From nobody Sun Oct 01 09:34:12 2023 X-Original-To: dev-commits-ports-all@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4RyzS41znvz4wXsD; Sun, 1 Oct 2023 09:34:12 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4RyzS41nHYz3XQZ; Sun, 1 Oct 2023 09:34:12 +0000 (UTC) (envelope-from git@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1696152852; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=oxIgMvZRXgnyOXjek6w/bzBTaa2HT3H9BYmDBq7NSSg=; b=b2YwQ3UuDZ7X4DL9660RvFTMelzKvujF0JAPf5C3Ds7gOFz+3Jza3ErCWlDwJD3GM5oxSt A55YydVVj7uMLqWULv48T7VTYwE1+/Xe8JnOh7NrrsPcDpa5UvrLDMl2y5VvGAqHr6yiaX UrAGqI+ygvWulGIraDjizlbi3lUBysHk7j4mPqoB7k5n72ZudU1GFfrErZywNePIN2rlcM mBodGhOcVBR38toF6VBy77+qZyLpQDuPnxEYL4FfDCerkpSZh1XQfJigJTU9qI0AXqCr+e CIHf5HXZx9L2xNleOwXI5odb30o4JblTIyqzvqPp1PxwHeBXuzEU2WZLmQeWdA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1696152852; a=rsa-sha256; cv=none; b=YGV2/QKYToVHQgfbo3Ve0Yei8nWhbwsE/NBVK+FbDGHEGgs7sAGUtBdi9e2N1yb5nvZSmZ +PGnYAZm+cGGf6ATc3Ol6F9CnCIDer0jUZtEd3X3JU0uIWG53BuZj6+8yk6/kCAiTa8ERr 3+6Sed001kzWxjDn4zZsx7B048yActarluF8+QcmUR5pXAiYm1GkFOW7H5fCUdt0Uwj1nO uZz0oGkaSPCw+0cgIA2YDtoPCtnYk9C0aMnSEBKtNCTH99LSJ/1ooGFNXCdNZ2g0fQHx3V gQh5T9w+GnYIEkEEumSIZW8b7sZZhMBVxeQVN9BzrKLiQDNHgoZP3OMJzVsBpQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1696152852; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=oxIgMvZRXgnyOXjek6w/bzBTaa2HT3H9BYmDBq7NSSg=; b=gZm3p0N7aFSUjlUBgVAxafON18NYv3lvHVmvnmYDFqvPx40RuD873bXOnMRvyBa2y61AIh kMUocq7OKRSrB3Yg8h+5cHAxdgbfztx3qHR8I1OCnXvhypKV5t+hrMiRUJUWhTjU4a8Yru lTbN2hJQ94IcW6JDccULD4BF+qUkA72Bj79vVS3vZ3+8mjtdqiHoYZy2xfK4A0eOzxJaZw IlK605/fBbuIdTHaa7ME5PaZln/b3i+uCFO9tM1UZt62ovHI+V7JVv68x4DLVuy/SoPT6S K68WUSFGgSabZI0VDY8V37tMCSkfg5KJlua7/F9l/Tehm7+ttjfJ2WtomLPOiw== Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4RyzS40rBcz9L6; Sun, 1 Oct 2023 09:34:12 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.17.1/8.17.1) with ESMTP id 3919YCGH008237; Sun, 1 Oct 2023 09:34:12 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.17.1/8.17.1/Submit) id 3919YCY5008234; Sun, 1 Oct 2023 09:34:12 GMT (envelope-from git) Date: Sun, 1 Oct 2023 09:34:12 GMT Message-Id: <202310010934.3919YCY5008234@gitrepo.freebsd.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org From: Rene Ladan Subject: git: 055f9a3cd96d - main - security/krb5-appl: Remove expired port List-Id: Commit messages for all branches of the ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-all List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-ports-all@freebsd.org X-BeenThere: dev-commits-ports-all@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: rene X-Git-Repository: ports X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: 055f9a3cd96d8358eee345fb279dd49183102cbc Auto-Submitted: auto-generated The branch main has been updated by rene: URL: https://cgit.FreeBSD.org/ports/commit/?id=055f9a3cd96d8358eee345fb279dd49183102cbc commit 055f9a3cd96d8358eee345fb279dd49183102cbc Author: Rene Ladan AuthorDate: 2023-10-01 09:33:38 +0000 Commit: Rene Ladan CommitDate: 2023-10-01 09:33:38 +0000 security/krb5-appl: Remove expired port 2023-10-01 security/krb5-appl: Desupported by upstream, uses old ciphers --- MOVED | 1 + security/Makefile | 1 - security/krb5-appl/Makefile | 124 --------------------- security/krb5-appl/distinfo | 2 - security/krb5-appl/files/README.FreeBSD | 32 ------ .../krb5-appl/files/patch-appl__bsd__Makefile.in | 12 -- .../krb5-appl/files/patch-appl__bsd__klogind.M | 26 ----- .../files/patch-appl__gssftp__ftp__ftp_var.h | 23 ---- .../files/patch-appl__telnet__telnetd__Makefile.in | 11 -- .../files/patch-appl__telnet__telnetd__telnetd.8 | 22 ---- .../files/patch-appl__telnet__telnetd__utility.c | 38 ------- security/krb5-appl/files/patch-bsd-krlogind.c | 26 ----- security/krb5-appl/files/patch-bsd-krshd.c | 13 --- security/krb5-appl/files/patch-bsd__login.c | 120 -------------------- .../krb5-appl/files/patch-gssftp__ftpd__ftpd.c | 17 --- .../krb5-appl/files/patch-gssftp__ftpd__logwtmp.c | 19 ---- security/krb5-appl/files/patch-libpty-logwtmp.c | 16 --- .../krb5-appl/files/patch-libpty-update_wtmp.c | 65 ----------- security/krb5-appl/files/patch-libpty__getpty.c | 50 --------- .../files/patch-telnet__telnet__Makefile.in | 10 -- security/krb5-appl/pkg-descr | 24 ---- security/krb5-appl/pkg-plist | 20 ---- 22 files changed, 1 insertion(+), 671 deletions(-) diff --git a/MOVED b/MOVED index d289cec20958..1b11c771b4a7 100644 --- a/MOVED +++ b/MOVED @@ -7928,3 +7928,4 @@ databases/percona57-server||2023-10-01|Has expired: Upstream EOL reaches on 2023 databases/percona57-client||2023-10-01|Has expired: Upstream EOL reaches on 2023-10-01 sysutils/nfs-over-tls||2023-10-01|Has expired: All supported releases of FreeBSD include this in base x11/antimicro|x11/antimicrox|2023-10-01|Has expired: Replaced by x11/antimicrox upstream no longer maintained +security/krb5-appl||2023-10-01|Has expired: Desupported by upstream, uses old ciphers diff --git a/security/Makefile b/security/Makefile index adba6386fe44..ea8e787c5200 100644 --- a/security/Makefile +++ b/security/Makefile @@ -270,7 +270,6 @@ SUBDIR += krb5-119 SUBDIR += krb5-120 SUBDIR += krb5-121 - SUBDIR += krb5-appl SUBDIR += krb5-devel SUBDIR += kstart SUBDIR += ktls_isa-l_crypto-kmod diff --git a/security/krb5-appl/Makefile b/security/krb5-appl/Makefile deleted file mode 100644 index 85a50750172e..000000000000 --- a/security/krb5-appl/Makefile +++ /dev/null @@ -1,124 +0,0 @@ -PORTNAME= krb5-appl -PORTVERSION= 1.0.3 -PORTREVISION= 4 -CATEGORIES= security -MASTER_SITES= http://web.mit.edu/kerberos/dist/${PORTNAME}/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/ -DISTNAME= ${PORTNAME}-${PORTVERSION}-signed -EXTRACT_SUFX= .tar - -PATCH_SITES= http://web.mit.edu/kerberos/advisories/ - -MAINTAINER= cy@FreeBSD.org -COMMENT= MIT implementation of RFC 4120 network authentication clients -WWW= https://web.mit.edu/kerberos/ - -DEPRECATED= Desupported by upstream, uses old ciphers -EXPIRATION_DATE= 2023-10-01 - -BUILD_DEPENDS= krb5-config:security/krb5 - -CONFLICTS= heimdal srp bsdftpd-ssl - -KERBEROSV_URL= http://web.mit.edu/kerberos/ -USES= autoreconf gmake ncurses perl5 gssapi:mit ssl -GNU_CONFIGURE= yes -USE_PERL5= build -USE_LDCONFIG= yes -USE_CSTD= gnu89 -CONFIGURE_ARGS?= --with-krb5=${KRB5_HOME} -CONFIGURE_ENV= INSTALL="${INSTALL}" YACC=/usr/bin/yacc -MAKE_ARGS= INSTALL="${INSTALL}" -PATCH_DIST_STRIP= -p1 - -OPTIONS_DEFINE= KRB5_RENAME_FTP KRB5_RENAME_TELNET KRB5_RENAME_RLOGIN KRB5_RENAME_RSH KRB5_RENAME_RCP -OPTIONS_DEFAULT= KRB5_PORT KRB5_RENAME_FTP KRB5_RENAME_TELNET \ - KRB5_RENAME_RLOGIN KRB5_RENAME_RSH KRB5_RENAME_RCP -KRB5_RENAME_FTP_DESC= Rename ftp to kftp -KRB5_RENAME_TELNET_DESC= Rename telnet to ktelnet -KRB5_RENAME_RLOGIN_DESC= Rename rlogin to krlogin -KRB5_RENAME_RSH_DESC= Rename rsh to krsh -KRB5_RENAME_RCP_DESC= Rename rcp to krcp -KRB5_PORT_DESC= Depend on security/krb5 - -.include - -KRB5_PORT_LIB_DEPENDS= libkrb5support.so:security/krb5 -KRB5_PORT_RUN_DEPENDS= kinit:security/krb5 - -KRB5_DOC_BUILD_DEPENDS+= texi2dvi:print/texinfo \ - dvips:print/dvipsk-tetex -KRB5_DOC_INFO= krb5-admin krb5-install krb5-user - -CFLAGS+= -I${PREFIX}/include -LDFLAGS+= -L${PREFIX}/lib - -.if ${PORT_OPTIONS:MKRB5_RENAME_FTP} -PROGRAM_TRANSFORM_NAME+= s/^ftp/kftp/; -PLIST_SUB+= FTP_PROG="kftp" -.else -PLIST_SUB+= FTP_PROG="ftp" -.endif - -.if ${PORT_OPTIONS:MKRB5_RENAME_TELNET} -PROGRAM_TRANSFORM_NAME+= s/^telnet/ktelnet/; -PLIST_SUB+= TELNET_PROG="ktelnet" -.else -PLIST_SUB+= TELNET_PROG="telnet" -.endif - -.if ${PORT_OPTIONS:MKRB5_RENAME_RLOGIN} -PLIST_SUB+= RLOGIN_PROG="krlogin" -PROGRAM_TRANSFORM_NAME+= s/^rlogin/krlogin/; -.else -PLIST_SUB+= RLOGIN_PROG="rlogin" -.endif - -.if ${PORT_OPTIONS:MKRB5_RENAME_RSH} -PLIST_SUB+= RSH_PROG="krsh" -PROGRAM_TRANSFORM_NAME+= s/^rsh/krsh/; -.else -PLIST_SUB+= RSH_PROG="rsh" -.endif - -.if ${PORT_OPTIONS:MKRB5_RENAME_RCP} -PROGRAM_TRANSFORM_NAME+= s/^rcp/krcp/; -PLIST_SUB+= RCP_PROG="krcp" -.else -PLIST_SUB+= RCP_PROG="rcp" -.endif - -.if ! ( ${PORT_OPTIONS:MKRB5_RENAME_RLOGIN} && \ - ${PORT_OPTIONS:MKRB5_RENAME_RSH} && \ - ${PORT_OPTIONS:MKRB5_RENAME_RCP} ) -CONFLICTS+= bsdrcmds-* -.endif - -.if defined(PROGRAM_TRANSFORM_NAME) && ${PROGRAM_TRANSFORM_NAME} != "" -CONFIGURE_ARGS+= --program-transform-name="${PROGRAM_TRANSFORM_NAME}" -.endif - -WRKSRC= ${WRKDIR}/${PORTNAME}-${PORTVERSION} - -HTML_DOC_DIR= ${WRKDIR}/${PORTNAME}-${PORTVERSION}/doc -HTML_DOCS= ftp.html kdestroy.html kinit.html klist.html \ - kpasswd.html krb5-admin.html \ - krb5-install.html krb5-user.html ksu.html \ - rcp.html rlogin.html rsh.html telnet.html - -CONFIGURE_ARGS+= CPPFLAGS="-I${OPENSSLINC} -L${OPENSSLLIB}" - -post-extract: - @${TAR} -C ${WRKDIR} -xzf ${WRKDIR}/${PORTNAME}-${PORTVERSION}.tar.gz --no-same-owner --no-same-permissions - @${RM} ${WRKDIR}/${PORTNAME}-${PORTVERSION}.tar.gz ${WRKDIR}/${PORTNAME}-${PORTVERSION}.tar.gz.asc - -post-install: - @${ECHO} "------------------------------------------------------" - @${ECHO} "This port of MIT Kerberos 5 includes remote login " - @${ECHO} "daemons (telnetd and klogind). These daemons default " - @${ECHO} "to using the system login program (/usr/bin/login). " - @${ECHO} "Please see the file " - @${ECHO} "${PREFIX}/share/doc/krb5/README.FreeBSD" - @${ECHO} "for more information. " - @${ECHO} "------------------------------------------------------" - -.include diff --git a/security/krb5-appl/distinfo b/security/krb5-appl/distinfo deleted file mode 100644 index b033954e2220..000000000000 --- a/security/krb5-appl/distinfo +++ /dev/null @@ -1,2 +0,0 @@ -SHA256 (krb5-appl-1.0.3-signed.tar) = feb88581eba566554ad515a6fcf18cee11e8409a2c4755bf5188db96f0b7f039 -SIZE (krb5-appl-1.0.3-signed.tar) = 634880 diff --git a/security/krb5-appl/files/README.FreeBSD b/security/krb5-appl/files/README.FreeBSD deleted file mode 100644 index e888e689eb04..000000000000 --- a/security/krb5-appl/files/README.FreeBSD +++ /dev/null @@ -1,32 +0,0 @@ -The MIT KRB5 port provides its own login program at -${PREFIX}/sbin/login.krb5. However, login.krb5 does not make use of -the FreeBSD login.conf and login.access files that provide a means of -setting up and controlling sessions under FreeBSD. To overcome this, -the MIT KRB5 port uses the FreeBSD /usr/bin/login program to provide -interactive login password authentication instead of the login.krb5 -program provided by MIT KRB5. The FreeBSD /usr/bin/login program does -not have support for Kerberos V password authentication, -e.g. authentication at the console. The pam_krb5 port must be used to -provide Kerberos V password authentication. - -For more information about pam_krb5, please see pam(8) and pam_krb5(8). - -If you wish to use login.krb5 that is provided by the MIT KRB5 port, -the arguments "-L ${PREFIX}/sbin/login.krb5" must be -specified as arguments to klogind and KRB5 telnetd, e.g. - -klogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -L ${PREFIX}/sbin/login.krb5 -eklogin stream tcp nowait root ${PREFIX}/sbin/klogind klogind -k -c -e -L ${PREFIX}/sbin/login.krb5 -telnet stream tcp nowait root ${PREFIX}/sbin/telnetd telnetd -a none -L ${PREFIX}/sbin/login.krb5 - -Additionally, if you wish to use the MIT KRB5 provided login.krb5 instead -of the FreeBSD provided /usr/bin/login for local tty logins, -"lo=${PREFIX}/sbin/login.krb5" must be specified in /etc/gettytab, e.g., - -default:\ - :cb:ce:ck:lc:fd#1000:im=\r\n%s/%m (%h) (%t)\r\n\r\n:sp#1200:\ - :if=/etc/issue:\ - :lo=${PREFIX}/sbin/login.krb5: - -It is recommended that the FreeBSD /usr/bin/login be used with the -pam_krb5 port instead of the MIT KRB5 provided login.krb5. diff --git