Browse Packages - Diff openldap-2.4.59-r2 with a openldap-2.5.14

Diff openldap-2.4.59-r2 with a openldap-2.5.14

     # Copyright 1999-2024 Gentoo Authors
     # Copyright 1999-2023 Gentoo Authors
     # Distributed under the terms of the GNU General Public License v2
     EAPI=7
-...
     # Re cleanups:
     # 2.5.x is an LTS release so we want to keep it for a while.
     inherit autotools db-use flag-o-matic multilib multilib-minimal preserve-libs ssl-cert toolchain-funcs systemd tmpfiles
     inherit autotools flag-o-matic multilib multilib-minimal preserve-libs ssl-cert toolchain-funcs systemd tmpfiles
     MY_PV="$(ver_rs 1-2 _)"
     BIS_PN=rfc2307bis.schema
     BIS_PV=20140524
-...
     DESCRIPTION="LDAP suite of application and development tools"
     HOMEPAGE="https://www.openldap.org/"
     # upstream mirrors are mostly not working, using canonical URI
     SRC_URI="
     	https://openldap.org/software/download/OpenLDAP/openldap-release/${P}.tgz
     	http://gpl.savoirfairelinux.net/pub/mirrors/openldap/openldap-release/${P}.tgz
     	http://repository.linagora.org/OpenLDAP/openldap-release/${P}.tgz
     	http://mirror.eu.oneandone.net/software/openldap/openldap-release/${P}.tgz
     	mirror://gentoo/${BIS_P}"
     	https://gitlab.com/openldap/${PN}/-/archive/OPENLDAP_REL_ENG_${MY_PV}/${PN}-OPENLDAP_REL_ENG_${MY_PV}.tar.bz2
     	mirror://gentoo/${BIS_P}
+    "
     S="${WORKDIR}"/${PN}-OPENLDAP_REL_ENG_${MY_PV}
     LICENSE="OPENLDAP GPL-2"
     SLOT="0"
     KEYWORDS="~alpha amd64 arm arm64 ~hppa ~mips ~ppc ppc64 ~riscv ~s390 sparc x86 ~amd64-linux ~x86-linux"
     IUSE_DAEMON="crypt samba tcpd experimental minimal"
     IUSE_BACKEND="+berkdb"
     IUSE_OVERLAY="overlays perl"
     IUSE_OPTIONAL="gnutls iodbc sasl ssl odbc debug ipv6 +syslog selinux static-libs test"
     IUSE_CONTRIB="smbkrb5passwd kerberos kinit pbkdf2 sha2"
     # Subslot added for bug #835654
     SLOT="0/$(ver_cut 1-2)"
     KEYWORDS="~alpha amd64 arm arm64 ~hppa ~loong ~mips ~ppc ppc64 ~riscv ~s390 sparc x86 ~amd64-linux ~x86-linux"
     IUSE_DAEMON="argon2 +cleartext crypt experimental minimal samba tcpd"
     IUSE_OVERLAY="overlays perl autoca"
     IUSE_OPTIONAL="debug gnutls iodbc ipv6 odbc sasl ssl selinux static-libs +syslog test"
     IUSE_CONTRIB="kerberos kinit pbkdf2 sha2 smbkrb5passwd"
     IUSE_CONTRIB="${IUSE_CONTRIB} cxx"
     IUSE="${IUSE_DAEMON} ${IUSE_BACKEND} ${IUSE_OVERLAY} ${IUSE_OPTIONAL} ${IUSE_CONTRIB}"
     IUSE="systemd ${IUSE_DAEMON} ${IUSE_BACKEND} ${IUSE_OVERLAY} ${IUSE_OPTIONAL} ${IUSE_CONTRIB}"
     REQUIRED_USE="cxx? ( sasl )
     	pbkdf2? ( ssl )
     	test? ( berkdb )
     	test? ( cleartext debug sasl )
     	autoca? ( !gnutls )
     	?? ( test minimal )
     	kerberos? ( ?? ( kinit smbkrb5passwd ) )"
     RESTRICT="!test? ( test )"
     # always list newer first
     # Do not add any AGPL-3 BDB here!
     # See bug 525110, comment 15.
     # Advanced usage: OPENLDAP_BDB_SLOTS in the environment can be used to force a slot during build.
     BDB_SLOTS="${OPENLDAP_BDB_SLOTS:=5.3 4.8}"
     BDB_PKGS=''
     for _slot in $BDB_SLOTS; do BDB_PKGS="${BDB_PKGS} sys-libs/db:${_slot}" ; done
     SYSTEM_LMDB_VER=0.9.30
     # openssl is needed to generate lanman-passwords required by samba
     COMMON_DEPEND="
     	kernel_linux? ( sys-apps/util-linux )
     	ssl? (
     		!gnutls? (
     			>=dev-libs/openssl-1.0.1h-r2:0=[${MULTILIB_USEDEP}]
-...
