mirror/freebsd-ports
1
0
Fork 0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-18 03:46:03 +00:00
Code Issues Releases Activity
b8d08821dc
freebsd-ports/security/ipsec-tools/Makefile
Renato Botelho 485163afc0 Makefile: 
- introduce OPTIONS to enable/disable features
- add more features to the OPTION dialog
- choose reasonable defaults for OPTIONS (disabled patented stuff)
- remove usesless WRKSRC line
- move LDFLAGS to the place where it is necessary
- extend CONFIGURE_ARGS to set the directory for the adminport socket
  * Note: racoonctl is useless without adminport enabled
  * create the socket dir in post-install
- bump PORTREVISION that users notice the changes
- finally: remove one item from the TODO list on top of the Makefile ;)

pkg-descr:
- shortened by one line to please portlint

pkg-plist:
- slight reorganization
- add create instructions for the adminport socket dir for the
  "installing from package" case
- add removal instructions for the adminport socket dir

files/patch-configure:
- add some stuff to detect libiconv when the GSSAPI OPTION is enabled
- iconv is required for GSSAPI but the library is not added to LIBS
  in the original configure script
- Why not use USE_AUTOTOOLS and patch configure.ac?
  * because the leads to configure running twice which is useless
    overhead. I found no way to avoid this so we patch configure.

files/racoon.sh.in:
- add the adminsocket directory to required_dirs

PR:		ports/96368
Submitted by:	Joerg Pulz <Joerg.Pulz@frm2.tum.de>
Approved by:	maintainer
2006-05-03 16:01:58 +00:00