a/security/krb5-appl/files/patch-appl__bsd__Makefile.in b/security/krb5-appl/files/patch-appl__bsd__Makefile.in deleted file mode 100644 index 2b7510072d90..000000000000 --- a/security/krb5-appl/files/patch-appl__bsd__Makefile.in +++ /dev/null @@ -1,12 +0,0 @@ ---- bsd/Makefile.in.orig Wed Feb 28 14:06:43 2001 -+++ bsd/Makefile.in Mon Dec 31 21:52:45 2001 -@@ -31,8 +31,8 @@ - -DUCB_RSH=\"$(UCB_RSH)\" -DUCB_RCP=\"$(UCB_RCP)\" - - DEFINES = $(RSH) $(BSD) $(RPROGS) -DKERBEROS \ -- -DLOGIN_PROGRAM=\"$(SERVER_BINDIR)/login.krb5\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" \ -+ -DLOGIN_PROGRAM=\"/usr/bin/login\" -DKPROGDIR=\"$(CLIENT_BINDIR)\" \ - -DHEIMDAL_FRIENDLY - - all:: rsh rcp rlogin kshd klogind login.krb5 $(V4RCP) - diff --git a/security/krb5-appl/files/patch-appl__bsd__klogind.M b/security/krb5-appl/files/patch-appl__bsd__klogind.M deleted file mode 100644 index 1d48bb21db10..000000000000 --- a/security/krb5-appl/files/patch-appl__bsd__klogind.M +++ /dev/null @@ -1,26 +0,0 @@ ---- bsd/klogind.M.orig 2008-12-15 12:29:01.000000000 -0800 -+++ bsd/klogind.M 2009-08-28 13:13:28.000000000 -0700 -@@ -13,7 +13,7 @@ - .B \-rcpPef - ] - [[ \fB\-w\fP[\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP ]] ] --[ \fB\-D\fP \fIport\fP ] -+[ \fB\-D\fP \fIport\fP ] [\fB\-L\fP \fIloginpath\fP] - .SH DESCRIPTION - .I Klogind - is the server for the -@@ -136,11 +136,9 @@ - .IP \fB\-M\ realm\fP - Set the Kerberos realm to use. - --.IP \fB\-L\ login\fP --Set the login program to use. This option only has an effect if --DO_NOT_USE_K_LOGIN was not defined when --.I klogind --was compiled. -+.IP \fB\-L\ loginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. - - .IP \fB\-D\ port\fP - Run in standalone mode, listening on \fBport\fP. The daemon will exit diff --git a/security/krb5-appl/files/patch-appl__gssftp__ftp__ftp_var.h b/security/krb5-appl/files/patch-appl__gssftp__ftp__ftp_var.h deleted file mode 100644 index efb2721cd5e8..000000000000 --- a/security/krb5-appl/files/patch-appl__gssftp__ftp__ftp_var.h +++ /dev/null @@ -1,23 +0,0 @@ ---- gssftp/ftp/ftp_var.h.orig Tue Jun 17 02:37:40 2003 -+++ gssftp/ftp/ftp_var.h Sat Aug 30 05:30:44 2003 -@@ -33,6 +33,10 @@ - * @(#)ftp_var.h 5.9 (Berkeley) 6/1/90 - */ - -+#if defined(__FreeBSD_cc_version) && __FreeBSD_cc_version > 500000 -+#undef __BSD_VISIBLE -+#endif -+ - #ifdef _WIN32 - #include - #include -@@ -57,9 +61,7 @@ - typedef void (*sig_t)(int); - typedef void sigtype; - #else --#define sig_t my_sig_t - #define sigtype krb5_sigtype --typedef sigtype (*sig_t)(); - #endif - - /* diff --git a/security/krb5-appl/files/patch-appl__telnet__telnetd__Makefile.in b/security/krb5-appl/files/patch-appl__telnet__telnetd__Makefile.in deleted file mode 100644 index 784cf5991d94..000000000000 --- a/security/krb5-appl/files/patch-appl__telnet__telnetd__Makefile.in +++ /dev/null @@ -1,11 +0,0 @@ ---- telnet/telnetd/Makefile.in.orig Wed Feb 28 14:06:51 2001 -+++ telnet/telnetd/Makefile.in Mon Dec 31 21:51:19 2001 -@@ -24,7 +24,7 @@ - # @(#)Makefile.generic 5.5 (Berkeley) 3/1/91 - # - --AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=\"$(SERVER_BINDIR)/login.krb5\" -+AUTH_DEF=-DAUTHENTICATION -DENCRYPTION -DKRB5 -DFORWARD -UNO_LOGIN_F -ULOGIN_CAP_F -DLOGIN_PROGRAM=\"/usr/bin/login\" - OTHERDEFS=-DKLUDGELINEMODE -DDIAGNOSTICS -DENV_HACK -DOLD_ENVIRON - LOCALINCLUDES=-I.. -I$(srcdir)/.. - DEFINES = -DTELNET_BUFSIZE=65535 $(AUTH_DEF) $(OTHERDEFS) diff --git a/security/krb5-appl/files/patch-appl__telnet__telnetd__telnetd.8 b/security/krb5-appl/files/patch-appl__telnet__telnetd__telnetd.8 deleted file mode 100644 index fc9068bd71f4..000000000000 --- a/security/krb5-appl/files/patch-appl__telnet__telnetd__telnetd.8 +++ /dev/null @@ -1,22 +0,0 @@ ---- telnet/telnetd/telnetd.8.orig Wed Feb 28 14:06:51 2001 -+++ telnet/telnetd/telnetd.8 Mon Dec 31 21:16:55 2001 -@@ -43,7 +43,7 @@ - [\fB\-k\fP] [\fB\-n\fP] [\fB\-r\fP\fIlowpty-highpty\fP] [\fB\-s\fP] - [\fB\-S\fP \fItos\fP] [\fB\-U\fP] [\fB\-X\fP \fIauthtype\fP] - [\fB\-w\fP [\fBip\fP|\fImaxhostlen\fP[\fB,\fP[\fBno\fP]\fBstriplocal\fP]]] --[\fB\-debug\fP [\fIport\fP]] -+[\fB\-debug\fP] [\fB\-L\fP \fIloginpath\fP] [\fIport\fP] - .SH DESCRIPTION - The - .B telnetd -@@ -221,6 +221,10 @@ - in response to a - .SM DO TIMING-MARK) - for kludge linemode support. -+.TP -+\fB\-L\fP \fIloginpath\fP -+Specify pathname to an alternative login program. Default: /usr/bin/login. -+KRB5_HOME/sbin/login.krb5 may be specified. - .TP - .B \-l - Specifies line mode. Tries to force clients to use line-at-a-time diff --git a/security/krb5-appl/files/patch-appl__telnet__telnetd__utility.c b/security/krb5-appl/files/patch-appl__telnet__telnetd__utility.c deleted file mode 100644 index 2e754e7294ba..000000000000 --- a/security/krb5-appl/files/patch-appl__telnet__telnetd__utility.c +++ /dev/null @@ -1,38 +0,0 @@ ---- telnet/telnetd/utility.c.orig Wed Jan 9 14:26:59 2002 -+++ telnet/telnetd/utility.c Fri Jan 11 13:10:33 2002 -@@ -408,18 +408,25 @@ - int - netwrite(const char *buf, size_t len) - { -- size_t remain; -+ int remaining, copied; -+ -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ while (len > 0) { -+ /* Free up enough space if the room is too low*/ -+ if ((len > BUFSIZ ? BUFSIZ : len) > remaining) { -+ netflush(); -+ remaining = BUFSIZ - (nfrontp - netobuf); -+ } - -- remain = sizeof(netobuf) - (nfrontp - netobuf); -- if (remain < len) { -- netflush(); -- remain = sizeof(netobuf) - (nfrontp - netobuf); -+ /* Copy out as much as will fit */ -+ copied = remaining > len ? len : remaining; -+ memmove(nfrontp, buf, copied); -+ nfrontp += copied; -+ len -= copied; -+ remaining -= copied; -+ buf += copied; - } -- if (remain < len) -- return 0; -- memcpy(nfrontp, buf, len); -- nfrontp += len; -- return len; -+ return copied; - } - - /* diff --git a/security/krb5-appl/files/patch-bsd-krlogind.c b/security/krb5-appl/files/patch-bsd-krlogind.c deleted file mode 100644 index a7afaf09e7c3..000000000000 --- a/security/krb5-appl/files/patch-bsd-krlogind.c +++ /dev/null @@ -1,26 +0,0 @@ ---- bsd/krlogind.c.orig 2009-11-21 12:29:19.000000000 -0800 -+++ bsd/krlogind.c 2011-08-31 21:05:10.318698837 -0700 -@@ -236,6 +236,9 @@ - #ifdef HAVE_UTMP_H - #include - #endif -+#ifdef HAVE_UTMPX_H -+#include -+#endif - - int non_privileged = 0; /* set when connection is seen to be from */ - /* a non-privileged port */ -@@ -275,8 +278,13 @@ - #define MAX_PROG_NAME 16 - - #ifndef UT_NAMESIZE /* linux defines it directly in */ -+#ifdef HAVE_UTMP_H - #define UT_NAMESIZE sizeof(((struct utmp *)0)->ut_name) - #endif -+#ifdef HAVE_UTMPX_H -+#define UT_NAMESIZE sizeof(((struct utmpx *)0)->ut_user) -+#endif -+#endif - - #if HAVE_ARPA_NAMESER_H - #include diff --git a/security/krb5-appl/files/patch-bsd-krshd.c b/security/krb5-appl/files/patch-bsd-krshd.c deleted file mode 100644 index f15bf6c523a5..000000000000 --- a/security/krb5-appl/files/patch-bsd-krshd.c +++ /dev/null @@ -1,13 +0,0 @@ ---- bsd/krshd.c.orig 2011-07-11 12:31:31.000000000 -0700 -+++ bsd/krshd.c 2011-11-16 13:01:40.184757547 -0800 -@@ -174,6 +174,10 @@ - #ifdef HAVE_UTMP_H - #include - #endif -+#ifdef HAVE_UTMPX_H -+#include -+#define UT_NAMESIZE sizeof(((struct utmpx *)0)->ut_user) -+#endif - - #ifndef UT_NAMESIZE /* linux defines it directly in */ - #define UT_NAMESIZE sizeof(((struct utmp *)0)->ut_name) diff --git a/security/krb5-appl/files/patch-bsd__login.c b/security/krb5-appl/files/patch-bsd__login.c deleted file mode 100644 index 15a341cdaf59..000000000000 --- a/security/krb5-appl/files/patch-bsd__login.c +++ /dev/null @@ -1,120 +0,0 @@ ---- bsd/login.c.orig 2009-11-21 12:29:19.000000000 -0800 -+++ bsd/login.c 2011-08-31 21:56:02.581035877 -0700 -@@ -86,7 +86,12 @@ - #include - - #include -+#ifdef HAVE_UTMP_H - #include -+#endif -+#ifdef HAVE_UTMPX_H -+#include -+#endif - #include - - #include -@@ -225,8 +230,13 @@ - #endif - #ifndef UT_NAMESIZE - /* linux defines it directly in */ -+#ifdef HAVE_UTMP_H - #define UT_NAMESIZE sizeof(((struct utmp *)0)->ut_name) - #endif -+#ifdef HAVE_UTMPX_H -+#define UT_NAMESIZE sizeof(((struct utmpx *)0)->ut_user) -+#endif -+#endif - - #ifndef HAVE_SETPRIORITY - /* if we don't have it, punt it cleanly */ -@@ -964,19 +974,6 @@ - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - } - -- /* Policy: If local password is good, user is good. -- We really can't trust the Kerberos password, -- because somebody on the net could spoof the -- Kerberos server (not easy, but possible). -- Some sites might want to use it anyways, in -- which case they should change this line -- to: -- if (kpass_ok) -- */ -- -- if (lpass_ok) -- break; -- - if (got_v5_tickets) { - retval = krb5_verify_init_creds(kcontext, &my_creds, NULL, - NULL, &xtra_creds, -@@ -993,6 +990,9 @@ - } - } - -+ if (lpass_ok) -+ break; -+ - bad_login: - setpriority(PRIO_PROCESS, 0, 0 + PRIO_OFFSET); - -@@ -1250,21 +1250,23 @@ - /* set up credential cache -- obeying KRB5_ENV_CCNAME - set earlier */ - /* (KRB5_ENV_CCNAME == "KRB5CCNAME" via osconf.h) */ -- if ((retval = krb5_cc_default(kcontext, &ccache))) { -+ if ((retval = krb5_cc_default(kcontext, &ccache))) - com_err(argv[0], retval, "while getting default ccache"); -- } else if ((retval = krb5_cc_initialize(kcontext, ccache, me))) { -- com_err(argv[0], retval, "when initializing cache"); -- } else if ((retval = krb5_cc_store_cred(kcontext, ccache, -- &my_creds))) { -- com_err(argv[0], retval, "while storing credentials"); -- } else if (xtra_creds && -- (retval = krb5_cc_copy_creds(kcontext, xtra_creds, -- ccache))) { -- com_err(argv[0], retval, "while storing credentials"); -+ else { -+ if (retval = krb5_cc_initialize(kcontext, ccache, me)) -+ com_err(argv[0], retval, "when initializing cache"); -+ else { -+ if (retval = krb5_cc_store_cred(kcontext, ccache, &my_creds)) -+ com_err(argv[0], retval, "while storing credentials"); -+ else { -+ if (xtra_creds && -+ (retval = krb5_cc_copy_creds(kcontext, xtra_creds, ccache))) { -+ com_err(argv[0], retval, "while storing credentials"); -+ krb5_cc_destroy(kcontext, xtra_creds); -+ } -+ } -+ } - } -- -- if (xtra_creds) -- krb5_cc_destroy(kcontext, xtra_creds); - } else if (forwarded_v5_tickets && rewrite_ccache) { - if ((retval = krb5_cc_initialize (kcontext, ccache, me))) { - syslog(LOG_ERR, -@@ -1322,6 +1324,7 @@ - - if (ccname) - setenv("KRB5CCNAME", ccname, 1); -+ krb5_cc_set_default_name(kcontext, ccname); - - setenv("HOME", pwd->pw_dir, 1); - setenv("PATH", LPATH, 0); -@@ -1652,6 +1655,7 @@ - int quiet; - char *tty; - { -+#if !(defined(__FreeBSD_version)) || (defined(__FreeBSD_version) && (__FreeBSD_version <= 900007)) - #if defined(HAVE_LASTLOG_H) || (defined(BSD) && (BSD >= 199103)) - struct lastlog ll; - time_t lltime; -@@ -1692,6 +1696,7 @@ - (void)close(fd); - } - #endif -+#endif - } - - #undef UNKNOWN diff --git a/security/krb5-appl/files/patch-gssftp__ftpd__ftpd.c b/security/krb5-appl/files/patch-gssftp__ftpd__ftpd.c deleted file mode 100644 index a8860362805b..000000000000 --- a/security/krb5-appl/files/patch-gssftp__ftpd__ftpd.c +++ /dev/null @@ -1,17 +0,0 @@ ---- gssftp/ftpd/ftpd.c.orig Wed Jan 9 14:26:51 2002 -+++ gssftp/ftpd/ftpd.c Thu Jan 10 19:00:13 2002 -@@ -487,7 +487,13 @@ - #ifndef LOG_DAEMON - #define LOG_DAEMON 0 - #endif -- openlog("ftpd", LOG_PID | LOG_NDELAY, LOG_DAEMON); -+ -+#ifndef LOG_FTP -+#define FACILITY LOG_DAEMON -+#else -+#define FACILITY LOG_FTP -+#endif -+ openlog("ftpd", LOG_PID | LOG_NDELAY, FACILITY); - - addrlen = sizeof (his_addr); - if (getpeername(0, (struct sockaddr *)&his_addr, &addrlen) < 0) { diff --git a/security/krb5-appl/files/patch-gssftp__ftpd__logwtmp.c b/security/krb5-appl/files/patch-gssftp__ftpd__logwtmp.c