     	!minimal? (
     		dev-libs/libltdl
     		sys-fs/e2fsprogs
     		>=dev-db/lmdb-0.9.18:=
     		>=dev-db/lmdb-${SYSTEM_LMDB_VER}:=
     		argon2? ( app-crypt/argon2:= )
     		crypt? ( virtual/libcrypt:= )
     		tcpd? ( sys-apps/tcp-wrappers )
     		odbc? ( !iodbc? ( dev-db/unixODBC )
-...
     		samba? (
     			dev-libs/openssl:0=
+    		)
     		berkdb? (
     			<sys-libs/db-6.0:=
     			|| ( ${BDB_PKGS} )
+    			)
     		smbkrb5passwd? (
     			dev-libs/openssl:0=
     			kerberos? ( app-crypt/heimdal )
+    			)
+    		)
     		kerberos? (
     			virtual/krb5
     			kinit? ( !app-crypt/heimdal )
+    			)
     		cxx? ( dev-libs/cyrus-sasl:= )
+    		)
+    	)
+    "
     DEPEND="${COMMON_DEPEND}
-...
+    )
     PATCHES=(
     	"${FILESDIR}"/${PN}-2.4.17-gcc44.patch
     	"${FILESDIR}"/${PN}-2.2.14-perlthreadsfix.patch
     	"${FILESDIR}"/${PN}-2.4.15-ppolicy.patch
     	# bug #116045 - still present in 2.4.28
     	"${FILESDIR}"/${PN}-2.4.35-contrib-smbk5pwd.patch
     	# bug #408077 - samba4
     	"${FILESDIR}"/${PN}-2.4.35-contrib-samba4.patch
     	# bug #189817
     	"${FILESDIR}"/${PN}-2.4.11-libldap_r.patch
     	# bug #233633
     	"${FILESDIR}"/${PN}-2.4.45-fix-lmpasswd-gnutls-symbols.patch
     	# bug #281495
     	"${FILESDIR}"/${PN}-2.4.28-gnutls-gcrypt.patch
     	# bug #294350
     	"${FILESDIR}"/${PN}-2.4.6-evolution-ntlm.patch
     	# unbreak /bin/sh -> dash
     	"${FILESDIR}"/${PN}-2.4.28-fix-dash.patch
     	# bug #420959
     	"${FILESDIR}"/${PN}-2.4.31-gcc47.patch
     	# unbundle lmdb
     	"${FILESDIR}"/${PN}-2.4.42-mdb-unbundle.patch
     	# fix some compiler warnings
     	"${FILESDIR}"/${PN}-2.4.47-warnings.patch
     	"${FILESDIR}"/${PN}-2.6.1-system-mdb.patch
     	"${FILESDIR}"/${PN}-2.6.1-cloak.patch
     	"${FILESDIR}"/${PN}-2.6.1-flags.patch
     	"${FILESDIR}"/${PN}-2.6.4-clang16.patch
     	"${FILESDIR}"/${PN}-2.6.4-libressl.patch #903001
+    )
     openldap_filecount() {
-...
     	openldap_found_tag=0
     	have_files=0
     	for each in ${openldap_datadirs[@]} ; do
     		CURRENT_TAGDIR="${ROOT}$(sed "s:\/::" <<< ${each})"
     		CURRENT_TAGDIR="${EROOT}$(sed "s:\/::" <<< ${each})"
     		CURRENT_TAG="${CURRENT_TAGDIR}/${OPENLDAP_VERSIONTAG}"
     		if [[ -d "${CURRENT_TAGDIR}" ]] && [[ "${openldap_found_tag}" == 0 ]] ; then
     			einfo "- Checking ${each}..."
-...
     	[[ "${have_files}" == "1" ]] && einfo "DB files present" || einfo "No DB files present"
     	# Now we must check for the major version of sys-libs/db linked against.
     	# TODO: remove this as we dropped bdb support (gone upstream) in 2.6.1?
     	SLAPD_PATH="${EROOT}/usr/$(get_libdir)/openldap/slapd"
     	if [[ "${have_files}" == "1" ]] && [[ -f "${SLAPD_PATH}" ]]; then
     		OLDVER="$(/usr/bin/ldd ${SLAPD_PATH} \
     			| awk '/libdb-/{gsub("^libdb-","",$1);gsub(".so$","",$1);print $1}')"
     		if use berkdb; then
     			# find which one would be used
     			for bdb_slot in ${BDB_SLOTS} ; do
     				NEWVER="$(db_findver "=sys-libs/db-${bdb_slot}*")"
     				[[ -n "${NEWVER}" ]] && break
     			done
     		fi
     		local fail=0
     		if [[ -z "${OLDVER}" ]] && [[ -z "${NEWVER}" ]]; then
     		# This will not cover detection of cn=Config based configuration, but
     		# it's hopefully good enough.
     		if grep -sq '^backend.*shell' "${EROOT}"/etc/openldap/slapd.conf; then
     			eerror "    OpenLDAP >= 2.6.x has dropped support for Shell backend."
     			eerror "	You will need to migrate per upstream's migration notes"
     			eerror "	at https://www.openldap.org/doc/admin25/appendix-upgrading.html."
     			eerror "	Your existing database will not be accessible until it is"
     			eerror "	converted away from backend shell!"
