Home | Docs | Forums | Lists | Bugs | Planet | Store | GMN | Get Gentoo!
Not eligible to see or edit group visibility for this bug.
View Bug Activity | Format For Printing | XML | Clone This Bug
Hi, Please find attached ucspi-ssl.tar.gz containing among other things, ucspi-ssl-0.55.ebuild. ucspi-ssl is: An UCSPI protocol for the TCP communication domain that uses SSL to encrypt communication. It contains both client and server support. See: http://www.superscript.com/ucspi-ssl/intro.html for more details. As I understand it, ucspi-tcp in Gentoo has some SSL support, but only on the server end, as someone mentioned, w/o any certificate validation. ucspi-ssl also has client support, and I have been told that it also has cetificate validation support. I suggest sys-apps (since that's where ucspi-tcp lives) or net-misc as a location for it in the portage tree. This package depends on OpenSSL (and some libc -- I suppose dietlibc would be nice, but I didn't get that working, so it currently depends on glibc). Background for this submission: I wanted to get fnord working under SSL -- it turns out this is easy w/ the releases of stunnel before the 4.x series. Unfortunately, it appears that the stunnel author has changed stunnel significantly starting w/ the 4.x series -- I believe it's much more of a pain to get the new stunnel working w/ fnord. So, an alternative was sought for, and one possibility that turned up was ucspi-ssl. See: http://projectdream.org/publications/fnord.html for details on getting fnord to work w/ SSL using ucspi-ssl. FWIW, the above document and its author were also consulted w/ to arrive at some of the information contained in this bug report. Reproducible: Always Steps to Reproduce: 1. 2. 3.
Created an attachment (id=7835) [edit] file containing ucspi-ssl-0.55.ebuild
(From update of attachment 7835 [edit]) IUSE="" S=${WORKDIR}/${P} DESCRIPTION="Command-line tools for building SSL client-server applications." HOMEPAGE="http://www.superscript.com/ucspi-ssl/intro.html" SRC_URI="http://www.superscript.com/ucspi-ssl/ucspi-ssl-0.50.tar.gz" # XXX: 'make test' requires daemontools and ucspi-tcp DEPEND="virtual/glibc >=dev-libs/openssl-0.9.6g" SLOT="0" LICENSE="as-is" KEYWORDS="x86" src_unpack() { unpack ${A} cd ${S} echo "gcc ${CFLAGS} -DTLS" > conf-cc # XXX: do we need to change conf-ld? #echo "gcc -DTLS" > conf-ld # default is '/usr/local/' in source code echo "/usr/" > conf-home } src_compile() { # cd ${S} # emake it man || die # XXX: pmake is deprecated, but the above dies at "make man" pmake || die } src_install() { for i in sslserver sslclient sslcat sslconnect https\@ do dobin $i done dodoc CHANGES FILES README SYSDEPS TARGETS TODO UCSPI-SSL VERSION }
Created an attachment (id=7836) [edit] ucspi-ssl-0.50.ebuild
I mistakenly wrote 0.55, when I should have written 0.50. I tried to edit all occurences, but I have not managed to. I did not get a .tar.gz file to attach appropriately, so I extracted just the ebuild file and attached that instead.
Commited to CVS, thanks for the ebuild!
