cvs should be configured with --with-krb4=[...] when the user has 'krb4' in his/hers USE flags Reproducible: Always Steps to Reproduce: 1. USE=krb4 emerge cvs 2. 3. Actual Results: the resulting cvs binary does not support the :kserver: access method Expected Results: the resulting cvs binary should accept a CVSROOT variable such as :kserver:foo.bar.com:/repository leia root # emerge --info Portage 2.0.49-r15 (default-x86-1.4, gcc-3.3.2, glibc-2.3.2-r8, 2.4.20-gentoo-r8) ================================================================= System uname: 2.4.20-gentoo-r8 i686 Intel(R) Pentium(R) 4 CPU 1300MHz Gentoo Base System version 1.4.3.11 ACCEPT_KEYWORDS="x86 ~x86" AUTOCLEAN="yes" CFLAGS="-march=pentium3 -O3 -pipe" CHOST="i686-pc-linux-gnu" COMPILER="gcc3" CONFIG_PROTECT="/etc /var/qmail/control /usr/kde/2/share/config /usr/kde/3/share/config /usr/X11R6/lib/X11/xkb /usr/kde/3.1/share/config /usr/share/texmf/tex/generic/config/ /usr/share/texmf/tex/platex/config/ /usr/share/config" CONFIG_PROTECT_MASK="/etc/gconf /etc/env.d" CXXFLAGS="-march=pentium3 -O3 -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="sandbox ccache autoaddcvs" GENTOO_MIRRORS="http://ds.thn.htu.se/linux/gentoo http://gentoo.oregonstate.edu http://www.ibiblio.org/pub/Linux/distributions/gentoo" MAKEOPTS="" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/local/portage" SYNC="rsync://rsync.europe.gentoo.org/gentoo-portage" USE="x86 oss apm avi crypt cups encode foomaticdb gif jpeg libg++ mad mikmod mpeg ncurses nls pdflib png quicktime spell truetype xml2 xmms xv zlib gtkhtml alsa gdbm berkdb slang readline arts tetex bonobo svga tcltk java guile mysql X sdl gpm tcpd pam libwww ssl perl python esd imlib oggvorbis gnome gtk motif opengl mozilla gphoto2 cdr dvd emacs krb4 leim pda gtk2 -kde -qt" leia root #
I just tried to fix this, but the only kerberos 4 implementation in portage (app-crypt/kth-krb) fails to compile for me. There is no newer upstream release of that. Can't fix.
hm btw. I just noticed the cvs ebuilds don't even have IUSE ... fixed that ;) hm, I suppose there are two problems with krb4 support: 1. as you said, kth-krb doesn't compile for everyone (see Bug 30575) 2. kth-krb currently is x86 and ppc only while cvs works on all archs, so we would have to limit support for kth-krb to x86 and ppc... I have no experience with kth-krb but, honestly, I don't think that is a good idea. My plan for now is to wait some time and then mark cvs-1.11.9 stable on all archs (I committed it just today, the current stable version of cvs is .6 and thus, we lag 3 "bugfix-only" releases behind and cvs-1.11.9 doesn't seem to have any issues as of now [was already released 3 weeks ago]) and when .9 is stable for everyone (and bug 30575 is fixed) we can talk about it again.
adding bug 30575 to "depends on"
I'm not 100% sure how the USE-flags work, but can't cvs make use of the krb4-flag on platforms where kth-krb works? As far as I can see, the only thing which needs to be done is to specify "--with-krb4=/usr/athena --enable-encryption" to configure. If kth-krb isn't installed (or isn't available), nothing happens. Or am I misunderstanding something about the USE flags? /Jesper
yes, DEPENDS can be based on use flags as well as configure options. When this bug originally was opened, kth-krb still had problems etc. that's why I didn't look at it for so long. Thanks for reminding me about this, I'll take a look at the situation again over the next few days.
Also, I'm not sure if the --enable-encryption flag should be used automatically when specifying USE=krb4, or if it should be switched on by other means. I guess its a "safe" option to specify, so it probably wont hurt to have it there. Thanks!
ok, I am busy testing this stuff currently :) Nevertheless, it'd be cool if someone could come up with a patch to the ebuild etc. because it'll take me some more time to check various things, unfortunatly I have no experience with kerberos and its various implementations etc. If you want support for kerberos added soon --> volunteers wanted =)
Just as a heads up, I am currently looking into cvs-1.12.x (feature release series is currently not in the tree, only the stable 1.11.x) and hope to get this sorted and commit it to the tree with the next 1.12 release of cvs.
I just committed cvs-1.12.9.ebuild which has the crypt useflag and kerberos support