1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
|
# Copyright 1999-2011 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/sys-auth/polkit/polkit-0.101-r1.ebuild,v 1.9 2011/08/28 23:29:20 nirbheek Exp $
EAPI=3
inherit eutils pam
DESCRIPTION="Policy framework for controlling privileges for system-wide services"
HOMEPAGE="http://hal.freedesktop.org/docs/polkit/"
SRC_URI="http://hal.freedesktop.org/releases/${P}.tar.gz
mirror://gentoo/${P}-CVE-2011-1485.tar.xz"
LICENSE="GPL-2"
SLOT="0"
KEYWORDS="alpha amd64 arm hppa ia64 ~mips ppc ppc64 sh sparc x86 ~x86-fbsd"
IUSE="debug doc examples gtk +introspection kde nls pam"
RDEPEND=">=dev-libs/glib-2.28
dev-libs/expat
introspection? ( >=dev-libs/gobject-introspection-0.6.2 )
pam? ( virtual/pam )"
DEPEND="${RDEPEND}
!!sys-auth/policykit
dev-libs/libxslt
app-text/docbook-xml-dtd:4.1.2
app-text/docbook-xsl-stylesheets
dev-util/pkgconfig
>=dev-util/intltool-0.36
doc? ( >=dev-util/gtk-doc-1.13 )"
PDEPEND=">=sys-auth/consolekit-0.4[policykit]
pam? ( sys-auth/pambase[consolekit] )
gtk? ( || ( >=gnome-extra/polkit-gnome-0.101 lxde-base/lxpolkit ) )
kde? ( || ( sys-auth/polkit-kde-agent sys-auth/polkit-kde ) )"
src_prepare() {
default
# http://lists.freedesktop.org/archives/polkit-devel/2011-April/000349.html
# Not needed for next release
epatch "${WORKDIR}/polkit-0.101-CVE-2011-1485/"*.patch
}
src_configure() {
local myauth="--with-authfw=shadow"
use pam && myauth="--with-authfw=pam --with-pam-module-dir=$(getpam_mod_dir)"
econf \
--localstatedir="${EPREFIX}"/var \
--disable-dependency-tracking \
--disable-static \
$(use_enable debug verbose-mode) \
--enable-man-pages \
$(use_enable doc gtk-doc) \
$(use_enable introspection) \
--disable-examples \
$(use_enable nls) \
--with-os-type=gentoo \
${myauth}
}
src_install() {
emake DESTDIR="${D}" install || die
dodoc docs/TODO HACKING NEWS README
find "${D}" -name '*.la' -exec rm -f {} +
# We disable example compilation above, and handle it here
if use examples; then
insinto /usr/share/doc/${PF}/examples
doins src/examples/{*.c,*.policy*}
fi
# Need to keep a few directories around...
diropts -m0700 -o root -g root
keepdir /var/run/polkit-1
keepdir /var/lib/polkit-1
}
pkg_postinst() {
# Make sure that the user has consolekit sessions working so that the
# 'allow_active' directive in polkit action policies works
if has_version 'gnome-base/gdm' && ! has_version 'gnome-base/gdm[consolekit]'; then
# If user has GDM installed, but USE=-consolekit, warn them
ewarn "You have GDM installed, but it does not have USE=consolekit"
ewarn "If you login using GDM, polkit authorizations will not work"
ewarn "unless you enable USE=consolekit"
einfo
fi
if has_version 'kde-base/kdm' && ! has_version 'kde-base/kdm[consolekit]'; then
# If user has KDM installed, but USE=-consolekit, warn them
ewarn "You have KDM installed, but it does not have USE=consolekit"
ewarn "If you login using KDM, polkit authorizations will not work"
ewarn "unless you enable USE=consolekit"
einfo
fi
if ! has_version 'gnome-base/gdm[consolekit]' && \
! has_version 'kde-base/kdm[consolekit]'; then
# Inform user about the alternative method
ewarn "If you don't use GDM or KDM for logging in,"
ewarn "you must start your desktop environment (DE) as follows:"
ewarn " ck-launch-session \$STARTGUI"
ewarn "Where \$STARTGUI is a DE-starting command such as 'gnome-session'."
ewarn "You should add this to your ~/.xinitrc if you use startx."
fi
}
|