projects / feed / packages.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
strongswan: fix typo in strongswan-mod-nonce description
[feed/packages.git] / net / strongswan / Makefile
1 #
2 # Copyright (C) 2012-2018 OpenWrt.org
3 #
4 # This is free software, licensed under the GNU General Public License v2.
5 # See /LICENSE for more information.
6 #
7
8 include $(TOPDIR)/rules.mk
9
10 PKG_NAME:=strongswan
11 PKG_VERSION:=5.9.8
12 PKG_RELEASE:=5
13
14 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.bz2
15 PKG_SOURCE_URL:=https://download.strongswan.org/ https://download2.strongswan.org/
16 PKG_HASH:=d3303a43c0bd7b75a12b64855e8edcb53696f06190364f26d1533bde1f2e453c
17 PKG_LICENSE:=GPL-2.0-or-later
18 PKG_MAINTAINER:=Philip Prindeville <philipp@redfish-solutions.com>, Noel Kuntze <noel.kuntze@thermi.consulting>
19 PKG_CPE_ID:=cpe:/a:strongswan:strongswan
20
21 PKG_MOD_AVAILABLE:= \
22 addrblock \
23 aes \
24 af-alg \
25 agent \
26 attr \
27 attr-sql \
28 bliss \
29 blowfish \
30 ccm \
31 chapoly \
32 cmac \
33 constraints \
34 connmark \
35 coupling \
36 ctr \
37 curl \
38 curve25519 \
39 des \
40 dhcp \
41 dnskey \
42 duplicheck \
43 eap-identity \
44 eap-md5 \
45 eap-mschapv2 \
46 eap-radius \
47 eap-tls \
48 farp \
49 fips-prf \
50 forecast \
51 gcm \
52 gcrypt \
53 gmp \
54 gmpdh \
55 ha \
56 hmac \
57 kernel-libipsec \
58 kernel-netlink \
59 ldap \
60 led \
61 load-tester \
62 nonce \
63 md4 \
64 md5 \
65 mgf1 \
66 mysql \
67 newhope \
68 ntru \
69 openssl \
70 pem \
71 pgp \
72 pkcs1 \
73 pkcs7 \
74 pkcs8 \
75 pkcs11 \
76 pkcs12 \
77 pubkey \
78 random \
79 rc2 \
80 resolve \
81 revocation \
82 sha1 \
83 sha2 \
84 sha3 \
85 smp \
86 socket-default \
87 socket-dynamic \
88 sql \
89 sqlite \
90 sshkey \
91 stroke \
92 test-vectors \
93 unity \
94 uci \
95 updown \
96 vici \
97 whitelist \
98 wolfssl \
99 x509 \
100 xauth-eap \
101 xauth-generic \
102 xcbc
103
104 PKG_CONFIG_DEPENDS:= \
105 CONFIG_STRONGSWAN_ROUTING_TABLE \
106 CONFIG_STRONGSWAN_ROUTING_TABLE_PRIO \
107 $(patsubst %,CONFIG_PACKAGE_strongswan-mod-%,$(PKG_MOD_AVAILABLE)) \
108
109 PKG_FIXUP:=autoreconf
110 PKG_INSTALL:=1
111 PKG_BUILD_PARALLEL:=1
112
113 include $(INCLUDE_DIR)/package.mk
114 # strongswan-mod-mysql needs iconv
115 include $(INCLUDE_DIR)/nls.mk
116
117 define Package/strongswan/Default
118 SUBMENU:=VPN
119 SECTION:=net
120 CATEGORY:=Network
121 TITLE:=StrongSwan
122 URL:=http://www.strongswan.org/
123 endef
124
125 define Package/strongswan/description/Default
126 StrongSwan is an OpenSource IPsec implementation for the Linux operating system.
127 endef
128
129 define Package/strongswan
130 $(call Package/strongswan/Default)
131 MENU:=1
132 DEPENDS:= +libpthread +ip \
133 +kmod-crypto-authenc \
134 +kmod-ipsec +kmod-ipsec4 +IPV6:kmod-ipsec6
135 endef
136
137 define Package/strongswan/config
138 source "$(SOURCE)/Config.in"
139 endef
140
141 define Package/strongswan/description
142 $(call Package/strongswan/description/Default)
