pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/security cyrus-sasl: update to 2.1.28
details: https://anonhg.NetBSD.org/pkgsrc/rev/2df28a5564aa
branches: trunk
changeset: 374687:2df28a5564aa
user: wiz <wiz%pkgsrc.org@localhost>
date: Thu Feb 24 11:00:03 2022 +0000
description:
cyrus-sasl: update to 2.1.28
New in 2.1.28
build:
configure - Restore LIBS after checking gss_inquire_sec_context_by_oid
makemd5.c - Fix potential out of bound writes
fix build with –disable-shared –enable-static
Dozens of fixes for Windows specific builds
Fix cross platform builds with SPNEGO
Do not try to build broken java subtree
Fix build error with –enable-auth-sasldb
common:
plugin_common.c:
Ensure size is always checked if called repeatedly (#617)
documentation:
Fixed generation of saslauthd(8) man page
Fixed installation of saslauthd(8) and testsaslauthd(8) man pages (#373)
Updates for additional SCRAM mechanisms
Fix sasl_decode64 and sasl_encode64 man pages
Tons of fixes for Sphinx
include:
sasl.h:
Allow up to 16 bits for security flags
lib:
checkpw.c:
Skip one call to strcat
Disable auxprop-hashed (#374)
client.c:
Use proper length for fully qualified domain names
common.c:
CVE-2019-19906 Fix off by one error (#587)
external.c:
fix EXTERNAL with non-terminated input (#689)
saslutil.c:
fix index_64 to be a signed char (#619)
plugins:
gssapi.c:
Emit debug log only in case of errors
ntlm.c:
Fail compile if MD4 is not available (#632)
sql.c:
Finish reading residual return data (#639)
CVE-2022-24407 Escape password for SQL insert/update commands.
sasldb:
db_gdbm.c:
fix gdbm_errno overlay from gdbm_close
DIGEST-MD5 plugin:
Prevent double free of RC4 context
Use OpenSSL RC4 implementation if available
SCRAM plugin:
Return BADAUTH on incorrect password (#545)
Add -224, -384, -512 (#552)
Remove SCRAM_HASH_SIZE
Add function to return SCRAM auth method name
Allocate enough memory in scam_setpass()
Add function to sort SCRAM methods by hash strength
Update windows build for newer SCRAM options
saslauthd:
auth_httpform.c:
Avoid signed overflow with non-ascii characters (#576)
auth_krb5.c:
support setting an explicit auth_krb5 server name
support setting an explicit servername with Heimdal
unify the MIT and Heimdal auth_krb5 implementations
Remove call to krbtf
auth_rimap.c:
provide native memmem implementation if missing
lak.c:
Allow LDAP_OPT_X_TLS_REQUIRE_CERT to be 0 (no certificate verification)
lak.h:
Increase supported DN length to 4096 (#626)
diffstat:
security/cy2-digestmd5/Makefile | 3 +-
security/cy2-gssapi/Makefile | 3 +-
security/cy2-ldapdb/Makefile | 3 +-
security/cy2-ntlm/Makefile | 3 +-
security/cy2-otp/Makefile | 3 +-
security/cy2-scram/Makefile | 3 +-
security/cy2-sql/Makefile | 3 +-
security/cyrus-sasl/Makefile | 3 +-
security/cyrus-sasl/Makefile.common | 14 ++-----
security/cyrus-sasl/distinfo | 10 ++---
security/cyrus-sasl/patches/patch-CVE-2019-19906 | 15 --------
security/cyrus-sasl/patches/patch-saslauthd_Makefile.in | 30 -----------------
security/cyrus-saslauthd/Makefile | 7 +---
security/cyrus-saslauthd/PLIST | 5 +-
14 files changed, 19 insertions(+), 86 deletions(-)
diffs (231 lines):
diff -r d7bb237f5e76 -r 2df28a5564aa security/cy2-digestmd5/Makefile
--- a/security/cy2-digestmd5/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cy2-digestmd5/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.23 2020/01/18 21:50:34 jperkin Exp $
+# $NetBSD: Makefile,v 1.24 2022/02/24 11:00:03 wiz Exp $
