keks-overlay.git

@@ -0,0 +1,14 @@

+AUX proftpd-tmpfiles.d.conf 34 SHA256 75288bb0c76392ae10e7ef3ff27e7b665742cdac8ce4c70dff9f29d645d0f0f3 SHA512 aa6ffbf15e4275941837306259fb426608e82e45a2da4b99c5d7778d11b8c9341e3a12ae9b751d0e173635239b6f1b20f0431be17296c005a83525a48327fa52 WHIRLPOOL d3ef47f4e2abc178c2d153599e7b13148345a470c76410b499e41912f9e90a48c1217e7fdee3d6777b1598dd09840f8bffbd208fa9addbeaaaf9c64058d8df93

+AUX proftpd.conf.sample 1275 SHA256 a214b3937f319c70976d29cfcd47c2cd937d1d70b7274c2b241b1e97606e89c0 SHA512 1c26f3e98ed07d89192c640f7823af168c045abee6ab076791aee9d50be5446be870a189979df4b828e7ae907dd40a346f1b92998fa39195195bfada4061c5df WHIRLPOOL a9f71cf50926ccdf5fe1116250c29a4048e7eb7fc7eb73732023b7c6e78c56b02356c001c203d9dc8c46f817471116977f76e961a6b2a60c03ae1d4722d9e3e1

+AUX proftpd.initd 1544 SHA256 aed3dd4cbbf1db8a1bd0cbadee66a808b430bbbcc436610407a9911df208f668 SHA512 f11ce49440341633ea4287e8887f8127d954207c5c25b0ae08b6ca1b8f42e90e693f657e45abc465c2c86c1b43a04776c9fb68b04c97a5a43fa17a05ff5ef5c6 WHIRLPOOL 0a8fe89a575491954fa177d6db85792eb5b6639abc9fd2c88358c0a7b64dc300602f5b75e4d90ba984e5d21831d2a5c2d39e98230f138cba463f3680eba49948

+AUX proftpd.service 196 SHA256 165235565ca2029c6c33d9e4b73f6da2b0ee08a662fd368dc9260761997b7277 SHA512 12ee7893d37a9d06140b5b6492be74308fe1165a741d4c1b6b690ab4b973f074cad8517fd36af54f2aa452494759d1534c11e70f7212cd55a37cfa439b953062 WHIRLPOOL 3d8f01d1c22a99d2410d492364833a718a008143c76856145372fa15a0cfc5727b1e744ed45e2fcc8303d90b7e10641662342c1b7d0a50c3bdbc3bd5958d8969

+AUX proftpd.xinetd 295 SHA256 150a5701f5c2788ecdf2c6ec228ce674963c9dc7bc1c511ad1eba8dfe05e2d5d SHA512 a13d29ca2289f8bd58b4eb317683d57dfb7d608c53f163844349bbf0b896790f5e9f47a27eafda3b8fc78e60f4a0d6859da7c7ced7df852166cf0b8bcad876d4 WHIRLPOOL 8fa187fe6aff903952257013d06f8953159787f03e6a1b1cd105f55bc6ed8fb70f03e02d4600c593152f9fc418b96fd7ac92555cdd6b9a8c59392e7852b8c186

+AUX tls-protocol-versions-bug4024.patch 5088 SHA256 b05f8f2e8bacae13b830c0af4aadfbb607c17ec0e4f118718c7fb2663847e807 SHA512 b7cfb3a2796c1ad191796b37c9a0511d6af0a0dd03b02099615a948716cdbfca94f36d01784546bc3136ac2191361c602f86efb2ad19364453f27eb65ec31803 WHIRLPOOL 4a790090a4da7d6c1ade4164cf4d0644b25e1474f8a098175cc0757c69b8da548be218b37f6b2075f1bbd7df693ed79d1c49fd0e51a77676a53fa5e4bc159ae1

+DIST mod_clamav-0.11rc.tar.gz 5115 SHA256 87630eb1866066d6320ee711897d8998b8f4915c0498b2e78cc0464abd34855a SHA512 6d33ee7b1c9c8e3fb0a0014dde90cfb1d37daa0f4914f147bb800a8318bcf0e03c7c6748d84cda36c5e5c7cd11ee8114bad9978362f581f367db54d3563f4636 WHIRLPOOL b15024d1011a83a10ce52fb676f1f2162d67750dc137600b624cd04ebd498bb3c9242e4889fd7b73c18224eb483286cb543fc627b27e6a8ff4c9bf35468218b9

