Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMike Frysinger <vapier@gentoo.org>2006-02-04 00:33:18 +0000
committerMike Frysinger <vapier@gentoo.org>2006-02-04 00:33:18 +0000
commit96cf619c4a743d60d1e3dcf80f77bf36058397b5 (patch)
treed96cf44498fdd422c1a5861364599269dc3a42f2
parentMark 1.22 stable on ia64 (diff)
downloadhistorical-96cf619c4a743d60d1e3dcf80f77bf36058397b5.tar.gz
historical-96cf619c4a743d60d1e3dcf80f77bf36058397b5.tar.bz2
historical-96cf619c4a743d60d1e3dcf80f77bf36058397b5.zip
Version bump #121392 by Michail Baikov.
Package-Manager: portage-2.1_pre4-r1
Diffstat
-rw-r--r--net-firewall/iptables/ChangeLog7
-rw-r--r--net-firewall/iptables/Manifest18
-rw-r--r--net-firewall/iptables/files/digest-iptables-1.3.59
-rw-r--r--net-firewall/iptables/iptables-1.3.5.ebuild159
4 files changed, 186 insertions, 7 deletions
diff --git a/net-firewall/iptables/ChangeLog b/net-firewall/iptables/ChangeLog
index 66b5cb874e17..93e665684a27 100644
--- a/net-firewall/iptables/ChangeLog
+++ b/net-firewall/iptables/ChangeLog
@@ -1,6 +1,11 @@
# ChangeLog for net-firewall/iptables
# Copyright 1999-2006 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/net-firewall/iptables/ChangeLog,v 1.93 2006/01/06 10:52:41 dragonheart Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-firewall/iptables/ChangeLog,v 1.94 2006/02/04 00:33:18 vapier Exp $
+
+*iptables-1.3.5 (04 Feb 2006)
+
+ 04 Feb 2006; Mike Frysinger <vapier@gentoo.org> +iptables-1.3.5.ebuild:
+ Version bump #121392 by Michail Baikov.
06 Jan 2006; Daniel Black <dragonheart@gentoo.org> iptables-1.3.4.ebuild:
changing l7 filter from 2.0_beta to 2.0 - only change in the iptables patch
diff --git a/net-firewall/iptables/Manifest b/net-firewall/iptables/Manifest
index 6e1d7c1520f4..46f3e8991073 100644
--- a/net-firewall/iptables/Manifest
+++ b/net-firewall/iptables/Manifest
@@ -1,9 +1,9 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
-MD5 ea5617ce41439f0b5877a7f5893f860a ChangeLog 21260
-RMD160 61b484da88828379d277ad51106f5936a1da33e5 ChangeLog 21260
-SHA256 c1654edb5e893159afdcd87e404bd10fec29bef76ae7c0f22d66eac77311158f ChangeLog 21260
+MD5 a1c4d4858f018177902e34b133a23f46 ChangeLog 21403
+RMD160 98731dbec448837e7a2b048cdf7084965609b00b ChangeLog 21403
+SHA256 c52cc862105997e3815635774b5d1e4940c94f645fe898025078a3a219440c5e ChangeLog 21403
MD5 756f721b4c0c0646a174993befa199c4 files/1.2.11-files/CAN-2004-0986.patch 1365
RMD160 a184a41e0b3ad611f271e22e35adf684213307a5 files/1.2.11-files/CAN-2004-0986.patch 1365
SHA256 15c98cb61c8a2787bb6e4f01f01fd29b0e6a2731e817349bd5fa4c4cd458bef3 files/1.2.11-files/CAN-2004-0986.patch 1365
@@ -43,6 +43,9 @@ SHA256 be4f32cf2ace5054244d7792545e5b2e4c1c2a7365f9286623d9dad92b1a433f files/di
MD5 7468e344d3bb122269c60c1401e1cf84 files/digest-iptables-1.3.4 206
RMD160 e945856c1f13519f50bd9f597c44a776fdd69423 files/digest-iptables-1.3.4 206
