projects / ravenports.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Ravenports generated: 20 Nov 2020 01:05
[ravenports.git] / bucket_AC / krb5
1 # Buildsheet autogenerated by ravenadm tool -- Do not edit.
2
3 NAMEBASE=               krb5
4 VERSION=                1.18.3
5 KEYWORDS=               security
6 VARIANTS=               standard
7 SDESC[standard]=        MIT Kerberos 5 authentication system
8 HOMEPAGE=               http://web.mit.edu/kerberos/www/
9 CONTACT=                nobody
10
11 DOWNLOAD_GROUPS=        main
12 SITES[main]=            https://web.mit.edu/kerberos/dist/krb5/1.18/
13 DISTFILE[1]=            krb5-1.18.3.tar.gz:main
14 DF_INDEX=               1
15 SPKGS[standard]=        complete
16                         primary
17                         nls
18                         examples
19                         docs
20
21 OPTIONS_AVAILABLE=      none
22 OPTIONS_STANDARD=       none
23
24 USES=                   cpe gmake perl:build libtool:build pkgconfig
25                         ssl:openssl-devel gettext-runtime gettext-tools
26                         readline
27
28 DISTNAME=               krb5-1.18.3/src
29
30 LICENSE=                MIT:primary
31 LICENSE_FILE=           MIT:{{WRKSRC}}/../NOTICE
32 LICENSE_SCHEME=         solo
33
34 CPE_PRODUCT=            kerberos
35 CPE_VENDOR=             mit
36 CPE_VERSION=            5-1.18.3
37 FPC_EQUIVALENT=         security/krb5
38
39 MUST_CONFIGURE=         gnu
40 CONFIGURE_ARGS=         --enable-shared
41                         --with-readline
42                         --without-system-verto
43                         --disable-rpath
44                         --localstatedir="{{PREFIX}}/var"
45                         --runstatedir="{{PREFIX}}/var/run"
46 CONFIGURE_ENV=          INSTALL="{{INSTALL}}"
47                         INSTALL_LIB="{{INSTALL_LIB}}"
48                         YACC="{{YACC}}"
49
50 MAKE_ARGS=              INSTALL="{{INSTALL}}"
51                         INSTALL_LIB="{{INSTALL_LIB}}"
52
53 RC_SUBR=                kpropd:primary
54
55 CPPFLAGS=               -I{{OPENSSLINC}}
56 LDFLAGS=                -L{{OPENSSLLIB}}
57
58 post-patch:
59         ${REINPLACE_CMD} -e "s|/usr/local|${PREFIX}|" \
60                 ${WRKSRC}/clients/ksu/Makefile.in
61
62 post-install:
63         ${MKDIR} ${STAGEDIR}${STD_DOCDIR}
64         # install PDF documentation
65         (cd ${WRKSRC}/../doc && \
66                 ${COPYTREE_SHARE} pdf ${STAGEDIR}${STD_DOCDIR})
67         # install HTML documentation
68         (cd ${WRKSRC}/../doc && \
69                 ${COPYTREE_SHARE} html ${STAGEDIR}${STD_DOCDIR} \
70                 "! -path 'html/_sources*'")
71         # remove cat directories
72         ${FIND} ${STAGEDIR}${PREFIX}/share/man -type d -empty -delete
73
74 [FILE:1253:descriptions/desc.primary]
75 Kerberos V5 is an authentication system developed at MIT.
76
77 Abridged from the User Guide:
78        Under Kerberos, a client sends a request for a ticket to the
79    Key Distribution Center (KDC). The KDC creates a ticket-granting
80    ticket (TGT) for the client, encrypts it using the client's
81    password as the key, and sends the encrypted TGT back to the
82    client. The client then attempts to decrypt the TGT, using
83    its password. If the client successfully decrypts the TGT, it
84    keeps the decrypted TGT, which indicates proof of the client's
85    identity. The TGT permits the client to obtain additional tickets,
86    which give permission for specific services.