+DIST mod_gss-1.3.3.tar.gz 115098 SHA256 24702cf0333720730cc269eb30529061365b1384fdce274bc3d46ccfc300934e SHA512 61473f3102e2204a27d691907482a3e86108bb423be54ba47a79ef0d2a0313bcdc022529f8e620bd868453bee1b1169fce74cc454d835fdfd4be964e342bdedb WHIRLPOOL 90a15ca919326fa2b2e21fb2928e5ac39b912681bce015f3bff0b0b0c47241f41cc3c78789797ba2d8a61dafc24a9f1d18bf085808350301c228b6ed62721e80

+DIST mod_vroot-0.9.3.tar.gz 28352 SHA256 f16c61ed7fe2d7231e1421f8f1a484f29972e0efe0e8e065ab373c388b0c073c SHA512 08a3e5df26bb4d5875b57af9e97e7e7cf27b2ad6983bfae0fac8a21f4a5be0a487cf0d9d03e9e1c08701eb3f22f2cb51a14c05fe1cba5f4085eb8a31d5142776 WHIRLPOOL be30931f117fc4f0b7de87579b483e41d86ad3ecd2999267a726664b32090cd32e6a7e748d66ddec525ee784ee2974212fd2455af313c13b67ab61625efa29d0

+DIST proftpd-1.3.5rc4.tar.gz 7580690 SHA256 bf87251d81acf872bd26c56efb519183eadbb0a4a9446ab689188416edd6e1e4 SHA512 2bee9acca165b4f41c5f151ef9265f7618581149d11c54467caf17be1b9a2745c8cfe60acf0a91dc0547501cf06c1f2f28a7a7a6bc38a107f368b572e2f84e83 WHIRLPOOL ec3ceec673fbf88cc8e044c515616b621d80bdc20831bd023c1abd05e19b848c0975e461840fdbc0450e2d8591d9372667d1d6bff9519720fd4bf04f64bdec5f

+DIST proftpd-mod-case-0.7.tar.gz 13184 SHA256 c3f65588250fea7771439933fa754927794f664e99b8d20f99b1e400fea62111 SHA512 c08d13ef82fec36ae75aa3213dd02e0ce4045904849f422e152f039a9da66a45e4423751074b8bcf8ce347a40ce0e7bde798a85cbadc962fd872aeaa898261fc WHIRLPOOL 27f49e9f34099c081add803aa679fd9abe7afa652dffe5d8e42889fef49aeaefd499e1009fc564d6c8f882b3c6dc31d4c6dd08cc06a42b770e7ef76a2ebfcf8a

+DIST proftpd-mod-diskuse-0.9.tar.gz 18596 SHA256 424f3fd49237245ec176d27ade0965fe21a0db1d645979d5ae3e55497e3da036 SHA512 d41976bf2810e4b783e775e8c767ca2030c3b5df116219fd31cbbac7feaf9922c315bf4ea092881b0d6cf43f2f4c5dbcae61be3c3a833058d12f962a3024b975 WHIRLPOOL aabd1dc23d6c38d308e859ff778beffd0dabfe70d3530c093cf2f95e80b5e9c94b97b6b5ae5109d031f76ff94dffc3822a7aa60fa30df04523d37ebed99730d6

+DIST proftpd-mod-msg-0.4.1.tar.gz 8082 SHA256 255b79d31dc509ffad5d0fbcd469f833a8481e880aa962910c2bc8aa608ca6da SHA512 38ea63b1d355e1e10a6a4477596bf3fa28529a871c9fb8dbf093b5317f0743ef9cb59b986d0b8c1c7ed932dad5d5d571883d596fad2d3b793431824db4487012 WHIRLPOOL ff907e26a354f53231fed94515eb60050dec77118be6f49147e0eb8b79e50c9d73354618bca19d98d32a3fb79d7ba87507cc6c8b269f259c5fcf23d44ad3a906

