diff options
author | Anton Luka Šijanec <anton@sijanec.eu> | 2023-07-28 23:05:13 +0200 |
---|---|---|
committer | Anton Luka Šijanec <anton@sijanec.eu> | 2023-07-28 23:05:13 +0200 |
commit | 27645271741816b974166b4263724c323b897bbd (patch) | |
tree | 67ef2c950137ec25b75a1842a61133b24f0ca639 /net-misc/xrdp/xrdp-0.9.22.1.ebuild | |
parent | chirp (diff) | |
download | g-27645271741816b974166b4263724c323b897bbd.tar g-27645271741816b974166b4263724c323b897bbd.tar.gz g-27645271741816b974166b4263724c323b897bbd.tar.bz2 g-27645271741816b974166b4263724c323b897bbd.tar.lz g-27645271741816b974166b4263724c323b897bbd.tar.xz g-27645271741816b974166b4263724c323b897bbd.tar.zst g-27645271741816b974166b4263724c323b897bbd.zip |
Diffstat (limited to 'net-misc/xrdp/xrdp-0.9.22.1.ebuild')
-rw-r--r-- | net-misc/xrdp/xrdp-0.9.22.1.ebuild | 140 |
1 files changed, 140 insertions, 0 deletions
diff --git a/net-misc/xrdp/xrdp-0.9.22.1.ebuild b/net-misc/xrdp/xrdp-0.9.22.1.ebuild new file mode 100644 index 0000000..b70117b --- /dev/null +++ b/net-misc/xrdp/xrdp-0.9.22.1.ebuild @@ -0,0 +1,140 @@ +# Copyright 1999-2016 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Id$ + +EAPI=7 + +inherit autotools eutils pam systemd + +DESCRIPTION="An open source Remote Desktop Protocol server" +HOMEPAGE="http://www.xrdp.org/" +SRC_URI="https://github.com/neutrinolabs/xrdp/releases/download/v${PV}/${P}.tar.gz" + +LICENSE="Apache-2.0" +SLOT="0" +KEYWORDS="~amd64 ~arm ~arm64 ~riscv ~x86" +RESTRICT="mirror" +IUSE="debug fuse +ipv6 kerberos jpeg -neutrinordp pam +pulseaudio systemd +vsock +xorg -xrdpvr" + +RDEPEND="dev-libs/openssl:0= + pulseaudio? ( media-sound/pulseaudio:0= ) + x11-libs/libX11:0= + x11-libs/libXfixes:0= + x11-libs/libXrandr:0= + fuse? ( sys-fs/fuse:0= ) + jpeg? ( virtual/jpeg:0= ) + kerberos? ( virtual/krb5:0= ) + pam? ( sys-libs/pam:0= ) + neutrinordp? ( net-misc/freerdp:0= ) + xrdpvr? ( media-video/ffmpeg:0= )" +PDEPEND="xorg? ( net-misc/xorgxrdp )" +DEPEND="${RDEPEND} + app-arch/xz-utils + dev-lang/nasm" + +# RDEPEND="${RDEPEND} +# || ( +# net-misc/tigervnc:0[server,xorgmodule] +# net-misc/x11rdp:0 +# )" + +src_prepare() { + # don't let USE=debug adjust CFLAGS + sed -i -e 's/-g -O0//' configure.ac || die + # disallow root login by default + sed -i -e '/^AllowRootLogin/s/true/false/' sesman/sesman.ini || die + + # explicitly use Xorg - and not a fallback to Xorg.wrap, to allow non-console users + if [ -e '/usr/libexec/Xorg' ]; then + sed -i -e '/^param=/s!Xorg!/usr/libexec/Xorg!' sesman/sesman.ini || die + else + [ -u '/usr/bin/Xorg' ] && ewarn "Can't find an non-suid Xorg binary, xrdp requires this for proper functionality. Please specify path manually in /etc/xrdp/sesman.ini" + # sed -i -e '/^param=/s!Xorg!/usr/bin/Xorg!' sesman/sesman.ini || die + fi + + default + eautoreconf +} + +src_configure() { + use kerberos && use pam \ + && ewarn "Both kerberos & pam auth enabled, kerberos will take precedence." + + local myconf=( + # warning: configure.ac is completed flawed + + --localstatedir="${EPREFIX}"/var + + # -- authentication backends -- + $(use_enable pam) + $(use_enable kerberos) + # pam_userpass is not in Gentoo at the moment + #--disable-pamuserpass + + # -- jpeg support -- + $(use_enable jpeg) + # the package supports explicit linking against libjpeg-turbo + # (no need for -ljpeg compat) + $(use jpeg && has_version 'media-libs/libjpeg-turbo:0' && echo --enable-tjpeg) + + # -- others -- + $(use_enable debug debug-all) + $(use_enable fuse) + $(use_enable ipv6) + $(use_enable neutrinordp) + $(use_enable vsock) + $(use_enable xrdpvr) + + --with-systemdsystemunitdir="$(systemd_get_systemunitdir)" + ) + + econf "${myconf[@]}" +} + +src_install() { + default + find "${ED}" -name '*.la' -delete || die + + # use our pam.d file since upstream's incompatible with Gentoo + use pam && newpamd "${FILESDIR}"/xrdp-sesman.pamd xrdp-sesman + # and our startwm.sh + exeinto /etc/xrdp + doexe "${FILESDIR}"/startwm.sh + + # own /etc/xrdp/rsakeys.ini + : > rsakeys.ini + insinto /etc/xrdp + doins rsakeys.ini + + # contributed by Jan Psota <jasiupsota@gmail.com> + newinitd "${FILESDIR}/${PN}-initd" ${PN} +} + +pkg_preinst() { + # either copy existing keys over to avoid CONFIG_PROTECT whining + # or generate new keys (but don't include them in binpkg!) + if [[ -f ${EROOT}/etc/xrdp/rsakeys.ini ]]; then + cp {"${EROOT}","${ED}"}/etc/xrdp/rsakeys.ini || die + else + einfo "Running xrdp-keygen to generate new rsakeys.ini ..." + "${S}"/keygen/xrdp-keygen xrdp "${ED}"/etc/xrdp/rsakeys.ini \ + || die "xrdp-keygen failed to generate RSA keys" + fi +} + +pkg_postinst() { + # check for use of bundled rsakeys.ini (installed by default upstream) + if [[ $(cksum "${EROOT}"/etc/xrdp/rsakeys.ini) == '2935297193 1019 '* ]] + then + ewarn "You seem to be using upstream bundled rsakeys.ini. This means that" + ewarn "your communications are encrypted using a well-known key. Please" + ewarn "consider regenerating rsakeys.ini using the following command:" + ewarn + ewarn " ${EROOT}/usr/bin/xrdp-keygen xrdp ${EROOT}/etc/xrdp/rsakeys.ini" + ewarn + fi + + elog "Various session types require different backend implementations:" + elog "- sesman-Xvnc requires net-misc/tigervnc[server,xorgmodule]" + elog "- sesman-X11rdp requires net-misc/x11rdp" +} |