1 |
commit: 8d80d1cea25ddf6e1fcd1a0539fb0cb895e3f18f |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Tue Jan 3 21:28:28 2012 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Tue Jan 3 21:28:28 2012 +0000 |
6 |
URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-dev.git;a=commit;h=8d80d1ce |
7 |
|
8 |
sys-libs/pam: stripped down ebuild for our purposes |
9 |
|
10 |
(Portage version: 2.1.10.41/git/Linux x86_64, signed Manifest commit with key 0xD0455535) |
11 |
|
12 |
--- |
13 |
...Linux-PAM-0.99.7.0-disable-regenerate-man.patch | 18 -- |
14 |
sys-libs/pam/files/Linux-PAM-1.0.2-noyp.patch | 247 -------------------- |
15 |
.../pam/files/Linux-PAM-1.0.4-cross-compile.patch | 35 --- |
16 |
sys-libs/pam/files/Linux-PAM-1.0.4-fix-tests.patch | 13 - |
17 |
sys-libs/pam/files/Linux-PAM-1.1.0-debug.patch | 13 - |
18 |
sys-libs/pam/files/Linux-PAM-1.1.0-nonls.patch | 11 - |
19 |
sys-libs/pam/files/Linux-PAM-1.1.0-uclibc.patch | 82 ------- |
20 |
sys-libs/pam/files/Linux-PAM-1.1.0-xcrypt.patch | 16 -- |
21 |
sys-libs/pam/files/Linux-PAM-1.1.1+berkdb-5.patch | 12 - |
22 |
sys-libs/pam/files/Linux-PAM-1.1.1-xcrypt.patch | 21 -- |
23 |
sys-libs/pam/files/other.pamd | 6 - |
24 |
sys-libs/pam/files/system-auth.pamd.epam | 15 -- |
25 |
sys-libs/pam/pam-1.0.4.ebuild | 188 --------------- |
26 |
sys-libs/pam/pam-1.1.0.ebuild | 164 ------------- |
27 |
sys-libs/pam/pam-1.1.1-r2.ebuild | 186 --------------- |
28 |
sys-libs/pam/pam-1.1.2.ebuild | 30 +-- |
29 |
16 files changed, 4 insertions(+), 1053 deletions(-) |
30 |
|
31 |
diff --git a/sys-libs/pam/files/Linux-PAM-0.99.7.0-disable-regenerate-man.patch b/sys-libs/pam/files/Linux-PAM-0.99.7.0-disable-regenerate-man.patch |
32 |
deleted file mode 100644 |
33 |
index a988b18..0000000 |
34 |
--- a/sys-libs/pam/files/Linux-PAM-0.99.7.0-disable-regenerate-man.patch |
35 |
+++ /dev/null |
36 |
@@ -1,18 +0,0 @@ |
37 |
-Index: Linux-PAM-0.99.7.0/configure.in |
38 |
-=================================================================== |
39 |
---- Linux-PAM-0.99.7.0.orig/configure.in |
40 |
-+++ Linux-PAM-0.99.7.0/configure.in |
41 |
-@@ -420,10 +420,12 @@ AC_CHECK_FUNCS(inet_ntop inet_pton ruser |
42 |
- AC_CHECK_FUNCS(unshare, [UNSHARE=yes], [UNSHARE=no]) |
43 |
- AM_CONDITIONAL([HAVE_UNSHARE], [test "$UNSHARE" = yes]) |
44 |
- |
45 |
-+AC_ARG_ENABLE([regenerate-man], |
46 |
-+ AC_HELP_STRING([--disable-regenerate-man], [Don't re-build manpages from XML souces]), |
47 |
-+ [enable_man=$enableval], [enable_man=yes]) |
48 |
- dnl |
49 |
- dnl Check for xsltproc |
50 |
- dnl |
51 |
--enable_man=yes |
52 |
- AC_PATH_PROG([XSLTPROC], [xsltproc]) |
53 |
- if test -z "$XSLTPROC"; then |
54 |
- enable_man=no |
55 |
|
56 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.0.2-noyp.patch b/sys-libs/pam/files/Linux-PAM-1.0.2-noyp.patch |
57 |
deleted file mode 100644 |
58 |
index a0457b6..0000000 |
59 |
--- a/sys-libs/pam/files/Linux-PAM-1.0.2-noyp.patch |
60 |
+++ /dev/null |
61 |
@@ -1,247 +0,0 @@ |
62 |
-Index: Linux-PAM-1.0.2/configure.in |
63 |
-=================================================================== |
64 |
---- Linux-PAM-1.0.2.orig/configure.in |
65 |
-+++ Linux-PAM-1.0.2/configure.in |
66 |
-@@ -399,12 +399,27 @@ fi |
67 |
- AC_SUBST(LIBDB) |
68 |
- AM_CONDITIONAL([HAVE_LIBDB], [test ! -z "$LIBDB"]) |
69 |
- |
70 |
--AC_CHECK_LIB([nsl],[yp_get_default_domain], LIBNSL="-lnsl", LIBNSL="") |
71 |
--BACKUP_LIBS=$LIBS |
72 |
--LIBS="$LIBS $LIBNSL" |
73 |
--AC_CHECK_FUNCS(yp_get_default_domain) |
74 |
--LIBS=$BACKUP_LIBS |
75 |
--AC_SUBST(LIBNSL) |
76 |
-+LIBNSL=""; AC_SUBST(LIBNSL) |
77 |
-+have_nis="yes" |
78 |
-+ |
79 |
-+AC_CHECK_HEADERS([rpcsvc/ypclnt.h rpcsvc/yp_prot.h netdb.h], [:], |
80 |
-+ [have_nis=no; break; ]) |
81 |
-+ |
82 |
-+AS_IF([test "x$have_nis" = "xyes"], [ |
83 |
-+ AC_CHECK_FUNCS([yp_get_default_domain], [:], |
84 |
-+ AC_CHECK_LIB([nsl], [yp_get_default_domain], [LIBNSL="-lnsl"], |
85 |
-+ [have_nis=no])) |
86 |
-+]) |
87 |
-+ |
88 |
-+AS_IF([test "x$have_nis" = "xyes"], [ |
89 |
-+ AC_CHECK_FUNCS([innetgr], [:], [have_nis=no; break;]) |
90 |
-+]) |
91 |
-+ |
92 |
-+AS_IF([test "x$have_nis" = "xyes"], [ |
93 |
-+ AC_DEFINE([HAVE_NIS], [1], [Define this if you have NIS support]) |
94 |
-+]) |
95 |
-+ |
96 |
-+AM_CONDITIONAL([HAVE_NIS], [test "x$have_nis" = "xyes"]) |
97 |
- |
98 |
- AC_ARG_ENABLE([selinux], |
99 |
- AC_HELP_STRING([--disable-selinux],[do not use SELinux]), |
100 |
-Index: Linux-PAM-1.0.2/modules/pam_access/pam_access.c |
101 |
-=================================================================== |
102 |
---- Linux-PAM-1.0.2.orig/modules/pam_access/pam_access.c |
103 |
-+++ Linux-PAM-1.0.2/modules/pam_access/pam_access.c |
104 |
-@@ -41,7 +41,9 @@ |
105 |
- #include <errno.h> |
106 |
- #include <ctype.h> |
107 |
- #include <sys/utsname.h> |
108 |
-+#ifdef HAVE_NIS |
109 |
- #include <rpcsvc/ypclnt.h> |
110 |
-+#endif |
111 |
- #include <arpa/inet.h> |
112 |
- #include <netdb.h> |
113 |
- #include <sys/socket.h> |
114 |
-@@ -471,11 +473,11 @@ static char *myhostname(void) |
115 |
- } |
116 |
- |
117 |
- /* netgroup_match - match group against machine or user */ |
118 |
-- |
119 |
- static int |
120 |
- netgroup_match (pam_handle_t *pamh, const char *netgroup, |
121 |
- const char *machine, const char *user, int debug) |
122 |
- { |
123 |
-+#ifdef HAVE_NIS |
124 |
- char *mydomain = NULL; |
125 |
- int retval; |
126 |
- |
127 |
-@@ -490,7 +492,12 @@ netgroup_match (pam_handle_t *pamh, cons |
128 |
- machine ? machine : "NULL", |
129 |
- user ? user : "NULL", mydomain ? mydomain : "NULL"); |
130 |
- return retval; |
131 |
-+#else |
132 |
-+ pam_syslog(pamh, LOG_DEBUG, |
133 |
-+ "netgroup match: no YellowPages support."); |
134 |
- |
135 |
-+ return NO; |
136 |
-+#endif |
137 |
- } |
138 |
- |
139 |
- /* user_match - match a username against one token */ |
140 |
-Index: Linux-PAM-1.0.2/modules/pam_unix/Makefile.am |
141 |
-=================================================================== |
142 |
---- Linux-PAM-1.0.2.orig/modules/pam_unix/Makefile.am |
143 |
-+++ Linux-PAM-1.0.2/modules/pam_unix/Makefile.am |
144 |
-@@ -40,7 +40,11 @@ noinst_PROGRAMS = bigcrypt |
145 |
- |
146 |
- pam_unix_la_SOURCES = bigcrypt.c pam_unix_acct.c \ |
147 |
