[gentoo-commits] gentoo-x86 commit in net-analyzer/tcpdump: ChangeLog tcpdump-4.6.2-r1.ebuild

Jeroen Roovers (jer) Wed, 07 Jan 2015 08:23:49 -0800

jer         15/01/07 16:23:14

  Modified:             ChangeLog
  Added:                tcpdump-4.6.2-r1.ebuild
  Log:
  Patches for multiple vulnerabilities (bug #534660).
  
  (Portage version: 2.2.15/cvs/Linux x86_64, signed Manifest commit with key 
A792A613)


Revision  Changes    Path
1.200                net-analyzer/tcpdump/ChangeLog

file : 
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-analyzer/tcpdump/ChangeLog?rev=1.200&view=markup
plain: 
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-analyzer/tcpdump/ChangeLog?rev=1.200&content-type=text/plain
diff : 
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-analyzer/tcpdump/ChangeLog?r1=1.199&r2=1.200

Index: ChangeLog
===================================================================
RCS file: /var/cvsroot/gentoo-x86/net-analyzer/tcpdump/ChangeLog,v
retrieving revision 1.199
retrieving revision 1.200
diff -u -r1.199 -r1.200
--- ChangeLog   7 Jan 2015 16:08:40 -0000       1.199
+++ ChangeLog   7 Jan 2015 16:23:14 -0000       1.200
@@ -1,6 +1,15 @@
 # ChangeLog for net-analyzer/tcpdump
 # Copyright 1999-2015 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/net-analyzer/tcpdump/ChangeLog,v 1.199 
2015/01/07 16:08:40 jer Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-analyzer/tcpdump/ChangeLog,v 1.200 
2015/01/07 16:23:14 jer Exp $
+
+*tcpdump-4.6.2-r1 (07 Jan 2015)
+
+  07 Jan 2015; Jeroen Roovers <[email protected]> +tcpdump-4.6.2-r1.ebuild,
+  +files/tcpdump-4.6.2-CVE-2014-8767.patch,
+  +files/tcpdump-4.6.2-CVE-2014-8768.patch,
+  +files/tcpdump-4.6.2-CVE-2014-8769.patch,
+  +files/tcpdump-4.6.2-CVE-2014-9140.patch:
+  Patches for multiple vulnerabilities (bug #534660).
 
 *tcpdump-9999 (07 Jan 2015)
 



1.1                  net-analyzer/tcpdump/tcpdump-4.6.2-r1.ebuild

file : 
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-analyzer/tcpdump/tcpdump-4.6.2-r1.ebuild?rev=1.1&view=markup
plain: 
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-analyzer/tcpdump/tcpdump-4.6.2-r1.ebuild?rev=1.1&content-type=text/plain

Index: tcpdump-4.6.2-r1.ebuild
===================================================================
# Copyright 1999-2015 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: 
/var/cvsroot/gentoo-x86/net-analyzer/tcpdump/tcpdump-4.6.2-r1.ebuild,v 1.1 
2015/01/07 16:23:14 jer Exp $

EAPI=5
inherit eutils flag-o-matic toolchain-funcs user

DESCRIPTION="A Tool for network monitoring and data acquisition"
HOMEPAGE="http://www.tcpdump.org/";
SRC_URI="http://www.tcpdump.org/release/${P}.tar.gz
                http://www.jp.tcpdump.org/release/${P}.tar.gz";

LICENSE="BSD"
SLOT="0"
KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~mips ~ppc ~ppc64 ~s390 ~sh 
~sparc ~x86 ~x86-fbsd ~x86-freebsd ~amd64-linux ~arm-linux ~x86-linux"
IUSE="+drop-root smi ssl ipv6 samba suid test"

RDEPEND="
        drop-root? ( sys-libs/libcap-ng )
        net-libs/libpcap
        smi? ( net-libs/libsmi )
        ssl? ( >=dev-libs/openssl-0.9.6m )
"
DEPEND="
        ${RDEPEND}
        drop-root? ( virtual/pkgconfig )
        test? (
                || ( app-arch/sharutils sys-freebsd/freebsd-ubin )
                dev-lang/perl
        )
"

pkg_setup() {
        if use drop-root || use suid; then
                enewgroup tcpdump
                enewuser tcpdump -1 -1 -1 tcpdump
        fi
}

src_prepare() {
        epatch "${FILESDIR}"/${P}-CVE-2014-{8767,8768,8769,9140}.patch
}

src_configure() {
        # tcpdump needs some optimization. see bug #108391
        # but do not replace -Os
        filter-flags -O[0-9]
        has -O? ${CFLAGS} || append-cflags -O2

        filter-flags -finline-functions

        if use drop-root; then
                append-cppflags -DHAVE_CAP_NG_H
                export LIBS=$( $(tc-getPKG_CONFIG) --libs libcap-ng )
        fi

        econf \
                $(use_enable ipv6) \
                $(use_enable samba smb) \
                $(use_with drop-root chroot '') \
                $(use_with smi) \
                $(use_with ssl crypto "${EPREFIX}/usr") \
                $(usex drop-root "--with-user=tcpdump" "")
}

src_test() {
        if [[ ${EUID} -ne 0 ]] || ! use drop-root; then
                sed -i -e '/^\(espudp1\|eapon1\)/d;' tests/TESTLIST || die
                emake check
        else
                ewarn "If you want to run the test suite, make sure you either"
                ewarn "set FEATURES=userpriv or set USE=-drop-root"
        fi
}

src_install() {
        dosbin tcpdump
        doman tcpdump.1
        dodoc *.awk
        dodoc CHANGES CREDITS README.md

        if use suid; then
                fowners root:tcpdump /usr/sbin/tcpdump
                fperms 4110 /usr/sbin/tcpdump
        fi
}

pkg_preinst() {
        if use drop-root || use suid; then
                enewgroup tcpdump
                enewuser tcpdump -1 -1 -1 tcpdump
        fi
}

pkg_postinst() {
        use suid && elog "To let normal users run tcpdump add them into tcpdump 
group."
}

[gentoo-commits] gentoo-x86 commit in net-analyzer/tcpdump: ChangeLog tcpdump-4.6.2-r1.ebuild

Reply via email to