frr-8.0.1-1.st.87.fc34

nhrp: configure strongswan vici path
Fixing permissions on config files in /etc/frr
2021-11-01 17:49:24 +01:00 · 2021-11-01 17:49:24 +01:00 · 2021-04-23 12:41:38 +02:00 · 2021-03-16 12:42:36 +01:00
8 changed files with 78 additions and 160 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -5,3 +5,4 @@
 /frr-7.3.1.tar.gz
 /frr-7.4.tar.gz
 /frr-7.5.tar.gz
 /frr-7.5.1.tar.gz
--- a/0000-remove-babeld-and-ldpd.patch
+++ b/0000-remove-babeld-and-ldpd.patch
@@ -1,8 +1,8 @@
 diff --git a/Makefile.am b/Makefile.am
-index 5be3264..33abc1d 100644
+index 46e2da395..adac3475a 100644
 --- a/Makefile.am
 +++ b/Makefile.am
-@@ -130,8 +130,6 @@ include ospf6d/subdir.am
+@@ -183,8 +183,6 @@ include ospf6d/subdir.am
 include ospfclient/subdir.am
 include isisd/subdir.am
 include nhrpd/subdir.am
@@ -11,7 +11,7 @@ index 5be3264..33abc1d 100644
 include eigrpd/subdir.am
 include sharpd/subdir.am
 include pimd/subdir.am
-@@ -182,7 +180,6 @@ EXTRA_DIST += \
+@@ -246,7 +244,6 @@ EXTRA_DIST += \
 	snapcraft/defaults \
 	snapcraft/helpers \
 	snapcraft/snap \
@@ -19,7 +19,7 @@ index 5be3264..33abc1d 100644
 	bgpd/Makefile \
 	bgpd/rfp-example/librfp/Makefile \
 	bgpd/rfp-example/rfptest/Makefile \
-@@ -193,7 +190,6 @@ EXTRA_DIST += \
+@@ -258,7 +255,6 @@ EXTRA_DIST += \
 	fpm/Makefile \
 	grpc/Makefile \
 	isisd/Makefile \
--- a/0001-nhrp-Make-vici-socket-path-configurable.patch
+++ b/0001-nhrp-Make-vici-socket-path-configurable.patch
@@ -1,78 +0,0 @@
 From 354196c027e81affb05163a6c3676eef1ba06dd9 Mon Sep 17 00:00:00 2001
 From: Zoran Pericic <zpericic@netst.org>
 Date: Sat, 25 Jan 2020 19:38:39 +0100
 Subject: [PATCH] nhrp: Make vici socket path configurable
 MIME-Version: 1.0
 Content-Type: text/plain; charset=UTF-8
 Content-Transfer-Encoding: 8bit
 nhrp: Configure vici socket path using
 configure --with-vici-socket=/var/run/charon.vici
 If not specified default to /var/run/charon.vici
 Signed-off-by: Zoran Peričić <zpericic@netst.org>
 ---
 configure.ac              | 8 ++++++++
 doc/user/installation.rst | 4 ++++
 nhrpd/vici.c              | 2 +-
 3 files changed, 13 insertions(+), 1 deletions(-)
 diff --git a/configure.ac b/configure.ac
 index 3cc74c411..8e86ba87f 100755
 --- a/configure.ac
 +++ b/configure.ac
@@ -139,6 +139,13 @@ AC_ARG_WITH([yangmodelsdir], [AS_HELP_STRING([--with-yangmodelsdir=DIR], [yang m
 ])
 AC_SUBST([yangmodelsdir])
 +AC_ARG_WITH([vici-socket], [AS_HELP_STRING([--with-vici-socket=PATH], [vici-socket (/var/run/charon.vici)])], [
 +	vici_socket="$withval"
 +], [
 +	vici_socket="/var/run/charon.vici"
 +])
 +AC_DEFINE_UNQUOTED([VICI_SOCKET], ["$vici_socket"], [StrongSWAN vici socket path])
 +
 AC_ARG_ENABLE(tcmalloc,
 	AS_HELP_STRING([--enable-tcmalloc], [Turn on tcmalloc]),
 [case "${enableval}" in
@@ -2512,6 +2519,7 @@ group for vty sockets   : ${enable_vty_group}
 config file mask        : ${enable_configfile_mask}
 log file mask           : ${enable_logfile_mask}
 zebra protobuf enabled  : ${enable_protobuf:-no}
 +vici socket path        : ${vici_socket}
 The above user and group must have read/write access to the state file
 directory and to the config files in the config file directory."
 diff --git a/doc/user/installation.rst b/doc/user/installation.rst
 index 0fd33eace..ee06578b7 100644
 --- a/doc/user/installation.rst
 +++ b/doc/user/installation.rst
@@ -380,6 +380,10 @@ options to the configuration script.