- pam_unix_auth.c pam_unix_passwd.c pam_unix_sess.c support.c \ |
148 |
-- passverify.c yppasswd_xdr.c md5_good.c md5_broken.c |
149 |
-+ passverify.c md5_good.c md5_broken.c |
150 |
-+ |
151 |
-+if HAVE_NIS |
152 |
-+pam_unix_la_SOURCES += yppasswd_xdr.c |
153 |
-+endif |
154 |
- |
155 |
- bigcrypt_SOURCES = bigcrypt.c bigcrypt_main.c |
156 |
- bigcrypt_CFLAGS = $(AM_CFLAGS) |
157 |
-Index: Linux-PAM-1.0.2/modules/pam_unix/pam_unix_passwd.c |
158 |
-=================================================================== |
159 |
---- Linux-PAM-1.0.2.orig/modules/pam_unix/pam_unix_passwd.c |
160 |
-+++ Linux-PAM-1.0.2/modules/pam_unix/pam_unix_passwd.c |
161 |
-@@ -55,8 +55,10 @@ |
162 |
- #include <sys/time.h> |
163 |
- #include <sys/stat.h> |
164 |
- #include <rpc/rpc.h> |
165 |
-+#ifdef HAVE_NIS |
166 |
- #include <rpcsvc/yp_prot.h> |
167 |
- #include <rpcsvc/ypclnt.h> |
168 |
-+#endif |
169 |
- |
170 |
- #include <signal.h> |
171 |
- #include <errno.h> |
172 |
-@@ -103,6 +105,7 @@ extern int getrpcport(const char *host, |
173 |
- |
174 |
- #define MAX_PASSWD_TRIES 3 |
175 |
- |
176 |
-+#ifdef HAVE_NIS |
177 |
- static char *getNISserver(pam_handle_t *pamh) |
178 |
- { |
179 |
- char *master; |
180 |
-@@ -132,6 +135,7 @@ static char *getNISserver(pam_handle_t * |
181 |
- } |
182 |
- return master; |
183 |
- } |
184 |
-+#endif |
185 |
- |
186 |
- #ifdef WITH_SELINUX |
187 |
- |
188 |
-@@ -299,6 +303,7 @@ static int _do_setpass(pam_handle_t* pam |
189 |
- goto done; |
190 |
- } |
191 |
- |
192 |
-+#ifdef HAVE_NIS |
193 |
- if (on(UNIX_NIS, ctrl) && _unix_comesfromsource(pamh, forwho, 0, 1)) { |
194 |
- if ((master=getNISserver(pamh)) != NULL) { |
195 |
- struct timeval timeout; |
196 |
-@@ -366,6 +371,7 @@ static int _do_setpass(pam_handle_t* pam |
197 |
- retval = PAM_TRY_AGAIN; |
198 |
- } |
199 |
- } |
200 |
-+#endif |
201 |
- |
202 |
- if (_unix_comesfromsource(pamh, forwho, 1, 0)) { |
203 |
- if(unlocked) { |
204 |
-Index: Linux-PAM-1.0.2/modules/pam_unix/support.c |
205 |
-=================================================================== |
206 |
---- Linux-PAM-1.0.2.orig/modules/pam_unix/support.c |
207 |
-+++ Linux-PAM-1.0.2/modules/pam_unix/support.c |
208 |
-@@ -19,7 +19,9 @@ |
209 |
- #include <ctype.h> |
210 |
- #include <syslog.h> |
211 |
- #include <sys/resource.h> |
212 |
-+#ifdef HAVE_NIS |
213 |
- #include <rpcsvc/ypclnt.h> |
214 |
-+#endif |
215 |
- |
216 |
- #include <security/_pam_macros.h> |
217 |
- #include <security/pam_modules.h> |
218 |
-@@ -263,6 +265,7 @@ int _unix_getpwnam(pam_handle_t *pamh, c |
219 |
- } |
220 |
- } |
221 |
- |
222 |
-+#ifdef HAVE_NIS |
223 |
- if (!matched && nis) { |
224 |
- char *userinfo = NULL, *domain = NULL; |
225 |
- int len = 0, i; |
226 |
-@@ -281,6 +284,7 @@ int _unix_getpwnam(pam_handle_t *pamh, c |
227 |
- } |
228 |
- } |
229 |
- } |
230 |
-+#endif |
231 |
- |
232 |
- if (matched && (ret != NULL)) { |
233 |
- *ret = NULL; |
234 |
-Index: Linux-PAM-1.0.2/modules/pam_group/pam_group.c |
235 |
-=================================================================== |
236 |
---- Linux-PAM-1.0.2.orig/modules/pam_group/pam_group.c |
237 |
-+++ Linux-PAM-1.0.2/modules/pam_group/pam_group.c |
238 |
-@@ -659,7 +659,11 @@ static int check_account(pam_handle_t *p |
239 |
- } |
240 |
- /* If buffer starts with @, we are using netgroups */ |
241 |
- if (buffer[0] == '@') |
242 |
-+#ifdef HAVE_NIS |
243 |
- good &= innetgr (&buffer[1], NULL, user, NULL); |
244 |
-+#else |
245 |
-+ good = 0; |
246 |
-+#endif |
247 |
- else |
248 |
- good &= logic_field(pamh,user, buffer, count, is_same); |
249 |
- D(("with user: %s", good ? "passes":"fails" )); |
250 |
-Index: Linux-PAM-1.0.2/modules/pam_succeed_if/pam_succeed_if.c |
251 |
-=================================================================== |
252 |
---- Linux-PAM-1.0.2.orig/modules/pam_succeed_if/pam_succeed_if.c |
253 |
-+++ Linux-PAM-1.0.2/modules/pam_succeed_if/pam_succeed_if.c |
254 |
-@@ -229,6 +229,7 @@ evaluate_notingroup(pam_handle_t *pamh, |
255 |
- return PAM_SUCCESS; |
256 |
- return PAM_AUTH_ERR; |
257 |
- } |
258 |
-+#ifdef HAVE_NIS |
259 |
- /* Return PAM_SUCCESS if the (host,user) is in the netgroup. */ |
260 |
- static int |
261 |
- evaluate_innetgr(const char *host, const char *user, const char *group) |
262 |
-@@ -245,6 +246,7 @@ evaluate_notinnetgr(const char *host, co |
263 |
- return PAM_SUCCESS; |
264 |
- return PAM_AUTH_ERR; |
265 |
- } |
266 |
-+#endif |
267 |
- |
268 |
- /* Match a triple. */ |
269 |
- static int |
270 |
-@@ -356,6 +358,7 @@ evaluate(pam_handle_t *pamh, int debug, |
271 |
- if (strcasecmp(qual, "notingroup") == 0) { |
272 |
- return evaluate_notingroup(pamh, pwd->pw_name, right); |
273 |
- } |
274 |
-+#ifdef HAVE_NIS |
275 |
- /* (Rhost, user) is in this netgroup. */ |
276 |
- if (strcasecmp(qual, "innetgr") == 0) { |
277 |
- const void *rhost; |
278 |
-@@ -370,6 +373,14 @@ evaluate(pam_handle_t *pamh, int debug, |
279 |
- rhost = NULL; |
280 |
- return evaluate_notinnetgr(rhost, pwd->pw_name, right); |
281 |
- } |
282 |
-+#else |
283 |
-+ if (strcasecmp(qual, "innetgr") == 0 || |
284 |
-+ strcasecmp(qual, "notinnetgr") == 0) { |
285 |
-+ pam_syslog(pamh, LOG_CRIT, "option \"%s\" not supported as no NIS support is present", qual); |
286 |
-+ return PAM_SERVICE_ERR; |
287 |
-+ } |
288 |
-+#endif |
289 |
-+ |
290 |
- /* Fail closed. */ |
291 |
- return PAM_SERVICE_ERR; |
292 |
- } |
293 |
-Index: Linux-PAM-1.0.2/modules/pam_time/pam_time.c |
294 |
-=================================================================== |
295 |
---- Linux-PAM-1.0.2.orig/modules/pam_time/pam_time.c |
296 |
-+++ Linux-PAM-1.0.2/modules/pam_time/pam_time.c |
297 |
-@@ -555,7 +555,11 @@ check_account(pam_handle_t *pamh, const |
298 |
- } |
299 |
- /* If buffer starts with @, we are using netgroups */ |
300 |
- if (buffer[0] == '@') |
301 |
-+#ifdef HAVE_NIS |
302 |
- good &= innetgr (&buffer[1], NULL, user, NULL); |
303 |
-+#else |
304 |
-+ good = 0; |
305 |
-+#endif |
306 |
- else |
307 |
- good &= logic_field(pamh, user, buffer, count, is_same); |
308 |
- D(("with user: %s", good ? "passes":"fails" )); |
309 |
|
310 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.0.4-cross-compile.patch b/sys-libs/pam/files/Linux-PAM-1.0.4-cross-compile.patch |
