From a8d497a2fa1862340525ba99578b17b0695471ec Mon Sep 17 00:00:00 2001 From: Maxim Koltsov Date: Thu, 31 Jan 2013 17:56:01 +0000 Subject: Bump to 1.9.4 and 1.8.6, clean vulnerable 1.9.x versions, fixes security bug 453808 (Portage version: 2.1.11.40/cvs/Linux x86_64, signed Manifest commit with key F8DBDADE) --- sys-auth/sssd/ChangeLog | 10 ++- sys-auth/sssd/sssd-1.8.6.ebuild | 123 +++++++++++++++++++++++++++++++++++ sys-auth/sssd/sssd-1.9.3.ebuild | 140 ---------------------------------------- sys-auth/sssd/sssd-1.9.4.ebuild | 140 ++++++++++++++++++++++++++++++++++++++++ 4 files changed, 272 insertions(+), 141 deletions(-) create mode 100644 sys-auth/sssd/sssd-1.8.6.ebuild delete mode 100644 sys-auth/sssd/sssd-1.9.3.ebuild create mode 100644 sys-auth/sssd/sssd-1.9.4.ebuild (limited to 'sys-auth') diff --git a/sys-auth/sssd/ChangeLog b/sys-auth/sssd/ChangeLog index 93fafbd424e9..ab4c69d63aab 100644 --- a/sys-auth/sssd/ChangeLog +++ b/sys-auth/sssd/ChangeLog @@ -1,6 +1,14 @@ # ChangeLog for sys-auth/sssd # Copyright 1999-2013 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sys-auth/sssd/ChangeLog,v 1.31 2013/01/06 19:15:46 maksbotan Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-auth/sssd/ChangeLog,v 1.32 2013/01/31 17:56:01 maksbotan Exp $ + +*sssd-1.8.6 (31 Jan 2013) +*sssd-1.9.4 (31 Jan 2013) + + 31 Jan 2013; Maxim Koltsov +sssd-1.8.6.ebuild, + +sssd-1.9.4.ebuild, -sssd-1.9.3.ebuild: + Bump to 1.9.4 and 1.8.6, clean vulnerable 1.9.x versions, fixes security bug + 453808 06 Jan 2013; Maxim Koltsov sssd-1.9.3.ebuild: Change 1.9.3 depends to make it build, bug #450226. Thanks to slepnoga. diff --git a/sys-auth/sssd/sssd-1.8.6.ebuild b/sys-auth/sssd/sssd-1.8.6.ebuild new file mode 100644 index 000000000000..97aaecdea606 --- /dev/null +++ b/sys-auth/sssd/sssd-1.8.6.ebuild @@ -0,0 +1,123 @@ +# Copyright 1999-2013 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-auth/sssd/sssd-1.8.6.ebuild,v 1.1 2013/01/31 17:56:01 maksbotan Exp $ + +EAPI=4 + +PYTHON_DEPEND="python? 2:2.6" + +inherit python multilib pam linux-info autotools-utils + +DESCRIPTION="System Security Services Daemon provides access to identity and authentication" +HOMEPAGE="http://fedorahosted.org/sssd/" +SRC_URI="http://fedorahosted.org/released/${PN}/${P}.tar.gz" + +LICENSE="GPL-3" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="doc +locator netlink nls python selinux test" + +COMMON_DEP=" + virtual/pam + dev-libs/popt + dev-libs/glib:2 + >=dev-libs/ding-libs-0.1.2 + >=sys-libs/talloc-2.0 + sys-libs/tdb + sys-libs/tevent + sys-libs/ldb + >=net-nds/openldap-2.4.19 + !!