     			echo
     			fail=1
     		fi
     		if has_version "${CATEGORY}/${PN}[berkdb]" || grep -sq '^backend.*(bdb|hdb)' /etc/openldap/slapd.conf; then
     			eerror "	OpenLDAP >= 2.5.x has dropped support for Berkeley DB."
     			eerror "	You will need to migrate per upstream's migration notes"
     			eerror "	at https://www.openldap.org/doc/admin25/appendix-upgrading.html."
     			eerror "	Your existing database will not be accessible until it is"
     			eerror "	converted to mdb!"
     			echo
     			fail=1
     		elif [[ -z "${OLDVER}" ]] && [[ -z "${NEWVER}" ]]; then
+    			:
     			# Nothing wrong here.
     		elif [[ -z "${OLDVER}" ]] && [[ -n "${NEWVER}" ]]; then
-...
     	eerror " 7. slapadd -l ${l}"
     	eerror " 8. chown ldap:ldap /var/lib/openldap-data/*"
     	eerror " 9. /etc/init.d/slapd start"
     	eerror "10. check that your data is intact."
     	eerror "11. set up the new replication system."
     	eerror "10. Check that your data is intact."
     	eerror "11. Set up the new replication system."
     	eerror
     	if [[ "${FORCE_UPGRADE}" != "1" ]]; then
     		die "You need to upgrade your database first"
-...
+    }
     src_prepare() {
     	# ensure correct SLAPI path by default
     	sed -e 's,\(#define LDAPI_SOCK\).*,\1 "'"${EPREFIX}"'/var/run/openldap/slapd.sock",' \
     		-i include/ldap_defaults.h || die
     	# The system copy of dev-db/lmdb must match the version that this copy
     	# of OpenLDAP shipped with! See bug #588792.
+    	#
     	# Fish out MDB_VERSION_MAJOR/MDB_VERSION_MINOR/MDB_VERSION_PATCH from
     	# the bundled lmdb's header to find out the version.
     	local bundled_lmdb_version=$(
     		sed -En '/^#define MDB_VERSION_(MAJOR|MINOR|PATCH)(\s+)?/{s/[^0-9.]//gp}' \
     			libraries/liblmdb/lmdb.h || die
+    		)
     	printf -v bundled_lmdb_version "%s." ${bundled_lmdb_version}
     	if [[ ${SYSTEM_LMDB_VER}. != ${bundled_lmdb_version} ]] ; then
     		eerror "Source lmdb version: ${bundled_lmdb_version}"
     		eerror "Ebuild lmdb version: ${SYSTEM_LMDB_VER}"
     		die "Ebuild needs to update SYSTEM_LMDB_VER!"
     	fi
     	rm -r libraries/liblmdb || die 'could not removed bundled lmdb directory'
     	local filename
     	for filename in doc/drafts/draft-ietf-ldapext-acl-model-xx.txt; do
     		iconv -f iso-8859-1 -t utf-8 "${filename}" > "${filename}.utf8"
     		mv "${filename}.utf8" "${filename}"
     	done
     	default
     	rm -r libraries/liblmdb || die
     	sed -i \
     		-e "s:\$(localstatedir)/run:${EPREFIX}/run:" \
     		-e '/MKDIR.*.(DESTDIR)\/run/d' \
     		-e '/MKDIR.*.(DESTDIR).*.(runstatedir)/d' \
     		servers/slapd/Makefile.in || die 'adjusting slapd Makefile.in failed'
     	pushd build &>/dev/null || die "pushd build"
     	einfo "Making sure upstream build strip does not do stripping too early"
     	sed -i.orig \
     		-e '/^STRIP/s,-s,,g' \
     		top.mk || die "Failed to block stripping"
     		top.mk || die "Failed to remove too early stripping"
     	popd &>/dev/null || die
     	# wrong assumption that /bin/sh is /bin/bash
     	sed \
     		-e 's|/bin/sh|/bin/bash|g' \
     		-i tests/scripts/* || die "sed failed"
     	# Required for autoconf-2.70 #765043
     	sed 's@^AM_INIT_AUTOMAKE.*@AC_PROG_MAKE_SET@' -i configure.in || die
     	AT_NOEAUTOMAKE=yes eautoreconf
     	# Fails with OpenSSL 3, bug #848894
     	# https://bugs.openldap.org/show_bug.cgi?id=10009
     	rm tests/scripts/test076-authid-rewrite || die
     	eautoreconf
     	multilib_copy_sources
+    }
     build_contrib_module() {
     	# <dir> <sources> <outputname>
     	# <dir> [<target>]
     	pushd "${S}/contrib/slapd-modules/$1" &>/dev/null || die "pushd contrib/slapd-modules/$1"
     	einfo "Compiling contrib-module: $3"
     	# Make sure it's uppercase
     	local define_name="$(LC_ALL=C tr '[:lower:]' '[:upper:]' <<< "SLAPD_OVER_${1}")"
     	"${lt}" --mode=compile --tag=CC \
     		"${CC}" \
     		-D${define_name}=SLAPD_MOD_DYNAMIC \
     		-I"${BUILD_DIR}"/include \
     		-I../../../include -I../../../servers/slapd ${CFLAGS} \
     		-o ${2%.c}.lo -c $2 || die "compiling $3 failed"
     	einfo "Linking contrib-module: $3"
     	"${lt}" --mode=link --tag=CC \
     		"${CC}" -module \
     		${CFLAGS} \
     		${LDFLAGS} \
     		-rpath "${EPREFIX}"/usr/$(get_libdir)/openldap/openldap \
     		-o $3.la ${2%.c}.lo || die "linking $3 failed"
     	einfo "Compiling contrib-module: $1"
     	local target="${2:-all}"
     	emake \
     		LDAP_BUILD="${BUILD_DIR}" prefix="${EPREFIX}/usr" \
     		CC="${CC}" libexecdir="${EPREFIX}/usr/$(get_libdir)/openldap" \
     		"${target}"
     	popd &>/dev/null || die
+    }
     src_configure() {
     	# connectionless ldap per bug #342439
     	append-cppflags -DLDAP_CONNECTIONLESS
