1 |
flameeyes 14/09/29 21:29:13 |
2 |
|
3 |
Modified: ChangeLog |
4 |
Added: sudo-1.8.11.ebuild |
5 |
Removed: sudo-1.8.6_p8.ebuild sudo-1.8.9_p5.ebuild |
6 |
sudo-1.8.10_p2.ebuild sudo-1.8.8.ebuild |
7 |
Log: |
8 |
Version bump and remove old. |
9 |
|
10 |
(Portage version: 2.2.14_rc1/cvs/Linux x86_64, signed Manifest commit with key D4301342) |
11 |
|
12 |
Revision Changes Path |
13 |
1.365 app-admin/sudo/ChangeLog |
14 |
|
15 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/app-admin/sudo/ChangeLog?rev=1.365&view=markup |
16 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/app-admin/sudo/ChangeLog?rev=1.365&content-type=text/plain |
17 |
diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/app-admin/sudo/ChangeLog?r1=1.364&r2=1.365 |
18 |
|
19 |
Index: ChangeLog |
20 |
=================================================================== |
21 |
RCS file: /var/cvsroot/gentoo-x86/app-admin/sudo/ChangeLog,v |
22 |
retrieving revision 1.364 |
23 |
retrieving revision 1.365 |
24 |
diff -u -r1.364 -r1.365 |
25 |
--- ChangeLog 9 May 2014 10:08:23 -0000 1.364 |
26 |
+++ ChangeLog 29 Sep 2014 21:29:13 -0000 1.365 |
27 |
@@ -1,6 +1,13 @@ |
28 |
# ChangeLog for app-admin/sudo |
29 |
# Copyright 1999-2014 Gentoo Foundation; Distributed under the GPL v2 |
30 |
-# $Header: /var/cvsroot/gentoo-x86/app-admin/sudo/ChangeLog,v 1.364 2014/05/09 10:08:23 flameeyes Exp $ |
31 |
+# $Header: /var/cvsroot/gentoo-x86/app-admin/sudo/ChangeLog,v 1.365 2014/09/29 21:29:13 flameeyes Exp $ |
32 |
+ |
33 |
+*sudo-1.8.11 (29 Sep 2014) |
34 |
+ |
35 |
+ 29 Sep 2014; Diego E. Pettenò <flameeyes@g.o> +sudo-1.8.11.ebuild, |
36 |
+ -sudo-1.8.10_p2.ebuild, -sudo-1.8.6_p8.ebuild, -sudo-1.8.8.ebuild, |
37 |
+ -sudo-1.8.9_p5.ebuild: |
38 |
+ Version bump and remove old. |
39 |
|
40 |
*sudo-1.8.10_p3 (09 May 2014) |
41 |
|
42 |
|
43 |
|
44 |
|
45 |
1.1 app-admin/sudo/sudo-1.8.11.ebuild |
46 |
|
47 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/app-admin/sudo/sudo-1.8.11.ebuild?rev=1.1&view=markup |
48 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/app-admin/sudo/sudo-1.8.11.ebuild?rev=1.1&content-type=text/plain |
49 |
|
50 |
Index: sudo-1.8.11.ebuild |
51 |
=================================================================== |
52 |
# Copyright 1999-2014 Gentoo Foundation |
53 |
# Distributed under the terms of the GNU General Public License v2 |
54 |
# $Header: /var/cvsroot/gentoo-x86/app-admin/sudo/sudo-1.8.11.ebuild,v 1.1 2014/09/29 21:29:13 flameeyes Exp $ |
55 |
|
56 |
EAPI=5 |
57 |
|
58 |
inherit eutils pam multilib libtool |
59 |
|
60 |
MY_P=${P/_/} |
61 |
MY_P=${MY_P/beta/b} |
62 |
|
63 |
uri_prefix= |
64 |
case ${P} in |
65 |
*_beta*|*_rc*) uri_prefix=beta/ ;; |
66 |
esac |
67 |
|
68 |
DESCRIPTION="Allows users or groups to run commands as other users" |
69 |
HOMEPAGE="http://www.sudo.ws/" |
70 |
SRC_URI="http://www.sudo.ws/sudo/dist/${uri_prefix}${MY_P}.tar.gz |
71 |
ftp://ftp.sudo.ws/pub/sudo/${uri_prefix}${MY_P}.tar.gz" |
72 |
|
73 |
# Basic license is ISC-style as-is, some files are released under |
74 |
# 3-clause BSD license |
75 |