87        Since Kerberos negotiates authenticated, and optionally encrypted,
88    communications between two points anywhere on the internet, it
89    provides a layer of security that is not dependent on which side of a
90    firewall either client is on.
91        The Kerberos V5 package is designed to be easy to use. Most of the
92    commands are nearly identical to UNIX network programs you are already
93    used to. Kerberos V5 is a single-sign-on system, which means that you
94    have to type your password only once per session, and Kerberos does
95    the authenticating and encrypting transparently.
96
97
98 [FILE:97:distinfo]
99 e61783c292b5efd9afb45c555a80dd267ac67eebabca42185362bee6c4fbd719      8715312 krb5-1.18.3.tar.gz
100
101
102 [FILE:2540:manifests/plist.primary]
103 bin/
104  compile_et
105  gss-client
106  k5srvutil
107  kadmin
108  kdestroy
109  kinit
110  klist
111  kpasswd
112  krb5-config
113 @(root,wheel,04755) bin/ksu
114  kswitch
115  ktutil
116  kvno
117  sclient
118  sim_client
119  uuclient
120 include/
121  com_err.h
122  gssapi.h
123  kdb.h
124  krad.h
125  krb5.h
126  profile.h
127  verto-module.h
128  verto.h
129 include/gssapi/
130  gssapi.h
131  gssapi_alloc.h
132  gssapi_ext.h
133  gssapi_generic.h
134  gssapi_krb5.h
135  mechglue.h
136 include/gssrpc/
137  auth.h
138  auth_gss.h
139  auth_gssapi.h
140  auth_unix.h
141  clnt.h
142  netdb.h
143  pmap_clnt.h
144  pmap_prot.h
145  pmap_rmt.h
146  rename.h
147  rpc.h
148  rpc_msg.h
149  svc.h
150  svc_auth.h
151  types.h
152  xdr.h
153 include/kadm5/
154  admin.h
155  chpass_util_strings.h
156  kadm_err.h
157 include/krb5/
158  ccselect_plugin.h
159  certauth_plugin.h
160  clpreauth_plugin.h
161  hostrealm_plugin.h
162  kadm5_auth_plugin.h
163  kadm5_hook_plugin.h
164  kdcpolicy_plugin.h
165  kdcpreauth_plugin.h
166  krb5.h
167  localauth_plugin.h
168  locate_plugin.h
169  plugin.h
170  preauth_plugin.h
171  pwqual_plugin.h
172 lib/
173  libcom_err.so
174  libcom_err.so.3
175  libcom_err.so.3.0
176  libgssapi_krb5.so
177  libgssapi_krb5.so.2
178  libgssapi_krb5.so.2.2
179  libgssrpc.so
180  libgssrpc.so.4
181  libgssrpc.so.4.2
182  libk5crypto.so
183  libk5crypto.so.3
184  libk5crypto.so.3.1
185  libkadm5clnt.so
186  libkadm5clnt_mit.so
187  libkadm5clnt_mit.so.12
188  libkadm5clnt_mit.so.12.0
189  libkadm5srv.so
190  libkadm5srv_mit.so
191  libkadm5srv_mit.so.12
192  libkadm5srv_mit.so.12.0
193  libkdb5.so
194  libkdb5.so.10
195  libkdb5.so.10.0
196  libkrad.so
197  libkrad.so.0
198  libkrad.so.0.0
199  libkrb5.so
200  libkrb5.so.3
201  libkrb5.so.3.3
202  libkrb5support.so
203  libkrb5support.so.0
204  libkrb5support.so.0.1
