You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
111 lines
3.7 KiB
111 lines
3.7 KiB
8 years ago
|
# Copyright 1999-2017 Gentoo Foundation
|
||
8 years ago
|
# Distributed under the terms of the GNU General Public License v2
|
||
|
|
||
|
EAPI=6
|
||
|
|
||
8 years ago
|
inherit linux-mod bash-completion-r1
|
||
8 years ago
|
|
||
|
DESCRIPTION="Simple yet fast and modern VPN that utilizes state-of-the-art cryptography."
|
||
|
HOMEPAGE="https://www.wireguard.io/"
|
||
|
|
||
|
if [[ ${PV} == 9999 ]]; then
|
||
|
inherit git-r3
|
||
|
EGIT_REPO_URI="https://git.zx2c4.com/WireGuard"
|
||
|
KEYWORDS=""
|
||
|
else
|
||
8 years ago
|
SRC_URI="https://git.zx2c4.com/WireGuard/snapshot/WireGuard-${PV}.tar.xz"
|
||
|
S="${WORKDIR}/WireGuard-${PV}"
|
||
8 years ago
|
KEYWORDS="~amd64 ~x86 ~mips ~arm ~arm64"
|
||
8 years ago
|
fi
|
||
|
|
||
|
LICENSE="GPL-2"
|
||
|
SLOT="0"
|
||
8 years ago
|
IUSE="debug +module +tools module-src"
|
||
8 years ago
|
|
||
8 years ago
|
DEPEND="tools? ( net-libs/libmnl )"
|
||
8 years ago
|
RDEPEND="${DEPEND}"
|
||
|
|
||
|
MODULE_NAMES="wireguard(net:src)"
|
||
|
BUILD_PARAMS="KERNELDIR=${KERNEL_DIR} V=1"
|
||
8 years ago
|
BUILD_TARGETS="module"
|
||
8 years ago
|
CONFIG_CHECK="NET INET NET_UDP_TUNNEL NF_CONNTRACK NETFILTER_XT_MATCH_HASHLIMIT CRYPTO_BLKCIPHER ~PADATA ~IP6_NF_IPTABLES"
|
||
8 years ago
|
WARNING_PADATA="If you're running a multicore system you likely should enable CONFIG_PADATA for improved performance and parallel crypto."
|
||
8 years ago
|
WARNING_IP6_NF_IPTABLES="If your kernel has CONFIG_IPV6, you need CONFIG_IP6_NF_IPTABLES; otherwise WireGuard will not insert."
|
||
8 years ago
|
|
||
|
pkg_setup() {
|
||
8 years ago
|
if use module; then
|
||
|
linux-mod_pkg_setup
|
||
|
kernel_is -lt 4 1 0 && die "This version of ${PN} requires Linux >= 4.1"
|
||
|
fi
|
||
8 years ago
|
}
|
||
|
|
||
|
src_compile() {
|
||
8 years ago
|
use debug && BUILD_PARAMS="CONFIG_WIREGUARD_DEBUG=y ${BUILD_PARAMS}"
|
||
8 years ago
|
use module && linux-mod_src_compile
|
||
|
use tools && emake RUNSTATEDIR="${EPREFIX}/run" -C src/tools
|
||
8 years ago
|
}
|
||
|
|
||
|
src_install() {
|
||
8 years ago
|
use module && linux-mod_src_install
|
||
|
if use tools; then
|
||
|
dodoc README.md
|
||
|
dodoc -r contrib/examples
|
||
|
emake \
|
||
|
WITH_BASHCOMPLETION=yes \
|
||
|
WITH_SYSTEMDUNITS=yes \
|
||
|
WITH_WGQUICK=yes \
|
||
|
DESTDIR="${D}" \
|
||
|
BASHCOMPDIR="$(get_bashcompdir)" \
|
||
|
PREFIX="${EPREFIX}/usr" \
|
||
|
-C src/tools install
|
||
|
insinto /$(get_libdir)/netifrc/net
|
||
|
newins "${FILESDIR}"/wireguard-openrc.sh wireguard.sh
|
||
8 years ago
|
fi
|
||
8 years ago
|
use module-src && emake DESTDIR="${D}" PREFIX="${EPREFIX}/usr" -C src dkms-install
|
||
8 years ago
|
}
|
||
8 years ago
|
|
||
|
pkg_postinst() {
|
||
8 years ago
|
if use module-src && ! use module; then
|
||
8 years ago
|
einfo
|
||
8 years ago
|
einfo "You have enabled the module-src USE flag without the module USE"
|
||
|
einfo "flag. This means that sources are installed to"
|
||
|
einfo "${ROOT}usr/src/wireguard instead of having the"
|
||
8 years ago
|
einfo "kernel module compiled. You will need to compile the module"
|
||
8 years ago
|
einfo "yourself. Most likely, you don't want this USE flag, and should"
|
||
|
einfo "rather use USE=module"
|
||
8 years ago
|
einfo
|
||
|
fi
|
||
8 years ago
|
use module && linux-mod_pkg_postinst
|
||
|
|
||
8 years ago
|
ewarn
|
||
|
ewarn "This software is experimental and has not yet been released."
|
||
|
ewarn "As such, it may contain significant issues. Please do not file"
|
||
|
ewarn "bug reports with Gentoo, but rather direct them upstream to:"
|
||
|
ewarn
|
||
|
ewarn " team@wireguard.io security@wireguard.io"
|
||
|
ewarn
|
||
8 years ago
|
|
||
8 years ago
|
if use tools; then
|
||
|
einfo
|
||
|
einfo "After installing WireGuard, if you'd like to try sending some packets through"
|
||
|
einfo "WireGuard, you may use, for testing purposes only, the insecure client.sh"
|
||
|
einfo "test example script:"
|
||
|
einfo
|
||
|
einfo " \$ bzcat ${ROOT}usr/share/doc/${PF}/examples/ncat-client-server/client.sh.bz2 | sudo bash -"
|
||
|
einfo
|
||
|
einfo "This will automatically setup interface wg0, through a very insecure transport"
|
||
|
einfo "that is only suitable for demonstration purposes. You can then try loading the"
|
||
|
einfo "hidden website or sending pings:"
|
||
|
einfo
|
||
|
einfo " \$ chromium http://192.168.4.1"
|
||
|
einfo " \$ ping 192.168.4.1"
|
||
|
einfo
|
||
|
einfo "If you'd like to redirect your internet traffic, you can run it with the"
|
||
|
einfo "\"default-route\" argument. You may not use this server for any abusive or illegal"
|
||
|
einfo "purposes. It is for quick testing only."
|
||
|
einfo
|
||
|
einfo "More info on getting started can be found at: https://www.wireguard.io/quickstart/"
|
||
|
einfo
|
||
|
fi
|
||
8 years ago
|
}
|