+EBUILD proftpd-1.3.5_rc4.ebuild 7804 SHA256 49e6bf151346bad9dfcb9668f90d5f7f8091295d47589fb29608aecfedf4a070 SHA512 108c819f49ac3d3a7a179fb26654911dc37775a3668cb6531cf2bd8a94e935e1335ac02c6c16a3bce9cd458dc6c8b3e9a5ceb42b97f4cb15cc1d7357aeb10885 WHIRLPOOL 92ef10853e70e82bbe2da248a2f4c29ea4ccbcecd2da1ae50b798d047030a61bb32cde32501246947b34dba91b8cefe3c916d4ad4b411b5fb9e57baddd9bc82a

@@ -0,0 +1 @@

+d /var/run/proftpd 0755 root root

@@ -0,0 +1,53 @@

+# This is a sample ProFTPD configuration file for Gentoo Linux (rename

+# it to 'proftpd.conf' for actual use). It establishes a single server

+# and a single anonymous login.

+

+ServerName "ProFTPD Default Server"

+ServerType standalone

+DefaultServer on

+RequireValidShell off

+AuthPAM off

+AuthPAMConfig ftp

+

+# Listen on the standard FTP port 21.

+Port 21

+

+# New directories and files should not be group or world writable.

+Umask 022

+

+# To prevent DoS attacks set the maximum number of child processes

+# to 30. If you need to allow more than 30 concurrent connections

+# at once simply increase this value.

+MaxInstances 30

+

+# The server will run under ftp/ftp.

+User ftp

+Group ftp

+

+# Every FTP sessions is "jailed" into the user's home directory.

+DefaultRoot ~

+

+# Generally files are overwritable.

+AllowOverwrite on

+

+# Disallow the use of the SITE CHMOD command.

+<Limit SITE_CHMOD>

+  DenyAll

+</Limit>

+

+# A basic anonymous FTP account without an upload directory.

+<Anonymous ~ftp>

+  User ftp

+  Group ftp

+

+  # Clients can login with the username "anonymous" and "ftp".

+  UserAlias anonymous ftp

+

+  # Limit the maximum number of parallel anonymous logins to 10.

+  MaxClients 10

+

+  # Prohibit the WRITE command for the anonymous users.

+  <Limit WRITE>

+    DenyAll

+  </Limit>

+</Anonymous>

@@ -0,0 +1,52 @@

+#!/sbin/runscript

+# Copyright 1999-2013 Gentoo Foundation

+# Distributed under the terms of the GNU General Public License v2

+# $Header: /var/cvsroot/gentoo-x86/net-ftp/proftpd/files/proftpd.initd,v 1.5 2013/01/14 02:58:52 floppym Exp $

+

+extra_started_commands="reload"

+

+depend() {

+	need net

+	use logger dns mysql postgresql antivirus

+}

+

+check_configuration() {

+	if [ ! -e /etc/proftpd/proftpd.conf ] ; then

+		eerror "To execute the ProFTPD server you need a /etc/proftpd/proftpd.conf configuration"

+		eerror "file. In /etc/proftpd you can find a sample configuration."

+		return 1

+	fi

+	/usr/sbin/proftpd -t &>/dev/null

+	if [ $? -ne 0 ] ; then

+		eerror "The ProFTPD configuration file /etc/proftpd/proftpd.conf is invalid! You have to"

+		eerror "fix your configuration in order to run the ProFTPD server. For more information"

+		eerror "you may execute the ProFTPD configuration check '/usr/sbin/proftpd -t'."

+		return 2

+	fi

+}

+

+start() {

+	checkpath -d /var/run/proftpd

+	[ "${RC_CMD}" = "restart" ] || check_configuration || return 1

+	ebegin "Starting ProFTPD"

+	start-stop-daemon --start --quiet \

+		--exec /usr/sbin/proftpd \

+		--pidfile /var/run/proftpd/proftpd.pid

+	eend $?

+}

+

+stop() {

+	[ "${RC_CMD}" != "restart" ] || check_configuration || return 1

+	ebegin "Stopping ProFTPD"

+	start-stop-daemon --stop --quiet --retry 20 \

+		--pidfile /var/run/proftpd/proftpd.pid

+	eend $?