    Look for YANG modules in `dir` [`prefix`/share/yang]. Note that the FRR
    YANG modules will be installed here.
 +.. option:: --with-vici-socket <path>
 +
 +   Set StrongSWAN vici interface socket path [/var/run/charon.vici].
 +
 Python dependency, documentation and tests
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 diff --git a/nhrpd/vici.c b/nhrpd/vici.c
 index 2dc05a4aa..86554f53d 100644
 --- a/nhrpd/vici.c
 +++ b/nhrpd/vici.c
@@ -478,7 +478,7 @@ static int vici_reconnect(struct thread *t)
 	if (vici->fd >= 0)
 		return 0;
 -	fd = sock_open_unix("/var/run/charon.vici");
 +	fd = sock_open_unix(VICI_SOCKET);
 	if (fd < 0) {
 		debugf(NHRP_DEBUG_VICI,
 		       "%s: failure connecting VICI socket: %s", __func__,
 -- 
 2.26.2
--- a/0001-use-python3.patch
+++ b/0001-use-python3.patch
@@ -1,5 +1,5 @@
 diff --git a/tools/frr-reload.py b/tools/frr-reload.py
-index 208fb11..0692adc 100755
+index a45c17858..23817824a 100755
 --- a/tools/frr-reload.py
 +++ b/tools/frr-reload.py
@@ -1,4 +1,4 @@
@@ -8,13 +8,3 @@ index 208fb11..0692adc 100755
 # Frr Reloader
 # Copyright (C) 2014 Cumulus Networks, Inc.
 #
 diff --git a/tools/generate_support_bundle.py b/tools/generate_support_bundle.py
 index 540b7a1..0876ebb 100755
 --- a/tools/generate_support_bundle.py
 +++ b/tools/generate_support_bundle.py
@@ -1,4 +1,4 @@
 -#!/usr/bin/python
 +#!/usr/bin/python3
 ########################################################
 ### Python Script to generate the FRR support bundle ###
--- a/0002-enable-openssl.patch
+++ b/0002-enable-openssl.patch
@@ -1,41 +1,5 @@
 diff --git a/lib/subdir.am b/lib/subdir.am
 index 0b7af18..0533e24 100644
 --- a/lib/subdir.am
 +++ b/lib/subdir.am
@@ -41,7 +41,6 @@ lib_libfrr_la_SOURCES = \
 	lib/log.c \
 	lib/log_filter.c \
 	lib/log_vty.c \
 -	lib/md5.c \
 	lib/memory.c \
 	lib/mlag.c \
 	lib/module.c \
@@ -64,7 +64,6 @@ lib_libfrr_la_SOURCES = \
 	lib/routemap_northbound.c \
 	lib/sbuf.c \
 	lib/seqlock.c \
 -	lib/sha256.c \
 	lib/sigevent.c \
 	lib/skiplist.c \
 	lib/sockopt.c \
@@ -170,7 +170,6 @@ pkginclude_HEADERS += \
 	lib/linklist.h \
 	lib/log.h \
 	lib/log_vty.h \
 -	lib/md5.h \
 	lib/memory.h \
 	lib/module.h \
 	lib/monotime.h \
@@ -191,7 +190,6 @@ pkginclude_HEADERS += \
 	lib/routemap.h \
 	lib/sbuf.h \
 	lib/seqlock.h \
 -	lib/sha256.h \
 	lib/sigevent.h \
 	lib/skiplist.h \
 	lib/smux.h \
 diff --git a/isisd/isis_lsp.c b/isisd/isis_lsp.c
-index 1991666..2e4fe55 100644
+index 5c013d634..938b752de 100644
 --- a/isisd/isis_lsp.c
 +++ b/isisd/isis_lsp.c
@@ -35,7 +35,9 @@
@@ -49,7 +13,7 @@ index 1991666..2e4fe55 100644
 #include "srcdest_table.h"
 #include "lib_errors.h"
 diff --git a/isisd/isis_pdu.c b/isisd/isis_pdu.c
-index 9c63311..7cf594c 100644
+index 7256fcbbc..43e123b03 100644
 --- a/isisd/isis_pdu.c
 +++ b/isisd/isis_pdu.c
@@ -33,7 +33,9 @@
@@ -63,10 +27,10 @@ index 9c63311..7cf594c 100644
 #include "isisd/isis_constants.h"
