summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorSteve Dibb <beandog@gentoo.org>2007-01-13 15:00:15 +0000
committerSteve Dibb <beandog@gentoo.org>2007-01-13 15:00:15 +0000
commit1c5b336c00d1c3a0e6eff0817111c8726c7b6f18 (patch)
tree75fdee6813fcf34b307c8b5719dec060e5d5f139 /sys-process/vixie-cron/files
parentRemove versions affected by GLSAs, bug 140503 (diff)
downloadhistorical-1c5b336c00d1c3a0e6eff0817111c8726c7b6f18.tar.gz
historical-1c5b336c00d1c3a0e6eff0817111c8726c7b6f18.tar.bz2
historical-1c5b336c00d1c3a0e6eff0817111c8726c7b6f18.zip
Remove versions affected by GLSAs, bug 140503
Package-Manager: portage-2.1.2_rc4-r9
Diffstat (limited to 'sys-process/vixie-cron/files')
-rw-r--r--sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r46
-rw-r--r--sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r56
-rw-r--r--sys-process/vixie-cron/files/digest-vixie-cron-4.1-r76
-rw-r--r--sys-process/vixie-cron/files/digest-vixie-cron-4.1-r86
-rw-r--r--sys-process/vixie-cron/files/vixie-cron-3.0.1-close_stdin.diff37
-rw-r--r--sys-process/vixie-cron/files/vixie-cron-3.0.1-pam.patch70
-rw-r--r--sys-process/vixie-cron/files/vixie-cron-3.0.1-selinux.diff134
7 files changed, 0 insertions, 265 deletions
diff --git a/sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r4 b/sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r4
deleted file mode 100644
index 51727020700f..000000000000
--- a/sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r4
+++ /dev/null
@@ -1,6 +0,0 @@
-MD5 b9e1488f6bad0b8b5bfc94561f79c8a6 vixie-cron-3.0.1-gentoo.patch.bz2 8901
-RMD160 f8103ae33d8a24d4078d93b355c5e4a95449cd0f vixie-cron-3.0.1-gentoo.patch.bz2 8901
-SHA256 182edba96e218b1df11a628a4cb4a18e73b23ce42a15254ec66754c0fcfc7c1d vixie-cron-3.0.1-gentoo.patch.bz2 8901
-MD5 369390355808fcf947cd2f9847f88859 vixie-cron-3.0.1.tar.bz2 50376
-RMD160 46a4df5bc82a308f51b6e145c67ef6864dd88cbe vixie-cron-3.0.1.tar.bz2 50376
-SHA256 0eb113c0e36275806e3069cfd69846e3fae6929a796be3d850d534cdeed4cbf4 vixie-cron-3.0.1.tar.bz2 50376
diff --git a/sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r5 b/sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r5
deleted file mode 100644
index 51727020700f..000000000000
--- a/sys-process/vixie-cron/files/digest-vixie-cron-3.0.1-r5
+++ /dev/null
@@ -1,6 +0,0 @@
-MD5 b9e1488f6bad0b8b5bfc94561f79c8a6 vixie-cron-3.0.1-gentoo.patch.bz2 8901
-RMD160 f8103ae33d8a24d4078d93b355c5e4a95449cd0f vixie-cron-3.0.1-gentoo.patch.bz2 8901
-SHA256 182edba96e218b1df11a628a4cb4a18e73b23ce42a15254ec66754c0fcfc7c1d vixie-cron-3.0.1-gentoo.patch.bz2 8901
-MD5 369390355808fcf947cd2f9847f88859 vixie-cron-3.0.1.tar.bz2 50376
-RMD160 46a4df5bc82a308f51b6e145c67ef6864dd88cbe vixie-cron-3.0.1.tar.bz2 50376
-SHA256 0eb113c0e36275806e3069cfd69846e3fae6929a796be3d850d534cdeed4cbf4 vixie-cron-3.0.1.tar.bz2 50376
diff --git a/sys-process/vixie-cron/files/digest-vixie-cron-4.1-r7 b/sys-process/vixie-cron/files/digest-vixie-cron-4.1-r7
deleted file mode 100644
index 4b0d91076cd4..000000000000
--- a/sys-process/vixie-cron/files/digest-vixie-cron-4.1-r7
+++ /dev/null
@@ -1,6 +0,0 @@
-MD5 c674b03c6e76798b1c74f6070df167cc vixie-cron-4.1-gentoo-r4.patch.bz2 4204
-RMD160 1d439c0bb473e8307a5c33e2449efdd9ca6fc4f5 vixie-cron-4.1-gentoo-r4.patch.bz2 4204
-SHA256 8de14b11da567f7859df3dcf71802f32ac1b3650ae07c6cb6dbc259e1f6da7fc vixie-cron-4.1-gentoo-r4.patch.bz2 4204
-MD5 09dc04f9879684d27c64c910174a9536 vixie-cron-4.1.tar.bz2 54246
-RMD160 a7f6aaa6deb9924d56da8dca3e2e323e0786f97e vixie-cron-4.1.tar.bz2 54246
-SHA256 fd25119b301e0e8306ec27ee912298740c5c8ae879bac02381429cf355d1122d vixie-cron-4.1.tar.bz2 54246
diff --git a/sys-process/vixie-cron/files/digest-vixie-cron-4.1-r8 b/sys-process/vixie-cron/files/digest-vixie-cron-4.1-r8
deleted file mode 100644
index 4b0d91076cd4..000000000000
--- a/sys-process/vixie-cron/files/digest-vixie-cron-4.1-r8
+++ /dev/null
@@ -1,6 +0,0 @@
-MD5 c674b03c6e76798b1c74f6070df167cc vixie-cron-4.1-gentoo-r4.patch.bz2 4204
-RMD160 1d439c0bb473e8307a5c33e2449efdd9ca6fc4f5 vixie-cron-4.1-gentoo-r4.patch.bz2 4204
-SHA256 8de14b11da567f7859df3dcf71802f32ac1b3650ae07c6cb6dbc259e1f6da7fc vixie-cron-4.1-gentoo-r4.patch.bz2 4204
-MD5 09dc04f9879684d27c64c910174a9536 vixie-cron-4.1.tar.bz2 54246
-RMD160 a7f6aaa6deb9924d56da8dca3e2e323e0786f97e vixie-cron-4.1.tar.bz2 54246
-SHA256 fd25119b301e0e8306ec27ee912298740c5c8ae879bac02381429cf355d1122d vixie-cron-4.1.tar.bz2 54246
diff --git a/sys-process/vixie-cron/files/vixie-cron-3.0.1-close_stdin.diff b/sys-process/vixie-cron/files/vixie-cron-3.0.1-close_stdin.diff
deleted file mode 100644
index a365f0c3ce3c..000000000000
--- a/sys-process/vixie-cron/files/vixie-cron-3.0.1-close_stdin.diff
+++ /dev/null
@@ -1,37 +0,0 @@
-diff -urN vixie-cron-3.0.1.orig/cron.c vixie-cron-3.0.1/cron.c
---- vixie-cron-3.0.1.orig/cron.c 2003-11-07 11:33:38.000000000 -0600
-+++ vixie-cron-3.0.1/cron.c 2003-11-12 12:37:42.000000000 -0600
-@@ -25,6 +25,8 @@
-
- #include "cron.h"
- #include <sys/signal.h>
-+#include <sys/stat.h>
-+#include <fcntl.h>
- #if SYS_TIME_H
- # include <sys/time.h>
- # include <time.h>
-@@ -58,6 +60,7 @@
- char *argv[];
- {
- cron_db database;
-+ int i;
-
- ProgramName = argv[0];
-
-@@ -108,6 +111,16 @@
- }
- }
-
-+ /* close stdin, stdout, and stderr */
-+ if ( (i = open("/dev/null", O_RDWR)) < 0) {
-+ log_it("CRON",getpid(),"DEATH","can't open /dev/null");
-+ exit(0);
-+ }
-+ close(0); dup2(i, 0);
-+ close(1); dup2(i, 1);
-+ close(2); dup2(i, 2);
-+ close(i);
-+
- acquire_daemonlock(0);
- database.head = NULL;
- database.tail = NULL;
diff --git a/sys-process/vixie-cron/files/vixie-cron-3.0.1-pam.patch b/sys-process/vixie-cron/files/vixie-cron-3.0.1-pam.patch
deleted file mode 100644
index 898f3ee652e2..000000000000
--- a/sys-process/vixie-cron/files/vixie-cron-3.0.1-pam.patch
+++ /dev/null
@@ -1,70 +0,0 @@
-diff -ur vixie-cron-3.0.1.orig/Makefile vixie-cron-3.0.1/Makefile
---- vixie-cron-3.0.1.orig/Makefile Thu May 30 19:47:00 2002
-+++ vixie-cron-3.0.1/Makefile Thu May 30 20:54:46 2002
-@@ -55,7 +55,7 @@
- INCLUDE = -I.
- #INCLUDE =
- #<<need getopt()>>
--LIBS =
-+LIBS = -lpam
- #<<optimize or debug?>>
- OPTIM = $(RPM_OPT_FLAGS)
- #OPTIM = -g
-diff -ur vixie-cron-3.0.1.orig/do_command.c vixie-cron-3.0.1/do_command.c
---- vixie-cron-3.0.1.orig/do_command.c Thu May 30 19:47:00 2002
-+++ vixie-cron-3.0.1/do_command.c Thu May 30 20:55:50 2002
-@@ -29,6 +29,18 @@
- # include <syslog.h>
- #endif
-
-+#include <security/pam_appl.h>
-+static pam_handle_t *pamh = NULL;
-+static const struct pam_conv conv = {
-+ NULL
-+};
-+#define PAM_FAIL_CHECK if (retcode != PAM_SUCCESS) { \
-+ fprintf(stderr,"\n%s\n",pam_strerror(pamh, retcode)); \
-+ syslog(LOG_ERR,"%s",pam_strerror(pamh, retcode)); \
-+ pam_end(pamh, retcode); exit(1); \
-+ }
-+
-+
-
- static void child_process __P((entry *, user *)),
- do_univ __P((user *));
-@@ -77,6 +89,7 @@
- register char *input_data;
- char *usernm, *mailto;
- int children = 0;
-+ int retcode = 0;
-
- Debug(DPROC, ("[%d] child_process('%s')\n", getpid(), e->cmd))
-
-@@ -159,6 +172,15 @@
- }
- }
-
-+ retcode = pam_start("cron", usernm, &conv, &pamh);
-+ PAM_FAIL_CHECK;
-+ retcode = pam_acct_mgmt(pamh, PAM_SILENT);
-+ PAM_FAIL_CHECK;
-+ retcode = pam_open_session(pamh, PAM_SILENT);
-+ PAM_FAIL_CHECK;
-+ retcode = pam_setcred(pamh, PAM_ESTABLISH_CRED | PAM_SILENT);
-+ PAM_FAIL_CHECK;
-+
- /* fork again, this time so we can exec the user's command.
- */
- switch (vfork()) {
-@@ -483,7 +505,11 @@
- if (WIFSIGNALED(waiter) && WCOREDUMP(waiter))
- Debug(DPROC, (", dumped core"))
- Debug(DPROC, ("\n"))
-+
- }
-+ pam_setcred(pamh, PAM_DELETE_CRED | PAM_SILENT);
-+ retcode = pam_close_session(pamh, PAM_SILENT);
-+ pam_end(pamh, retcode);
- }
-
-
diff --git a/sys-process/vixie-cron/files/vixie-cron-3.0.1-selinux.diff b/sys-process/vixie-cron/files/vixie-cron-3.0.1-selinux.diff
deleted file mode 100644
index eb8111986bf9..000000000000
--- a/sys-process/vixie-cron/files/vixie-cron-3.0.1-selinux.diff
+++ /dev/null
@@ -1,134 +0,0 @@
---- vixie-cron-3.0.1/Makefile.selinux 2003-05-20 14:52:06.000000000 -0400
-+++ vixie-cron-3.0.1/Makefile 2003-05-20 14:52:21.000000000 -0400
-@@ -71,7 +71,8 @@ LINTFLAGS = -hbxa $(INCLUDE) $(COMPAT) $
- #<<want to use a nonstandard CC?>>
- #CC = vcc
- #<<manifest defines>>
--DEFS = -s
-+DEFS = -s -DWITH_SELINUX
-+LIBS += -lselinux
- #(SGI IRIX systems need this)
- #DEFS = -D_BSD_SIGNALS -Dconst=
- #<<the name of the BSD-like install program>>
---- vixie-cron-3.0.1/database.c.selinux 2003-05-20 14:52:56.000000000 -0400
-+++ vixie-cron-3.0.1/database.c 2003-05-23 13:27:24.898020960 -0400
-@@ -28,6 +28,15 @@ static char rcsid[] = "$Id: database.c,v
- #include <sys/stat.h>
- #include <sys/file.h>
-
-+#ifdef WITH_SELINUX
-+#include <selinux/selinux.h>
-+#include <selinux/flask.h>
-+#include <selinux/av_permissions.h>
-+#define SYSUSERNAME "system_u"
-+#else
-+#define SYSUSERNAME "*system*"
-+#endif
-+
-
- #define TMAX(a,b) ((a)>(b)?(a):(b))
-
-@@ -94,7 +103,7 @@ load_database(old_db)
- new_db.head = new_db.tail = NULL;
-
- if (syscron_stat.st_mtime) {
-- process_crontab("root", "*system*",
-+ process_crontab("root", SYSUSERNAME,
- SYSCRONTAB, &syscron_stat,
- &new_db, old_db);
- }
-@@ -136,7 +145,7 @@ load_database(old_db)
-
- snprintf(tabname, MAXNAMLEN+1, "/etc/cron.d/%s", fname);
-
-- process_crontab("root", "*system*", tabname,
-+ process_crontab("root", SYSUSERNAME, tabname,
- &crond_stat, &new_db, old_db);
- }
- closedir(dir);
-@@ -253,7 +262,7 @@ process_crontab(uname, fname, tabname, s
- int crontab_fd = OK - 1;
- user *u;
-
-- if (strcmp(fname, "*system*") && !(pw = getpwnam(uname))) {
-+ if (strcmp(fname, SYSUSERNAME) && !(pw = getpwnam(uname))) {
- /* file doesn't have a user in passwd file.
