diff options
author | Peter Volkov <pva@gentoo.org> | 2011-06-20 07:09:13 +0000 |
---|---|---|
committer | Peter Volkov <pva@gentoo.org> | 2011-06-20 07:09:13 +0000 |
commit | d9854cc16374ace7a462f85e01c6ed4364980ac5 (patch) | |
tree | fb8946ed0ebd5db7859ed8fab701256932bbb061 /net-firewall/xtables-addons/xtables-addons-1.36.ebuild | |
parent | net-im/ejabberd: moved to the tree (diff) | |
download | pva-d9854cc16374ace7a462f85e01c6ed4364980ac5.tar.gz pva-d9854cc16374ace7a462f85e01c6ed4364980ac5.tar.bz2 pva-d9854cc16374ace7a462f85e01c6ed4364980ac5.zip |
net-firewall/xtables-addons: Fix warning, and try to fix sandbox violation reported in bug 371997 by Marcin Mirosław.
svn path=/; revision=498
Diffstat (limited to 'net-firewall/xtables-addons/xtables-addons-1.36.ebuild')
-rw-r--r-- | net-firewall/xtables-addons/xtables-addons-1.36.ebuild | 160 |
1 files changed, 160 insertions, 0 deletions
diff --git a/net-firewall/xtables-addons/xtables-addons-1.36.ebuild b/net-firewall/xtables-addons/xtables-addons-1.36.ebuild new file mode 100644 index 0000000..ddbdcbd --- /dev/null +++ b/net-firewall/xtables-addons/xtables-addons-1.36.ebuild @@ -0,0 +1,160 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/net-firewall/xtables-addons/xtables-addons-1.36.ebuild,v 1.1 2011/06/16 13:50:06 pva Exp $ + +EAPI="4" +inherit eutils linux-info linux-mod multilib autotools + +DESCRIPTION="extensions not yet accepted in the main kernel/iptables (patch-o-matic(-ng) successor)" +HOMEPAGE="http://xtables-addons.sourceforge.net/" +SRC_URI="mirror://sourceforge/xtables-addons/${P}.tar.xz" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="modules" + +REQUIRED_USE=" + xtables_addons_ipset4? ( !xtables_addons_ipset6 ) + xtables_addons_ipset6? ( !xtables_addons_ipset4 )" + +MODULES="quota2 psd pknock lscan length2 ipv4options ipset6 ipset4 ipp2p iface gradm geoip fuzzy condition tee tarpit sysrq steal rawnat logmark ipmark echo dnetmap dhcpmac delude checksum chaos account" + +for mod in ${MODULES}; do + IUSE="${IUSE} xtables_addons_${mod}" +done + +DEPEND=">=net-firewall/iptables-1.4.3" + +RDEPEND="${DEPEND} + xtables_addons_ipset4? ( !net-firewall/ipset ) + xtables_addons_ipset6? ( + !net-firewall/ipset + net-libs/libmnl ) + xtables_addons_geoip? ( virtual/perl-Getopt-Long + dev-perl/Text-CSV_XS )" + +DEPEND="${DEPEND} + virtual/linux-sources" + +pkg_setup() { + if use modules; then + get_version + check_modules_supported + CONFIG_CHECK="NF_CONNTRACK NF_CONNTRACK_MARK ~CONNECTOR" + ERROR_CONNECTOR="Please, enable CONFIG_CONNECTOR if you wish to receive userspace notifications from pknock through netlink/connector" + linux-mod_pkg_setup + + if ! linux_chkconfig_present IPV6; then + SKIP_IPV6_MODULES="ip6table_rawpost ipset6" + ewarn "No IPV6 support in kernel. Disabling: ${SKIP_IPV6_MODULES}" + fi + if ! (use xtables_addons_ipset4 || use xtables_addons_ipset6) && + kernel_is -lt 2 6 35; then + die "${PN} with ipset requires kernel version >= 2.6.29" + fi + kernel_is -lt 2 6 29 && die "${PN} requires kernel version >= 2.6.29" + fi +} + +# Helper for maintainer: cheks if all possible MODULES are listed. +XA_qa_check() { + local all_modules + all_modules=$(sed -n '/^build_/{s/build_\(.