diff options
| author | dinoex <dinoex@FreeBSD.org> | 2002-05-31 15:28:46 +0800 |
|---|---|---|
| committer | dinoex <dinoex@FreeBSD.org> | 2002-05-31 15:28:46 +0800 |
| commit | c67582c7b861221c8ac33bc5d9cce7b3bbba18a3 (patch) | |
| tree | f8cd13f1ea9a0fe5ba3518b66e41e6ec015e8352 /security/openssh-portable | |
| parent | 2caee95eabd4827c789ad50966ae57785b324da9 (diff) | |
| download | freebsd-ports-gnome-c67582c7b861221c8ac33bc5d9cce7b3bbba18a3.tar.gz freebsd-ports-gnome-c67582c7b861221c8ac33bc5d9cce7b3bbba18a3.tar.zst freebsd-ports-gnome-c67582c7b861221c8ac33bc5d9cce7b3bbba18a3.zip | |
Update to OpenSSH 3.2.3
- patch openssh-3.1-adv.token.patch is now obsolete.
- remerged PAM changes form previous port
- declare CMSG_* macros.
- fixed bad type in function input_userauth_passwd_changereq
Update to OpenSSH-portable-3.2.3p1
- patch openssh-3.1p1-adv.token.patch is now obsolete
- keep previously declared CONFIGURE_ARGS
- remove openssh-mit-krb5-20020326.diff (should be in the distribution now)
- patch patch-readpassphrase.c is now in teh distribution
- merged previous patches.
- extend CONFIGURE_ARGS so it find OPENSSL again.
- new patches for GSSAPI, not fully tested.
If you have the patch applied:
http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/36080
Builds with openssl-0.9.6d under:
2.2.8-RELEASE
3.2-RELEASE
4.2-RELEASE
4.6-RC
Diffstat (limited to 'security/openssh-portable')
| -rw-r--r-- | security/openssh-portable/Makefile | 17 | ||||
| -rw-r--r-- | security/openssh-portable/distinfo | 7 | ||||
| -rw-r--r-- | security/openssh-portable/files/patch-readpassphrase.c | 25 | ||||
| -rw-r--r-- | security/openssh-portable/files/patch-session.c | 50 |
4 files changed, 32 insertions, 67 deletions
diff --git a/security/openssh-portable/Makefile b/security/openssh-portable/Makefile index ca1133761e69..3de6bdb4a6de 100644 --- a/security/openssh-portable/Makefile +++ b/security/openssh-portable/Makefile @@ -6,17 +6,13 @@ # PORTNAME= openssh -PORTVERSION= 3.1p1 -PORTREVISION= 4 +PORTVERSION= 3.2.3p1 CATEGORIES= security ipv6 MASTER_SITES= ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/ \ ftp://ftp.op.net/pub/OpenBSD/OpenSSH/portable/ \ ftp://carroll.cac.psu.edu/pub/OpenBSD/OpenSSH/portable/ PKGNAMESUFFIX= -portable -PATCH_SITES= ${MASTER_SITES} -PATCHFILES= openssh-3.1p1-adv.token.patch - MAINTAINER= dinoex@FreeBSD.org MAN1= sftp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 scp.1 ssh.1 @@ -26,7 +22,7 @@ MAN8= sftp-server.8 sshd.8 CRYPTOLIBS= -L${OPENSSLLIB} -lcrypto USE_OPENSSL= yes GNU_CONFIGURE= yes -CONFIGURE_ARGS?= --prefix=${PREFIX} --with-md5-passwords +CONFIGURE_ARGS+= --prefix=${PREFIX} --with-md5-passwords CLEAN= etc/ssh_config etc/sshd_config etc/moduli \ etc/ssh_host_key etc/ssh_host_key.pub \ etc/ssh_host_dsa_key etc/ssh_host_dsa_key.pub \ @@ -53,12 +49,11 @@ EXTRA_PATCHES+= ${FILESDIR}/batch.patch .endif .if defined(KRB5_HOME) && exists(${KRB5_HOME}) +GSSAPI_PATCH= ${PORTNAME}-${PORTVERSION}-gssapi-20020527.diff GSSAPI_SITE= http://www.sxw.org.uk/computing/patches/ MASTER_SITES+= ${GSSAPI_SITE} -DISTFILES= ${EXTRACT_ONLY} ${PORTNAME}-${PORTVERSION}-gssapi-20020321.diff +DISTFILES= ${EXTRACT_ONLY} ${GSSAPI_PATCH} EXTRACT_ONLY= ${PORTNAME}-${PORTVERSION}${EXTRACT_SUFX} -PATCH_SITES+= ${GSSAPI_SITE} -PATCHFILES+= ${PORTNAME}-mit-krb5-20020319.diff EXTRA_PATCHES+= ${FILESDIR}/servconf.c.patch BUILD_DEPENDS= autoconf:${PORTSDIR}/devel/autoconf # USE_AUTOCONF_VER= 252 # broken @@ -69,7 +64,7 @@ AUTOHEADER= autoheader post-patch: @${ECHO_MSG} Applying extra patch for GSS-API key-exchange... @${PATCH} ${PATCH_DIST_ARGS:S/-p0/-p1/} \ - < ${DISTDIR}/${PORTNAME}-${PORTVERSION}-gssapi-20020321.diff + < ${DISTDIR}/${GSSAPI_PATCH} pre-configure: @${ECHO_MSG} !!!! Warning this option uses autoconf/autoheader !!! @@ -91,6 +86,8 @@ OPENSSLLIB= ${OPENSSLBASE}/lib OPENSSLINC= ${OPENSSLBASE}/include MAKE_ENV+= OPENSSLLIB=${OPENSSLLIB} OPENSSLINC=${OPENSSLINC} \ OPENSSLBASE=${OPENSSLBASE} OPENSSLDIR=${OPENSSLDIR} +CONFIGURE_ARGS+= --with-ssl=${OPENSSLBASE} .endif + .include <bsd.port.post.mk> diff --git a/security/openssh-portable/distinfo b/security/openssh-portable/distinfo index a875a7b85e22..0767cb06a250 100644 --- a/security/openssh-portable/distinfo +++ b/security/openssh-portable/distinfo @@ -1,4 +1,3 @@ -MD5 (openssh-3.1p1.tar.gz) = c6a52d4126ed27eb57c31729ec6b2362 -MD5 (openssh-3.1p1-gssapi-20020321.diff) = d571cea9810630650139013a1af4b1d9 -MD5 (openssh-3.1p1-adv.token.patch) = 8c34327404f504f8d5bf1a2063f4e7b7 -MD5 (openssh-mit-krb5-20020319.diff) = 151af40132624a615c96027491f09f25 +MD5 (openssh-3.2.3p1.tar.gz) = f153ccdb5a91fa06ec78d0c6313f4d77 +MD5 (openssh-3.1p1-gssapi-20020325.diff) = a5002539db6b838190ad92bc627f6b5e +MD5 (openssh-mit-krb5-20020326.diff) = 2f83bf4f0185f20672c68856aee643c8 diff --git a/security/openssh-portable/files/patch-readpassphrase.c b/security/openssh-portable/files/patch-readpassphrase.c deleted file mode 100644 index 28bae4877919..000000000000 --- a/security/openssh-portable/files/patch-readpassphrase.c +++ /dev/null @@ -1,25 +0,0 @@ ---- openbsd-compat/readpassphrase.c.orig Sat Mar 30 06:08:34 2002 -+++ openbsd-compat/readpassphrase.c Sat Mar 30 06:09:33 2002 -@@ -165,6 +165,13 @@ - errno = save_errno; - return(nr == -1 ? NULL : buf); - } -+ -+static void handler(int s) -+{ -+ -+ signo = s; -+} -+ - #endif /* HAVE_READPASSPHRASE */ - - #if 0 -@@ -177,8 +184,3 @@ - } - #endif - --static void handler(int s) --{ -- -- signo = s; --} diff --git a/security/openssh-portable/files/patch-session.c b/security/openssh-portable/files/patch-session.c index 85d451a5576d..0baf6ee51939 100644 --- a/security/openssh-portable/files/patch-session.c +++ b/security/openssh-portable/files/patch-session.c @@ -1,6 +1,6 @@ ---- session.c.orig Mon Feb 25 16:48:03 2002 -+++ session.c Mon Mar 25 06:19:09 2002 -@@ -63,6 +63,13 @@ +--- session.c.orig Mon May 13 02:48:58 2002 ++++ session.c Thu May 23 14:10:44 2002 +@@ -64,6 +64,13 @@ #define is_winnt (GetVersion() < 0x80000000) #endif @@ -11,10 +11,10 @@ +#define _PATH_CHPASS "/usr/bin/passwd" +#endif /* __FreeBSD__ */ + - /* types */ + /* func */ - #define TTYSZ 64 -@@ -423,6 +430,13 @@ + Session *session_new(void); +@@ -383,6 +390,13 @@ log_init(__progname, options.log_level, options.log_facility, log_stderr); /* @@ -28,7 +28,7 @@ * Create a new session and process group since the 4.4BSD * setlogin() affects the entire process group. */ -@@ -537,6 +551,14 @@ +@@ -497,6 +511,14 @@ /* Child. Reinitialize the log because the pid has changed. */ log_init(__progname, options.log_level, options.log_facility, log_stderr); @@ -43,15 +43,8 @@ /* Close the master side of the pseudo tty. */ close(ptyfd); -@@ -659,12 +681,24 @@ - do_login(Session *s, const char *command) - { - char *time_string; -+ char *newcommand; - char hostname[MAXHOSTNAMELEN]; - socklen_t fromlen; +@@ -623,6 +645,18 @@ struct sockaddr_storage from; - time_t last_login_time; struct passwd * pw = s->pw; pid_t pid = getpid(); +#ifdef HAVE_LOGIN_CAP @@ -62,13 +55,14 @@ +#endif /* HAVE_LOGIN_CAP */ +#ifdef __FreeBSD__ +#define DEFAULT_WARN (2L * 7L * 86400L) /* Two weeks */ ++ char *newcommand; + struct timeval tv; + time_t warntime = DEFAULT_WARN; +#endif /* __FreeBSD__ */ /* * Get IP address of client. If the connection is not a socket, let -@@ -703,6 +737,72 @@ +@@ -656,6 +690,72 @@ } #endif @@ -141,11 +135,11 @@ if (check_quietlogin(s, command)) return; -@@ -715,7 +815,17 @@ +@@ -668,7 +768,17 @@ printf("%s\n", aixloginmsg); #endif /* WITH_AIXAUTHENTICATE */ -- if (options.print_lastlog && last_login_time != 0) { +- if (options.print_lastlog && s->last_login_time != 0) { + /* + * If the user has logged in before, display the time of last + * login. However, don't display anything extra if a command @@ -155,13 +149,13 @@ + * us as well, so check if login(1) is used + */ + if (command == NULL && options.print_lastlog && -+ last_login_time != 0 && ++ s->last_login_time != 0 && + !options.use_login) { - time_string = ctime(&last_login_time); + time_string = ctime(&s->last_login_time); if (strchr(time_string, '\n')) *strchr(time_string, '\n') = 0; -@@ -725,7 +835,30 @@ - printf("Last login: %s from %s\r\n", time_string, hostname); +@@ -679,7 +789,30 @@ + s->hostname); } - do_motd(); @@ -192,7 +186,7 @@ } /* -@@ -741,9 +874,9 @@ +@@ -695,9 +828,9 @@ #ifdef HAVE_LOGIN_CAP f = fopen(login_getcapstr(lc, "welcome", "/etc/motd", "/etc/motd"), "r"); @@ -204,7 +198,7 @@ if (f) { while (fgets(buf, sizeof(buf), f)) fputs(buf, stdout); -@@ -770,10 +903,10 @@ +@@ -724,10 +857,10 @@ #ifdef HAVE_LOGIN_CAP if (login_getcapbool(lc, "hushlogin", 0) || stat(buf, &st) >= 0) return 1; @@ -217,7 +211,7 @@ return 0; } -@@ -902,6 +1035,10 @@ +@@ -856,6 +989,10 @@ #endif if (!options.use_login) { @@ -228,7 +222,7 @@ /* Set basic environment. */ child_set_env(&env, &envsize, "USER", pw->pw_name); child_set_env(&env, &envsize, "LOGNAME", pw->pw_name); -@@ -909,6 +1046,12 @@ +@@ -863,6 +1000,12 @@ #ifdef HAVE_LOGIN_CAP (void) setusercontext(lc, pw, pw->pw_uid, LOGIN_SETPATH); child_set_env(&env, &envsize, "PATH", getenv("PATH")); @@ -241,7 +235,7 @@ #else /* HAVE_LOGIN_CAP */ # ifndef HAVE_CYGWIN /* -@@ -1241,7 +1384,7 @@ +@@ -1221,7 +1364,7 @@ * initgroups, because at least on Solaris 2.3 it leaves file * descriptors open. */ @@ -250,7 +244,7 @@ close(i); /* -@@ -1271,6 +1414,31 @@ +@@ -1251,6 +1394,31 @@ exit(1); #endif } |