Context Navigation

-              r2f09cbe
+              rb917538
 digitemp-compile: libusb-compile
 dsniff-compile: libnids-compile openssl-compile libgdbm-compile
+elinks-compile: openssl-compile
 fprobe-compile: libpcap-compile
 freetype-compile: zlib-compile
 …
 mutt-compile: ncurses-compile openssl-compile
 mysql-compile: ncurses-compile zlib-compile readline-compile
+mrd6-compile: uclibc++-compile
 nano-compile: ncurses-compile
 net-snmp-compile: libelf-compile

package/6tunnel/Config.in

r2f09cbe	rb917538
4	4	default n
5	5	select FWRT_PACKAGE_KMOD_IPV6
	6	select BUSYBOX_CONFIG_FEATURE_IPV6
6	7	help
7	8	6tunnel allows you to use services provided by IPv6 hosts with IPv4-only

package/aiccu/Config.in

r2f09cbe	rb917538
5	5	select FWRT_PACKAGE_KMOD_IPV6
6	6	select FWRT_PACKAGE_LIBPTHREAD
	7	select BUSYBOX_CONFIG_FEATURE_IPV6
7	8	help
8	9	SixXS Automatic IPv6 Connectivity Client Utility

package/busybox/config/networking/Config.in

-              r2f09cbe
+              rb917538
 config BUSYBOX_CONFIG_FEATURE_IPV6
         bool "Enable IPv6 support"
         default y
+        default n
         help
           Enable IPv6 support to busybox. This makes applets that talk IP
 …
         default n
         help
           Small and static DNS server deamon.
+          Small and static DNS server daemon.
 config BUSYBOX_CONFIG_ETHER_WAKE

package/dhcp6/Config.in

-              r2f09cbe
+              rb917538
         prompt "dhcp6............................. IPv6 DHCP server and client"
         tristate
         default m if CONFIG_DEVEL
+        default n
         select FWRT_PACKAGE_LIBNCURSES
+        select BUSYBOX_CONFIG_FEATURE_IPV6
         help
+                This is the first ever open source implementation of Dynamic Host Configuration Protocol for IPv6 (DHCPv6) server and client on Linux Operating System. The server provides leases (durations or lifetimes) on IPv6 addresses to the clients who request for it
+                This is the first ever open source implementation of Dynamic
+                Host Configuration Protocol for IPv6 (DHCPv6) server and client
+                on Linux Operating System. The server provides leases
+                (durations or lifetimes) on IPv6 addresses to the clients who
+                request for it

package/dropbear/files/dropbear.init

r2f09cbe	rb917538
6	6	autostart)
7	7	test x"$ssh" = x"NO" && exit 0
	8	[ -x /usr/sbin/sshd ] -o [ x"$openssh" = x"YES" ] && exit 0
8	9	exec $0 start
9	10	;;

package/iproute2/Config.in

r2f09cbe	rb917538
15	15	default n
16	16	select FWRT_COMPILE_IPROUTE2
	17	select FWRT_PACKAGE_KMOD_IMQ
17	18	select FWRT_PACKAGE_KMOD_SCHED

package/iproute2/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              iproute2
 PKG_VERSION:=           2.6.15-060110
+PKG_VERSION:=           2.6.16-060323
 PKG_RELEASE:=           1
 PKG_MD5SUM:=            04f57a6d366d36426d276178b600f5c5
+PKG_MD5SUM:=            f31d4516b35bbfeaa72c762f5959e97c
 PKG_SOURCE_URL:=        http://developer.osdl.org/dev/iproute2/download/
-PKG_SOURCE:=            $(PKG_NAME)-$(PKG_VERSION).tar.gz
-WRKSRC=                 ${WRKDIR}/iproute2-$(PKG_VERSION)
 include $(TOPDIR)/mk/package.mk

package/iproute2/patches/002-iproute2-ipxfrm_no_sctp.patch

-              r2f09cbe
+              rb917538
 diff -Nur iproute2-2.6.11-050330/ip/ipxfrm.c iproute2-2.6.11-050330.new/ip/ipxfrm.c
 --- iproute2-2.6.11-050330/ip/ipxfrm.c  2005-04-01 21:58:11.000000000 +0200
 +++ iproute2-2.6.11-050330.new/ip/ipxfrm.c      2005-05-27 12:27:44.000000000 +0200
@@ -444,7 +444,6 @@
+diff -Nur iproute2-2.6.16-060323/ip/ipxfrm.c iproute2-2.6.16-060323.no_sctp/ip/ipxfrm.c
+--- iproute2-2.6.16-060323/ip/ipxfrm.c  2006-01-12 19:31:36.000000000 +0100
++++ iproute2-2.6.16-060323.no_sctp/ip/ipxfrm.c  2006-09-29 14:24:04.000000000 +0200
+@@ -444,8 +444,6 @@
         switch (sel->proto) {
         case IPPROTO_TCP:
         case IPPROTO_UDP:
 -       case IPPROTO_SCTP:
+-       case IPPROTO_DCCP:
         default: /* XXX */
                 if (sel->sport_mask)
                         fprintf(fp, "sport %u ", ntohs(sel->sport));
@@ -998,7 +997,6 @@
+@@ -999,8 +997,6 @@
                 switch (sel->proto) {
                 case IPPROTO_TCP:
                 case IPPROTO_UDP:
 -               case IPPROTO_SCTP:
+-               case IPPROTO_DCCP:
                         break;
                 default:

package/iptables/Config.in

r2f09cbe	rb917538
11	11	default n
12	12	select FWRT_COMPILE_IPTABLES
	13	select FWRT_PACKAGE_KMOD_IPTABLES
13	14	help
14	15	IPv4 firewall, NAT, and packet mangling tools.

package/iptables/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              iptables
 PKG_VERSION:=           1.3.5
+PKG_VERSION:=           1.3.6
 PKG_RELEASE:=           1
 PKG_MD5SUM:=            00fb916fa8040ca992a5ace56d905ea5
+PKG_MD5SUM:=            077e886a9c90a11bb47f3d7a4fc4a689
 PKG_INIT:=              45