+}

+

+reload() {

+	check_configuration || return 1

+	ebegin "Reloading ProFTPD"

+	start-stop-daemon --quiet --signal HUP \

+		--pidfile /var/run/proftpd/proftpd.pid

+	eend $?

+}

@@ -0,0 +1,12 @@

+[Unit]

+Description=ProFTPd FTP daemon

+

+[Service]

+Type=simple

+ExecStart=/usr/sbin/proftpd --nodaemon

+StandardOutput=syslog

+StandardError=syslog

+Restart=always

+

+[Install]

+WantedBy=multi-user.target

@@ -0,0 +1,15 @@

+#

+# ProFTPd FTP daemon - http://www.proftpd.org

+#

+service ftp

+{

+       flags		= REUSE

+       socket_type	= stream

+       instances	= 30

+       wait		= no

+       user		= root

+       server		= /usr/sbin/proftpd

+       log_on_success	= HOST PID

+       log_on_failure	= HOST

+       disable		= yes

+}

@@ -0,0 +1,148 @@

+Index: contrib/mod_tls.c

+===================================================================

+RCS file: /cvsroot/proftp/proftpd/contrib/mod_tls.c,v

+retrieving revision 1.333

+diff -u -r1.333 mod_tls.c

+--- contrib/mod_tls.c	28 Feb 2014 15:18:50 -0000	1.333

++++ contrib/mod_tls.c	2 Mar 2014 19:38:19 -0000

+@@ -390,7 +390,7 @@

+ #define TLS_PROTO_TLS_V1		0x0002

+ #define TLS_PROTO_TLS_V1_1		0x0004

+ #define TLS_PROTO_TLS_V1_2		0x0008

+-#define TLS_PROTO_DEFAULT		TLS_PROTO_SSL_V3|TLS_PROTO_TLS_V1

++#define TLS_PROTO_DEFAULT		(TLS_PROTO_SSL_V3|TLS_PROTO_TLS_V1)

+ 

+ #ifdef SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS

+ static int tls_ssl_opts = (SSL_OP_ALL|SSL_OP_NO_SSLv2|SSL_OP_SINGLE_DH_USE)^SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS;

+@@ -2751,6 +2751,32 @@

+   return 0;

+ }

+ 

++static const char *tls_get_proto_str(pool *p, unsigned int protos) {

++  char *proto_str = "";

++

++  if (protos & TLS_PROTO_SSL_V3) {

++    proto_str = pstrcat(p, proto_str, *proto_str ? ", " : "",

++      "SSLv3", NULL);

++  }

++

++  if (protos & TLS_PROTO_TLS_V1) {

++    proto_str = pstrcat(p, proto_str, *proto_str ? ", " : "",

++      "TLSv1", NULL);

++  }

++

++  if (protos & TLS_PROTO_TLS_V1_1) {

++    proto_str = pstrcat(p, proto_str, *proto_str ? ", " : "",

++      "TLSv1.1", NULL);

++  }

++

++  if (protos & TLS_PROTO_TLS_V1_2) {

++    proto_str = pstrcat(p, proto_str, *proto_str ? ", " : "",

++      "TLSv1.2", NULL);

++  }

++

++  return proto_str;

++}

++

+ static int tls_init_server(void) {

+   config_rec *c = NULL;

+   char *tls_ca_cert = NULL, *tls_ca_path = NULL, *tls_ca_chain = NULL;

+@@ -2763,8 +2789,7 @@

+     tls_protocol = *((unsigned int *) c->argv[0]);

+   }

+ 

+-  if ((tls_protocol & TLS_PROTO_SSL_V3) &&

+-      (tls_protocol & TLS_PROTO_TLS_V1)) {

++  if (tls_protocol == TLS_PROTO_DEFAULT) {

+     /* This is the default, so there is no need to do anything. */

+ #if OPENSSL_VERSION_NUMBER >= 0x10001000L

+     pr_log_debug(DEBUG8, MOD_TLS_VERSION ": supporting SSLv3, TLSv1, TLSv1.1, TLSv1.2 protocols");

+@@ -2772,26 +2797,75 @@

+     pr_log_debug(DEBUG8, MOD_TLS_VERSION ": supporting SSLv3, TLSv1 protocols");