143 This package contains shared libraries and scripts.
144 endef
145
146 define Package/strongswan-full
147 $(call Package/strongswan/Default)
148 TITLE+= (full)
149 DEPENDS:= strongswan \
150 +strongswan-charon \
151 +strongswan-charon-cmd \
152 +strongswan-ipsec \
153 +strongswan-libnttfft \
154 +strongswan-mod-addrblock \
155 +strongswan-mod-aes \
156 +strongswan-mod-af-alg \
157 +strongswan-mod-agent \
158 +strongswan-mod-attr \
159 +strongswan-mod-attr-sql \
160 +strongswan-mod-bliss \
161 +strongswan-mod-blowfish \
162 +strongswan-mod-ccm \
163 +strongswan-mod-chapoly \
164 +strongswan-mod-cmac \
165 +strongswan-mod-constraints \
166 +strongswan-mod-connmark \
167 +strongswan-mod-coupling \
168 +strongswan-mod-ctr \
169 +strongswan-mod-curl \
170 +strongswan-mod-curve25519 \
171 +strongswan-mod-des \
172 +strongswan-mod-dhcp \
173 +strongswan-mod-dnskey \
174 +strongswan-mod-drbg \
175 +strongswan-mod-duplicheck \
176 +strongswan-mod-eap-identity \
177 +strongswan-mod-eap-md5 \
178 +strongswan-mod-eap-mschapv2 \
179 +strongswan-mod-eap-radius \
180 +strongswan-mod-eap-tls \
181 +strongswan-mod-farp \
182 +strongswan-mod-fips-prf \
183 +strongswan-mod-forecast \
184 +strongswan-mod-gcm \
185 +strongswan-mod-gcrypt \
186 +strongswan-mod-gmp \
187 +strongswan-mod-ha \
188 +strongswan-mod-hmac \
189 +strongswan-mod-kdf \
190 +strongswan-mod-kernel-netlink \
191 +strongswan-mod-ldap \
192 +strongswan-mod-led \
193 +strongswan-mod-load-tester \
194 +strongswan-mod-nonce \
195 +strongswan-mod-md4 \
196 +strongswan-mod-md5 \
197 +strongswan-mod-mgf1 \
198 +strongswan-mod-mysql \
199 +strongswan-mod-newhope \
200 +strongswan-mod-ntru \
201 +strongswan-mod-openssl \
202 +strongswan-mod-pem \
203 +strongswan-mod-pgp \
204 +strongswan-mod-pkcs1 \
205 +strongswan-mod-pkcs7 \
206 +strongswan-mod-pkcs8 \
207 +strongswan-mod-pkcs11 \
208 +strongswan-mod-pkcs12 \
209 +strongswan-mod-pubkey \
210 +strongswan-mod-random \
211 +strongswan-mod-rc2 \
212 +strongswan-mod-resolve \
213 +strongswan-mod-revocation \
214 +strongswan-mod-sha1 \
215 +strongswan-mod-sha2 \
216 +strongswan-mod-sha3 \
217 +strongswan-mod-smp \
218 +strongswan-mod-socket-default \
219 +strongswan-mod-sql \
220 +strongswan-mod-sqlite \
221 +strongswan-mod-sshkey \
222 +strongswan-mod-stroke \
223 +strongswan-mod-test-vectors \
224 +strongswan-mod-uci \
225 +strongswan-mod-unity \
226 +strongswan-mod-updown \
227 +strongswan-mod-vici \
228 +strongswan-mod-whitelist \
229 +strongswan-mod-wolfssl \
230 +strongswan-mod-x509 \
231 +strongswan-mod-xauth-eap \
232 +strongswan-mod-xauth-generic \
233 +strongswan-mod-xcbc \
234 +strongswan-pki \
235 +strongswan-swanctl \
236 @DEVEL
237 endef
238
239 define Package/strongswan-full/description
240 $(call Package/strongswan/description/Default)
241 This meta-package contains dependencies for all of the strongswan plugins
242 except kernel-libipsec,
243 socket-dynamic and which are omitted in favor of the kernel-netlink and
244 socket-default plugins.