~net-nds/openldap-2.4.28 + dev-libs/libpcre + >=app-crypt/mit-krb5-1.9.1 + sys-apps/keyutils + >=net-dns/c-ares-1.7.4 + >=dev-libs/nss-3.12.9 + selinux? ( + >=sys-libs/libselinux-2.0.94 + >=sys-libs/libsemanage-2.0.45 + sec-policy/selinux-sssd + ) + net-dns/bind-tools + dev-libs/cyrus-sasl + sys-apps/dbus + nls? ( >=sys-devel/gettext-0.17 ) + virtual/libintl + netlink? ( dev-libs/libnl ) + " + +RDEPEND="${COMMON_DEP}" +DEPEND="${COMMON_DEP} + test? ( dev-libs/check ) + >=dev-libs/libxslt-1.1.26 + app-text/docbook-xml-dtd:4.4 + doc? ( app-doc/doxygen )" + +CONFIG_CHECK="~KEYS" + +pkg_setup(){ + if use python; then + python_set_active_version 2 + python_pkg_setup + python_need_rebuild + fi + linux-info_pkg_setup +} + +src_prepare() { + cp -f "${FILESDIR}"/sssd "${S}/"src/sysv/gentoo/sssd +} + +src_configure(){ + local myeconfargs=( + --localstatedir="${EPREFIX}"/var + --enable-nsslibdir="${EPREFIX}"/$(get_libdir) + --with-plugin-path="${EPREFIX}"/usr/$(get_libdir)/sssd + --enable-pammoddir="${EPREFIX}"/$(getpam_mod_dir) + --with-ldb-lib-dir="${EPREFIX}"/usr/$(get_libdir)/ldb/modules/ldb + --without-nscd + --with-unicode-lib="glib2" + $(use_with selinux) + $(use_with selinux semanage) + $(use_with python python-bindings) + $(use_enable locator krb5-locator-plugin) + $(use_enable nls ) + $(use_with netlink libnl) ) + + autotools-utils_src_configure +} + +src_install(){ + autotools-utils_src_install + remove_libtool_files all + + insinto /etc/sssd + insopts -m600 + doins "${S}"/src/examples/sssd-example.conf + + insinto /etc/logrotate.d + insopts -m644 + newins "${S}"/src/examples/logrotate sssd + + if use python; then + python_clean_installation_image + python_convert_shebangs 2 "${ED}$(python_get_sitedir)/"*.py + fi + newconfd "${FILESDIR}"/sssd.conf sssd +} + +src_test() { + autotools-utils_src_test +} + +pkg_postinst(){ + elog "You must set up sssd.conf (default installed into /etc/sssd)" + elog "and (optionally) configuration in /etc/pam.d in order to use SSSD" + elog "features. Please see howto in http://fedorahosted.org/sssd/wiki/HOWTO_Configure_1_0_2" + + use python && python_mod_optimize SSSDConfig.py ipachangeconf.py +} + +pkg_postrm() { + use python && python_mod_cleanup SSSDConfig.py ipachangeconf.py +} diff --git a/sys-auth/sssd/sssd-1.9.3.ebuild b/sys-auth/sssd/sssd-1.9.3.ebuild deleted file mode 100644 index 64087b52fcbb..000000000000 --- a/sys-auth/sssd/sssd-1.9.3.ebuild +++ /dev/null @@ -1,140 +0,0 @@ -# Copyright 1999-2013 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-auth/sssd/sssd-1.9.3.ebuild,v 1.2 2013/01/06 19:15:46 maksbotan Exp $ - -EAPI=4 - -PYTHON_DEPEND="python? 2:2.6" - -AUTOTOOLS_IN_SOURCE_BUILD=1 -AUTOTOOLS_AUTORECONF=1 - -inherit python multilib pam linux-info autotools-utils - -DESCRIPTION="System Security Services Daemon provides access to identity and authentication" -HOMEPAGE="http://fedorahosted.org/sssd/" -SRC_URI="http://fedorahosted.org/released/${PN}/${P}.tar.gz" - -LICENSE="GPL-3" -SLOT="0" -KEYWORDS="~amd64 ~x86" -IUSE="autofs doc +locator netlink nls +manpages python selinux sudo ssh test" - -COMMON_DEP=" - virtual/pam - >=dev-libs/popt-1.16 - dev-libs/glib:2 - >=dev-libs/ding-libs-0.2 - >=sys-libs/talloc-2.0.7 - >=sys-libs/tdb-1.2.9 - >=sys-libs/tevent-0.9.16 - >=sys-libs/ldb-1.1.13 - >=net-nds/openldap-2.4.30 - >=dev-libs/libpcre-8.30 - >=app-crypt/mit-krb5-1.10.3 - >=sys-apps/keyutils-1.5 - >=net-dns/c-ares-1.7.4 - >=dev-libs/nss-3.12.9 - >=net-fs/samba-4 - selinux? ( - >=sys-libs/libselinux-2.1.9 - >=sys-libs/libsemanage-2.1 - >=sec-policy/selinux-sssd-2.20120725-r9 - ) - >=net-dns/bind-tools-9.9[gssapi] - >=dev-libs/cyrus-sasl-2.1.25-r3[kerberos] - >=sys-apps/dbus-1.6 - nls? ( >=sys-devel/gettext-0.18 ) - virtual/libintl - netlink? ( dev-libs/libnl:3 ) - " - -RDEPEND="${COMMON_DEP}" - -DEPEND="${COMMON_DEP} - test? ( dev-libs/check ) - manpages? ( - >=dev-libs/libxslt-1.1.26 - app-text/docbook-xml-dtd:4.4 - ) - doc? ( app-doc/doxygen )" - -CONFIG_CHECK="~KEYS" - -PATCHES=( "${FILESDIR}"/0*.patch ) - -pkg_setup(){ - if use python; then - python_set_active_version 2 - python_pkg_setup - python_need_rebuild - fi - linux-info_pkg_setup -} - -src_prepare() { - autotools-utils_src_prepare -} - -src_configure(){ - local myeconfargs=( - --localstatedir="${EPREFIX}"/var - --enable-nsslibdir="${EPREFIX}"/$(get_libdir) - --with-plugin-path="${EPREFIX}"/usr/$(get_libdir)/sssd - --enable-pammoddir="${EPREFIX}"/$(getpam_mod_dir) - --with-ldb-lib-dir="${EPREFIX}"/usr/$(get_libdir)/ldb/modules/ldb - --without-nscd - --with-unicode-lib="glib2" - --disable-rpath - --enable-silent-rules - $(use_with selinux) - $(use_with selinux semanage) - $(use_with python python-bindings) - $(use_enable locator krb5-locator-plugin) - $(use_enable nls ) - $(use_with netlink libnl) - $(use_with manpages) - $(use_with sudo) - $(use_with autofs) - $(use_with ssh) - --with-crypto="libcrypto" - --with-initscript="sysv" - ) - - autotools-utils_src_configure -} - -src_install(){ - autotools-utils_src_install - prune_libtool_files --all - - insinto /etc/sssd - insopts -m600 - doins "${S}"/src/examples/sssd-example.conf - - insinto /etc/logrotate.d - insopts -m644 - newins "${S}"/src/examples/logrotate sssd - - if use python; then - python_clean_installation_image - python_convert_shebangs -r 2 "${ED}$(python_get_sitedir)"/*.py - fi - newconfd "${FILESDIR}"/sssd.conf sssd -} - -src_test() { - autotools-utils_src_test -} - -pkg_postinst(){ - elog "You must set up sssd.conf (default installed into /etc/sssd)" - elog "and (optionally) configuration in /etc/pam.d in order to use SSSD" - elog "features. Please see howto in http://fedorahosted.org/sssd/wiki/HOWTO_Configure_1_0_2" - - use python && python_mod_optimize SSSDConfig.py ipachangeconf.py -} - -pkg_postrm() { - use python && python_mod_cleanup SSSDConfig.py ipachangeconf.py -} diff --git a/sys-auth/sssd/sssd-1.9.4.ebuild b/sys-auth/sssd/sssd-1.9.4.ebuild new file mode 100644 index 000000000000..76a411800cd8 --- /dev/null +++ b/sys-auth/sssd/sssd-1.9.4.ebuild @@ -0,0 +1,140 @@ +# Copyright 1999-2013 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-auth/sssd/sssd-1.9.4.ebuild,v 1.1 2013/01/31 17:56:01 maksbotan Exp $ + +EAPI=4 + +PYTHON_DEPEND="python? 