package/iptables/patches/01-ipp2p.patch

-              r2f09cbe
+              rb917538
+diff -urN iptables.old/extensions/Makefile iptables.dev/extensions/Makefile
+--- iptables.old/extensions/Makefile    2005-07-20 04:22:56.000000000 +0200
++++ iptables.dev/extensions/Makefile    2006-03-23 14:42:28.000000000 +0100
+@@ -8,6 +8,10 @@
+ PF_EXT_SLIB:=ah addrtype comment connlimit connmark conntrack dscp ecn esp hashlimit helper icmp iprange length limit mac mark multiport owner physdev pkttype realm rpc sctp standard state tcp tcpmss tos ttl udp unclean CLASSIFY CONNMARK DNAT DSCP ECN LOG MARK MASQUERADE MIRROR NETMAP NFQUEUE NOTRACK REDIRECT REJECT SAME SNAT TARPIT TCPMSS TOS TRACE TTL ULOG
+ PF6_EXT_SLIB:=eui64 hl icmpv6 length limit mac mark multiport owner physdev standard tcp udp HL LOG NFQUEUE MARK TRACE
++
++# ipp2p
++PF_EXT_SLIB += ipp2p
++
+ # Optionals
+ PF_EXT_SLIB_OPTS:=$(foreach T,$(wildcard extensions/.*-test),$(shell KERNEL_DIR=$(KERNEL_DIR) $(T)))
+ PF6_EXT_SLIB_OPTS:=$(foreach T,$(wildcard extensions/.*-test6),$(shell KERNEL_DIR=$(KERNEL_DIR) $(T)))
+diff -urN iptables.old/extensions/libipt_ipp2p.c iptables.dev/extensions/libipt_ipp2p.c
+--- iptables.old/extensions/libipt_ipp2p.c      1970-01-01 01:00:00.000000000 +0100
++++ iptables.dev/extensions/libipt_ipp2p.c      2006-03-23 14:43:26.000000000 +0100
+diff -Nur iptables-1.3.6/extensions/libipt_ipp2p.c iptables-1.3.6.ipp2p/extensions/libipt_ipp2p.c
+--- iptables-1.3.6/extensions/libipt_ipp2p.c    1970-01-01 01:00:00.000000000 +0100
++++ iptables-1.3.6.ipp2p/extensions/libipt_ipp2p.c      2006-09-30 13:27:55.000000000 +0200
@@ -0,0 +1,401 @@
++
 …
 +}
++
+diff -urN iptables.old/include/linux/netfilter_ipv4/ipt_ipp2p.h iptables.dev/include/linux/netfilter_ipv4/ipt_ipp2p.h
+--- iptables.old/include/linux/netfilter_ipv4/ipt_ipp2p.h       1970-01-01 01:00:00.000000000 +0100
++++ iptables.dev/include/linux/netfilter_ipv4/ipt_ipp2p.h       2006-03-23 14:44:26.000000000 +0100
+diff -Nur iptables-1.3.6/extensions/Makefile iptables-1.3.6.ipp2p/extensions/Makefile
+--- iptables-1.3.6/extensions/Makefile  2006-09-28 18:40:32.000000000 +0200
++++ iptables-1.3.6.ipp2p/extensions/Makefile    2006-09-30 13:24:45.000000000 +0200
+@@ -13,6 +13,9 @@
+ PF6_EXT_SE_SLIB:=SECMARK CONNSECMARK
+ endif
++# ipp2p
++PF_EXT_SLIB += ipp2p
++
+ # Optionals
+ PF_EXT_SLIB_OPTS:=$(foreach T,$(wildcard extensions/.*-test),$(shell KERNEL_DIR=$(KERNEL_DIR) $(T)))
+ PF6_EXT_SLIB_OPTS:=$(foreach T,$(wildcard extensions/.*-test6),$(shell KERNEL_DIR=$(KERNEL_DIR) $(T)))
+diff -Nur iptables-1.3.6/include/linux/netfilter_ipv4/ipt_ipp2p.h iptables-1.3.6.ipp2p/include/linux/netfilter_ipv4/ipt_ipp2p.h
+--- iptables-1.3.6/include/linux/netfilter_ipv4/ipt_ipp2p.h     1970-01-01 01:00:00.000000000 +0100
++++ iptables-1.3.6.ipp2p/include/linux/netfilter_ipv4/ipt_ipp2p.h       2006-09-30 13:23:16.000000000 +0200
@@ -0,0 +1,31 @@
 +#ifndef __IPT_IPP2P_H
 +#define __IPT_IPP2P_H
 +#define IPP2P_VERSION "0.8.1_rc1"
++#define IPP2P_VERSION "0.8.2"
++
 +struct ipt_p2p_info {

package/liblzo/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              lzo
 PKG_VERSION:=           1.08
+PKG_VERSION:=           2.02
 PKG_RELEASE:=           1
 PKG_MD5SUM:=            ab94d3da364c7cbd5b78d76f1875b0f6
+PKG_MD5SUM:=            6760e5819f4238328709bf93bf10071c
 PKG_SOURCE_URL:=        http://www.oberhumer.com/opensource/lzo/download/
-PKG_SOURCE:=            $(PKG_NAME)-$(PKG_VERSION).tar.gz
 include $(TOPDIR)/mk/package.mk
 …
 $(IPKG_LIBLZO):
         install -d -m0755 $(IDIR_LIBLZO)/usr/lib
         $(CP) $(WRKINST)/usr/lib/liblzo.so.* $(IDIR_LIBLZO)/usr/lib
+        $(CP) $(WRKINST)/usr/lib/liblzo2.so.* $(IDIR_LIBLZO)/usr/lib
         $(RSTRIP) $(IDIR_LIBLZO)
         $(IPKG_BUILD) $(IDIR_LIBLZO) $(PACKAGE_DIR)
 $(STAGING_DIR)/usr/lib/liblzo.so: $(WRKBUILD)/.built
+$(STAGING_DIR)/usr/lib/liblzo2.so: $(WRKBUILD)/.built
         mkdir -p $(STAGING_DIR)/usr/include
         $(CP) $(WRKINST)/usr/include/lzo*.h $(STAGING_DIR)/usr/include/
+        $(CP) $(WRKINST)/usr/include/lzo $(STAGING_DIR)/usr/include/
         mkdir -p $(STAGING_DIR)/usr/lib
         $(CP) $(WRKINST)/usr/lib/liblzo.{a,so*} $(STAGING_DIR)/usr/lib/
         touch $(STAGING_DIR)/usr/lib/liblzo.so
+        $(CP) $(WRKINST)/usr/lib/liblzo2.{a,so*} $(STAGING_DIR)/usr/lib/
+        touch $@
 install-dev: $(STAGING_DIR)/usr/lib/liblzo.so
+install-dev: $(STAGING_DIR)/usr/lib/liblzo2.so
 uninstall-dev:
         rm -rf \
           $(STAGING_DIR)/usr/include/lzo*.h \
           $(STAGING_DIR)/usr/lib/liblzo.{a,so*} \
+          $(STAGING_DIR)/usr/include/lzo \
+          $(STAGING_DIR)/usr/lib/liblzo2.{a,so*} \
 compile-targets: install-dev

package/mrd6/Config.in

-              r2f09cbe
+              rb917538
         prompt "mrd6.............................. IPv6 multicast routing daemon"
         tristate
+        default n if CONFIG_DEVEL
+        select BUSYBOX_CONFIG_FEATURE_IPV6
+        default n
         help
                 Multicast is becoming a major component in next generation

package/mrd6/Makefile

r2f09cbe	rb917538
27	27	SPACE_OPTIMIZE=yes \
28	28	FULL_STATIC=yes \
29		CFLAGS="$(TARGET_CFLAGS) -DNO_INET6_OPTION" \
	29	CFLAGS="$(TARGET_CFLAGS) -DNO_INET6_OPTION -lm" \
30	30	CXX=$(TARGET_CROSS)g++ \
31	31	CC=$(TARGET_CC) \

package/ndisc/Config.in

-              r2f09cbe
+              rb917538
         prompt "ndisc6............................ An ICMPv6 neighbour discovery tool"
         tristate
         default m if CONFIG_DEVEL
+        default n
         select FWRT_COMPILE_NDISC6
+        select BUSYBOX_CONFIG_FEATURE_IPV6
         help
 …
         prompt "rdisc6............................ An ICMPv6 router discovery tool"
         tristate
         default m if CONFIG_DEVEL
+        default n
         select FWRT_COMPILE_NDISC6
+        select BUSYBOX_CONFIG_FEATURE_IPV6
         help
 …
         prompt "tcptraceroute6.................... A TCP/IPv6-based traceroute implementation"
         tristate
         default m if CONFIG_DEVEL
+        default n
         select FWRT_COMPILE_NDISC6
+        select BUSYBOX_CONFIG_FEATURE_IPV6
         help

