1b21c85160
pkgsrc changes: - Explict to depends security/heimdal package when kerberos option is specified. PR pkg/37999 should be fixed. Change: 646) Sudo will now set the nproc resource limit to unlimited on Linux systems to work around Linux's setuid() resource limit semantics. On PAM systems the resource limits will be reset by pam_limits.so before the command is executed. 647) SELinux support that can be used to implement role based access control (RBAC). A role and (optional) type may be specified in sudoers or on the command line. These are then used in the security context that the command is run as. 648) Fixed a Kerberos 5 compilation problem with MIT Kerberos. Sudo 1.6.9p13 released. 649) Fixed an invalid assumption in the PAM conversation function introduced in version 1.6.9p9. The conversation function may be called for non-password reading purposes as well. 650) Fixed freeing an uninitialized pointer in -l mode, introduced in version 1.6.9p13. 651) Check /etc/sudoers after LDAP even if the user was found in LDAP. This allows Defaults options in /etc/sudoers to take effect. 652) Add missing checks for enforcing mode in SELinux RBAC mode. Sudo 1.6.9p14 released.
44 lines
1 KiB
Makefile
44 lines
1 KiB
Makefile
# $NetBSD: options.mk,v 1.15 2008/03/11 15:52:51 taca Exp $
|
|
#
|
|
|
|
PKG_OPTIONS_VAR= PKG_OPTIONS.sudo
|
|
PKG_SUPPORTED_OPTIONS= ldap
|
|
PKG_OPTIONS_OPTIONAL_GROUPS= auth
|
|
PKG_OPTIONS_GROUP.auth= kerberos pam skey
|
|
|
|
.if ${OPSYS} == "NetBSD" && exists(/usr/include/skey.h)
|
|
PKG_SUGGESTED_OPTIONS= skey
|
|
.endif
|
|
|
|
.include "../../mk/bsd.options.mk"
|
|
|
|
.if !empty(PKG_OPTIONS:Mpam)
|
|
. include "../../mk/pam.buildlink3.mk"
|
|
DL_AUTO_VARS= yes
|
|
CONFIGURE_ARGS+= --with-pam
|
|
.else
|
|
CONFIGURE_ARGS+= --without-pam
|
|
.endif
|
|
|
|
.if !empty(PKG_OPTIONS:Mkerberos)
|
|
KRB5_ACCEPTED= heimdal
|
|
IS_BUILTIN.heimdal= no
|
|
. include "../../mk/krb5.buildlink3.mk"
|
|
CONFIGURE_ARGS+= --without-kerb4
|
|
CONFIGURE_ARGS+= --with-kerb5
|
|
.else
|
|
CONFIGURE_ARGS+= --without-kerb5
|
|
.endif
|
|
|
|
.if !empty(PKG_OPTIONS:Mldap)
|
|
. include "../../databases/openldap-client/buildlink3.mk"
|
|
DL_AUTO_VARS= yes
|
|
CONFIGURE_ARGS+= --with-ldap=${BUILDLINK_PREFIX.openldap-client}
|
|
CONFIGURE_ARGS+= --with-ldap-conf-file=${PKG_SYSCONFDIR}/ldap.conf
|
|
.endif
|
|
|
|
.if !empty(PKG_OPTIONS:Mskey)
|
|
CONFIGURE_ARGS+= --with-skey
|
|
.else
|
|
CONFIGURE_ARGS+= --without-skey
|
|
.endif
|