*\)=.*/\L\1/;G;s/\n/ /;s/ $//;h}; ${x;p}' "${S}/mconfig") + if [[ ${all_modules} != ${MODULES} ]]; then + ewarn "QA: Modules in mconfig differ from \$MODULES in ebuild." + ewarn "Please, update MODULES in ebuild." + ewarn "'${all_modules}'" + fi +} + +# Is there any use flag set? +XA_has_something_to_build() { + local mod + for mod in ${MODULES}; do + use xtables_addons_${mod} && return + done + + eerror "All modules are disabled. What do you want me to build?" + eerror "Please, set XTABLES_ADDONS to any combination of" + eerror "${MODULES}" + die "All modules are disabled." +} + +# Parse Kbuid files and generates list of sources +XA_get_module_name() { + [[ $# != 1 ]] && die "XA_get_sources_for_mod: needs exactly one argument." + local mod objdir build_mod sources_list + mod=${1} + objdir=${S}/extensions + # Take modules name from mconfig + build_mod=$(sed -n "s/\(build_${mod}\)=.*/\1/Ip" "${S}/mconfig") + # strip .o, = and everything before = and print + sources_list=$(sed -n "/^obj-[$][{]${build_mod}[}]/\ + {s:obj-[^+]\+ [+]=[[:space:]]*::;s:[.]o::g;p}" \ + "${objdir}/Kbuild") + + if [[ -d ${S}/extensions/${sources_list} ]]; then + objdir=${S}/extensions/${sources_list} + sources_list=$(sed -n "/^obj-m/\ + {s:obj-[^+]\+ [+]=[[:space:]]*::;s:[.]o::g;p}" \ + "${objdir}/Kbuild") + fi + for mod_src in ${sources_list}; do + has ${mod_src} ${SKIP_IPV6_MODULES} || \ + echo " ${mod_src}(xtables_addons:${S}/extensions:${objdir})" + done +} + +src_prepare() { + epatch "${FILESDIR}/${P}-kernel-detection.patch" + epatch "${FILESDIR}/${P}-absolute-M.patch" + eautoreconf + + XA_qa_check + XA_has_something_to_build + + local mod module_name + if use modules; then + MODULE_NAMES="compat_xtables(xtables_addons:${S}/extensions:)" + fi + for mod in ${MODULES}; do + if use xtables_addons_${mod}; then + sed "s/\(build_${mod}=\).*/\1m/I" -i mconfig || die + if use modules; then + for module_name in $(XA_get_module_name ${mod}); do + MODULE_NAMES+=" ${module_name}" + done + fi + else + sed "s/\(build_${mod}=\).*/\1n/I" -i mconfig || die + fi + done + einfo "${MODULE_NAMES}" # for debugging + + sed -e 's/depmod -a/true/' -i Makefile.in || die + sed -e '/^all-local:/{s: modules::}' \ + -e '/^install-exec-local:/{s: modules_install::}' \ + -i extensions/Makefile.in || die + + use xtables_addons_geoip || sed -e '/^SUBDIRS/{s/geoip//}' -i Makefile.in +} + +src_configure() { + set_arch_to_kernel # .. or it'll look for /arch/amd64/Makefile + econf --prefix="${EPREFIX}/" \ + --libexecdir="${EPREFIX}/$(get_libdir)/" \ + --with-kbuild="${KV_DIR}" +} + +src_compile() { + emake CFLAGS="${CFLAGS}" CC="$(tc-getCC)" V=1 + use modules && BUILD_TARGETS="modules" linux-mod_src_compile +} + +src_install() { + emake DESTDIR="${D}" install + use modules && linux-mod_src_install + dodoc -r README doc/* + find "${ED}" -type f -name '*.la' -exec rm -rf '{}' '+' +} |