package/openntpd/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              openntpd
+PKG_VERSION:=           3.7p1
+PKG_RELEASE:=           2
+PKG_MD5SUM:=            10ed8eefd760e5819efcf3277b118f47
+PKG_VERSION:=           3.9p1
+PKG_RELEASE:=           1
+PKG_MD5SUM:=            afc34175f38d08867c1403d9008600b3
+PKG_INIT:=              55
-# space separated list or special @SF for sourceforge projects
 PKG_SOURCE_URL:=        ftp://ftp.openbsd.org/pub/OpenBSD/OpenNTPD/ \
                         ftp://ftp.de.openbsd.org/pub/unix/OpenBSD/OpenNTPD/ \
                         ftp://ftp.fr.openbsd.org/pub/OpenBSD/OpenNTPD/ \
                         ftp://ftp.sunet.se/pub/OpenBSD/OpenNTPD/
-PKG_SOURCE:=            $(PKG_NAME)-$(PKG_VERSION).tar.gz
 include $(TOPDIR)/mk/package.mk
 …
         install -m0644 ./files/ntpd.conf $(IDIR_OPENNTPD)/etc/
         install -d -m0755 $(IDIR_OPENNTPD)/etc/init.d
         install -m0755 ./files/ntpd.init $(IDIR_OPENNTPD)/etc/init.d/S55ntpd
+        install -m0755 ./files/ntpd.init $(IDIR_OPENNTPD)/etc/init.d/S$(PKG_INIT)ntpd
         install -d -m0755 $(IDIR_OPENNTPD)/usr/sbin/
         install -m0755 $(WRKBUILD)/ntpd $(IDIR_OPENNTPD)/usr/sbin/

package/openntpd/files/ntpd.init

-              r2f09cbe
+              rb917538
 #!/bin/sh
 . /etc/rc.conf
+mkdir -p /tmp/.ntp
+[ x"$ntpd_flags" = x"NO" ] || /usr/sbin/ntpd $ntpd_flags
+case $1 in
+autostart)
+        test x"$ntpd_flags" = x"NO" && exit 0
+        exec $0 start
+        ;;
+start)
+        mkdir -p /tmp/.ntp
+        [ x"$ntpd_flags" = x"NO" ] || /usr/sbin/ntpd $ntpd_flags
+stop)
+        killall ntpd
+        ;;
+restart)
+        $0 stop
+        $0 start
+        ;;
+*)
+        echo "Usage: $0 {start | stop | restart}"
+        exit 1
+        ;;
+esac
+exit $?

package/openntpd/patches/01-adjtimex_linux.patch

-              r2f09cbe
+              rb917538
 diff -urN openntpd-3.7p1.orig/client.c openntpd-3.7p1/client.c
 --- openntpd-3.7p1.orig/client.c        2005-03-13 13:36:38.000000000 +0100
 +++ openntpd-3.7p1/client.c     2006-02-23 16:27:53.686827824 +0100
@@ -306,7 +306,7 @@
+diff -Nur openntpd-3.9p1/client.c openntpd-3.9p1.patched/client.c
+--- openntpd-3.9p1/client.c     2006-05-14 07:29:21.000000000 +0200
++++ openntpd-3.9p1.patched/client.c     2006-09-30 12:41:07.000000000 +0200
+@@ -321,7 +321,7 @@
         priv_adjtime();
 …
         return (0);
 diff -urN openntpd-3.7p1.orig/configure.ac openntpd-3.7p1/configure.ac
 --- openntpd-3.7p1.orig/configure.ac    2005-05-23 13:11:08.000000000 +0200
 +++ openntpd-3.7p1/configure.ac 2006-02-23 16:27:53.688827520 +0100
@@ -466,6 +466,11 @@
         [ builtin_arc4random=$withval ]
+ )
+diff -Nur openntpd-3.9p1/configure.ac openntpd-3.9p1.patched/configure.ac
+--- openntpd-3.9p1/configure.ac 2006-05-14 07:29:23.000000000 +0200
++++ openntpd-3.9p1.patched/configure.ac 2006-09-30 12:41:07.000000000 +0200
+@@ -617,6 +617,11 @@
+ fi
+ AC_SUBST(mansubdir)
 +AC_ARG_WITH(adjtimex,
 …
  if test "$ac_cv_func_arc4random" != "yes" && test "x$builtin_arc4random" != "xyes"; then
  saved_CPPFLAGS="$CPPFLAGS"
 diff -urN openntpd-3.7p1.orig/defines.h openntpd-3.7p1/defines.h
 --- openntpd-3.7p1.orig/defines.h       2005-05-23 02:16:33.000000000 +0200
 +++ openntpd-3.7p1/defines.h    2006-02-23 16:27:53.688827520 +0100
+diff -Nur openntpd-3.9p1/defines.h openntpd-3.9p1.patched/defines.h
+--- openntpd-3.9p1/defines.h    2006-05-14 07:29:21.000000000 +0200
++++ openntpd-3.9p1.patched/defines.h    2006-09-30 12:41:07.000000000 +0200
@@ -20,6 +20,10 @@
  # define setproctitle(x)
 …
  # if defined(HAVE_STRUCT_SOCKADDR_SA_LEN)
  #  define SA_LEN(x)    ((x)->sa_len)
 diff -urN openntpd-3.7p1.orig/openbsd-compat/Makefile.in openntpd-3.7p1/openbsd-compat/Makefile.in
 --- openntpd-3.7p1.orig/openbsd-compat/Makefile.in      2004-12-20 00:41:36.000000000 +0100
 +++ openntpd-3.7p1/openbsd-compat/Makefile.in   2006-02-23 16:27:53.901795144 +0100
+diff -Nur openntpd-3.9p1/openbsd-compat/Makefile.in openntpd-3.9p1.patched/openbsd-compat/Makefile.in
+--- openntpd-3.9p1/openbsd-compat/Makefile.in   2006-05-14 07:29:19.000000000 +0200
++++ openntpd-3.9p1.patched/openbsd-compat/Makefile.in   2006-09-30 12:41:07.000000000 +0200
@@ -9,7 +9,7 @@
- OPENBSD=       asprintf.o daemon.o inet_pton.o strlcpy.o
  COMPAT=                atomicio.o bsd-arc4random.o bsd-misc.o bsd-poll.o \
+                bsd-snprintf.o fake-rfc2553.o uidswap.o
+                bsd-snprintf.o bsd-getifaddrs.o bsd-setresuid.o \
+                bsd-setresgid.o fake-rfc2553.o
 -PORT=          port-qnx.o
 +PORT=          port-linux.o port-qnx.o
 …
  VPATH=@srcdir@
  CC=@CC@
 diff -urN openntpd-3.7p1.orig/openbsd-compat/openbsd-compat.h openntpd-3.7p1/openbsd-compat/openbsd-compat.h
 --- openntpd-3.7p1.orig/openbsd-compat/openbsd-compat.h 2004-12-19 04:04:22.000000000 +0100
 +++ openntpd-3.7p1/openbsd-compat/openbsd-compat.h      2006-02-23 16:27:53.948788000 +0100
@@ -44,6 +44,11 @@
+diff -Nur openntpd-3.9p1/openbsd-compat/openbsd-compat.h openntpd-3.9p1.patched/openbsd-compat/openbsd-compat.h
+--- openntpd-3.9p1/openbsd-compat/openbsd-compat.h      2006-05-14 07:29:19.000000000 +0200
++++ openntpd-3.9p1.patched/openbsd-compat/openbsd-compat.h      2006-09-30 12:41:07.000000000 +0200
+@@ -46,6 +46,11 @@
                  __attribute__((__format__ (printf, 2, 3)));
  #endif
 …
  int inet_pton(int, const char *, void *);
  #endif
 diff -urN openntpd-3.7p1.orig/openbsd-compat/port-linux.c openntpd-3.7p1/openbsd-compat/port-linux.c
 --- openntpd-3.7p1.orig/openbsd-compat/port-linux.c     1970-01-01 01:00:00.000000000 +0100
 +++ openntpd-3.7p1/openbsd-compat/port-linux.c  2006-02-23 16:27:53.996780704 +0100
+diff -Nur openntpd-3.9p1/openbsd-compat/port-linux.c openntpd-3.9p1.patched/openbsd-compat/port-linux.c
+--- openntpd-3.9p1/openbsd-compat/port-linux.c  1970-01-01 01:00:00.000000000 +0100
++++ openntpd-3.9p1.patched/openbsd-compat/port-linux.c  2006-09-30 12:41:07.000000000 +0200
@@ -0,0 +1,105 @@
 +/* $Id$ */

