	yes
 
 CONFIGURE_ARGS=	--enable-kernel-pfkey \
@@ -31,13 +24,14 @@ CONFIGURE_ARGS=	--enable-kernel-pfkey \
 		--disable-kernel-netlink  \
 		--disable-tools  \
 		--disable-scripts  \
-		--disable-pluto  \
 		--disable-gmp \
 		--enable-openssl \
 		--enable-eap-identity \
 		--enable-eap-md5 \
 		--enable-eap-tls \
 		--enable-eap-mschapv2 \
+		--enable-eap-peap \
+		--enable-eap-ttls \
 		--enable-md4 \
 		--enable-blowfish \
 		--enable-addrblock \
@@ -46,37 +40,63 @@ CONFIGURE_ARGS=	--enable-kernel-pfkey \
 		--with-lib-prefix=${PREFIX}
 
 # Man pages with default install
-MAN3=	anyaddr.3 atoaddr.3 atoasr.3 atoul.3 goodmask.3 initaddr.3 \
-	initsubnet.3 portof.3 rangetosubnet.3 sameaddr.3 subnetof.3 \
-	ttoaddr.3 ttodata.3 ttosa.3 ttoul.3
 MAN5=	ipsec.conf.5 ipsec.secrets.5 strongswan.conf.5
 MAN8=	ipsec.8 _updown.8 _updown_espmark.8
 
-.include <bsd.port.pre.mk>
+OPTIONS_DEFINE=	CURL EAPAKA3GPP2 EAPSIMFILE IKEv1 LDAP MYSQL SQLITE
+CURL_DESC=	Enable CURL to fetch CRL/OCSP
+EAPAKA3GPP2_DESC=	Enable EAP AKA with 3gpp2 backend
+EAPSIMFILE_DESC=	Enable EAP SIM with file backend
+IKEv1_DESC=	Enable IKEv1 support (Experimental)
 
-# Requires FreeBSD 8 and above to work
-.if ${OSVERSION} < 800000
-IGNORE=		requires at least FreeBSD 8.X
-.endif
+.include <bsd.port.options.mk>
 
 # Extra options
-.if defined(WITH_SQLITE) || defined (WITH_MYSQL)
-CONFIGURE_ARGS+=	--enable-attr-sql
-CONFIGURE_ARGS+=	--enable-sql
-PLIST_SUB+=	SQL=""
+.if ${PORT_OPTIONS:MCURL}
+CONFIGURE_ARGS+=	--enable-curl
+LIB_DEPENDS+=	curl:${PORTSDIR}/ftp/curl
+PLIST_SUB+=	CURL=""
 .else
-PLIST_SUB+=	SQL="@comment "
+PLIST_SUB+=	CURL="@comment "
 .endif
 
-.if defined(WITH_SQLITE)
-CONFIGURE_ARGS+=	--enable-sqlite
-LIB_DEPENDS += sqlite3.8:${PORTSDIR}/databases/sqlite3
-PLIST_SUB+=	SQLITE=""
+.if ${PORT_OPTIONS:MEAPSIMFILE}
+CONFIGURE_ARGS+=	--enable-eap-sim --enable-eap-sim-file
+PLIST_SUB+=	EAPSIMFILE=""
 .else
-PLIST_SUB+=	SQLITE="@comment "
+PLIST_SUB+=	EAPSIMFILE="@comment "
+.endif
+
+.if ${PORT_OPTIONS:MEAPAKA3GPP2}
+CONFIGURE_ARGS+=	--enable-eap-aka --enable-eap-aka-3gpp2
+LIB_DEPENDS+=	gmp:${PORTSDIR}/math/gmp
+PLIST_SUB+=	EAPAKA3GPP2=""
+.else
+PLIST_SUB+=	EAPAKA3GPP2="@comment "
+.endif
+
+.if ${PORT_OPTIONS:MEAPSIMFILE} || ${PORT_OPTIONS:MEAPAKA3GPP2}
+PLIST_SUB+=SIMAKA=""
+.else
+PLIST_SUB+=SIMAKA="@comment "
 .endif
 