311 |
deleted file mode 100644 |
312 |
index 23a830b..0000000 |
313 |
--- a/sys-libs/pam/files/Linux-PAM-1.0.4-cross-compile.patch |
314 |
+++ /dev/null |
315 |
@@ -1,35 +0,0 @@ |
316 |
---- configure.in 2009-05-28 17:05:03.000000000 +0000 |
317 |
-+++ configure.in.new 2009-05-28 17:05:25.000000000 +0000 |
318 |
-@@ -129,6 +129,21 @@ |
319 |
- AC_C___ATTRIBUTE__ |
320 |
- |
321 |
- dnl |
322 |
-+dnl Get the host compiler if cross-compiling |
323 |
-+dnl |
324 |
-+AM_CONDITIONAL(CROSS_COMPILING, [ test $cross_compiling = yes ]) |
325 |
-+AC_MSG_CHECKING([for CC_FOR_BUILD]) |
326 |
-+if test "x${CC_FOR_BUILD+set}" != "xset" ; then |
327 |
-+ if test "x$cross_compiling" = "xyes" ; then |
328 |
-+ CC_FOR_BUILD=${CC_FOR_BUILD-gcc} |
329 |
-+ else |
330 |
-+ CC_FOR_BUILD=${CC} |
331 |
-+ fi |
332 |
-+fi |
333 |
-+AC_MSG_RESULT([$CC_FOR_BUILD]) |
334 |
-+AC_SUBST(CC_FOR_BUILD) |
335 |
-+ |
336 |
-+dnl |
337 |
- dnl Check if --version-script is supported by ld |
338 |
- dnl |
339 |
- AC_CACHE_CHECK(for .symver assembler directive, libc_cv_asm_symver_directive, |
340 |
---- doc/specs/Makefile.am 2009-05-28 17:05:03.000000000 +0000 |
341 |
-+++ doc/specs/Makefile.am.new 2009-05-28 17:06:06.000000000 +0000 |
342 |
-@@ -19,4 +19,8 @@ |
343 |
- |
344 |
- padout_LDADD = @LEXLIB@ |
345 |
- |
346 |
-+CC = @CC_FOR_BUILD@ |
347 |
-+CFLAGS = |
348 |
-+LDFLAGS = |
349 |
-+ |
350 |
- doc_DATA = draft-morgan-pam-current.txt rfc86.0.txt |
351 |
|
352 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.0.4-fix-tests.patch b/sys-libs/pam/files/Linux-PAM-1.0.4-fix-tests.patch |
353 |
deleted file mode 100644 |
354 |
index b705f36..0000000 |
355 |
--- a/sys-libs/pam/files/Linux-PAM-1.0.4-fix-tests.patch |
356 |
+++ /dev/null |
357 |
@@ -1,13 +0,0 @@ |
358 |
-Index: Linux-PAM-1.0.4/tests/tst-pam_mkargv.c |
359 |
-=================================================================== |
360 |
---- Linux-PAM-1.0.4.orig/tests/tst-pam_mkargv.c |
361 |
-+++ Linux-PAM-1.0.4/tests/tst-pam_mkargv.c |
362 |
-@@ -35,7 +35,7 @@ int main(void) |
363 |
- printf ("\n"); |
364 |
- #endif |
365 |
- |
366 |
-- if (argvlen != 333) |
367 |
-+ if (argvlen != ( 37 + ( 37 * sizeof(char*) ) )) |
368 |
- return 1; |
369 |
- |
370 |
- if (myargc != 4) |
371 |
|
372 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.1.0-debug.patch b/sys-libs/pam/files/Linux-PAM-1.1.0-debug.patch |
373 |
deleted file mode 100644 |
374 |
index ec9f99b..0000000 |
375 |
--- a/sys-libs/pam/files/Linux-PAM-1.1.0-debug.patch |
376 |
+++ /dev/null |
377 |
@@ -1,13 +0,0 @@ |
378 |
-Index: Linux-PAM-1.1.0/modules/pam_env/pam_env.c |
379 |
-=================================================================== |
380 |
---- Linux-PAM-1.1.0.orig/modules/pam_env/pam_env.c |
381 |
-+++ Linux-PAM-1.1.0/modules/pam_env/pam_env.c |
382 |
-@@ -120,7 +120,7 @@ _pam_parse (const pam_handle_t *pamh, in |
383 |
- "user_envfile= specification missing argument - ignored"); |
384 |
- } else { |
385 |
- *user_envfile = 13+*argv; |
386 |
-- D(("new User Env File: %s", *user_env_file)); |
387 |
-+ D(("new User Env File: %s", *user_envfile)); |
388 |
- } |
389 |
- } else if (!strncmp(*argv,"readenv=",8)) |
390 |
- *readenv = atoi(8+*argv); |
391 |
|
392 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.1.0-nonls.patch b/sys-libs/pam/files/Linux-PAM-1.1.0-nonls.patch |
393 |
deleted file mode 100644 |
394 |
index d52b6a0..0000000 |
395 |
--- a/sys-libs/pam/files/Linux-PAM-1.1.0-nonls.patch |
396 |
+++ /dev/null |
397 |
@@ -1,11 +0,0 @@ |
398 |
---- Linux-PAM-1.1.0/modules/pam_lastlog/pam_lastlog.c.orig |
399 |
-+++ Linux-PAM-1.1.0/modules/pam_lastlog/pam_lastlog.c |
400 |
-@@ -471,7 +471,7 @@ last_login_failed(pam_handle_t *pamh, in |
401 |
- failed), |
402 |
- failed); |
403 |
- #else |
404 |
-- if (daysleft == 1) |
405 |
-+ if (failed == 1) |
406 |
- retval = asprintf(&line, |
407 |
- _("There was %d failed login attempt since the last successful login."), |
408 |
- failed); |
409 |
|
410 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.1.0-uclibc.patch b/sys-libs/pam/files/Linux-PAM-1.1.0-uclibc.patch |
411 |
deleted file mode 100644 |
412 |
index 6b8fa25..0000000 |
413 |
--- a/sys-libs/pam/files/Linux-PAM-1.1.0-uclibc.patch |
414 |
+++ /dev/null |
415 |
@@ -1,82 +0,0 @@ |
416 |
-Index: Linux-PAM-1.1.0/modules/pam_pwhistory/opasswd.c |
417 |
-=================================================================== |
418 |
---- Linux-PAM-1.1.0.orig/modules/pam_pwhistory/opasswd.c |
419 |
-+++ Linux-PAM-1.1.0/modules/pam_pwhistory/opasswd.c |
420 |
-@@ -94,6 +94,23 @@ parse_entry (char *line, opwd *data) |
421 |
- return 0; |
422 |
- } |
423 |
- |
424 |
-+static int |
425 |
-+compare_password(const char *newpass, const char *oldpass) |
426 |
-+{ |
427 |
-+ char *outval; |
428 |
-+#ifdef HAVE_CRYPT_R |
429 |
-+ struct crypt_data output; |
430 |
-+ |
431 |
-+ output.initialized = 0; |
432 |
-+ |
433 |
-+ outval = crypt_r (newpass, oldpass, &output); |
434 |
-+#else |
435 |
-+ outval = crypt (newpass, oldpass); |
436 |
-+#endif |
437 |
-+ |
438 |
-+ return strcmp(outval, oldpass) == 0; |
439 |
-+} |
440 |
-+ |
441 |
- /* Check, if the new password is already in the opasswd file. */ |
442 |
- int |
443 |
- check_old_password (pam_handle_t *pamh, const char *user, |
444 |
-@@ -167,12 +184,9 @@ check_old_password (pam_handle_t *pamh, |
445 |
- if (found) |
446 |
- { |
447 |
- const char delimiters[] = ","; |
448 |
-- struct crypt_data output; |
449 |
- char *running; |
450 |
- char *oldpass; |
451 |
- |
452 |
-- memset (&output, 0, sizeof (output)); |
453 |
-- |
454 |
- running = strdupa (entry.old_passwords); |
455 |
- if (running == NULL) |
456 |
- return PAM_BUF_ERR; |
457 |
-@@ -180,7 +194,7 @@ check_old_password (pam_handle_t *pamh, |
458 |
- do { |
459 |
- oldpass = strsep (&running, delimiters); |
460 |
- if (oldpass && strlen (oldpass) > 0 && |
461 |
-- strcmp (crypt_r (newpass, oldpass, &output), oldpass) == 0) |
462 |
-+ compare_password(newpass, oldpass) ) |
463 |
- { |
464 |
- if (debug) |
465 |
- pam_syslog (pamh, LOG_DEBUG, "New password already used"); |
466 |
-Index: Linux-PAM-1.1.0/configure.in |
467 |
-=================================================================== |
468 |