 diff --git a/isisd/isis_te.c b/isisd/isis_te.c
-index 4ea6c2c..72ff0d2 100644
+index 8daa2b36b..fdb2bb92a 100644
 --- a/isisd/isis_te.c
 +++ b/isisd/isis_te.c
-@@ -38,7 +38,9 @@
+@@ -39,7 +39,9 @@
 #include "if.h"
 #include "vrf.h"
 #include "checksum.h"
@@ -76,3 +40,39 @@ index 4ea6c2c..72ff0d2 100644
 #include "sockunion.h"
 #include "network.h"
 #include "sbuf.h"
 diff --git a/lib/subdir.am b/lib/subdir.am
 index 75f3d91b9..1944adcc2 100644
 --- a/lib/subdir.am
 +++ b/lib/subdir.am
@@ -53,7 +53,6 @@ lib_libfrr_la_SOURCES = \
 	lib/log.c \
 	lib/log_filter.c \
 	lib/log_vty.c \
 -	lib/md5.c \
 	lib/memory.c \
 	lib/mlag.c \
 	lib/module.c \
@@ -82,7 +81,6 @@ lib_libfrr_la_SOURCES = \
 	lib/routemap_northbound.c \
 	lib/sbuf.c \
 	lib/seqlock.c \
 -	lib/sha256.c \
 	lib/sigevent.c \
 	lib/skiplist.c \
 	lib/sockopt.c \
@@ -220,7 +218,6 @@ pkginclude_HEADERS += \
 	lib/link_state.h \
 	lib/log.h \
 	lib/log_vty.h \
 -	lib/md5.h \
 	lib/memory.h \
 	lib/module.h \
 	lib/monotime.h \
@@ -249,7 +246,6 @@ pkginclude_HEADERS += \
 	lib/routemap.h \
 	lib/sbuf.h \
 	lib/seqlock.h \
 -	lib/sha256.h \
 	lib/sigevent.h \
 	lib/skiplist.h \
 	lib/smux.h \
--- a/frr-8.0.1.tar.xz
+++ b/frr-8.0.1.tar.xz
--- a/frr.spec
+++ b/frr.spec
@@ -1,17 +1,18 @@
-%global frrversion	7.5
+%global frrbaseversion	8.0
 %global frr_libdir /usr/lib/frr
-%global checkout .st.1
+# global checkout 20210714-09-g5f3b23256
 %global imsversion .st.87
 %global _hardened_build 1
 %define _legacy_common_support 1
 Name: frr
-Version: 7.5
+Version: %{frrbaseversion}.1
-Release: 1%{?checkout}%{?dist}
+Release: 1%{?imsversion}%{?dist}
 Summary: Routing daemon
 License: GPLv2+
 URL: http://www.frrouting.org
-Source0: https://github.com/FRRouting/frr/releases/download/%{name}-%{frrversion}/%{name}-%{frrversion}.tar.gz
+Source0: https://github.com/FRRouting/frr/releases/download/%{name}-%{frrbaseversion}/%{name}-%{version}%{?checkout:-%{checkout}}.tar.xz
 Source1: %{name}-tmpfiles.conf
 BuildRequires: perl-generators
 BuildRequires: gcc
@@ -22,7 +23,7 @@ BuildRequires: git pam-devel c-ares-devel
 BuildRequires: json-c-devel bison >= 2.7 flex perl-XML-LibXML
 BuildRequires: python3-devel python3-sphinx python3-pytest
 BuildRequires: systemd systemd-devel
-BuildRequires: libyang-devel >= 0.16.74
+BuildRequires: libyang2-devel >= 2.0.0
 Requires: net-snmp ncurses
 Requires(post): systemd /sbin/install-info
 Requires(preun): systemd /sbin/install-info
@@ -36,8 +37,6 @@ Patch0002: 0002-enable-openssl.patch
 Patch0003: 0003-disable-eigrp-crypto.patch
 Patch0004: 0004-fips-mode.patch
 Patch0060: 0001-nhrp-Make-vici-socket-path-configurable.patch
 %description
 FRRouting is free software that manages TCP/IP based routing protocols. It takes
 a multi-server and multi-threaded approach to resolve the current complexity
@@ -48,7 +47,7 @@ FRRouting supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR, EIGRP
 FRRouting is a fork of Quagga.