-.if defined(WITH_MYSQL)
+.if ${PORT_OPTIONS:MIKEv1}
+PLIST_SUB+=	IKEv1=""
+.else
+CONFIGURE_ARGS+=	--disable-ikev1
+PLIST_SUB+=	IKEv1="@comment "
+.endif
+
+.if ${PORT_OPTIONS:MLDAP}
+USE_OPENLDAP=	yes
+CONFIGURE_ARGS+=	--enable-ldap
+PLIST_SUB+=	LDAP=""
+.else
+PLIST_SUB+=	LDAP="@comment "
+.endif
+
+.if ${PORT_OPTIONS:MMYSQL}
 CONFIGURE_ARGS+=	--enable-mysql
 USE_MYSQL=	yes
 PLIST_SUB+=	MYSQL=""
@@ -84,30 +104,26 @@ PLIST_SUB+=	MYSQL=""
 PLIST_SUB+=	MYSQL="@comment "
 .endif
 
-.if defined(WITH_CURL)
-CONFIGURE_ARGS+=	--enable-curl
-LIB_DEPENDS+=	curl.6:${PORTSDIR}/ftp/curl
-PLIST_SUB+=	CURL=""
+.if ${PORT_OPTIONS:MSQLITE}
+CONFIGURE_ARGS+=	--enable-sqlite
+LIB_DEPENDS+=	sqlite3:${PORTSDIR}/databases/sqlite3
+PLIST_SUB+=	SQLITE=""
 .else
-PLIST_SUB+=	CURL="@comment "
+PLIST_SUB+=	SQLITE="@comment "
 .endif
 
-.if defined(WITH_EAPSIMFILE)
-CONFIGURE_ARGS+=	--enable-eap-sim
-CONFIGURE_ARGS+=	--enable-eap-sim-file
-PLIST_SUB+=	EAPSIMFILE=""
+.if ${PORT_OPTIONS:MMYSQL} || ${PORT_OPTIONS:MSQLITE}
+CONFIGURE_ARGS+=	--enable-attr-sql --enable-sql
+PLIST_SUB+=	SQL=""
 .else
-PLIST_SUB+=	EAPSIMFILE="@comment "
+PLIST_SUB+=	SQL="@comment "
 .endif
 
-.if defined(WITH_EAPAKA3GPP2)
-CONFIGURE_ARGS+=	--enable-eap-aka
-CONFIGURE_ARGS+=	--enable-eap-aka-3gpp2
-CONFIGURE_ARGS+=	--enable-gmp
-LIB_DEPENDS+=	gmp.10:${PORTSDIR}/math/gmp
-PLIST_SUB+=	EAPAKA3GPP2=""
-.else
-PLIST_SUB+=	EAPAKA3GPP2="@comment "
+.include <bsd.port.pre.mk>
+
+# Requires FreeBSD 8 and above to work
+.if ${OSVERSION} < 800000
+IGNORE=		requires at least FreeBSD 8.X
 .endif
 
 .include <bsd.port.post.mk>

Modified: head/security/strongswan/distinfo
==============================================================================
--- head/security/strongswan/distinfo	Mon Jan  7 11:25:41 2013	(r310038)
+++ head/security/strongswan/distinfo	Mon Jan  7 12:11:14 2013	(r310039)
@@ -1,2 +1,2 @@
-SHA256 (strongswan-4.5.3.tar.bz2) = a59fa0d9820fb06a3c848f4537b9256d2067265ad10e1b007b79f3b16279f1ff
-SIZE (strongswan-4.5.3.tar.bz2) = 3299522
+SHA256 (strongswan-5.0.1.tar.bz2) = 1a4dff19ef69d15e0b90b1ea80bd183235ac73b4ecd114aab58ed54de0f5c3b4
+SIZE (strongswan-5.0.1.tar.bz2) = 3146776

