From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id D8369138200 for ; Sun, 14 Jul 2013 08:40:30 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 438C5E09EA; Sun, 14 Jul 2013 08:40:30 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 98574E09EA for ; Sun, 14 Jul 2013 08:40:29 +0000 (UTC) Received: from flycatcher.gentoo.org (flycatcher.gentoo.org [81.93.255.6]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 87A8833E89E for ; Sun, 14 Jul 2013 08:40:28 +0000 (UTC) Received: by flycatcher.gentoo.org (Postfix, from userid 2282) id 492292171D; Sun, 14 Jul 2013 08:40:27 +0000 (UTC) From: "Eray Aslan (eras)" To: gentoo-commits@lists.gentoo.org Reply-To: gentoo-dev@lists.gentoo.org, eras@gentoo.org Subject: [gentoo-commits] gentoo-x86 commit in dev-libs/cyrus-sasl: cyrus-sasl-2.1.26-r3.ebuild ChangeLog X-VCS-Repository: gentoo-x86 X-VCS-Files: cyrus-sasl-2.1.26-r3.ebuild ChangeLog X-VCS-Directories: dev-libs/cyrus-sasl X-VCS-Committer: eras X-VCS-Committer-Name: Eray Aslan Content-Type: text/plain; charset=utf8 Content-Transfer-Encoding: 8bit Message-Id: <20130714084027.492292171D@flycatcher.gentoo.org> Date: Sun, 14 Jul 2013 08:40:27 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: ce12a1d6-1a4c-456a-927d-207e60c0356e X-Archives-Hash: e06b0ae97db8c88279a6c2a4acc218fd eras 13/07/14 08:40:27 Modified: ChangeLog Added: cyrus-sasl-2.1.26-r3.ebuild Log: Security bump - bug #476764. Import send-imap-logout and ldapdb-buffer patches from debian. (Portage version: 2.2.0_alpha188/cvs/Linux x86_64, signed Manifest commit with key 0x77F1F175586A3B1F) Revision Changes Path 1.282 dev-libs/cyrus-sasl/ChangeLog file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/dev-libs/cyrus-sasl/ChangeLog?rev=1.282&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/dev-libs/cyrus-sasl/ChangeLog?rev=1.282&content-type=text/plain diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/dev-libs/cyrus-sasl/ChangeLog?r1=1.281&r2=1.282 Index: ChangeLog =================================================================== RCS file: /var/cvsroot/gentoo-x86/dev-libs/cyrus-sasl/ChangeLog,v retrieving revision 1.281 retrieving revision 1.282 diff -u -r1.281 -r1.282 --- ChangeLog 14 Jul 2013 08:20:50 -0000 1.281 +++ ChangeLog 14 Jul 2013 08:40:27 -0000 1.282 @@ -1,6 +1,15 @@ # ChangeLog for dev-libs/cyrus-sasl # Copyright 1999-2013 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/dev-libs/cyrus-sasl/ChangeLog,v 1.281 2013/07/14 08:20:50 eras Exp $ +# $Header: /var/cvsroot/gentoo-x86/dev-libs/cyrus-sasl/ChangeLog,v 1.282 2013/07/14 08:40:27 eras Exp $ + +*cyrus-sasl-2.1.26-r3 (14 Jul 2013) + + 14 Jul 2013; Eray Aslan +cyrus-sasl-2.1.26-r3.ebuild, + +files/cyrus-sasl-2.1.26-CVE-2013-4122.patch, + +files/cyrus-sasl-2.1.26-canonuser-ldapdb-garbage-in-out-buffer.patch, + +files/cyrus-sasl-2.1.26-send-imap-logout.patch: + Security bump - bug #476764. Import send-imap-logout and ldapdb-buffer patches + from debian. *cyrus-sasl-2.1.23-r7 (14 Jul 2013) 1.1 dev-libs/cyrus-sasl/cyrus-sasl-2.1.26-r3.ebuild file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/dev-libs/cyrus-sasl/cyrus-sasl-2.1.26-r3.ebuild?