package/openssh/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              openssh
 PKG_VERSION:=           4.2p1
 PKG_RELEASE:=           3
 PKG_MD5SUM:=            df899194a340c933944b193477c628fa
+PKG_VERSION:=           4.4p1
+PKG_RELEASE:=           1
+PKG_MD5SUM:=            793a709a8de695c22f523024d7e9bf07
 PKG_INIT:=              50

package/openssh/files/sshd.init

-              r2f09cbe
+              rb917538
 #!/bin/sh
+for type in rsa dsa; do {
+  # check for keys
+  key=/etc/ssh/ssh_host_${type}_key
+  [ ! -f $key ] && {
+    # generate missing keys
+    [ -x /usr/bin/ssh-keygen ] && {
+      /usr/bin/ssh-keygen -N '' -t $type -f $key 2>&- >&- && exec $0 $*
+    } &
+    exit 0
+  }
+}; done
+mkdir -p /var/empty
+/usr/sbin/sshd
+. /etc/rc.conf
+case $1 in
+autostart)
+        test x"$openssh" = x"NO" && exit 0
+        exec $0 start
+        ;;
+start)
+        for type in rsa dsa; do {
+        # check for keys
+                key=/etc/ssh/ssh_host_${type}_key
+                [ -f $key ] || {
+                mkdir -p /etc/ssh
+                [ -x /usr/bin/ssh-keygen ] && {
+                        /usr/bin/ssh-keygen -N '' -t $type -f $key 2>&- >&-; \
+                        rv=$?; \
+                        fwcf commit 2>&1 | logger -t 'openssh-fwcf'; \
+                        [ $rv -eq 0 ] && exec $0 $*; } &
+                exit 0
+                }
+        done
+        mkdir -p /var/empty
+        /usr/sbin/sshd
+stop)
+        killall sshd
+        ;;
+restart)
+        $0 stop
+        $0 start
+        ;;
+*)
+        echo "Usage: $0 {start | stop | restart}"
+        exit 1
+        ;;
+esac
+exit $?

package/openssh/ipkg/openssh-server.postinst

r2f09cbe	rb917538
3	3	add_user sshd $(get_next_uid) $(get_next_gid) /var/run/sshd
4	4	add_group sshd $(get_next_gid)
5		add_rcconf openssh ~~sshd NO~~
	5	add_rcconf openssh openssh YES

package/openssl/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              openssl
 PKG_VERSION:=           0.9.8c
+PKG_VERSION:=           0.9.8d
 PKG_RELEASE:=           1
 PKG_MD5SUM:=            78454bec556bcb4c45129428a766c886
+PKG_MD5SUM:=            8ed1853538e1d05a1f5ada61ebf8bffa
 PKG_SOURCE_URL:=        http://www.openssl.org/source/ \

package/openswan/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              openswan
 PKG_VERSION:=           2.4.5
+PKG_VERSION:=           2.4.6
 PKG_RELEASE:=           1
+PKG_MD5SUM:=            a9a8e88313faceebfc5ceb1a9da9a3c4
+PKG_MD5SUM:=            b34d71ca49dedad017879b0e912d40dd
+PKG_INIT:=              60
 PKG_SOURCE_URL:=        http://www.openswan.org/download
+PKG_SOURCE:=            $(PKG_NAME)-$(PKG_VERSION).tar.gz
+PKG_SOURCE_URL:=        http://www.openswan.org/download \
+                        ftp://ftp.openswan.org/openswan/
 include $(TOPDIR)/mk/package.mk
 …
                 INC_USRLOCAL="/usr" \
                 install
-        -$(STRIP) $(IDIR_OPENSWAN)/usr/lib/ipsec/*
-        -$(STRIP) $(IDIR_OPENSWAN)/usr/libexec/ipsec/*
         rm -rf $(IDIR_OPENSWAN)/usr/share
         rm -rf $(IDIR_OPENSWAN)/usr/man
 …
         mkdir -p $(IDIR_OPENSWAN)/etc/init.d
         $(CP) $(IDIR_OPENSWAN)/etc/rc.d/init.d/ipsec \
                 $(IDIR_OPENSWAN)/etc/init.d/S60ipsec
+                $(IDIR_OPENSWAN)/etc/init.d/S$(PKG_INIT)ipsec
         rm $(IDIR_OPENSWAN)/etc/rc.d/init.d/ipsec
         find $(WRKBUILD) -name \*.old | xargs rm -rf
+        $(RSTRIP) $(IDIR_OPENSWAN)
         mkdir -p $(IDIR_OPENSWAN)/lib/modules/$(KERNEL_VERSION)
         $(CP) $(WRKBUILD)/modobj*/ipsec.$(KERNEL_MOD_SUFFIX) \

