Dessa/gentoo
1
0
Fork 0
Code Issues Pull Requests Wiki Activity

[sys-auth/sssd] bump

Browse Source
This commit is contained in:
Robert Förster
2026-02-11 13:55:53 +01:00
parent 647869241d
commit 0a4cd8431d
3 changed files with 89 additions and 34 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
sys-auth/sssd/files/sssd-2.10.0_beta2-fix-systemd-systemconfdir.patch Normal file
View File

@@ -0,0 +1,22 @@
diff --git a/src/conf_macros.m4 b/src/conf_macros.m4
index c0efc3ad1..07fef0c1a 100644
--- a/src/conf_macros.m4
+++ b/src/conf_macros.m4
@@ -227,14 +227,14 @@ AC_DEFUN([WITH_SYSTEMD_CONF_DIR],
if test x"$with_systemdconfdir" != x; then
systemdconfdir=$with_systemdconfdir
else
- pkgconfigdir=${prefix}$($PKG_CONFIG --variable=systemdsystemconfdir systemd)
+ pkgconfigdir=$($PKG_CONFIG --variable=systemdsystemconfdir systemd)
if test x"$pkgconfigdir" = x; then
AC_MSG_ERROR([Could not detect systemd config directory])
fi
- if test "${pkgconfigdir:0:${#prefix}}" = "${prefix}"; then
+ if test "${pkgconfigdir:0:${#sysconfdir}}" = "${sysconfdir}"; then
systemdconfdir=${pkgconfigdir}
else
- systemdconfdir=${prefix}${pkgconfigdir}
+ systemdconfdir=${sysconfdir}${pkgconfigdir}
fi
fi
AC_SUBST(systemdconfdir, [$systemdconfdir/sssd.service.d])

14
sys-auth/sssd/files/sssd-2.9.7-kerberos-1-22.patch
View File

@@ -1,14 +0,0 @@
diff --git a/src/external/pac_responder.m4 b/src/external/pac_responder.m4
index 90727185b..3501b6b71 100644
--- a/src/external/pac_responder.m4
+++ b/src/external/pac_responder.m4
@@ -23,7 +23,8 @@ then
Kerberos\ 5\ release\ 1.18* | \
Kerberos\ 5\ release\ 1.19* | \
Kerberos\ 5\ release\ 1.20* | \
- Kerberos\ 5\ release\ 1.21*)
+ Kerberos\ 5\ release\ 1.21* | \
+ Kerberos\ 5\ release\ 1.22*)
krb5_version_ok=yes
AC_MSG_RESULT([yes])
;;