245 endef
246
247
248 define Package/strongswan-default
249 $(call Package/strongswan/Default)
250 TITLE+= (default)
251 DEPENDS:= strongswan \
252 +strongswan-charon \
253 +strongswan-mod-aes \
254 +strongswan-mod-attr \
255 +strongswan-mod-connmark \
256 +strongswan-mod-constraints \
257 +strongswan-mod-des \
258 +strongswan-mod-dnskey \
259 +strongswan-mod-fips-prf \
260 +strongswan-mod-gmp \
261 +strongswan-mod-hmac \
262 @(PACKAGE_strongswan-mod-kdf||PACKAGE_strongswan-mod-openssl||PACKAGE_strongswan-mod-wolfssl) \
263 +strongswan-mod-kernel-netlink \
264 +strongswan-mod-md5 \
265 +strongswan-mod-mgf1 \
266 +strongswan-mod-nonce \
267 +strongswan-mod-pem \
268 +strongswan-mod-pgp \
269 +strongswan-mod-pkcs1 \
270 +strongswan-mod-pubkey \
271 +strongswan-mod-random \
272 +strongswan-mod-rc2 \
273 +strongswan-mod-resolve \
274 +strongswan-mod-revocation \
275 +strongswan-mod-sha1 \
276 +strongswan-mod-sha2 \
277 +strongswan-mod-socket-default \
278 +strongswan-mod-sshkey \
279 +strongswan-mod-updown \
280 +strongswan-mod-x509 \
281 +strongswan-mod-xauth-generic \
282 +strongswan-mod-xcbc \
283 +strongswan-swanctl
284 endef
285
286 define Package/strongswan-default/description
287 $(call Package/strongswan/description/Default)
288 This meta-package contains only dependencies to match upstream defaults.
289 endef
290
291
292 define Package/strongswan-isakmp
293 $(call Package/strongswan/Default)
294 TITLE+= (isakmp)
295 DEPENDS:= strongswan \
296 +strongswan-charon \
297 +strongswan-ipsec \
298 +strongswan-mod-aes \
299 +strongswan-mod-des \
300 +strongswan-mod-gmpdh \
301 +strongswan-mod-hmac \
302 @(PACKAGE_strongswan-mod-kdf||PACKAGE_strongswan-mod-openssl||PACKAGE_strongswan-mod-wolfssl) \
303 +strongswan-mod-kernel-netlink \
304 +strongswan-mod-md5 \
305 +strongswan-mod-mgf1 \
306 +strongswan-mod-nonce \
307 +strongswan-mod-pubkey \
308 +strongswan-mod-random \
309 +strongswan-mod-sha1 \
310 +strongswan-mod-socket-default \
311 +strongswan-mod-stroke \
312 +strongswan-mod-uci \
313 +strongswan-mod-updown
314 endef
315
316 define Package/strongswan-isakmp/description
317 $(call Package/strongswan/description/Default)
318 This meta-package contains only dependencies to establish ISAKMP /
319 IKE PSK connections, dropping other capabilities in favor of small size
320 Can fit most routers even with 4Mb flash (after removing IPv6 support).
321 endef
322
323
324 define Package/strongswan-minimal
325 $(call Package/strongswan/Default)
326 TITLE+= (minimal)
327 DEPENDS:= strongswan \
328 +strongswan-charon \
329 +strongswan-mod-aes \
330 +strongswan-mod-gmp \
331 +strongswan-mod-hmac \
332 @(PACKAGE_strongswan-mod-kdf||PACKAGE_strongswan-mod-openssl||PACKAGE_strongswan-mod-wolfssl) \
333 +strongswan-mod-kernel-netlink \
334 +strongswan-mod-mgf1 \
335 +strongswan-mod-nonce \
336 +strongswan-mod-pubkey \
337 +strongswan-mod-random \
338 +strongswan-mod-sha1 \
339 +strongswan-mod-socket-default \
340 +strongswan-mod-stroke \
341 +strongswan-mod-updown \
342 +strongswan-mod-x509 \
343 +strongswan-mod-xcbc
344 endef
345
346 define Package/strongswan-minimal/description
347 $(call Package/strongswan/description/Default)
348 This meta-package contains only dependencies for a minimal IKEv2 setup.
349 endef
350
351 define Package/strongswan-charon
352 $(call Package/strongswan/Default)
353 TITLE+= IKEv1/IKEv2 keying daemon
354 DEPENDS:= strongswan
355 endef
356
357 define Package/strongswan-charon/description
358 $(call Package/strongswan/description/Default)