PKGNAME= ${DISTNAME:S/cyrus-sasl/cy2-digestmd5/}
-PKGREVISION= 1
COMMENT= Cyrus SASL DIGEST-MD5 authentication plugin
SASL_PLUGIN= yes
diff -r d7bb237f5e76 -r 2df28a5564aa security/cy2-gssapi/Makefile
--- a/security/cy2-gssapi/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cy2-gssapi/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.30 2021/10/21 07:46:37 wiz Exp $
+# $NetBSD: Makefile,v 1.31 2022/02/24 11:00:03 wiz Exp $
PKGNAME= ${DISTNAME:S/cyrus-sasl/cy2-gssapi/}
-PKGREVISION= 2
COMMENT= Cyrus SASL GSSAPI authentication plugin
SASL_PLUGIN= yes
diff -r d7bb237f5e76 -r 2df28a5564aa security/cy2-ldapdb/Makefile
--- a/security/cy2-ldapdb/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cy2-ldapdb/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.15 2020/01/18 21:50:34 jperkin Exp $
+# $NetBSD: Makefile,v 1.16 2022/02/24 11:00:03 wiz Exp $
PKGNAME= ${DISTNAME:S/cyrus-sasl/cy2-ldapdb/}
-PKGREVISION= 1
COMMENT= Cyrus SASL LDAPDB authentication plugin
SASL_PLUGIN= yes
diff -r d7bb237f5e76 -r 2df28a5564aa security/cy2-ntlm/Makefile
--- a/security/cy2-ntlm/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cy2-ntlm/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.31 2020/01/18 21:50:34 jperkin Exp $
+# $NetBSD: Makefile,v 1.32 2022/02/24 11:00:03 wiz Exp $
PKGNAME= ${DISTNAME:S/cyrus-sasl/cy2-ntlm/}
-PKGREVISION= 1
COMMENT= Cyrus SASL NTLM authentication plugin
SASL_PLUGIN= yes
diff -r d7bb237f5e76 -r 2df28a5564aa security/cy2-otp/Makefile
--- a/security/cy2-otp/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cy2-otp/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.24 2020/01/18 21:50:34 jperkin Exp $
+# $NetBSD: Makefile,v 1.25 2022/02/24 11:00:03 wiz Exp $
PKGNAME= ${DISTNAME:S/cyrus-sasl/cy2-otp/}
-PKGREVISION= 1
COMMENT= Cyrus SASL OTP authentication plugin
SASL_PLUGIN= yes
diff -r d7bb237f5e76 -r 2df28a5564aa security/cy2-scram/Makefile
--- a/security/cy2-scram/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cy2-scram/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.11 2020/01/18 21:50:35 jperkin Exp $
+# $NetBSD: Makefile,v 1.12 2022/02/24 11:00:03 wiz Exp $
PKGNAME= ${DISTNAME:S/cyrus-sasl/cy2-scram/}
-PKGREVISION= 1
COMMENT= Cyrus SASL SCRAM authentication plugin
SASL_PLUGIN= yes
diff -r d7bb237f5e76 -r 2df28a5564aa security/cy2-sql/Makefile
--- a/security/cy2-sql/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cy2-sql/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.48 2021/12/08 16:06:16 adam Exp $
+# $NetBSD: Makefile,v 1.49 2022/02/24 11:00:03 wiz Exp $
PKGNAME= ${DISTNAME:S/cyrus-sasl/cy2-sql/}
-PKGREVISION= 9
COMMENT= Cyrus SASL SQL authentication plugin
SASL_PLUGIN= yes
diff -r d7bb237f5e76 -r 2df28a5564aa security/cyrus-sasl/Makefile
--- a/security/cyrus-sasl/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cyrus-sasl/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.79 2021/05/24 19:53:51 wiz Exp $
+# $NetBSD: Makefile,v 1.80 2022/02/24 11:00:03 wiz Exp $
-PKGREVISION= 2
COMMENT= Simple Authentication and Security Layer
.include "Makefile.common"
diff -r d7bb237f5e76 -r 2df28a5564aa security/cyrus-sasl/Makefile.common
--- a/security/cyrus-sasl/Makefile.common Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cyrus-sasl/Makefile.common Thu Feb 24 11:00:03 2022 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: Makefile.common,v 1.33 2020/05/14 14:31:16 nia Exp $
