473248 – net-misc/strongswan should optionally build EAP-TLS support

Bug 473248 - net-misc/strongswan should optionally build EAP-TLS support

Summary: net-misc/strongswan should optionally build EAP-TLS support

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Patrick Lauer

URL:
Whiteboard:
Keywords:	PATCH

Depends on:
Blocks:

Reported:	2013-06-14 06:55 UTC by gentooking
Modified:	2013-06-30 18:04 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
strongswan-5.0.4.ebuild with eap-tls enabled with eap flag (strongswan-5.0.4.ebuild,8.14 KB, text/plain) 2013-06-14 06:59 UTC, gentooking	Details
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description gentooking 2013-06-14 06:55:49 UTC

The net-misc/strongswan ebuild is missing the option to compile EAP-TLS support.

In the econf section in the ebuild the line 

$(use_enable eap eap-tls) \

should be added.

Reproducible: Always

Comment 1 gentooking 2013-06-14 06:59:18 UTC

Created attachment 350936 [details]
strongswan-5.0.4.ebuild with eap-tls enabled with eap flag

This is my updated ebuild with the eap-tls option, i've been using it successfully since strongswan-5.0.3 without any problems.

Comment 2 Jeroen Roovers (RETIRED) gentoo-dev

2013-06-15 14:49:32 UTC

Comment on attachment 350936 [details]
strongswan-5.0.4.ebuild with eap-tls enabled with eap flag

--- strongswan-5.0.4.ebuild     2013-05-12 17:43:30.042375792 +0200
+++ -   2013-06-15 16:49:08.007660670 +0200
@@ -1,6 +1,6 @@
 # Copyright 1999-2013 Gentoo Foundation
 # Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/strongswan-5.0.4.ebuild,v 1.5 2013/05/11 11:18:38 ago Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-misc/strongswan/strongswan-5.0.4.ebuild,v 1.1 2013/04/09 22:13:24 gurligebis Exp $
 
 EAPI=2
 inherit eutils linux-info user
@@ -11,7 +11,7 @@
 
 LICENSE="GPL-2 RSA DES"
 SLOT="0"
-KEYWORDS="amd64 arm ppc ~ppc64 x86"
+KEYWORDS="~amd64 ~arm ~ppc ~ppc64 ~x86"
 IUSE="+caps curl debug dhcp eap farp gcrypt ldap mysql +non-root +openssl sqlite pam"
 
 COMMON_DEPEND="!net-misc/openswan
@@ -82,10 +82,6 @@
        fi
 }

-src_prepare() {
-       epatch_user
-}
-
 src_configure() {
        local myconf=""

@@ -127,6 +123,7 @@
                $(use_enable eap eap-aka-3gpp2) \
                $(use_enable eap eap-mschapv2) \
                $(use_enable eap eap-radius) \
+               $(use_enable eap eap-tls) \
                $(use_enable openssl) \
                $(use_enable gcrypt) \
                $(use_enable mysql) \
@@ -249,9 +246,10 @@
                elog "user \"ipsec\" the appropriate rights."
                elog "For example (the default case):"
                elog "/etc/sudoers:"
-               elog "  ipsec ALL=(ALL) NOPASSWD: SETENV: /usr/sbin/ipsec"
+               elog "  Defaults:ipsec always_set_home,!env_reset"
+               elog "  ipsec ALL=(ALL) NOPASSWD: /usr/sbin/ipsec"
                elog "Under the specific connection block in /etc/ipsec.conf:"
-               elog "  leftupdown=\"sudo -E ipsec _updown iptables\""
+               elog "  leftupdown=\"sudo ipsec _updown\""
                elog
        fi
        elog
@@ -263,3 +261,4 @@
        elog "  http://wiki.strongswan.org/"
        elog
 }
+

Comment 3 Bjarke Istrup Pedersen (RETIRED) gentoo-dev

2013-06-30 18:04:18 UTC

I have added it to 5.0.4-r1 :-)