205  libverto.so
206  libverto.so.0
207  libverto.so.0.0
208 lib/krb5/plugins/kdb/db2.so
209 lib/krb5/plugins/preauth/
210  otp.so
211  pkinit.so
212  spake.so
213  test.so
214 lib/krb5/plugins/tls/k5tls.so
215 lib/pkgconfig/
216  gssrpc.pc
217  kadm-client.pc
218  kadm-server.pc
219  kdb.pc
220  krb5-gssapi.pc
221  krb5.pc
222  mit-krb5-gssapi.pc
223  mit-krb5.pc
224 sbin/
225  gss-server
226  kadmin.local
227  kadmind
228  kdb5_util
229  kprop
230  kpropd
231  kproplog
232  krb5-send-pr
233  krb5kdc
234  sim_server
235  sserver
236  uuserver
237 share/et/
238  et_c.awk
239  et_h.awk
240 share/man/man1/
241  compile_et.1.gz
242  k5srvutil.1.gz
243  kadmin.1.gz
244  kdestroy.1.gz
245  kinit.1.gz
246  klist.1.gz
247  kpasswd.1.gz
248  krb5-config.1.gz
249  ksu.1.gz
250  kswitch.1.gz
251  ktutil.1.gz
252  kvno.1.gz
253  sclient.1.gz
254 share/man/man3/com_err.3.gz
255 share/man/man5/
256  .k5identity.5.gz
257  .k5login.5.gz
258  k5identity.5.gz
259  k5login.5.gz
260  kadm5.acl.5.gz
261  kdc.conf.5.gz
262  krb5.conf.5.gz
263 share/man/man7/kerberos.7.gz
264 share/man/man8/
265  kadmin.local.8.gz
266  kadmind.8.gz
267  kdb5_ldap_util.8.gz
268  kdb5_util.8.gz
269  kprop.8.gz
270  kpropd.8.gz
271  kproplog.8.gz
272  krb5kdc.8.gz
273  sserver.8.gz
274 @dir lib/krb5/plugins/authdata
275 @dir lib/krb5/plugins/libkrb5
276 @dir var/krb5kdc
277 @dir var/run/krb5kdc
278
279
280 [FILE:83:manifests/plist.nls]
281 share/locale/de/LC_MESSAGES/mit-krb5.mo
282 share/locale/en_US/LC_MESSAGES/mit-krb5.mo
283
284
285 [FILE:59:manifests/plist.examples]
286 share/examples/krb5/
287  kdc.conf
288  krb5.conf
289  services.append
290
291
292 [FILE:271:patches/patch-clients_ksu_Makefile.in]
293 --- clients/ksu/Makefile.in.orig        2020-05-22 00:21:40 UTC
294 +++ clients/ksu/Makefile.in
295 @@ -30,6 +30,6 @@ clean:
296  
297  install:
298         -for f in ksu; do \
299 -         $(INSTALL_SETUID) $$f \
300 +         $(INSTALL_PROGRAM) $$f \
301                 $(DESTDIR)$(CLIENT_BINDIR)/`echo $$f|sed '$(transform)'`; \
302         done
303
304
305 [FILE:804:patches/patch-config__pre.in]
306 --- config/pre.in.orig  2020-05-22 00:21:40 UTC
307 +++ config/pre.in
308 @@ -181,9 +181,9 @@ LIBS = @LIBS@
309  INSTALL=@INSTALL@
310  INSTALL_STRIP=
311  INSTALL_PROGRAM=@INSTALL_PROGRAM@ $(INSTALL_STRIP)
312 -INSTALL_SCRIPT=@INSTALL_PROGRAM@
313 +INSTALL_SCRIPT=@INSTALL_SCRIPT@
314  INSTALL_DATA=@INSTALL_DATA@
315 -INSTALL_SHLIB=@INSTALL_SHLIB@
316 +INSTALL_SHLIB=$(INSTALL_LIB)
317  INSTALL_SETUID=$(INSTALL) $(INSTALL_STRIP) -m 4755 -o root
318  ## This is needed because autoconf will sometimes define @exec_prefix@ to be
319  ## ${prefix}.
