From dae8156e2451ae4aeb99388a6f537bdc867b916d Mon Sep 17 00:00:00 2001 From: Tavis Ormandy Date: Fri, 5 Jan 2007 10:40:56 +0000 Subject: [PATCH] #152173 start using /lib as libskey is used by critical services Package-Manager: portage-2.1.1-r1 --- app-admin/skey/Manifest | 15 ++- app-admin/skey/files/digest-skey-1.1.5-r6 | 6 ++ app-admin/skey/skey-1.1.5-r6.ebuild | 113 ++++++++++++++++++++++ 3 files changed, 130 insertions(+), 4 deletions(-) create mode 100644 app-admin/skey/files/digest-skey-1.1.5-r6 create mode 100644 app-admin/skey/skey-1.1.5-r6.ebuild diff --git a/app-admin/skey/Manifest b/app-admin/skey/Manifest index 9942785690e2..d10fa4972148 100644 --- a/app-admin/skey/Manifest +++ b/app-admin/skey/Manifest @@ -23,6 +23,10 @@ EBUILD skey-1.1.5-r5.ebuild 3053 RMD160 1456b0941e0ee74fe40057e55b8433253599617a MD5 f857d2bf1db14d1928e2201ee9073552 skey-1.1.5-r5.ebuild 3053 RMD160 1456b0941e0ee74fe40057e55b8433253599617a skey-1.1.5-r5.ebuild 3053 SHA256 83a9b91082827c50b1fc50c7d0561ab0a77521a59a3aca60a1f72d0b0e4264f9 skey-1.1.5-r5.ebuild 3053 +EBUILD skey-1.1.5-r6.ebuild 3104 RMD160 c1d6c1cf929aeadddfaa50eefe1e37b5932b1a1e SHA1 cdbdfc2f7941398612e93b7dc623aebedf227510 SHA256 32ce27cc02ced5a8eff8c653e634979732f7c47227cde8f914bcfd45b949fd1c +MD5 fa73e9a60cbb7e67333506b9bbcb3b2d skey-1.1.5-r6.ebuild 3104 +RMD160 c1d6c1cf929aeadddfaa50eefe1e37b5932b1a1e skey-1.1.5-r6.ebuild 3104 +SHA256 32ce27cc02ced5a8eff8c653e634979732f7c47227cde8f914bcfd45b949fd1c skey-1.1.5-r6.ebuild 3104 MISC ChangeLog 5932 RMD160 001ee90adb89f1420c16b31f7ffbdfc3dd7f3434 SHA1 2a65b9f6c16ac34dff624ec724dd4426286e3984 SHA256 d84afc649b32a9836214e9f3ed6f630643b99465d33204fc9ac5352f77981650 MD5 34b13324c3a18dae93a44cbcac63932e ChangeLog 5932 RMD160 001ee90adb89f1420c16b31f7ffbdfc3dd7f3434 ChangeLog 5932 @@ -34,10 +38,13 @@ SHA256 5650205102b6d909cee208a609fbaa675379e465e206abcf929a99f65501fb65 metadata MD5 e4aa89421b58d537ac5f277164bed323 files/digest-skey-1.1.5-r5 485 RMD160 1233b5e1602a526ae89484f05f1b2819bbb2001c files/digest-skey-1.1.5-r5 485 SHA256 fc26bd411a135df245147e1b2693be6d9ade7cd564cbe06fac2cb6777c33fe1c files/digest-skey-1.1.5-r5 485 +MD5 e4aa89421b58d537ac5f277164bed323 files/digest-skey-1.1.5-r6 485 +RMD160 1233b5e1602a526ae89484f05f1b2819bbb2001c files/digest-skey-1.1.5-r6 485 +SHA256 fc26bd411a135df245147e1b2693be6d9ade7cd564cbe06fac2cb6777c33fe1c files/digest-skey-1.1.5-r6 485 -----BEGIN PGP SIGNATURE----- -Version: GnuPG v1.4.4 (GNU/Linux) +Version: GnuPG v1.4.6 (GNU/Linux) -iD8DBQFEurUWamhnQswr0vIRAgYxAJ4whApVuHBWSqEUA9sUzHeE1R47ngCdEhRs -Tp26yOvvfoacOdA9G5RB+eg= -=DOVE +iQBVAwUBRZ4rSdommWwmkP1xAQKs1AIAlidPTL6wxub7Tgcc9U1ubkvE/7EGditT +HSilSPAMwRR90k9KSaCzbBuKWOAk4NJKGH/IrFEcjMoEsP0wQ8yxMA== +=Hzsu -----END PGP SIGNATURE----- diff --git a/app-admin/skey/files/digest-skey-1.1.5-r6 b/app-admin/skey/files/digest-skey-1.1.5-r6 new file mode 100644 index 000000000000..c2674aff3284 --- /dev/null +++ b/app-admin/skey/files/digest-skey-1.1.5-r6 @@ -0,0 +1,6 @@ +MD5 c862d14e1478ec91ed4c5b97f124ea08 skey-1.1.5-gentoo.diff.gz 37614 +RMD160 997002ac7e2481ec5158db3b2c7280bc80d5c95b skey-1.1.5-gentoo.diff.gz 37614 +SHA256 1f4cb9d403c2cd054a451f4d790cbeac68d31f11d0df1588c2bfb769137444a2 skey-1.1.5-gentoo.diff.gz 37614 +MD5 af816298e3a0bc722380d0fe480189d9 skey-1.1.5.tar.bz2 61911 +RMD160 33d97cbcd6dbc91bdca5b27056d51d1f5d06b68d skey-1.1.5.tar.bz2 61911 +SHA256 