+ #endif /* OpenSSL-1.0.1 or later */

+ 

+-  } else if (tls_protocol & TLS_PROTO_SSL_V3) {

++  } else if (tls_protocol == TLS_PROTO_SSL_V3) {

+     SSL_CTX_set_ssl_version(ssl_ctx, SSLv3_server_method());

+     pr_log_debug(DEBUG8, MOD_TLS_VERSION ": supporting SSLv3 protocol only");

+ 

+-  } else if (tls_protocol & TLS_PROTO_TLS_V1) {

++  } else if (tls_protocol == TLS_PROTO_TLS_V1) {

+     SSL_CTX_set_ssl_version(ssl_ctx, TLSv1_server_method());

+     pr_log_debug(DEBUG8, MOD_TLS_VERSION ": supporting TLSv1 protocol only");

+ 

+ #if OPENSSL_VERSION_NUMBER >= 0x10001000L

+-  } else if (tls_protocol & TLS_PROTO_TLS_V1_1) {

++  } else if (tls_protocol == TLS_PROTO_TLS_V1_1) {

+     SSL_CTX_set_ssl_version(ssl_ctx, TLSv1_1_server_method());

+     pr_log_debug(DEBUG8, MOD_TLS_VERSION ": supporting TLSv1.1 protocol only");

+ 

+-  } else if (tls_protocol & TLS_PROTO_TLS_V1_2) {

++  } else if (tls_protocol == TLS_PROTO_TLS_V1_2) {

+     SSL_CTX_set_ssl_version(ssl_ctx, TLSv1_2_server_method());

+     pr_log_debug(DEBUG8, MOD_TLS_VERSION ": supporting TLSv1.2 protocol only");

+ 

+ #endif /* OpenSSL-1.0.1 or later */

++

++  } else {

++    int disable_proto = (SSL_OP_NO_SSLv3|SSL_OP_NO_TLSv1);

++

++#ifdef SSL_OP_NO_TLSv1_1

++    disable_proto |= SSL_OP_NO_TLSv1_1;

++#endif

++#ifdef SSL_OP_NO_TLSv1_2

++    disable_proto |= SSL_OP_NO_TLSv1_2;

++#endif

++

++    /* For any other value of tls_protocol, it will be a combination of

++     * protocol versions.  Thus we MUST use SSLv23_server_method(), and then

++     * try to use SSL_CTX_set_options() to restrict/disable the protocol

++     * versions which are NOT requested.

++     */

++

++    if (tls_protocol & TLS_PROTO_SSL_V3) {

++      /* Clear the "no SSLv3" option. */

++      disable_proto &= ~SSL_OP_NO_SSLv3;

++    }

++

++    if (tls_protocol & TLS_PROTO_TLS_V1) {

++      /* Clear the "no TLSv1" option. */

++      disable_proto &= ~SSL_OP_NO_TLSv1;

++    }

++

++    if (tls_protocol & TLS_PROTO_TLS_V1_1) {

++#ifdef SSL_OP_NO_TLSv1_1

++      /* Clear the "no TLSv1.1" option. */

++      disable_proto &= ~SSL_OP_NO_TLSv1_1;

++#endif

++    }

++

++    if (tls_protocol & TLS_PROTO_TLS_V1_2) {

++#ifdef SSL_OP_NO_TLSv1_2

++      /* Clear the "no TLSv1.2" option. */

++      disable_proto &= ~SSL_OP_NO_TLSv1_2;

++#endif

++    }

++

++    /* Per the comments in <ssl/ssl.h>, SSL_CTX_set_options() uses |= on

++     * the previous value.  This means we can easily OR in our new option

++     * values with any previously set values.