87
sys-auth/sssd/sssd-2.9.8.ebuild → sys-auth/sssd/sssd-2.12.0.ebuild
View File

@@ -3,14 +3,16 @@
EAPI=8 EAPI=8
PLOCALES="ca de es fr ja ko pt_BR ru sv tr uk" # Ukrainian translation causes compile failure, so skip it for now
#PLOCALES="ca de es fr ja ko pt_BR ru sv tr uk"
PLOCALES="ca de es fr ja ko pt_BR ru sv tr"
PLOCALES_BIN="${PLOCALES} bg cs eu fi hu id it ka nb nl pl pt tg zh_TW zh_CN" PLOCALES_BIN="${PLOCALES} bg cs eu fi hu id it ka nb nl pl pt tg zh_TW zh_CN"
PLOCALE_BACKUP="sv" PLOCALE_BACKUP="sv"
PYTHON_COMPAT=( python3_{10..13} ) PYTHON_COMPAT=( python3_{11..14} )
VERIFY_SIG_OPENPGP_KEY_PATH="${BROOT}"/usr/share/openpgp-keys/sssd.asc VERIFY_SIG_OPENPGP_KEY_PATH="${BROOT}"/usr/share/openpgp-keys/sssd.asc
inherit autotools linux-info multilib-minimal optfeature plocale \ inherit autotools linux-info multilib-minimal optfeature plocale \
python-single-r1 pam systemd toolchain-funcs verify-sig python-single-r1 pam systemd tmpfiles udev toolchain-funcs verify-sig
DESCRIPTION="System Security Services Daemon provides access to identity and authentication" DESCRIPTION="System Security Services Daemon provides access to identity and authentication"
HOMEPAGE="https://github.com/SSSD/sssd" HOMEPAGE="https://github.com/SSSD/sssd"
@@ -26,7 +28,7 @@ fi
LICENSE="GPL-3" LICENSE="GPL-3"
SLOT="0" SLOT="0"
IUSE="acl doc +netlink nfsv4 nls passkey python samba selinux systemd systemtap test" IUSE="doc +netlink nfsv4 nls passkey python samba selinux systemd systemtap test"
REQUIRED_USE="python? ( ${PYTHON_REQUIRED_USE} )" REQUIRED_USE="python? ( ${PYTHON_REQUIRED_USE} )"
RESTRICT="!test? ( test )" RESTRICT="!test? ( test )"
@@ -43,15 +45,16 @@ DEPEND="
>=net-dns/bind-9.9[gssapi] >=net-dns/bind-9.9[gssapi]
>=net-dns/c-ares-1.10.0-r1:=[${MULTILIB_USEDEP}] >=net-dns/c-ares-1.10.0-r1:=[${MULTILIB_USEDEP}]
>=net-nds/openldap-2.4.30:=[sasl,experimental] >=net-nds/openldap-2.4.30:=[sasl,experimental]
net-fs/cifs-utils[acl]
>=sys-apps/dbus-1.6 >=sys-apps/dbus-1.6
>=sys-apps/keyutils-1.5:= >=sys-apps/keyutils-1.5:=
sys-libs/libcap
>=sys-libs/pam-0-r1[${MULTILIB_USEDEP}] >=sys-libs/pam-0-r1[${MULTILIB_USEDEP}]
>=sys-libs/talloc-2.0.7 >=sys-libs/talloc-2.0.7
>=sys-libs/tdb-1.2.9 >=sys-libs/tdb-1.2.9
>=sys-libs/tevent-0.9.16 >=sys-libs/tevent-0.9.16
virtual/ldb:= virtual/ldb:=
virtual/libintl virtual/libintl
acl? ( net-fs/cifs-utils[acl] )
netlink? ( dev-libs/libnl:3 ) netlink? ( dev-libs/libnl:3 )
nfsv4? ( >=net-fs/nfs-utils-2.3.1-r2 ) nfsv4? ( >=net-fs/nfs-utils-2.3.1-r2 )
nls? ( >=sys-devel/gettext-0.18 ) nls? ( >=sys-devel/gettext-0.18 )
@@ -75,18 +78,21 @@ DEPEND="
) )
systemtap? ( dev-debug/systemtap )" systemtap? ( dev-debug/systemtap )"
RDEPEND="${DEPEND} RDEPEND="${DEPEND}
acct-user/sssd
acct-group/sssd
passkey? ( sys-apps/pcsc-lite[policykit] ) passkey? ( sys-apps/pcsc-lite[policykit] )
selinux? ( >=sec-policy/selinux-sssd-2.20120725-r9 )" selinux? ( >=sec-policy/selinux-sssd-2.20120725-r9 )"
DEPEND+=" DEPEND+="
sys-apps/shadow" sys-apps/shadow"
BDEPEND=" BDEPEND="
acct-user/sssd
acct-group/sssd
sys-libs/libcap
virtual/pkgconfig virtual/pkgconfig
app-text/docbook-xml-dtd:4.4