---- Linux-PAM-1.1.0.orig/configure.in |
469 |
-+++ Linux-PAM-1.1.0/configure.in |
470 |
-@@ -458,7 +458,7 @@ AC_FUNC_MEMCMP |
471 |
- AC_FUNC_VPRINTF |
472 |
- AC_CHECK_FUNCS(fseeko gethostname gettimeofday lckpwdf mkdir select) |
473 |
- AC_CHECK_FUNCS(strcspn strdup strspn strstr strtol uname) |
474 |
--AC_CHECK_FUNCS(getpwnam_r getpwuid_r getgrnam_r getgrgid_r getspnam_r) |
475 |
-+AC_CHECK_FUNCS(getutent_r getpwnam_r getpwuid_r getgrnam_r getgrgid_r getspnam_r) |
476 |
- AC_CHECK_FUNCS(getgrouplist getline getdelim) |
477 |
- AC_CHECK_FUNCS(inet_ntop inet_pton ruserok_af) |
478 |
- |
479 |
-Index: Linux-PAM-1.1.0/modules/pam_timestamp/pam_timestamp.c |
480 |
-=================================================================== |
481 |
---- Linux-PAM-1.1.0.orig/modules/pam_timestamp/pam_timestamp.c |
482 |
-+++ Linux-PAM-1.1.0/modules/pam_timestamp/pam_timestamp.c |
483 |
-@@ -200,7 +200,13 @@ check_login_time(const char *ruser, time |
484 |
- time_t oldest_login = 0; |
485 |
- |
486 |
- setutent(); |
487 |
-- while(!getutent_r(&utbuf, &ut)) { |
488 |
-+ while( |
489 |
-+#ifdef HAVE_GETUTENT_R |
490 |
-+ !getutent_r(&utbuf, &ut) |
491 |
-+#else |
492 |
-+ (ut = getutent()) != NULL |
493 |
-+#endif |
494 |
-+ ) { |
495 |
- if (ut->ut_type != USER_PROCESS) { |
496 |
- continue; |
497 |
- } |
498 |
|
499 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.1.0-xcrypt.patch b/sys-libs/pam/files/Linux-PAM-1.1.0-xcrypt.patch |
500 |
deleted file mode 100644 |
501 |
index 4f4872d..0000000 |
502 |
--- a/sys-libs/pam/files/Linux-PAM-1.1.0-xcrypt.patch |
503 |
+++ /dev/null |
504 |
@@ -1,16 +0,0 @@ |
505 |
-Index: Linux-PAM-1.1.1/configure.in |
506 |
-=================================================================== |
507 |
---- Linux-PAM-1.1.1.orig/configure.in |
508 |
-+++ Linux-PAM-1.1.1/configure.in |
509 |
-@@ -360,6 +360,10 @@ AC_SUBST(LIBAUDIT) |
510 |
- AC_CHECK_HEADERS(xcrypt.h crypt.h) |
511 |
-+AS_IF([test "x$ac_cv_header_xcrypt_h" = "xyes"], |
512 |
-+ [crypt_libs="xcrypt crypt"], |
513 |
-+ [crypt_libs="crypt"]) |
514 |
-+ |
515 |
- BACKUP_LIBS=$LIBS |
516 |
--AC_SEARCH_LIBS([crypt],[xcrypt crypt], LIBCRYPT="-l$ac_lib", LIBCRYPT="") |
517 |
-+AC_SEARCH_LIBS([crypt],[$crypt_libs], LIBCRYPT="-l$ac_lib", LIBCRYPT="") |
518 |
- AC_CHECK_FUNCS(crypt_r crypt_gensalt_rn) |
519 |
- LIBS=$BACKUP_LIBS |
520 |
- AC_SUBST(LIBCRYPT) |
521 |
|
522 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.1.1+berkdb-5.patch b/sys-libs/pam/files/Linux-PAM-1.1.1+berkdb-5.patch |
523 |
deleted file mode 100644 |
524 |
index ece9211..0000000 |
525 |
--- a/sys-libs/pam/files/Linux-PAM-1.1.1+berkdb-5.patch |
526 |
+++ /dev/null |
527 |
@@ -1,12 +0,0 @@ |
528 |
-Index: Linux-PAM-1.1.1/modules/pam_userdb/pam_userdb.c |
529 |
-=================================================================== |
530 |
---- Linux-PAM-1.1.1.orig/modules/pam_userdb/pam_userdb.c |
531 |
-+++ Linux-PAM-1.1.1/modules/pam_userdb/pam_userdb.c |
532 |
-@@ -30,6 +30,7 @@ |
533 |
- #else |
534 |
- # ifdef HAVE_DB_H |
535 |
- # define DB_DBM_HSEARCH 1 /* use the dbm interface */ |
536 |
-+# define HAVE_DBM /* for BerkDB 5.0 and later */ |
537 |
- # include <db.h> |
538 |
- # else |
539 |
- # error "failed to find a libdb or equivalent" |
540 |
|
541 |
diff --git a/sys-libs/pam/files/Linux-PAM-1.1.1-xcrypt.patch b/sys-libs/pam/files/Linux-PAM-1.1.1-xcrypt.patch |
542 |
deleted file mode 100644 |
543 |
index f842da7..0000000 |
544 |
--- a/sys-libs/pam/files/Linux-PAM-1.1.1-xcrypt.patch |
545 |
+++ /dev/null |
546 |
@@ -1,21 +0,0 @@ |
547 |
-Index: Linux-PAM-1.1.1/configure.in |
548 |
-=================================================================== |
549 |
---- Linux-PAM-1.1.1.orig/configure.in |
550 |
-+++ Linux-PAM-1.1.1/configure.in |
551 |
-@@ -361,10 +361,14 @@ AM_CONDITIONAL([HAVE_AUDIT_TTY_STATUS], |
552 |
- [test "x$HAVE_AUDIT_TTY_STATUS" = xyes]) |
553 |
- |
554 |
- AC_CHECK_HEADERS(xcrypt.h crypt.h) |
555 |
-+AS_IF([test "x$ac_cv_header_xcrypt_h" = "xyes"], |
556 |
-+ [crypt_libs="xcrypt crypt"], |
557 |
-+ [crypt_libs="crypt"]) |
558 |
-+ |
559 |
- BACKUP_LIBS=$LIBS |
560 |
--AC_SEARCH_LIBS([crypt],[xcrypt crypt], LIBCRYPT="-l$ac_lib", LIBCRYPT="") |
561 |
-+AC_SEARCH_LIBS([crypt],[$crypt_libs], LIBCRYPT="-l$ac_lib", LIBCRYPT="") |
562 |
- AC_CHECK_FUNCS(crypt_r crypt_gensalt_r) |
563 |
--Libs=$BACKUP_LIBS |
564 |
-+LIBS=$BACKUP_LIBS |
565 |
- AC_SUBST(LIBCRYPT) |
566 |
- if test "$LIBCRYPT" = "-lxcrypt" -a "$ac_cv_header_xcrypt_h" = "yes" ; then |
567 |
- AC_DEFINE([HAVE_LIBXCRYPT], 1, [Define to 1 if xcrypt support should be compiled in.]) |
568 |
|
569 |
diff --git a/sys-libs/pam/files/other.pamd b/sys-libs/pam/files/other.pamd |
570 |
deleted file mode 100644 |
571 |
index 85ca04e..0000000 |
572 |
--- a/sys-libs/pam/files/other.pamd |
573 |
+++ /dev/null |
574 |
@@ -1,6 +0,0 @@ |
575 |
-#%PAM-1.0 |
576 |
- |
577 |
-auth required pam_deny.so |
578 |
-account required pam_deny.so |
579 |
-password required pam_deny.so |
580 |
-session required pam_deny.so |
581 |
|
582 |
diff --git a/sys-libs/pam/files/system-auth.pamd.epam b/sys-libs/pam/files/system-auth.pamd.epam |
583 |
deleted file mode 100644 |
584 |
index bdee6f4..0000000 |
585 |
--- a/sys-libs/pam/files/system-auth.pamd.epam |
586 |
+++ /dev/null |
587 |
@@ -1,15 +0,0 @@ |
588 |
-#%PAM-1.0 |
589 |
- |
590 |
-auth required pam_env.so |
591 |
-auth sufficient pam_unix.so try_first_pass likeauth nullok |
592 |
-auth required pam_deny.so |
593 |
- |
594 |
-account required pam_unix.so |
595 |
- |
596 |
-#%EPAM-Use-Flag:cracklib%#password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 try_first_pass retry=3 |
597 |
-#%EPAM-Use-Flag:cracklib%#password sufficient pam_unix.so try_first_pass use_authtok nullok md5 shadow |
598 |
-#%EPAM-Use-Flag:!cracklib%#password sufficient pam_unix.so try_first_pass nullok md5 shadow |
599 |
-password required pam_deny.so |
600 |
- |
601 |
-session required pam_limits.so |
602 |
-session required pam_unix.so |
603 |
|
604 |
diff --git a/sys-libs/pam/pam-1.0.4.ebuild b/sys-libs/pam/pam-1.0.4.ebuild |
605 |
deleted file mode 100644 |
606 |
index 1632431..0000000 |
607 |
--- a/sys-libs/pam/pam-1.0.4.ebuild |
608 |
+++ /dev/null |
609 |
@@ -1,188 +0,0 @@ |
610 |
