# ChangeLog for sys-auth/pam_pkcs11
# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2
$Header: /var/cvsroot/gentoo-x86/sys-auth/pam_pkcs11/ChangeLog,v 1.14 2009/10/07 13:02:25 flameeyes Exp $
$Header: /var/cvsroot/gentoo-x86/sys-auth/pam_pkcs11/ChangeLog,v 1.15 2009/12/19 20:25:23 arfrever Exp $
+*pam_pkcs11-0.6.2 (19 Dec 2009)
+ 19 Dec 2009; Arfrever Frehtes Taifersar Arahesis <>
+ +pam_pkcs11-0.6.2.ebuild:
+ Version bump.
*pam_pkcs11-0.6.1-r1 (07 Oct 2009)
DIST pam_pkcs11-0.6.1.tar.gz 1053048 RMD160 98058470f25861005a760e4e0b70094f5298884d SHA1 563834079da6be608000b3cb71112bd76e5575a5 SHA256 80dcf66f3698881faf25e946290c84393a9e46d06ace0b03ce1bf67b44135d37
EBUILD pam_pkcs11-0.6.1-r1.ebuild 3105 RMD160 c63adc1101bc9a1f906e2d54ecde2c80b86d97b6 SHA1 8553d05ff0abe06262eb7f0fa0ee7c0235945cf6 SHA256 6e0ffbd83e47fdf3bd8d688d8cfaa71da1b5216d2eb81c92b6c9ac1062670fb5
+MISC ChangeLog 3798 RMD160 9e949e5efb3bd22a1f058377a2442c8b9d616ded SHA1 d2d3e227ccbb7b80b7c33e1ab263678de98850bc SHA256 fa00dbc3c1c458b02fac4a5170c56759d55f2f354411bb0e235b1df7535aa6e9
+# Copyright 1999-2009 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/sys-auth/pam_pkcs11/pam_pkcs11-0.6.2.ebuild,v 1.1 2009/12/19 20:25:23 arfrever Exp $
+inherit multilib pam
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86"
+IUSE="curl ldap pcsc-lite"
+ dev-libs/openssl
+ curl? ( net-misc/curl )
+ ldap? ( net-nds/openldap )
+ pcsc-lite? ( sys-apps/pcsc-lite )"
+ dev-util/pkgconfig"
+src_prepare() {
+ # Fix the example files to be somewhat decent, and usable as
+ # default configuration
+ sed -i \
+ -e '/try_first_pass/s:false:true:' \
+ -e '/debug =/s:true:false:' \
+ -e "s:/usr/lib:/usr/$(get_libdir):g" \
+ etc/pam_pkcs11.conf.example \
+ etc/pkcs11_eventmgr.conf.example || die "sed failed"
+src_configure() {
+ econf \
+ $(use_with curl) \
+ $(use_with pcsc-lite pcsclite) \
+ $(use_with ldap) \
+ --docdir=/usr/share/doc/${PF}
+src_install() {
+ emake DESTDIR="${D}" pamdir="$(getpam_mod_dir)" install || die "emake install failed"
+ # These are all dlopened plugins, so .la files are useless.
+ find "${D}" -name '*.la' -delete || die
+ dodoc AUTHORS ChangeLog NEWS README TODO || die
+ # Move the make_hash_link script somehwere safe, it's _way_ too
+ # generic of a name to use.
+ dodir /usr/share/${PN}
+ mv "${D}"/usr/bin/ "${D}"/usr/share/${PN} || die
+ # Provide some basic configuration
+ keepdir /etc/pam_pkcs11{,/{cacerts,crl}}
+ insinto /etc/pam_pkcs11
+ newins etc/pam_pkcs11.conf.example pam_pkcs11.conf || die
+ newins etc/pkcs11_eventmgr.conf.example pkcs11_eventmgr.conf || die
+pkg_config() {
+ local dir
+ for dir in "${ROOT}"/etc/${PN}/{cacerts,crl}; do
+ pushd "${dir}" &> /dev/null
+ ebegin "Creating hash links in '${dir}'"
+ "${ROOT}"/usr/share/${PN}/ || die
+ eend $?
+ popd &> /dev/null
+ done
+pkg_postinst() {
+ elog "You probably want to configure the /etc/${PN}/${PN}.conf file."
+ elog "with the settings for your pkcs11 provider."
+ elog ""
+ elog "You might also want to set up /etc/${PN}/pkcs11_eventmgr.conf"
+ elog "with the settings for the event manager, and start it up at"
+ elog "user login."
+# TODO list!
+# - we need to find a way allow the user to choose whether to start the
+# event manager at _all_ the logins, and if that's the case, lock all
+# kind of sessions (terminal _and_ X);
+# - upstream should probably migrate the configuration of the event
+# manager on a per-user basis, since it makes little sense to be _all_
+# system-level configuration;
+# - we should probably provide some better config support that ensures
+# the configuration to be valid, as well as creating the symlinks;
+# - we should probably add support for nss;
+# - we should move the configuration in /etc/security as for the rest
+# of PAM-related configuration.