>=dev-libs/libxslt-1.1.26
${PYTHON_DEPS} ${PYTHON_DEPS}
doc? ( app-text/doxygen ) doc? ( app-text/doxygen )
nls? ( sys-devel/gettext nls? ( app-text/po4a
app-text/po4a ) sys-devel/gettext )
test? ( test? (
dev-libs/check dev-libs/check
dev-libs/softhsm:2 dev-libs/softhsm:2
@@ -98,6 +104,8 @@ BDEPEND="
sys-libs/uid_wrapper sys-libs/uid_wrapper
) )
verify-sig? ( sec-keys/openpgp-keys-sssd ) verify-sig? ( sec-keys/openpgp-keys-sssd )
app-text/docbook-xml-dtd:4.4
>=dev-libs/libxslt-1.1.26
" "
CONFIG_CHECK="~KEYS" CONFIG_CHECK="~KEYS"
@@ -105,7 +113,7 @@ CONFIG_CHECK="~KEYS"
PATCHES=( PATCHES=(
"${FILESDIR}/${PN}-2.8.2-krb5_pw_locked.patch" "${FILESDIR}/${PN}-2.8.2-krb5_pw_locked.patch"
"${FILESDIR}/${PN}-2.9.6-conditional-python-install.patch" "${FILESDIR}/${PN}-2.9.6-conditional-python-install.patch"
"${FILESDIR}/${PN}-2.9.7-kerberos-1-22.patch" "${FILESDIR}/${PN}-2.10.0_beta2-fix-systemd-systemconfdir.patch"
) )
MULTILIB_WRAPPED_HEADERS=( MULTILIB_WRAPPED_HEADERS=(
@@ -119,9 +127,41 @@ MULTILIB_WRAPPED_HEADERS=(
/usr/include/sss_certmap.h /usr/include/sss_certmap.h
) )
sssd_migrate_files() {
if has_version "<=sys-auth/sssd-2.9.9999"
then
einfo "Checking if sssd is running"
if [ -f /run/sssd.pid ]
then
elog "Please stop sssd after installing before"
elog "performing the migration process"
fi
einfo "Checking if /var/lib/sss ownership"
if [ -d /var/lib/sss ] && [ $(stat -c "%U:%G" /var/lib/sss) != "sssd:sssd" ]
then
elog "After installing, please execute"
elog "chown -R sssd:sssd /var/lib/sss"
fi
einfo "Checking if /var/log/sssd ownership"
if [ -d /var/log/sssd ] && [ $(stat -c "%U:%G" /var/log/sssd) != "sssd:sssd" ]
then
elog "After installing, please execute"
elog "chown -R sssd:sssd /var/log/sssd"
fi
einfo "Checking if /etc/sssd ownership"
if ! use systemd && [ -d /etc/sssd ] && [ $(stat -c "%U:%G" /etc/sssd) != "root:sssd" ]
then
elog "After installing, please execute"
elog "chown -R root:sssd /etc/sssd"
fi
fi
}
pkg_setup() { pkg_setup() {
linux-info_pkg_setup linux-info_pkg_setup
python-single-r1_pkg_setup python-single-r1_pkg_setup
sssd_migrate_files
} }
src_prepare() { src_prepare() {
@@ -158,6 +198,13 @@ src_prepare() {
Makefile.am \ Makefile.am \
|| die || die
# requires valgrind headers installed, see
# https://github.com/SSSD/sssd/pull/7845
sed -i \
-e '/^\s*test_iobuf[ \\]*$/d' \
Makefile.am \
|| die
eautoreconf eautoreconf
multilib_copy_sources multilib_copy_sources
@@ -166,11 +213,6 @@ src_prepare() {
src_configure() { src_configure() {
local native_dbus_cflags=$($(tc-getPKG_CONFIG) --cflags dbus-1 || die) local native_dbus_cflags=$($(tc-getPKG_CONFIG) --cflags dbus-1 || die)
# Workaround for bug #938302
if use systemtap && has_version "dev-debug/systemtap[-dtrace-symlink(+)]" ; then
export DTRACE="${BROOT}"/usr/bin/stap-dtrace
fi
multilib-minimal_src_configure multilib-minimal_src_configure
} }
@@ -182,9 +224,9 @@ multilib_src_configure() {
--localstatedir="${EPREFIX}"/var --localstatedir="${EPREFIX}"/var
--runstatedir="${EPREFIX}"/run --runstatedir="${EPREFIX}"/run
--sbindir="${EPREFIX}"/usr/sbin --sbindir="${EPREFIX}"/usr/sbin
--with-pid-path="${EPREFIX}"/run --with-pid-path="${EPREFIX}"/run/sssd