2:2.6" + +AUTOTOOLS_IN_SOURCE_BUILD=1 +AUTOTOOLS_AUTORECONF=1 + +inherit python multilib pam linux-info autotools-utils + +DESCRIPTION="System Security Services Daemon provides access to identity and authentication" +HOMEPAGE="http://fedorahosted.org/sssd/" +SRC_URI="http://fedorahosted.org/released/${PN}/${P}.tar.gz" + +LICENSE="GPL-3" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="autofs doc +locator netlink nls +manpages python selinux sudo ssh test" + +COMMON_DEP=" + virtual/pam + >=dev-libs/popt-1.16 + dev-libs/glib:2 + >=dev-libs/ding-libs-0.2 + >=sys-libs/talloc-2.0.7 + >=sys-libs/tdb-1.2.9 + >=sys-libs/tevent-0.9.16 + >=sys-libs/ldb-1.1.13 + >=net-nds/openldap-2.4.30 + >=dev-libs/libpcre-8.30 + >=app-crypt/mit-krb5-1.10.3 + >=sys-apps/keyutils-1.5 + >=net-dns/c-ares-1.7.4 + >=dev-libs/nss-3.12.9 + >=net-fs/samba-4 + selinux? ( + >=sys-libs/libselinux-2.1.9 + >=sys-libs/libsemanage-2.1 + >=sec-policy/selinux-sssd-2.20120725-r9 + ) + >=net-dns/bind-tools-9.9[gssapi] + >=dev-libs/cyrus-sasl-2.1.25-r3[kerberos] + >=sys-apps/dbus-1.6 + nls? ( >=sys-devel/gettext-0.18 ) + virtual/libintl + netlink? ( dev-libs/libnl:3 ) + " + +RDEPEND="${COMMON_DEP}" + +DEPEND="${COMMON_DEP} + test? ( dev-libs/check ) + manpages? ( + >=dev-libs/libxslt-1.1.26 + app-text/docbook-xml-dtd:4.4 + ) + doc? ( app-doc/doxygen )" + +CONFIG_CHECK="~KEYS" + +PATCHES=( "${FILESDIR}"/0*.patch ) + +pkg_setup(){ + if use python; then + python_set_active_version 2 + python_pkg_setup + python_need_rebuild + fi + linux-info_pkg_setup +} + +src_prepare() { + autotools-utils_src_prepare +} + +src_configure(){ + local myeconfargs=( + --localstatedir="${EPREFIX}"/var + --enable-nsslibdir="${EPREFIX}"/$(get_libdir) + --with-plugin-path="${EPREFIX}"/usr/$(get_libdir)/sssd + --enable-pammoddir="${EPREFIX}"/$(getpam_mod_dir) + --with-ldb-lib-dir="${EPREFIX}"/usr/$(get_libdir)/ldb/modules/ldb + --without-nscd + --with-unicode-lib="glib2" + --disable-rpath + --enable-silent-rules + $(use_with selinux) + $(use_with selinux semanage) + $(use_with python python-bindings) + $(use_enable locator krb5-locator-plugin) + $(use_enable nls ) + $(use_with netlink libnl) + $(use_with manpages) + $(use_with sudo) + $(use_with autofs) + $(use_with ssh) + --with-crypto="libcrypto" + --with-initscript="sysv" + ) + + autotools-utils_src_configure +} + +src_install(){ + autotools-utils_src_install + prune_libtool_files --all + + insinto /etc/sssd + insopts -m600 + doins "${S}"/src/examples/sssd-example.conf + + insinto /etc/logrotate.d + insopts -m644 + newins "${S}"/src/examples/logrotate sssd + + if use python; then + python_clean_installation_image + python_convert_shebangs -r 2 "${ED}$(python_get_sitedir)"/*.py + fi + newconfd "${FILESDIR}"/sssd.conf sssd +} + +src_test() { + autotools-utils_src_test +} + +pkg_postinst(){ + elog "You must set up sssd.conf (default installed into /etc/sssd)" + elog "and (optionally) configuration in /etc/pam.d in order to use SSSD" + elog "features. Please see howto in http://fedorahosted.org/sssd/wiki/HOWTO_Configure_1_0_2" + + use python && python_mod_optimize SSSDConfig.py ipachangeconf.py +} + +pkg_postrm() { + use python && python_mod_cleanup SSSDConfig.py ipachangeconf.py +} -- cgit v1.2.3-65-gdbad