During the update to net-firewall/ipsec-tools-0.8.0-r5 the ebuild moves /etc/ipsec.conf to /etc/ipsec-tools.conf with the claim to avoid file collisions with strongswan of some sort. Restarting IPSec (using openswan) results in IPSec failing to run. A verification yields this problem: > ipsec verify ( *lines removed for shorter output* ) can not load config '/etc/ipsec.conf': can't load file '/etc/ipsec.conf' net-misc/openswan-2.6.38 obviously still relies on /etc/ipsec.conf and fails to run if the file is suddenly /ets/ipsec-tools.conf . A remerge also doesn't help. The only fix so far is to create a new file /etc/IPSEC.CONF with the original content and sym-linking /etc/ipsec.conf and /etc/ipsec-tools.conf to this file (to avoid future updates breaking one or the other).
Please stop renaming this file. Thanks.
(In reply to comment #1) > Please stop renaming this file. Thanks. I am not renaming this file. ipsec-tools.conf is consistent with what other distros do. Other packages will have to accomodate.
Yes, you are renaming the file. pkg_preinst does this: if ! has_version "net-misc/strongswan" ; then ... if [[ -f /etc/ipsec.conf && ! -f /etc/ipsec-tools.conf ]] ; then mv /etc/ipsec.conf /etc/ipsec-tools.conf Perhaps you could change the first line to include openswan as well? if ! has_version "net-misc/strongswan" && ! has_version "net-misc/openswan" ; then
That seems to be the obvious solution here, so I committed it. + 23 Mar 2013; Mike Gilbert <floppym@gentoo.org> ipsec-tools-0.8.0-r5.ebuild, + ipsec-tools-0.8.1.ebuild: + Don't rename /etc/ipsec.conf if openswan is installed. Bug 462782 by Plüss + Roland.
(In reply to comment #4) > That seems to be the obvious solution here, so I committed it. > > + 23 Mar 2013; Mike Gilbert <floppym@gentoo.org> > ipsec-tools-0.8.0-r5.ebuild, > + ipsec-tools-0.8.1.ebuild: > + Don't rename /etc/ipsec.conf if openswan is installed. Bug 462782 by Plüss > + Roland. Oh I mis-understood. I thought you mean rename it yet again. Yeah that's an acceptable solution. Thanks Mike.