commit e2a4aa92abf9c4c246dcb4e69a176b4704fd9dca Author: ace Date: Mon Oct 9 05:27:09 2017 +0300 ace-overlay: first commit diff --git a/README.md b/README.md new file mode 100644 index 0000000..17db5ef --- /dev/null +++ b/README.md @@ -0,0 +1,12 @@ +## With Gentoo repos.conf: +sudo /bin/bash -c 'echo "[ace-overlay] +location = /usr/local/portage/ace-overlay +sync-type = git +sync-uri = http://gitlab/ace/ace-overlay.git +auto-sync = yes +clone-depth = 0" > /etc/portage/repos.conf/ace-overlay.conf' + +## With Layman: +curl -k --request GET "https://gitlab/api/v4/projects/2/repository/files/ace-overlay.xml?ref=master" 2>/dev/null | python2.7 -c 'import sys, json, base64; print base64.standard_b64decode(json.load(sys.stdin)["content"])' > /tmp/ace-overlay.xml + +sudo layman -o file:///tmp/ace-overlay.xml -f -a ace-overlay diff --git a/ace-overlay.xml b/ace-overlay.xml new file mode 100644 index 0000000..0a4fe17 --- /dev/null +++ b/ace-overlay.xml @@ -0,0 +1,12 @@ + + + + ace-overlay + Overlay for Gentoo custom patches + http://gitlab/ace/ace-overlay + + ilia-vedoc@mail.ru + + http://gitlab/ace/ace-overlay.git + + diff --git a/metadata/layout.conf b/metadata/layout.conf new file mode 100644 index 0000000..d43e61c --- /dev/null +++ b/metadata/layout.conf @@ -0,0 +1 @@ +masters = gentoo diff --git a/net-vpn/gvpe/ChangeLog b/net-vpn/gvpe/ChangeLog new file mode 100644 index 0000000..65006e1 --- /dev/null +++ b/net-vpn/gvpe/ChangeLog @@ -0,0 +1,24 @@ +# ChangeLog for net-misc/gvpe +# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2 +# $Header: $ + + 12 Jul 2009; Thomas Sachau (Tommy[D]) gvpe-2.21.ebuild: + Whitespace, drop unneeded dodir, use PN in SRC_URI + + 25 Sep 2008; Plamen Kosseff (blackdestiny) + -gvpe-2.2.ebuild, -files/configure.gvpe-2.2.patch, +gvpe-2.21.ebuild, + +files/configure.gvpe-2.21.patch: + Version bump + + 07 Sep 2008; Thomas Sachau (Tommy[D]) gvpe-2.2.ebuild: + Merge both inherits + + 06 Sep 2008; Tiago Cunha (tcunha) gvpe-2.2.ebuild: + Remove trailing whitespace + + 05 Sep 2008; Plamen Kosseff (blackdestiny) + +gvpe-2.2.ebuild, +files/configure.gvpe-2.2.patch, + +files/gvpe.conf.example, +files/gvpe.confd, +files/gvpe.rc, +files/if-up, + +metadata.xml: + New ebuild for bug 225121 tanks to Tommy[D] for the support and reviews + diff --git a/net-vpn/gvpe/Manifest b/net-vpn/gvpe/Manifest new file mode 100644 index 0000000..11cbc56 --- /dev/null +++ b/net-vpn/gvpe/Manifest @@ -0,0 +1,13 @@ +AUX configure.gvpe-2.21.patch 1595 SHA256 c5b3370fca29540a7d8f6595930895bb73531d7125117271bd59bbfbca65b970 SHA512 0a7ee490873b257b863b94e1daf33d0ad0a452a501d999685f16ec1e2007399d3cd231addc9a425782c1509ef354cf88f2f76fd43c9d3f02598b3f28b2cfeb70 WHIRLPOOL 37eb4536b140a9eac8205a268a7db309b71981d6ba29313d21efd66280064f50558588a422658966eb7b76f983b0debd0306d0baeeb65092c942fe2dcb46bcaa +AUX gvpe.conf.example 723 SHA256 e5a302273b8641faf7db4c8c1d6e44482f07f8a5434a86612b922e488aadf987 