#!/bin/bash # Copyright 2018-2019, Wayne Cuddy, wcuddyATgmailDOTcom # Copyright 2009-2013, Jonathan Larsen (agentc0re), SLC, UT # Copyright 2013-2015, Markus Hutmacher, mailing@markhu.de # All rights reserved. # # Redistribution and use of this script, with or without modification, is # permitted provided that the following conditions are met: # # 1. Redistributions of this script must retain the above copyright # notice, this list of conditions and the following disclaimer. # # THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED # WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF # MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO # EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, # PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; # OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, # WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR # OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF # ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. # # 2020-12-21 # - upgraded upstream version to 5.9.1 # - continue building bypass-lan but disable it by default so that the # admin can still enable it if necessary # # 2019-09-17 # - upgraded upstream version to 5.8.1 # - added additional "enable" options to DEFAULT_CONFIG_OPTS # # 2019-03-02: # - upgraded upstream version to 5.7.2 # - added DEFAULT_CONFIG_OPTS and EXTRA_CONFIG_OPTS # cd $(dirname $0) ; CWD=$(pwd) PRGNAM=strongswan VERSION=${VERSION:-5.9.1} BUILD=${BUILD:-1} TAG=${TAG:-_SBo} DEFAULT_CONFIG_OPTS="\ --enable-shared \ --enable-silent-rules \ --enable-openssl \ --enable-unity \ --enable-curl \ --enable-sql \ --enable-sqlite \ --enable-cmd \ --enable-af-alg \ --enable-gcrypt \ --enable-aesni \ --enable-sha3 \ --enable-files \ --enable-lookip \ --enable-eap-identity \ --enable-eap-mschapv2 \ --enable-eap-tls \ --enable-eap-ttls \ --enable-eap-radius \ --enable-ext-auth \ --enable-xauth-eap \ --enable-coupling \ --enable-dnscert \ --enable-eap-sim \ --enable-eap-sim-file \ --enable-eap-sim-file \ --enable-eap-aka \ --enable-eap-aka-3gpp \ --enable-eap-simaka-sql \ --enable-eap-simaka-pseudonym \ --enable-eap-simaka-reauth \ --enable-attr-sql \ --enable-dhcp \ --enable-bypass-lan \ --enable-connmark \ --enable-counters \ --enable-farp \ --enable-lookip \ " if [ -z "$ARCH" ]; then case "$( uname -m )" in i?86) ARCH=i586 ;; arm*) ARCH=arm ;; *) ARCH=$( uname -m ) ;; esac fi TMP=${TMP:-/tmp/SBo} PKG=$TMP/package-$PRGNAM OUTPUT=${OUTPUT:-/tmp} if [ "$ARCH" = "i586" ]; then SLKCFLAGS="-O2 -march=i586 -mtune=i686" LIBDIRSUFFIX="" elif [ "$ARCH" = "i686" ]; then SLKCFLAGS="-O2 -march=i686 -mtune=i686" LIBDIRSUFFIX="" elif [ "$ARCH" = "x86_64" ]; then SLKCFLAGS="-O2 -fPIC" LIBDIRSUFFIX="64" else SLKCFLAGS="-O2" LIBDIRSUFFIX="" fi set -e rm -rf $PKG mkdir -p $TMP $PKG $OUTPUT cd $TMP rm -rf $PRGNAM-$VERSION tar xvf $CWD/$PRGNAM-$VERSION.tar.bz2 cd $PRGNAM-$VERSION chown -R root:root . find -L . \ \( -perm 777 -o -perm 775 -o -perm 750 -o -perm 711 -o -perm 555 \ -o -perm 511 \) -exec chmod 755 {} \; -o \ \( -perm 666 -o -perm 664 -o -perm 640 -o -perm 600 -o -perm 444 \ -o -perm 440 -o -perm 400 \) -exec chmod 644 {} \; CFLAGS="$SLKCFLAGS" \ CXXFLAGS="$SLKCFLAGS" \ ./configure \ --prefix=/usr \ --libdir=/usr/lib${LIBDIRSUFFIX} \ --sysconfdir=/etc \ --localstatedir=/var \ --mandir=/usr/man \ --docdir=/usr/doc/$PRGNAM-$VERSION \ --build=$ARCH-slackware-linux \ ${CONFIG_OPTS:-$DEFAULT_CONFIG_OPTS} \ $EXTRA_CONFIG_OPTS make make install DESTDIR=$PKG find $PKG -print0 | xargs -0 file | grep -e "executable" -e "shared object" | grep ELF \ | cut -f 1 -d : | xargs strip --strip-unneeded 2> /dev/null || true find $PKG/usr/man -type f -exec gzip -9 {} \; for i in $( find $PKG/usr/man -type l ) ; do ln -s $( readlink $i ).gz $i.gz ; rm $i ; done mkdir -p $PKG/usr/doc/$PRGNAM-$VERSION cd $TMP/$PRGNAM-$VERSION cp -a COPYING ChangeLog INSTALL NEWS README TODO $PKG/usr/doc/$PRGNAM-$VERSION cat $CWD/$PRGNAM.SlackBuild > $PKG/usr/doc/$PRGNAM-$VERSION/$PRGNAM.SlackBuild mkdir -p $PKG/install cat $CWD/slack-desc > $PKG/install/slack-desc cat $CWD/doinst.sh > $PKG/install/doinst.sh cd $PKG # Don't clobber existing config files. The options passed to the # configure script determine which plugins are built. The plugin list # determines which configuration files are installed. It's not possible # to know this ahead of time since the user can modify the plugins to # this SlackBuild. This loop tracks configuration files produced during # the build. The doinst.sh script will use this information during # package installation to ensure modified configuration files are not # overwritten. for i in $(find etc -type f) do mv $i $i.new echo "config $i.new" >> $PKG/install/doinst.sh done # bypass-lan may cause problems for most users but it still used in many # situations. Disable it by default allowing the user to enable it if # necessary. sed -i -e 's/load = yes/load = no/' $PKG/etc/strongswan.d/charon/bypass-lan.conf.new /sbin/makepkg -l y -c n $OUTPUT/$PRGNAM-$VERSION-$ARCH-$BUILD$TAG.${PKGTYPE:-tgz}