# Copyright 1999-2005 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 # $Header: /var/cvsroot/gentoo-x86/dev-libs/cyrus-sasl/cyrus-sasl-2.1.18-r2.ebuild,v 1.9 2005/01/24 22:36:05 langthang Exp $ inherit eutils flag-o-matic gnuconfig DESCRIPTION="The Cyrus SASL (Simple Authentication and Security Layer)" HOMEPAGE="http://asg.web.cmu.edu/sasl/" SRC_URI="ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/${P}.tar.gz" LICENSE="as-is" SLOT="2" KEYWORDS="x86 ppc sparc mips alpha arm hppa amd64 ia64 s390 ppc64" IUSE="gdbm ldap mysql postgres kerberos static ssl java pam pam-mysql" RDEPEND="virtual/libc >=sys-libs/db-3.2 gdbm? ( >=sys-libs/gdbm-1.8.0 ) ldap? ( >=net-nds/openldap-2.0.25 ) mysql? ( >=dev-db/mysql-3.23.51 ) postgres? ( >=dev-db/postgresql-7.2 ) pam? ( >=sys-libs/pam-0.75 ) ssl? ( >=dev-libs/openssl-0.9.6d ) kerberos? ( virtual/krb5 ) java? ( virtual/jdk )" DEPEND="${RDEPEND} >=sys-apps/sed-4 >=sys-devel/autoconf-2.58 sys-devel/automake sys-devel/libtool" src_unpack() { unpack ${A} && cd "${S}" # Fix broken include. sed -e 's:sasl/sasl.h:sasl.h:' \ -i saslauthd/lak.c || die "sed failed" # Fix default port name for rimap auth mechanism. sed -e '/define DEFAULT_REMOTE_SERVICE/s:imap:imap2:' \ -i saslauthd/auth_rimap.c || die "sed failed" # DB4 detection and versioned symbols. epatch "${FILESDIR}/cyrus-sasl-2.1.18-db4.patch" # Add configdir support. epatch "${FILESDIR}/cyrus-sasl-2.1.17-configdir.patch" # Fix include path for newer PostgreSQL versions. epatch "${FILESDIR}/cyrus-sasl-2.1.17-pgsql-include.patch" # Bring plugins/digestmd5.c up to cvs 1.172 to fix buffer overflow epatch "${FILESDIR}/cyrus-sasl-2.1.18-cvs-1.172.patch" # Add setuid/setgid check for SASL_PATH epatch "${FILESDIR}/cyrus-sasl-2.1.18-sasl-path-fix.patch" # Support deprecated pam_mysql authentication, requested in Bug 39497 # Patch from: http://asg.web.cmu.edu/archive/message.php?mailbox=archive.cyrus-sasl&searchterm=patch&msg=4669 if use pam-mysql; then epatch "${FILESDIR}/cyrus-sasl-2.1.18-pam_mysql.patch" fi # Recreate configure. export WANT_AUTOCONF="2.5" rm -f configure config.h.in saslauthd/configure ebegin "Recreating configure" aclocal -I cmulocal -I config && autoheader && autoconf || \ die "recreate configure failed" eend $? cd "${S}/saslauthd" ebegin "Recreating saslauthd/configure" aclocal -I ../cmulocal -I ../config && autoheader && autoconf || \ die "recreate configure failed" eend $? } src_compile() { local myconf="--enable-login --enable-ntlm --disable-krb4 --disable-otp" myconf="${myconf} `use_enable static`" myconf="${myconf} `use_with ssl openssl`" myconf="${myconf} `use_with pam`" myconf="${myconf} `use_with ldap`" myconf="${myconf} `use_enable kerberos gssapi`" myconf="${myconf} `use_with mysql` `use_enable mysql sql`" myconf="${myconf} `use_with postgres pgsql` `use_enable postgres sql`" myconf="${myconf} `use_enable java` `use_with java javahome ${JAVA_HOME}`" # fix for bug #59634. langthang 20040810. if ! use ssl; then myconf="${myconf} --without-des" fi if use mysql || use postgres ; then myconf="${myconf} --enable-sql" else myconf="${myconf} --disable-sql" fi if use gdbm ; then myconf="${myconf} --with-dblib=gdbm" else myconf="${myconf} --with-dblib=berkeley" fi # Compaq-sdk checks for -D_REENTRANT and -pthread takes care the cpp stuff. use alpha && append-flags -D_REENTRANT -pthread # Detect mips systems properly. gnuconfig_update econf \ --with-saslauthd=/var/lib/sasl2 \ --with-pwcheck=/var/lib/sasl2 \ --with-configdir=/etc/sasl2 \ --with-plugindir=/usr/lib/sasl2 \ --with-dbpath=/etc/sasl2/sasldb2 \ ${myconf} || die "econf failed" # Parallel build doesn't work. emake -j1 || die "compile problem" } src_install () { einstall keepdir /var/lib/sasl2 /etc/sasl2 # Generate an empty sasldb2 with correct permissions. LD_OLD="${LD_LIBRARY_PATH}" export LD_LIBRARY_PATH="${D}/usr/lib" SASL_PATH="${D}/usr/lib/sasl2" echo "p" | "${D}/usr/sbin/saslpasswd2" -f "${D}/etc/sasl2/sasldb2" -p login "${D}/usr/sbin/saslpasswd2" -f "${D}/etc/sasl2/sasldb2" -d login export LD_LIBRARY_PATH="${LD_OLD}" chown root:mail "${D}/etc/sasl2/sasldb2" chmod 0640 "${D}/etc/sasl2/sasldb2" dodoc AUTHORS COPYING ChangeLog NEWS README doc/TODO doc/*.txt newdoc pwcheck/README README.pwcheck dohtml doc/*.html docinto examples dodoc sample/{*.[ch],Makefile} docinto saslauthd dodoc saslauthd/{AUTHORS,COPYING,ChangeLog,LDAP_SASLAUTHD,NEWS,README} if use pam ; then insinto /etc/pam.d newins "${FILESDIR}/saslauthd.pam" saslauthd fi exeinto /etc/init.d newexe "${FILESDIR}/pwcheck.rc6" pwcheck newexe "${FILESDIR}/saslauthd2.rc6" saslauthd insinto /etc/conf.d newins "${FILESDIR}/saslauthd2.conf" saslauthd } pkg_postinst() { if ! use pam-mysql && use pam && has_version 'sys-libs/pam_mysql'; then echo ewarn ewarn "Starting with version 2.1.17 of cyrus-sasl, the cyrus-sasl team has switched" ewarn "to an authentication style that BREAKS pam_mysql." ewarn ewarn "If you are using pam_mysql, it is recommended you convert to cyrus-sasl's" ewarn "auxprop sql authentication support using smtpd.conf." ewarn ewarn "If you do not wish to change your configuration, you may put \"pam-mysql\"" ewarn "in your USE flags to revert to the old (deprecated) authentication behavior." ewarn fi }