359 This package contains charon, an IKEv2 keying daemon.
360 endef
361
362 define Package/strongswan-charon-cmd
363 $(call Package/strongswan/Default)
364 TITLE+= charon-cmd utility
365 DEPENDS:= strongswan +strongswan-charon
366 endef
367
368 define Package/strongswan-charon-cmd/description
369 $(call Package/strongswan/description/Default)
370 This package contains the charon-cmd utility.
371 endef
372
373 define Package/strongswan-ipsec
374 $(call Package/strongswan/Default)
375 TITLE+= utilities
376 DEPENDS:= strongswan
377 endef
378
379 define Package/strongswan-ipsec/description
380 $(call Package/strongswan/description/Default)
381 This package contains the ipsec utility.
382 endef
383
384 define Package/strongswan-libnttfft
385 $(call Package/strongswan/Default)
386 TITLE+= nttfft library
387 DEPENDS:= strongswan
388 endef
389
390 define Package/strongswan-libnttfft/description
391 $(call Package/strongswan/description/Default)
392 This package contains the Number Theoretic Transforms library.
393 endef
394
395 define Package/strongswan-pki
396 $(call Package/strongswan/Default)
397 TITLE+= PKI tool
398 DEPENDS:= strongswan strongswan-libtls
399 endef
400
401 define Package/strongswan-pki/description
402 $(call Package/strongswan/description/Default)
403 This package contains the pki tool.
404 endef
405
406 define Package/strongswan-swanctl
407 $(call Package/strongswan/Default)
408 TITLE+= swanctl utility
409 DEPENDS:= strongswan +strongswan-mod-vici
410 endef
411
412 define Package/strongswan-swanctl/description
413 $(call Package/strongswan/description/Default)
414 This package contains the swanctl utility.
415 endef
416
417 define Package/strongswan-gencerts
418 $(call Package/strongswan/Default)
419 TITLE+= X.509 certificate generation utility
420 DEPENDS:= strongswan +strongswan-pki bash
421 endef
422
423 define Package/strongswan-gencerts/description
424 $(call Package/strongswan/description/Default)
425 This package contains the X.509 certificate generation utility.
426 endef
427
428 define Package/strongswan-libtls
429 $(call Package/strongswan/Default)
430 TITLE+= libtls
431 DEPENDS:= strongswan
432 endef
433
434 define Package/strongswan-libtls/description
435 $(call Package/strongswan/description/Default)
436 This package contains libtls for strongSwan plugins eap-tls, eap-ttls,
437 eap-peap, tnc-tnccs
438 endef
439
440 define BuildPlugin
441 define Package/strongswan-mod-$(1)
442 $$(call Package/strongswan/Default)
443 TITLE:= StrongSwan $(2) plugin
444 DEPENDS:= strongswan $(3)
445 endef
446
447 define Package/strongswan-mod-$(1)/install
448 $(INSTALL_DIR) $$(1)/etc/strongswan.d/charon
449 if [ -f $(PKG_INSTALL_DIR)/etc/strongswan.d/charon/$(1).conf ]; then \
450 $(INSTALL_DATA) $(PKG_INSTALL_DIR)/etc/strongswan.d/charon/$(1).conf $$(1)/etc/strongswan.d/charon/; fi
451 $(INSTALL_DIR) $$(1)/usr/lib/ipsec/plugins
452 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/plugins/libstrongswan-$(1).so \
453 $$(1)/usr/lib/ipsec/plugins/
454 $(call Plugin/$(1)/install,$$(1))
455 endef
456
457 $$(eval $$(call BuildPackage,strongswan-mod-$(1)))
458 endef
459
460 CONFIGURE_ARGS+= \
461 --disable-scripts \
462 --disable-static \
463 --disable-fast \
464 --enable-mgf1 \
465 --enable-mediation \
466 --with-systemdsystemunitdir=no \
467 $(if $(CONFIG_PACKAGE_strongswan-charon-cmd),--enable-cmd,--disable-cmd) \
