pkgname=iptables
pkgver=1.8.11
pkgrel=1
pkgdesc="A Linux kernel packet control tool"
arch=('x86_64')
license=('GPL2')
url='https://www.netfilter.org/projects/iptables/index.html'
depends=('glibc' 'bash')
makedepends=('linux-api-headers' 'chrpath')
options=('!libtool')
source=("https://www.netfilter.org/projects/iptables/files/${pkgname}-${pkgver}.tar.xz"
        'empty.rules'
        'simple_firewall.rules'
        'empty-filter.rules'
        'empty-mangle.rules'
        'empty-nat.rules'
        'empty-raw.rules'
        'empty-security.rules'
        'iptables.service'
        'ip6tables.service'
        'iptables-flush'
        'nft.patch')
sha256sums=('d87303d55ef8c92bcad4dd3f978b26d272013642b029425775f5bad1009fe7b2'
            '630d774f089703c2c7370db6d7c188dae25d00c26feaa3d3de8eb52519033948'
            '9e83d7ae39d31881790f814930d44acbaeab1520adb2fb4fcb80f0bbfab174b9'
            '09b90da35c2c8cb0fbda63b300f06d2387a102ca53a40980ef0b49829e249528'
            '92755648f456e235d17a8faeb5f46d27af66eb4db10ea4bac0abd3e35e2dae07'
            '52bd70dff3e1e1a64127ad7ed86840834b79756c3bdb6947b7c6279ffe95dd48'
            '5768a471c0559848635c39d270e456bfa5c43eda65f5f6f666fea2d277183a37'
            '91161a73f323016a9efc5eabd16243d20f8ca2467995cf0eabfb95f845090121'
            '8c0dfd864e2d4bc31fa4ea29d6b2f11c72e51374ee4106d98d600a24660e13f7'
            'f92b6fa2d90f04d9e8c2b0fff2ceb26a26042606d9fe95348d7f6ba26c837464'
            '5975b581632a6c90cf33273870bf8422b462aa380454bf8ed6a8327dbd868d03'
            '6335009b134bda21012fadd60e396b9bb649bdebae9b524474d6ac620f78544f')

build() {
  cd ${pkgname}-${pkgver}
  #patch -p1 -i ${srcdir}/nft.patch

  rm include/linux/types.h

 ./configure --prefix=/usr \
     --libexecdir=/usr/lib/iptables \
     --sysconfdir=/etc \
     --with-xtlibdir=/usr/lib/iptables \
     --enable-devel \
     --enable-shared \
     --disable-nftables
  make
}

package() {
  cd ${pkgname}-${pkgver}

  make DESTDIR=${pkgdir} install

  # http://www.spinics.net/lists/netfilter-devel/msg24969.html
  chrpath --delete ${pkgdir}/usr/lib/iptables/*.so

  cd ${srcdir}
  install -D -m644 empty.rules ${pkgdir}/etc/iptables/empty.rules
  install -D -m644 simple_firewall.rules ${pkgdir}/etc/iptables/simple_firewall.rules

  mkdir -p ${pkgdir}/var/lib/{iptables,ip6tables}
  install -m644 empty-{filter,mangle,nat,raw,security}.rules ${pkgdir}/var/lib/iptables
  install -m644 empty-{filter,mangle,nat,raw,security}.rules ${pkgdir}/var/lib/ip6tables

  # systemd 
  install -Dm644 ${srcdir}/iptables.service ${pkgdir}/usr/lib/systemd/system/iptables.service
  install -Dm644 ${srcdir}/ip6tables.service ${pkgdir}/usr/lib/systemd/system/ip6tables.service
  install -Dm755 ${srcdir}/iptables-flush ${pkgdir}/usr/lib/systemd/scripts/iptables-flush  
}