Initial import; resolves bug #26796.

7 files changed, 128 insertions, 0 deletions

diff --git a/net-firewall/ipsec-tools/ChangeLog b/net-firewall/ipsec-tools/ChangeLog
new file mode 100644
index 000000000000..275c64ec060f
--- /dev/null
+++ b/net-firewall/ipsec-tools/ChangeLog
@@ -0,0 +1,13 @@
+# ChangeLog for net-firewall/ipsec-tools
+# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
+# $Header: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/ChangeLog,v 1.1 2003/12/16 18:04:33 plasmaroo Exp $
+
+*ipsec-tools-0.2.2 (16 Dec 2003)
+
+  16 Dec 2003; <plasmaroo@gentoo.org> ipsec-tools-0.2.2.ebuild,
+  files/ipsec.conf.sample, files/racoon.conf.d, files/racoon.init.d:
+
+  This is the initial commit of ipsec-tools. Thanks for this ebuild go to all
+  those involved in testing and developing it, please see Gentoo bug #26796 for
+  details.
+
diff --git a/net-firewall/ipsec-tools/Manifest b/net-firewall/ipsec-tools/Manifest
new file mode 100644
index 000000000000..7a426c3a96d5
--- /dev/null
+++ b/net-firewall/ipsec-tools/Manifest
@@ -0,0 +1,6 @@
+MD5 2a388ec3796d055df69095a16ab8e181 ChangeLog 571
+MD5 8906ebdd50784b94d1611eeaeebf407b ipsec-tools-0.2.2.ebuild 1095
+MD5 880e14fe000918f6a94070c38a33d6fe files/racoon.conf.d 479
+MD5 84cffb83a2579976f872a29d42767714 files/ipsec.conf.sample 260
+MD5 e183eace529012c4d6d61282b643d757 files/digest-ipsec-tools-0.2.2 69
+MD5 1b92416a20f032c713fb26c9cdfe7413 files/racoon.init.d 1129
diff --git a/net-firewall/ipsec-tools/files/digest-ipsec-tools-0.2.2 b/net-firewall/ipsec-tools/files/digest-ipsec-tools-0.2.2
new file mode 100644
index 000000000000..c9741d4d8fdd
--- /dev/null
+++ b/net-firewall/ipsec-tools/files/digest-ipsec-tools-0.2.2
@@ -0,0 +1 @@
+MD5 c7d6d7b89ffc102041daf6e9615ff9ab ipsec-tools-0.2.2.tar.gz 680563
diff --git a/net-firewall/ipsec-tools/files/ipsec.conf.sample b/net-firewall/ipsec-tools/files/ipsec.conf.sample
new file mode 100644
index 000000000000..078d5baf5fe8
--- /dev/null
+++ b/net-firewall/ipsec-tools/files/ipsec.conf.sample
@@ -0,0 +1,10 @@
+#!/usr/sbin/setkey -f
+
+flush;
+spdflush;
+
+spdadd xxx.xxx.xxx.xxx/32 0.0.0.0/0 any
+    -P out ipsec esp/tunnel/xxx.xxx.xxx.xxx-yyy.yyy.yyy.yyy/require;
+
+spdadd 0.0.0.0/0 xxx.xxx.xxx.xxx/32 any 
+    -P in ipsec esp/tunnel/yyy.yyy.yyy.yyy-xxx.xxx.xxx.xxx/require;
diff --git a/net-firewall/ipsec-tools/files/racoon.conf.d b/net-firewall/ipsec-tools/files/racoon.conf.d
new file mode 100644
index 000000000000..8d2f2c3483b1
--- /dev/null
+++ b/net-firewall/ipsec-tools/files/racoon.conf.d
@@ -0,0 +1,13 @@
+# Copyright 1999-2003 Gentoo Technologies, Inc.