-# Copyright 1999-2009 Gentoo Foundation |
611 |
-# Distributed under the terms of the GNU General Public License v2 |
612 |
-# $Header: /var/cvsroot/gentoo-x86/sys-libs/pam/pam-1.0.4.ebuild,v 1.11 2009/03/27 17:08:40 armin76 Exp $ |
613 |
- |
614 |
-WANT_AUTOCONF="latest" |
615 |
-WANT_AUTOMAKE="latest" |
616 |
- |
617 |
-inherit libtool multilib eutils autotools pam toolchain-funcs flag-o-matic |
618 |
- |
619 |
-MY_PN="Linux-PAM" |
620 |
-MY_P="${MY_PN}-${PV}" |
621 |
- |
622 |
-HOMEPAGE="http://www.kernel.org/pub/linux/libs/pam/" |
623 |
-DESCRIPTION="Linux-PAM (Pluggable Authentication Modules)" |
624 |
- |
625 |
-SRC_URI="mirror://kernel/linux/libs/pam/library/${MY_P}.tar.bz2" |
626 |
- |
627 |
-LICENSE="|| ( BSD GPL-2 )" |
628 |
-SLOT="0" |
629 |
-KEYWORDS="~amd64 ~x86" |
630 |
-IUSE="cracklib nls elibc_FreeBSD selinux vim-syntax audit test elibc_glibc" |
631 |
- |
632 |
-RDEPEND="nls? ( virtual/libintl ) |
633 |
- cracklib? ( >=sys-libs/cracklib-2.8.3 ) |
634 |
- audit? ( sys-process/audit ) |
635 |
- selinux? ( >=sys-libs/libselinux-1.28 )" |
636 |
-DEPEND="${RDEPEND} |
637 |
- sys-devel/flex |
638 |
- test? ( elibc_glibc? ( >=sys-libs/glibc-2.4 ) ) |
639 |
- nls? ( sys-devel/gettext )" |
640 |
-PDEPEND="sys-auth/pambase |
641 |
- vim-syntax? ( app-vim/pam-syntax )" |
642 |
- |
643 |
-S="${WORKDIR}/${MY_P}" |
644 |
- |
645 |
-PROVIDE="virtual/pam" |
646 |
- |
647 |
-check_old_modules() { |
648 |
- local retval="0" |
649 |
- |
650 |
- if sed -e 's:#.*::' "${ROOT}"/etc/pam.d/* 2>/dev/null | fgrep -q pam_stack.so; then |
651 |
- eerror "" |
652 |
- eerror "Your current setup is using the pam_stack module." |
653 |
- eerror "This module is deprecated and no longer supported, and since version" |
654 |
- eerror "0.99 is no longer installed, nor provided by any other package." |
655 |
- eerror "The package will be built (to allow binary package builds), but will" |
656 |
- eerror "not be installed." |
657 |
- eerror "Please replace pam_stack usage with proper include directive usage," |
658 |
- eerror "following the PAM Upgrade guide at the following URL" |
659 |
- eerror " http://www.gentoo.org/proj/en/base/pam/upgrade-0.99.xml" |
660 |
- eerror "" |
661 |
- ebeep 15 |
662 |
- |
663 |
- retval=1 |
664 |
- fi |
665 |
- |
666 |
- if sed -e 's:#.*::' "${ROOT}"/etc/pam.d/* 2>/dev/null | egrep -q 'pam_(pwdb|timestamp|console)'; then |
667 |
- eerror "" |
668 |
- eerror "Your current setup is using one or more of the following modules," |
669 |
- eerror "that are not built or supported anymore:" |
670 |
- eerror "pam_pwdb, pam_timestamp, pam_console" |
671 |
- eerror "If you are in real need for these modules, please contact the maintainers" |
672 |
- eerror "of PAM through http://bugs.gentoo.org/ providing information about its" |
673 |
- eerror "use cases." |
674 |
- eerror "Please also make sure to read the PAM Upgrade guide at the following URL:" |
675 |
- eerror " http://www.gentoo.org/proj/en/base/pam/upgrade-0.99.xml" |
676 |
- eerror "" |
677 |
- ebeep 10 |
678 |
- |
679 |
- retval=1 |
680 |
- fi |
681 |
- |
682 |
- # Produce the warnings only during upgrade, for the following two |
683 |
- has_version '<sys-libs/pam-0.99' || return $retval |
684 |
- |
685 |
- # This works only for those modules that are moved to sys-auth/$module, or the |
686 |
- # message will be wrong. |
687 |
- for module in pam_chroot pam_userdb pam_radius; do |
688 |
- if sed -e 's:#.*::' "${ROOT}"/etc/pam.d/* 2>/dev/null | fgrep -q ${module}.so; then |
689 |
- ewarn "" |
690 |
- ewarn "Your current setup is using the ${module} module." |
691 |
- ewarn "Since version 0.99, ${CATEGORY}/${PN} does not provide this module" |
692 |
- ewarn "anymore; if you want to continue using this module, you should install" |
693 |
- ewarn "sys-auth/${module}." |
694 |
- ewarn "" |
695 |
- ebeep 5 |
696 |
- fi |
697 |
- done |
698 |
- |
699 |
- return $retval |
700 |
-} |
701 |
- |
702 |
-pkg_setup() { |
703 |
- check_old_modules |
704 |
-} |
705 |
- |
706 |
-src_unpack() { |
707 |
- unpack ${A} |
708 |
- cd "${S}" |
709 |
- |
710 |
- mkdir -p doc/txts |
711 |
- for readme in modules/pam_*/README; do |
712 |
- cp -f "${readme}" doc/txts/README.$(dirname "${readme}" | \ |
713 |
- sed -e 's|^modules/||') |
714 |
- done |
715 |
- |
716 |
- epatch "${FILESDIR}/${MY_PN}-0.99.7.0-disable-regenerate-man.patch" |
717 |
- epatch "${FILESDIR}/${MY_PN}-0.99.8.1-xtests.patch" |
718 |
- |
719 |
- # Remove NIS dependencies, see bug #235431 |
720 |
- epatch "${FILESDIR}/${MY_PN}-1.0.2-noyp.patch" |
721 |
- |
722 |
- # Fix building of doc/specs |
723 |
- epatch "${FILESDIR}/${MY_PN}-1.0.4-cross-compile.patch" |
724 |
- |
725 |
- # Fix tests on systems where sizeof(void*) != 8 |
726 |
- epatch "${FILESDIR}/${MY_PN}-1.0.4-fix-tests.patch" |
727 |
- |
728 |
- # Remove libtool-2 libtool macros, see bug 261167 |
729 |
- rm m4/libtool.m4 m4/lt*.m4 || die "rm libtool macros failed." |
730 |
- |
731 |
- AT_M4DIR="m4" eautoreconf |
732 |
- |
733 |
- elibtoolize |
734 |
-} |
735 |
- |
736 |
-src_compile() { |
737 |
- local myconf |
738 |
- |
739 |
- if use hppa || use elibc_FreeBSD; then |
740 |
- myconf="${myconf} --disable-pie" |
741 |
- fi |
742 |
- |
743 |
- # KEEP COMMENTED OUT! It seems like it fails to build with USE=debug! |
744 |
- # Do _not_ move this to $(use_enable) without checking if the |
745 |
- # configure.in has been fixed. As of 2009/03/03 it's still broken |
746 |
- # on upstream's CVS, and --disable-debug means --enable-debug too. |
747 |
- # if use debug; then |
748 |
- # myconf="${myconf} --enable-debug" |
749 |
- # fi |
750 |
- |
751 |
- econf \ |
752 |
- --libdir=/usr/$(get_libdir) \ |
753 |
- --docdir=/usr/share/doc/${PF} \ |
754 |
- --htmldir=/usr/share/doc/${PF}/html \ |
755 |
- --enable-securedir=/$(get_libdir)/security \ |
756 |
- --enable-isadir=/$(get_libdir)/security \ |
757 |
- $(use_enable nls) \ |
758 |
- $(use_enable selinux) \ |
759 |
- $(use_enable cracklib) \ |
760 |
- $(use_enable audit) \ |
761 |
- --disable-db \ |
762 |
- --disable-dependency-tracking \ |
763 |
- --disable-prelude \ |
764 |
- --disable-regenerate-man \ |
765 |
- ${myconf} || die "econf failed" |
766 |
- emake sepermitlockdir="/var/run/sepermit" || die "emake failed" |
767 |
-} |