SHA512 1c3660259a7fa3346d62c93c617540931586b667349131c54b0cbb16980ee7e5b9ec32060d09f5d2c646dd3c4f46821de3671c1aa68d9cdda514455ce924cf6d WHIRLPOOL 85077d2a0b5b9ecd86eccfb695c78a6f38cb2521303dfc8e89dc8c9fbf3459d701c2e5d1a5671eef16b9229465b887dba192ea244347682f43529c2ce2c3a4cc +AUX gvpe.confd 67 SHA256 3b8476b50c5406430f45b509e015fd12c5883280ee87263b2887ffd7e643919f SHA512 c6b13eae127d51b8e269bb451c7faf12a2e9c0f27b2ed7c087b64f4297d84c5dc5d9ecb373ae6d2171b61f3c685360ac2d74978f8a7b3c7dcff967d40759c421 WHIRLPOOL 0dfc50b42008c3c860aafbbdae0a8d9f664e477c7e16687cc5a43156acdc7dcc5eda52be3490740df3012929c5aa89b687519bb4be67526c0be7424e7fafddfd +AUX gvpe.rc 607 SHA256 513201fbf999da25b2b5a65c4e9ff69ac765591bb805a695278b0fe5c0e47326 SHA512 b21c22b776f2e2f53fa52e1d9474016d8e366229f90d062a970ff15c562bab83d1018f1ef9cb717d159f7d1038664d3790c73694fcc48f34a5ff50c536385e81 WHIRLPOOL c7abff3330a589cffccaa11afce6aae7d54d648c56f6e46c9d761b8d9365ef67a771053fdf52515d4f6d0289db26133e22fa8ef37fef737310ebbf7ccef22c51 +AUX if-up 135 SHA256 f658c1512ad81c549c1aee49fccdd0f02005b23805f88712252bd00314e4212d SHA512 0fde496757369c0799b8ee0becf2e01cf83040d63478b2495bde6891211778fa4a22cc615f3c68a37f7e72b26c1718a76e2a7f16c50eb4753c22f372d2e9af07 WHIRLPOOL 55ca732c14532a1b8fb2c4930862ee33db259fb75e2abe064a4d58942d73e3198b0c91e405aecebda85396ae61f56cbe7ef19e01d8e1bdd765d611949be4f167 +DIST gvpe-2.21.tar.gz 495636 SHA256 de242e8b6f8e9f15c57b345e4302f6c67c3e0754d75b67bc8da2e03867c46ce6 SHA512 074178914667c8f3cb8bfbac46d0796b1583f913cff294e72df57e520d56ac844c916a90992655a89b35e433baba7d9dff1b1712c85e323ced89a3c98c3f5266 WHIRLPOOL 433ce5d8220b099bc03c7d2e86acbcb31d4531089ff8f034f7d689f45fe5d816e8a47ba171bd10ad30a091e3e5a8de5ec81540d77f4b737d7a7e6874acc6ec13 +DIST gvpe-2.25.tar.gz 516339 SHA256 73c32d9a28fadd6aa531e0fed27c7a96bc0e5e9a5626ebf70368eaad3dbb51bf SHA512 9122efde787641603c91e067f03f4534c137e5cd274b1d096652cc176335bef6b36662fae1ab2330af6ca17043249086c1c7ee0643f8854154938e161e452e3d WHIRLPOOL c9a83e310a77cc51c8f8c2ebd1f74000b475a19bf6718a5f6ae317b7534d5c0cde301b4376549150df9fe4ffdf609edfb501e0fca57a69aa89dfd40802c5fe6e +DIST gvpe-3.0.tar.gz 519289 SHA256 0e0a2db4dc7ac591c4368989329773a1b2399bca959d1cc10fa9f95884acc1ec SHA512 b1a917277746226c78e083aaaf80cbfa96dd311a77229cbc81ad306eb1a7f996e2bc3e40cc6e80edd9e7df69f9c891154ee8118d5d57a5c05fb1cb224b9e59a7 WHIRLPOOL 9704a3643d6950b0dbe2172a56749e8ddeee5c148a5a884d708188f3a60b8eba320000f822bfb1dbd8cc42c5b3a306bef34fcd75f0531a6f9f1bee6c5cdc4b23 +EBUILD gvpe-2.21.ebuild 3526 SHA256 8d3a6035e78bcd3766cabe54fccb26e107dfc6137195e25a66218ea5a42eb90c SHA512 bce11abc37c0c8f25528a3d13c1c08403832f66220abd3400b1196083b3576904e4a6911e9233ed50dadfd5b5b2b89ccfe54355512fd3849d7c8ff500ad789fb WHIRLPOOL 901bbdb8e51e997b4188219b09a398d12e8df660478ab1996510de2cd0960ee27a22f597abd54aff17c7c1ee45834f31a0685b2ee2fcb798361a5e0093bf1b4a +EBUILD gvpe-2.25.ebuild 3436 SHA256 