From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id DD1971395E2 for ; Mon, 21 Nov 2016 03:10:58 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 72FA8E0B76; Mon, 21 Nov 2016 03:10:56 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 48A35E0B76 for ; Mon, 21 Nov 2016 03:10:56 +0000 (UTC) Received: from oystercatcher.gentoo.org (unknown [IPv6:2a01:4f8:202:4333:225:90ff:fed9:fc84]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id D43F9341059 for ; Mon, 21 Nov 2016 03:10:54 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id BC24949E for ; Mon, 21 Nov 2016 03:10:52 +0000 (UTC) From: "Aaron Bauman" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Aaron Bauman" Message-ID: <1479697835.19eb6b32059e4c0351e7a4649cd9de2164ab91d5.bman@gentoo> Subject: [gentoo-commits] repo/gentoo:master commit in: net-irc/unrealircd/ X-VCS-Repository: repo/gentoo X-VCS-Files: net-irc/unrealircd/Manifest net-irc/unrealircd/unrealircd-3.2.10.4.ebuild X-VCS-Directories: net-irc/unrealircd/ X-VCS-Committer: bman X-VCS-Committer-Name: Aaron Bauman X-VCS-Revision: 19eb6b32059e4c0351e7a4649cd9de2164ab91d5 X-VCS-Branch: master Date: Mon, 21 Nov 2016 03:10:52 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: 6974162b-3b57-46f5-9b2f-2705ed85d7a9 X-Archives-Hash: 28c5e9f236dd991447ea44702fd80560 commit: 19eb6b32059e4c0351e7a4649cd9de2164ab91d5 Author: Aaron Bauman gentoo org> AuthorDate: Mon Nov 21 03:10:35 2016 +0000 Commit: Aaron Bauman gentoo org> CommitDate: Mon Nov 21 03:10:35 2016 +0000 URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=19eb6b32 net-irc/unrealircd: remove vulnerable wrt sec bug #593294 net-irc/unrealircd/Manifest | 1 - net-irc/unrealircd/unrealircd-3.2.10.4.ebuild | 213 -------------------------- 2 files changed, 214 deletions(-) diff --git a/net-irc/unrealircd/Manifest b/net-irc/unrealircd/Manifest index 6899878..29e7596 100644 --- a/net-irc/unrealircd/Manifest +++ b/net-irc/unrealircd/Manifest @@ -1,3 +1,2 @@ -DIST Unreal3.2.10.4.tar.gz 3540227 SHA256 5041b67745d0bd2072cf9b74c07853085b8b5b07330263f0986bdc56eda98aa8 SHA512 eeecefe79cadf3efa1b9379d4b675c0b86a2dd91e703f9e4b3998331f56b923d3719c67482f464f9b1699f801e0a83d677ada642ea7037c52a9d5db63abe6a5c WHIRLPOOL e52949bb6b20076d382825a841c8f643f1f64ac265d7f58898a6417c4853b569b8f561d5dccf198b4f006725e4be0636a2edb580023e8db62dadab8397d11975 DIST Unreal3.2.10.7.tar.gz 3539026 SHA256 472e12cd42d2e725a1795e2bead4786062775782bd015a07697c2edf400d4047 SHA512 7d5fd4729fdde56c6b3e38a93bc365857b5b4faf58cb39e844b43e87872623abc7527025247eeda8c8535576e2b1b8ef14d482c964ce940cafb5de77cc9e1667 WHIRLPOOL 48c578ba12a36ab8078b5569d5de05134699218a6265591aa9ce80614015d96c76624eda17c42b7301379ebbd48e1ea1a62360b624e1d482cbdae562905a95a2 DIST unrealircd-4.0.6.tar.gz 4877399 SHA256 0193754212e01eba96aed7c2fb2f1d022408f424d251e8b0db870e714c752f09 SHA512 3cf70334966b87902e4a94e391545549df96885ebec26f7d2ec3f2620e18c829c3f7f566b4c1a22c8bcf16d19fdcb35ed10e37d4ce981fe2decd3b90ff204486 WHIRLPOOL f415f846da32de33cc19e16c66af465e058b29184dfdb4624bc78b06e901bc4d5a98a15761fd2dc773715e39c272435de4bc24007db1c06291b15f0edff2d7ba diff --git a/net-irc/unrealircd/unrealircd-3.2.10.4.ebuild b/net-irc/unrealircd/unrealircd-3.2.10.4.ebuild deleted file mode 100644 index 621ae76..00000000 --- a/net-irc/unrealircd/unrealircd-3.2.10.4.ebuild +++ /dev/null @@ -1,213 +0,0 @@ -# Copyright 1999-2014 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Id$ - -EAPI=4 - -inherit eutils ssl-cert versionator multilib user - -MY_P=Unreal${PV/_/-} - -DESCRIPTION="An advanced Internet Relay Chat daemon" -HOMEPAGE="http://www.unrealircd.com/" -SRC_URI="http://www.unrealircd.com/downloads/${MY_P}.tar.gz" - -SLOT="0" -LICENSE="GPL-2" -KEYWORDS="amd64 ppc x86 ~x86-fbsd ~amd64-linux" -IUSE="class-nofakelag curl ipv6 +extban-stacking +operoverride operoverride-verify +prefixaq - showlistmodes shunnotices ssl topicisnuhost +usermod zlib" - -RDEPEND="ssl? ( dev-libs/openssl ) - zlib? ( sys-libs/zlib ) - curl? ( net-misc/curl[adns] ) - dev-libs/tre - >=net-dns/c-ares-1.7" -DEPEND="${RDEPEND} - >=sys-apps/sed-4 - virtual/pkgconfig" - -S=${WORKDIR}/Unreal${PV} - -pkg_setup() { - enewuser unrealircd -} - -src_prepare() { - # QA check against bundled pkgs - rm extras/*.gz || die - - sed -i \ - -e "s:ircd\.pid:${EPREFIX}/var/run/unrealircd/ircd.pid:" \ - -e "s:ircd\.log:${EPREFIX}/var/log/unrealircd/ircd.log:" \ - -e "s:debug\.log:${EPREFIX}/var/log/unrealircd/debug.log:" \ - -e "s:ircd\.tune:${EPREFIX}/var/lib/unrealircd/ircd.tune:" \ - include/config.h \ - || die "sed failed" - - if use class-nofakelag; then - sed -i -e 's:#undef\( FAKELAG_CONFIGURABLE\):#define\1:' include/config.h || die - fi -} - -src_configure() { - econf \ - --with-listen=5 \ - --with-dpath="${EPREFIX}"/etc/unrealircd \ - --with-spath="${EPREFIX}"/usr/bin/unrealircd \ - --with-nick-history=2000 \ - --with-sendq=3000000 \ - --with-bufferpool=18 \ - --with-permissions=0600 \ - --with-fd-setsize=1024 \ - --with-system-cares \ - --with-system-tre \ - --enable-dynamic-linking \ - $(use_enable curl libcurl "${EPREFIX}"/usr) \ - $(use_enable ipv6 inet6) \ - $(use_enable prefixaq) \ - $(use_enable ssl ssl "${EPREFIX}"/usr) \ - $(use_enable zlib ziplinks "${EPREFIX}"/usr) \ - $(use_with showlistmodes) \ - $(use_with topicisnuhost) \ - $(use_with shunnotices) \ - $(use_with !operoverride no-operoverride) \ - $(use_with operoverride-verify) \ - $(use_with !usermod disableusermod) \ - $(use_with !extban-stacking disable-extendedban-stacking) -} - -src_install() { - keepdir /var/{lib,log}/unrealircd - - newbin src/ircd unrealircd - - exeinto /usr/$(get_libdir)/unrealircd/modules - doexe src/modules/*.so - - dodir /etc/unrealircd - dosym /var/lib/unrealircd /etc/unrealircd/tmp - - insinto /etc/unrealircd - doins {badwords.*,help,spamfilter,dccallow}.conf - newins doc/example.conf unrealircd.conf - - insinto /etc/unrealircd/aliases - doins aliases/*.conf - - local so_suffix=so - [[ ${CHOST} == -*mingw* ]] && so_suffix=dll - sed -i \ - -e s:src/modules:"${EPREFIX}"/usr/$(get_libdir)/unrealircd/modules: \ - -e '/loadmodule.*\.'${so_suffix}'/s;^//;;' \ - -e s:ircd\\.log:"${EPREFIX}"/var/log/unrealircd/ircd.log: \ - "${ED}"/etc/unrealircd/unrealircd.conf \ - || die - - dodoc \ - Changes Donation Unreal.nfo \ - ircdcron/{ircd.cron,ircdchk} \ - || die "dodoc failed" - dohtml doc/*.html - - newinitd "${FILESDIR}"/unrealircd.initd unrealircd - newconfd "${FILESDIR}"/unrealircd.confd-r1 unrealircd - - # config should be read-only - fperms -R 0640 /etc/unrealircd{,/aliases} - fperms 0750 /etc/unrealircd{,/aliases} - # state is editable but not owned by unrealircd directly - fperms 0770 /var/{lib,log}/unrealircd - fowners -R root:unrealircd /{etc,var/{lib,log}}/unrealircd -} - -pkg_preinst() { - # Must pre-create directories; otherwise their permissions are lost - # on installation. - - # Usage: _unrealircd_dir_permissions [, …] - # - # Ensure that directories are created with the correct permissions - # before portage tries to merge them to the filesystem because, - # otherwise, those directories are installed world-readable. - # - # If this is a first-time install, create those directories with - # correct permissions before installing. Otherwise, update - # permissions—but only if we are replacing an unrealircd ebuild at - # least as old as net-irc/unrealircd-3.2.10. Portage handles normal - # file permissions correctly, so no need for recursive - # chmoding/chowning. - _unrealircd_dir_permissions() { - local user=${1} group=${2} mode=${3} dir v - shift 3 - while dir=${1} && shift; do - if [[ ! -d "${EROOT}${dir}" ]]; then - ebegin "Creating ${EROOT}${dir} with correct permissions" - install -d -m "${mode}" -o "${user}" -g "${group}" "${EROOT}${dir}" || die - eend ${?} - elif ! [[ ${REPLACING_VERSIONS} ]] || for v in ${REPLACING_VERSIONS}; do - # If 3.2.10 ≤ ${REPLACING_VERSIONS}, then we update - # existing permissions. - version_is_at_least "${v}" 3.2.10 && break - done; then - ebegin "Correcting permissions of ${EROOT}${dir} left by ${CATEGORY}/${PN}-${v}" - chmod "${mode}" "${EROOT}${dir}" \ - && chown ${user}:${group} "${EROOT}${dir}" \ - || die "Unable to correct permissions of ${EROOT}${dir}" - eend ${?} - fi - done - } - - # unrealircd only needs to be able to read files in /etc/unrealircd. - _unrealircd_dir_permissions root unrealircd 0750 etc/unrealircd{,/aliases} - - # unrealircd needs to be able to create files in /var/lib/unrealircd - # and /var/log/unrealircd. - _unrealircd_dir_permissions root unrealircd 0770 var/{lib,log}/unrealircd -} - -pkg_postinst() { - # Move docert call from scr_install() to install_cert in pkg_postinst for - # bug #201682 - if use ssl ; then - if [[ ! -f "${EROOT}"/etc/unrealircd/server.cert.key ]]; then - install_cert /etc/unrealircd/server.cert - chown unrealircd "${EROOT}"/etc/unrealircd/server.cert.* - chmod 0640 "${EROOT}"/etc/unrealircd/server.cert.* - ln -snf server.cert.key "${EROOT}"/etc/unrealircd/server.key.pem - fi - fi - - local unrealircd_conf="${EROOT}"/etc/unrealircd/unrealircd.conf - # Fix up the default cloak keys. - if grep -qe '"and another one";$' "${unrealircd_conf}" && grep -qe '"aoAr1HnR6gl3sJ7hVz4Zb7x4YwpW";$' "${unrealircd_conf}"; then - ebegin "Generating cloak-keys" - local keys=( - $(unrealircd -k 2>&1 | tail -n 3) - ) - [[ -n ${keys[0]} || -n ${keys[1]} || -n ${keys[2]} ]] - eend $? - - ebegin "Substituting cloak-keys into ${unrealircd_conf}" - sed -i \ - -e '/cloak-keys/ { -n -s/"aoAr1HnR6gl3sJ7hVz4Zb7x4YwpW";/"'"${keys[0]}"'";/ -n -s/"and another one";/"'"${keys[1]}"'";/ -n -s/"and another one";/"'"${keys[2]}"'";/ -}' \ - "${unrealircd_conf}" - eend $? - fi - - elog "UnrealIRCd will not run until you've set up /etc/unrealircd/unrealircd.conf" - elog - elog "You can find example cron scripts here:" - elog " /usr/share/doc/${PF}/ircd.cron.gz" - elog " /usr/share/doc/${PF}/ircdchk.gz" - elog - elog "You can also use /etc/init.d/unrealircd to start at boot" -}