LICENSE="ISC BSD" |
76 |
SLOT="0" |
77 |
KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-fbsd ~sparc-fbsd ~x86-fbsd ~x64-freebsd ~sparc-solaris" |
78 |
IUSE="ldap nls pam offensive selinux skey +sendmail" |
79 |
|
80 |
DEPEND="pam? ( virtual/pam ) |
81 |
skey? ( >=sys-auth/skey-1.1.5-r1 ) |
82 |
ldap? ( |
83 |
>=net-nds/openldap-2.1.30-r1 |
84 |
dev-libs/cyrus-sasl |
85 |
) |
86 |
sys-libs/zlib" |
87 |
RDEPEND="${DEPEND} |
88 |
selinux? ( sec-policy/selinux-sudo ) |
89 |
ldap? ( dev-lang/perl ) |
90 |
pam? ( sys-auth/pambase ) |
91 |
>=app-misc/editor-wrapper-3 |
92 |
virtual/editor |
93 |
sendmail? ( virtual/mta )" |
94 |
DEPEND="${DEPEND} |
95 |
sys-devel/bison" |
96 |
|
97 |
S=${WORKDIR}/${MY_P} |
98 |
|
99 |
REQUIRED_USE="pam? ( !skey ) skey? ( !pam )" |
100 |
|
101 |
# The check_ttyname fails in the ebuild for various reasons. |
102 |
# See upstream http://www.sudo.ws/bugs/show_bug.cgi?id=643 |
103 |
RESTRICT=test |
104 |
|
105 |
MAKEOPTS+=" SAMPLES=" |
106 |
|
107 |
src_prepare() { |
108 |
elibtoolize |
109 |
} |
110 |
|
111 |
set_rootpath() { |
112 |
# FIXME: secure_path is a compile time setting. using ROOTPATH |
113 |
# is not perfect, env-update may invalidate this, but until it |
114 |
# is available as a sudoers setting this will have to do. |
115 |
einfo "Setting secure_path ..." |
116 |
|
117 |
# first extract the default ROOTPATH from build env |
118 |
ROOTPATH=$(unset ROOTPATH; . "${EPREFIX}"/etc/profile.env; echo "${ROOTPATH}") |
119 |
if [[ -z ${ROOTPATH} ]] ; then |
120 |
ewarn " Failed to find ROOTPATH, please report this" |
121 |
fi |
122 |
|
123 |
# then remove duplicate path entries |
124 |
cleanpath() { |
125 |
local newpath thisp IFS=: |
126 |
for thisp in $1 ; do |
127 |
if [[ :${newpath}: != *:${thisp}:* ]] ; then |
128 |
newpath+=:$thisp |
129 |
else |
130 |
einfo " Duplicate entry ${thisp} removed..." |
131 |
fi |
132 |
done |
133 |
ROOTPATH=${newpath#:} |
134 |
} |
135 |
cleanpath /bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:/opt/bin${ROOTPATH:+:${ROOTPATH}} |
136 |
|
137 |
# finally, strip gcc paths #136027 |
138 |
rmpath() { |
139 |
local e newpath thisp IFS=: |
140 |
for thisp in ${ROOTPATH} ; do |
141 |
for e ; do [[ $thisp == $e ]] && continue 2 ; done |
142 |
newpath+=:$thisp |
143 |
done |
144 |
ROOTPATH=${newpath#:} |
145 |
} |
146 |
rmpath '*/gcc-bin/*' '*/gnat-gcc-bin/*' '*/gnat-gcc/*' |
147 |
|
148 |
einfo "... done" |
149 |
} |
150 |
|
151 |
src_configure() { |
152 |
local ROOTPATH |
153 |
set_rootpath |
154 |
|
155 |
# audit: somebody got to explain me how I can test this before I |
156 |
# enable it.. - Diego |
157 |
# plugindir: autoconf code is crappy and does not delay evaluation |
158 |
# until `make` time, so we have to use a full path here rather than |
159 |
# basing off other values. |
160 |
econf \ |
161 |
--enable-zlib=system \ |
162 |
--with-secure-path="${ROOTPATH}" \ |
163 |
--with-editor="${EPREFIX}"/usr/libexec/editor \ |
164 |
--with-env-editor \ |
165 |
$(use_with offensive insults) \ |
166 |
$(use_with offensive all-insults) \ |
167 |
