From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id C78AB1396D1 for ; Sat, 19 Aug 2017 10:12:02 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 29E1BE0E33; Sat, 19 Aug 2017 10:12:02 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id EEA41E0E33 for ; Sat, 19 Aug 2017 10:12:01 +0000 (UTC) Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 0AA52341A33 for ; Sat, 19 Aug 2017 10:12:01 +0000 (UTC) Received: from localhost.localdomain (localhost [IPv6:::1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id 775677B0E for ; Sat, 19 Aug 2017 10:11:59 +0000 (UTC) From: "Sergei Trofimovich" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Sergei Trofimovich" Message-ID: <1503137515.564e4ed0715605dafe41568a3eb6690102cf6ca0.slyfox@gentoo> Subject: [gentoo-commits] repo/gentoo:master commit in: net-misc/radvd/ X-VCS-Repository: repo/gentoo X-VCS-Files: net-misc/radvd/radvd-2.17-r1.ebuild X-VCS-Directories: net-misc/radvd/ X-VCS-Committer: slyfox X-VCS-Committer-Name: Sergei Trofimovich X-VCS-Revision: 564e4ed0715605dafe41568a3eb6690102cf6ca0 X-VCS-Branch: master Date: Sat, 19 Aug 2017 10:11:59 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: 090ebf12-cc39-4cde-9218-d2c242c87992 X-Archives-Hash: e9907485948b5333b2c25e8dc4948cb0 commit: 564e4ed0715605dafe41568a3eb6690102cf6ca0 Author: Sergei Trofimovich gentoo org> AuthorDate: Sat Aug 19 10:10:09 2017 +0000 Commit: Sergei Trofimovich gentoo org> CommitDate: Sat Aug 19 10:11:55 2017 +0000 URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=564e4ed0 net-misc/radvd: fix /run/radvd clobbering on systemd, bug #603106 Bug happens because systemd has two conflicting mechanisms to create /var/run/: Via .service file: RuntimeDirectory=radvd ProtectSystem=full And via .tmpfilesd: d /run/radvd 0755 radvd radvd Systemd end up trying to start radvd in empty /var/. The change removes tmpfiles.d entry completely. Instead we rely on the following mechanisms to create /run/radvd: - openrc: /etc/init.d/radvd creates it with 'checkpath -d -o radvd:radvd ${PIDFILE%/*}' - systemd: radvd.service creates it with 'RuntimeDirectory=radvd' Reported-by: Randy Barlow Bug: https://bugs.gentoo.org/603106 Package-Manager: Portage-2.3.8, Repoman-2.3.3 net-misc/radvd/radvd-2.17-r1.ebuild | 66 +++++++++++++++++++++++++++++++++++++ 1 file changed, 66 insertions(+) diff --git a/net-misc/radvd/radvd-2.17-r1.ebuild b/net-misc/radvd/radvd-2.17-r1.ebuild new file mode 100644 index 00000000000..ffd9ad165f0 --- /dev/null +++ b/net-misc/radvd/radvd-2.17-r1.ebuild @@ -0,0 +1,66 @@ +# Copyright 1999-2017 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 + +EAPI=6 + +inherit systemd user eutils readme.gentoo-r1 + +DESCRIPTION="Linux IPv6 Router Advertisement Daemon" +HOMEPAGE="http://v6web.litech.org/radvd/" +SRC_URI="http://v6web.litech.org/radvd/dist/${P}.tar.gz" + +LICENSE="BSD" +SLOT="0" +KEYWORDS="~amd64 ~arm ~arm64 ~hppa ~ppc ~sparc ~x86 ~x86-fbsd" +IUSE="kernel_FreeBSD selinux test" + +CDEPEND="dev-libs/libdaemon" +DEPEND="${CDEPEND} + sys-devel/bison + sys-devel/flex + virtual/pkgconfig + test? ( dev-libs/check )" +RDEPEND="${CDEPEND} + selinux? ( sec-policy/selinux-radvd ) +" +DOCS=( CHANGES README TODO radvd.conf.example ) + +pkg_setup() { + enewgroup radvd + enewuser radvd -1 -1 /dev/null radvd +} + +src_configure() { + econf --with-pidfile=/run/radvd/radvd.pid \ + --disable-silent-rules \ + --with-systemdsystemunitdir=no \ + $(use_with test check) +} + +src_install() { + default + + insinto /usr/share/doc/${PF}/html + doins INTRO.html + + newinitd "${FILESDIR}"/${PN}-2.15.init ${PN} + newconfd "${FILESDIR}"/${PN}.conf ${PN} + + systemd_dounit "${FILESDIR}"/${PN}.service + + if use kernel_FreeBSD ; then + sed -i -e \ + 's/^SYSCTL_FORWARD=.*$/SYSCTL_FORWARD=net.inet6.ip6.forwarding/g' \ + "${D}"/etc/init.d/${PN} || die + fi + + readme.gentoo_create_doc +} + +DISABLE_AUTOFORMATTING=1 +DOC_CONTENTS="Please create a configuration file ${ROOT}etc/radvd.conf. +See ${ROOT}usr/share/doc/${PF} for an example. + +grsecurity users should allow a specific group to read /proc +and add the radvd user to that group, otherwise radvd may +segfault on startup."