package/openswan/patches/scripts.patch

-              r2f09cbe
+              rb917538
 diff -Nur openswan-2.4.5rc5/programs/loggerfix openswan-2.4.5rc5.patched/programs/loggerfix
 --- openswan-2.4.5rc5/programs/loggerfix        1970-01-01 01:00:00.000000000 +0100
 +++ openswan-2.4.5rc5.patched/programs/loggerfix        2006-03-29 01:20:44.000000000 +0200
+diff -Nur openswan-2.4.6/programs/loggerfix openswan-2.4.6.scripts/programs/loggerfix
+--- openswan-2.4.6/programs/loggerfix   1970-01-01 01:00:00.000000000 +0100
++++ openswan-2.4.6.scripts/programs/loggerfix   2006-09-29 15:53:35.000000000 +0200
@@ -0,0 +1,5 @@
 +#!/bin/sh
 …
 +echo "$*" >> /dev/null
 +exit 0
 diff -Nur openswan-2.4.5rc5/programs/look/look.in openswan-2.4.5rc5.patched/programs/look/look.in
 --- openswan-2.4.5rc5/programs/look/look.in     2005-08-18 16:10:09.000000000 +0200
 +++ openswan-2.4.5rc5.patched/programs/look/look.in     2006-03-29 01:20:44.000000000 +0200
+diff -Nur openswan-2.4.6/programs/look/look.in openswan-2.4.6.scripts/programs/look/look.in
+--- openswan-2.4.6/programs/look/look.in        2005-08-18 16:10:09.000000000 +0200
++++ openswan-2.4.6.scripts/programs/look/look.in        2006-09-29 15:53:35.000000000 +0200
@@ -84,7 +84,7 @@
  then
 …
                 pat="$pat|$i\$"
         done
 diff -Nur openswan-2.4.5rc5/programs/_plutorun/_plutorun.in openswan-2.4.5rc5.patched/programs/_plutorun/_plutorun.in
 --- openswan-2.4.5rc5/programs/_plutorun/_plutorun.in   2006-01-06 00:45:00.000000000 +0100
 +++ openswan-2.4.5rc5.patched/programs/_plutorun/_plutorun.in   2006-03-29 01:20:44.000000000 +0200
+diff -Nur openswan-2.4.6/programs/_plutorun/_plutorun.in openswan-2.4.6.scripts/programs/_plutorun/_plutorun.in
+--- openswan-2.4.6/programs/_plutorun/_plutorun.in      2006-04-21 17:41:45.000000000 +0200
++++ openswan-2.4.6.scripts/programs/_plutorun/_plutorun.in      2006-09-29 15:53:35.000000000 +0200
@@ -147,7 +147,7 @@
                         exit 1
 …
                         echo Cannot write to directory to create \"$stderrlog\".
                         exit 1
 diff -Nur openswan-2.4.5rc5/programs/_realsetup/_realsetup.in openswan-2.4.5rc5.patched/programs/_realsetup/_realsetup.in
 --- openswan-2.4.5rc5/programs/_realsetup/_realsetup.in 2005-07-28 02:23:48.000000000 +0200
 +++ openswan-2.4.5rc5.patched/programs/_realsetup/_realsetup.in 2006-03-29 01:20:44.000000000 +0200
@@ -235,7 +235,7 @@
+diff -Nur openswan-2.4.6/programs/_realsetup/_realsetup.in openswan-2.4.6.scripts/programs/_realsetup/_realsetup.in
+--- openswan-2.4.6/programs/_realsetup/_realsetup.in    2006-05-05 20:49:45.000000000 +0200
++++ openswan-2.4.6.scripts/programs/_realsetup/_realsetup.in    2006-09-29 15:53:35.000000000 +0200
+@@ -232,7 +232,7 @@
         # misc pre-Pluto setup
 …
         if test " $IPSECforwardcontrol" = " yes"
         then
@@ -347,7 +347,7 @@
+@@ -344,7 +344,7 @@
                 lsmod 2>&1 | grep "^xfrm_user" > /dev/null && rmmod -s xfrm_user
         fi
 …
         perform rm -f $info $lock $plutopid
         perform echo "...Openswan IPsec stopped" "|" $LOGONLY
 diff -Nur openswan-2.4.5rc5/programs/send-pr/send-pr.in openswan-2.4.5rc5.patched/programs/send-pr/send-pr.in
 --- openswan-2.4.5rc5/programs/send-pr/send-pr.in       2005-04-18 01:04:46.000000000 +0200
 +++ openswan-2.4.5rc5.patched/programs/send-pr/send-pr.in       2006-03-29 01:20:44.000000000 +0200
+diff -Nur openswan-2.4.6/programs/send-pr/send-pr.in openswan-2.4.6.scripts/programs/send-pr/send-pr.in
+--- openswan-2.4.6/programs/send-pr/send-pr.in  2005-04-18 01:04:46.000000000 +0200
++++ openswan-2.4.6.scripts/programs/send-pr/send-pr.in  2006-09-29 15:53:35.000000000 +0200
@@ -402,7 +402,7 @@
                     else
 …
                     fi
                     echo "${fmtname}${desc}" >> $file
 diff -Nur openswan-2.4.5rc5/programs/setup/setup.in openswan-2.4.5rc5.patched/programs/setup/setup.in
 --- openswan-2.4.5rc5/programs/setup/setup.in   2005-07-25 21:17:03.000000000 +0200
 +++ openswan-2.4.5rc5.patched/programs/setup/setup.in   2006-03-29 01:20:44.000000000 +0200
+diff -Nur openswan-2.4.6/programs/setup/setup.in openswan-2.4.6.scripts/programs/setup/setup.in
+--- openswan-2.4.6/programs/setup/setup.in      2005-07-25 21:17:03.000000000 +0200
++++ openswan-2.4.6.scripts/programs/setup/setup.in      2006-09-29 15:53:35.000000000 +0200
@@ -117,12 +117,22 @@
  # do it
 …
         outtmp=/var/run/pluto/ipsec_setup.out
+        (
 diff -Nur openswan-2.4.5rc5/programs/showhostkey/showhostkey.in openswan-2.4.5rc5.patched/programs/showhostkey/showhostkey.in
 --- openswan-2.4.5rc5/programs/showhostkey/showhostkey.in       2004-11-14 14:40:41.000000000 +0100
 +++ openswan-2.4.5rc5.patched/programs/showhostkey/showhostkey.in       2006-03-29 01:20:44.000000000 +0200
+diff -Nur openswan-2.4.6/programs/showhostkey/showhostkey.in openswan-2.4.6.scripts/programs/showhostkey/showhostkey.in
+--- openswan-2.4.6/programs/showhostkey/showhostkey.in  2004-11-14 14:40:41.000000000 +0100
++++ openswan-2.4.6.scripts/programs/showhostkey/showhostkey.in  2006-09-29 15:53:35.000000000 +0200
@@ -63,7 +63,7 @@
         exit 1
 …
  awk '  BEGIN {
                 inkey = 0
+diff -Nur openswan-2.4.5rc5/programs/_startklips/_startklips.in openswan-2.4.5rc5.patched/programs/_startklips/_startklips.in
+--- openswan-2.4.5rc5/programs/_startklips/_startklips.in       2005-11-25 00:08:05.000000000 +0100
++++ openswan-2.4.5rc5.patched/programs/_startklips/_startklips.in       2006-03-29 01:23:54.000000000 +0200
+diff -Nur openswan-2.4.6/programs/_startklips/_startklips.in openswan-2.4.6.scripts/programs/_startklips/_startklips.in
+--- openswan-2.4.6/programs/_startklips/_startklips.in  2006-05-09 20:34:34.000000000 +0200
++++ openswan-2.4.6.scripts/programs/_startklips/_startklips.in  2006-09-29 15:59:10.000000000 +0200
+@@ -242,7 +242,7 @@
+         fi
+         if test -f $moduleinstplace/$wantgoo
+         then
+-                echo "modprobe failed, but found matching template module $wantgoo."
++                echo "insmod failed, but found matching template module $wantgoo."
+                 echo "Copying $moduleinstplace/$wantgoo to $module."
+                 rm -f $module
+                 mkdir -p $moduleplace
@@ -262,15 +262,15 @@
      echo "FATAL ERROR: Both KLIPS and NETKEY IPsec code is present in kernel"
 …
  if test -f $netkey
@@ -278,21 +278,21 @@
+@@ -278,25 +278,25 @@
         klips=false
         if test -f $modules
 …
                 # xfrm_user contains netlink support for IPsec
 -               modprobe -qv xfrm_user
--               modprobe -qv hw_random
 +               insmod -qv xfrm_user
++               insmod -qv hw_random
+                # padlock must load before aes module
+-               modprobe -qv padlock
++               insmod -qv padlock
+                if [ -n "`cat /proc/cpuinfo |grep Nehemiah`" ]
+                then
+                        echo "VIA Nehemiah detected, probing for PadLock"
+-                       modprobe -qv hw_random
++                       insmod -qv hw_random
+                        # padlock must load before aes module
+-                       modprobe -qv padlock
++                       insmod -qv padlock
+                fi
                 # load the most common ciphers/algo's
 -               modprobe -qv sha1
 …
  fi
@@ -308,10 +308,10 @@
+@@ -312,10 +312,10 @@
                 fi
                  unset MODPATH MODULECONF        # no user overrides!
 …
          if test ! -f $ipsecversion
          then
-diff -Nur openswan-2.4.5rc5/programs/_startklips/_startklips.in.orig openswan-2.4.5rc5.patched/programs/_startklips/_startklips.in.orig
---- openswan-2.4.5rc5/programs/_startklips/_startklips.in.orig  1970-01-01 01:00:00.000000000 +0100
-+++ openswan-2.4.5rc5.patched/programs/_startklips/_startklips.in.orig  2005-11-25 00:08:05.000000000 +0100
-@@ -0,0 +1,407 @@
-+#!/bin/sh
-+# KLIPS startup script
-+# Copyright (C) 1998, 1999, 2001, 2002  Henry Spencer.
-+#
-+# This program is free software; you can redistribute it and/or modify it
-+# under the terms of the GNU General Public License as published by the
-+# Free Software Foundation; either version 2 of the License, or (at your
-+# option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
-+#
-+# This program is distributed in the hope that it will be useful, but
-+# WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-+# or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
-+# for more details.
-+#
-+# RCSID $Id: scripts.patch 3639 2006-04-13 18:33:50Z nbd $
++
-+me='ipsec _startklips'         # for messages
++
-+# KLIPS-related paths
-+sysflags=/proc/sys/net/ipsec
-+modules=/proc/modules
-+# full rp_filter path is $rpfilter1/interface/$rpfilter2
-+rpfilter1=/proc/sys/net/ipv4/conf
-+rpfilter2=rp_filter
-+# %unchanged or setting (0, 1, or 2)
-+rpfiltercontrol=0
-+ipsecversion=/proc/net/ipsec_version
-+moduleplace=/lib/modules/`uname -r`/kernel/net/ipsec
-+bareversion=`uname -r | sed -e 's/\.nptl//' | sed -e 's/^\(2\.[0-9]\.[1-9][0-9]*-[1-9][0-9]*\(\.[0-9][0-9]*\)*\(\.x\)*\).*$/\1/'`
-+moduleinstplace=/lib/modules/$bareversion/kernel/net/ipsec
-+case $bareversion in
-+       2.6*)
-+               modulename=ipsec.ko
-+               ;;
-+       *)
-+               modulename=ipsec.o
-+               ;;
-+esac
++
-+klips=true
-+netkey=/proc/net/pfkey
++
-+info=/dev/null
-+log=daemon.error
-+for dummy
-+do
-+       case "$1" in
-+       --log)          log="$2" ; shift        ;;
-+       --info)         info="$2" ; shift       ;;
-+       --debug)        debug="$2" ; shift      ;;
-+       --omtu)         omtu="$2" ; shift       ;;
-+       --fragicmp)     fragicmp="$2" ; shift   ;;
-+       --hidetos)      hidetos="$2" ; shift    ;;
-+       --rpfilter)     rpfiltercontrol="$2" ; shift    ;;
-+       --)     shift ; break   ;;
-+       -*)     echo "$me: unknown option \`$1'" >&2 ; exit 2   ;;
-+       *)      break   ;;
-+       esac
-+       shift
-+done
++
++
++
-+# some shell functions, to clarify the actual code
++
-+# set up a system flag based on a variable
-+# sysflag value shortname default flagname
-+sysflag() {
-+       case "$1" in
-+       '')     v="$3"  ;;
-+       *)      v="$1"  ;;
-+       esac
-+       if test ! -f $sysflags/$4
-+       then
-+               if test " $v" != " $3"
-+               then
-+                       echo "cannot do $2=$v, $sysflags/$4 does not exist"
-+                       exit 1
-+               else
-+                       return  # can't set, but it's the default anyway
-+               fi
-+       fi
-+       case "$v" in
-+       yes|no) ;;
-+       *)      echo "unknown (not yes/no) $2 value \`$1'"
-+               exit 1
