From: "Florian Schmaus" <flow@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Subject: [gentoo-commits] repo/gentoo:master commit in: net-vpn/strongswan/
Date: Wed, 15 Jan 2025 09:22:54 +0000 (UTC) [thread overview]
Message-ID: <1736932893.c904828baee73971e49ace6b99d6170778813330.flow@gentoo> (raw)
commit: c904828baee73971e49ace6b99d6170778813330
Author: Dennis Eisele <kernlpanic <AT> dennis-eisele <DOT> de>
AuthorDate: Sat Apr 6 00:01:52 2024 +0000
Commit: Florian Schmaus <flow <AT> gentoo <DOT> org>
CommitDate: Wed Jan 15 09:21:33 2025 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c904828b
net-vpn/strongswan: add new use flags for plugins to ebuild
Signed-off-by: Dennis Eisele <kernlpanic <AT> dennis-eisele.de>
Bug: https://bugs.gentoo.org/504942
Closes: https://github.com/gentoo/gentoo/pull/36129
Signed-off-by: Florian Schmaus <flow <AT> gentoo.org>
net-vpn/strongswan/metadata.xml | 54 +++++++++++++++++++++-----
net-vpn/strongswan/strongswan-5.9.14-r1.ebuild | 10 +++--
2 files changed, 51 insertions(+), 13 deletions(-)
diff --git a/net-vpn/strongswan/metadata.xml b/net-vpn/strongswan/metadata.xml
index c81edb750eb7..780a710b9622 100644
--- a/net-vpn/strongswan/metadata.xml
+++ b/net-vpn/strongswan/metadata.xml
@@ -30,33 +30,69 @@
<flag name="non-root">Force IKEv1/IKEv2 daemons to normal user privileges. This might impose some restrictions mainly to the IKEv1 daemon. Disable only if you really require superuser privileges.</flag>
<flag name="openssl">Enable <pkg>dev-libs/openssl</pkg> plugin which is required for Elliptic Curve Cryptography (DH groups 19-21,25,26) and ECDSA. Also provides 3DES, AES, Blowfish, Camellia, CAST, DES, IDEA and RC5 ciphers along with MD2, MD4, MD5 and SHA1/2 hash algorithms, RSA and DH groups 1,2,5,14-18 and 22-24(4.4+) <pkg>dev-libs/openssl</pkg> has to be compiled with USE="-bindist".</flag>
<flag name="pkcs11">Enable pkcs11 support</flag>
+ <flag name="strongswan_plugins_acert">Enable support for X.509 attribute certificates</flag>
<flag name="strongswan_plugins_addrblock">Enable support for the addrblock crypto plugin</flag>
+ <flag name="strongswan_plugins_aes">Enable support for the aes plugin</flag>
<flag name="strongswan_plugins_aesni">Enable support for Intel AES-NI crypto plugin</flag>
- <flag name="strongswan_plugins_bypass-lan">Enable support for the bypass-lan plugin</flag>
- <flag name="strongswan_plugins_chapoly">Enable ChaCha20/Poly1305 AEAD implementation and ChaCha20 XOF plugin</flag>
- <flag name="strongswan_plugins_eap-radius">Enable EAP Radius plugin</flag>
- <flag name="strongswan_plugins_forecast">Enable multicast and broadcast forwarding plugin</flag>
- <flag name="strongswan_plugins_led">Enable support for the led plugin</flag>
- <flag name="strongswan_plugins_lookip">Enable support for the lookip plugin</flag>
- <flag name="strongswan_plugins_systime-fix">Enable support for the systime-fix plugin</flag>
- <flag name="strongswan_plugins_unity">Enable support for the unity plugin</flag>
- <flag name="strongswan_plugins_vici">Enable support for the vici plugin</flag>
+ <flag name="strongswan_plugins_af-alg">Enable support for the AF_ALG Linux kernel crypto API</flag>
+ <flag name="strongswan_plugins_agent">Enable support for RSA/ECDSA private keys</flag>
<flag name="strongswan_plugins_blowfish">Enable support for the blowfish plugin</flag>
+ <flag name="strongswan_plugins_botan">Enable support for the botan library plugin</flag>