+# $NetBSD: Makefile.common,v 1.34 2022/02/24 11:00:03 wiz Exp $
#
# used by security/cyrus-sasl/Makefile
# used by security/cy2-anonymous/Makefile
@@ -17,16 +17,10 @@
# This Makefile fragment should be included _below_ any SASL_PLUGIN
# definition and _above_ any CONFIGURE_ARGS definitions.
-DISTNAME= cyrus-sasl-2.1.27
-DISTFILES= ${DISTNAME}-rc7${EXTRACT_SUFX}
+DISTNAME= cyrus-sasl-2.1.28
CATEGORIES= security
-MASTER_SITES= https://www.cyrusimap.org/releases/
-MASTER_SITES+= https://www.cyrusimap.org/releases/old/
-#MASTER_SITES+= ftp://ftp.cyrusimap.org/cyrus-sasl/OLD-VERSIONS/
-#PATCHFILES+= cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
-#SITES.cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2= \
-# -https://cgit.cyrus.foundation/cyrus-sasl/patch/?id=dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d
-#PATCH_DIST_STRIP= -p1
+MASTER_SITES+= ${MASTER_SITE_GITHUB:=cyrusimap/}
+GITHUB_RELEASE= ${DISTNAME}
MAINTAINER= pkgsrc-users%NetBSD.org@localhost
HOMEPAGE= https://www.cyrusimap.org/sasl/
diff -r d7bb237f5e76 -r 2df28a5564aa security/cyrus-sasl/distinfo
--- a/security/cyrus-sasl/distinfo Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cyrus-sasl/distinfo Thu Feb 24 11:00:03 2022 +0000
@@ -1,10 +1,8 @@
-$NetBSD: distinfo,v 1.40 2021/11/15 18:12:45 wiz Exp $
+$NetBSD: distinfo,v 1.41 2022/02/24 11:00:03 wiz Exp $
-BLAKE2s (cyrus-sasl-2.1.27-rc7.tar.gz) = 66acec5390a4b208f8492fae9538b9df46169d00dc3228b41452cdc6eee28bdf
-SHA512 (cyrus-sasl-2.1.27-rc7.tar.gz) = 498b0f83e99f77dcf56bd2b735e71b554571703305ef9ef64038f04ef235b39d49e7b2363fc8b9952dbe2f4921542c31811e93618d7ceb468d73b4f6dafa89aa
-Size (cyrus-sasl-2.1.27-rc7.tar.gz) = 4146356 bytes
-SHA1 (patch-CVE-2019-19906) = 752de2053696f13de098267f8605b4b7afb24a6c
+BLAKE2s (cyrus-sasl-2.1.28.tar.gz) = 617623570c40af652ef1c19a746e2346f53591a4594cffdce835df29fc5aba61
+SHA512 (cyrus-sasl-2.1.28.tar.gz) = db15af9079758a9f385457a79390c8a7cd7ea666573dace8bf4fb01bb4b49037538d67285727d6a70ad799d2e2318f265c9372e2427de9371d626a1959dd6f78
+Size (cyrus-sasl-2.1.28.tar.gz) = 4034803 bytes
SHA1 (patch-common_crypto-compat) = ad8575c62648aba83983172ec8fef08d2c9f537e
SHA1 (patch-configure) = 1afa4777f2cc2a24bb526fab9fb6d9265677fb9f
SHA1 (patch-plugins_otp.c) = 1dd8763d5b14c2f2462349ce5f73353ae70313fa
-SHA1 (patch-saslauthd_Makefile.in) = 397bc893975ff4d8b0067dae571381f06486493d
diff -r d7bb237f5e76 -r 2df28a5564aa security/cyrus-sasl/patches/patch-CVE-2019-19906
--- a/security/cyrus-sasl/patches/patch-CVE-2019-19906 Thu Feb 24 09:55:40 2022 +0000
+++ /dev/null Thu Jan 01 00:00:00 1970 +0000
@@ -1,15 +0,0 @@
-$NetBSD: patch-CVE-2019-19906,v 1.1 2020/05/14 14:27:32 nia Exp $
-
-https://github.com/cyrusimap/cyrus-sasl/commit/dcc9f51cbd4ed622cfb0f9b1c141eb2ffe3b12f1.patch
-
---- lib/common.c.orig 2018-01-19 14:13:40.000000000 +0000
-+++ lib/common.c
-@@ -190,7 +190,7 @@ int _sasl_add_string(char **out, size_t
-
- if (add==NULL) add = "(null)";
-
-- addlen=strlen(add); /* only compute once */
-+ addlen=strlen(add)+1; /* only compute once */
- if (_buf_alloc(out, alloclen, (*outlen)+addlen)!=SASL_OK)
- return SASL_NOMEM;
-
diff -r d7bb237f5e76 -r 2df28a5564aa security/cyrus-sasl/patches/patch-saslauthd_Makefile.in
--- a/security/cyrus-sasl/patches/patch-saslauthd_Makefile.in Thu Feb 24 09:55:40 2022 +0000
+++ /dev/null Thu Jan 01 00:00:00 1970 +0000
@@ -1,30 +0,0 @@
-$NetBSD: patch-saslauthd_Makefile.in,v 1.2 2018/04/17 01:57:18 christos Exp $
-
-* install man source into $(mandir)/man8 instead of catman.
