Google Git
Sign in
chromium / chromiumos / overlays / portage / refs/heads/0.12.362.B / . / net-proxy / squid / squid-2.7.7.ebuild
blob: 501f287fba1e05fd75c94be0f7696f358f2cd29b [file] [log] [blame]
# Copyright 1999-2009 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/net-proxy/squid/squid-2.7.7.ebuild,v 1.6 2009/12/03 03:24:31 jer Exp $
EAPI="2"
inherit eutils pam toolchain-funcs autotools
#lame archive versioning scheme..
S_PMV="${PV%%.*}"
S_PV="${PV%.*}"
S_PL="${PV##*.}"
S_PL="${S_PL/_rc/-RC}"
S_PP="${PN}-${S_PV}.STABLE${S_PL}"
DESCRIPTION="A full-featured web proxy cache"
HOMEPAGE="http://www.squid-cache.org/"
SRC_URI="http://www.squid-cache.org/Versions/v${S_PMV}/${S_PV}/${S_PP}.tar.gz"
LICENSE="GPL-2"
SLOT="0"
KEYWORDS="alpha amd64 ~arm hppa ia64 ~mips ppc ~ppc64 sparc x86 ~x86-fbsd"
IUSE="caps pam ldap samba sasl kerberos nis ssl snmp selinux logrotate \
mysql postgres sqlite \
zero-penalty-hit \
pf-transparent ipf-transparent kqueue \
elibc_uclibc kernel_linux +epoll"
DEPEND="caps? ( >=sys-libs/libcap-2.16 )
pam? ( virtual/pam )
ldap? ( net-nds/openldap )
kerberos? ( || ( app-crypt/mit-krb5 app-crypt/heimdal ) )
ssl? ( dev-libs/openssl )
sasl? ( dev-libs/cyrus-sasl )
selinux? ( sec-policy/selinux-squid )
!x86-fbsd? ( logrotate? ( app-admin/logrotate ) )
>=sys-libs/db-4
dev-lang/perl"
RDEPEND="${DEPEND}
samba? ( net-fs/samba )
mysql? ( dev-perl/DBD-mysql )
postgres? ( dev-perl/DBD-Pg )
sqlite? ( dev-perl/DBD-SQLite )"
S="${WORKDIR}/${S_PP}"
pkg_setup() {
if use zero-penalty-hit; then
ewarn "This version supports natively IP TOS/Priority mangling,"
ewarn "but it does not support zph_preserve_miss_tos."
ewarn "If you need that, please use >=${CATEGORY}/${PN}-3 ."
fi
enewgroup squid 31
enewuser squid 31 -1 /var/cache/squid squid
}
src_prepare() {
epatch "${FILESDIR}"/${PN}-2-capability.patch
epatch "${FILESDIR}"/${P}-gentoo.patch
has_version app-crypt/mit-krb5 || epatch "${FILESDIR}"/${PN}-2-heimdal.patch
eautoreconf
}
src_configure() {
local basic_modules="getpwnam,NCSA,MSNT"
use samba && basic_modules="SMB,multi-domain-NTLM,${basic_modules}"
use ldap && basic_modules="LDAP,${basic_modules}"
use pam && basic_modules="PAM,${basic_modules}"
use sasl && basic_modules="SASL,${basic_modules}"
use nis && ! use elibc_uclibc && basic_modules="YP,${basic_modules}"
if use mysql || use postgres || use sqlite ; then
basic_modules="DB,${basic_modules}"
fi
local ext_helpers="ip_user,session,unix_group"
use samba && ext_helpers="wbinfo_group,${ext_helpers}"
use ldap && ext_helpers="ldap_group,${ext_helpers}"
local ntlm_helpers="fakeauth"
use samba && ntlm_helpers="SMB,${ntlm_helpers}"
local negotiate_helpers=
use kerberos && local negotiate_helpers="squid_kerb_auth"
local myconf=""
# Support for uclibc #61175
if use elibc_uclibc; then
myconf="${myconf} --enable-storeio=ufs,diskd,aufs,null"
myconf="${myconf} --disable-async-io"
else
myconf="${myconf} --enable-storeio=ufs,diskd,coss,aufs,null"