468 $(if $(CONFIG_PACKAGE_strongswan-pki),--enable-pki,--disable-pki) \
469 --with-random-device=/dev/random \
470 --with-urandom-device=/dev/urandom \
471 --with-routing-table="$(call qstrip,$(CONFIG_STRONGSWAN_ROUTING_TABLE))" \
472 --with-routing-table-prio="$(call qstrip,$(CONFIG_STRONGSWAN_ROUTING_TABLE_PRIO))" \
473 $(foreach m,$(PKG_MOD_AVAILABLE), \
474 $(if $(CONFIG_PACKAGE_strongswan-mod-$(m)),--enable-$(m),--disable-$(m)) \
475 ) \
476 ac_cv_search___atomic_load=no
477
478 define Package/strongswan/conffiles
479 /etc/strongswan.conf
480 /etc/strongswan.d/
481 endef
482
483 define Package/strongswan/install
484 $(INSTALL_DIR) $(1)/etc
485 $(INSTALL_CONF) $(PKG_INSTALL_DIR)/etc/strongswan.conf $(1)/etc/
486 echo -e "\ninclude /var/ipsec/strongswan.conf" >> $(1)/etc/strongswan.conf
487 $(INSTALL_DIR) $(1)/usr/lib/ipsec
488 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/libstrongswan.so.* $(1)/usr/lib/ipsec/
489 endef
490
491 define Package/strongswan-default/install
492 true
493 endef
494
495 define Package/strongswan-full/install
496 true
497 endef
498
499 define Package/strongswan-isakmp/install
500 true
501 endef
502
503 define Package/strongswan-minimal/install
504 true
505 endef
506
507 define Package/strongswan-charon/install
508 $(INSTALL_DIR) $(1)/etc/strongswan.d
509 $(CP) $(PKG_INSTALL_DIR)/etc/strongswan.d/charon.conf $(1)/etc/strongswan.d
510 $(CP) $(PKG_INSTALL_DIR)/etc/strongswan.d/charon-logging.conf $(1)/etc/strongswan.d
511 $(INSTALL_DIR) $(1)/usr/lib/ipsec
512 $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/lib/ipsec/charon $(1)/usr/lib/ipsec/
513 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/libcharon.so.* $(1)/usr/lib/ipsec/
514 endef
515
516 define Package/strongswan-charon-cmd/install
517 $(INSTALL_DIR) $(1)/usr/sbin
518 $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/sbin/charon-cmd $(1)/usr/sbin/
519 endef
520
521 define Package/strongswan-ipsec/conffiles
522 /etc/ipsec.d/
523 /etc/ipsec.conf
524 /etc/ipsec.secrets
525 /etc/ipsec.user
526 endef
527
528 define Package/strongswan-ipsec/install
529 $(INSTALL_DIR) $(1)/etc/ $(1)/usr/sbin
530 $(INSTALL_CONF) $(PKG_INSTALL_DIR)/etc/ipsec.conf $(1)/etc/
531 echo -e "\ninclude /var/ipsec/ipsec.conf" >> $(1)/etc/ipsec.conf
532 $(INSTALL_CONF) ./files/ipsec.secrets $(1)/etc/
533 echo -e "\ninclude /var/ipsec/ipsec.secrets" >> $(1)/etc/ipsec.secrets
534 $(INSTALL_CONF) ./files/ipsec.user $(1)/etc/
535 $(INSTALL_DIR) $(1)/etc/init.d
536 $(INSTALL_BIN) ./files/ipsec.init $(1)/etc/init.d/ipsec
537 $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/sbin/ipsec $(1)/usr/sbin/
538 endef
539
540 define Package/strongswan-ipsec/postinst
541 #!/bin/sh
542
543 [ -z "$${IPKG_INSTROOT}" ] || exit 0
544
545 opkg list-changed-conffiles | grep -qx /etc/ipsec.conf || {
546 rm -f /etc/ipsec.conf-opkg
547 }
548 endef
549
550 define Package/strongswan-libnttfft/install
551 $(INSTALL_DIR) $(1)/usr/lib/ipsec
552 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/libnttfft.so.* $(1)/usr/lib/ipsec/
553 endef
554
555 define Package/strongswan-pki/install
556 $(INSTALL_DIR) $(1)/etc/strongswan.d
557 $(CP) $(PKG_INSTALL_DIR)/etc/strongswan.d/pki.conf $(1)/etc/strongswan.d/
558 $(INSTALL_DIR) $(1)/usr/bin
559 $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/bin/pki $(1)/usr/bin/