+ <flag name="strongswan_plugins_bypass-lan">Enable support for the bypass-lan plugin</flag>
<flag name="strongswan_plugins_ccm">Enable support for the ccm plugin</flag>
+ <flag name="strongswan_plugins_chapoly">Enable ChaCha20/Poly1305 AEAD implementation and ChaCha20 XOF plugin</flag>
+ <flag name="strongswan_plugins_cmac">Enable support for the cmac plugin</flag>
<flag name="strongswan_plugins_ctr">Enable support for the ctr plugin</flag>
+ <flag name="strongswan_plugins_curve25519">Enable support for X25519 DH group and Ed25519 public key uthentication</flag>
+ <flag name="strongswan_plugins_des">Enable DES/3DES cipher implementation</flag>
+ <flag name="strongswan_plugins_dnskey">Enable support for parsing DNS public keys</flag>
+ <flag name="strongswan_plugins_drbg">Enable support for the drgb plugin</flag>
+ <flag name="strongswan_plugins_eap-radius">Enable EAP Radius plugin</flag>
<flag name="strongswan_plugins_error-notify">Enable support for the error-notify plugin</flag>
+ <flag name="strongswan_plugins_files">Enable support for local file:// URIs</flag>
+ <flag name="strongswan_plugins_fips-prf">Enable support for the fips-prf plugin</flag>
+ <flag name="strongswan_plugins_forecast">Enable multicast and broadcast forwarding plugin</flag>
<flag name="strongswan_plugins_gcm">Enable support for the gcm plugin</flag>
<flag name="strongswan_plugins_ha">Enable support for the ha plugin</flag>
+ <flag name="strongswan_plugins_hmac">Enable support for the hmac plugin</flag>
<flag name="strongswan_plugins_ipseckey">Enable support for the ipseckey plugin</flag>
<flag name="strongswan_plugins_kdf">Enable support for the kdf plugin</flag>
+ <flag name="strongswan_plugins_led">Enable support for the led plugin</flag>
+ <flag name="strongswan_plugins_lookip">Enable support for the lookip plugin</flag>
+ <flag name="strongswan_plugins_md4">Enable support for the md4 plugin</flag>
+ <flag name="strongswan_plugins_md5">Enable support for the md5 plugin</flag>
+ <flag name="strongswan_plugins_mgf1">Enable support for the mgf1 plugin</flag>
<flag name="strongswan_plugins_newhope">Enable plugin that allows key exchange based on post-quantum computer New Hope algorithm</flag>
+ <flag name="strongswan_plugins_nonce">Enable support the nonce plugin</flag>
<flag name="strongswan_plugins_ntru">Enable support for the ntru plugin</flag>
+ <flag name="strongswan_plugins_openxpki">Enable OCSP responder accessing OpenXPKI MySQL/MariaDB certificate database</flag>
<flag name="strongswan_plugins_padlock">Enable support for the padlock plugin</flag>
+ <flag name="strongswan_plugins_pem">Enable support for the pem plugin</flag>
+ <flag name="strongswan_plugins_pgp">Enable support for the pgp plugin</flag>
+ <flag name="strongswan_plugins_pkcs1">Enable pkcs1 support</flag>
+ <flag name="strongswan_plugins_pkcs12">Enable pkcs12 support</flag>
+ <flag name="strongswan_plugins_pkcs7">Enable pkcs7 support</flag>
+ <flag name="strongswan_plugins_pkcs8">Enable pkcs8 support</flag>
+ <flag name="strongswan_plugins_pubkey">Enable wrapper to handle raw public keys</flag>
+ <flag name="strongswan_plugins_random">Enable RNG support with /dev/[u]random</flag>
+ <flag name="strongswan_plugins_rc2">Enable plugin for RC2 support</flag>
<flag name="strongswan_plugins_rdrand">Enable support for the rdrand plugin</flag>
+ <flag name="strongswan_plugins_revocation">Enable X.509 CRL/OCSP revocation checking</flag>