--with-plugin-path="${EPREFIX}"/usr/$(get_libdir)/sssd --with-plugin-path="${EPREFIX}"/usr/$(get_libdir)/sssd
--enable-pammoddir="${EPREFIX}$(getpam_mod_dir)" --enable-pammoddir="${EPREFIX}"/$(getpam_mod_dir)
--with-ldb-lib-dir="${EPREFIX}"/usr/$(get_libdir)/samba/ldb --with-ldb-lib-dir="${EPREFIX}"/usr/$(get_libdir)/samba/ldb
--with-db-path="${EPREFIX}"/var/lib/sss/db --with-db-path="${EPREFIX}"/var/lib/sss/db
--with-gpo-cache-path="${EPREFIX}"/var/lib/sss/gpo_cache --with-gpo-cache-path="${EPREFIX}"/var/lib/sss/gpo_cache
@@ -193,6 +235,8 @@ multilib_src_configure() {
--with-mcache-path="${EPREFIX}"/var/lib/sss/mc --with-mcache-path="${EPREFIX}"/var/lib/sss/mc
--with-secrets-db-path="${EPREFIX}"/var/lib/sss/secrets --with-secrets-db-path="${EPREFIX}"/var/lib/sss/secrets
--with-log-path="${EPREFIX}"/var/log/sssd --with-log-path="${EPREFIX}"/var/log/sssd
--with-tmpfilesdir=/usr/lib/tmpfiles.d
--with-udevrulesdir="$(get_udevdir)/rules.d"
--with-kcm --with-kcm
--enable-kcm-renewal --enable-kcm-renewal
--with-os=gentoo --with-os=gentoo
@@ -202,9 +246,8 @@ multilib_src_configure() {
--disable-valgrind --disable-valgrind
$(use_with samba) $(use_with samba)
--with-smb-idmap-interface-version=6 --with-smb-idmap-interface-version=6
$(multilib_native_use_enable acl cifs-idmap-plugin) --enable-cifs-idmap-plugin
$(multilib_native_use_with selinux) $(multilib_native_use_with selinux)
$(multilib_native_use_with selinux semanage)
--enable-krb5-locator-plugin --enable-krb5-locator-plugin
$(use_enable samba pac-responder) $(use_enable samba pac-responder)
$(multilib_native_use_with nfsv4 nfsv4-idmapd-plugin) $(multilib_native_use_with nfsv4 nfsv4-idmapd-plugin)
@@ -222,8 +265,8 @@ multilib_src_configure() {
$(multilib_native_use_with python python3-bindings) $(multilib_native_use_with python python3-bindings)
# Annoyingly configure requires that you pick systemd XOR sysv # Annoyingly configure requires that you pick systemd XOR sysv
--with-initscript=$(usex systemd systemd sysv) --with-initscript=$(usex systemd systemd sysv)
--with-sssd-user=sssd
KRB5_CONFIG="${ESYSROOT}"/usr/bin/krb5-config KRB5_CONFIG="${ESYSROOT}"/usr/bin/krb5-config
# Needed for Samba 4.21
CPPFLAGS="${CPPFLAGS} -I${ESYSROOT}/usr/include/samba-4.0" CPPFLAGS="${CPPFLAGS} -I${ESYSROOT}/usr/include/samba-4.0"
) )
@@ -319,6 +362,8 @@ multilib_src_install_all() {
keepdir /var/lib/sss/pubconf/krb5.include.d keepdir /var/lib/sss/pubconf/krb5.include.d
keepdir /var/lib/sss/secrets keepdir /var/lib/sss/secrets
keepdir /var/log/sssd keepdir /var/log/sssd
keepdir /etc/sssd/conf.d
keepdir /etc/sssd/pki
# strip empty dirs # strip empty dirs
if ! use doc; then if ! use doc; then
@@ -331,6 +376,8 @@ multilib_src_install_all() {
} }
pkg_postinst() { pkg_postinst() {
tmpfiles_process sssd-tmpfiles.conf
echo
elog "You must set up sssd.conf (default installed into /etc/sssd)" elog "You must set up sssd.conf (default installed into /etc/sssd)"
elog "and (optionally) configuration in /etc/pam.d in order to use SSSD" elog "and (optionally) configuration in /etc/pam.d in order to use SSSD"
elog "features." elog "features."