-+               ;;
-+       esac
-+       case "$v" in
-+       yes)    echo 1 >$sysflags/$4    ;;
-+       no)     echo 0 >$sysflags/$4    ;;
-+       esac
-+}
++
-+# set up a Klips interface
-+klipsinterface() {
-+       # pull apart the interface spec
-+       virt=`expr $1 : '\([^=]*\)=.*'`
-+       phys=`expr $1 : '[^=]*=\(.*\)'`
-+       case "$virt" in
-+       ipsec[0-9])     ;;
-+       *)      echo "invalid interface \`$virt' in \`$1'" ; exit 1     ;;
-+       esac
++
-+       # figure out ifconfig for interface
-+       addr=
-+       eval `ifconfig $phys |
-+               awk '$1 == "inet" && $2 ~ /^addr:/ && $NF ~ /^Mask:/ {
-+                       gsub(/:/, " ", $0)
-+                       print "addr=" $3
-+                       other = $5
-+                       if ($4 == "Bcast")
-+                               print "type=broadcast"
-+                       else if ($4 == "P-t-P")
-+                               print "type=pointopoint"
-+                       else if (NF == 5) {
-+                               print "type="
-+                               other = ""
-+                       } else
-+                               print "type=unknown"
-+                       print "otheraddr=" other
-+                       print "mask=" $NF
-+               }'`
-+       if test " $addr" = " "
-+       then
-+               echo "unable to determine address of \`$phys'"
-+               exit 1
-+       fi
-+       if test " $type" = " unknown"
-+       then
-+               echo "\`$phys' is of an unknown type"
-+               exit 1
-+       fi
-+       if test " $omtu" != " "
-+       then
-+               mtu="mtu $omtu"
-+       else
-+               mtu=
-+       fi
-+       echo "KLIPS $virt on $phys $addr/$mask $type $otheraddr $mtu" | logonly
++
-+       if $klips
-+       then
-+               # attach the interface and bring it up
-+               ipsec tncfg --attach --virtual $virt --physical $phys
-+               ifconfig $virt inet $addr $type $otheraddr netmask $mask $mtu
-+       fi
++
-+       # if %defaultroute, note the facts
-+       if test " $2" != " "
-+       then
-+               (
-+                       echo "defaultroutephys=$phys"
-+                       echo "defaultroutevirt=$virt"
-+                       echo "defaultrouteaddr=$addr"
-+                       if test " $2" != " 0.0.0.0"
-+                       then
-+                               echo "defaultroutenexthop=$2"
-+                       fi
-+               ) >>$info
-+       else
-+               echo '#dr: no default route' >>$info
-+       fi
++
-+       # check for rp_filter trouble
-+       checkif $phys                   # thought to be a problem only on phys
-+}
++
-+# check an interface for problems
-+checkif() {
-+       $klips || return 0
-+       rpf=$rpfilter1/$1/$rpfilter2
-+       if test -f $rpf
-+       then
-+               r="`cat $rpf`"
-+               if test " $r" != " 0"
-+               then
-+                       case "$r-$rpfiltercontrol" in
-+                       0-%unchanged|0-0|1-1|2-2)
-+                               # happy state
-+                               ;;
-+                       *-%unchanged)
-+                               echo "WARNING: $1 has route filtering turned on; KLIPS may not work ($rpf is $r)"
-+                               ;;
-+                       [012]-[012])
-+                               echo "WARNING: changing route filtering on $1 (changing $rpf from $r to $rpfiltercontrol)"
-+                               echo "$rpfiltercontrol" >$rpf
-+                               ;;
-+                       [012]-*)
-+                               echo "ERROR: unknown rpfilter setting: $rpfiltercontrol"
-+                               ;;
-+                       *)
-+                               echo "ERROR: unknown $rpf value $r"
-+                               ;;
-+                       esac
-+               fi
-+       fi
-+}
++
-+# interfaces=%defaultroute:  put ipsec0 on top of default route's interface
-+defaultinterface() {
-+       phys=`netstat -nr |
-+               awk '$1 == "0.0.0.0" && $3 == "0.0.0.0" { print $NF }'`
-+       if test " $phys" = " "
-+       then
-+               echo "no default route, %defaultroute cannot cope!!!"
-+               exit 1
-+       fi
-+       if test `echo " $phys" | wc -l` -gt 1
-+       then
-+               echo "multiple default routes, %defaultroute cannot cope!!!"
-+               exit 1
-+       fi
-+       next=`netstat -nr |
-+               awk '$1 == "0.0.0.0" && $3 == "0.0.0.0" { print $2 }'`
-+       klipsinterface "ipsec0=$phys" $next
-+}
++
-+# log only to syslog, not to stdout/stderr
-+logonly() {
-+       logger -p $log -t ipsec_setup
-+}
++
-+# sort out which module is appropriate, changing it if necessary
-+setmodule() {
-+       if [ -e /proc/kallsyms ]
-+       then
-+               kernelsymbols="/proc/kallsyms";
-+               echo "calcgoo: warning: 2.6 kernel with kallsyms not supported yet"
-+       else
-+               kernelsymbols="/proc/ksyms";
-+       fi
-+        wantgoo="`ipsec calcgoo $kernelsymbols`"
-+        module=$moduleplace/$modulename
-+        if test -f $module
-+        then
-+                goo="`nm -ao $module | ipsec calcgoo`"
-+                if test " $wantgoo" = " $goo"
-+                then
-+                        return          # looks right
-+                fi
-+        fi
-+        if test -f $moduleinstplace/$wantgoo
-+        then
-+                echo "modprobe failed, but found matching template module $wantgoo."
-+                echo "Copying $moduleinstplace/$wantgoo to $module."
-+                rm -f $module
-+                mkdir -p $moduleplace
-+                cp -p $moduleinstplace/$wantgoo $module
-+                # "depmod -a" gets done by caller
-+        fi
-+}
++
++
++
-+# main line
++
-+# load module if possible
-+if test -f $ipsecversion && test -f $netkey
-+then
-+    # both KLIPS and NETKEY code detected, bail out
-+    echo "FATAL ERROR: Both KLIPS and NETKEY IPsec code is present in kernel"
-+    exit
-+fi
-+if test ! -f $ipsecversion && test ! -f $netkey && modprobe -qn ipsec
-+then
-+    # statically compiled KLIPS/NETKEY not found; try to load the module
-+    modprobe ipsec
-+fi
++
-+if test ! -f $ipsecversion && test ! -f $netkey
-+then
-+       modprobe -v af_key
-+fi
++
-+if test -f $netkey
-+then
-+       klips=false
-+       if test -f $modules
-+       then
-+               modprobe -qv ah4
-+               modprobe -qv esp4
-+               modprobe -qv ipcomp
-+               #  xfrm4_tunnel is needed by ipip and ipcomp
-+               modprobe -qv xfrm4_tunnel
-+               # xfrm_user contains netlink support for IPsec
-+               modprobe -qv xfrm_user
-+               modprobe -qv hw_random
-+               # padlock must load before aes module
-+               modprobe -qv padlock
-+               # load the most common ciphers/algo's
-+               modprobe -qv sha1
-+               modprobe -qv md5
-+               modprobe -qv des
-+               modprobe -qv aes
-+       fi
-+fi
++
-+if test ! -f $ipsecversion && $klips
-+then
-+        if test -r $modules             # kernel does have modules
-+        then
-+               if [ ! -e /proc/ksyms -a ! -e /proc/kallsyms ]
-+               then
-+                       echo "Broken 2.6 kernel without kallsyms, skipping calcgoo (Fedora rpm?)"
-+               else
-+                       setmodule
-+               fi
-+                unset MODPATH MODULECONF        # no user overrides!
-+                depmod -a >/dev/null 2>&1
-+               modprobe -qv hw_random
-+               # padlock must load before aes module
-+               modprobe -qv padlock
-+                modprobe -v ipsec
-+        fi
-+        if test ! -f $ipsecversion
-+        then
-+                echo "kernel appears to lack IPsec support (neither CONFIG_KLIPS or CONFIG_NET_KEY are set)"
-+                exit 1
-+        fi
-+fi
++
-+# figure out debugging flags
-+case "$debug" in
-+'')    debug=none      ;;
-+esac
-+if test -r /proc/net/ipsec_klipsdebug
-+then
-+       echo "KLIPS debug \`$debug'" | logonly
-+       case "$debug" in
-+       none)   ipsec klipsdebug --none ;;
-+       all)    ipsec klipsdebug --all  ;;
-+       *)      ipsec klipsdebug --none
-+               for d in $debug
-+               do
-+                       ipsec klipsdebug --set $d
-+               done
-+               ;;
-+       esac
-+elif $klips
-+then
-+       if test " $debug" != " none"
-+       then
-+               echo "klipsdebug=\`$debug' ignored, KLIPS lacks debug facilities"
-+       fi
-+fi
++
-+# figure out misc. kernel config
-+if test -d $sysflags
-+then
-+       sysflag "$fragicmp" "fragicmp" yes icmp
-+       echo 1 >$sysflags/inbound_policy_check          # no debate
-+       sysflag no "no_eroute_pass" no no_eroute_pass   # obsolete parm
-+       sysflag no "opportunistic" no opportunistic     # obsolete parm
-+       sysflag "$hidetos" "hidetos" yes tos
-+elif $klips
-+then
-+       echo "WARNING: cannot adjust KLIPS flags, no $sysflags directory!"
-+       # carry on
-+fi
++
-+if $klips
-+then
-+       # clear tables out in case dregs have been left over
-+       ipsec eroute --clear
-+       ipsec spi --clear
-+elif test $netkey
-+then
-+       if ip xfrm state > /dev/null 2>&1
-+       then
-+               ip xfrm state flush
-+               ip xfrm policy flush
-+       elif type setkey > /dev/null 2>&1
-+       then
-+               # Check that the setkey command is available.
-+               setkeycmd=
-+               PATH=$PATH:/usr/local/sbin
-+               for dir in `echo $PATH | tr ':' ' '`
-+               do
-+                       if test -f $dir/setkey -a -x $dir/setkey
-+                       then
-+                               setkeycmd=$dir/setkey
-+                               break                   # NOTE BREAK OUT
-+                       fi
-+               done
-+               $setkeycmd -F
-+               $setkeycmd -FP
-+       else
++
-+               echo "WARNING: cannot flush state/policy database -- \`$1'. Install a newer version of iproute/iproute2 or install the ipsec-tools package to obtain the setkey command." |
-+                       logger -s -p daemon.error -t ipsec_setup
-+       fi
-+fi
++
-+# figure out interfaces
-+for i
-+do
-+       case "$i" in
-+       ipsec*=?*)      klipsinterface "$i"     ;;
-+       %defaultroute)  defaultinterface        ;;
-+       *)      echo "interface \`$i' not understood"
-+               exit 1
-+               ;;
-+       esac
-+done
++
-+exit 0