     	multilib-minimal_src_configure
+    }
     multilib_src_configure() {
     	local myconf=()
     	# Optional Features
     	myconf+=(
     		--enable-option-checking
     		$(use_enable debug)
     		--enable-dynamic
     		$(use_enable syslog)
     		$(use_enable ipv6)
     		--enable-local
+    	)
     	use debug && myconf+=( $(use_enable debug) )
     	# Optional Packages
     	myconf+=(
     		--without-fetch
+    	)
     	# ICU exists only in the configure, nowhere in the codebase, bug #510858
     	export ac_cv_header_unicode_utypes_h=no ol_cv_lib_icu=no
     	if use experimental ; then
     		# connectionless ldap per bug #342439
     		# connectionless is a unsupported feature according to Howard Chu
     		# see https://bugs.openldap.org/show_bug.cgi?id=9739
     		# (see also bug #892009)
     		append-flags -DLDAP_CONNECTIONLESS
     	fi
     	if ! use minimal && multilib_is_native_abi; then
     		local CPPFLAGS=${CPPFLAGS}
     		# re-enable serverside overlay chains per bug #296567
     		# see ldap docs chaper 12.3.1 for details
     		myconf+=( --enable-ldap )
     		# backends
     		myconf+=( --enable-slapd )
     		if use berkdb ; then
     			einfo "Using Berkeley DB for local backend"
     			myconf+=( --enable-bdb --enable-hdb )
     			DBINCLUDE=$(db_includedir ${BDB_SLOTS})
     			einfo "Using ${DBINCLUDE} for sys-libs/db version"
     			# We need to include the slotted db.h dir for FreeBSD
     			append-cppflags -I${DBINCLUDE}
     		else
     			myconf+=( --disable-bdb --disable-hdb )
     		fi
     		for backend in dnssrv ldap mdb meta monitor null passwd relay shell sock; do
     			myconf+=( --enable-${backend}=mod )
     		done
     		myconf+=( $(use_enable perl perl mod) )
     		myconf+=( $(use_enable odbc sql mod) )
     		if use odbc ; then
     			local odbc_lib="unixodbc"
     			if use iodbc ; then
     				odbc_lib="iodbc"
     				append-cppflags -I"${EPREFIX}"/usr/include/iodbc
     			fi
     			myconf+=( --with-odbc=${odbc_lib} )
     		fi
     		# slapd options
     		# SLAPD (Standalone LDAP Daemon) Options
     		# overlay chaining requires '--enable-ldap' #296567
     		# see https://www.openldap.org/doc/admin26/overlays.html#Chaining
     		myconf+=(
     			--enable-ldap=yes
     			--enable-slapd
     			$(use_enable cleartext)
     			$(use_enable crypt)
     			$(multilib_native_use_enable sasl spasswd)
     			--disable-slp
     			$(use_enable samba lmpasswd)
     			$(use_enable syslog)
     			$(use_enable tcpd wrappers)
+    		)
     		if use experimental ; then
     			myconf+=(
     				--enable-dynacl
     				--enable-aci=mod
     				# ACI build as dynamic module not supported (yet)
     				--enable-aci=yes
+    			)
     		fi
     		for option in aci cleartext modules rewrite rlookups slapi; do
     		for option in modules rlookups slapi; do
     			myconf+=( --enable-${option} )
     		done
     		# slapd overlay options
     		# Compile-in the syncprov, the others as module
     		myconf+=( --enable-syncprov=yes )
     		# static SLAPD backends
     		for backend in mdb; do
     			myconf+=( --enable-${backend}=yes )
     		done
     		# module SLAPD backends
     		for backend in asyncmeta dnssrv meta null passwd relay sock; do
     			# missing modules: wiredtiger (not available in portage)
     			myconf+=( --enable-${backend}=mod )
     		done
     		use perl && myconf+=( --enable-perl=mod )
     		if use odbc ; then
     			myconf+=( --enable-sql=mod )
     			if use iodbc ; then
     				myconf+=( --with-odbc="iodbc" )
     				append-cflags -I"${EPREFIX}"/usr/include/iodbc
     			else
     				myconf+=( --with-odbc="unixodbc" )
     			fi
     		fi
     		use overlays && myconf+=( --enable-overlays=mod )
     		use autoca && myconf+=( --enable-autoca=mod ) || myconf+=( --enable-autoca=no )
     		# compile-in the syncprov
     		myconf+=( --enable-syncprov=yes )
     		# SLAPD Password Module Options
     		myconf+=(
     			$(use_enable argon2)
+    		)
     		# Optional Packages
     		myconf+=(
     			$(use_with systemd)
     			$(multilib_native_use_with sasl cyrus-sasl)
+    		)
     	else
     		myconf+=(
     			--disable-backends
     			--disable-slapd
     			--disable-bdb
     			--disable-hdb
     			--disable-mdb
     			--disable-overlays
     			--disable-autoca
     			--disable-syslog
     			--without-systemd
+    		)
     	fi
     	# basic functionality stuff
     	# Library Generation & Linking Options
     	myconf+=(
     		$(use_enable ipv6)
     		$(multilib_native_use_with sasl cyrus-sasl)
     		$(multilib_native_use_enable sasl spasswd)
     		$(use_enable tcpd wrappers)
     		$(use_enable static-libs static)
     		--enable-shared
     		--enable-versioning
     		--with-pic
+    	)