Copied and modified: head/security/strongswan/files/strongswan.sh.in (from r309655, head/security/strongswan/files/strongswan.in)
==============================================================================
--- head/security/strongswan/files/strongswan.in	Sun Dec 30 08:11:08 2012	(r309655, copy source)
+++ head/security/strongswan/files/strongswan.sh.in	Mon Jan  7 12:11:14 2013	(r310039)
@@ -1,23 +1,17 @@
 #!/bin/sh
-
+# Start or stop strongswan
 # $FreeBSD$
 
 # PROVIDE: strongswan
-# REQUIRE: LOGIN
+# REQUIRE: DAEMON
+# BEFORE: LOGIN
 # KEYWORD: shutdown
 
-# Add the following lines to /etc/rc.conf.local or /etc/rc.conf
-# to enable this service:
-#
-# strongswan_enable (bool):   Set to NO by default.
-#               Set it to YES to enable strongswan.
-
+command="%%PREFIX%%/sbin/ipsec"
 . /etc/rc.subr
 
 name="strongswan"
-rcvar=strongswan_enable
-
-command="%%PREFIX%%/sbin/ipsec"
+rcvar=`set_rcvar`
 extra_commands="reload statusall"
 
 load_rc_config $name
@@ -29,9 +23,11 @@ status_cmd="strongswan_command status"
 reload_cmd="strongswan_command reload"
 statusall_cmd="strongswan_command statusall"
 