SHA256 e6c6345290f98736ccdf46d0332d11980d66661948dc43d0d50c36f442206bea files/digest-iptables-1.3.4 206
+MD5 487c5df3e591b37fbe905e466b2b9560 files/digest-iptables-1.3.5 756
+RMD160 e8d5c054fc04e02e88abd7ecb02a8ff006c09202 files/digest-iptables-1.3.5 756
+SHA256 32d999c1b29451f454b3a53a4786425c5de23643018053be490b581e622c2b84 files/digest-iptables-1.3.5 756
MD5 dd4f4563c89d33fc6987043d95531e05 files/ip6tables-1.2.9-r1.confd 266
RMD160 e42235c98c8fec22bad9e8953939d7d0dc64cd1d files/ip6tables-1.2.9-r1.confd 266
SHA256 8434238fad47255691fda04dfff08ab65de44661678d680fab21cc51922a5c68 files/ip6tables-1.2.9-r1.confd 266
@@ -70,13 +73,16 @@ SHA256 8ffed50f6d6ebbf4159b72279adda848f5932f615901c4066cbbd466f089054f iptables
MD5 3bbf1fa61aea8f78b2f34239a9d221ef iptables-1.3.4.ebuild 5007
RMD160 2fc021b3781f17b0658a234b3a3289a5b9ceef67 iptables-1.3.4.ebuild 5007
SHA256 b8756e9febf9a0d9749c74df13be5022f19422cba56f53ed7a16b162aa35ae23 iptables-1.3.4.ebuild 5007
+MD5 d740f8a1d1a953dcd2236f8661c00d74 iptables-1.3.5.ebuild 5006
+RMD160 50e9b49e57e76aa5b4ec497565d12e603043e8a5 iptables-1.3.5.ebuild 5006
+SHA256 9380ce98e6068b5178e2211c0744181a487b0af17659bffd95b182de30245314 iptables-1.3.5.ebuild 5006
MD5 9a09f8d531c582e78977dbfd96edc1f2 metadata.xml 164
RMD160 f43cbec30b7074319087c9acffdb9354b17b0db3 metadata.xml 164
SHA256 f5f2891f2a4791cd31350bb2bb572131ad7235cd0eeb124c9912c187ac10ce92 metadata.xml 164
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
-iD8DBQFD4WNL2+ySkm8kpY0RAkOEAJ9XUosSMg3ZupmroVvpnKU4ZjcQSwCfcha2
-fbjN6JMk68YGCPWVqFbFyUU=
-=MZ3u
+iD8DBQFD4/aC2+ySkm8kpY0RAiVlAJ0Y/V++Y5ggq+ePrapGnOW76c7rbQCeK3Rq
+1e0gEJvGAfcTMiz9bygtQRc=
+=tqeG
-----END PGP SIGNATURE-----
diff --git a/net-firewall/iptables/files/digest-iptables-1.3.5 b/net-firewall/iptables/files/digest-iptables-1.3.5
new file mode 100644
index 000000000000..530eca3e2524
--- /dev/null
+++ b/net-firewall/iptables/files/digest-iptables-1.3.5
@@ -0,0 +1,9 @@
+MD5 9adae8be9562775a176fc1b275b3cb29 iptables-1.3.0-imq1.diff 5369
+RMD160 8ca1fa3bfea02d27232d8d8cb0a12586dd4537b5 iptables-1.3.0-imq1.diff 5369
+SHA256 0f9d36e48b3f1e83ef9e1d39c19e7271a889a31c65c396c416200eb143f1795b iptables-1.3.0-imq1.diff 5369
+MD5 00fb916fa8040ca992a5ace56d905ea5 iptables-1.3.5.tar.bz2 191820
+RMD160 3364e0f37f67ba4aa9ac9caa6f11adb67887e528 iptables-1.3.5.tar.bz2 191820
+SHA256 1d8ee8634d167b0f1a8872b6547910c11bae676699faf2b4bc2c84a128449c3c iptables-1.3.5.tar.bz2 191820
+MD5 dda42e68897845546e1b9715131c729b netfilter-layer7-v2.0.tar.gz 88489
+RMD160 8e2f76f44db06d5b1b098c2ea37a10befd28e8a8 netfilter-layer7-v2.0.tar.gz 88489
+SHA256 1a454c77a07c6447a2c641cc9d5f255023f1c1d5363b463825da5f3d5942168f netfilter-layer7-v2.0.tar.gz 88489
diff --git a/net-firewall/iptables/iptables-1.3.5.ebuild b/net-firewall/iptables/iptables-1.3.5.ebuild
new file mode 100644