++     */

++    pr_log_debug(DEBUG8, MOD_TLS_VERSION ": supporting %s protocols only",

++      tls_get_proto_str(main_server->pool, tls_protocol));

++    SSL_CTX_set_options(ssl_ctx, disable_proto);

+   }

+ 

++

+   tls_ca_cert = get_param_ptr(main_server->conf, "TLSCACertificateFile", FALSE);

+   tls_ca_path = get_param_ptr(main_server->conf, "TLSCACertificatePath", FALSE);

+ 

+@@ -2817,7 +2891,7 @@

+ 

+     if (SSL_CTX_set_default_verify_paths(ssl_ctx) != 1) {

+       tls_log("error setting default verification locations: %s",

+-          tls_get_errors());

++        tls_get_errors());

+     }

+   }

+ 

@@ -0,0 +1,241 @@

+# Copyright 1999-2013 Gentoo Foundation

+# Distributed under the terms of the GNU General Public License v2

+# $Header: /var/cvsroot/gentoo-x86/net-ftp/proftpd/proftpd-1.3.4d.ebuild,v 1.10 2013/09/14 10:37:51 ago Exp $

+

+EAPI=5

+inherit eutils multilib systemd

+

+MOD_CASE="0.7"

+MOD_CLAMAV="0.11rc"

+MOD_DISKUSE="0.9"

+MOD_GSS="1.3.3"

+MOD_MSG="0.4.1"

+MOD_VROOT="0.9.3"

+

+DESCRIPTION="An advanced and very configurable FTP server."

+HOMEPAGE="http://www.proftpd.org/

+	http://www.castaglia.org/proftpd/

+	http://www.thrallingpenguin.com/resources/mod_clamav.htm

+	http://gssmod.sourceforge.net/"

+SRC_URI="ftp://ftp.proftpd.org/distrib/source/${P/_/}.tar.gz

+	case? ( http://www.castaglia.org/${PN}/modules/${PN}-mod-case-${MOD_CASE}.tar.gz )

+	clamav? ( https://secure.thrallingpenguin.com/redmine/attachments/download/1/mod_clamav-${MOD_CLAMAV}.tar.gz )

+	diskuse? ( http://www.castaglia.org/${PN}/modules/${PN}-mod-diskuse-${MOD_DISKUSE}.tar.gz )

+	kerberos? ( mirror://sourceforge/gssmod/mod_gss-${MOD_GSS}.tar.gz )

+	msg? ( http://www.castaglia.org/${PN}/modules/${PN}-mod-msg-${MOD_MSG}.tar.gz )

+	vroot? ( https://github.com/Castaglia/${PN}-mod_vroot/archive/mod_vroot-${MOD_VROOT}.tar.gz )"

+LICENSE="GPL-2"

+

+SLOT="0"

+KEYWORDS="alpha amd64 arm hppa ~ia64 ~mips ppc ppc64 sparc x86 ~x86-fbsd"

+IUSE="acl authfile ban +caps case clamav copy ctrls deflate diskuse doc dso dynmasq exec ifsession ifversion ident ipv6

+	kerberos ldap linguas_bg_BG linguas_en_US linguas_fr_FR linguas_it_IT linguas_ja_JP linguas_ko_KR

+	linguas_ru_RU linguas_zh_CN linguas_zh_TW memcache msg mysql ncurses nls openssl pam +pcre postgres qos radius

+	ratio readme rewrite selinux sftp shaper sitemisc softquota sqlite ssl tcpd test trace vroot xinetd"

+REQUIRED_USE="ban? ( ctrls )

+	msg? ( ctrls )

+	sftp? ( openssl )

+	shaper? ( ctrls )

+	ssl? ( openssl )"

+

+CDEPEND="acl? ( virtual/acl )

+	caps? ( sys-libs/libcap )

+	clamav? ( app-antivirus/clamav )

+	kerberos? ( virtual/krb5 )

+	ldap? ( net-nds/openldap )

+	memcache? ( >=dev-libs/libmemcached-0.41 )

+	mysql? ( virtual/mysql )

+	nls? ( virtual/libiconv )

+	ncurses? ( sys-libs/ncurses )

+	openssl? ( dev-libs/openssl )

+	pam? ( virtual/pam )

+	pcre? ( dev-libs/libpcre )

+	postgres? ( dev-db/postgresql-base )

+	sqlite? ( dev-db/sqlite:3 )

+	xinetd? ( virtual/inetd )"

+DEPEND="${CDEPEND}

+	test? ( dev-libs/check )"

+RDEPEND="${CDEPEND}

+	net-ftp/ftpbase

+	selinux? ( sec-policy/selinux-ftp )"