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/dev-libs/cyrus-sasl/cyrus-sasl-2.1.26-r3.ebuild?rev=1.1&content-type=text/plain Index: cyrus-sasl-2.1.26-r3.ebuild =================================================================== # Copyright 1999-2013 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 # $Header: /var/cvsroot/gentoo-x86/dev-libs/cyrus-sasl/cyrus-sasl-2.1.26-r3.ebuild,v 1.1 2013/07/14 08:40:27 eras Exp $ EAPI=5 # should be fixed in automake-1.13.2(?). Please test when released. # See automake bug #13514 WANT_AUTOMAKE="1.12" inherit eutils flag-o-matic multilib autotools pam java-pkg-opt-2 db-use systemd SASLAUTHD_CONF_VER="2.1.26" DESCRIPTION="The Cyrus SASL (Simple Authentication and Security Layer)." HOMEPAGE="http://cyrusimap.web.cmu.edu/" SRC_URI="ftp://ftp.cyrusimap.org/cyrus-sasl/${P}.tar.gz" LICENSE="BSD-with-attribution" SLOT="2" KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-fbsd ~sparc-fbsd ~x86-fbsd" IUSE="authdaemond berkdb gdbm kerberos ldapdb openldap mysql pam postgres sample sqlite srp ssl static-libs urandom" DEPEND="net-mail/mailbase authdaemond? ( || ( net-mail/courier-imap mail-mta/courier ) ) berkdb? ( >=sys-libs/db-3.2 ) gdbm? ( >=sys-libs/gdbm-1.8.0 ) kerberos? ( virtual/krb5 ) openldap? ( net-nds/openldap ) mysql? ( virtual/mysql ) pam? ( virtual/pam ) postgres? ( dev-db/postgresql-base ) sqlite? ( dev-db/sqlite:3 ) ssl? ( dev-libs/openssl ) java? ( >=virtual/jdk-1.4 )" RDEPEND="${DEPEND}" pkg_setup() { java-pkg-opt-2_pkg_setup } src_prepare() { epatch "${FILESDIR}"/${PN}-2.1.25-sasldb_al.patch epatch "${FILESDIR}"/${PN}-2.1.25-saslauthd_libtool.patch epatch "${FILESDIR}"/${PN}-2.1.25-avoid_pic_overwrite.patch epatch "${FILESDIR}"/${PN}-2.1.25-autotools_fixes.patch epatch "${FILESDIR}"/${PN}-2.1.25-as_needed.patch epatch "${FILESDIR}"/${PN}-2.1.25-missing_header.patch epatch "${FILESDIR}"/${PN}-2.1.25-fix_heimdal.patch epatch "${FILESDIR}"/${PN}-2.1.25-auxprop.patch epatch "${FILESDIR}"/${PN}-2.1.23-gss_c_nt_hostbased_service.patch epatch "${FILESDIR}"/${PN}-2.1.25-service_keytabs.patch epatch "${FILESDIR}"/${PN}-2.1.26-missing-size_t.patch epatch "${FILESDIR}"/${PN}-2.1.26-CVE-2013-4122.patch epatch "${FILESDIR}"/${PN}-2.1.26-send-imap-logout.patch epatch "${FILESDIR}"/${PN}-2.1.26-canonuser-ldapdb-garbage-in-out-buffer.patch # Get rid of the -R switch (runpath_switch for Sun) # >=gcc-4.6 errors out with unknown option sed -i -e '/LIB_SQLITE.*-R/s/ -R[^"]*//' \ configure.in || die # Use plugindir for sasldir sed -i '/^sasldir =/s:=.*:= $(plugindir):' \ "${S}"/plugins/Makefile.{am,in} || die "sed failed" sed -i -e 's:AM_CONFIG_HEADER:AC_CONFIG_HEADERS:g' \ configure.in || die eautoreconf } src_configure() { append-flags -fno-strict-aliasing append-cppflags -D_XOPEN_SOURCE -D_XOPEN_SOURCE_EXTENDED -D_BSD_SOURCE -DLDAP_DEPRECATED # Java support. use java && export JAVAC="${JAVAC} ${JAVACFLAGS}" local myconf # Add authdaemond support (bug #56523). if use authdaemond ; then myconf="${myconf} --with-authdaemond=/var/lib/courier/authdaemon/socket" fi # Fix for bug #59634. if ! use ssl ; then myconf="${myconf} --without-des" fi if use mysql || use postgres || use sqlite ; then myconf="${myconf} --enable-sql" else myconf="${myconf} --disable-sql" fi # Default to GDBM if both 'gdbm' and 'berkdb' are present. if use gdbm ; then einfo "Building with GNU DB as database backend for your SASLdb" myconf="${myconf} --with-dblib=gdbm" elif use berkdb ; then einfo "Building with BerkeleyDB as database backend for your SASLdb" myconf="${myconf} --with-dblib=berkeley --with-bdb-incdir=$(db_includedir)" else einfo "Building without SASLdb support" myconf="${myconf} --with-dblib=none" fi # Use /dev/urandom instead of /dev/random (bug #46038). if use urandom ; then myconf="${myconf} --with-devrandom=/dev/urandom" fi econf \ --enable-login \ --enable-ntlm \ --enable-auth-sasldb \ --disable-cmulocal \ --disable-krb4 \ --enable-otp \ --without-sqlite \ --with-saslauthd=/run/saslauthd \ --with-pwcheck=/run/saslauthd \ --with-configdir=/etc/sasl2 \ --with-plugindir=/usr/$(get_libdir)/sasl2 \ --with-dbpath=/etc/sasl2/sasldb2 \ $(use_with ssl openssl) \ $(use_with pam) \ $(use_with openldap ldap) \ $(use_enable ldapdb) \ $(use_enable sample) \ $(use_enable kerberos gssapi) \ $(use_enable java) \ $(use_with java javahome ${JAVA_HOME}) \ $(use_with mysql) \ $(use_with postgres pgsql) \ $(use_with sqlite sqlite3 /usr/$(get_libdir)) \ $(use_enable srp) \ $(use_enable static-libs static) \ ${myconf} } src_compile() { emake # Default location for java classes breaks OpenOffice (bug #60769). # Thanks to axxo@gentoo.org for the solution. cd "${S}" if use java ; then jar -cvf ${PN}.jar -C java $(find java -name "*.class") fi } src_install() { emake DESTDIR="${D}" install keepdir /etc/sasl2 if use sample ; then docinto sample dodoc sample/*.c exeinto /usr/share/doc/${P}/sample doexe sample/client sample/server fi # Default location for java classes breaks OpenOffice (bug #60769). if use java ; then java-pkg_dojar ${PN}.jar java-pkg_regso "${D}/usr/$(get_libdir)/libjavasasl.so" # hackish, don't wanna dig through makefile rm -Rf "${D}/usr/$(get_libdir)/java" docinto "java" dodoc "${S}/java/README" "${FILESDIR}/java.README.gentoo" "${S}"/java/doc/* dodir "/usr/share/doc/${PF}/java/Test" insinto "/usr/share/doc/${PF}/java/Test" doins "${S}"/java/Test/*.java fi docinto "" dodoc AUTHORS ChangeLog NEWS README doc/TODO doc/*.txt newdoc pwcheck/README README.pwcheck dohtml doc/*.html docinto "saslauthd" dodoc saslauthd/{AUTHORS,ChangeLog,LDAP_SASLAUTHD,NEWS,README} newpamd "${FILESDIR}/saslauthd.pam-include" saslauthd newinitd "${FILESDIR}/pwcheck.rc6" pwcheck systemd_dounit "${FILESDIR}/pwcheck.service" newinitd "${FILESDIR}/saslauthd2.rc7" saslauthd newconfd "${FILESDIR}/saslauthd-${SASLAUTHD_CONF_VER}.conf" saslauthd systemd_dounit "${FILESDIR}/saslauthd.service" systemd_dotmpfilesd "${FILESDIR}/${PN}.conf" newsbin "${S}/saslauthd/testsaslauthd" testsaslauthd use static-libs || find "${D}"/usr/lib*/sasl2 -name 'lib*.la' -delete } pkg_preinst() { preserve_old_lib /usr/$(get_libdir)/libsasl2.so.2 } pkg_postinst () { # Generate an empty sasldb2 with correct permissions. if ( use berkdb || use gdbm ) && [[ ! -f "${ROOT}/etc/sasl2/sasldb2" ]] ; then einfo "Generating an empty sasldb2 with correct permissions ..." echo "p" | "${ROOT}/usr/sbin/saslpasswd2" -f "${ROOT}/etc/sasl2/sasldb2" -p login \ || die "Failed to generate sasldb2" "${ROOT}/usr/sbin/saslpasswd2" -f "${ROOT}/etc/sasl2/sasldb2" -d login \ || die "Failed to delete temp user" chown root:mail "${ROOT}/etc/sasl2/sasldb2" \ || die "Failed to chown ${ROOT}/etc/sasl2/sasldb2" chmod 0640 "${ROOT}/etc/sasl2/sasldb2" \ || die "Failed to chmod ${ROOT}/etc/sasl2/sasldb2" fi if use authdaemond ; then elog "You need to add a user running a service using Courier's" elog "authdaemon to the 'mail' group. For example, do:" elog " gpasswd -a postfix mail" elog "to add the 'postfix' user to the 'mail' group." fi elog "pwcheck and saslauthd home directories have moved to:" elog " /run/saslauthd, using tmpfiles.d" preserve_old_lib_notify /usr/$(get_libdir)/libsasl2.so.2 }