75e947416f57a7b98e0658b941f534739511df6e72adebf3877dcd37f9338c52 SHA512 ac4854acbe2d653a0779e50fee950478788d13b9bfa414e1c22c3deeef0f2789e71e3585d5dc84067d0e2f502a480420cbae833876b7aa28af69b55161e2fec7 WHIRLPOOL 40808308f51cfe150e2620f3e2e918a857e7cd73729554b613142802b129349bb0cc3016786c1824cf4a1cff2e7be759eabcd73b5b54c76dba99c34ecda0670e +EBUILD gvpe-3.0.ebuild 3474 SHA256 382f70657dcc5c894a326d05dfc80e356584725f7c6ba9ad0451de72a71161a6 SHA512 62f3a5d96daf428975f40a543b365ef9296f939c0727a06e026a5b42e6a11298f05900057373149878c07463626a46c451c4e9f847f1005a8285984cd743424a WHIRLPOOL d6af093519f7c8b4e8953a83d0b8107631d6def87409d50045ef51b1813a19f5ef12a8cec92128d92261a661cdd28469b137630055f3749f458bf4b3e4f916f4 +MISC ChangeLog 933 SHA256 e1cc983faded572bdf21f4516bd7a0725de22f464b2121a1c1b999f940e0cc7f SHA512 5950187dac76003fbf7fbf68f84dfd96d7307ba0d8a623d234a640d3919ea8b1e37d46879df80d0fd5d7fa9fd03ef9b5c985773f4b6f39e111b821bee7c83d42 WHIRLPOOL 221c48e5189293409611642775fe915fe4cba8344705a0b54ca543162032a94e1b93f082d6939fb67cee1e1ebae335a5e24ce7f55a7b35918d3523af1a963024 +MISC metadata.xml 1529 SHA256 8febe5ed8bd495d2f7fdd37fc8d9f758406fafb70379a7c16cfd2fc0c6d12ee8 SHA512 bb57cb89a1da2d405abf8cc294d75cbc57d472248f7c6d054a5f299a7243290303eb25514a25bd91f478add92392fe5d114a101aaa70f9413e189b3d3e4eee6b WHIRLPOOL 9a30a262adc27b83b5f54ad44d3bbd31786b0fe3811a8379b126e20a7ad0b8921f37db72c33bac009c34b306c28d0a16ed6df7d2c800fd8cc029e8597cc0d63d diff --git a/net-vpn/gvpe/files/configure.gvpe-2.21.patch b/net-vpn/gvpe/files/configure.gvpe-2.21.patch new file mode 100644 index 0000000..a804300 --- /dev/null +++ b/net-vpn/gvpe/files/configure.gvpe-2.21.patch @@ -0,0 +1,71 @@ +--- ./configure 2008-09-03 07:56:58.000000000 +0300 ++++ ./configure 2008-09-25 21:12:38.321109165 +0300 +@@ -11109,8 +11109,10 @@ + + # Check whether --enable-static-daemon was given. + if test "${enable_static_daemon+set}" = set; then +- enableval=$enable_static_daemon; LDFLAGS_DAEMON=-static +- ++ enableval=$enable_static_daemon ++if test "x$enableval" != "xno"; then ++ LDFLAGS_DAEMON=-static ++fi + fi + + +@@ -11131,10 +11133,11 @@ + # Check whether --enable-icmp was given. + if test "${enable_icmp+set}" = set; then + enableval=$enable_icmp; ++if test "x$enableval" != "xno"; then + cat >>confdefs.h <<_ACEOF + #define ENABLE_ICMP 1 + _ACEOF +- ++fi + + fi + +@@ -11142,10 +11145,11 @@ + # Check whether --enable-tcp was given. + if test "${enable_tcp+set}" = set; then + enableval=$enable_tcp; ++if test "x$enableval" != "xno"; then + cat >>confdefs.h <<_ACEOF + #define ENABLE_TCP 1 + _ACEOF +- ++fi + + fi + +@@ -11153,6 +11157,7 @@ + # Check whether --enable-dns was given. + if test "${enable_dns+set}" = set; then + enableval=$enable_dns; ++if test "x$enableval" != "xno"; then + if test "${ac_cv_header_gmp_h+set}" = set; then + { echo "$as_me:$LINENO: checking for gmp.h" >&5 + echo $ECHO_N "checking for