aboutsummaryrefslogtreecommitdiffstats
path: root/security/krb5-appl
diff options
context:
space:
mode:
authorcy <cy@FreeBSD.org>2006-07-17 01:49:46 +0800
committercy <cy@FreeBSD.org>2006-07-17 01:49:46 +0800
commit893ba16b206a9c110f21906aa32636e4952e2af3 (patch)
treea1313032846a625b423a5696328e7088cf4c046a /security/krb5-appl
parent308a70a4faddfdb213d684506f554ddef4bd3543 (diff)
downloadfreebsd-ports-gnome-893ba16b206a9c110f21906aa32636e4952e2af3.tar.gz
freebsd-ports-gnome-893ba16b206a9c110f21906aa32636e4952e2af3.tar.zst
freebsd-ports-gnome-893ba16b206a9c110f21906aa32636e4952e2af3.zip
Cause the KDC to also listen on the loopback interface. This is useful
for situations when the database is replicated to a secure environment that does not have network access, by hand.
Diffstat (limited to 'security/krb5-appl')
-rw-r--r--security/krb5-appl/Makefile1
-rw-r--r--security/krb5-appl/files/patch-lib-krb5-os-localaddr.c75
2 files changed, 76 insertions, 0 deletions
diff --git a/security/krb5-appl/Makefile b/security/krb5-appl/Makefile
index 7f5491440310..795c2fcd2e1e 100644
--- a/security/krb5-appl/Makefile
+++ b/security/krb5-appl/Makefile
@@ -7,6 +7,7 @@
PORTNAME= krb5
PORTVERSION= 1.5
+PORTREVISION= 1
CATEGORIES= security
MASTER_SITES= http://web.mit.edu/kerberos/dist/krb5/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/
DISTNAME= ${PORTNAME}-${PORTVERSION}-signed
diff --git a/security/krb5-appl/files/patch-lib-krb5-os-localaddr.c b/security/krb5-appl/files/patch-lib-krb5-os-localaddr.c
new file mode 100644
index 000000000000..9e701ba97985
--- /dev/null
+++ b/security/krb5-appl/files/patch-lib-krb5-os-localaddr.c
@@ -0,0 +1,75 @@
+--- lib/krb5/os/localaddr.c.orig Wed Apr 13 09:55:43 2005
++++ lib/krb5/os/localaddr.c Sun Jul 16 09:29:05 2006
+@@ -436,12 +436,14 @@
+ #endif
+ if ((ifp->ifa_flags & IFF_UP) == 0)
+ continue;
++#if 0
+ if (ifp->ifa_flags & IFF_LOOPBACK) {
+ /* Pretend it's not up, so the second pass will skip
+ it. */
+ ifp->ifa_flags &= ~IFF_UP;
+ continue;
+ }
++#endif
+ if (ifp->ifa_addr == NULL) {
+ /* Can't use an interface without an address. Linux
+ apparently does this sometimes. [RT ticket 1770 from
+@@ -459,8 +461,10 @@
+ for (ifp2 = ifp_head; ifp2 && ifp2 != ifp; ifp2 = ifp2->ifa_next) {
+ if ((ifp2->ifa_flags & IFF_UP) == 0)
+ continue;
++#if 0
+ if (ifp2->ifa_flags & IFF_LOOPBACK)
+ continue;
++#endif
+ if (addr_eq (ifp->ifa_addr, ifp2->ifa_addr)) {
+ match = 1;
+ ifp->ifa_flags &= ~IFF_UP;
+@@ -583,6 +587,7 @@
+ }
+ /*@=moduncon@*/
+
++#if 0
+ #ifdef IFF_LOOPBACK
+ /* None of the current callers want loopback addresses. */
+ if (lifreq.lifr_flags & IFF_LOOPBACK) {
+@@ -590,6 +595,7 @@
+ goto skip;
+ }
+ #endif
++#endif
+ /* Ignore interfaces that are down. */
+ if ((lifreq.lifr_flags & IFF_UP) == 0) {
+ Tprintf ((" down\n"));
+@@ -755,6 +761,7 @@
+ }
+ /*@=moduncon@*/
+
++#if 0
+ #ifdef IFF_LOOPBACK
+ /* None of the current callers want loopback addresses. */
+ if (lifreq.iflr_flags & IFF_LOOPBACK) {
+@@ -762,6 +769,7 @@
+ goto skip;
+ }
+ #endif
++#endif
+ /* Ignore interfaces that are down. */
+ if ((lifreq.iflr_flags & IFF_UP) == 0) {
+ Tprintf ((" down\n"));
+@@ -971,12 +979,14 @@
+ }
+ /*@=moduncon@*/
+
++#if 0
+ #ifdef IFF_LOOPBACK
+ /* None of the current callers want loopback addresses. */
+ if (ifreq.ifr_flags & IFF_LOOPBACK) {
+ Tprintf ((" loopback\n"));
+ goto skip;
+ }
++#endif
+ #endif
+ /* Ignore interfaces that are down. */
+ if ((ifreq.ifr_flags & IFF_UP) == 0) {