1 |
commit: 8e0574b15e5d814f53f7abd2c11c1297b7973283 |
2 |
Author: Aaron Bauman <bman <AT> gentoo <DOT> org> |
3 |
AuthorDate: Thu Jun 30 10:00:30 2016 +0000 |
4 |
Commit: Aaron Bauman <bman <AT> gentoo <DOT> org> |
5 |
CommitDate: Thu Jun 30 10:03:00 2016 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8e0574b1 |
7 |
|
8 |
net-dialup/freeradius: cleanup vulnerable versions per security bug #553308. |
9 |
|
10 |
net-dialup/freeradius/Manifest | 1 - |
11 |
net-dialup/freeradius/freeradius-2.2.5-r1.ebuild | 195 ----------------------- |
12 |
2 files changed, 196 deletions(-) |
13 |
|
14 |
diff --git a/net-dialup/freeradius/Manifest b/net-dialup/freeradius/Manifest |
15 |
index d373252..7036e5a 100644 |
16 |
--- a/net-dialup/freeradius/Manifest |
17 |
+++ b/net-dialup/freeradius/Manifest |
18 |
@@ -1,4 +1,3 @@ |
19 |
DIST freeradius-2.2.0-patches-4.tar.xz 3140 SHA256 9fd7b6f7e1501d63a073e6279b20eb6d8154e7898d81c85a5c548543ab33c1af SHA512 38ebd65d9ad8ce8f513f2f5c7fd9ff43b81cf468038a49f9eb7f4a54d13783e88866c3031e7abc0fc8b65d2aec4f347efa358b9e7e2aadb2d15567ce7e125d1d WHIRLPOOL a532444f6bfebe260a6b4bf43157fa1624ce9920a86635172ac94e0f757263904bac6ca6a472e12df73e32a8d25d6f7b094272bd743d13c566f23bfcbff6df27 |
20 |
-DIST freeradius-server-2.2.5.tar.gz 4415950 SHA256 8c4c2a0b600a8d85d2235589a5e80d4fefd1f52317e9daf8193731566fa9d012 SHA512 511599b4f4f5906441d0cda61946341f2226b9aae69b6f68b03a19898b6385499a8221933c191232d50f736cab93f0f6f271e4defe4552e7738cb21e2415f053 WHIRLPOOL 629ac42749b736a7cd606c97fb149ea6f3b11d0e77bc5fc69785e4c7956f073131eb16420f276de5664e977a37a6784d0bbff08a15c1c23389f5369320a4cb12 |
21 |
DIST freeradius-server-2.2.9.tar.gz 4424239 SHA256 e1b8fcdb7467719ecd760678b628a733b3d14e998dc240d8563c5093f98aacd3 SHA512 a631f68165fe96d030c7d15ebc72ed3885badf089ad155204a773686747f17f355181f087e389c76b96525affcd54f4c16e4a7788375968eef0899c6a416a27e WHIRLPOOL 14382f14a7fe0943733e445b8ea334745d5c01596bf2530ff0c8dd53c3cc3836f8895b95c1128dcc71db5b95361e9a5829a6abb136422cb819e98656ca8a2ca9 |
22 |
DIST freeradius-server-3.0.11.tar.gz 4808234 SHA256 b97b72915315f2dcd34001af2c1737947f91ad9104a40408b92b030356e25d59 SHA512 451ba4052db68f9855aff96e12df282b31a98973361001f393dac23cb030274d9d9fb9ae85f7feef077e69d7d57152e427fb861892c8fd700b3e17e3389fea64 WHIRLPOOL 06a9e949b69d4244e1d02471e969032aa3ac5781d682c1b7bb87f7c87646fe7a217b6f477391e855e51bfb28214ded836a08acc3eb3e34f6626b1f9dc59d2f2e |
23 |
|
24 |
diff --git a/net-dialup/freeradius/freeradius-2.2.5-r1.ebuild b/net-dialup/freeradius/freeradius-2.2.5-r1.ebuild |
25 |
deleted file mode 100644 |
26 |
index d219168..0000000 |
27 |
--- a/net-dialup/freeradius/freeradius-2.2.5-r1.ebuild |
28 |
+++ /dev/null |
29 |
@@ -1,195 +0,0 @@ |
30 |
-# Copyright 1999-2016 Gentoo Foundation |
31 |
-# Distributed under the terms of the GNU General Public License v2 |
32 |
-# $Id$ |
33 |
- |
34 |
-EAPI=5 |
35 |
- |
36 |
-PYTHON_COMPAT=( python2_7 ) |
37 |
-inherit autotools eutils pam python-any-r1 user |
38 |
- |
39 |
-PATCHSET=4 |
40 |
- |
41 |
-MY_P="${PN}-server-${PV}" |
42 |
- |
43 |
-DESCRIPTION="Highly configurable free RADIUS server" |