deleted file mode 100644 index 997041c77f9e..000000000000 --- a/security/krb5-appl/files/patch-gssftp__ftpd__logwtmp.c +++ /dev/null @@ -1,19 +0,0 @@ -*** gssftp/ftpd/logwtmp.c.ORIG Fri Feb 6 19:41:25 1998 ---- gssftp/ftpd/logwtmp.c Tue Jun 30 19:46:01 1998 -*************** -*** 66,72 **** - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMPFILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); ---- 66,72 ---- - struct stat buf; - time_t time(); - -! if (fd < 0 && (fd = open(WTMP_FILE, O_WRONLY|O_APPEND, 0)) < 0) - return; - if (fstat(fd, &buf) == 0) { - (void)strncpy(ut.ut_line, line, sizeof(ut.ut_line)); diff --git a/security/krb5-appl/files/patch-libpty-logwtmp.c b/security/krb5-appl/files/patch-libpty-logwtmp.c deleted file mode 100644 index b6af12eb74c6..000000000000 --- a/security/krb5-appl/files/patch-libpty-logwtmp.c +++ /dev/null @@ -1,16 +0,0 @@ ---- libpty/logwtmp.c.orig 2009-11-05 12:15:06.000000000 -0800 -+++ libpty/logwtmp.c 2011-08-31 20:37:06.438225202 -0700 -@@ -104,8 +104,13 @@ - ut.ut_host[sizeof(ut.ut_host) - 1] = '\0'; - #endif - strncpy(ut.ut_line, tty, sizeof(ut.ut_line)); -+#ifdef HAVE_UTMPX_H -+ strncpy(ut.ut_user, user, sizeof(ut.ut_user)); -+ return ptyint_update_wtmpx(&utx); -+#else - strncpy(ut.ut_name, user, sizeof(ut.ut_name)); - return ptyint_update_wtmp(&ut); -+#endif - - #endif /* !HAVE_LOGWTMP */ - } diff --git a/security/krb5-appl/files/patch-libpty-update_wtmp.c b/security/krb5-appl/files/patch-libpty-update_wtmp.c deleted file mode 100644 index 8aa80234fc9e..000000000000 --- a/security/krb5-appl/files/patch-libpty-update_wtmp.c +++ /dev/null @@ -1,65 +0,0 @@ ---- libpty/update_wtmp.c.orig 2009-11-05 12:15:06.000000000 -0800 -+++ libpty/update_wtmp.c 2011-08-31 20:51:26.695908790 -0700 -@@ -50,8 +50,13 @@ - ptyint_update_wtmpx(struct utmpx *ent) - { - #if !(defined(HAVE_UPDWTMPX) && defined(WTMPX_FILE)) -+#ifdef HAVE_UTMPX_H -+ struct utmpx ut; -+#endif -+#ifdef HAVE_UTMP_H - struct utmp ut; - #endif -+#endif - - #if defined(HAVE_UPDWTMPX) && defined(WTMPX_FILE) - updwtmpx(WTMPX_FILE, ent); -@@ -62,9 +67,17 @@ - getutmp(ent, &ut); - #else /* Emulate getutmp(). Yuck. */ - memset(&ut, 0, sizeof(ut)); -+#ifdef HAVE_UTMPX_H -+ strncpy(ut.ut_user, ent->ut_user, sizeof(ut.ut_user)); -+#else - strncpy(ut.ut_name, ent->ut_user, sizeof(ut.ut_name)); -+#endif - strncpy(ut.ut_line, ent->ut_line, sizeof(ut.ut_line)); -+#ifdef HAVE_UTMPX_H -+ ut.ut_tv.tv_sec = ent->ut_tv.tv_sec; -+#else - ut.ut_time = ent->ut_tv.tv_sec; -+#endif - #ifdef HAVE_STRUCT_UTMP_UT_HOST - strncpy(ut.ut_host, ent->ut_host, sizeof(ut.ut_host)); - ut.ut_host[sizeof(ut.ut_host) - 1] = '\0'; -@@ -88,7 +101,11 @@ - #endif - #endif /* !HAVE_GETUTMP */ - -+#ifdef HAVE_UTMP_H - return ptyint_update_wtmp(&ut); -+#else -+ return 0; -+#endif - #endif /* !(defined(WTMPX_FILE) && defined(HAVE_UPDWTMPX)) */ - } - -@@ -97,8 +114,13 @@ - #if !(defined(WTMPX_FILE) && defined(HAVE_UPDWTMPX)) \ - || !defined(HAVE_SETUTXENT) - -+#ifdef HAVE_UTMP_H - long - ptyint_update_wtmp(struct utmp *ent) -+#ifdef HAVE_SETUTXENT -+long ptyint_update_wtmpx(struct utmpx *utx); -+#endif -+ - { - #ifndef HAVE_UPDWTMP - int fd; -@@ -123,3 +145,4 @@ - } - - #endif -+#endif diff --git a/security/krb5-appl/files/patch-libpty__getpty.c b/security/krb5-appl/files/patch-libpty__getpty.c deleted file mode 100644 index 262474d0b4a7..000000000000 --- a/security/krb5-appl/files/patch-libpty__getpty.c +++ /dev/null @@ -1,50 +0,0 @@ ---- libpty/getpty.c.orig 2009-11-05 12:15:06.000000000 -0800 -+++ libpty/getpty.c 2010-04-21 21:36:45.637180364 -0700 -@@ -23,13 +23,26 @@ - #include "pty-int.h" - #include - -+#ifdef __FreeBSD__ -+#define PTYCHARS1 "pqrsPQRS" -+#define PTYCHARS2 "0123456789abcdefghijklmnopqrstuv" -+#endif -+ -+#ifndef PTYCHARS1 -+#define PTYCHARS1 "pqrstuvwxyzPQRST" -+#endif -+ -+#ifndef PTYCHARS2 -+#define PTYCHARS2 "0123456789abcdef" -+#endif -+ - long - ptyint_getpty_ext(int *fd, char *slave, size_t slavelength, int do_grantpt) - { -+ int ptynum; -+ char *cp1, *cp2; - #if !defined(HAVE__GETPTY) && !defined(HAVE_OPENPTY) -- char *cp; - char *p; -- int i,ptynum; - struct stat stb; - char slavebuf[1024]; - #endif -@@ -112,14 +125,14 @@ - strncpy(slave, slavebuf, slavelength); - return 0; - } else { -- for (cp = "pqrstuvwxyzPQRST";*cp; cp++) { -+ for (cp1 = PTYCHARS1; *cp1 != '\0'; cp1++) { - snprintf(slavebuf,sizeof(slavebuf),"/dev/ptyXX"); -- slavebuf[sizeof("/dev/pty") - 1] = *cp; -+ slavebuf[sizeof("/dev/pty") - 1] = *cp1; - slavebuf[sizeof("/dev/ptyp") - 1] = '0'; - if (stat(slavebuf, &stb) < 0) - break; -- for (i = 0; i < 16; i++) { -- slavebuf[sizeof("/dev/ptyp") - 1] = "0123456789abcdef"[i]; -+ for (cp2 = PTYCHARS2; *cp2 != '\0'; cp2++) { -+ slavebuf[sizeof("/dev/ptyp") - 1] = *cp2; - *fd = open(slavebuf, O_RDWR); - if (*fd < 0) continue; - diff --git a/security/krb5-appl/files/patch-telnet__telnet__Makefile.in b/security/krb5-appl/files/patch-telnet__telnet__Makefile.in deleted file mode 100644 index 915db004a33f..000000000000 --- a/security/krb5-appl/files/patch-telnet__telnet__Makefile.in +++ /dev/null @@ -1,10 +0,0 @@ ---- telnet/telnet/Makefile.in.orig Sat Dec 18 10:47:05 1999 -+++ telnet/telnet/Makefile.in Sat Dec 18 10:47:13 1999 -@@ -58,7 +58,6 @@ - $(INSTALL_DATA) $(srcdir)/$$f.1 \ - ${DESTDIR}$(CLIENT_MANDIR)/`echo $$f|sed '$(transform)'`.1; \ - done -- $(INSTALL_DATA) $(srcdir)/tmac.doc ${DESTDIR}$(CLIENT_MANDIR)/tmac.doc - - authenc.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) - commands.o: defines.h externs.h general.h ring.h types.h $(ARPA_TELNET) diff --git a/security/krb5-appl/pkg-descr b/security/krb5-appl/pkg-descr deleted file mode 100644 index 0c75f989b418..000000000000 --- a/security/krb5-appl/pkg-descr +++ /dev/null @@ -1,24 +0,0 @@ -Kerberos V5 is an authentication system developed at MIT. -This package/port contains the applications which used to be in the -MIT Kerberos distribution. -Abridged from the User Guide: - Under Kerberos, a client sends a request for a ticket to the - Key Distribution Center (KDC). The KDC creates a ticket-granting - ticket (TGT) for the client, encrypts it using the client's - password as the key, and sends the encrypted TGT back to the - client. The client then attempts to decrypt the TGT, using - its password. If the client successfully decrypts the TGT, it - keeps the decrypted TGT, which indicates proof of the client's - identity. The TGT permits the client to obtain additional tickets, - which give permission for specific services. - Since Kerberos negotiates authenticated, and optionally encrypted, - communications between two points anywhere on the internet, it - provides a layer of security that is not dependent on which side of a - firewall either client is on. - The Kerberos V5 package is designed to be easy to use. Most of the - commands are nearly identical to UNIX network programs you are already - used to. Kerberos V5 is a single-sign-on system, which means that you - have to type your password only once per session, and Kerberos does - the authenticating and encrypting transparently. - -Jacques Vidrine diff --git a/security/krb5-appl/pkg-plist b/security/krb5-appl/pkg-plist deleted file mode 100644 index 00b827c04578..000000000000 --- a/security/krb5-appl/pkg-plist +++ /dev/null @@ -1,20 +0,0 @@ -bin/%%FTP_PROG%% -bin/%%RCP_PROG%% -bin/%%RLOGIN_PROG%% -bin/%%RSH_PROG%% -bin/%%TELNET_PROG%% -man/man1/%%RSH_PROG%%.1.gz -man/man1/%%RCP_PROG%%.1.gz -man/man1/%%RLOGIN_PROG%%.1.gz -man/man1/%%FTP_PROG%%.1.gz -man/man1/%%TELNET_PROG%%.1.gz -man/man8/kshd.8.gz -man/man8/klogind.8.gz -man/man8/login.krb5.8.gz -man/man8/%%FTP_PROG%%d.8.gz -man/man8/%%TELNET_PROG%%d.8.gz -sbin/%%FTP_PROG%%d -sbin/klogind -sbin/kshd -sbin/login.krb5 -sbin/%%TELNET_PROG%%d