<flag name="strongswan_plugins_save-keys">Enable plugin that saves IKE and/or ESP keys to files compatible with Wireshark (for debugging)</flag>
+ <flag name="strongswan_plugins_sha1">Enable plugin for SHA1 support</flag>
+ <flag name="strongswan_plugins_sha2">Enable plugin for SHA2 support</flag>
+ <flag name="strongswan_plugins_sha3">Enable plugin for SHA3 support</flag>
+ <flag name="strongswan_plugins_soup">Enable libsoup based HTTP fetcher</flag>
+ <flag name="strongswan_plugins_sshkey">Enable SSH key decoding routines</flag>
+ <flag name="strongswan_plugins_systime-fix">Enable support for the systime-fix plugin</flag>
+ <flag name="strongswan_plugins_test-vectors">Enable set of test vectors for various algorithms</flag>
<flag name="strongswan_plugins_unbound">Enable support for the unbound plugin</flag>
+ <flag name="strongswan_plugins_unity">Enable support for the unity plugin</flag>
+ <flag name="strongswan_plugins_vici">Enable support for the vici plugin</flag>
<flag name="strongswan_plugins_whitelist">Enable support for the whitelist plugin</flag>
+ <flag name="strongswan_plugins_x509">Enable plugin for advanced X.509 functionality</flag>
<flag name="strongswan_plugins_xauth-noauth">Enable support for the xauth-noauth plugin</flag>
+ <flag name="strongswan_plugins_xcbc">Enable support for XCBC plugin</flag>
</use>
<upstream>
<remote-id type="cpe">cpe:/a:strongswan:strongswan</remote-id>
diff --git a/net-vpn/strongswan/strongswan-5.9.14-r1.ebuild b/net-vpn/strongswan/strongswan-5.9.14-r1.ebuild
index 2e53e2a284f6..fc6826f18fb8 100644
--- a/net-vpn/strongswan/strongswan-5.9.14-r1.ebuild
+++ b/net-vpn/strongswan/strongswan-5.9.14-r1.ebuild
@@ -13,11 +13,13 @@ SLOT="0"
KEYWORDS="~amd64 ~arm ~arm64 ~ppc ~ppc64 ~riscv ~x86"
IUSE="+caps curl +constraints debug dhcp eap farp gcrypt +gmp ldap mysql networkmanager +non-root +openssl selinux sqlite systemd pam pkcs11"
-STRONGSWAN_PLUGINS_STD="eap-radius gcm led lookip systime-fix unity vici"
+STRONGSWAN_PLUGINS_STD="aes cmac curve25519 des dnskey drbg eap-radius fips-prf gcm hmac led lookip md5 nonce pem pgp
+pkcs1 pkcs7 pkcs8 pkcs12 pubkey random rc2 revocation sha1 sha2 sshkey systime-fix unity vici x509 xcbc"
STRONGSWAN_PLUGINS_OPT_DISABLE="kdf"
-STRONGSWAN_PLUGINS_OPT="addrblock aesni blowfish bypass-lan ccm chapoly ctr error-notify forecast
-ha ipseckey newhope ntru padlock rdrand save-keys unbound whitelist
-xauth-noauth"
+STRONGSWAN_PLUGINS_OPT="acert af-alg agent addrblock aesni botan blowfish bypass-lan
+ccm chapoly ctr error-notify forecast files gcm ha ipseckey md4 mgf1 ntru newhope
+openxpki padlock rdrand save-keys sha3 soup test-vectors unbound whitelist xauth-noauth"
+
for mod in $STRONGSWAN_PLUGINS_STD; do
IUSE="${IUSE} +strongswan_plugins_${mod}"
done
next reply other threads:[~2025-01-15 9:23 UTC|newest]
Thread overview: 115+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-01-15 9:22 Florian Schmaus [this message]
-- strict thread matches above, loose matches on Subject: below --
2025-01-18 16:31 [gentoo-commits] repo/gentoo:master commit in: net-vpn/strongswan/ Conrad Kostecki
2024-12-11 9:24 Florian Schmaus
2024-07-06 4:58 John Helmert III
2024-04-06 6:09 Joonas Niilola
2024-04-06 6:09 Joonas Niilola
2024-04-06 4:47 Sam James
2024-04-03 17:38 Florian Schmaus
2024-03-12 21:52 Arthur Zamarin
2024-03-12 21:04 Arthur Zamarin
2024-03-12 20:54 Arthur Zamarin
2024-01-16 8:39 Florian Schmaus
2023-10-31 12:25 Sam James
2023-10-08 21:51 Conrad Kostecki
2023-10-04 7:49 Joonas Niilola