gmp.h... $ECHO_C" >&6; } +@@ -11361,7 +11366,7 @@ + cat >>confdefs.h <<_ACEOF + #define ENABLE_DNS 1 + _ACEOF +- ++fi + + + fi +@@ -11370,10 +11375,11 @@ + # Check whether --enable-http-proxy was given. + if test "${enable_http_proxy+set}" = set; then + enableval=$enable_http_proxy; ++if test "x$enableval" != "xno"; then + cat >>confdefs.h <<_ACEOF + #define ENABLE_HTTP_PROXY 1 + _ACEOF +- ++fi + + fi + diff --git a/net-vpn/gvpe/files/gvpe.conf.example b/net-vpn/gvpe/files/gvpe.conf.example new file mode 100644 index 0000000..4be0e07 --- /dev/null +++ b/net-vpn/gvpe/files/gvpe.conf.example @@ -0,0 +1,19 @@ +# +# A simple gvpe configuration nothing fancy see gvpe.conf(5) for more info +# + +# udp-port = 4000 # the external port to listen on (configure your firewall) +# tcp-port = 119 +# mtu = 1400 # minimum MTU of all outgoing interfaces on all hosts +# ifname = vpn0 # the local network device name +# ip-proto = 17 # UDP. Not realy needed + +# node = first # just a nickname +# hostname = vpn-server-dns # the DNS name or IP address of the host +# enable-udp=yes +# router-priority=1 +# connect=always + +# node = second # this node is behind a firewall +# connect = never # so no connection attempts should be made and no hostname here + diff --git a/net-vpn/gvpe/files/gvpe.confd b/net-vpn/gvpe/files/gvpe.confd new file mode 100644 index 0000000..c162e11 --- /dev/null +++ b/net-vpn/gvpe/files/gvpe.confd @@ -0,0 +1,4 @@ +# the name of this node you HAVE to set that +# NODENAME="first" + + diff --git a/net-vpn/gvpe/files/gvpe.rc b/net-vpn/gvpe/files/gvpe.rc new file mode 100644 index 0000000..8c08c94 --- /dev/null +++ b/net-vpn/gvpe/files/gvpe.rc @@ -0,0 +1,32 @@ +#!/sbin/runscript +# Copyright 1999-2004 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header$ + +opts="reconnect" + +GVPED_PID=/var/run/gvped.pid +depend() { + use logger dns + need net +} + + +start() { + ebegin "Starting gvpe VPN" + start-stop-daemon --start --exec /usr/sbin/gvpe --pidfile "${GVPED_PID}" \ + -- -linfo -L ${NODENAME} + eend $? +} + +stop() { + ebegin "Stopping gvpe VPN" + start-stop-daemon --stop --exec /usr/sbin/gvpe --pidfile "${GVPED_PID}" + eend $? +} + +reconnect() { + ebegin "Reconnecting gpve VPN" + /usr/bin/gvpectrl --kill=HUP + eend $? +} diff --git a/net-vpn/gvpe/files/if-up b/net-vpn/gvpe/files/if-up new file mode 100644 index 0000000..e6d3949 --- /dev/null +++ b/net-vpn/gvpe/files/if-up @@ -0,0 +1,5 @@ +# +# You can put something here but if you use the genoo net.XXX scheme the +# net.XXX script will be auto started when evpn starts +# + diff --git a/net-vpn/gvpe/gvpe-2.21.ebuild b/net-vpn/gvpe/gvpe-2.21.ebuild new file mode 100644 index 0000000..b6e0777 --- /dev/null +++ b/net-vpn/gvpe/gvpe-2.21.ebuild @@ -0,0 +1,92 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: $ + +EAPI="1" + +inherit eutils linux-info + +DESCRIPTION="GNU Virtual Private