Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 90014 - Ebuild for ipsec-tools-0.5.1
Summary: Ebuild for ipsec-tools-0.5.1
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: New packages (show other bugs)
Hardware: All Linux
: High enhancement (vote)
Assignee: Peter Johanson (RETIRED)
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-04-21 23:30 UTC by r4v5
Modified: 2005-06-20 20:10 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Ebuild for ipsec-tools-0.5.1 (ipsec-tools-0.5.1.ebuild,1.55 KB, text/plain)
2005-04-21 23:31 UTC, r4v5 		Details
Patch to configure.ac for ipv6 problem. (ipsec.patch,307 bytes, patch)
2005-04-27 10:24 UTC, Dan A. Dickey 		Details | Diff
New ebuild for 0.5.1 (includes ipv6, but broken) (ipsec-tools-0.5.1.ebuild,1.74 KB, text/plain)
2005-04-30 14:44 UTC, r4v5 		Details
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description r4v5 2005-04-21 23:30:14 UTC 
ipsec-tools-0.5.1 was released March 22.
I removed the epatch line, as the fix for that exploit is in 0.5.1; is the sed removal of $include <sys/sysctl.h> from src/racoon/pfkey.c and src/setkey/setkey.c necessary?

Reproducible: Always
Steps to Reproduce:
1.
2.
3.
Comment 1 r4v5 2005-04-21 23:31:26 UTC 
Created attachment 56896 [details]
Ebuild for ipsec-tools-0.5.1
Comment 2 Dan A. Dickey 2005-04-27 09:30:30 UTC 
Any chance of renaming /etc/ipsec.conf.sample to
/etc/setkey.conf.sample?  I'm not certain, but it looks like
the /etc/ipsec.conf name is a holdover from freeswan...
Any opinions?  Perhaps this should be a separate bug, but
I thought if we are going to 0.5.1 soon, perhaps a name change
would be in order as well.
Comment 3 Dan A. Dickey 2005-04-27 10:23:53 UTC 
Also see bug 87920 for information about the ipv6 problem.
I'll attach the patch here also.
Comment 4 Dan A. Dickey 2005-04-27 10:24:36 UTC 
Created attachment 57402 [details, diff]
Patch to configure.ac for ipv6 problem.
Comment 5 r4v5 2005-04-30 14:39:25 UTC 
With the configur.ac patch placed in files/ipsec-tools-0.5.1-ipv6-configure.diff and the following patch, ./configure dies on me at this stage:

checking for openssl/sha2.h... no
checking if --enable-adminport option is specified... yes
checking if --enable-gssapi option is specified... no
checking for krb5-config... no
checking if --enable-hybrid option is specified... yes
checking if --enable-frag option is specified... yes
./configure: line 24004: syntax error near unexpected token `MD5_Init,'
./configure: line 24004: `RACOON_PATH_LIBS(MD5_Init, crypto)'
make: *** [config.status] Error 2

0.5.1 was previously installed (using my previous ebuild) and worked, although without ipv6.
But since ipv6 is broken in that build, i think massaging this one is necessary.
Comment 6 r4v5 2005-04-30 14:44:34 UTC 
Created attachment 57691 [details]
New ebuild for 0.5.1 (includes ipv6, but broken)

configure fails on my setup; are we still handling the libtoolize thing this
way? (only refs I saw were from late 2004)
Comment 7 Peter Johanson (RETIRED) gentoo-dev 2005-06-20 20:10:53 UTC 
I've just commited 0.5.2 to the tree, so marking this FIXED. Please see comment
#6 on bug #92363 for my opinion on changing the config file location.

As to that configure error, that was a problem as aclocal wasn't being called
with "-I ." so aclocal wasn't finding the definitions in the acracoon.m4 file.
See the ipsec-tools-0.5-r2.ebuild for the fix. Thanks.