320 @@ -204,6 +204,7 @@ PKGCONFIG_DIR = @libdir@/pkgconfig
321  ADMIN_MANDIR = $(KRB5MANROOT)/man8
322  SERVER_MANDIR = $(KRB5MANROOT)/man8
323  CLIENT_MANDIR = $(KRB5MANROOT)/man1
324 +SUBR_MANDIR = $(KRB5MANROOT)/man3
325  FILE_MANDIR = $(KRB5MANROOT)/man5
326  ADMIN_CATDIR = $(KRB5MANROOT)/cat8
327  SERVER_CATDIR = $(KRB5MANROOT)/cat8
328
329
330 [FILE:1172:patches/patch-config_shlib.conf]
331 --- config/shlib.conf.orig      2020-05-22 00:21:40 UTC
332 +++ config/shlib.conf
333 @@ -311,7 +311,7 @@ mips-*-netbsd*)
334         PROFFLAGS=-pg
335         ;;
336  
337 -*-*-freebsd*)
338 +*-*-freebsd* | *-*-dragonfly*)
339         case $krb5_cv_host in
340                 sparc64-*)
341                         PICFLAGS=-fPIC
342 @@ -320,14 +320,15 @@ mips-*-netbsd*)
343                         PICFLAGS=-fpic
344                         ;;
345         esac
346 -       SHLIBVEXT='.so.$(LIBMAJOR)'
347 -       RPATH_FLAG='-Wl,--enable-new-dtags -Wl,-rpath -Wl,'
348 +       SHLIBVEXT='.so.$(LIBMAJOR).$(LIBMINOR)'
349 +       SHLIBSEXT='.so.$(LIBMAJOR)'
350 +       LDCOMBINE='libtool --tag=CC --mode=link cc -Xcompiler -shared -Wl,-soname=$(LIBPREFIX)$(LIBBASE)$(SHLIBVEXT)'
351 +       RPATH_FLAG='-Wl,-rpath -Wl,'
352         PROG_RPATH_FLAGS='$(RPATH_FLAG)$(PROG_RPATH)'
353         CC_LINK_SHARED='$(CC) $(PROG_LIBPATH) $(PROG_RPATH_FLAGS) $(CFLAGS) $(LDFLAGS)'
354         CXX_LINK_SHARED='$(CXX) $(PROG_LIBPATH) $(PROG_RPATH_FLAGS) $(CXXFLAGS) $(LDFLAGS)'
355         SHLIBEXT=.so
356 -       LDCOMBINE='ld -Bshareable'
357 -       SHLIB_RPATH_FLAGS='--enable-new-dtags -rpath $(SHLIB_RDIRS)'
358 +       SHLIB_RPATH_FLAGS='-rpath $(SHLIB_RDIRS)'
359         SHLIB_EXPFLAGS='$(SHLIB_RPATH_FLAGS) $(SHLIB_DIRS) $(SHLIB_EXPLIBS)'
360         CC_LINK_STATIC='$(CC) $(PROG_LIBPATH) $(CFLAGS) $(LDFLAGS)'
361         CXX_LINK_STATIC='$(CXX) $(PROG_LIBPATH) $(CXXFLAGS) $(LDFLAGS)'
362
363
364 [FILE:243:patches/patch-include_gssrpc_rpc.h]
365 --- include/gssrpc/rpc.h.orig   2020-05-22 00:21:40 UTC
366 +++ include/gssrpc/rpc.h
367 @@ -39,6 +39,7 @@
368  #ifndef GSSRPC_RPC_H
369  #define GSSRPC_RPC_H
370  
371 +#include <sys/socket.h>
372  #include <gssrpc/types.h>              /* some typedefs */
373  #include <netinet/in.h>
374  
375
376
377 [FILE:2325:patches/patch-lib-krb5-os-localaddr.c]
378 --- lib/krb5/os/localaddr.c.orig        2020-05-22 00:21:40 UTC
379 +++ lib/krb5/os/localaddr.c
380 @@ -176,6 +176,7 @@ printaddr(struct sockaddr *sa)
381  }
382  #endif
383  
384 +#if 0
385  static int
386  is_loopback_address(struct sockaddr *sa)
387  {
388 @@ -192,6 +193,7 @@ is_loopback_address(struct sockaddr *sa)
389          return 0;
390      }
391  }
392 +#endif
393  
394  #ifdef HAVE_IFADDRS_H
395  #include <ifaddrs.h>
396 @@ -449,12 +451,14 @@ foreach_localaddr (/*@null@*/ void *data
397              ifp->ifa_flags &= ~IFF_UP;