$(use_with ldap ldap_conf_file /etc/ldap.conf.sudo) \ |
168 |
$(use_with ldap) \ |
169 |
$(use_enable nls) \ |
170 |
$(use_with pam) \ |
171 |
$(use_with skey) \ |
172 |
$(use_with selinux) \ |
173 |
$(use_with sendmail) \ |
174 |
--without-opie \ |
175 |
--without-linux-audit \ |
176 |
--with-rundir="${EPREFIX}"/var/run/sudo \ |
177 |
--with-vardir="${EPREFIX}"/var/db/sudo \ |
178 |
--with-plugindir="${EPREFIX}"/usr/$(get_libdir)/sudo \ |
179 |
--docdir="${EPREFIX}"/usr/share/doc/${PF} |
180 |
} |
181 |
|
182 |
src_install() { |
183 |
default |
184 |
|
185 |
if use ldap ; then |
186 |
dodoc README.LDAP doc/schema.OpenLDAP |
187 |
dosbin plugins/sudoers/sudoers2ldif |
188 |
|
189 |
cat <<-EOF > "${T}"/ldap.conf.sudo |
190 |
# See ldap.conf(5) and README.LDAP for details |
191 |
# This file should only be readable by root |
192 |
|
193 |
# supported directives: host, port, ssl, ldap_version |
194 |
# uri, binddn, bindpw, sudoers_base, sudoers_debug |
195 |
# tls_{checkpeer,cacertfile,cacertdir,randfile,ciphers,cert,key |
196 |
EOF |
197 |
|
198 |
insinto /etc |
199 |
doins "${T}"/ldap.conf.sudo |
200 |
fperms 0440 /etc/ldap.conf.sudo |
201 |
fi |
202 |
|
203 |
pamd_mimic system-auth sudo auth account session |
204 |
|
205 |
keepdir /var/db/sudo |
206 |
fperms 0700 /var/db/sudo |
207 |
|
208 |
# Don't install into /var/run as that is a tmpfs most of the time |
209 |
# (bug #504854) |
210 |
rm -rf "${D}"/var/run |
211 |
} |
212 |
|
213 |
pkg_postinst() { |
214 |
if use ldap ; then |
215 |
ewarn |
216 |
ewarn "sudo uses the /etc/ldap.conf.sudo file for ldap configuration." |
217 |
ewarn |
218 |
if grep -qs '^[[:space:]]*sudoers:' "${ROOT}"/etc/nsswitch.conf ; then |
219 |
ewarn "In 1.7 series, LDAP is no more consulted, unless explicitly" |
220 |
ewarn "configured in /etc/nsswitch.conf." |
221 |
ewarn |
222 |
ewarn "To make use of LDAP, add this line to your /etc/nsswitch.conf:" |
223 |
ewarn " sudoers: ldap files" |
224 |
ewarn |
225 |
fi |
226 |
fi |
227 |
if use prefix ; then |
228 |
ewarn |
229 |
ewarn "To use sudo, you need to change file ownership and permissions" |
230 |
ewarn "with root privileges, as follows:" |
231 |
ewarn |
232 |
ewarn " # chown root:root ${EPREFIX}/usr/bin/sudo" |
233 |
ewarn " # chown root:root ${EPREFIX}/usr/lib/sudo/sudoers.so" |
234 |
ewarn " # chown root:root ${EPREFIX}/etc/sudoers" |
235 |
ewarn " # chown root:root ${EPREFIX}/etc/sudoers.d" |
236 |
ewarn " # chown root:root ${EPREFIX}/var/db/sudo" |
237 |
ewarn " # chmod 4111 ${EPREFIX}/usr/bin/sudo" |
238 |
ewarn |
239 |
fi |
240 |
|
241 |
elog "To use the -A (askpass) option, you need to install a compatible" |
242 |
elog "password program from the following list. Starred packages will" |
243 |
elog "automatically register for the use with sudo (but will not force" |
244 |
elog "the -A option):" |
245 |
elog "" |
246 |
elog " [*] net-misc/ssh-askpass-fullscreen" |
247 |
elog " net-misc/x11-ssh-askpass" |
248 |
elog "" |
249 |
elog "You can override the choice by setting the SUDO_ASKPASS environmnent" |
250 |
elog "variable to the program you want to use." |
251 |
} |