     	# Some cross-compiling tests don't pan out well.
     	# some cross-compiling tests don't pan out well.
     	tc-is-cross-compiler && myconf+=(
     		--with-yielding-select=yes
+    	)
     	local ssl_lib="no"
     	if use ssl || ( ! use minimal && use samba ) ; then
     		ssl_lib="openssl"
     		use gnutls && ssl_lib="gnutls"
     		if use gnutls ; then
     			myconf+=( --with-tls="gnutls" )
     		else
     			# disable MD2 hash function
     			append-cflags -DOPENSSL_NO_MD2
     			myconf+=( --with-tls="openssl" )
     		fi
     	else
     		myconf+=( --with-tls="no" )
     	fi
     	myconf+=( --with-tls=${ssl_lib} )
     	for basicflag in dynamic local proctitle shared; do
     		myconf+=( --enable-${basicflag} )
     	done
     	tc-export AR CC CXX
     	CONFIG_SHELL="/bin/sh" \
     	ECONF_SOURCE="${S}" \
     	STRIP=/bin/true \
     	econf \
     	ECONF_SOURCE="${S}" econf \
     		--libexecdir="${EPREFIX}"/usr/$(get_libdir)/openldap \
     		$(use_enable static-libs static) \
     		--localstatedir="${EPREFIX}"/var \
     		--runstatedir="${EPREFIX}"/run \
     		--sharedstatedir="${EPREFIX}"/var/lib \
     		"${myconf[@]}"
     	# argument '--runstatedir' seems to have no effect therefore this workaround
     	sed -i \
     		-e 's:^runstatedir=.*:runstatedir=${EPREFIX}/run:' \
     		configure contrib/ldapc++/configure contrib/ldaptcl/configure || die 'could not set runstatedir'
     	sed -i \
     		-e "s:/var/run/sasl2/mux:${EPREFIX}/run/sasl2/mux:" \
     		doc/guide/admin/security.sdf || die 'could not fix run path in doc'
     	emake depend
+    }
     src_configure_cxx() {
     	# This needs the libraries built by the first build run.
     	# So we have to run it AFTER the main build, not just after the main
     	# configure.
     	# we have to run it AFTER the main build, not just after the main configure
     	local myconf_ldapcpp=(
     		--with-ldap-includes="${S}"/include
     		--with-libldap="${E}/lib"
     		--with-ldap-includes="${S}/include"
+    	)
     	mkdir -p "${BUILD_DIR}"/contrib/ldapc++ || die
     	mkdir -p "${BUILD_DIR}"/contrib/ldapc++ || die "could not create ${BUILD_DIR}/contrib/ldapc++ directory"
     	pushd "${BUILD_DIR}/contrib/ldapc++" &>/dev/null || die "pushd contrib/ldapc++"
     	local LDFLAGS=${LDFLAGS} CPPFLAGS=${CPPFLAGS}
     	append-ldflags -L"${BUILD_DIR}"/libraries/liblber/.libs \
     		-L"${BUILD_DIR}"/libraries/libldap/.libs
     	local LDFLAGS="${LDFLAGS}"
     	local CPPFLAGS="${CPPFLAGS}"
     	append-ldflags -L"${BUILD_DIR}"/libraries/liblber/.libs -L"${BUILD_DIR}"/libraries/libldap/.libs
     	append-cppflags -I"${BUILD_DIR}"/include
     	ECONF_SOURCE=${S}/contrib/ldapc++ \
     	econf "${myconf_ldapcpp[@]}" \
     		CC="${CC}" \
     		CXX="${CXX}"
     	popd &>/dev/null || die
     	ECONF_SOURCE="${S}"/contrib/ldapc++ econf "${myconf_ldapcpp[@]}"
     	popd &>/dev/null || die "popd contrib/ldapc++"
+    }
     multilib_src_compile() {
     	tc-export AR CC CXX
     	emake CC="${CC}" AR="${AR}" SHELL="${EPREFIX}"/bin/sh
     	local lt="${BUILD_DIR}/libtool"
     	export echo="echo"
     	emake CC="$(tc-getCC)" SHELL="${EPREFIX}"/bin/sh
     	if ! use minimal && multilib_is_native_abi ; then
     		if use cxx ; then
     			einfo "Building contrib library: ldapc++"
     			src_configure_cxx
     			pushd "${BUILD_DIR}/contrib/ldapc++" &>/dev/null || die "pushd contrib/ldapc++"
     			emake CC="${CC}" CXX="${CXX}"
     			emake
     			popd &>/dev/null || die
     		fi
-...
