Hi, here's a quick update to memcached 1.4.39 (fixes a CVE, cf https://github.com/memcached/memcached/wiki/ReleaseNotes1439)
Added rc script bits to create var/run/memcached with the correct perms, and documented in README how to make it listen on a unixsock instead of localhost/network. Works fine with sogod, once you add _sogo user to _memcached group (usermod -G _memcached _sogo) and configure SOGoMemcachedHost = /var/run/memcached/sock in sogo.conf. sogod [69263]: <0x0x156ae6f0e310[SOGoCache]> Using host(s) '/var/run/memcached/sock' as server(s) ok ? Landry
Index: Makefile =================================================================== RCS file: /cvs/ports/misc/memcached/Makefile,v retrieving revision 1.37 diff -u -r1.37 Makefile --- Makefile 1 Jul 2017 13:54:39 -0000 1.37 +++ Makefile 17 Jul 2017 08:16:10 -0000 @@ -2,7 +2,7 @@ COMMENT= distributed memory object caching system -DISTNAME= memcached-1.4.38 +DISTNAME= memcached-1.4.39 CATEGORIES= misc HOMEPAGE= http://www.memcached.org/ Index: distinfo =================================================================== RCS file: /cvs/ports/misc/memcached/distinfo,v retrieving revision 1.23 diff -u -r1.23 distinfo --- distinfo 1 Jul 2017 13:54:39 -0000 1.23 +++ distinfo 17 Jul 2017 08:16:10 -0000 @@ -1,2 +1,2 @@ -SHA256 (memcached-1.4.38.tar.gz) = 49BqPT+6slcydiMvCyWgeJ16sSQqF1DQqwSddCd274Y= -SIZE (memcached-1.4.38.tar.gz) = 403618 +SHA256 (memcached-1.4.39.tar.gz) = I8S/fHh+T9mnsKe2Gz/8s3TuhvnMALqJLOU+7ECv1zU= +SIZE (memcached-1.4.39.tar.gz) = 403751 Index: patches/patch-memcached_c =================================================================== RCS file: /cvs/ports/misc/memcached/patches/patch-memcached_c,v retrieving revision 1.12 diff -u -r1.12 patch-memcached_c --- patches/patch-memcached_c 20 Jun 2017 19:52:26 -0000 1.12 +++ patches/patch-memcached_c 17 Jul 2017 08:16:10 -0000 @@ -10,7 +10,7 @@ /* some POSIX systems need the following definition * to get mlockall flags out of sys/mman.h. */ -@@ -6679,6 +6680,32 @@ int main (int argc, char **argv) { +@@ -6733,6 +6734,32 @@ int main (int argc, char **argv) { if (pid_file != NULL) { save_pid(pid_file); Index: pkg/README =================================================================== RCS file: /cvs/ports/misc/memcached/pkg/README,v retrieving revision 1.1 diff -u -r1.1 README --- pkg/README 4 Nov 2014 15:11:05 -0000 1.1 +++ pkg/README 17 Jul 2017 08:16:10 -0000 @@ -9,3 +9,8 @@ to add a rule such as the following to /etc/pf.conf: block on $ext_if proto tcp to ($ext_if) port 11211 + +An alternative is to listen on a unix socket in /var/run/memcached/sock, +granting write permissions to users in group _memcached. + +rcctl set memcached flags '-u _memcached -s /var/run/memcached/sock -a 0660' Index: pkg/memcached.rc =================================================================== RCS file: /cvs/ports/misc/memcached/pkg/memcached.rc,v retrieving revision 1.2 diff -u -r1.2 memcached.rc --- pkg/memcached.rc 9 Mar 2016 14:50:11 -0000 1.2 +++ pkg/memcached.rc 17 Jul 2017 08:16:10 -0000 @@ -9,4 +9,8 @@ rc_reload=NO +rc_pre() { + /usr/bin/install -d -o _memcached -g _memcached -m 0750 /var/run/memcached +} + rc_cmd $1