+

+S="${WORKDIR}/${P/_/}"

+

+__prepare_module() {

+	local mod_name=$1

+	local mod_topdir=${WORKDIR}/${2:-${mod_name}}

+

+	mv "${mod_topdir}/${mod_name}.c" contrib || die

+	mv "${mod_topdir}/${mod_name}.html" doc/contrib || die

+	rm -r "${mod_topdir}" || die

+}

+

+src_prepare() {

+#	epatch "${FILESDIR}"/${P}-sftp-kbdint-max-responses-bug3973.patch

+#	epatch "${FILESDIR}"/${P}-memset-fix.patch

+	epatch "${FILESDIR}//tls-protocol-versions-bug4024.patch"

+

+	# Skip 'install-conf' / Support LINGUAS

+	sed -i -e "/install-all/s/ install-conf//" Makefile.in

+	sed -i -e "s/^LANGS=.*$/LANGS=${LINGUAS}/" locale/Makefile.in

+

+	# Prepare external modules

+	use case && __prepare_module mod_case

+	if use clamav ; then

+		mv "${WORKDIR}"/mod_clamav-${MOD_CLAMAV}/mod_clamav.{c,h} contrib

+		epatch "${WORKDIR}"/mod_clamav-${MOD_CLAMAV}/${PN}.patch

+		rm -r "${WORKDIR}"/mod_clamav-${MOD_CLAMAV}

+	fi

+	use msg && __prepare_module mod_msg

+	use vroot && __prepare_module mod_vroot ${PN}-mod_vroot-mod_vroot-${MOD_VROOT}

+

+	# Prepare external kerberos module

+	if use kerberos ; then

+		cd "${WORKDIR}"/mod_gss-${MOD_GSS}

+

+		# Support app-crypt/heimdal / Gentoo Bug #284853

+		sed -i -e "s/krb5_principal2principalname/_\0/" mod_auth_gss.c.in

+

+		# Remove obsolete DES / Gentoo Bug #324903

+		# Replace 'rpm' lookups / Gentoo Bug #391021

+		sed -i -e "/ac_gss_libs/s/ -ldes425//" \

+			-e "s/ac_libdir=\`rpm -q -l.*$/ac_libdir=\/usr\/$(get_libdir)\//" \

+			-e "s/ac_includedir=\`rpm -q -l.*$/ac_includedir=\/usr\/include\//" configure{,.in}

+	fi

+}

+

+src_configure() {

+	local c m

+

+	use acl && m="${m}:mod_facl"

+	use ban && m="${m}:mod_ban"

+	use case && m="${m}:mod_case"

+	use clamav && m="${m}:mod_clamav"

+	use copy && m="${m}:mod_copy"

+	use ctrls && m="${m}:mod_ctrls_admin"

+	use deflate && m="${m}:mod_deflate"

+	if use diskuse ; then

+		cd "${WORKDIR}"/mod_diskuse

+		econf

+		mv mod_diskuse.{c,h} "${S}"/contrib

+		mv mod_diskuse.html "${S}"/doc/contrib

+		cd "${S}"

+		rm -r "${WORKDIR}"/mod_diskuse

+		m="${m}:mod_diskuse"

+	fi

+	use dynmasq && mym="${mym}:mod_dynmasq"

+	use exec && m="${m}:mod_exec"

+	use ifsession && m="${m}:mod_ifsession"

+	use ifversion && m="${m}:mod_ifversion"

+	if use kerberos ; then

+		cd "${WORKDIR}"/mod_gss-${MOD_GSS}

+		if has_version app-crypt/mit-krb5 ; then

+			econf --enable-mit

+		else

+			econf --enable-heimdal

+		fi

+		mv mod_{auth_gss,gss}.c "${S}"/contrib

+		mv mod_gss.h "${S}"/include

+		mv README.mod_{auth_gss,gss} "${S}"

+		mv mod_gss.html "${S}"/doc/contrib

+		mv rfc{1509,2228}.txt "${S}"/doc/rfc

+		cd "${S}"

+		rm -r "${WORKDIR}"/mod_gss-${MOD_GSS}

+		m="${m}:mod_gss:mod_auth_gss"

+	fi

+	use ldap && m="${m}:mod_ldap"