     				DEFS="${MY_DEFS}" \
     				KRB5_INC="${MY_KRB5_INC}" \
     				LDAP_BUILD="${BUILD_DIR}" \
     				CC="${CC}" libexecdir="${EPREFIX}/usr/$(get_libdir)/openldap"
     				libexecdir="${EPREFIX}/usr/$(get_libdir)/openldap"
     			popd &>/dev/null || die
     		fi
-...
     			emake \
     				LDAP_BUILD="${BUILD_DIR}" \
     				CC="${CC}" libexecdir="/usr/$(get_libdir)/openldap"
     				CC="$(tc-getCC)" libexecdir="${EPREFIX}/usr/$(get_libdir)/openldap"
     			popd &>/dev/null || die
     		fi
-...
     			if use kinit ; then
     				build_contrib_module "kinit" "kinit.c" "kinit"
     			fi
     			pushd "${S}/contrib/slapd-modules/passwd" &>/dev/null || die "pushd contrib/slapd-modules/passwd"
     			einfo "Compiling contrib-module: pw-kerberos"
     			"${lt}" --mode=compile --tag=CC \
     				"${CC}" \
     				-I"${BUILD_DIR}"/include \
     				-I../../../include \
     				${CFLAGS} \
     				$(krb5-config --cflags) \
     				-DHAVE_KRB5 \
     				-o kerberos.lo \
     				-c kerberos.c || die "compiling pw-kerberos failed"
     			einfo "Linking contrib-module: pw-kerberos"
     			"${lt}" --mode=link --tag=CC \
     				"${CC}" -module \
     				${CFLAGS} \
     				${LDFLAGS} \
     				-rpath "${EPREFIX}"/usr/$(get_libdir)/openldap/openldap \
     				-o pw-kerberos.la \
     				kerberos.lo || die "linking pw-kerberos failed"
     			popd &>/dev/null || die
     			build_contrib_module "passwd" "pw-kerberos.la"
     		fi
     		if use pbkdf2; then
     			pushd "${S}/contrib/slapd-modules/passwd/pbkdf2" &>/dev/null || die "pushd contrib/slapd-modules/passwd/pbkdf2"
     			einfo "Compiling contrib-module: pw-pbkdf2"
     			"${lt}" --mode=compile --tag=CC \
     				"${CC}" \
     				-I"${BUILD_DIR}"/include \
     				-I../../../../include \
     				${CFLAGS} \
     				-o pbkdf2.lo \
     				-c pw-pbkdf2.c || die "compiling pw-pbkdf2 failed"
     			einfo "Linking contrib-module: pw-pbkdf2"
     			"${lt}" --mode=link --tag=CC \
     				"${CC}" -module \
     				${CFLAGS} \
     				${LDFLAGS} \
     				-rpath "${EPREFIX}"/usr/$(get_libdir)/openldap/openldap \
     				-o pw-pbkdf2.la \
     				pbkdf2.lo || die "linking pw-pbkdf2 failed"
     			popd &>/dev/null || die
     			build_contrib_module "passwd/pbkdf2"
     		fi
     		if use sha2 ; then
     			pushd "${S}/contrib/slapd-modules/passwd/sha2" &>/dev/null || die "pushd contrib/slapd-modules/passwd/sha2"
     			einfo "Compiling contrib-module: pw-sha2"
     			"${lt}" --mode=compile --tag=CC \
     				"${CC}" \
     				-I"${BUILD_DIR}"/include \
     				-I../../../../include \
     				${CFLAGS} \
     				-o sha2.lo \
     				-c sha2.c || die "compiling pw-sha2 failed"
     			"${lt}" --mode=compile --tag=CC \
     				"${CC}" \
     				-I"${BUILD_DIR}"/include \
     				-I../../../../include \
     				${CFLAGS} \
     				-o slapd-sha2.lo \
     				-c slapd-sha2.c || die "compiling pw-sha2 failed"
     			einfo "Linking contrib-module: pw-sha2"
     			"${lt}" --mode=link --tag=CC \
     				"${CC}" -module \
     				${CFLAGS} \
     				${LDFLAGS} \
     				-rpath "${EPREFIX}"/usr/$(get_libdir)/openldap/openldap \
     				-o pw-sha2.la \
     				sha2.lo slapd-sha2.lo || die "linking pw-sha2 failed"
     			popd &>/dev/null || die
     			build_contrib_module "passwd/sha2"
     		fi
     		# We could build pw-radius if GNURadius would install radlib.h
     		pushd "${S}/contrib/slapd-modules/passwd" &>/dev/null || die "pushd contrib/slapd-modules/passwd"
     		einfo "Compiling contrib-module: pw-netscape"
     		"${lt}" --mode=compile --tag=CC \
     			"${CC}" \
     			-I"${BUILD_DIR}"/include \
     			-I../../../include \
     			${CFLAGS} \
     			-o netscape.lo \
     			-c netscape.c || die "compiling pw-netscape failed"
     		einfo "Linking contrib-module: pw-netscape"
     		"${lt}" --mode=link --tag=CC \
     			"${CC}" -module \
     			${CFLAGS} \