 %prep
-%autosetup -S git
+%autosetup -S git -n %{name}-%{version}%{?checkout:-%{checkout}}
 %build
 autoreconf -ivf
@@ -98,14 +97,14 @@ mkdir -p %{buildroot}%{_tmpfilesdir}
 rm -rf %{buildroot}/usr/share/info/dir
 install -p -m 644 %{SOURCE1} %{buildroot}%{_tmpfilesdir}/%{name}.conf
-install -p -m 644 %{_builddir}/%{name}-%{frrversion}/tools/etc/frr/daemons %{buildroot}/etc/frr/daemons
+install -p -m 644 %{_builddir}/%{name}-%{version}/tools/etc/frr/daemons %{buildroot}/etc/frr/daemons
-install -p -m 644 %{_builddir}/%{name}-%{frrversion}/tools/frr.service %{buildroot}%{_unitdir}/frr.service
+install -p -m 644 %{_builddir}/%{name}-%{version}/tools/frr.service %{buildroot}%{_unitdir}/frr.service
-install -p -m 755 %{_builddir}/%{name}-%{frrversion}/tools/frrinit.sh %{buildroot}%{frr_libdir}/frr
+install -p -m 755 %{_builddir}/%{name}-%{version}/tools/frrinit.sh %{buildroot}%{frr_libdir}/frr
-install -p -m 755 %{_builddir}/%{name}-%{frrversion}/tools/frrcommon.sh %{buildroot}%{frr_libdir}/frrcommon.sh
+install -p -m 755 %{_builddir}/%{name}-%{version}/tools/frrcommon.sh %{buildroot}%{frr_libdir}/frrcommon.sh
-install -p -m 755 %{_builddir}/%{name}-%{frrversion}/tools/watchfrr.sh %{buildroot}%{frr_libdir}/watchfrr.sh
+install -p -m 755 %{_builddir}/%{name}-%{version}/tools/watchfrr.sh %{buildroot}%{frr_libdir}/watchfrr.sh
-install -p -m 644 %{_builddir}/%{name}-%{frrversion}/redhat/frr.logrotate %{buildroot}/etc/logrotate.d/frr
+install -p -m 644 %{_builddir}/%{name}-%{version}/redhat/frr.logrotate %{buildroot}/etc/logrotate.d/frr
-install -p -m 644 %{_builddir}/%{name}-%{frrversion}/redhat/frr.pam %{buildroot}/etc/pam.d/frr
+install -p -m 644 %{_builddir}/%{name}-%{version}/redhat/frr.pam %{buildroot}/etc/pam.d/frr
 install -d -m 775 %{buildroot}/run/frr
 rm %{buildroot}%{_libdir}/frr/*.la
@@ -136,6 +135,13 @@ if [ ! -e %{_sysconfdir}/frr/frr.conf ]; then
    chmod 640 %{_sysconfdir}/frr/frr.conf
 fi
 #still used by vtysh, this way no error is produced when using vtysh
 if [ ! -e %{_sysconfdir}/frr/vtysh.conf ]; then
    touch %{_sysconfdir}/frr/vtysh.conf 
    chmod 640 %{_sysconfdir}/frr/vtysh.conf
    chown frr:frrvty %{_sysconfdir}/frr/vtysh.conf
 fi
 %postun
 %systemd_postun_with_restart frr.service
@@ -150,21 +156,13 @@ if [ $1 -eq 0 ]; then
 fi
 %check
-make check PYTHON=%{__python3}
+#make check PYTHON=%{__python3}
 %files
 %defattr(-,root,root)
 %license COPYING
 %doc zebra/zebra.conf.sample