44 |
-SRC_URI=" |
45 |
- ftp://ftp.freeradius.org/pub/radius/${MY_P}.tar.gz |
46 |
- ftp://ftp.freeradius.org/pub/radius/old/${MY_P}.tar.gz |
47 |
- https://dev.gentoo.org/~flameeyes/${PN}/${PN}-2.2.0-patches-${PATCHSET}.tar.xz |
48 |
- |
49 |
-" |
50 |
-HOMEPAGE="http://www.freeradius.org/" |
51 |
- |
52 |
-KEYWORDS="amd64 ~ppc ~ppc64 ~sparc x86 ~x86-fbsd" |
53 |
-LICENSE="GPL-2" |
54 |
-SLOT="0" |
55 |
- |
56 |
-IUSE=" |
57 |
- debug firebird iodbc kerberos ldap mysql odbc oracle pam pcap |
58 |
- postgres python readline sqlite ssl |
59 |
-" |
60 |
-RESTRICT="firebird? ( bindist )" |
61 |
- |
62 |
-RDEPEND="!net-dialup/cistronradius |
63 |
- !net-dialup/gnuradius |
64 |
- sys-devel/libtool |
65 |
- dev-lang/perl |
66 |
- sys-libs/gdbm |
67 |
- python? ( ${PYTHON_DEPS} ) |
68 |
- readline? ( sys-libs/readline ) |
69 |
- pcap? ( net-libs/libpcap ) |
70 |
- mysql? ( virtual/mysql ) |
71 |
- postgres? ( dev-db/postgresql ) |
72 |
- firebird? ( dev-db/firebird ) |
73 |
- pam? ( virtual/pam ) |
74 |
- ssl? ( dev-libs/openssl ) |
75 |
- ldap? ( net-nds/openldap ) |
76 |
- kerberos? ( virtual/krb5 ) |
77 |
- sqlite? ( dev-db/sqlite:3 ) |
78 |
- odbc? ( dev-db/unixODBC ) |
79 |
- iodbc? ( dev-db/libiodbc ) |
80 |
- oracle? ( dev-db/oracle-instantclient-basic )" |
81 |
-DEPEND="${RDEPEND}" |
82 |
- |
83 |
-S="${WORKDIR}/${MY_P}" |
84 |
- |
85 |
-pkg_setup() { |
86 |
- enewgroup radius |
87 |
- enewuser radius -1 -1 /var/log/radius radius |
88 |
- |
89 |
- python-any-r1_pkg_setup |
90 |
- export PYTHONBIN="${EPYTHON}" |
91 |
-} |
92 |
- |
93 |
-src_prepare() { |
94 |
- epatch \ |
95 |
- "${WORKDIR}"/patches/0002*patch \ |
96 |
- "${WORKDIR}"/patches/0004*patch \ |
97 |
- "${FILESDIR}"/${P}-gentoo.patch |
98 |
- |
99 |
- # most of the configuration options do not appear as ./configure |
100 |
- # switches. Instead it identifies the directories that are available |
101 |
- # and run through them. These might check for the presence of |
102 |
- # various libraries, in which case they are not built. To avoid |
103 |
- # automagic dependencies, we just remove all the modules that we're |
104 |
- # not interested in using. |
105 |
- |
106 |
- use ssl || rm -r src/modules/rlm_eap/types/rlm_eap_{tls,ttls,peap} |
107 |
- use ldap || rm -r src/modules/rlm_ldap |
108 |
- use kerberos || rm -r src/modules/rlm_krb5 |
109 |
- use pam || rm -r src/modules/rlm_pam |
110 |
- use python || rm -r src/modules/rlm_python |
111 |
- # Do not install ruby rlm module, bug #483108 |
112 |
- rm -r src/modules/rlm_ruby |
113 |
- |
114 |
- # these are all things we don't have in portage/I don't want to deal |
115 |
- # with myself |
116 |
- rm -r src/modules/rlm_eap/types/rlm_eap_tnc # requires TNCS library |
117 |
- rm -r src/modules/rlm_eap/types/rlm_eap_ikev2 # requires libeap-ikev2 |
118 |
- rm -r src/modules/rlm_opendirectory # requires some membership.h |
119 |
- rm -r src/modules/rlm_redis{,who} # requires redis |
120 |
- rm -r src/modules/rlm_sql/drivers/rlm_sql_{db2,freetds,sybase} |
121 |
- |
122 |
- # sql drivers that are not part of experimental are loaded from a |
123 |