- https://bugzilla.cyrusimap.org/show_bug.cgi?id=3740
-
---- saslauthd/Makefile.in.orig 2018-01-19 09:14:18.000000000 -0500
-+++ saslauthd/Makefile.in 2018-04-16 21:21:07.610121926 -0400
-@@ -89,8 +89,8 @@
- build_triplet = @build@
- host_triplet = @host@
- target_triplet = @target@
--sbin_PROGRAMS = saslauthd$(EXEEXT) testsaslauthd$(EXEEXT)
--EXTRA_PROGRAMS = saslcache$(EXEEXT)
-+sbin_PROGRAMS = saslauthd$(EXEEXT) testsaslauthd$(EXEEXT) saslcache$(EXEEXT)
-+#EXTRA_PROGRAMS = saslcache$(EXEEXT)
- subdir = saslauthd
- ACLOCAL_M4 = $(top_srcdir)/aclocal.m4
- am__aclocal_m4_deps = $(top_srcdir)/m4/ax_prog_cc_for_build.m4 \
-@@ -787,9 +787,9 @@
- saslauthd.8: saslauthd.mdoc
- nroff -mdoc $(srcdir)/saslauthd.mdoc > $(srcdir)/saslauthd.8
-
--install-data-local: saslauthd.8
-+install-data-local: saslauthd.mdoc
- $(mkinstalldirs) $(DESTDIR)$(mandir)/man8
-- $(INSTALL_DATA) $(srcdir)/saslauthd.8 $(DESTDIR)$(mandir)/man8/saslauthd.8
-+ $(INSTALL_DATA) $(srcdir)/saslauthd.mdoc $(DESTDIR)$(mandir)/man8/saslauthd.8
-
- uninstall-local:
- -rm -rf $(DESTDIR)$(mandir)/man8/saslauthd.8
diff -r d7bb237f5e76 -r 2df28a5564aa security/cyrus-saslauthd/Makefile
--- a/security/cyrus-saslauthd/Makefile Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cyrus-saslauthd/Makefile Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.56 2021/10/21 07:46:37 wiz Exp $
+# $NetBSD: Makefile,v 1.57 2022/02/24 11:00:04 wiz Exp $
PKGNAME= ${DISTNAME:S/sasl/saslauthd/}
-PKGREVISION= 2
CONFLICTS+= cyrus-sasl<2.1.15nb2
.include "../../security/cyrus-sasl/Makefile.common"
@@ -38,10 +37,6 @@
SUBST_SED.sysconf= -e "s,/usr/local/etc/,${PKG_SYSCONFDIR}/,g"
post-install:
- for f in saslcache ; do \
- ${INSTALL_PROGRAM} ${WRKSRC}/saslauthd/$$f \
- ${DESTDIR}${PREFIX}/bin/$$f; \
- done
.if !empty(PKG_OPTIONS:Mldap)
${INSTALL_DATA_DIR} ${DESTDIR}${PREFIX}/share/doc/cyrus-saslauthd
${INSTALL_DATA} ${WRKSRC}/saslauthd/LDAP_SASLAUTHD \
diff -r d7bb237f5e76 -r 2df28a5564aa security/cyrus-saslauthd/PLIST
--- a/security/cyrus-saslauthd/PLIST Thu Feb 24 09:55:40 2022 +0000
+++ b/security/cyrus-saslauthd/PLIST Thu Feb 24 11:00:03 2022 +0000
@@ -1,7 +1,6 @@
-@comment $NetBSD: PLIST,v 1.14 2018/04/17 01:57:18 christos Exp $
-bin/saslcache
+@comment $NetBSD: PLIST,v 1.15 2022/02/24 11:00:04 wiz Exp $
man/man8/saslauthd.8
-sbin/saslcache
+man/man8/testsaslauthd.8
sbin/saslauthd
sbin/testsaslauthd
${PLIST.ldap}share/doc/cyrus-saslauthd/LDAP_SASLAUTHD
Home |
Main Index |
Thread Index |
Old Index