myconf="${myconf} --enable-async-io"
fi
if use kernel_linux; then
myconf="${myconf} --enable-linux-netfilter
$(use_enable epoll)"
elif use kernel_FreeBSD || use kernel_OpenBSD || use kernel_NetBSD ; then
myconf="${myconf} $(use_enable kqueue)"
if use pf-transparent; then
myconf="${myconf} --enable-pf-transparent"
elif use ipf-transparent; then
myconf="${myconf} --enable-ipf-transparent"
fi
fi
export CC=$(tc-getCC)
econf \
--sysconfdir=/etc/squid \
--libexecdir=/usr/libexec/squid \
--localstatedir=/var \
--datadir=/usr/share/squid \
--enable-auth="basic,digest,ntlm,negotiate" \
--enable-removal-policies="lru,heap" \
--enable-digest-auth-helpers="password" \
--enable-basic-auth-helpers="${basic_modules}" \
--enable-external-acl-helpers="${ext_helpers}" \
--enable-ntlm-auth-helpers="${ntlm_helpers}" \
--enable-negotiate-auth-helpers="${negotiate_helpers}" \
--enable-ident-lookups \
--enable-useragent-log \
--enable-cache-digests \
--enable-delay-pools \
--enable-referer-log \
--enable-arp-acl \
--with-pthreads \
--with-large-files \
--enable-htcp \
--enable-carp \
--enable-follow-x-forwarded-for \
--with-maxfd=8192 \
$(use_enable caps) \
$(use_enable snmp) \
$(use_enable ssl) \
${myconf} || die "econf failed"
}
src_install() {
make DESTDIR="${D}" install || die "make install failed"
# need suid root for looking into /etc/shadow
fowners root:squid /usr/libexec/squid/ncsa_auth
fowners root:squid /usr/libexec/squid/pam_auth
fperms 4750 /usr/libexec/squid/ncsa_auth
fperms 4750 /usr/libexec/squid/pam_auth
# some cleanups
rm -f "${D}"/usr/bin/Run*
dodoc CONTRIBUTORS CREDITS ChangeLog QUICKSTART SPONSORS doc/*.txt \
helpers/ntlm_auth/no_check/README.no_check_ntlm_auth
newdoc helpers/basic_auth/SMB/README README.auth_smb
dohtml helpers/basic_auth/MSNT/README.html RELEASENOTES.html
newdoc helpers/basic_auth/LDAP/README README.auth_ldap
doman helpers/basic_auth/LDAP/*.8
dodoc helpers/basic_auth/SASL/squid_sasl_auth*
newpamd "${FILESDIR}/squid.pam" squid
newconfd "${FILESDIR}/squid.confd" squid
if use logrotate; then
newinitd "${FILESDIR}/squid.initd-logrotate" squid
insinto /etc/logrotate.d
newins "${FILESDIR}/squid.logrotate" squid
else
newinitd "${FILESDIR}/squid.initd" squid
exeinto /etc/cron.weekly
newexe "${FILESDIR}/squid.cron" squid.cron
fi
rm -rf "${D}"/var
diropts -m0755 -o squid -g squid
keepdir /var/cache/squid /var/log/squid
}
pkg_postinst() {
echo
ewarn "Squid authentication helpers have been installed suid root."
ewarn "This allows shadow based authentication (see bug #52977 for more)."
echo
ewarn "Be careful what type of cache_dir you select!"
ewarn " 'diskd' is optimized for high levels of traffic, but it might seem slow"
ewarn "when there isn't sufficient traffic to keep squid reasonably busy."
ewarn " If your traffic level is low to moderate, use 'aufs' or 'ufs'."
echo
ewarn "Squid can be configured to run in transparent mode like this:"
ewarn " ${HILITE}http_port internal-addr:3128 transparent${NORMAL}"
}