Ethernet" +HOMEPAGE="http://savannah.gnu.org/projects/gvpe" +SRC_URI="mirror://gnu/${PN}/${P}.tar.gz" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="nls tcp +compression dns icmp http-proxy + cipher-aes-128 cipher-aes-192 +cipher-aes-256 cipher-blowfish + digset-sha512 digset-sha256 digset-sha1 +digset-ripemd160 digset-md5 digset-md4-insecure" + +DEPEND="dev-libs/libev + >=dev-libs/openssl-0.9.7c + nls? ( sys-devel/gettext ) + virtual/linux-sources" +RDEPEND=">=dev-libs/openssl-0.9.7c" + +src_compile() { + #Since gvpe does not support more than 1 cipher and more then 1 digset + #here we do some not so clever checks to ensure that only one is selected + local myEnc + local encCnt=0 + use cipher-aes-256 && myEnc="aes-256" && encCnt=$((encCnt+1)) + use cipher-aes-192 && myEnc="aes-192" && encCnt=$((encCnt+1)) + use cipher-aes-128 && myEnc="aes-128" && encCnt=$((encCnt+1)) + use cipher-blowfish && myEnc="bf" && encCnt=$((encCnt+1)) + + if [[ $encCnt<1 ]]; then + eerror "An encryption alogotithm have to be selected.\nAdd one of cipher-aes-256, cipher-aes-192, cipher-aes-128 or cipher-blowfish to your USE variable." + die; + elif [[ $encCnt>1 ]]; then + eerror "More then one ecryption alogorithm selected.\nRemove all but one of cipher-aes-256, cipher-aes-192, cipher-aes-128 or cipher-blowfish flags from your USE variable." + die; + fi + + encCnt=0 + local myDigset + use digset-sha512 && myDigset="sha512" && encCnt=$((encCnt+1)) + use digset-sha256 && myDigset="sha256" && encCnt=$((encCnt+1)) + use digset-sha1 && myDigset="sha1" && encCnt=$((encCnt+1)) + use digset-ripemd160 && myDigset="ripemd160" && encCnt=$((encCnt+1)) + use digset-md5 && myDigset="md5" && encCnt=$((encCnt+1)) + use digset-md4-insecure && myDigset="md4" && encCnt=$((encCnt+1)) + if [[ $encCnt<1 ]]; then + eerror "A digset algorithm have to be selected.\nAdd one of digset-sha512, digset-sha256, digset-sha1, digset-ripemd160, digset-md5 or digset-md4-insecure to your USE variable." + die; + elif [[ $encCnt>1 ]]; then + eerror "More then one digset alogorithm selected.\nRemove all but one of digset-sha512, digset-sha256, digset-sha1, digset-ripemd160, digset-md5 or digset-md4-insecure flags from your USE variable." + die; + fi + + #add proper support for --disable in the configure scrip + epatch "${FILESDIR}/configure.${P}.patch" + + #the hmac and rand flags are hardcoded this is not so good because + #it leaves the system more predictable. But I don't think that adding + #24 more use flags is a good idea too. + econf $(use_enable nls) \ + $(use_enable compression) \ + $(use_enable dns) \ + $(use_enable icmp) \ + $(use_enable http-proxy) \ + $(use_enable tcp) \ + --enable-hmac-length=16 --enable-rand-length=8 --enable-cipher=$myEnc \ + --enable-digest=$myDigset + emake || die +} + +src_install() { + emake DESTDIR="${D}" install || die + dodoc AUTHORS NEWS README TODO || die + newinitd "${FILESDIR}/gvpe.rc" gvpe || die + newconfd "${FILESDIR}/gvpe.confd" gvpe || die + insinto /etc/gvpe + doins "${FILESDIR}/gvpe.conf.example" || die + exeinto /etc/gvpe + doexe "${FILESDIR}/if-up" || die +} + +pkg_postinst() { + linux_chkconfig_present TUN || ewarn "This package requires the tun/tap kernel device." + einfo "Edit /etc/conf.d/gvpe and /etc/gvpe/gvpe.conf" + ewarn "All nodes in your VPN have to use the same combination of digset and cipher!" +} diff --git a/net-vpn/gvpe/gvpe-2.25.ebuild b/net-vpn/gvpe/gvpe-2.25.ebuild new file mode 100644 index 0000000..e3be9a6 --- /dev/null +++ b/net-vpn/gvpe/gvpe-2.25.ebuild @@ -0,0 +1,89 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: $ + +EAPI="6" + +inherit eutils linux-info + +DESCRIPTION="GNU Virtual Private Ethernet" +HOMEPAGE="https://savannah.gnu.org/projects/gvpe" +SRC_URI="https://ftp.gnu.org/gnu/${PN}/${P}.tar.gz" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="nls tcp +compression dns icmp http-proxy + cipher-aes-128 cipher-aes-192 +cipher-aes-256 cipher-blowfish + +digset-sha512 digset-sha256 digset-sha1 digset-ripemd160 digset-md5 digset-md4-insecure" + +DEPEND="dev-libs/libev + >=dev-libs/openssl-0.9.7c + nls? ( sys-devel/gettext ) + virtual/linux-sources" +RDEPEND=">=dev-libs/openssl-0.9.7c" + +src_compile() { + #Since gvpe does not support more than 1 cipher and more then 1 digset + #here we do some not so clever checks to ensure that only one is selected + local myEnc + local encCnt=0 + use cipher-aes-256 && myEnc="aes-256" && encCnt=$((encCnt+1)) + use cipher-aes-192 && myEnc="aes-192" && encCnt=$((encCnt+1)) + use cipher-aes-128 && myEnc="aes-128" && encCnt=$((encCnt+1)) + use cipher-blowfish && myEnc="bf" && encCnt=$((encCnt+1)) + + if [[ $encCnt<1 ]]; then + eerror "An encryption alogotithm have to be selected.\nAdd one of cipher-aes-256, cipher-aes-192, cipher-aes-128 or cipher-blowfish to your USE variable." + die; + elif [[ $encCnt>1 ]]; then + eerror "More then one ecryption alogorithm selected.\nRemove all but one of cipher-aes-256, cipher-aes-192, cipher-aes-128 or cipher-blowfish flags from your USE variable." + die; + fi + + encCnt=0 + local myDigset + use digset-sha512 && myDigset="sha512" && encCnt=$((encCnt+1)) + use digset-sha256 && myDigset="sha256" && encCnt=$((encCnt+1)) + use digset-sha1 && myDigset="sha1" && encCnt=$((encCnt+1)) + use digset-ripemd160 && myDigset="ripemd160" && encCnt=$((encCnt+1)) + use digset-md5 && myDigset="md5" && encCnt=$((encCnt+1)) + use digset-md4-insecure && myDigset="md4" && encCnt=$((encCnt+1)) + if [[ $encCnt<1 ]]; then + eerror "A digset algorithm have to be selected.\nAdd one of digset-sha512, digset-sha256, digset-sha1, digset-ripemd160, digset-md5 or digset-md4-insecure to your USE variable." + die; + elif [[ $encCnt>1 ]]; then + eerror "More then one digset alogorithm selected.