mirror of
https://github.com/archlinuxarm/PKGBUILDs.git
synced 2025-03-19 00:21:40 +00:00
community/strongswan to 5.8.1-2
This commit is contained in:
parent
0fa0395413
commit
990cc5d722
2 changed files with 95 additions and 92 deletions
|
@ -14,20 +14,20 @@
|
|||
|
||||
pkgname=strongswan
|
||||
pkgver=5.8.1
|
||||
pkgrel=1
|
||||
pkgrel=2
|
||||
pkgdesc='Open source IPsec implementation'
|
||||
url='https://www.strongswan.org'
|
||||
license=('GPL2')
|
||||
arch=('x86_64')
|
||||
makedepends=('curl' 'gmp' 'libnm' 'iproute2' 'openssl' 'sqlite' 'libcap' 'systemd-libs'
|
||||
'systemd' 'pam' 'python' 'ruby' 'mariadb' 'python-setuptools')
|
||||
'systemd' 'pam' 'python' 'ruby' 'mariadb' 'python-setuptools')
|
||||
depends=('curl' 'gmp' 'iproute2' 'openssl' 'sqlite' 'libcap' 'systemd-libs' 'pam')
|
||||
optdepends=('libnm: for networkmanager support'
|
||||
'mariadb: MySQL support'
|
||||
'ruby: Ruby support'
|
||||
'python: Python support'
|
||||
'resolvconf: Resolveplugin'
|
||||
'openldap: LDAP support')
|
||||
'mariadb: MySQL support'
|
||||
'ruby: Ruby support'
|
||||
'python: Python support'
|
||||
'resolvconf: Resolveplugin'
|
||||
'openldap: LDAP support')
|
||||
# TODO: move to package() and use find
|
||||
backup=(
|
||||
etc/ipsec.conf
|
||||
|
@ -35,106 +35,95 @@ backup=(
|
|||
etc/swanctl/swanctl.conf
|
||||
etc/strongswan.conf
|
||||
etc/strongswan.d/{charon-logging.conf,charon.conf,pki.conf,pool.conf,scepclient.conf,starter.conf,swanctl.conf}
|
||||
etc/strongswan.d/charon/{aesni.conf,attr-sql.conf,attr.conf,bliss.conf,chapoly.conf,cmac.conf,connmark.conf,\
|
||||
constraints.conf,curl.conf,des.conf,dhcp.conf,dnskey.conf,eap-aka-3gpp2.conf,eap-aka.conf,\
|
||||
eap-gtc.conf,eap-identity.conf,eap-md5.conf,eap-mschapv2.conf,eap-radius.conf,eap-sim-file.conf,\
|
||||
eap-sim.conf,eap-simaka-pseudonym.conf,eap-simaka-reauth.conf,eap-tls.conf,ext-auth.conf,farp.conf,\
|
||||
fips-prf.conf,forecast.conf,gmp.conf,ha.conf,hmac.conf,kernel-netlink.conf,md5.conf,mgf1.conf,nonce.conf,newhope.conf,ntru.conf,openssl.conf,\
|
||||
pem.conf,pgp.conf,pkcs1.conf,pkcs12.conf,pkcs7.conf,pkcs8.conf,pubkey.conf,random.conf,rc2.conf,resolve.conf,\
|
||||
revocation.conf,sha1.conf,sha2.conf,sha3.conf,socket-default.conf,sql.conf,sqlite.conf,sshkey.conf,stroke.conf,updown.conf,\
|
||||
vici.conf,x509.conf,xauth-eap.conf,xauth-generic.conf,xcbc.conf,unity.conf,curve25519.conf,bypass-lan.conf}
|
||||
)
|
||||
|
||||
etc/strongswan.d/charon/{aesni.conf,attr-sql.conf,attr.conf,bliss.conf,chapoly.conf,cmac.conf,connmark.conf,constraints.conf,curl.conf,des.conf,dhcp.conf,dnskey.conf,eap-aka-3gpp2.conf,eap-aka.conf,eap-gtc.conf,eap-identity.conf,eap-md5.conf,eap-mschapv2.conf,eap-radius.conf,eap-sim-file.conf,eap-sim.conf,eap-simaka-pseudonym.conf,eap-simaka-reauth.conf,eap-tls.conf,ext-auth.conf,farp.conf,fips-prf.conf,forecast.conf,gmp.conf,ha.conf,hmac.conf,kernel-netlink.conf,md5.conf,mgf1.conf,nonce.conf,newhope.conf,ntru.conf,openssl.conf,pem.conf,pgp.conf,pkcs1.conf,pkcs12.conf,pkcs7.conf,pkcs8.conf,pubkey.conf,random.conf,rc2.conf,resolve.conf,revocation.conf,sha1.conf,sha2.conf,sha3.conf,socket-default.conf,sql.conf,sqlite.conf,sshkey.conf,stroke.conf,updown.conf,vici.conf,x509.conf,xauth-eap.conf,xauth-generic.conf,xcbc.conf,unity.conf,curve25519.conf,bypass-lan.conf})
