| 1 |
|
# Copyright 2019-2025 Gentoo Authors
|
|
1 |
# Copyright 2019-2026 Gentoo Authors
|
| 2 |
2 |
# Distributed under the terms of the GNU General Public License v2
|
| 3 |
3 |
|
| 4 |
4 |
EAPI=8
|
| 5 |
5 |
|
| 6 |
|
inherit linux-info systemd
|
|
6 |
inherit linux-info meson systemd
|
| 7 |
7 |
|
| 8 |
8 |
if [[ ${PV} == 9999 ]]; then
|
| 9 |
|
inherit autotools git-r3
|
|
9 |
inherit git-r3
|
| 10 |
10 |
EGIT_REPO_URI="https://gitlab.com/openconnect/ocserv.git"
|
| 11 |
11 |
else
|
| 12 |
12 |
inherit verify-sig
|
| ... | ... | |
| 14 |
14 |
BDEPEND="verify-sig? ( sec-keys/openpgp-keys-ocserv )"
|
| 15 |
15 |
SRC_URI="https://www.infradead.org/ocserv/download/${P}.tar.xz
|
| 16 |
16 |
verify-sig? ( https://www.infradead.org/ocserv/download/${P}.tar.xz.sig )"
|
| 17 |
|
KEYWORDS="amd64 arm arm64 ppc64 ~riscv x86"
|
|
17 |
KEYWORDS="~amd64 ~arm ~arm64 ~ppc64 ~riscv ~x86"
|
| 18 |
18 |
fi
|
| 19 |
19 |
|
| 20 |
20 |
DESCRIPTION="Openconnect SSL VPN server"
|
| ... | ... | |
| 22 |
22 |
|
| 23 |
23 |
LICENSE="GPL-2"
|
| 24 |
24 |
SLOT="0"
|
| 25 |
|
IUSE="geoip kerberos +lz4 otp pam radius +seccomp systemd tcpd test"
|
| 26 |
|
RESTRICT="!test? ( test )"
|
|
25 |
IUSE="geoip kerberos +lz4 +nftables otp pam radius +seccomp systemd tcpd root-tests test"
|
|
26 |
RESTRICT="!test? ( test ) root-tests? ( test )"
|
|
27 |
PROPERTIES="root-tests? ( test_privileged )"
|
| 27 |
28 |
|
| 28 |
|
BDEPEND+="
|
| 29 |
|
net-misc/ipcalc
|
| 30 |
|
virtual/pkgconfig
|
| 31 |
|
test? (
|
| 32 |
|
net-libs/gnutls[tools(+)]
|
| 33 |
|
net-libs/socket_wrapper
|
| 34 |
|
net-vpn/openconnect
|
| 35 |
|
sys-libs/nss_wrapper
|
| 36 |
|
sys-libs/uid_wrapper
|
| 37 |
|
pam? ( sys-libs/pam_wrapper )
|
| 38 |
|
)
|
| 39 |
|
"
|
| 40 |
29 |
DEPEND="
|
| 41 |
30 |
dev-libs/libnl:3=
|
| 42 |
31 |
dev-libs/libev:0=
|
| ... | ... | |
| 57 |
46 |
systemd? ( sys-apps/systemd:0= )
|
| 58 |
47 |
tcpd? ( sys-apps/tcp-wrappers:0= )
|
| 59 |
48 |
"
|
| 60 |
|
RDEPEND="${DEPEND}"
|
| 61 |
|
|
| 62 |
|
PATCHES=(
|
| 63 |
|
"${FILESDIR}"/ocserv-1.3.0-seccomp-readlinkat.patch
|
| 64 |
|
)
|
|
49 |
RDEPEND="${DEPEND}
|
|
50 |
sys-apps/which
|
|
51 |
nftables? ( net-firewall/nftables )
|
|
52 |
!nftables? ( net-firewall/iptables )
|
|
53 |
"
|
|
54 |
BDEPEND+="
|
|
55 |
net-misc/ipcalc-ng
|
|
56 |
virtual/pkgconfig
|
|
57 |
test? (
|
|
58 |
${RDEPEND}
|
|
59 |
net-libs/gnutls[tools(+)]
|
|
60 |
net-libs/socket_wrapper
|
|
61 |
net-vpn/openconnect
|
|
62 |
sys-libs/nss_wrapper
|
|
63 |
sys-libs/uid_wrapper
|
|
64 |
pam? ( sys-libs/pam_wrapper )
|
|
65 |
root-tests? (
|
|
66 |
net-analyzer/nmap[ncat(+)]
|
|
67 |
net-misc/iperf
|
|
68 |
)
|
|
69 |
)
|
|
70 |
"
|
| 65 |
71 |
|
| 66 |
72 |
CONFIG_CHECK="~TUN ~UNIX_DIAG"
|
| 67 |
73 |
|
| 68 |
|
src_prepare() {
|
| 69 |
|
default
|
| 70 |
|
if [[ ${PV} == 9999 ]]; then
|
| 71 |
|
eautoreconf
|
| 72 |
|
fi
|
| 73 |
|
}
|
| 74 |
|
|
| 75 |
74 |
src_configure() {
|
| 76 |
|
local myconf=(
|
| 77 |
|
--without-root-tests
|
| 78 |
|
|
| 79 |
|
$(use_enable seccomp)
|
| 80 |
|
$(use_enable systemd)
|
| 81 |
|
|
| 82 |
|
$(use_with geoip)
|
| 83 |
|
$(use_with kerberos gssapi)
|
| 84 |
|
--without-llhttp
|
| 85 |
|
$(use_with lz4)
|
| 86 |
|
$(use_with otp liboath)
|
| 87 |
|
$(use_with radius)
|
| 88 |
|
$(use_with tcpd libwrap)
|
|
75 |
local emesonargs=(
|
|
76 |
--auto-features=disabled
|
|
77 |
$(meson_feature pam)
|
|
78 |
$(meson_feature radius)
|
|
79 |
$(meson_feature kerberos gssapi)
|
|
80 |
$(meson_feature otp liboath)
|
|
81 |
-Dlibnl=enabled
|
|
82 |
$(meson_feature geoip)
|
|
83 |
$(meson_feature lz4)
|
|
84 |
$(meson_feature seccomp)
|
|
85 |
$(meson_feature systemd)
|
|
86 |
$(meson_feature tcpd libwrap)
|
|
87 |
-Dlocal-pcl=false
|
|
88 |
$(meson_use root-tests)
|
|
89 |
-Dfirewall-script=$(usex nftables nftables iptables)
|
| 89 |
90 |
)
|
| 90 |
|
econf "${myconf[@]}"
|
| 91 |
|
}
|
| 92 |
|
|
| 93 |
|
src_test() {
|
| 94 |
|
addwrite /proc
|
| 95 |
|
if [[ ${LD_PRELOAD} == *libsandbox* ]]; then
|
| 96 |
|
# https://bugs.gentoo.org/961961
|
| 97 |
|
ewarn "Skipping tests: libsandbox in LD_PRELOAD"
|
| 98 |
|
return
|
| 99 |
|
fi
|
| 100 |
|
default
|
|
91 |
meson_src_configure
|
| 101 |
92 |
}
|
| 102 |
93 |
|
| 103 |
94 |
src_install() {
|
| 104 |
|
default
|
|
95 |
meson_src_install
|
| 105 |
96 |
|
| 106 |
97 |
dodoc doc/sample.{config,passwd}
|
| 107 |
98 |
use otp && dodoc doc/sample.otp
|