\nRemove all but one of digset-sha512, digset-sha256, digset-sha1, digset-ripemd160, digset-md5 or digset-md4-insecure flags from your USE variable." + die; + fi + + #the hmac and rand flags are hardcoded this is not so good because + #it leaves the system more predictable. But I don't think that adding + #24 more use flags is a good idea too. + econf $(use_enable nls) \ + $(use_enable compression) \ + $(use_enable dns) \ + $(use_enable icmp) \ + $(use_enable http-proxy) \ + $(use_enable tcp) \ + --enable-hmac-length=16 --enable-rand-length=8 --enable-cipher=$myEnc \ + --enable-digest=$myDigset + emake || die +} + +src_install() { + emake DESTDIR="${D}" install || die + dodoc AUTHORS NEWS README TODO || die + newinitd "${FILESDIR}/gvpe.rc" gvpe || die + newconfd "${FILESDIR}/gvpe.confd" gvpe || die + insinto /etc/gvpe + doins "${FILESDIR}/gvpe.conf.example" || die + exeinto /etc/gvpe + doexe "${FILESDIR}/if-up" || die +} + +pkg_postinst() { + linux_chkconfig_present TUN || ewarn "This package requires the tun/tap kernel device." + einfo "Edit /etc/conf.d/gvpe and /etc/gvpe/gvpe.conf" + ewarn "All nodes in your VPN have to use the same combination of digset and cipher!" +} diff --git a/net-vpn/gvpe/gvpe-3.0.ebuild b/net-vpn/gvpe/gvpe-3.0.ebuild new file mode 100644 index 0000000..5a17544 --- /dev/null +++ b/net-vpn/gvpe/gvpe-3.0.ebuild @@ -0,0 +1,89 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: $ + +EAPI="6" + +inherit eutils linux-info + +DESCRIPTION="GNU Virtual Private Ethernet" +HOMEPAGE="https://savannah.gnu.org/projects/gvpe" +SRC_URI="https://ftp.gnu.org/gnu/${PN}/${P}.tar.gz" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="nls tcp +compression dns icmp http-proxy + cipher-aes-128 cipher-aes-192 +cipher-aes-256 cipher-blowfish + +digset-sha512 digset-sha256 digset-sha1 digset-ripemd160 digset-md5 digset-md4-insecure" + +DEPEND="dev-libs/libev + >=dev-libs/openssl-0.9.7c + nls? ( sys-devel/gettext ) + virtual/linux-sources" +RDEPEND=">=dev-libs/openssl-0.9.7c" + +src_compile() { + #Since gvpe does not support more than 1 cipher and more then 1 digset + #here we do some not so clever checks to ensure that only one is selected + local myEnc + local encCnt=0 + use cipher-aes-256 && myEnc="aes-256" && encCnt=$((encCnt+1)) + use cipher-aes-192 && myEnc="aes-192" && encCnt=$((encCnt+1)) + use cipher-aes-128 && myEnc="aes-128" && encCnt=$((encCnt+1)) + use cipher-blowfish && myEnc="bf" && encCnt=$((encCnt+1)) + + if [[ $encCnt<1 ]]; then + eerror "An encryption alogotithm have to be selected.\nAdd one of cipher-aes-256, cipher-aes-192, cipher-aes-128 or cipher-blowfish to your USE variable." + die; + elif [[ $encCnt>1 ]]; then + eerror "More then one ecryption alogorithm selected.