178 lines
4.3 KiB
Makefile
Raw Blame History

# New ports collection makefile for: ipsec-tools
# Date created: 20 dec 2004
# Whom: vanhu
#
# $FreeBSD$
# TODO: - libipsec issue ?
# - cleanup...
# - SYSCONFDIR
# - $LOCALBASE/sbin/setkey Vs /usr/sbin/setkey
PORTNAME= ipsec-tools
PORTVERSION= 0.6.5
PORTREVISION= 2
CATEGORIES= security net
MASTER_SITES= ${MASTER_SITE_SOURCEFORGE}
MASTER_SITE_SUBDIR= ipsec-tools
MAINTAINER= vanhu@netasq.com
COMMENT= KAME racoon IKE daemon, ipsec-tools version
CONFLICTS= racoon-[0-9]*
USE_RC_SUBR= racoon.sh
USE_OPENSSL= yes
USE_BZIP2= yes
GNU_CONFIGURE= yes
INSTALLS_SHLIB= yes
CONFIGURE_TARGET= --build=${MACHINE_ARCH}-portbld-freebsd${OSREL}
CONFIGURE_ARGS= --enable-shared --sysconfdir=${PREFIX}/etc/racoon \
--localstatedir=${STATEDIR:S/\/racoon//} \
--with-pkgversion=freebsd-${PORTVERSION}
STATEDIR= ${DESTDIR}/var/db/racoon
SUB_LIST+= STATEDIR=${STATEDIR}
PLIST_SUB+= STATEDIR=${STATEDIR}
OPTIONS= DEBUG "enable Debug support" on \
IPV6 "enable IPV6 support" on \
ADMINPORT "enable Admin port" off \
STATS "enable Statistics logging function" off \
DPD "enable Dead Peer Detection" on \
NATT "enable NAT-Traversal (kernel-patch required)" on \
FRAG "enable IKE fragmentation payload support" on \
HYBRID "enable Hybrid Mode-cfg and Xauth support" off \
PAM "enable PAM authentication" off \
GSSAPI "enable GSS-API authentication" off \
RADIUS "enable Radius authentication" off \
SAUNSPEC "enable Unspecified SA mode" off \
RC5 "enable RC5 encryption (patented)" off \
IDEA "enable IDEA encryption (patented)" off
MAN3= ipsec_set_policy.3 ipsec_strerror.3
MAN5= racoon.conf.5
MAN8= racoon.8 racoonctl.8 setkey.8 plainrsa-gen.8
PORTDOCS= *
.include <bsd.port.pre.mk>
.ifdef(WITH_DEBUG)
CONFIGURE_ARGS+= --enable-debug
.else
CONFIGURE_ARGS+= --disable-debug
.endif
.ifdef(WITH_IPV6)
CONFIGURE_ARGS+= --enable-ipv6
.else
CONFIGURE_ARGS+= --disable-ipv6
.endif
.ifdef(WITH_ADMINPORT)
CONFIGURE_ARGS+= --enable-adminport
.else
CONFIGURE_ARGS+= --disable-adminport
.endif
.ifdef(WITH_STATS)
CONFIGURE_ARGS+= --enable-stats
.else
CONFIGURE_ARGS+= --disable-stats
.endif
.ifdef(WITH_DPD)
CONFIGURE_ARGS+= --enable-dpd
.else
CONFIGURE_ARGS+= --disable-dpd
.endif
.ifdef(WITH_NATT)
CONFIGURE_ARGS+= --enable-natt=kernel
.else
CONFIGURE_ARGS+= --disable-natt
.endif
.ifdef(WITH_FRAG)
CONFIGURE_ARGS+= --enable-frag
.else
CONFIGURE_ARGS+= --disable-frag
.endif
.ifdef(WITH_HYBRID)
CONFIGURE_ARGS+= --enable-hybrid
.else
CONFIGURE_ARGS+= --disable-hybrid
.endif
.ifdef(WITH_PAM)
CONFIGURE_ARGS+= --with-libpam
.else
CONFIGURE_ARGS+= --without-libpam
.endif
.ifdef(WITH_GSSAPI)
USE_ICONV= yes
CFLAGS+= -I${LOCALBASE}/include
LDFLAGS+= -L${LOCALBASE}/lib
CONFIGURE_ARGS+= --enable-gssapi
.else
CONFIGURE_ARGS+= --disable-gssapi
.endif
.ifdef(WITH_RADIUS)
CONFIGURE_ARGS+= --with-libradius
.else
CONFIGURE_ARGS+= --without-libradius
.endif
.ifdef(WITH_SAUNSPEC)
CONFIGURE_ARGS+= --enable-samode-unspec
.else
CONFIGURE_ARGS+= --disable-samode-unspec
.endif
.ifdef(WITH_RC5)
CONFIGURE_ARGS+= --enable-rc5
.else
CONFIGURE_ARGS+= --disable-rc5
.endif
.ifdef(WITH_IDEA)
CONFIGURE_ARGS+= --enable-idea
.else
CONFIGURE_ARGS+= --disable-idea
.endif
.ifdef(WITH_NATT)
pre-configure:
@${ECHO_MSG} "===> -------------------------------------------------------------------------"
@${ECHO_MSG} "===> ATTENTION: You need a kernel patch to enable NAT-Traversal functionality!"
@${ECHO_MSG} "===> You can download the patch here:"
. if ${OSVERSION} < 500000
@${ECHO_MSG} "===> http://ipsec-tools.sf.net/freebsd_nat-t.diff"
. else
@${ECHO_MSG} "===> http://ipsec-tools.sf.net/freebsd6-natt.diff"
. endif
@${ECHO_MSG} "===> You might possibly have to do some steps manually if it fails to apply."
@${ECHO_MSG} "===> -------------------------------------------------------------------------"
@sleep 3
.endif
post-install:
@if [ -z `/sbin/sysctl -a | ${GREP} -q ipsec && ${ECHO_CMD} ipsec` ]; then \
${ECHO_MSG} "WARNING: IPsec feature is disabled on this host"; \
${ECHO_MSG} " You must build the kernel if you want to run racoon on the host"; \
fi ;
@${MKDIR} ${EXAMPLESDIR}
@${RM} -f ${WRKSRC}/src/racoon/samples/*.in
@${CP} -r ${WRKSRC}/src/racoon/samples/* ${EXAMPLESDIR}
.if !defined(NOPORTDOCS)
@${MKDIR} ${DOCSDIR}
@${INSTALL_DATA} ${WRKSRC}/src/racoon/doc/* ${DOCSDIR}
.endif
.include <bsd.port.post.mk>
Reference in New Issue View Git Blame Copy Permalink