package/openvpn/Makefile

-              r2f09cbe
+              rb917538
 PKG_NAME:=              openvpn
 PKG_VERSION:=           2.0.7
+PKG_VERSION:=           2.0.8
 PKG_RELEASE:=           1
 PKG_MD5SUM:=            93528233f1f6d02fc18e2c00f82e0aca
+PKG_MD5SUM:=            de41592b6dd88d33b7c45c114a4f4e00
 PKG_INIT:=              60

package/raddump/Config.in

r2f09cbe	rb917538
2	2	prompt "raddump........................... raddump interprets captured RADIUS packets."
3	3	tristate
4		default ~~m if CONFIG_DEVEL~~
	4	default n
5	5	select FWRT_PACKAGE_LIBOPENSSL
6	6	select FWRT_PACKAGE_LIBPCAP

package/radvd/Config.in

-              r2f09cbe
+              rb917538
         prompt "radvd............................. IPv6 Routing Advertisement Daemon"
         tristate
         default m if CONFIG_DEVEL
+        default n
         select FWRT_PACKAGE_KMOD_IPV6
+        select BUSYBOX_CONFIG_FEATURE_IPV6
         help
           Routing Advertisement Daemon for IPv6

package/tinc/Config.in

r2f09cbe	rb917538
2	2	prompt "tinc.............................. VPN tunneling daemon"
3	3	tristate
4		default ~~m if CONFIG_DEVEL~~
	4	default n
5	5	select FWRT_PACKAGE_KMOD_TUN
6	6	select FWRT_PACKAGE_LIBLZO

package/tinc/Makefile

r2f09cbe	rb917538
49	49	--with-kernel=$(LINUX_DIR) \
50	50	--with-zlib=$(STAGING_DIR)/usr/ \
	51	--with-lzo-include=$(STAGING_DIR)/usr/include/lzo \
51	52	);
52	53	touch $@

package/vtun/Makefile

-              r2f09cbe
+              rb917538
 PKG_SOURCE_URL:=        @SF/vtun
-PKG_SOURCE:=            $(PKG_NAME)-$(PKG_VERSION).tar.gz
 WRKSRC=                 ${WRKDIR}/$(PKG_NAME)
 …
                 LIBS="-L$(STAGING_DIR)/usr/lib" \
                 BLOWFISH_HDR_DIR="$(STAGING_DIR)/usr/include/openssl" \
                 LZO_HDR_DIR="$(STAGING_DIR)/usr/include" \
+                LZO_HDR_DIR="$(STAGING_DIR)/usr/include/lzo" \
                 SSL_HDR_DIR="$(STAGING_DIR)/usr/include/openssl" \
                 ./configure \