- */
- log_it(fname, getpid(), "ORPHAN", "no passwd entry");
-@@ -297,6 +306,43 @@ process_crontab(uname, fname, tabname, s
- free_user(u);
- log_it(fname, getpid(), "RELOAD", tabname);
- }
-+#ifdef WITH_SELINUX
-+ if (is_selinux_enabled()) {
-+ security_context_t file_context=NULL;
-+ security_context_t user_context=NULL;
-+ struct av_decision avd;
-+ int retval=0;
-+
-+ if (fgetfilecon(crontab_fd, &file_context) < OK) {
-+ log_it(fname, getpid(), "getfilecon FAILED", tabname);
-+ goto next_crontab;
-+ }
-+
-+ /*
-+ * Since crontab files are not directly executed,
-+ * crond must ensure that the crontab file has
-+ * a context that is appropriate for the context of
-+ * the user cron job. It performs an entrypoint
-+ * permission check for this purpose.
-+ */
-+ if (get_default_context(fname, NULL, &user_context)) {
-+ log_it(fname, getpid(), "NO CONTEXT", tabname);
-+ freecon(file_context);
-+ goto next_crontab;
-+ }
-+ retval = security_compute_av(user_context,
-+ file_context,
-+ SECCLASS_FILE,
-+ FILE__ENTRYPOINT,
-+ &avd);
-+ freecon(user_context);
-+ freecon(file_context);
-+ if (retval || ((FILE__ENTRYPOINT & avd.allowed) != FILE__ENTRYPOINT)) {
-+ log_it(fname, getpid(), "ENTRYPOINT FAILED", tabname);
-+ goto next_crontab;
-+ }
-+ }
-+#endif
- u = load_user(crontab_fd, pw, fname);
- if (u != NULL) {
- u->mtime = statbuf->st_mtime;
---- vixie-cron-3.0.1/do_command.c.selinux 2003-05-20 14:53:12.000000000 -0400
-+++ vixie-cron-3.0.1/do_command.c 2003-05-20 14:58:06.000000000 -0400
-@@ -29,6 +29,9 @@ static char rcsid[] = "$Id: do_command.c
- # include <syslog.h>
- #endif
-
-+#ifdef WITH_SELINUX
-+#include <selinux/selinux.h>
-+#endif
-
- static void child_process __P((entry *, user *)),
- do_univ __P((user *));
-@@ -251,6 +254,20 @@ child_process(e, u)
- */
- (void) signal(SIGCHLD, SIG_DFL);
- #endif
-+#ifdef WITH_SELINUX
-+ if (is_selinux_enabled()) {
-+ security_context_t scontext;
-+ if (get_default_context(u->name, NULL, &scontext)) {
-+ fprintf(stderr, "execle_secure: couldn't get security context for user %s\n", u->name);
-+ _exit(ERROR_EXIT);
-+ }
-+ if (setexeccon(scontext) < 0) {
-+ fprintf(stderr, "Could not set exec context to %s for user %s\n", scontext,u->name);
-+ _exit(ERROR_EXIT);
-+ }
-+ freecon(scontext);
-+ }
-+#endif
- execle(shell, shell, "-c", e->cmd, (char *)0, e->envp);
- fprintf(stderr, "execl: couldn't exec `%s'\n", shell);
- perror("execl");