Etusivu Tutki Apua
Kirjaudu sisään
oss
/
openadk
4
1
Fork 3
Tiedostot Ongelmat 1 Pull-pyynnöt 0 Wiki
Puu: f89ae85454
Branchit Tagit
openadk
/
package
/
openswan
/
patches
/
patch-Makefile_inc

patch-Makefile_inc 2.4 KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839 
  1. --- openswan-2.6.41.orig/Makefile.inc	2014-02-21 21:46:57.000000000 +0100
    2. 

  2. +++ openswan-2.6.41/Makefile.inc	2014-03-12 18:39:50.906115397 +0100
    3. 

  3. @@ -169,7 +169,7 @@ INSTALL=install
    4. 

  4.  # how backup names are composed.
    5. 

  5.  # Note that the install procedures will never overwrite an existing config
    6. 

  6.  # file, which is why -b is not specified for them.
    7. 

  7. -INSTBINFLAGS=-b --suffix=.old
    8. 

  8. +INSTBINFLAGS=
    9. 

  9.  INSTSUIDFLAGS=--mode=u+rxs,g+rx,o+rx --group=root -b --suffix=.old
    10. 

  10.  INSTMANFLAGS=
    11. 

  11.  INSTCONFFLAGS=
    12. 

  12. @@ -191,10 +191,10 @@ BISONOSFLAGS=
    13. 

  13.  #Example for a cross compile:
    14. 

  14.  #USERCOMPILE?=-g ${PORTDEFINE} -I/usr/local/arm_tools/arm-elf/inc -L/usr/local/arm_tools/lib/gcc-lib
    15. 

  15.  GCC_LINT ?= -DGCC_LINT
    16. 

  16. -USERCOMPILE?=-g -O3 -fPIE -fstack-protector --param=ssp-buffer-size=4 -Wformat -Wformat-security -Werror=format-security -D_FORTIFY_SOURCE=2 ${WERROR} $(GCC_LINT)
    17. 

  17. +USERCOMPILE?=-g -O3 -fPIE -fstack-protector --param=ssp-buffer-size=4 -Wformat -Wformat-security -D_FORTIFY_SOURCE=2 ${WERROR} $(GCC_LINT)
    18. 

  18.  # on fedora/rhel
    19. 

  19.  #USERCOMPILE?=-g -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4  -m64 -mtune=generic -fPIE -pie -DSUPPORT_BROKEN_ANDROID_ICS
    20. 

  20. -KLIPSCOMPILE=-O2 -fPIE -fstack-protector --param=ssp-buffer-size=4 -Wformat -Wformat-security -Werror=format-security -D_FORTIFY_SOURCE=2 -DCONFIG_KLIPS_ALG -DDISABLE_UDP_CHECKSUM
    21. 

  21. +KLIPSCOMPILE=-O2 -fPIE -fstack-protector --param=ssp-buffer-size=4 -Wformat -Wformat-security -D_FORTIFY_SOURCE=2 -DCONFIG_KLIPS_ALG -DDISABLE_UDP_CHECKSUM
    22. 

  22.  # Additional debugging for developers (warning: can crash openswan!)
    23. 

  23.  #USERCOMPILE?=-g -DLEAK_DETECTIVE -lefence
    24. 

  24.  # You can also run this before starting openswan on glibc systems:
    25. 

  25. @@ -283,12 +283,12 @@ RH_KERNELSRC?=/lib/modules/2.6.9-1.681_F
    26. 

  26.  # Note you need a locally running bind9 nameserver with lwres{} enabled
    27. 

  27.  # to use this, or have the "lwres" package installed and running.
    28. 

  28.  # This only affects conns that use DNS for keys in lookups.
    29. 

  29. -USE_LWRES?=false
    30. 

  30. +USE_LWRES?=true
    31. 

  31.  
    32. 

  32.  # Do a new lookup every time a connection is (re)started. This works better
    33. 

  33.  # on hosts with some dyndns service, since DPD will cause a new dns lookup,
    34. 

  34.  # but it could be a potential security issue if receiving spoofed dns.
    35. 

  35. -USE_DYNAMICDNS?=true
    36. 

  36. +USE_DYNAMICDNS?=false
    37. 

  37.  
    38. 

  38.  # Do we want all the configuration files like ipsec.conf and ipsec.secrets
    39. 

  39.  # and any certificates to be in a single directory defined by
    40.