768 |
- |
769 |
-src_install() { |
770 |
- emake DESTDIR="${D}" install \ |
771 |
- sepermitlockdir="/var/run/sepermit" || die "make install failed" |
772 |
- |
773 |
- # Need to be suid |
774 |
- fperms u+s /sbin/unix_chkpwd |
775 |
- |
776 |
- dodir /$(get_libdir) |
777 |
- mv "${D}/usr/$(get_libdir)/libpam.so"* "${D}/$(get_libdir)/" |
778 |
- mv "${D}/usr/$(get_libdir)/libpamc.so"* "${D}/$(get_libdir)/" |
779 |
- mv "${D}/usr/$(get_libdir)/libpam_misc.so"* "${D}/$(get_libdir)/" |
780 |
- gen_usr_ldscript libpam.so libpamc.so libpam_misc.so |
781 |
- |
782 |
- dodoc CHANGELOG ChangeLog README AUTHORS Copyright |
783 |
- docinto modules ; dodoc doc/txts/README.* |
784 |
- |
785 |
- # Remove the wrongly installed manpages |
786 |
- rm "${D}"/usr/share/man/man8/pam_userdb.8* |
787 |
- use cracklib || rm "${D}"/usr/share/man/man8/pam_cracklib.8* |
788 |
- |
789 |
- # Get rid of the .la files. We certainly don't need them for PAM |
790 |
- # modules, and libpam is installed as a shared object only, so we |
791 |
- # don't ned them for static linking either. |
792 |
- find "${D}" -name '*.la' -delete |
793 |
-} |
794 |
- |
795 |
-pkg_preinst() { |
796 |
- check_old_modules || die "deprecated PAM modules still used" |
797 |
-} |
798 |
|
799 |
diff --git a/sys-libs/pam/pam-1.1.0.ebuild b/sys-libs/pam/pam-1.1.0.ebuild |
800 |
deleted file mode 100644 |
801 |
index 8b1a1d2..0000000 |
802 |
--- a/sys-libs/pam/pam-1.1.0.ebuild |
803 |
+++ /dev/null |
804 |
@@ -1,164 +0,0 @@ |
805 |
-# Copyright 1999-2009 Gentoo Foundation |
806 |
-# Distributed under the terms of the GNU General Public License v2 |
807 |
-# $Header: /var/cvsroot/gentoo-x86/sys-libs/pam/pam-1.1.0.ebuild,v 1.5 2009/06/21 16:50:28 flameeyes Exp $ |
808 |
- |
809 |
-inherit libtool multilib eutils autotools pam toolchain-funcs flag-o-matic |
810 |
- |
811 |
-MY_PN="Linux-PAM" |
812 |
-MY_P="${MY_PN}-${PV}" |
813 |
- |
814 |
-HOMEPAGE="http://www.kernel.org/pub/linux/libs/pam/" |
815 |
-DESCRIPTION="Linux-PAM (Pluggable Authentication Modules)" |
816 |
- |
817 |
-SRC_URI="mirror://kernel/linux/libs/pam/library/${MY_P}.tar.bz2 |
818 |
- mirror://kernel/linux/libs/pam/documentation/${MY_P}-docs.tar.bz2" |
819 |
- |
820 |
-LICENSE="|| ( BSD GPL-2 )" |
821 |
-SLOT="0" |
822 |
-KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86" |
823 |
-IUSE="cracklib nls elibc_FreeBSD selinux vim-syntax audit test elibc_glibc debug" |
824 |
- |
825 |
-RDEPEND="nls? ( virtual/libintl ) |
826 |
- cracklib? ( >=sys-libs/cracklib-2.8.3 ) |
827 |
- audit? ( sys-process/audit ) |
828 |
- selinux? ( >=sys-libs/libselinux-1.28 ) |
829 |
- elibc_glibc? ( >=sys-libs/glibc-2.7 )" |
830 |
-DEPEND="${RDEPEND} |
831 |
- sys-devel/flex |
832 |
- nls? ( sys-devel/gettext )" |
833 |
-PDEPEND="sys-auth/pambase |
834 |
- vim-syntax? ( app-vim/pam-syntax )" |
835 |
- |
836 |
-S="${WORKDIR}/${MY_P}" |
837 |
- |
838 |
-PROVIDE="virtual/pam" |
839 |
- |
840 |
-check_old_modules() { |
841 |
- local retval="0" |
842 |
- |
843 |
- if sed -e 's:#.*::' "${ROOT}"/etc/pam.d/* 2>/dev/null | fgrep -q pam_stack.so; then |
844 |
- eerror "" |
845 |
- eerror "Your current setup is using the pam_stack module." |
846 |
- eerror "This module is deprecated and no longer supported, and since version" |
847 |
- eerror "0.99 is no longer installed, nor provided by any other package." |
848 |
- eerror "The package will be built (to allow binary package builds), but will" |
849 |
- eerror "not be installed." |
850 |
- eerror "Please replace pam_stack usage with proper include directive usage," |
851 |
- eerror "following the PAM Upgrade guide at the following URL" |
852 |
- eerror " http://www.gentoo.org/proj/en/base/pam/upgrade-0.99.xml" |
853 |
- eerror "" |
854 |
- ebeep 15 |
855 |
- |
856 |
- retval=1 |
857 |
- fi |
858 |
- |
859 |
- if sed -e 's:#.*::' "${ROOT}"/etc/pam.d/* 2>/dev/null | egrep -q 'pam_(pwdb|console)'; then |
860 |
- eerror "" |
861 |
- eerror "Your current setup is using one or more of the following modules," |
862 |
- eerror "that are not built or supported anymore:" |
863 |
- eerror "pam_pwdb, pam_console" |
864 |
- eerror "If you are in real need for these modules, please contact the maintainers" |
865 |
- eerror "of PAM through http://bugs.gentoo.org/ providing information about its" |
866 |
- eerror "use cases." |
867 |
- eerror "Please also make sure to read the PAM Upgrade guide at the following URL:" |
868 |
- eerror " http://www.gentoo.org/proj/en/base/pam/upgrade-0.99.xml" |
869 |
- eerror "" |
870 |
- ebeep 10 |
871 |
- |
872 |
- retval=1 |
873 |
- fi |
874 |
- |
875 |
- return $retval |
876 |
-} |
877 |
- |
878 |
-pkg_setup() { |
879 |
- check_old_modules |
880 |
-} |
881 |
- |
882 |
-src_unpack() { |
883 |
- unpack ${A} |
884 |
- cd "${S}" |
885 |
- |
886 |
- # Avoid building xtests during "make all"; note that for what |
887 |
- # we're concerned xtests are not even executed, so we should |
888 |
- # probably use EXTRA_PROGRAMS. |
889 |
- epatch "${FILESDIR}/${MY_PN}-0.99.8.1-xtests.patch" |
890 |
- |
891 |
- # Remove NIS dependencies, see bug #235431 |
892 |
- epatch "${FILESDIR}/${MY_PN}-1.0.2-noyp.patch" |
893 |
- |
894 |
- # Fix building with debug USE flag enabled |
895 |
- epatch "${FILESDIR}/${MY_PN}-1.1.0-debug.patch" |
896 |
- |
897 |
- # Fix building with nls USE flag disabled |
898 |
- epatch "${FILESDIR}/${MY_PN}-1.1.0-nonls.patch" |
899 |
- |
900 |
- # Fix building of doc/specs |
901 |
- epatch "${FILESDIR}/${MY_PN}-1.0.4-cross-compile.patch" |
902 |
- |
903 |
- # Remove libtool-2 libtool macros, see bug 261167 |
904 |
- rm m4/libtool.m4 m4/lt*.m4 || die "rm libtool macros failed." |
905 |
- |
906 |
- AT_M4DIR="m4" eautoreconf |
907 |
- |
908 |
- elibtoolize |
909 |
-} |
910 |
- |
911 |
-src_compile() { |
912 |
- local myconf |
913 |
- |
914 |
- if use hppa || use elibc_FreeBSD; then |
915 |
- myconf="${myconf} --disable-pie" |
916 |
- fi |
917 |
- |
918 |
- econf \ |
919 |
- --libdir=/usr/$(get_libdir) \ |
920 |
- --docdir=/usr/share/doc/${PF} \ |
921 |
- --htmldir=/usr/share/doc/${PF}/html \ |
922 |
- --enable-securedir=/$(get_libdir)/security \ |
923 |
- --enable-isadir=/$(get_libdir)/security \ |
924 |
- $(use_enable nls) \ |
925 |
- $(use_enable selinux) \ |
926 |