398              continue;
399          }
400 +#if 0
401          if (is_loopback_address(ifp->ifa_addr)) {
402              /* Pretend it's not up, so the second pass will skip
403                 it.  */
404              ifp->ifa_flags &= ~IFF_UP;
405              continue;
406          }
407 +#endif
408          /* If this address is a duplicate, punt.  */
409          match = 0;
410          for (ifp2 = ifp_head; ifp2 && ifp2 != ifp; ifp2 = ifp2->ifa_next) {
411 @@ -583,11 +587,13 @@ foreach_localaddr (/*@null@*/ void *data
412              }
413              /*@=moduncon@*/
414  
415 +#if 0
416              /* None of the current callers want loopback addresses.  */
417              if (is_loopback_address((struct sockaddr *)&lifr->lifr_addr)) {
418                  Tprintf (("  loopback\n"));
419                  goto skip;
420              }
421 +#endif
422              /* Ignore interfaces that are down.  */
423              if ((lifreq.lifr_flags & IFF_UP) == 0) {
424                  Tprintf (("  down\n"));
425 @@ -754,11 +760,13 @@ foreach_localaddr (/*@null@*/ void *data
426              }
427              /*@=moduncon@*/
428  
429 +#if 0
430              /* None of the current callers want loopback addresses.  */
431              if (is_loopback_address(&lifr->iflr_addr)) {
432                  Tprintf (("  loopback\n"));
433                  goto skip;
434              }
435 +#endif
436              /* Ignore interfaces that are down.  */
437              if ((lifreq.iflr_flags & IFF_UP) == 0) {
438                  Tprintf (("  down\n"));
439 @@ -972,11 +980,13 @@ foreach_localaddr (/*@null@*/ void *data
440          }
441          /*@=moduncon@*/
442  
443 +#if 0
444          /* None of the current callers want loopback addresses.  */
445          if (is_loopback_address(&ifreq.ifr_addr)) {
446              Tprintf (("  loopback\n"));
447              goto skip;
448          }
449 +#endif
450          /* Ignore interfaces that are down.  */
451          if ((ifreq.ifr_flags & IFF_UP) == 0) {
452              Tprintf (("  down\n"));
453
454
455 [FILE:1247:patches/patch-plugins_preauth_pkinit_pkinit__crypto__openssl.c]
456 --- plugins/preauth/pkinit/pkinit_crypto_openssl.c.orig 2020-05-22 00:21:40 UTC
457 +++ plugins/preauth/pkinit/pkinit_crypto_openssl.c
458 @@ -185,7 +185,8 @@ pkinit_pkcs11_code_to_text(int err);
459      (*_x509_pp) = PKCS7_cert_from_signer_info(_p7,_si)
460  #endif
461  
462 -#if OPENSSL_VERSION_NUMBER < 0x10100000L
463 +#if (defined(OPENSSL_VERSION_NUMBER) && OPENSSL_VERSION_NUMBER < 0x10100000L) || \
464 +     defined(LIBRESSL_VERSION_NUMBER)
465  
466  /* 1.1 standardizes constructor and destructor names, renaming
467   * EVP_MD_CTX_{create,destroy} and deprecating ASN1_STRING_data. */
468 @@ -245,6 +246,10 @@ static void compat_dh_get0_key(const DH
469  
470  #endif
471  