560 endef
561
562 define Package/strongswan-swanctl/conffiles
563 /etc/config/ipsec
564 /etc/swanctl/
565 endef
566
567 define Package/strongswan-swanctl/install
568 $(INSTALL_DIR) $(1)/etc/init.d
569 $(INSTALL_DIR) $(1)/etc/swanctl/{bliss,conf.d,ecdsa,pkcs{12,8},private,pubkey,rsa}
570 $(INSTALL_DIR) $(1)/etc/swanctl/x509{,aa,ac,ca,crl,ocsp}
571 $(CP) $(PKG_INSTALL_DIR)/etc/swanctl/swanctl.conf $(1)/etc/swanctl/
572 echo "include /var/swanctl/swanctl.conf" >> $(1)/etc/swanctl/swanctl.conf
573 $(INSTALL_DIR) $(1)/usr/sbin
574 $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/sbin/swanctl $(1)/usr/sbin/
575 $(INSTALL_BIN) ./files/swanctl.init $(1)/etc/init.d/swanctl
576 endef
577
578 define Package/strongswan-gencerts/install
579 $(INSTALL_DIR) $(1)/usr/bin
580 $(INSTALL_BIN) ./files/gencerts.sh $(1)/usr/bin/gencerts
581 endef
582
583 define Package/strongswan-libtls/install
584 $(INSTALL_DIR) $(1)/usr/lib/ipsec
585 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/libtls.so.* $(1)/usr/lib/ipsec/
586 endef
587
588 define Plugin/duplicheck/install
589 $(INSTALL_DIR) $(1)/usr/lib/ipsec/plugins
590 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/duplicheck $(1)/usr/lib/ipsec/
591 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/plugins/libstrongswan-duplicheck.so $(1)/usr/lib/ipsec/plugins/
592 endef
593
594 define Plugin/eap-radius/install
595 $(INSTALL_DIR) $(1)/usr/lib/ipsec/plugins
596 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/libradius.so.* $(1)/usr/lib/ipsec/
597 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/plugins/libstrongswan-eap-radius.so $(1)/usr/lib/ipsec/plugins/
598 endef
599
600 define Plugin/attr-sql/install
601 $(INSTALL_DIR) $(1)/usr/lib/ipsec
602 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/pool $(1)/usr/lib/ipsec/
603 endef
604
605 define Plugin/stroke/install
606 $(INSTALL_DIR) $(1)/etc/ipsec.d/{aacerts,acerts,cacerts,certs,crls,ocspcerts,private,reqs}
607
608 $(INSTALL_DIR) $(1)/usr/lib/ipsec/plugins
609 $(INSTALL_BIN) $(PKG_INSTALL_DIR)/usr/lib/ipsec/{starter,stroke} $(1)/usr/lib/ipsec/
610 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/plugins/libstrongswan-stroke.so $(1)/usr/lib/ipsec/plugins/
611 endef
612
613 define Plugin/updown/install
614 $(INSTALL_DIR) $(1)/usr/lib/ipsec/plugins
615 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/_updown $(1)/usr/lib/ipsec/
616 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/plugins/libstrongswan-updown.so $(1)/usr/lib/ipsec/plugins/
617 $(INSTALL_DIR) $(1)/etc/hotplug.d/ipsec
618 $(CP) ./files/etc/hotplug.d/ipsec/01-user \
619 $(1)/etc/hotplug.d/ipsec/01-user
620 endef
621
622 define Plugin/vici/install
623 $(INSTALL_DIR) $(1)/usr/lib/ipsec/plugins
624 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/libvici.so.* $(1)/usr/lib/ipsec/
625 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/plugins/libstrongswan-vici.so $(1)/usr/lib/ipsec/plugins/
626 endef
627
628 define Plugin/whitelist/install
629 $(INSTALL_DIR) $(1)/usr/lib/ipsec/plugins
630 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/whitelist $(1)/usr/lib/ipsec/
631 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/plugins/libstrongswan-whitelist.so $(1)/usr/lib/ipsec/plugins/
632 endef
633
634 define Plugin/kernel-libipsec/install
635 $(INSTALL_DIR) $(1)/usr/lib/ipsec