+	use msg && mym="${mym}:mod_msg"

+	if use mysql || use postgres || use sqlite ; then

+		m="${m}:mod_sql:mod_sql_passwd"

+		use mysql && m="${m}:mod_sql_mysql"

+		use postgres && m="${m}:mod_sql_postgres"

+		use sqlite && m="${m}:mod_sql_sqlite"

+	fi

+	use qos && m="${m}:mod_qos"

+	use radius && m="${m}:mod_radius"

+	use ratio && m="${m}:mod_ratio"

+	use readme && m="${m}:mod_readme"

+	use rewrite && m="${m}:mod_rewrite"

+	if use sftp ; then

+		m="${m}:mod_sftp"

+		use pam && m="${m}:mod_sftp_pam"

+		use mysql || use postgres || use sqlite && m="${m}:mod_sftp_sql"

+	fi

+	use shaper && m="${m}:mod_shaper"

+	use sitemisc && m="${m}:mod_site_misc"

+	if use softquota ; then

+		m="${m}:mod_quotatab:mod_quotatab_file"

+		use ldap && m="${m}:mod_quotatab_ldap"

+		use radius && m="${m}:mod_quotatab_radius"

+		use mysql || use postgres || use sqlite && m="${m}:mod_quotatab_sql"

+	fi

+	if use ssl ; then

+		m="${m}:mod_tls:mod_tls_shmcache"

+		use memcache && m="${m}:mod_tls_memcache"

+	fi

+	if use tcpd ; then

+		m="${m}:mod_wrap2:mod_wrap2_file"

+		use mysql || use postgres || use sqlite && m="${m}:mod_wrap2_sql"

+	fi

+	use vroot && m="${m}:mod_vroot"

+

+	[ -z ${m} ] || c="${c} --with-modules=${m:1}"

+	econf --localstatedir=/var/run/proftpd --sysconfdir=/etc/proftpd --disable-strip \

+		$(use_enable acl facl) \

+		$(use_enable authfile auth-file) \

+		$(use_enable caps cap) \

+		$(use_enable ctrls) \

+		$(use_enable dso) \

+		$(use_enable ident) \

+		$(use_enable ipv6) \

+		$(use_enable memcache) \

+		$(use_enable ncurses) \

+		$(use_enable nls) \

+		$(use_enable openssl) \

+		$(use_enable pam auth-pam) \

+		$(use_enable pcre) \

+		$(use_enable test tests) \

+		$(use_enable trace) \

+		$(use_enable userland_GNU shadow) \

+		$(use_enable userland_GNU autoshadow) \

+		${c:1}

+}

+

+src_test() {

+	emake api-tests -C tests

+}

+

+src_install() {

+	default

+	[ -z ${LINGUAS} ] && rm -r "${ED}"/usr/share/locale

+	newinitd "${FILESDIR}"/proftpd.initd proftpd

+	insinto /etc/proftpd

+	doins "${FILESDIR}"/proftpd.conf.sample

+

+	if use xinetd ; then

+		insinto /etc/xinetd.d

+		newins "${FILESDIR}"/proftpd.xinetd proftpd

+	fi

+

+	dodoc ChangeLog CREDITS INSTALL NEWS README* RELEASE_NOTES

+	if use doc ; then

+		dohtml doc/*.html doc/contrib/*.html doc/howto/*.html doc/modules/*.html

+		docinto rfc

+		dodoc doc/rfc/*.txt

+	fi

+

+	systemd_dounit       "${FILESDIR}"/${PN}.service

+	systemd_newtmpfilesd "${FILESDIR}"/${PN}-tmpfiles.d.conf ${PN}.conf

+}

+

+pkg_postinst() {

+	if use tcpd ; then

+		ewarn

+		ewarn "Important: Since ProFTPD 1.3.4rc2 the module mod_wrap for TCP Wrapper"

+		ewarn "support has been replaced by mod_wrap2 which is more configurable and"

+		ewarn "portable.  But you have to adjust your configuration before restaring"

+		ewarn "ProFTPD. On the following website you can find more information:"

+		ewarn "  http://proftpd.org/docs/contrib/mod_wrap2.html"

+		ewarn

+	fi

+}