From 7af9cd3ac58e881e1ecfa9836ec54f3458b13564 Mon Sep 17 00:00:00 2001
From: Will Newton <will.newton@gmail.com>
Date: Mon, 22 Jun 2009 12:21:38 +0100
Subject: ipsec-tools: Bump version to 0.7.2.

Add support for configuring security context support to allow building for
non-SELinux targets.

Remove some obsolete patches.

Signed-off-by: Will Newton <will.newton@gmail.com>
Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>
---
 package/ipsec-tools/Config.in | 41 +++++++++++++++++++++++++++++------------
 1 file changed, 29 insertions(+), 12 deletions(-)

(limited to 'package/ipsec-tools/Config.in')

diff --git a/package/ipsec-tools/Config.in b/package/ipsec-tools/Config.in
index 355616d0a..a55ff0c2d 100644
--- a/package/ipsec-tools/Config.in
+++ b/package/ipsec-tools/Config.in
@@ -11,29 +11,29 @@ config BR2_PACKAGE_IPSEC_TOOLS_ADMINPORT
 	depends on BR2_PACKAGE_IPSEC_TOOLS
 	bool "Enable racoonctl(8)."
 	help
-		Lets racoon to listen to racoon admin port, which is to
-	        be contacted by racoonctl(8).
+	  Lets racoon to listen to racoon admin port, which is to
+	  be contacted by racoonctl(8).
 
 config BR2_PACKAGE_IPSEC_TOOLS_NATT
 	depends on BR2_PACKAGE_IPSEC_TOOLS
 	bool "Enable NAT-Traversal"
 	help
-		This needs kernel support, which is available on Linux. On
-		NetBSD, NAT-Traversal kernel support has not been integrated
-		yet, you can get it from here:
+	  This needs kernel support, which is available on Linux. On
+	  NetBSD, NAT-Traversal kernel support has not been integrated
+	  yet, you can get it from here:
 
-		http://ipsec-tools.sourceforge.net/netbsd_nat-t.diff If you
+	  http://ipsec-tools.sourceforge.net/netbsd_nat-t.diff If you
 
-		live in a country where software patents are legal, using
-		NAT-Traversal might infringe a patent.
+	  live in a country where software patents are legal, using
+	  NAT-Traversal might infringe a patent.
 
 
 config BR2_PACKAGE_IPSEC_TOOLS_FRAG
 	depends on BR2_PACKAGE_IPSEC_TOOLS
 	bool "Enable IKE fragmentation."
 	help
-	        Enable IKE fragmentation, which is a workaround for
-	        broken routers that drop fragmented packets
+	  Enable IKE fragmentation, which is a workaround for
+	  broken routers that drop fragmented packets
 
 config BR2_PACKAGE_IPSEC_TOOLS_STATS
 	default y
@@ -45,8 +45,8 @@ config BR2_PACKAGE_IPSEC_TOOLS_IPV6
 	depends on BR2_PACKAGE_IPSEC_TOOLS && BR2_INET_IPV6
 	bool "Enable IPv6 support"
 	help
-		This option has no effect if uClibc has been compiled without
-		IPv6 support.
+	  This option has no effect if uClibc has been compiled without
+	  IPv6 support.
 
 config BR2_PACKAGE_IPSEC_TOOLS_READLINE
 	depends on BR2_PACKAGE_IPSEC_TOOLS
@@ -60,3 +60,20 @@ config BR2_PACKAGE_IPSEC_TOOLS_LIBS
 	help
 	  Install libipsec.a and libracoon.a under staging_dir/lib for further
 	  development on a host machine.
+
+choice
+	prompt "Security context"
+	default BR2_PACKAGE_IPSEC_SECCTX_DISABLE
+	help
+	  Selects whether or not to enable security context support.
+
+config BR2_PACKAGE_IPSEC_SECCTX_DISABLE
+	bool "Disable security context support"
+
+config BR2_PACKAGE_IPSEC_SECCTX_ENABLE
+	bool "Enable SELinux security context support"
+
+config BR2_PACKAGE_IPSEC_SECCTX_KERNEL
+	bool "Enable kernel security context"
+
+endchoice
-- 
cgit v1.2.3