2023-10-03 14:15 Sam James
2023-10-03 14:15 Sam James
2023-06-28 21:11 Sam James
2023-04-19 5:28 Sam James
2023-04-19 5:28 Sam James
2023-04-19 5:28 Sam James
2023-03-30 17:22 Arthur Zamarin
2023-03-17 18:25 Sam James
2023-03-14 23:14 Conrad Kostecki
2023-01-09 8:44 Florian Schmaus
2022-12-04 18:08 Arthur Zamarin
2022-12-04 6:52 Joonas Niilola
2022-12-04 6:52 Joonas Niilola
2022-11-02 5:11 Jakov Smolić
2022-10-05 7:46 Florian Schmaus
2022-10-05 7:46 Florian Schmaus
2022-10-05 6:46 Agostino Sarubbo
2022-10-05 6:14 Joonas Niilola
2022-10-05 6:14 Joonas Niilola
2022-08-16 7:44 Agostino Sarubbo
2022-08-16 5:50 Joonas Niilola
2022-08-16 5:50 Joonas Niilola
2022-08-10 8:20 Florian Schmaus
2022-06-29 15:35 Florian Schmaus
2022-05-06 10:04 Florian Schmaus
2022-05-06 10:04 Florian Schmaus
2022-02-02 15:23 Jakov Smolić
2022-02-02 9:47 Sam James
2022-02-02 8:04 Agostino Sarubbo
2022-02-02 8:02 Agostino Sarubbo
2022-01-28 7:53 Sam James
2022-01-27 15:32 Florian Schmaus
2022-01-12 8:25 Florian Schmaus
2022-01-07 15:06 Florian Schmaus
2022-01-06 18:33 Florian Schmaus
2022-01-06 18:33 Florian Schmaus
2022-01-02 14:15 Florian Schmaus
2022-01-02 14:15 Florian Schmaus
2021-06-17 22:18 Thomas Deutschmann
2021-06-17 22:18 Thomas Deutschmann
2021-06-17 20:32 Thomas Deutschmann
2021-06-07 6:25 Sergei Trofimovich
2021-06-03 8:23 Sam James
2021-06-03 0:45 Sam James
2021-06-01 0:46 Sam James
2021-05-31 20:45 David Seifert
2021-03-27 1:08 Thomas Deutschmann
2021-02-16 12:34 Sam James
2021-02-11 9:31 Sam James
2021-02-06 15:39 Sam James
2021-02-05 12:31 Sam James
2020-11-15 16:33 Thomas Deutschmann
2020-11-15 16:33 Thomas Deutschmann
2020-10-07 7:09 Agostino Sarubbo
2020-10-07 6:50 Agostino Sarubbo
2020-10-07 6:42 Agostino Sarubbo
2020-10-06 17:26 Sam James
2020-08-31 4:07 Sam James
2020-08-18 11:22 Agostino Sarubbo
2020-08-17 7:01 Agostino Sarubbo
2020-08-15 17:48 Sam James
2020-08-11 17:33 Thomas Deutschmann
2020-08-11 8:24 Sam James
2020-05-03 19:01 Thomas Deutschmann
2019-12-24 15:07 Thomas Deutschmann
2019-12-24 15:07 Thomas Deutschmann
2019-12-24 14:49 Mikle Kolyada
2019-12-15 18:03 Agostino Sarubbo
2019-12-15 14:07 Agostino Sarubbo
2019-12-15 13:43 Agostino Sarubbo
2019-10-20 20:20 Thomas Deutschmann
2019-04-30 10:26 Thomas Deutschmann
2019-03-10 14:19 Mikle Kolyada
2019-03-03 11:59 Mikle Kolyada
2019-03-02 20:49 Thomas Deutschmann
2019-03-02 20:02 Sergei Trofimovich
2019-01-06 21:57 Thomas Deutschmann
2018-11-15 12:35 Thomas Deutschmann
2018-11-07 22:59 Sergei Trofimovich
2018-10-31 17:17 Markus Meier
2018-10-18 11:31 Thomas Deutschmann
2018-10-17 16:10 Agostino Sarubbo
2018-10-17 10:19 Thomas Deutschmann
2018-10-17 10:05 Thomas Deutschmann
2018-09-14 22:13 Thomas Deutschmann
2018-09-02 19:24 Thomas Deutschmann
2018-03-13 11:59 Pacho Ramos
2018-03-03 22:16 Sergei Trofimovich
2018-02-24 15:17 Patrick Lauer
2018-02-05 21:27 Markus Meier
2018-01-26 18:21 Thomas Deutschmann
2018-01-23 16:41 Agostino Sarubbo
2017-11-26 23:23 David Seifert
2017-09-25 13:22 Patrick Lauer
2017-09-24 17:31 Patrick Lauer
2017-07-16 0:19 Aaron Bauman
2017-06-23 4:38 Markus Meier
2017-06-18 14:01 Agostino Sarubbo
2017-06-02 15:36 Bjarke Istrup Pedersen
2017-06-02 12:23 Bjarke Istrup Pedersen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1736932893.c904828baee73971e49ace6b99d6170778813330.flow@gentoo \
--to=flow@gentoo.org \
--cc=gentoo-commits@lists.gentoo.org \
--cc=gentoo-dev@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox