]>
Commit | Line | Data |
---|---|---|
6652626c AF |
1 | ############################################################################### |
2 | # # | |
3 | # IPFire.org - A linux based firewall # | |
38288aee | 4 | # Copyright (C) 2007-2013 IPFire Team <info@ipfire.org> # |
6652626c AF |
5 | # # |
6 | # This program is free software: you can redistribute it and/or modify # | |
7 | # it under the terms of the GNU General Public License as published by # | |
8 | # the Free Software Foundation, either version 3 of the License, or # | |
9 | # (at your option) any later version. # | |
10 | # # | |
11 | # This program is distributed in the hope that it will be useful, # | |
12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of # | |
13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # | |
14 | # GNU General Public License for more details. # | |
15 | # # | |
16 | # You should have received a copy of the GNU General Public License # | |
17 | # along with this program. If not, see <http://www.gnu.org/licenses/>. # | |
18 | # # | |
19 | ############################################################################### | |
20 | ||
21 | ############################################################################### | |
22 | # Definitions | |
23 | ############################################################################### | |
24 | ||
25 | include Config | |
26 | ||
4d7f9a81 | 27 | VER = 5.3.5 |
6652626c AF |
28 | |
29 | THISAPP = strongswan-$(VER) | |
82efdd4f | 30 | DL_FILE = $(THISAPP).tar.bz2 |
6652626c | 31 | DL_FROM = $(URL_IPFIRE) |
82efdd4f | 32 | DIR_APP = $(DIR_SRC)/strongswan-$(VER) |
6652626c AF |
33 | TARGET = $(DIR_INFO)/$(THISAPP) |
34 | ||
3090c39e | 35 | ifeq "$(MACHINE)" "i586" |
ec985733 | 36 | CONFIGURE_OPTIONS = \ |
cfb00625 | 37 | --enable-padlock |
3090c39e | 38 | else |
ec985733 | 39 | CONFIGURE_OPTIONS = \ |
cfb00625 | 40 | --disable-padlock |
3090c39e MT |
41 | endif |
42 | ||
6652626c AF |
43 | ############################################################################### |
44 | # Top-level Rules | |
45 | ############################################################################### | |
46 | ||
47 | objects = $(DL_FILE) | |
48 | ||
49 | $(DL_FILE) = $(DL_FROM)/$(DL_FILE) | |
50 | ||
4d7f9a81 | 51 | $(DL_FILE)_MD5 = a2f9ea185f27e7f8413d4cd2ee61efe4 |
6652626c AF |
52 | |
53 | install : $(TARGET) | |
54 | ||
55 | check : $(patsubst %,$(DIR_CHK)/%,$(objects)) | |
56 | ||
57 | download :$(patsubst %,$(DIR_DL)/%,$(objects)) | |
58 | ||
59 | md5 : $(subst %,%_MD5,$(objects)) | |
60 | ||
61 | ############################################################################### | |
62 | # Downloading, checking, md5sum | |
63 | ############################################################################### | |
64 | ||
65 | $(patsubst %,$(DIR_CHK)/%,$(objects)) : | |
66 | @$(CHECK) | |
67 | ||
68 | $(patsubst %,$(DIR_DL)/%,$(objects)) : | |
69 | @$(LOAD) | |
70 | ||
71 | $(subst %,%_MD5,$(objects)) : | |
72 | @$(MD5) | |
73 | ||
74 | ############################################################################### | |
75 | # Installation Details | |
76 | ############################################################################### | |
77 | ||
78 | $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects)) | |
79 | @$(PREBUILD) | |
35275bcd | 80 | @rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE) |
df5fbff5 | 81 | cd $(DIR_APP) && patch -Np1 -i $(DIR_SRC)/src/patches/strongswan-ipfire.patch |
4d7f9a81 | 82 | cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/strongswan-child-rekey-Suppress-updown-event-when-deleting-redundant-CHILD_SAs.patch |
6652626c | 83 | |
3090c39e MT |
84 | cd $(DIR_APP) && ./configure \ |
85 | --prefix="/usr" \ | |
86 | --sysconfdir="/etc" \ | |
87 | --enable-curl \ | |
0dff6b5b MT |
88 | --enable-dhcp \ |
89 | --enable-farp \ | |
3090c39e | 90 | --enable-openssl \ |
567fadff | 91 | --enable-gcrypt \ |
df5fbff5 MT |
92 | --enable-ccm \ |
93 | --enable-ctr \ | |
dfea4f86 | 94 | --enable-gcm \ |
15be5542 | 95 | --enable-xauth-eap \ |
d1b0815f | 96 | --enable-xauth-noauth \ |
404c8e46 | 97 | --enable-eap-radius \ |
15be5542 MT |
98 | --enable-eap-tls \ |
99 | --enable-eap-ttls \ | |
100 | --enable-eap-peap \ | |
101 | --enable-eap-mschapv2 \ | |
102 | --enable-eap-identity \ | |
8235f17d | 103 | --disable-chapoly \ |
ec985733 | 104 | $(CONFIGURE_OPTIONS) |
e4e28e19 | 105 | |
6fb9681c | 106 | cd $(DIR_APP) && make $(MAKETUNING) |
6652626c AF |
107 | cd $(DIR_APP) && make install |
108 | ||
3090c39e MT |
109 | # Remove all library files we don't want or need. |
110 | rm -vf /usr/lib/ipsec/plugins/*.{,l}a | |
111 | ||
6652626c AF |
112 | -rm -rfv /etc/rc*.d/*ipsec |
113 | cd $(DIR_SRC) && cp src/initscripts/init.d/ipsec /etc/rc.d/init.d/ipsec | |
114 | rm -f /etc/ipsec.conf /etc/ipsec.secrets | |
115 | ln -sf $(CONFIG_ROOT)/vpn/ipsec.conf /etc/ipsec.conf | |
116 | ln -sf $(CONFIG_ROOT)/vpn/ipsec.secrets /etc/ipsec.secrets | |
117 | ||
118 | rm -rf /etc/ipsec.d/{cacerts,certs,crls} | |
119 | ln -sf $(CONFIG_ROOT)/ca /etc/ipsec.d/cacerts | |
120 | ln -sf $(CONFIG_ROOT)/certs /etc/ipsec.d/certs | |
121 | ln -sf $(CONFIG_ROOT)/crls /etc/ipsec.d/crls | |
122 | ||
dea158f2 MT |
123 | install -v -m 644 $(DIR_SRC)/config/strongswan/charon.conf \ |
124 | /etc/strongswan.d/charon.conf | |
125 | ||
f898e6ac | 126 | @rm -rf $(DIR_APP) |
6652626c | 127 | @$(POSTBUILD) |