- # file, so we have to remove them from the file itself when we |
124 |
- # remove them. |
125 |
- usesqldriver() { |
126 |
- local flag=$1 |
127 |
- local driver=rlm_sql_${2:-${flag}} |
128 |
- |
129 |
- if ! use ${flag}; then |
130 |
- rm -r src/modules/rlm_sql/drivers/${driver} || die |
131 |
- sed -i -e /${driver}/d src/modules/rlm_sql/stable || die |
132 |
- fi |
133 |
- } |
134 |
- |
135 |
- usesqldriver mysql |
136 |
- usesqldriver postgres postgresql |
137 |
- usesqldriver firebird |
138 |
- usesqldriver iodbc |
139 |
- usesqldriver odbc unixodbc |
140 |
- usesqldriver oracle |
141 |
- usesqldriver sqlite |
142 |
- |
143 |
- # remove bundled ltdl to avoid conflicts |
144 |
- rm -r libltdl |
145 |
- |
146 |
- epatch_user |
147 |
- |
148 |
- eautoreconf |
149 |
-} |
150 |
- |
151 |
-src_configure() { |
152 |
- # fix bug #77613 |
153 |
- if has_version app-crypt/heimdal; then |
154 |
- myconf="${myconf} --enable-heimdal-krb5" |
155 |
- fi |
156 |
- |
157 |
- use readline || export ac_cv_lib_readline=no |
158 |
- use pcap || export ac_cv_lib_pcap_pcap_open_live=no |
159 |
- |
160 |
- # do not try to enable static with static-libs; upstream is a |
161 |
- # massacre of libtool best practices so you also have to make sure |
162 |
- # to --enable-shared explicitly. |
163 |
- econf \ |
164 |
- --enable-shared --disable-static \ |
165 |
- --disable-ltdl-install \ |
166 |
- --with-system-libtool \ |
167 |
- --with-system-libltdl \ |
168 |
- --with-ascend-binary \ |
169 |
- --with-udpfromto \ |
170 |
- --with-dhcp \ |
171 |
- --with-iodbc-include-dir=/usr/include/iodbc \ |
172 |
- --with-experimental-modules \ |
173 |
- --with-docdir=/usr/share/doc/${PF} \ |
174 |
- --with-logdir=/var/log/radius \ |
175 |
- $(use_enable debug developer) \ |
176 |
- $(use_with ldap edir) \ |
177 |
- $(use_with ssl openssl) \ |
178 |
- ${myconf} |
179 |
-} |
180 |
- |
181 |
-src_compile() { |
182 |
- emake LIBTOOL=libtool |
183 |
-} |
184 |
- |
185 |
-src_install() { |
186 |
- dodir /etc |
187 |
- diropts -m0750 -o root -g radius |
188 |
- dodir /etc/raddb |
189 |
- diropts -m0750 -o radius -g radius |
190 |
- dodir /var/log/radius |
191 |
- keepdir /var/log/radius/radacct |
192 |
- diropts |
193 |
- |
194 |
- emake LIBTOOL=libtool R="${D}" install |
195 |
- |
196 |
- fowners -R root:radius /etc/raddb |
197 |
- |
198 |
- sed -i \ |
199 |
- -e 's:/var/run/radiusd:/run/radiusd:' \ |
200 |
- "${D}"/etc/raddb/radiusd.conf || die |
201 |
- |
202 |
- pamd_mimic_system radiusd auth account password session |
203 |
- |
204 |
- dodoc CREDITS |
205 |
- |
206 |
- rm "${D}/usr/sbin/rc.radiusd" |
207 |
- |
208 |
- newinitd "${FILESDIR}/radius.init-r3" radiusd |
209 |
- newconfd "${FILESDIR}/radius.conf-r3" radiusd |
210 |
-} |
211 |
- |
212 |
-pkg_config() { |
213 |
- if use ssl; then |
214 |
- cd "${ROOT}"/etc/raddb/certs |
215 |
- ./bootstrap |
216 |
- fi |
217 |
-} |
218 |
- |
219 |
-pkg_preinst() { |
220 |
- if ! has_version ${CATEGORY}/${PN} && use ssl; then |
221 |
- elog "You have to run \`emerge --config =${CATEGORY}/${PF}\` to be able" |
222 |
- elog "to start the radiusd service." |
223 |
- fi |
224 |
-} |