\nRemove all but one of cipher-aes-256, cipher-aes-192, cipher-aes-128 or cipher-blowfish flags from your USE variable." + die; + fi + + encCnt=0 + local myDigset + use digset-sha512 && myDigset="sha512" && encCnt=$((encCnt+1)) + use digset-sha256 && myDigset="sha256" && encCnt=$((encCnt+1)) + use digset-sha1 && myDigset="sha1" && encCnt=$((encCnt+1)) + use digset-ripemd160 && myDigset="ripemd160" && encCnt=$((encCnt+1)) + use digset-md5 && myDigset="md5" && encCnt=$((encCnt+1)) + use digset-md4-insecure && myDigset="md4" && encCnt=$((encCnt+1)) + if [[ $encCnt<1 ]]; then + eerror "A digset algorithm have to be selected.\nAdd one of digset-sha512, digset-sha256, digset-sha1, digset-ripemd160, digset-md5 or digset-md4-insecure to your USE variable." + die; + elif [[ $encCnt>1 ]]; then + eerror "More then one digset alogorithm selected.\nRemove all but one of digset-sha512, digset-sha256, digset-sha1, digset-ripemd160, digset-md5 or digset-md4-insecure flags from your USE variable." + die; + fi + + #the hmac and rand flags are hardcoded this is not so good because + #it leaves the system more predictable. But I don't think that adding + #24 more use flags is a good idea too. + econf $(use_enable nls) \ + $(use_enable compression) \ + $(use_enable dns) \ + $(use_enable icmp) \ + $(use_enable http-proxy) \ + $(use_enable tcp) \ + --enable-hmac-length=16 --enable-rsa-length=4096 --enable-cipher=$myEnc \ + --enable-hmac-digest=$myDigset --enable-auth-digest=$myDigset + emake || die +} + +src_install() { + emake DESTDIR="${D}" install || die + dodoc AUTHORS NEWS README TODO || die + newinitd "${FILESDIR}/gvpe.rc" gvpe || die + newconfd "${FILESDIR}/gvpe.confd" gvpe || die + insinto /etc/gvpe + doins "${FILESDIR}/gvpe.conf.example" || die + exeinto /etc/gvpe + doexe "${FILESDIR}/if-up" || die +} + +pkg_postinst() { + linux_chkconfig_present TUN || ewarn "This package requires the tun/tap kernel device." + einfo "Edit /etc/conf.d/gvpe and /etc/gvpe/gvpe.conf" + ewarn "All nodes in your VPN have to use the same combination of digset and cipher!" +} diff --git a/net-vpn/gvpe/metadata.xml b/net-vpn/gvpe/metadata.xml new file mode 100644 index 0000000..1a6c192 --- /dev/null +++ b/net-vpn/gvpe/metadata.xml @@ -0,0 +1,28 @@ + + + + maintainer-wanted@gentoo.org + GVPE creates a virtual ethernet (broadcasts supported, + any protocol that works with a normal ethernet should work with GVPE) by + creating encrypted host-to-host tunnels between multiple endpoints. + Unlike other virtual private "network" solutions which merely create a + single tunnel, GVPE creates a real network with multiple endpoints. + + + Enables LZO compression + Enables DNS transport support + Enables tcp transport support + Enables icmp transport support + Enables http-proxy transport support + Enables aes-256 cipher + Enables aes-192 cipher + Enables aes-128 cipher + Enables blowfish2 cipher + Enables digset sha512 + Enables digset sha256 + Enables digset sha1 + Enables digset md5 + Enables digset md4 + Enables digset ripemd160 + + diff --git a/profiles/repo_name b/profiles/repo_name new file mode 100644 index 0000000..799e178 --- /dev/null +++ b/profiles/repo_name @@ -0,0 +1 @@ +ace-overlay