     			${LDFLAGS} \
     			-rpath "${EPREFIX}"/usr/$(get_libdir)/openldap/openldap \
     			-o pw-netscape.la \
     			netscape.lo || die "linking pw-netscape failed"
     		#build_contrib_module "acl" "posixgroup.c" "posixGroup" # example code only
     		#build_contrib_module "acl" "gssacl.c" "gss" # example code only, also needs kerberos
     		build_contrib_module "addpartial" "addpartial-overlay.c" "addpartial-overlay"
     		build_contrib_module "allop" "allop.c" "overlay-allop"
     		build_contrib_module "allowed" "allowed.c" "allowed"
     		build_contrib_module "autogroup" "autogroup.c" "autogroup"
     		build_contrib_module "cloak" "cloak.c" "cloak"
     		# build_contrib_module "comp_match" "comp_match.c" "comp_match"
     		# comp_match: really complex, adds new external deps, questionable demand
     		build_contrib_module "denyop" "denyop.c" "denyop-overlay"
     		build_contrib_module "dsaschema" "dsaschema.c" "dsaschema-plugin"
     		build_contrib_module "dupent" "dupent.c" "dupent"
     		build_contrib_module "lastbind" "lastbind.c" "lastbind"
     		build_contrib_module "passwd" "pw-netscape.la"
     		#build_contrib_module "acl" "posixgroup.la" # example code only
     		#build_contrib_module "acl" "gssacl.la" # example code only, also needs kerberos
     		build_contrib_module "addpartial"
     		build_contrib_module "allop"
     		build_contrib_module "allowed"
     		build_contrib_module "autogroup"
     		build_contrib_module "cloak"
     		# build_contrib_module "comp_match" # really complex, adds new external deps, questionable demand
     		build_contrib_module "denyop"
     		build_contrib_module "dsaschema"
     		build_contrib_module "dupent"
     		build_contrib_module "lastbind"
     		# lastmod may not play well with other overlays
     		build_contrib_module "lastmod" "lastmod.c" "lastmod"
     		build_contrib_module "noopsrch" "noopsrch.c" "noopsrch"
     		#build_contrib_module "nops" "nops.c" "nops-overlay" https://bugs.gentoo.org/641576
     		#build_contrib_module "nssov" "nssov.c" "nssov-overlay" RESO:LATER
     		build_contrib_module "trace" "trace.c" "trace"
     		popd &>/dev/null || die
     		build_contrib_module "lastmod"
     		build_contrib_module "noopsrch"
     		#build_contrib_module "nops" https://bugs.gentoo.org/641576
     		#build_contrib_module "nssov" RESO:LATER
     		build_contrib_module "trace"
     		# build slapi-plugins
     		pushd "${S}/contrib/slapi-plugins/addrdnvalues" &>/dev/null || die "pushd contrib/slapi-plugins/addrdnvalues"
     		einfo "Building contrib-module: addrdnvalues plugin"
     		"${CC}" -shared \
     		$(tc-getCC) -shared \
     			-I"${BUILD_DIR}"/include \
     			-I../../../include \
     			${CPPFLAGS} \
     			${CFLAGS} \
     			-fPIC \
     			${LDFLAGS} \
-...
     multilib_src_test() {
     	if multilib_is_native_abi; then
     		cd tests || die
     		emake tests
     		pwd
     		# Increase various test timeouts/delays, bug #894012
     		# We can't just double everything as there's a cumulative effect.
     		export SLEEP0=2 # originally 1
     		export SLEEP1=10 # originally 7
     		export SLEEP2=20 # originally 15
     		export TIMEOUT=16 # originally 8
     		# emake test => runs only lloadd & mdb, in serial; skips ldif,sql,wt,regression
     		# emake partests => runs ALL of the tests in parallel
     		# wt/WiredTiger is not supported in Gentoo
     		TESTS=( lloadd mdb )
     		#TESTS+=( pldif ) # not done by default, so also exclude here
     		#use odbc && TESTS+=( psql ) # not done by default, so also exclude here
     		emake "${TESTS[@]}"
     	fi
+    }
     multilib_src_install() {
     	local lt="${BUILD_DIR}/libtool"
     	emake DESTDIR="${D}" SHELL="${EPREFIX}"/bin/sh install
     	emake CC="$(tc-getCC)" \
     		DESTDIR="${D}" SHELL="${EPREFIX}"/bin/sh install
     	if ! use minimal && multilib_is_native_abi; then
     		# openldap modules go here
-...