|
||||
source=("https://download.strongswan.org/strongswan-${pkgver}.tar.bz2"{,.sig}
|
||||
'configure_ac.patch'
|
||||
)
|
||||
|
||||
'configure_ac.patch')
|
||||
validpgpkeys=("948F158A4E76A27BF3D07532DF42C170B34DBA77")
|
||||
|
||||
sha512sums=('630d24643b3d61e931bb25cdd083ad3c55f92fe41f3fcd3198012eee486fb3b1a16dc3f80936162afb7da9e471d45d92b7d183a00153a558babb2a79e5f6813f'
|
||||
'SKIP'
|
||||
'0e2c818f2f620410dda949d9016a4c1a686bf2946acb3b42a729b2376c077f4dad6762fe8d2f736c213c4895c1fbd60c0d654a1c36f72d06f58ba7cff635bc74')
|
||||
'SKIP'
|
||||
'0e2c818f2f620410dda949d9016a4c1a686bf2946acb3b42a729b2376c077f4dad6762fe8d2f736c213c4895c1fbd60c0d654a1c36f72d06f58ba7cff635bc74')
|
||||
install=strongswan.install
|
||||
|
||||
# We don't build libipsec because it would get loaded before kernel-netlink and netkey, which
|
||||
# would case processing to be handled in user space. Also, the plugin is experimental. If you need it,
|
||||
# add --enable-libipsec and --enable-kernel-libipsec
|
||||
prepare() {
|
||||
cd ${pkgname}-${pkgver}
|
||||
patch -p1 -l < "${srcdir}/configure_ac.patch"
|
||||
autoreconf -fiv
|
||||
cd ${pkgname}-${pkgver}
|
||||
patch -p1 -l < "${srcdir}/configure_ac.patch"
|
||||
autoreconf -fiv
|
||||
}
|
||||
|
||||
build() {
|
||||
cd ${pkgname}-${pkgver}
|
||||
cd ${pkgname}-${pkgver}
|
||||
|
||||
./configure --prefix=/usr \
|
||||
--sbindir=/usr/bin \
|
||||
--sysconfdir=/etc \
|
||||
--libexecdir=/usr/lib \
|
||||
--with-ipsecdir=/usr/lib/strongswan \
|
||||
--with-nm-ca-dir=/etc/ssl/certs \
|
||||
--enable-integrity-test \
|
||||
--enable-sqlite \
|
||||
--enable-pkcs11 \
|
||||
--enable-openssl \
|
||||
--enable-curl \
|
||||
--enable-sql \
|
||||
--enable-attr-sql \
|
||||
--enable-farp \
|
||||
--enable-dhcp \
|
||||
--enable-eap-sim \
|
||||
--enable-eap-sim-file \
|
||||
--enable-eap-simaka-pseudonym \
|
||||
--enable-eap-simaka-reauth \
|
||||
--enable-eap-identity \
|
||||
--enable-eap-md5 \
|
||||
--enable-eap-gtc \
|
||||
--enable-eap-aka \
|
||||
--enable-eap-aka-3gpp2 \
|
||||
--enable-eap-mschapv2 \
|
||||
--enable-eap-radius \
|
||||
--enable-xauth-eap \
|
||||
--enable-ha \
|
||||
--enable-vici \
|
||||
--enable-swanctl \
|
||||
--enable-systemd \
|
||||
--enable-ext-auth \
|
||||
--enable-mysql \
|
||||
--enable-ldap \
|
||||
--enable-cmd \
|
||||
--enable-forecast \
|
||||
--enable-connmark \
|
||||
--enable-eap-ttls \
|
||||
--enable-radattr \
|
||||
--enable-xauth-pam \
|
||||
--enable-xauth-noauth \
|
||||
--enable-eap-dynamic \
|
||||
--enable-eap-peap \
|
||||
--enable-eap-tls \
|
||||
--enable-chapoly \
|
||||
--enable-unity \
|
||||
--with-capabilities=libcap \
|
||||
--enable-newhope \
|
||||
--enable-ntru \
|
||||
--enable-mgf1 \
|
||||
--enable-sha3 \
|
||||
--enable-bliss \
|
||||
--enable-dnscert \
|
||||
--enable-nm \
|
||||
--enable-agent \
|
||||
--enable-bypass-lan \
|
||||
--enable-ruby-gems \
|
||||
--enable-python-eggs
|
||||