472 +#if defined(LIBRESSL_VERSION_NUMBER) && !defined(static_ASN1_SEQUENCE_END_name)
473 +#define static_ASN1_SEQUENCE_END_name  ASN1_SEQUENCE_END_name
474 +#endif
475 +
476  static struct pkcs11_errstrings {
477      short code;
478      char *text;
479 @@ -2924,7 +2929,9 @@ cleanup:
480      return retval;
481  }
482  
483 -#if OPENSSL_VERSION_NUMBER >= 0x10100000L
484 +#if ((defined(OPENSSL_VERSION_NUMBER) && OPENSSL_VERSION_NUMBER >= 0x10100000L) && \
485 +     !defined(LIBRESSL_VERSION_NUMBER)) || \
486 +     (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER >= 0x20900000L)
487  
488  /*
489   * We need to decode DomainParameters from RFC 3279 section 2.3.3.  We would
490
491
492 [FILE:528:patches/patch-plugins_preauth_pkinit_pkinit__crypto__openssl.h]
493 --- plugins/preauth/pkinit/pkinit_crypto_openssl.h.orig 2020-05-22 00:21:40 UTC
494 +++ plugins/preauth/pkinit/pkinit_crypto_openssl.h
495 @@ -46,7 +46,9 @@
496  #include <openssl/asn1.h>
497  #include <openssl/pem.h>
498  
499 -#if OPENSSL_VERSION_NUMBER >= 0x10100000L
500 +#if ((defined(OPENSSL_VERSION_NUMBER) && OPENSSL_VERSION_NUMBER >= 0x10100000L) && \
501 +     !defined(LIBRESSL_VERSION_NUMBER)) || \
502 +     (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER >= 0x20900000L)
503  #include <openssl/asn1t.h>
504  #else
505  #include <openssl/asn1_mac.h>
506
507
508 [FILE:692:patches/patch-util_et_Makefile.in]
509 --- util/et/Makefile.in.orig    2020-05-22 00:21:40 UTC
510 +++ util/et/Makefile.in
511 @@ -111,12 +111,13 @@ check-windows: $(OUTPRE)test_et$(EXEEXT)
512         path
513         $(OUTPRE)test_et$(EXEEXT)
514  
515 -install-unix: compile_et compile_et.1
516 +install-unix: compile_et compile_et.1 com_err.3
517         $(INSTALL) compile_et $(DESTDIR)$(bindir)/compile_et
518         test -d $(DESTDIR)$(mydatadir) || mkdir $(DESTDIR)$(mydatadir)
519         $(INSTALL_DATA) $(srcdir)/et_c.awk $(DESTDIR)$(mydatadir)
520         $(INSTALL_DATA) $(srcdir)/et_h.awk $(DESTDIR)$(mydatadir)
521         $(INSTALL_DATA) $(srcdir)/compile_et.1 $(DESTDIR)$(CLIENT_MANDIR)/compile_et.1
522 +       $(INSTALL_DATA) $(srcdir)/com_err.3 $(DESTDIR)$(SUBR_MANDIR)/com_err.3
523  
524  
525  install-headers: compile_et
526
527
528 [FILE:496:files/kpropd.in]
529 #!/bin/sh
530 #
531 # PROVIDE: kpropd
532 # REQUIRE: LOGIN
533 # KEYWORD: shutdown
534 #
535 # Add the following lines to /etc/rc.conf.local or /etc/rc.conf
536 # to enable this service:
537 #
538 # kpropd_enable (bool):      Set to NO by default.
539 #                            Set it to YES to enable kpropd.
540 # kpropd_flags (str):        Set to "" by default.
541
542 . /etc/rc.subr
543
544 name=kpropd
545 rcvar=kpropd_enable
546
547 load_rc_config $name
548
549 : ${kpropd_enable:="NO"}
550 : ${kpropd_flags=""}
551
552 command=%%PREFIX%%/sbin/${name}
553
554 run_rc_command "$1"
555
RavenPorts alternative to DPorts