     		# use our config
     		rm "${ED}"/etc/openldap/slapd.conf
     		insinto /etc/openldap
     		newins "${FILESDIR}"/${PN}-2.4.40-slapd-conf slapd.conf
     		newins "${FILESDIR}"/${PN}-2.6.3-slapd-conf slapd.conf
     		configfile="${ED}"/etc/openldap/slapd.conf
     		# populate with built backends
-...
     		einfo "Install init scripts"
     		sed -e "s,/usr/lib/,/usr/$(get_libdir)/," "${FILESDIR}"/slapd-initd-2.4.40-r2 > "${T}"/slapd || die
     		doinitd "${T}"/slapd
     		newconfd "${FILESDIR}"/slapd-confd-2.4.28-r1 slapd
     		newconfd "${FILESDIR}"/slapd-confd-2.6.1 slapd
     		einfo "Install systemd service"
     		sed -e "s,/usr/lib/,/usr/$(get_libdir)/," "${FILESDIR}"/slapd.service > "${T}"/slapd.service || die
     		systemd_dounit "${T}"/slapd.service
     		systemd_install_serviced "${FILESDIR}"/slapd.service.conf
     		newtmpfiles "${FILESDIR}"/slapd.tmpfilesd slapd.conf
     		if use systemd; then
     			# The systemd unit uses Type=notify, so it is useless without USE=systemd
     			einfo "Install systemd service"
     			rm -rf "${ED}"/{,usr/}lib/systemd
     			sed -e "s,/usr/lib/,/usr/$(get_libdir)/," "${FILESDIR}"/slapd-2.6.1.service > "${T}"/slapd.service || die
     			systemd_dounit "${T}"/slapd.service
     			systemd_install_serviced "${FILESDIR}"/slapd.service.conf
     			newtmpfiles "${FILESDIR}"/slapd.tmpfilesd slapd.conf
     		fi
     		# If built without SLP, we don't need to be before avahi
     		# if built without SLP, we don't need to be before avahi
     			sed -i \
     				-e '/before/{s/avahi-daemon//g}' \
     				"${ED}"/etc/init.d/slapd \
-...
     			cd "${S}/contrib/slapd-modules/samba4" || die
     			emake DESTDIR="${D}" \
     				LDAP_BUILD="${BUILD_DIR}" \
     				libexecdir="/usr/$(get_libdir)/openldap" install
     				libexecdir="${EPREFIX}/usr/$(get_libdir)/openldap" install
     			newdoc README samba4-README
     		fi
-...
     		cd "${S}/contrib/slapd-modules" || die
     		for l in */*.la */*/*.la; do
     			[[ -e ${l} ]] || continue
     			"${lt}" --mode=install cp ${l} \
     			libtool --mode=install cp ${l} \
     				"${ED}"/usr/$(get_libdir)/openldap/openldap || \
     				die "installing ${l} failed"
     		done
-...
     		newins "${DISTDIR}"/${BIS_P} ${BIS_PN}
     		docinto back-sock ; dodoc "${S}"/servers/slapd/back-sock/searchexample*
     		docinto back-shell ; dodoc "${S}"/servers/slapd/back-shell/searchexample*
     		docinto back-perl ; dodoc "${S}"/servers/slapd/back-perl/SampleLDAP.pm
     		dosbin "${S}"/contrib/slapd-tools/statslog
-...
     pkg_preinst() {
     	# keep old libs if any
     	preserve_old_lib /usr/$(get_libdir)/{liblber,libldap_r,liblber}-2.3$(get_libname 0)
     	preserve_old_lib /usr/$(get_libdir)/{liblber,libldap,libldap_r}-2.4$(get_libname 0)
     	# bug 440470, only display the getting started help there was no openldap before,
     	# or we are going to a non-minimal build
     	! has_version net-nds/openldap || has_version 'net-nds/openldap[minimal]'
-...
     pkg_postinst() {
     	if ! use minimal ; then
     		tmpfiles_process slapd.conf
     		if use systemd; then
     			tmpfiles_process slapd.conf
     		fi
     		# You cannot build SSL certificates during src_install that will make
     		# binary packages containing your SSL key, which is both a security risk
-...
     		elog "Getting started using OpenLDAP? There is some documentation available:"
     		elog "Gentoo Guide to OpenLDAP Authentication"
     		elog "(https://wiki.gentoo.org/wiki/Centralized_authentication_using_OpenLDAP)"
     		elog "---"
     		elog "An example file for tuning BDB backends with openldap is"
     		elog "DB_CONFIG.fast.example in /usr/share/doc/${PF}/"
     	fi
     	preserve_old_lib_notify /usr/$(get_libdir)/{liblber,libldap,libldap_r}-2.3$(get_libname 0)
     	preserve_old_lib_notify /usr/$(get_libdir)/{liblber,libldap,libldap_r}-2.4$(get_libname 0)
+    }