e21bcb7c618c0bc87a72d8f0f097d7517fffa4e881a0f295ee1ce2a7dccf4aef skey-1.1.5.tar.bz2 61911 diff --git a/app-admin/skey/skey-1.1.5-r6.ebuild b/app-admin/skey/skey-1.1.5-r6.ebuild new file mode 100644 index 000000000000..ad9b5a0a5737 --- /dev/null +++ b/app-admin/skey/skey-1.1.5-r6.ebuild @@ -0,0 +1,113 @@ +# Copyright 1999-2007 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/app-admin/skey/skey-1.1.5-r6.ebuild,v 1.1 2007/01/05 10:40:56 taviso Exp $ + +inherit flag-o-matic ccc eutils + +DESCRIPTION="Linux Port of OpenBSD Single-key Password System" +HOMEPAGE="http://www.sparc.spb.su/solaris/skey/" +SRC_URI="mirror://gentoo/${P}.tar.bz2 + mirror://gentoo/skey-1.1.5-gentoo.diff.gz" + +LICENSE="BSD X11" +SLOT="0" +KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86" +IUSE="" + +DEPEND="dev-lang/perl" +RDEPEND="${DEPEND} + sys-libs/cracklib" + +src_unpack() { + unpack ${A} + cd "${S}" + + # porting some updates to this skey implementation from the + # NetBSD project, some other updates and fixes, and the addition + # of some new features like shadow password and cracklib support. + # (05 Nov 2003) -taviso@gentoo.org + epatch "${WORKDIR}"/skey-1.1.5-gentoo.diff + + # glibc 2.2.x does not define LOGIN_NAME_MAX #33315 + # (12 Nov 2003) -taviso@gentoo.org + epatch "${FILESDIR}"/skey-login_name_max.diff + + epatch "${FILESDIR}"/${P}-fPIC.patch + epatch "${FILESDIR}"/${P}-bind-now.patch + + # allow invokation as otp-foo. #71015 + # (03 Mar 2005) -taviso. + epatch "${FILESDIR}"/${P}-otp.diff + + # set the default hash function to md5, #63995 + # (14 Sep 2004) -taviso + append-flags -DSKEY_HASH_DEFAULT=1 + + # skeyprune wont honour @sysconfdir@ + sed -i \ + -e 's:/etc/skeykeys:/etc/skey/skeykeys:g' \ + skeyprune.pl skeyprune.8 || die + + # skeyprune uses a case sensitive regex to check for zeroed entries + sed -i \ + -e 's:\(if ( ! /.*/\):\1i:g' \ + skeyprune.pl || die + + # skeyinit(1) describes md4 as the default hash algorithm, which + # is no longer the case. #64971 + sed -i \ + 's#\(md4\) \((the default)\), \(md5\) or \(sha1.\)#\1, \3 \2 or \4#g' \ + skeyinit.1 +} + +src_compile() { + econf --sysconfdir=/etc/skey || die + emake || die +} + +src_install() { + doman skey.1 skeyaudit.1 skeyinfo.1 skeyinit.1 skeyprune.8 + dobin skey skeyinit skeyinfo || die + + dosym skey /usr/bin/otp-md4 + dosym skey /usr/bin/otp-sha1 + dosym skey /usr/bin/otp-md5 + + newsbin skeyprune.pl skeyprune + newbin skeyaudit.sh skeyaudit + + dolib.a libskey.a + + into / + dolib.so libskey.so.1.1.5 libskey.so.1.1 libskey.so.1 libskey.so || die + gen_usr_ldscript libskey.so + + insinto /usr/include + doins skey.h + + dodir /etc/skey + + # only root needs to have access to these files. + fperms g-rx,o-rx /etc/skey + + # skeyinit and skeyinfo must be suid root so users + # can generate their passwords. + fperms u+s,og-r /usr/bin/skeyinit /usr/bin/skeyinfo + + dodoc README CHANGES +} + +pkg_postinst() { + # do not include /etc/skey/skeykeys in the package, as quickpkg + # may package sensitive information. + # This also fixes the etc-update issue with #64974. + + # skeyinit will not function if this file is not present. + touch /etc/skey/skeykeys + + # these permissions are applied by the skey system if missing. + chmod 0600 /etc/skey/skeykeys + + einfo "For an instroduction into using s/key authentication, take" + einfo "a look at the EXAMPLES section from the skey(1) manpage." +} -- 2.26.2