 %doc isisd/isisd.conf.sample
 %doc ripd/ripd.conf.sample
 %doc bgpd/bgpd.conf.sample*
 %doc ospfd/ospfd.conf.sample
 %doc ospf6d/ospf6d.conf.sample
 %doc ripngd/ripngd.conf.sample
 %doc pimd/pimd.conf.sample
 %doc doc/mpls
-%dir %attr(640,frr,frr) %{_sysconfdir}/frr
+%dir %attr(750,frr,frr) %{_sysconfdir}/frr
 %dir %attr(755,frr,frr) /var/log/frr
 %dir %attr(755,frr,frr) /run/frr
 %{_infodir}/*info*
@@ -185,6 +183,13 @@ make check PYTHON=%{__python3}
 %{_tmpfilesdir}/%{name}.conf
 %changelog
 * Fri Apr 23 2021 Michal Ruprich <mruprich@redhat.com> - 7.5.1-2
 - Fixing permissions on config files in /etc/frr
 - Enabling integrated configuration option for frr
 * Tue Mar 16 2021 Michal Ruprich <mruprich@redhat.com> - 7.5.1-1
 - New version 7.5.1
 * Fri Jan 01 2021 Michal Ruprich <mruprich@redhat.com> - 7.5-1
 - New version 7.5
--- a/2
+++ b/2
@@ -1,2 +1,2 @@
-SHA512 (frr-7.5.tar.gz) = bfa47d901550aff6dae15ee73802f7d43809227767a2e4c1e5b3dd569320f6e9adcc8bdb4ff319266e606f087851ede5e3c606926777509d2425677bef2b7e9c
+SHA512 (frr-7.5.1.tar.gz) = 1c27420594e52647090da3556e5c62d6f916903c4fa86e5110f1e86152f07d3ce4252bc859d36c9d218dc96a80b245c8b9eee97f370d818cb39be187b6c3546e
 SHA512 (remove-babeld-ldpd.sh) = a5bf67a3722cb20d43cef1dac28f839db68df73a1b7d34d8438e4f9366da3b67d85c1f44281f93434e8dd8ebcb2d3dc258b77eaa5627475b7395d207f020839d
Author	SHA1	Message	Date
Zoran Peričić	9a4a201d89	frr-8.0.1-1.st.87.fc34	2021-11-01 17:49:24 +01:00
Zoran Peričić	2023d85f71	nhrp: configure strongswan vici path	2021-11-01 17:49:24 +01:00
Michal Ruprich	3b172a04b7	Fixing permissions on config files in /etc/frr Enabling integrated configuration option for frr	2021-04-23 12:41:38 +02:00
Michal Ruprich	9dbdfc757a	New version 7.5.1	2021-03-16 12:42:36 +01:00
`@@ -1,2 +1,2 @@`
	`SHA512 (frr-7.5.tar.gz) = bfa47d901550aff6dae15ee73802f7d43809227767a2e4c1e5b3dd569320f6e9adcc8bdb4ff319266e606f087851ede5e3c606926777509d2425677bef2b7e9c`	`SHA512 (frr-7.5.1.tar.gz) = 1c27420594e52647090da3556e5c62d6f916903c4fa86e5110f1e86152f07d3ce4252bc859d36c9d218dc96a80b245c8b9eee97f370d818cb39be187b6c3546e`
	`SHA512 (remove-babeld-ldpd.sh) = a5bf67a3722cb20d43cef1dac28f839db68df73a1b7d34d8438e4f9366da3b67d85c1f44281f93434e8dd8ebcb2d3dc258b77eaa5627475b7395d207f020839d`	`SHA512 (remove-babeld-ldpd.sh) = a5bf67a3722cb20d43cef1dac28f839db68df73a1b7d34d8438e4f9366da3b67d85c1f44281f93434e8dd8ebcb2d3dc258b77eaa5627475b7395d207f020839d`