summaryrefslogtreecommitdiff
path: root/security
diff options
context:
space:
mode:
authorcjs <cjs@pkgsrc.org>2007-03-16 05:46:06 +0000
committercjs <cjs@pkgsrc.org>2007-03-16 05:46:06 +0000
commit1396e199a58aa6f04939f507e90d1ba50575aad2 (patch)
treeaf10499265800c4498cde88826eebff55762a01b /security
parentc2a0edb2e363561603b98e0abc8b931b1f50276a (diff)
downloadpkgsrc-1396e199a58aa6f04939f507e90d1ba50575aad2.tar.gz
Bring in patch suggested in http://bugzilla.mindrot.org/show_bug.cgi?id=1299 .
This fixes the issue that, when "options edns0" is turned on (usually in /etc/resolv.conf), ssh doesn't see it, and thus fails to request a DNSSEC response, which in turn leads to SSHFP records being considered insecure.
Diffstat (limited to 'security')
-rw-r--r--security/openssh/Makefile4
-rw-r--r--security/openssh/distinfo3
-rw-r--r--security/openssh/patches/patch-ax21
3 files changed, 25 insertions, 3 deletions
diff --git a/security/openssh/Makefile b/security/openssh/Makefile
index f9e886490e5..2f061e271e9 100644
--- a/security/openssh/Makefile
+++ b/security/openssh/Makefile
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.177 2007/02/22 19:27:08 wiz Exp $
+# $NetBSD: Makefile,v 1.178 2007/03/16 05:46:06 cjs Exp $
DISTNAME= openssh-4.5p1
PKGNAME= openssh-4.5.1
-PKGREVISION= 1
+PKGREVISION= 2
SVR4_PKGNAME= ossh
CATEGORIES= security
MASTER_SITES= ftp://ftp.openssh.com/pub/OpenBSD/OpenSSH/portable/ \
diff --git a/security/openssh/distinfo b/security/openssh/distinfo
index df9004e8884..f284abbfac4 100644
--- a/security/openssh/distinfo
+++ b/security/openssh/distinfo
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.60 2007/01/27 22:57:35 schwarz Exp $
+$NetBSD: distinfo,v 1.61 2007/03/16 05:46:06 cjs Exp $
SHA1 (openssh-4.5p1-hpn12v14.diff.gz) = 8bea17b13e7e91135785f4222252c28d08c9c887
RMD160 (openssh-4.5p1-hpn12v14.diff.gz) = 1f937174d5418d578da5d9dfab16b5cc8960efc5
@@ -29,3 +29,4 @@ SHA1 (patch-at) = 1053afa04babc82374d7356aa0cc5fa55cf184e2
SHA1 (patch-au) = 6cfdfc531e2267017a15e66ea48c7ecfa2a3926f
SHA1 (patch-av) = 00f54c3fae7318b278b16bd0b01881a90bd31365
SHA1 (patch-aw) = 2a88b7563c6f52163c6c5f716e437ecaea613a30
+SHA1 (patch-ax) = a6708b956341ff373835a6789541c7547b3b85e5
diff --git a/security/openssh/patches/patch-ax b/security/openssh/patches/patch-ax
new file mode 100644
index 00000000000..0d3cbaafe7a
--- /dev/null
+++ b/security/openssh/patches/patch-ax
@@ -0,0 +1,21 @@
+$NetBSD: patch-ax,v 1.3 2007/03/16 05:46:07 cjs Exp $
+
+# http://bugzilla.mindrot.org/show_bug.cgi?id=1299
+
+--- openbsd-compat/getrrsetbyname.c.orig 2006-09-02 14:32:40.000000000 +0900
++++ openbsd-compat/getrrsetbyname.c 2007-03-16 14:07:32.000000000 +0900
+@@ -67,14 +67,6 @@
+ #endif
+ #define _THREAD_PRIVATE(a,b,c) (c)
+
+-/* to avoid conflicts where a platform already has _res */
+-#ifdef _res
+-# undef _res
+-#endif
+-#define _res _compat_res
+-
+-struct __res_state _res;
+-
+ /* Necessary functions and macros */
+
+ /*