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/files/racoon.conf.d,v 1.1 2003/12/16 18:04:33 plasmaroo Exp $
+
+# Config file for /etc/init.d/racoon
+
+# see man pages for racoon or run `racoon --help`
+# for valid cmdline options
+RACOON_OPTS="-4"
+
+RACOON_CONF="/etc/racoon/racoon.conf"
+RACOON_PSK_FILE="/etc/racoon/psk.txt"
+SETKEY_CONF="/etc/ipsec.conf"
diff --git a/net-firewall/ipsec-tools/files/racoon.init.d b/net-firewall/ipsec-tools/files/racoon.init.d
new file mode 100644
index 000000000000..35728362befe
--- /dev/null
+++ b/net-firewall/ipsec-tools/files/racoon.init.d
@@ -0,0 +1,51 @@
+#!/sbin/runscript
+# Copyright 1999-2002 Gentoo Technologies, Inc.
+# Distributed under the terms of the GNU General Public License v2
+
+depend() {
+	use net
+}
+
+checkconfig() {
+	if [ ! -e ${SETKEY_CONF} ] ; then
+		eerror "You need to configure setkey before starting racoon."
+		return 1
+	fi
+	if [ ! -e ${RACOON_CONF} ] ; then
+		eerror "You need a configuration file to start racoon."
+		return 1
+	fi
+	if [ ! -z ${RACOON_PSK_FILE} ] ; then
+		if [ ! -f ${RACOON_PSK_FILE} ] ; then
+			eerror "PSK file not found as specified."
+			eerror "Set RACOON_PSK_FILE in /etc/conf.d/racoon."
+			return 1
+		fi
+		case "`ls -Lldn ${RACOON_PSK_FILE}`" in
+			-r--------*)
+				;;
+			*)
+				eerror "Your defined PSK file should be mode 400 for security!"
+				return 1
+				;;
+		esac
+	fi
+}
+
+start() {
+	checkconfig || return 1
+	einfo "Loading ipsec policies from ${SETKEY_CONF}."
+	/usr/sbin/setkey -f ${SETKEY_CONF}
+	if [ $? -eq 1 ] ; then
+		eerror "Error while loading ipsec policies"
+	fi
+	ebegin "Starting racoon"
+	/usr/sbin/racoon -f ${RACOON_CONF} ${RACOON_OPTS}
+	eend $?
+}
+
+stop() {
+	ebegin "Stopping racoon"
+	kill `cat /var/run/racoon.pid`
+	eend $?
+}
diff --git a/net-firewall/ipsec-tools/ipsec-tools-0.2.2.ebuild b/net-firewall/ipsec-tools/ipsec-tools-0.2.2.ebuild
new file mode 100644
index 000000000000..e4fe68255012
--- /dev/null
+++ b/net-firewall/ipsec-tools/ipsec-tools-0.2.2.ebuild
@@ -0,0 +1,34 @@
+# Copyright 1999-2003 Gentoo Technologies, Inc. et al. <http://bugs.gentoo.org/show_bug.cgi?id=26796>
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/ipsec-tools-0.2.2.ebuild,v 1.1 2003/12/16 18:04:33 plasmaroo Exp $
+
+DESCRIPTION="IPsec-Tools is a port of KAME's IPsec utilities to the Linux-2.6 IPsec implementation."
+HOMEPAGE="http://ipsec-tools.sourceforge.net/"
+SRC_URI="mirror://sourceforge/${PN}/${P}.tar.gz"
+LICENSE="BSD"
+KEYWORDS="~x86"
+SLOT="0"
+IUSE=""
+DEPEND="virtual/glibc
+	>=dev-libs/openssl-0.9.6"
+
+pkg_setup() {
+	my_KV=`echo ${KV} | cut -f-2 -d "."`
+	if [ ${my_KV} != "2.6" ] ; then
+		echo; eerror "You need a 2.6.x kernel to use the ipsec tools!"; echo
+	fi
+}
+
+src_compile() {
+	unset CC
+	./configure --prefix=/usr --sysconfdir=/etc || die
+	emake || die
+}
+
+src_install() {
+	einstall || die
+	dodoc ChangeLog README NEWS
+	insinto /etc && doins ${FILESDIR}/ipsec.conf.sample
+	insinto /etc/conf.d && newins ${FILESDIR}/racoon.conf.d racoon
+	exeinto /etc/init.d && newexe ${FILESDIR}/racoon.init.d racoon
+}