# Copyright 1999-2012 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 # $Header: /var/cvsroot/gentoo-x86/net-dialup/freeradius/freeradius-2.2.0.ebuild,v 1.3 2012/10/02 09:58:12 nativemad Exp $ EAPI=4 PATCHSET=4 inherit eutils pam autotools user python MY_P="${PN}-server-${PV}" DESCRIPTION="Highly configurable free RADIUS server" SRC_URI="ftp://ftp.freeradius.org/pub/radius/${MY_P}.tar.gz ftp://ftp.freeradius.org/pub/radius/old/${MY_P}.tar.gz http://dev.gentoo.org/~flameeyes/${PN}/${P}-patches-${PATCHSET}.tar.xz" HOMEPAGE="http://www.freeradius.org/" KEYWORDS="~amd64 ~ppc ~ppc64 ~sparc x86" LICENSE="GPL-2" SLOT="0" IUSE="bindist debug firebird kerberos ldap mysql pam postgres ssl pcap readline ruby sqlite python odbc iodbc oracle" RDEPEND="!net-dialup/cistronradius !net-dialup/gnuradius sys-devel/libtool dev-lang/perl sys-libs/gdbm python? ( >=dev-lang/python-2.4 ) readline? ( sys-libs/readline ) pcap? ( net-libs/libpcap ) mysql? ( virtual/mysql ) postgres? ( dev-db/postgresql-server ) firebird? ( dev-db/firebird ) pam? ( sys-libs/pam ) ssl? ( dev-libs/openssl ) ldap? ( net-nds/openldap ) kerberos? ( virtual/krb5 ) ruby? ( dev-lang/ruby:1.8 ) sqlite? ( dev-db/sqlite:3 ) odbc? ( dev-db/unixODBC ) iodbc? ( dev-db/libiodbc ) oracle? ( dev-db/oracle-instantclient-basic )" DEPEND="${RDEPEND}" REQUIRED_USE="bindist? ( !firebird )" S="${WORKDIR}/${MY_P}" pkg_setup() { enewgroup radius enewuser radius -1 -1 /var/log/radius radius } src_prepare() { epatch "${WORKDIR}"/patches/*.patch # most of the configuration options do not appear as ./configure # switches. Instead it identifies the directories that are available # and run through them. These might check for the presence of # various libraries, in which case they are not built. To avoid # automagic dependencies, we just remove all the modules that we're # not interested in using. use ssl || rm -r src/modules/rlm_eap/types/rlm_eap_{tls,ttls,peap} use ldap || rm -r src/modules/rlm_ldap use kerberos || rm -r src/modules/rlm_krb5 use pam || rm -r src/modules/rlm_pam use python || rm -r src/modules/rlm_python use ruby || rm -r src/modules/rlm_ruby # these are all things we don't have in portage/I don't want to deal # with myself rm -r src/modules/rlm_eap/types/rlm_eap_tnc # requires TNCS library rm -r src/modules/rlm_eap/types/rlm_eap_ikev2 # requires libeap-ikev2 rm -r src/modules/rlm_opendirectory # requires some membership.h rm -r src/modules/rlm_redis{,who} # requires redis rm -r src/modules/rlm_sql/drivers/rlm_sql_{db2,freetds,sybase} # sql drivers that are not part of experimental are loaded from a # file, so we have to remove them from the file itself when we # remove them. usesqldriver() { local flag=$1 local driver=rlm_sql_${2:-${flag}} if ! use ${flag}; then rm -r src/modules/rlm_sql/drivers/${driver} || die sed -i -e /${driver}/d src/modules/rlm_sql/stable || die fi } usesqldriver mysql usesqldriver postgres postgresql usesqldriver firebird usesqldriver iodbc usesqldriver odbc unixodbc usesqldriver oracle usesqldriver sqlite # remove bundled ltdl to avoid conflicts rm -r libltdl eautoreconf } src_configure() { # fix bug #77613 if has_version app-crypt/heimdal; then myconf="${myconf} --enable-heimdal-krb5" fi use readline || export ac_cv_lib_readline=no use pcap || export ac_cv_lib_pcap_pcap_open_live=no # do not try to enable static with static-libs; upstream is a # massacre of libtool best practices so you also have to make sure # to --enable-shared explicitly. econf \ --enable-shared --disable-static \ --disable-ltdl-install \ --with-system-libtool \ --with-system-libltdl \ --with-ascend-binary \ --with-udpfromto \ --with-dhcp \ --with-iodbc-include-dir=/usr/include/iodbc \ --with-experimental-modules \ --with-docdir=/usr/share/doc/${PF} \ --with-logdir=/var/log/radius \ $(use_enable debug developer) \ $(use_with ldap edir) \ $(use_with ssl openssl) } src_install() { dodir /etc diropts -m0750 -o root -g radius dodir /etc/raddb diropts -m0750 -o radius -g radius dodir /var/log/radius keepdir /var/log/radius/radacct diropts emake R="${D}" install chown -R root:radius "${D}"/etc/raddb sed -i -e '/run_dir =/s:=.*:=/var/run/radiusd:' \ "${D}"/etc/raddb/radiusd.conf pamd_mimic_system radiusd auth account password session dodoc CREDITS rm "${D}/usr/sbin/rc.radiusd" newinitd "${FILESDIR}/radius.init-r3" radiusd newconfd "${FILESDIR}/radius.conf-r3" radiusd } pkg_config() { if use ssl; then cd "${ROOT}"/etc/raddb/certs ./bootstrap fi } pkg_postinst() { elog "Users are no longer read from /etc/raddb/radiusd.conf. Please" elog "configure them in /etc/conf.d/radius instead." elog "Also make sure that if you change the pidfile in /etc/raddb/radiusd.conf" elog "you change the pidfile definition in /etc/conf.d/radius as well." if use ssl; then ewarn "You have to run \`emerge --config =${CATEGORY}/${PF}\` to be able" ewarn "to start the radiusd service." fi }