636 $(CP) $(PKG_INSTALL_DIR)/usr/lib/ipsec/libipsec.so.* $(1)/usr/lib/ipsec/
637 endef
638
639 $(eval $(call BuildPackage,strongswan))
640 $(eval $(call BuildPackage,strongswan-default))
641 $(eval $(call BuildPackage,strongswan-full))
642 $(eval $(call BuildPackage,strongswan-minimal))
643 $(eval $(call BuildPackage,strongswan-isakmp))
644 $(eval $(call BuildPackage,strongswan-charon))
645 $(eval $(call BuildPackage,strongswan-charon-cmd))
646 $(eval $(call BuildPackage,strongswan-ipsec))
647 $(eval $(call BuildPackage,strongswan-libnttfft))
648 $(eval $(call BuildPackage,strongswan-pki))
649 $(eval $(call BuildPackage,strongswan-swanctl))
650 $(eval $(call BuildPackage,strongswan-gencerts))
651 $(eval $(call BuildPackage,strongswan-libtls))
652 $(eval $(call BuildPlugin,addrblock,RFC 3779 address block constraint support,))
653 $(eval $(call BuildPlugin,aes,AES crypto,))
654 $(eval $(call BuildPlugin,af-alg,AF_ALG crypto interface to Linux Crypto API,+kmod-crypto-user))
655 $(eval $(call BuildPlugin,agent,SSH agent signing,))
656 $(eval $(call BuildPlugin,attr,file based config,))
657 $(eval $(call BuildPlugin,attr-sql,SQL based config,+strongswan-charon))
658 $(eval $(call BuildPlugin,bliss,BLISS crypto,+strongswan-libnttfft +strongswan-mod-mgf1 +strongswan-mod-hmac))
659 $(eval $(call BuildPlugin,blowfish,Blowfish crypto,))
660 $(eval $(call BuildPlugin,ccm,CCM AEAD wrapper crypto,))
661 $(eval $(call BuildPlugin,chapoly,ChaCha20-Poly1305 AEAD crypto,+kmod-crypto-chacha20poly1305))
662 $(eval $(call BuildPlugin,cmac,CMAC crypto,))
663 $(eval $(call BuildPlugin,connmark,netfilter connection marking,+libip4tc))
664 $(eval $(call BuildPlugin,constraints,advanced X509 constraint checking,))
665 $(eval $(call BuildPlugin,coupling,IKEv2 plugin to couple peer certificates permanently to authentication,))
666 $(eval $(call BuildPlugin,ctr,Counter Mode wrapper crypto,))
667 $(eval $(call BuildPlugin,curl,cURL fetcher plugin,+PACKAGE_strongswan-mod-curl:libcurl))
668 $(eval $(call BuildPlugin,curve25519,Curve25519 Diffie-Hellman,))
669 $(eval $(call BuildPlugin,des,DES crypto,))
670 $(eval $(call BuildPlugin,dhcp,DHCP based attribute provider,))
671 $(eval $(call BuildPlugin,dnskey,DNS RR key decoding,))
672 $(eval $(call BuildPlugin,drbg,Deterministic random bit generator,,))
673 $(eval $(call BuildPlugin,duplicheck,advanced duplicate checking,))
674 $(eval $(call BuildPlugin,eap-identity,EAP identity helper,))
675 $(eval $(call BuildPlugin,eap-md5,EAP MD5 (CHAP) EAP auth,))
676 $(eval $(call BuildPlugin,eap-mschapv2,EAP MS-CHAPv2 EAP auth,+strongswan-mod-md4 +strongswan-mod-des))
677 $(eval $(call BuildPlugin,eap-radius,EAP RADIUS auth,))
678 $(eval $(call BuildPlugin,eap-tls,EAP TLS auth,+strongswan-libtls))
679 $(eval $(call BuildPlugin,farp,fake arp respsonses,))
680 $(eval $(call BuildPlugin,fips-prf,FIPS PRF crypto,+strongswan-mod-sha1))
681 $(eval $(call BuildPlugin,forecast,forward multi/broadcast traffic,+libip4tc +kmod-ipt-conntrack-extra))
682 $(eval $(call BuildPlugin,gcm,GCM AEAD wrapper crypto,))
683 $(eval $(call BuildPlugin,gcrypt,libgcrypt,+PACKAGE_strongswan-mod-gcrypt:libgcrypt))
684 $(eval $(call BuildPlugin,gmp,libgmp,+PACKAGE_strongswan-mod-gmp:libgmp))
685 $(eval $(call BuildPlugin,gmpdh,DH-Groups; no libgmp dep,))
686 $(eval $(call BuildPlugin,ha,high availability cluster,))