index 000000000000..d3f43be7bfe1
--- /dev/null
+++ b/net-firewall/iptables/iptables-1.3.5.ebuild
@@ -0,0 +1,159 @@
+# Copyright 1999-2006 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/net-firewall/iptables/iptables-1.3.5.ebuild,v 1.1 2006/02/04 00:33:18 vapier Exp $
+
+inherit eutils flag-o-matic toolchain-funcs linux-info
+
+L7_PV="2.0"
+L7_P="netfilter-layer7-v${L7_PV}"
+L7_PATCH="iptables-layer7-2.0.patch"
+IMQ_PATCH="iptables-1.3.0-imq1.diff"
+
+DESCRIPTION="Linux kernel (2.4+) firewall, NAT and packet mangling tools"
+HOMEPAGE="http://www.iptables.org/ http://www.linuximq.net/ http://l7-filter.sf.net/"
+SRC_URI="http://iptables.org/projects/iptables/files/${P}.tar.bz2
+ extensions? (
+ http://www.linuximq.net/patchs/${IMQ_PATCH}
+ mirror://sourceforge/l7-filter/${L7_P}.tar.gz
+ )"
+
+LICENSE="GPL-2"
+SLOT="0"
+KEYWORDS="alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86"
+IUSE="ipv6 static extensions"
+
+DEPEND="virtual/os-headers
+ extensions? ( virtual/linux-sources )"
+RDEPEND=""
+
+pkg_setup() {
+ if use extensions ; then
+ ewarn "WARNING: 3rd party extensions has been enabled."
+ ewarn "This means that iptables will use your currently installed"
+ ewarn "kernel in ${KERNEL_DIR} as headers for iptables."
+ ewarn
+ ewarn "You may have to patch your kernel to allow iptables to build."
+ ewarn "Please check http://ftp.netfilter.org/pub/patch-o-matic-ng/snapshot/ for patches"
+ ewarn "for your kernel."
+ ewarn
+ ewarn "For layer 7 support emerge net-misc/l7-filter-${L7_PV} before this"
+ linux-info_pkg_setup
+ fi
+}
+
+src_unpack() {
+ unpack ${P}.tar.bz2
+ use extensions && unpack ${L7_P}.tar.gz
+ cd "${S}"
+
+ EPATCH_OPTS="-p0" \
+ epatch "${FILESDIR}"/1.3.1-files/install_ipv6_apps.patch
+ EPATCH_OPTS="-p1" \
+ epatch "${FILESDIR}"/1.3.1-files/install_all_dev_files.patch-1.3.1
+
+ # this provide's grsec's stealth match
+ EPATCH_OPTS="-p0" \
+ epatch "${FILESDIR}"/1.3.1-files/grsecurity-1.2.8-iptables.patch-1.3.1
+ sed -i \
+ -e "s/PF_EXT_SLIB:=/PF_EXT_SLIB:=stealth /g" \
+ extensions/Makefile || die "failed to enable stealth extension"
+
+ EPATCH_OPTS="-p1" \
+ epatch "${FILESDIR}"/1.3.1-files/${PN}-1.3.1-compilefix.patch
+
+ if use extensions ; then
+ EPATCH_OPTS="-p1" epatch "${DISTDIR}"/${IMQ_PATCH}
+ EPATCH_OPTS="-p1" epatch "${WORKDIR}"/${L7_P}/${L7_PATCH}
+ chmod +x extensions/{.IMQ-test*,.childlevel-test*,.layer7-test*}
+ fi
+}
+
+
+src_defs() {
+ # these are used in both of src_compile and src_install
+ myconf="${myconf} PREFIX="
+ myconf="${myconf} LIBDIR=/$(get_libdir)"
+ myconf="${myconf} BINDIR=/sbin"
+ myconf="${myconf} MANDIR=/usr/share/man"
+ myconf="${myconf} INCDIR=/usr/include"
+ # iptables and libraries are now installed to /sbin and /lib, so that
+ # systems with remote network-mounted /usr filesystems can get their
+ # network interfaces up and running correctly without /usr.