target/linux/generic-2.4/patches/601-netfilter_ipp2p.patch

-              r2f09cbe
+              rb917538
 diff -urN linux.old/include/linux/netfilter_ipv4/ipt_ipp2p.h linux.dev/include/linux/netfilter_ipv4/ipt_ipp2p.h
 --- linux.old/include/linux/netfilter_ipv4/ipt_ipp2p.h  1970-01-01 01:00:00.000000000 +0100
 +++ linux.dev/include/linux/netfilter_ipv4/ipt_ipp2p.h  2006-03-23 14:37:56.000000000 +0100
+diff -Nur linux-2.4.33.3/include/linux/netfilter_ipv4/ipt_ipp2p.h linux-2.4.33.3.ipp2p/include/linux/netfilter_ipv4/ipt_ipp2p.h
+--- linux-2.4.33.3/include/linux/netfilter_ipv4/ipt_ipp2p.h     1970-01-01 01:00:00.000000000 +0100
++++ linux-2.4.33.3.ipp2p/include/linux/netfilter_ipv4/ipt_ipp2p.h       2006-09-30 13:48:52.000000000 +0200
@@ -0,0 +1,31 @@
 +#ifndef __IPT_IPP2P_H
 +#define __IPT_IPP2P_H
 +#define IPP2P_VERSION "0.8.1_rc1"
++#define IPP2P_VERSION "0.8.2"
++
 +struct ipt_p2p_info {
 …
 +#define IPP2P_WASTE            (1 << 15)
 +#define IPP2P_XDCC             (1 << 16)
 diff -urN linux.old/net/ipv4/netfilter/Config.in linux.dev/net/ipv4/netfilter/Config.in
 --- linux.old/net/ipv4/netfilter/Config.in      2006-03-23 14:35:20.000000000 +0100
 +++ linux.dev/net/ipv4/netfilter/Config.in      2006-03-23 14:35:58.000000000 +0100
@@ -29,6 +29,7 @@
+diff -Nur linux-2.4.33.3/net/ipv4/netfilter/Config.in linux-2.4.33.3.ipp2p/net/ipv4/netfilter/Config.in
+--- linux-2.4.33.3/net/ipv4/netfilter/Config.in 2006-08-31 19:03:20.000000000 +0200
++++ linux-2.4.33.3.ipp2p/net/ipv4/netfilter/Config.in   2006-09-30 13:45:19.000000000 +0200
+@@ -26,6 +26,7 @@
    dep_tristate '  TOS match support' CONFIG_IP_NF_MATCH_TOS $CONFIG_IP_NF_IPTABLES
    dep_tristate '  recent match support' CONFIG_IP_NF_MATCH_RECENT $CONFIG_IP_NF_IPTABLES
 …
    dep_tristate '  DSCP match support' CONFIG_IP_NF_MATCH_DSCP $CONFIG_IP_NF_IPTABLES
+diff -urN linux.old/net/ipv4/netfilter/Makefile linux.dev/net/ipv4/netfilter/Makefile
+--- linux.old/net/ipv4/netfilter/Makefile       2006-03-23 14:35:20.000000000 +0100
++++ linux.dev/net/ipv4/netfilter/Makefile       2006-03-23 14:35:58.000000000 +0100
+@@ -76,6 +76,7 @@
+ obj-$(CONFIG_IP_NF_MATCH_LIMIT) += ipt_limit.o
+ obj-$(CONFIG_IP_NF_MATCH_MARK) += ipt_mark.o
+ obj-$(CONFIG_IP_NF_MATCH_MAC) += ipt_mac.o
++obj-$(CONFIG_IP_NF_MATCH_IPP2P) += ipt_ipp2p.o
+ obj-$(CONFIG_IP_NF_MATCH_PKTTYPE) += ipt_pkttype.o
+ obj-$(CONFIG_IP_NF_MATCH_MULTIPORT) += ipt_multiport.o
+diff -urN linux.old/net/ipv4/netfilter/ipt_ipp2p.c linux.dev/net/ipv4/netfilter/ipt_ipp2p.c
+--- linux.old/net/ipv4/netfilter/ipt_ipp2p.c    1970-01-01 01:00:00.000000000 +0100
++++ linux.dev/net/ipv4/netfilter/ipt_ipp2p.c    2006-03-23 14:37:18.000000000 +0100
+@@ -0,0 +1,868 @@
+diff -Nur linux-2.4.33.3/net/ipv4/netfilter/ipt_ipp2p.c linux-2.4.33.3.ipp2p/net/ipv4/netfilter/ipt_ipp2p.c
+--- linux-2.4.33.3/net/ipv4/netfilter/ipt_ipp2p.c       1970-01-01 01:00:00.000000000 +0100
++++ linux-2.4.33.3.ipp2p/net/ipv4/netfilter/ipt_ipp2p.c 2006-09-30 13:47:58.000000000 +0200
+@@ -0,0 +1,894 @@
 +#if defined(MODVERSIONS)
 +#include <linux/modversions.h>
 …
 +      const struct net_device *in,
 +      const struct net_device *out,
++#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,17)
++      const struct xt_match  *mymatch,
 +      const void *matchinfo,
 +      int offset,
++      unsigned int myprotoff,
++#else
++      const void *matchinfo,
++      int offset,
++#endif
++
 +#if LINUX_VERSION_CODE < KERNEL_VERSION(2,6,0)
 …
 +static int
 +checkentry(const char *tablename,
++            const struct ipt_ip *ip,
++           void *matchinfo,
++           unsigned int matchsize,
++           unsigned int hook_mask)
++#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,17)
++           const void *ip,
++           const struct xt_match *mymatch,
++#else
++           const struct ipt_ip *ip,
++#endif
++          void *matchinfo,
++          unsigned int matchsize,
++          unsigned int hook_mask)
 +{
 +        /* Must specify -p tcp */
 …
++
++
++
++// TODO: find out what this structure is for (scheme taken
++// from kernel sources)
++// content seems to have a length of 8 bytes
++// (at least on my x86 machine)
++struct ipp2p_match_info {
++       long int dunno_what_this_is_for;
++       long int i_also_dunno_what_this_is_for;
++};
++
 +static struct ipt_match ipp2p_match = {
 …
 +       THIS_MODULE
 +#endif
 +#if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,0)
++#if (LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,0)) && (LINUX_VERSION_CODE < KERNEL_VERSION(2,6,17))
 +       .name           = "ipp2p",
 +       .match          = &match,
 +       .checkentry     = &checkentry,
 +       .me             = THIS_MODULE,
++#elif LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,17)
++       .name           = "ipp2p",
++       .match          = &match,
++       .family         = AF_INET,
++       .matchsize      = sizeof(struct ipp2p_match_info),
++       .checkentry     = &checkentry,
++       .me             = THIS_MODULE,
 +#endif
 +};
 …
++
++
+diff -Nur linux-2.4.33.3/net/ipv4/netfilter/Makefile linux-2.4.33.3.ipp2p/net/ipv4/netfilter/Makefile
+--- linux-2.4.33.3/net/ipv4/netfilter/Makefile  2006-08-31 19:03:20.000000000 +0200
++++ linux-2.4.33.3.ipp2p/net/ipv4/netfilter/Makefile    2006-09-30 13:45:19.000000000 +0200
+@@ -67,6 +67,7 @@
+ obj-$(CONFIG_IP_NF_MATCH_LIMIT) += ipt_limit.o
+ obj-$(CONFIG_IP_NF_MATCH_MARK) += ipt_mark.o
+ obj-$(CONFIG_IP_NF_MATCH_MAC) += ipt_mac.o
++obj-$(CONFIG_IP_NF_MATCH_IPP2P) += ipt_ipp2p.o
+ obj-$(CONFIG_IP_NF_MATCH_PKTTYPE) += ipt_pkttype.o
+ obj-$(CONFIG_IP_NF_MATCH_MULTIPORT) += ipt_multiport.o

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset b917538 in freewrt

Legend:

Download in other formats: