[pkgsrc/trunk]: pkgsrc/chat/jabberd Backport fix for DoS attack in handling S...

[salo <salo%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/fc61efc99529
branches:  trunk
changeset: 490814:fc61efc99529
user:      salo <salo%pkgsrc.org@localhost>
date:      Sun Mar 20 18:50:09 2005 +0000

description:
Backport fix for DoS attack in handling SSL connections from 1.4.3.
Bump PKGREVISION.

diffstat:

 chat/jabberd/Makefile         |   4 ++--
 chat/jabberd/distinfo         |   3 ++-
 chat/jabberd/patches/patch-ad |  29 +++++++++++++++++++++++++++++
 3 files changed, 33 insertions(+), 3 deletions(-)

diffs (61 lines):

diff -r e5ac038c838d -r fc61efc99529 chat/jabberd/Makefile
--- a/chat/jabberd/Makefile     Sun Mar 20 18:21:39 2005 +0000
+++ b/chat/jabberd/Makefile     Sun Mar 20 18:50:09 2005 +0000
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile,v 1.10 2004/12/28 02:47:41 reed Exp $
+# $NetBSD: Makefile,v 1.11 2005/03/20 18:50:09 salo Exp $
 #
 
 DISTNAME=              jabber-1.4.2
 PKGNAME=               jabberd-1.4.2
-PKGREVISION=           3
+PKGREVISION=           4
 CATEGORIES=            chat
 MASTER_SITES=          http://jabberd.jabberstudio.org/downloads/ \
                        http://jabberd.jabberstudio.org/1.4/dist/
diff -r e5ac038c838d -r fc61efc99529 chat/jabberd/distinfo
--- a/chat/jabberd/distinfo     Sun Mar 20 18:21:39 2005 +0000
+++ b/chat/jabberd/distinfo     Sun Mar 20 18:50:09 2005 +0000
@@ -1,7 +1,8 @@
-$NetBSD: distinfo,v 1.2 2004/02/21 05:38:29 xtraeme Exp $
+$NetBSD: distinfo,v 1.3 2005/03/20 18:50:09 salo Exp $
 
 SHA1 (jabber-1.4.2.tar.gz) = aa0bc2e9815e4fa4a1ca8ba7f320bfd3c85ba11f
 Size (jabber-1.4.2.tar.gz) = 690217 bytes
 SHA1 (patch-aa) = 726ff89388dca237ac9acb83113a683feca8a356
 SHA1 (patch-ab) = 8722b0db3870e14eaf3e40f5493544db8a813fc1
 SHA1 (patch-ac) = 3b17761c9ea2d1e17f3194ac8cf54fbca4c80367
+SHA1 (patch-ad) = 0e8f2faa154e8c147b129aa3ca3cfd2dbaff1093
diff -r e5ac038c838d -r fc61efc99529 chat/jabberd/patches/patch-ad
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/chat/jabberd/patches/patch-ad     Sun Mar 20 18:50:09 2005 +0000
@@ -0,0 +1,29 @@
+$NetBSD: patch-ad,v 1.3 2005/03/20 18:50:09 salo Exp $
+
+--- jabberd/mio_ssl.c.orig     2002-02-08 08:39:27.000000000 +0100
++++ jabberd/mio_ssl.c  2005-03-20 19:38:42.000000000 +0100
+@@ -219,6 +219,15 @@
+     SSL_CTX *ctx = NULL;
+     int fd;
+     int sret;
++    int flags;
++
++    fd = accept(m->fd, serv_addr, addrlen);
++
++    /* set the socket to non-blocking as this is not
++       inherited */
++    flags =  fcntl(fd, F_GETFL, 0);
++    flags |= O_NONBLOCK;
++    fcntl(fd, F_SETFL, flags);
+ 
+     if(m->ip == NULL)
+     {
+@@ -226,8 +235,6 @@
+         return -1;
+     }
+ 
+-    fd = accept(m->fd, serv_addr, addrlen);
+-    
+     ctx = ghash_get(ssl__ctxs, m->ip);
+     if(ctx == NULL)
+     {