| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This commit updates $license variable in all APKBUILDs to comply with
short names specified by SPDX version 3.0 [1] where possible. It was
done using find-and-replace method on substrings inside $license
variables.
Only license names were updated, not "expressions" specifying relation
between the licenses (e.g. "X and Y", "X or Y", "X and (Y or Z)") or
exceptions (e.g. "X with exceptions").
Many licenses have a version or multiple variants, e.g. MPL-2.0,
BSD-2-Clause, BSD-3-Clause. However, $license in many aports do not
contain license version or variant. Since there's no way how to infer
this information just from abuild, it were left without the variant
suffix or version, i.e. non SPDX compliant.
GNU licenses (AGPL, GFDL, GPL, LGPL) are especially complicated. They
exist in two variants: -only (formerly e.g. GPL-2.0) and -or-later
(formerly e.g. GPL-2.0+). We did not systematically noted distinguish
between these variants, so GPL-2.0, GPL2, GPLv2 etc. may mean
GPL-2.0-only or GPL-2.0-or-later. Thus GNU licenses without "+" (e.g.
GPL2+) were left without the variant suffix, i.e. non SPDX compliant.
Note: This commit just fixes format of the license names, no
verification has been done if the specified license information is
actually correct!
[1]: https://spdx.org/licenses/
|
| | |
|
| |
|
|
|
|
|
| |
Most of these updates is based on data from https://repology.org/,
detection based on permanent redirect from http:// to https://.
$source urls are updated when they contain $url as substring.
|
| | |
|
| |
|
|
|
|
| |
CVE-2017-11185
remove also the ikev1 gre-key patch as obsolete
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
Now all invocations have following order of arguments (if present):
addgroup -S -g ... GROUP
adduser -S -u ... -D -H -h ... -s ... -G ... -g ... USER
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Following rules have been applied:
- script starts with shebang !#/bin/sh followed by blank line,
- script ends with exit 0 prepended by blank line,
- only stderr of adduser, addgroup or passwd is redirected to /dev/null,
- getent passwd/group instances has been removed,
- manual checking of file and group existence has been removed,
- `|| true` instances has been removed.
Comments and line wrapping have been preserved.
|
| |
|
|
|
|
| |
This way we can avoid ugly default:
Linux user,,,
|
| | |
|
| |
|
|
|
| |
no script requires openssl tool, the relevant openssl libraries
are pulled in automatically by abuild.
|
| |
|
|
|
| |
preserve 'status' action as per openrc standard. renamed to
fullstatus similar to apache2. ref #4979
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
This conforms to wiki documentation regarding package creation:
http://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package#license
|
| |
|
|
| |
remove upstreamed patches; rebase the rest
|
| |
|
|
|
| |
Since abuild v2.22.0, these are removed automatically unless 'libtool'
option has been specified.
|
| |
|
|
|
| |
- take the multiple CA fixes from upstream git branch
- add more child_sa states that can be monitored
|
| | |
|
| |
|
|
|
|
| |
- python is needed to prepare config file templates, ref #4484
- three cherry-picks from upstream git master and merge pending branches
- add patch to fix connection authentication when multiple CAs are allowed
|
| | |
|
| |
|
|
|
|
| |
also fixes a minor memory leak in patch 1001 (the offending hunk is
now just deleted, as other upstream commits fixed the issue it tried
to address)
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
and rename the patches so that we have groups for upstream
cherry-picks, patches we want to upstream, and locally carried patches.
|
| |
|
|
|
| |
interoperability fix to work with Alpine patched ipsec-tools
(will probably be removed after a migration period)
|
| | |
|
| |
|
|
|
| |
This also removes the GRE key patch -- it was incomplete and does
not fully fix the issues.
|
| |
|
|
|
| |
workaround for certain dmvpn issues due to not supporting grekey
handling in charon.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Make charon use 'ipsec' user and group, and enable the libcap
support as few capabilities need to be retained for configuring
IPsec SAs in to kernel.
This also introduces charon.initd which starts charon daemon only
and uses swanctl for configuration. It is a little bit more light
weight than running the 'starter' which seems to be deprecated.
Also the config format is completely different, but more flexible
and extensive.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
