From e5e1a552b0429e54711cf5da9b55e1e3644ce8e9 Mon Sep 17 00:00:00 2001 From: tron Date: Sun, 7 Mar 2010 00:10:17 +0000 Subject: Pullup ticket #3041 - requested by hannken chrony: security update Revisions pulled up: - net/chrony/Makefile 1.26 - net/chrony/distinfo 1.7 - net/chrony/patches/patch-aa 1.4 - net/chrony/patches/patch-ab 1.4 - net/chrony/patches/patch-ac 1.4 - net/chrony/patches/patch-ad 1.3 - net/chrony/patches/patch-ae 1.4 - net/chrony/patches/patch-ag delete --- Module Name: pkgsrc Committed By: hannken Date: Fri Feb 26 09:27:43 UTC 2010 Modified Files: pkgsrc/doc: TODO pkgsrc/net/chrony: Makefile distinfo pkgsrc/net/chrony/patches: patch-aa patch-ab patch-ac patch-ad patch-ae Removed Files: pkgsrc/net/chrony/patches: patch-ag Log Message: Update to 1.24. The changes in version 1.24 are Security fixes -------------- * Don't reply to invalid cmdmon packets (CVE-2010-0292) * Limit client log memory size (CVE-2010-0293) * Limit rate of syslog messages (CVE-2010-0294) Bug fixes/Enhancements ---------------------- * Support for reference clocks (SHM, SOCK, PPS drivers) * IPv6 support * Linux capabilities support (to drop root privileges) * Memory locking support on Linux * Real-time scheduler support on Linux * Leap second support on Linux * Support for editline library * Support for new Linux readonly adjtime * NTP client support for KoD RATE * Read kernel timestamps for received NTP packets * Reply to NTP requests with correct address on multihomed hosts * Retry name resolving after temporary failure * Fix makestep command, make it available on all systems * Add makestep directive for automatic clock stepping * Don't require _bigadj kernel symbol on NetBSD * Avoid blocking read in Linux RTC driver * Support for Linux on S/390 and PowerPC * Fix various bugs on 64-bit systems * Fix valgrind errors and compiler warnings * Improve configure to support common options and variables * Improve status checking and printing in chronyc * Return non-zero exit code on errors in chronyc * Reduce request timeout in chronyc * Print estimated offset in sourcestats * Changed chronyc protocol, incompatible with older versions Reviewed by: Joerg Sonnenberger --- net/chrony/patches/patch-ac | 16 +++++----------- 1 file changed, 5 insertions(+), 11 deletions(-) (limited to 'net/chrony/patches/patch-ac') diff --git a/net/chrony/patches/patch-ac b/net/chrony/patches/patch-ac index e125f58f8ff..47a497eabce 100644 --- a/net/chrony/patches/patch-ac +++ b/net/chrony/patches/patch-ac @@ -1,9 +1,8 @@ -$NetBSD: patch-ac,v 1.3 2006/01/08 13:27:53 joerg Exp $ +$NetBSD: patch-ac,v 1.3.36.1 2010/03/07 00:10:17 tron Exp $ ---- chronyd.8.orig 2002-11-04 00:32:10.000000000 +0100 +--- chronyd.8.orig 2010-02-04 13:07:19.000000000 +0100 +++ chronyd.8 -@@ -24,10 +24,10 @@ gains or loses time, and compensates for - priviliges. +@@ -25,8 +25,8 @@ If \fBchronyd\fR has been installed to its default location -\fI/usr/local/sbin/chronyd\fR, starting it is simply a matter of entering the @@ -14,22 +13,17 @@ $NetBSD: patch-ac,v 1.3 2006/01/08 13:27:53 joerg Exp $ +\fI@PREFIX@/sbin/chronyd\fR Information messages and warnings will be logged to syslog. - -@@ -43,7 +43,7 @@ to syslog. - .TP +@@ -53,5 +53,5 @@ \fB\-f\fR \fIconf-file\fR This option can be used to specify an alternate location for the -configuration file (default \fI/etc/chrony.conf\fR). +configuration file (default \fI@PKG_SYSCONFDIR@/chrony.conf\fR). .TP .B \-r - This option will reload sample histories for each of the servers being used. -@@ -83,7 +83,7 @@ computer was on. - This option displays \fBchronyd\fR's version number to the terminal and exits +@@ -103,5 +103,5 @@ .SH FILES -\fI/etc/chrony.conf\fR +\fI@PKG_SYSCONFDIR@/chrony.conf\fR .SH VERSION - Version 1.17 -- cgit v1.2.3