687 $(eval $(call BuildPlugin,hmac,HMAC crypto,))
688 $(eval $(call BuildPlugin,kdf,KDF/PRF+,))
689 $(eval $(call BuildPlugin,kernel-libipsec,libipsec kernel interface,))
690 $(eval $(call BuildPlugin,kernel-netlink,netlink kernel interface,))
691 $(eval $(call BuildPlugin,ldap,LDAP,+PACKAGE_strongswan-mod-ldap:libopenldap))
692 $(eval $(call BuildPlugin,led,LED blink on IKE activity,))
693 $(eval $(call BuildPlugin,load-tester,load testing,))
694 $(eval $(call BuildPlugin,nonce,nonce generation,))
695 $(eval $(call BuildPlugin,md4,MD4 crypto,))
696 $(eval $(call BuildPlugin,md5,MD5 crypto,))
697 $(eval $(call BuildPlugin,mgf1,MGF1 crypto,))
698 $(eval $(call BuildPlugin,mysql,MySQL database interface,+strongswan-mod-sql +PACKAGE_strongswan-mod-mysql:libmysqlclient-r))
699 $(eval $(call BuildPlugin,newhope,New Hope crypto,+strongswan-libnttfft +strongswan-mod-chapoly +strongswan-mod-sha3))
700 $(eval $(call BuildPlugin,ntru,NTRU crypto,+strongswan-mod-mgf1))
701 $(eval $(call BuildPlugin,openssl,OpenSSL crypto,+PACKAGE_strongswan-mod-openssl:libopenssl))
702 $(eval $(call BuildPlugin,pem,PEM decoding,))
703 $(eval $(call BuildPlugin,pgp,PGP key decoding,))
704 $(eval $(call BuildPlugin,pkcs1,PKCS1 key decoding,))
705 $(eval $(call BuildPlugin,pkcs7,PKCS7 key decoding,))
706 $(eval $(call BuildPlugin,pkcs8,PKCS8 key decoding,))
707 $(eval $(call BuildPlugin,pkcs11,PKCS11 key decoding,))
708 $(eval $(call BuildPlugin,pkcs12,PKCS12 key decoding,))
709 $(eval $(call BuildPlugin,pubkey,raw public key,))
710 $(eval $(call BuildPlugin,random,RNG,))
711 $(eval $(call BuildPlugin,rc2,RC2 crypto,))
712 $(eval $(call BuildPlugin,resolve,DNS resolver,))
713 $(eval $(call BuildPlugin,revocation,X509 CRL/OCSP revocation,))
714 $(eval $(call BuildPlugin,sha1,SHA1 crypto,))
715 $(eval $(call BuildPlugin,sha2,SHA2 crypto,))
716 $(eval $(call BuildPlugin,sha3,SHA3 and SHAKE crypto,))
717 $(eval $(call BuildPlugin,smp,SMP configuration and control interface,+PACKAGE_strongswan-mod-smp:libxml2))
718 $(eval $(call BuildPlugin,socket-default,default socket implementation for charon,))
719 $(eval $(call BuildPlugin,socket-dynamic,dynamic socket implementation for charon,))
720 $(eval $(call BuildPlugin,sql,SQL database interface,))
721 $(eval $(call BuildPlugin,sqlite,SQLite database interface,+strongswan-mod-sql +PACKAGE_strongswan-mod-sqlite:libsqlite3))
722 $(eval $(call BuildPlugin,sshkey,SSH key decoding,))
723 $(eval $(call BuildPlugin,stroke,Stroke,+strongswan-charon +strongswan-ipsec))
724 $(eval $(call BuildPlugin,test-vectors,crypto test vectors,))
725 $(eval $(call BuildPlugin,uci,UCI config interface,+PACKAGE_strongswan-mod-uci:libuci))
726 $(eval $(call BuildPlugin,unity,Cisco Unity extension,))
727 $(eval $(call BuildPlugin,updown,updown firewall,+iptables +IPV6:ip6tables +iptables-mod-ipsec +kmod-ipt-ipsec))
728 $(eval $(call BuildPlugin,vici,Versatile IKE Configuration Interface,))
729 $(eval $(call BuildPlugin,whitelist,peer identity whitelisting,))
730 $(eval $(call BuildPlugin,wolfssl,WolfSSL crypto,+PACKAGE_strongswan-mod-wolfssl:libwolfssl))
731 $(eval $(call BuildPlugin,x509,x509 certificate,))
732 $(eval $(call BuildPlugin,xauth-eap,EAP XAuth backend,))
733 $(eval $(call BuildPlugin,xauth-generic,generic XAuth backend,))
734 $(eval $(call BuildPlugin,xcbc,xcbc crypto,))
Mirror of packages feed