+
 strongswan_command()
 {
 	$command ${rc_arg}
 }
 
 run_rc_command "$1"
+

Modified: head/security/strongswan/pkg-plist
==============================================================================
--- head/security/strongswan/pkg-plist	Mon Jan  7 11:25:41 2013	(r310038)
+++ head/security/strongswan/pkg-plist	Mon Jan  7 12:11:14 2013	(r310039)
@@ -12,6 +12,10 @@ lib/ipsec/libstrongswan.a
 lib/ipsec/libstrongswan.la
 lib/ipsec/libstrongswan.so
 lib/ipsec/libstrongswan.so.0
+lib/ipsec/libtls.a
+lib/ipsec/libtls.la
+lib/ipsec/libtls.so
+lib/ipsec/libtls.so.0
 lib/ipsec/plugins/libstrongswan-addrblock.a
 lib/ipsec/plugins/libstrongswan-addrblock.la
 lib/ipsec/plugins/libstrongswan-addrblock.so
@@ -24,6 +28,9 @@ lib/ipsec/plugins/libstrongswan-attr.so
 lib/ipsec/plugins/libstrongswan-blowfish.a
 lib/ipsec/plugins/libstrongswan-blowfish.la
 lib/ipsec/plugins/libstrongswan-blowfish.so
+lib/ipsec/plugins/libstrongswan-cmac.a
+lib/ipsec/plugins/libstrongswan-cmac.la
+lib/ipsec/plugins/libstrongswan-cmac.so
 lib/ipsec/plugins/libstrongswan-constraints.a
 lib/ipsec/plugins/libstrongswan-constraints.la
 lib/ipsec/plugins/libstrongswan-constraints.so
@@ -42,9 +49,15 @@ lib/ipsec/plugins/libstrongswan-eap-md5.
 lib/ipsec/plugins/libstrongswan-eap-mschapv2.a
 lib/ipsec/plugins/libstrongswan-eap-mschapv2.la
 lib/ipsec/plugins/libstrongswan-eap-mschapv2.so
+lib/ipsec/plugins/libstrongswan-eap-peap.a
+lib/ipsec/plugins/libstrongswan-eap-peap.la
+lib/ipsec/plugins/libstrongswan-eap-peap.so
 lib/ipsec/plugins/libstrongswan-eap-tls.a
 lib/ipsec/plugins/libstrongswan-eap-tls.la
 lib/ipsec/plugins/libstrongswan-eap-tls.so
+lib/ipsec/plugins/libstrongswan-eap-ttls.a
+lib/ipsec/plugins/libstrongswan-eap-ttls.la
+lib/ipsec/plugins/libstrongswan-eap-ttls.so
 lib/ipsec/plugins/libstrongswan-fips-prf.a
 lib/ipsec/plugins/libstrongswan-fips-prf.la
 lib/ipsec/plugins/libstrongswan-fips-prf.so
@@ -63,6 +76,9 @@ lib/ipsec/plugins/libstrongswan-md4.so
 lib/ipsec/plugins/libstrongswan-md5.a
 lib/ipsec/plugins/libstrongswan-md5.la
 lib/ipsec/plugins/libstrongswan-md5.so
+lib/ipsec/plugins/libstrongswan-nonce.a
+lib/ipsec/plugins/libstrongswan-nonce.la
+lib/ipsec/plugins/libstrongswan-nonce.so
 lib/ipsec/plugins/libstrongswan-openssl.a
 lib/ipsec/plugins/libstrongswan-openssl.la
 lib/ipsec/plugins/libstrongswan-openssl.so
@@ -75,6 +91,9 @@ lib/ipsec/plugins/libstrongswan-pgp.so
 lib/ipsec/plugins/libstrongswan-pkcs1.a
 lib/ipsec/plugins/libstrongswan-pkcs1.la
 lib/ipsec/plugins/libstrongswan-pkcs1.so
+lib/ipsec/plugins/libstrongswan-pkcs8.a
+lib/ipsec/plugins/libstrongswan-pkcs8.la
+lib/ipsec/plugins/libstrongswan-pkcs8.so
 lib/ipsec/plugins/libstrongswan-pubkey.a
 lib/ipsec/plugins/libstrongswan-pubkey.la
 lib/ipsec/plugins/libstrongswan-pubkey.so
@@ -119,6 +138,10 @@ libexec/ipsec/starter
 libexec/ipsec/stroke
 libexec/ipsec/whitelist
 sbin/ipsec
+%%SIMAKA%%lib/ipsec/libsimaka.a
+%%SIMAKA%%lib/ipsec/libsimaka.la
+%%SIMAKA%%lib/ipsec/libsimaka.so
+%%SIMAKA%%lib/ipsec/libsimaka.so.0
 %%EAPAKA3GPP2%%lib/ipsec/plugins/libstrongswan-eap-aka.a
 %%EAPAKA3GPP2%%lib/ipsec/plugins/libstrongswan-eap-aka.la
 %%EAPAKA3GPP2%%lib/ipsec/plugins/libstrongswan-eap-aka.so
@@ -137,6 +160,12 @@ sbin/ipsec
 %%CURL%%lib/ipsec/plugins/libstrongswan-curl.a
 %%CURL%%lib/ipsec/plugins/libstrongswan-curl.la
 %%CURL%%lib/ipsec/plugins/libstrongswan-curl.so
+%%IKEv1%%lib/ipsec/plugins/libstrongswan-xauth-generic.a
+%%IKEv1%%lib/ipsec/plugins/libstrongswan-xauth-generic.la
+%%IKEv1%%lib/ipsec/plugins/libstrongswan-xauth-generic.so
+%%LDAP%%lib/ipsec/plugins/libstrongswan-ldap.a
+%%LDAP%%lib/ipsec/plugins/libstrongswan-ldap.la
+%%LDAP%%lib/ipsec/plugins/libstrongswan-ldap.so
 %%MYSQL%%lib/ipsec/plugins/libstrongswan-mysql.a
 %%MYSQL%%lib/ipsec/plugins/libstrongswan-mysql.la
 %%MYSQL%%lib/ipsec/plugins/libstrongswan-mysql.so
@@ -162,6 +191,7 @@ sbin/ipsec
 @dirrm etc/ipsec.d/acerts
 @dirrm etc/ipsec.d/aacerts
 @dirrm etc/ipsec.d
+@exec mkdir -p %D/etc/ipsec.d
 @exec mkdir -p %D/etc/ipsec.d/reqs
 @exec mkdir -p %D/etc/ipsec.d/private
 @exec mkdir -p %D/etc/ipsec.d/ocspcerts
_______________________________________________
svn-ports-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/svn-ports-all
To unsubscribe, send any mail to "svn-ports-all-unsubscribe@freebsd.org"
Comment 5 TAKATSU Tomonari freebsd_committer freebsd_triage 2013-01-07 21:04:29 UTC
State Changed
From-To: open->closed

Committed. Thanks!