make
|
||||
./configure --prefix=/usr \
|
||||
--sbindir=/usr/bin \
|
||||
--sysconfdir=/etc \
|
||||
--libexecdir=/usr/lib \
|
||||
--with-ipsecdir=/usr/lib/strongswan \
|
||||
--with-nm-ca-dir=/etc/ssl/certs \
|
||||
--enable-integrity-test \
|
||||
--enable-sqlite \
|
||||
--enable-pkcs11 \
|
||||
--enable-openssl \
|
||||
--enable-curl \
|
||||
--enable-sql \
|
||||
--enable-attr-sql \
|
||||
--enable-farp \
|
||||
--enable-dhcp \
|
||||
--enable-eap-sim \
|
||||
--enable-eap-sim-file \
|
||||
--enable-eap-simaka-pseudonym \
|
||||
--enable-eap-simaka-reauth \
|
||||
--enable-eap-identity \
|
||||
--enable-eap-md5 \
|
||||
--enable-eap-gtc \
|
||||
--enable-eap-aka \
|
||||
--enable-eap-aka-3gpp2 \
|
||||
--enable-eap-mschapv2 \
|
||||
--enable-eap-radius \
|
||||
--enable-xauth-eap \
|
||||
--enable-ha \
|
||||
--enable-vici \
|
||||
--enable-swanctl \
|
||||
--enable-systemd \
|
||||
--enable-ext-auth \
|
||||
--enable-mysql \
|
||||
--enable-ldap \
|
||||
--enable-cmd \
|
||||
--enable-forecast \
|
||||
--enable-connmark \
|
||||
--enable-eap-ttls \
|
||||
--enable-radattr \
|
||||
--enable-xauth-pam \
|
||||
--enable-xauth-noauth \
|
||||
--enable-eap-dynamic \
|
||||
--enable-eap-peap \
|
||||
--enable-eap-tls \
|
||||
--enable-chapoly \
|
||||
--enable-unity \
|
||||
--with-capabilities=libcap \
|
||||
--enable-newhope \
|
||||
--enable-ntru \
|
||||
--enable-mgf1 \
|
||||
--enable-sha3 \
|
||||
--enable-bliss \
|
||||
--enable-dnscert \
|
||||
--enable-nm \
|
||||
--enable-agent \
|
||||
--enable-bypass-lan \
|
||||
--enable-ruby-gems \
|
||||
--enable-python-eggs
|
||||
make
|
||||
}
|
||||
|
||||
package() {
|
||||
cd ${pkgname}-${pkgver}
|
||||
make DESTDIR="${pkgdir}" install
|
||||
install -Dm644 "${pkgdir}/etc/dbus-1/system.d/nm-strongswan-service.conf" "${pkgdir}/usr/share/dbus-1/system.d/nm-strongswan-service.conf"
|
||||
rm -v "${pkgdir}/etc/dbus-1/system.d/nm-strongswan-service.conf"
|
||||
# remove empty directory
|
||||
rmdir -v "${pkgdir}/etc/dbus-1/system.d"
|
||||
cd ${pkgname}-${pkgver}
|
||||
make DESTDIR="${pkgdir}" install
|
||||
install -Dm644 "${pkgdir}/etc/dbus-1/system.d/nm-strongswan-service.conf" "${pkgdir}/usr/share/dbus-1/system.d/nm-strongswan-service.conf"
|
||||
rm -v "${pkgdir}/etc/dbus-1/system.d/nm-strongswan-service.conf"
|
||||
# remove empty directory
|
||||
rmdir -v "${pkgdir}/etc/dbus-1/system.d"
|
||||
}
|
||||
|
||||
# vim: ts=2 sw=2 et:
|
||||
|
|
14
community/strongswan/strongswan.install
Normal file
14
community/strongswan/strongswan.install
Normal file
|
@ -0,0 +1,14 @@
|
|||
post_upgrade() {
|
||||
if (($(vercmp 5.8.0-1 $2) > 0)); then
|
||||
cat << EOF
|
||||
Strongswan 5.8.0-1 introduced new names for the systemd unit files:
|
||||
|
||||
strongswan.service got renamed to strongswan-starter.service
|
||||
strongswan-swanctl.service got renamed to strongswan.service
|
||||
|
||||
If you use the legacy ipsec.conf, you need to enable
|
||||
strongswan-starter.service from now on.
|
||||
|
||||
If you use swanctl, you need to enable strongswan.service from now on.
|
||||
EOF
|
||||
}
|
Loading…
Reference in a new issue