- $(use_enable cracklib) \ |
927 |
- $(use_enable audit) \ |
928 |
- $(use_enable debug) \ |
929 |
- --disable-db \ |
930 |
- --disable-dependency-tracking \ |
931 |
- --disable-prelude \ |
932 |
- ${myconf} || die "econf failed" |
933 |
- emake sepermitlockdir="/var/run/sepermit" || die "emake failed" |
934 |
-} |
935 |
- |
936 |
-src_install() { |
937 |
- emake DESTDIR="${D}" install \ |
938 |
- sepermitlockdir="/var/run/sepermit" || die "make install failed" |
939 |
- |
940 |
- # Need to be suid |
941 |
- fperms u+s /sbin/unix_chkpwd |
942 |
- |
943 |
- dodir /$(get_libdir) |
944 |
- mv "${D}/usr/$(get_libdir)/libpam.so"* "${D}/$(get_libdir)/" |
945 |
- mv "${D}/usr/$(get_libdir)/libpamc.so"* "${D}/$(get_libdir)/" |
946 |
- mv "${D}/usr/$(get_libdir)/libpam_misc.so"* "${D}/$(get_libdir)/" |
947 |
- gen_usr_ldscript libpam.so libpamc.so libpam_misc.so |
948 |
- |
949 |
- dodoc CHANGELOG ChangeLog README AUTHORS Copyright NEWS || die |
950 |
- |
951 |
- docinto modules |
952 |
- for dir in modules/pam_*; do |
953 |
- newdoc "${dir}"/README README."$(basename "${dir}")" |
954 |
- done |
955 |
- |
956 |
- # Remove the wrongly installed manpages |
957 |
- rm "${D}"/usr/share/man/man8/pam_userdb.8* |
958 |
- use cracklib || rm "${D}"/usr/share/man/man8/pam_cracklib.8* |
959 |
- |
960 |
- # Get rid of the .la files. We certainly don't need them for PAM |
961 |
- # modules, and libpam is installed as a shared object only, so we |
962 |
- # don't ned them for static linking either. |
963 |
- find "${D}" -name '*.la' -delete |
964 |
-} |
965 |
- |
966 |
-pkg_preinst() { |
967 |
- check_old_modules || die "deprecated PAM modules still used" |
968 |
-} |
969 |
|
970 |
diff --git a/sys-libs/pam/pam-1.1.1-r2.ebuild b/sys-libs/pam/pam-1.1.1-r2.ebuild |
971 |
deleted file mode 100644 |
972 |
index d5f433e..0000000 |
973 |
--- a/sys-libs/pam/pam-1.1.1-r2.ebuild |
974 |
+++ /dev/null |
975 |
@@ -1,186 +0,0 @@ |
976 |
-# Copyright 1999-2010 Gentoo Foundation |
977 |
-# Distributed under the terms of the GNU General Public License v2 |
978 |
-# $Header: /var/cvsroot/gentoo-x86/sys-libs/pam/pam-1.1.1-r2.ebuild,v 1.4 2010/05/22 09:09:08 jlec Exp $ |
979 |
- |
980 |
-EAPI="3" |
981 |
- |
982 |
-inherit libtool multilib eutils autotools pam toolchain-funcs flag-o-matic db-use |
983 |
- |
984 |
-MY_PN="Linux-PAM" |
985 |
-MY_P="${MY_PN}-${PV}" |
986 |
- |
987 |
-HOMEPAGE="http://www.kernel.org/pub/linux/libs/pam/" |
988 |
-DESCRIPTION="Linux-PAM (Pluggable Authentication Modules)" |
989 |
- |
990 |
-SRC_URI="mirror://kernel/linux/libs/pam/library/${MY_P}.tar.bz2 |
991 |
- mirror://kernel/linux/libs/pam/documentation/${MY_P}-docs.tar.bz2" |
992 |
- |
993 |
-LICENSE="|| ( BSD GPL-2 )" |
994 |
-SLOT="0" |
995 |
-KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-linux ~ia64-linux ~x86-linux" |
996 |
-IUSE="cracklib nls elibc_FreeBSD selinux vim-syntax audit test elibc_glibc debug berkdb" |
997 |
- |
998 |
-RDEPEND="nls? ( virtual/libintl ) |
999 |
- cracklib? ( >=sys-libs/cracklib-2.8.3 ) |
1000 |
- audit? ( sys-process/audit ) |
1001 |
- selinux? ( >=sys-libs/libselinux-1.28 ) |
1002 |
- berkdb? ( sys-libs/db ) |
1003 |
- elibc_glibc? ( >=sys-libs/glibc-2.7 )" |
1004 |
-DEPEND="${RDEPEND} |
1005 |
- sys-devel/flex |
1006 |
- nls? ( sys-devel/gettext )" |
1007 |
-PDEPEND="sys-auth/pambase |
1008 |
- vim-syntax? ( app-vim/pam-syntax )" |
1009 |
-RDEPEND="${RDEPEND} |
1010 |
- !sys-auth/pam_userdb" |
1011 |
- |
1012 |
-S="${WORKDIR}/${MY_P}" |
1013 |
- |
1014 |
-PROVIDE="virtual/pam" |
1015 |
- |
1016 |
-check_old_modules() { |
1017 |
- local retval="0" |
1018 |
- |
1019 |
- if sed -e 's:#.*::' "${EROOT}"/etc/pam.d/* 2>/dev/null | fgrep -q pam_stack.so; then |
1020 |
- eerror "" |
1021 |
- eerror "Your current setup is using the pam_stack module." |
1022 |
- eerror "This module is deprecated and no longer supported, and since version" |
1023 |
- eerror "0.99 is no longer installed, nor provided by any other package." |
1024 |
- eerror "The package will be built (to allow binary package builds), but will" |
1025 |
- eerror "not be installed." |
1026 |
- eerror "Please replace pam_stack usage with proper include directive usage," |
1027 |
- eerror "following the PAM Upgrade guide at the following URL" |
1028 |
- eerror " http://www.gentoo.org/proj/en/base/pam/upgrade-0.99.xml" |
1029 |
- eerror "" |
1030 |
- |
1031 |
- retval=1 |
1032 |
- fi |
1033 |
- |
1034 |
- if sed -e 's:#.*::' "${EROOT}"/etc/pam.d/* 2>/dev/null | egrep -q 'pam_(pwdb|console)'; then |
1035 |
- eerror "" |
1036 |
- eerror "Your current setup is using one or more of the following modules," |
1037 |
- eerror "that are not built or supported anymore:" |
1038 |
- eerror "pam_pwdb, pam_console" |
1039 |
- eerror "If you are in real need for these modules, please contact the maintainers" |
1040 |
- eerror "of PAM through http://bugs.gentoo.org/ providing information about its" |
1041 |
- eerror "use cases." |
1042 |
- eerror "Please also make sure to read the PAM Upgrade guide at the following URL:" |
1043 |
- eerror " http://www.gentoo.org/proj/en/base/pam/upgrade-0.99.xml" |
1044 |
- eerror "" |
1045 |
- |
1046 |
- retval=1 |
1047 |
- fi |
1048 |
- |
1049 |
- return $retval |
1050 |
-} |
1051 |
- |
1052 |
-pkg_setup() { |
1053 |
- check_old_modules |
1054 |
-} |
1055 |
- |
1056 |
-src_prepare() { |
1057 |
- # Avoid building xtests during "make all"; note that for what |
1058 |
- # we're concerned xtests are not even executed, so we should |
1059 |
- # probably use EXTRA_PROGRAMS. |
1060 |
- epatch "${FILESDIR}/${MY_PN}-0.99.8.1-xtests.patch" |
1061 |
- |
1062 |
- # Fix building on uClibc; it is added since 1.1.1 but applies to |
1063 |
- # 1.1.0 as well. |
1064 |
- epatch "${FILESDIR}/${MY_PN}-1.1.0-uclibc.patch" |
1065 |
- |
1066 |
- # Fix tests to find Berkeley DB as installed by Gentoo (with a |
1067 |
- # library suffix but no suffix on the ELF symbols). |
1068 |
- epatch "${FILESDIR}/${MY_PN}-1.1.1-gentoodb.patch" |
1069 |
- |
1070 |
- # make it possible to skip libxcrypt detection if header is not |
1071 |
- # found |
1072 |
- epatch "${FILESDIR}/${MY_PN}-1.1.1-xcrypt.patch" |
1073 |
- |
1074 |
- # fix building with Berkeley DB 5.0 and later; now defining |
1075 |