+ use ipv6 || myconf="${myconf} DO_IPV6=0"
+ use static && myconf="${myconf} NO_SHARED_LIBS=0"
+ export myconf
+ if ! use extensions ; then
+ export KERNEL_DIR="/usr"
+ diemsg=""
+ else
+ diemsg="Please check http://cvs.iptables.org/patch-o-matic-ng/updates/ if your kernel needs to be patched for iptables"
+ fi
+ export diemsg
+}
+
+
+src_compile() {
+ src_defs
+
+ # iptables will NOT work correctly unless -O[123] are present!
+ replace-flags -O0 -O2
+ get-flag -O || append-flags -O2
+
+ # prevent it from causing ICMP errors.
+ # http://bugs.gentoo.org/show_bug.cgi?id=23645
+ filter-flags -fstack-protector
+
+ emake -j1 \
+ COPT_FLAGS="${CFLAGS}" ${myconf} \
+ KERNEL_DIR="${KERNEL_DIR}" \
+ CC="$(tc-getCC)" \
+ || die "${diemsg}"
+}
+
+src_install() {
+ src_defs
+ make ${myconf} \
+ DESTDIR="${D}" \
+ KERNEL_DIR="${KERNEL_DIR}" \
+ install install-devel || die "${diemsg}"
+
+ dodir /usr/$(get_libdir)
+ mv -f "${D}"/$(get_libdir)/*.a "${D}"/usr/$(get_libdir)
+
+ keepdir /var/lib/iptables
+ newinitd "${FILESDIR}"/${PN}-1.3.2.init iptables
+ newconfd "${FILESDIR}"/${PN}-1.3.2.confd iptables
+
+ if use ipv6 ; then
+ keepdir /var/lib/ip6tables
+ newinitd "${FILESDIR}"/iptables-1.3.2.init ip6tables
+ newconfd "${FILESDIR}"/ip6tables-1.3.2.confd ip6tables
+ fi
+}
+
+pkg_postinst() {
+ einfo "This package now includes an initscript which loads and saves"
+ einfo "rules stored in /var/lib/iptables/rules-save"
+ use ipv6 && einfo "and /var/lib/ip6tables/rules-save"
+ einfo "This location can be changed in /etc/conf.d/iptables"
+ einfo
+ einfo "If you are using the iptables initsscript you should save your"
+ einfo "rules using the new iptables version before rebooting."
+ einfo
+ einfo "If you are upgrading to a >=2.4.21 kernel you may need to rebuild"
+ einfo "iptables."
+ einfo
+ ewarn "!!! ipforwarding is now not a part of the iptables initscripts."
+ einfo
+ einfo "To enable ipforwarding at bootup:"
+ einfo "/etc/sysctl.conf and set net.ipv4.ip_forward = 1"
+ if use ipv6 ; then
+ einfo "and/or"
+ einfo " net.ipv6.ip_forward = 1"
+ einfo "for ipv6."
+ fi
+ echo
+ ewarn "When upgrading from iptables-1.2.x, you may be unable to remove"
+ ewarn "rules added with iptables-1.2.x. This is a known issue, please see:"
+ ewarn "http://bugs.gentoo.org/show_bug.cgi?id=92535"
+}