- # DB_DBM_HSEARCH is not enough; bug #319831 |
1076 |
- epatch "${FILESDIR}/${MY_PN}-1.1.1+berkdb-5.patch" |
1077 |
- |
1078 |
- # Fix building of doc/specs |
1079 |
- epatch "${FILESDIR}/${MY_PN}-1.0.4-cross-compile.patch" |
1080 |
- |
1081 |
- # Remove libtool-2 libtool macros, see bug 261167 |
1082 |
- rm m4/libtool.m4 m4/lt*.m4 || die "rm libtool macros failed." |
1083 |
- |
1084 |
- eautoreconf |
1085 |
- |
1086 |
- elibtoolize |
1087 |
-} |
1088 |
- |
1089 |
-src_configure() { |
1090 |
- local myconf |
1091 |
- |
1092 |
- if use hppa || use elibc_FreeBSD; then |
1093 |
- myconf="${myconf} --disable-pie" |
1094 |
- fi |
1095 |
- |
1096 |
- # Disable automatic detection of libxcrypt; we _don't_ want the |
1097 |
- # user to link libxcrypt in by default, since we won't track the |
1098 |
- # dependency and allow to break PAM this way. |
1099 |
- export ac_cv_header_xcrypt_h=no |
1100 |
- |
1101 |
- econf \ |
1102 |
- --libdir="${EPREFIX}"/usr/$(get_libdir) \ |
1103 |
- --docdir="${EPREFIX}"/usr/share/doc/${PF} \ |
1104 |
- --htmldir="${EPREFIX}"/usr/share/doc/${PF}/html \ |
1105 |
- --enable-securedir="${EPREFIX}"/$(get_libdir)/security \ |
1106 |
- --enable-isadir="${EPREFIX}"/$(get_libdir)/security \ |
1107 |
- $(use_enable nls) \ |
1108 |
- $(use_enable selinux) \ |
1109 |
- $(use_enable cracklib) \ |
1110 |
- $(use_enable audit) \ |
1111 |
- $(use_enable debug) \ |
1112 |
- $(use_enable berkdb db) \ |
1113 |
- --with-db-uniquename=-$(db_findver sys-libs/db) \ |
1114 |
- --disable-dependency-tracking \ |
1115 |
- --disable-prelude \ |
1116 |
- ${myconf} |
1117 |
-} |
1118 |
- |
1119 |
-src_compile() { |
1120 |
- emake sepermitlockdir="${EPREFIX}/var/run/sepermit" || die "emake failed" |
1121 |
-} |
1122 |
- |
1123 |
-src_test() { |
1124 |
- # explicitly allow parallel-build during testing |
1125 |
- emake sepermitlockdir="${EPREFIX}/var/run/sepermit" check || die "emake check failed" |
1126 |
-} |
1127 |
- |
1128 |
-src_install() { |
1129 |
- local lib |
1130 |
- |
1131 |
- emake DESTDIR="${D}" install \ |
1132 |
- sepermitlockdir="${EPREFIX}/var/run/sepermit" || die "make install failed" |
1133 |
- |
1134 |
- # Need to be suid |
1135 |
- fperms u+s /sbin/unix_chkpwd |
1136 |
- |
1137 |
- gen_usr_ldscript -a pam pamc pam_misc |
1138 |
- |
1139 |
- # create extra symlinks just in case something depends on them... |
1140 |
- for lib in pam pamc pam_misc; do |
1141 |
- if ! [[ -f "${ED}"/$(get_libdir)/lib${lib}$(get_libname) ]]; then |
1142 |
- dosym lib${lib}$(get_libname 0) /$(get_libdir)/lib${lib}$(get_libname) |
1143 |
- fi |
1144 |
- done |
1145 |
- |
1146 |
- dodoc CHANGELOG ChangeLog README AUTHORS Copyright NEWS || die |
1147 |
- |
1148 |
- docinto modules |
1149 |
- for dir in modules/pam_*; do |
1150 |
- newdoc "${dir}"/README README."$(basename "${dir}")" |
1151 |
- done |
1152 |
- |
1153 |
- # Get rid of the .la files. We certainly don't need them for PAM |
1154 |
- # modules, and libpam is installed as a shared object only, so we |
1155 |
- # don't ned them for static linking either. |
1156 |
- find "${D}" -name '*.la' -delete |
1157 |
-} |
1158 |
- |
1159 |
-pkg_preinst() { |
1160 |
- check_old_modules || die "deprecated PAM modules still used" |
1161 |
-} |
1162 |
|
1163 |
diff --git a/sys-libs/pam/pam-1.1.2.ebuild b/sys-libs/pam/pam-1.1.2.ebuild |
1164 |
index 90b6c6b..93f1653 100644 |
1165 |
--- a/sys-libs/pam/pam-1.1.2.ebuild |
1166 |
+++ b/sys-libs/pam/pam-1.1.2.ebuild |
1167 |
@@ -12,32 +12,25 @@ MY_P="${MY_PN}-${PV}" |
1168 |
HOMEPAGE="http://www.kernel.org/pub/linux/libs/pam/" |
1169 |
DESCRIPTION="Linux-PAM (Pluggable Authentication Modules)" |
1170 |
|
1171 |
-SRC_URI="mirror://kernel/linux/libs/pam/library/${MY_P}.tar.bz2 |
1172 |
- mirror://kernel/linux/libs/pam/documentation/${MY_P}-docs.tar.bz2" |
1173 |
+SRC_URI="http://mirror.anl.gov/pub/linux/libs/pam/library/${MY_P}.tar.bz2" |
1174 |
|
1175 |
LICENSE="|| ( BSD GPL-2 )" |
1176 |
SLOT="0" |
1177 |
-KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-linux ~ia64-linux ~x86-linux" |
1178 |
-IUSE="cracklib nls elibc_FreeBSD selinux vim-syntax audit test elibc_glibc debug berkdb" |
1179 |
+KEYWORDS="~amd64 ~x86" |
1180 |
+IUSE="cracklib nls vim-syntax audit test debug berkdb" |
1181 |
|
1182 |
RDEPEND="nls? ( virtual/libintl ) |
1183 |
cracklib? ( >=sys-libs/cracklib-2.8.3 ) |
1184 |
audit? ( sys-process/audit ) |
1185 |
- selinux? ( >=sys-libs/libselinux-1.28 ) |
1186 |
- berkdb? ( sys-libs/db ) |
1187 |
- elibc_glibc? ( >=sys-libs/glibc-2.7 )" |
1188 |
+ berkdb? ( sys-libs/db )" |
1189 |
DEPEND="${RDEPEND} |
1190 |
sys-devel/flex |
1191 |
nls? ( sys-devel/gettext )" |
1192 |
PDEPEND="sys-auth/pambase |
1193 |
vim-syntax? ( app-vim/pam-syntax )" |
1194 |
-RDEPEND="${RDEPEND} |
1195 |
- !sys-auth/pam_userdb" |
1196 |
|
1197 |
S="${WORKDIR}/${MY_P}" |
1198 |
|
1199 |
-PROVIDE="virtual/pam" |
1200 |
- |
1201 |
check_old_modules() { |
1202 |
local retval="0" |
1203 |
|
1204 |
@@ -88,27 +81,13 @@ src_prepare() { |
1205 |
# library suffix but no suffix on the ELF symbols). |
1206 |
epatch "${FILESDIR}/${MY_PN}-1.1.1-gentoodb.patch" |
1207 |
|
1208 |
- # Fix building of doc/specs, see bug 339174 |
1209 |
- epatch "${FILESDIR}/${MY_PN}-1.0.4-cross-compile.patch" |
1210 |
- |
1211 |
- # Remove libtool-2 libtool macros, see bug 261167 |
1212 |
- rm m4/libtool.m4 m4/lt*.m4 || die "rm libtool macros failed." |
1213 |
- |
1214 |
eautoreconf |
1215 |
- |
1216 |
elibtoolize |
1217 |
} |
1218 |
|
1219 |
src_configure() { |
1220 |
local myconf |
1221 |
|
1222 |
- if use hppa || use elibc_FreeBSD; then |
1223 |
- myconf="${myconf} --disable-pie" |
1224 |
- fi |
1225 |
- |
1226 |
- # Disable automatic detection of libxcrypt; we _don't_ want the |
1227 |
- # user to link libxcrypt in by default, since we won't track the |
1228 |
- # dependency and allow to break PAM this way. |
1229 |
export ac_cv_header_xcrypt_h=no |
1230 |
|
1231 |
econf \ |
1232 |
@@ -120,7 +99,6 @@ src_configure() { |
1233 |
--enable-securedir="${EPREFIX}"/$(get_libdir)/security \ |
1234 |
--enable-isadir="${EPREFIX}"/$(get_libdir)/security \ |
1235 |
$(use_enable nls) \ |
1236 |
- $(use_enable selinux) \ |
1237 |
$(use_enable cracklib) \ |
1238 |
$(use_enable audit) \ |
1239 |
$(use_enable debug) \ |