blob: 0c2ea86cb4293bb4215365434c1280306620c92f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
|
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=krb5
pkgver=1.14
pkgrel=1
case $pkgver in
*.*.*) _ver=${pkgver%.*};;
*) _ver=${pkgver};;
esac
pkgdesc="The Kerberos network authentication system"
url="http://web.mit.edu/kerberos/www/"
arch="all"
license="MIT"
depends="krb5-conf"
depends_dev="e2fsprogs-dev"
makedepends="$depends_dev libverto-dev openldap-dev openssl-dev
keyutils-dev bison flex perl"
install=""
options="suid"
subpackages="$pkgname-dev $pkgname-doc $pkgname-server
$pkgname-server-ldap:ldap $pkgname-pkinit $pkgname-libs"
source="http://web.mit.edu/kerberos/dist/krb5/${_ver}/krb5-$pkgver.tar.gz
mit-krb5_krb5-config_LDFLAGS.patch
CVE-2015-8629.patch
CVE-2015-8630.patch
CVE-2015-8631.patch
krb5kadmind.initd
krb5kdc.initd
krb5kpropd.initd
"
_builddir="$srcdir"/krb5-$pkgver
unpack() {
default_unpack
cd "$srcdir"
tar -zxf krb5-$pkgver.tar.gz
}
prepare() {
local i
cd "$_builddir"
for i in $source; do
case $i in
*.patch) msg $i; patch -p1 -i "$srcdir"/$i || return 1;;
esac
done
}
build() {
cd "$_builddir"/src
./configure \
CPPFLAGS="$CPPFLAGS -fPIC -I/usr/include/et" \
WARN_CFLAGS= \
--build=$CBUILD \
--host=$CHOST \
--prefix=/usr \
--localstatedir=/var/lib \
--enable-shared \
--disable-static \
--disable-rpath \
--with-system-et \
--with-system-ss \
--with-system-verto \
--without-tcl \
--with-ldap \
--with-crypto-impl=openssl \
|| return 1
make
}
package() {
cd "$_builddir"/src
make install DESTDIR="$pkgdir" || return 1
mkdir -p "$pkgdir"/usr/share/doc/$pkgname
mv "$pkgdir"/usr/share/examples "$pkgdir"/usr/share/doc/$pkgname/
for i in $source; do
case $i in
*.initd) install -Dm755 "$srcdir"/$i \
"$pkgdir"/etc/init.d/${i%.initd};;
esac
done
}
server() {
pkgdesc="The KDC and related programs for Kerberos 5"
depends="libverto-libev"
mkdir -p "$subpkgdir"/usr/share \
"$subpkgdir"/usr/bin \
"$subpkgdir"/etc/
install -d "$subpkgdir"/var/lib/krb5kdc || return 1
mv "$pkgdir"/usr/sbin "$subpkgdir"/usr/ || return 1
mv "$pkgdir"/etc/init.d "$subpkgdir"/etc/ || return 1
# used for testing server
mv "$pkgdir"/usr/bin/sclient "$subpkgdir"/usr/bin/
}
ldap() {
pkgdesc="The LDAP storage plugin for the Kerberos 5 KDC"
mkdir -p "$subpkgdir"/usr/lib/krb5/plugins/kdb
mv "$pkgdir"/usr/lib/krb5/plugins/kdb/kldap.so \
"$subpkgdir"/usr/lib/krb5/plugins/kdb/ || return 1
mv "$pkgdir"/usr/lib/libkdb_ldap* \
"$subpkgdir"/usr/lib/
}
pkinit() {
pkgdesc="The PKINIT module for Kerberos 5"
mkdir -p "$subpkgdir"/usr/lib/krb5/plugins/preauth
mv "$pkgdir"/usr/lib/krb5/plugins/preauth/pkinit.so \
"$subpkgdir"/usr/lib/krb5/plugins/preauth/pkinit.so
}
libs() {
pkgdesc="The shared libraries used by Kerberos 5"
depends="krb5-conf"
mkdir -p "$subpkgdir"/usr/
mv "$pkgdir"/usr/lib "$subpkgdir"/usr/ || return 1
}
md5sums="0727968764d0208388b85ad31aafde24 krb5-1.14.tar.gz
c84a0c7d8014e3528524956ffdd1c3e9 mit-krb5_krb5-config_LDFLAGS.patch
51bfc721a58e4dd28ebcf2f600ff3455 CVE-2015-8629.patch
f8b6f512f94dcad5bfdc1250beaf2d11 CVE-2015-8630.patch
380b86bdaa1303a6bc7b0cc3672c3e43 CVE-2015-8631.patch
9c0e3bac122326cdbbbac068056ee8af krb5kadmind.initd
71131479c07a2d89b30a2ea18dd64e74 krb5kdc.initd
d94873a6a1ac6277adf2d25458eda9e5 krb5kpropd.initd"
sha256sums="cedb07fad8331e3ff2983d26e977a2ddba622f379c2b19bfea85bd695930f9e9 krb5-1.14.tar.gz
84007c7423f67db7a8b248b9643c49ef25f2d56ce15c2574eb41ecbf51bcd3f2 mit-krb5_krb5-config_LDFLAGS.patch
6c462dfa8202be953d3b9dc2acecb94b3576663caf7a1ceb1275b1dcb6b11171 CVE-2015-8629.patch
d87154deff5284b1a22d0c31de1b3c6276e4c2a94d7951b3cb31ed1b2ef405da CVE-2015-8630.patch
7c1860aeba4b0712b1fd0b46ed6acc882f36a5b5b7cbcaa8e496baca65bc881a CVE-2015-8631.patch
213a5b04f091e4644e856aabc38da586bd86c4616ab15f00eefca52fca7137d6 krb5kadmind.initd
577842c7fe4639a8e9dd349da40e514284dd53440bb71be58283faaf18508f9a krb5kdc.initd
1644639d83791bd871f3c89a53a7052ab52994d3ef03d1d675d4217130c1fa94 krb5kpropd.initd"
sha512sums="b33a85b37f6038e34ba4038c9d1cc6a0df027652cbeccd24e39b323a1ed1bc16305099df04654c80ba7e6b56bd3d3c2df95758add888f9ef8535cb78443684ff krb5-1.14.tar.gz
5a3782ff17b383f8cd0415fd13538ab56afd788130d6ad640e9f2682b7deaae7f25713ce358058ed771091040dccf62a3bc87e6fd473d505ec189a95debcc801 mit-krb5_krb5-config_LDFLAGS.patch
a4791794fc8cd675605ed0f9d39b099b2e83713c7038648529906490c36b1e92739f05ba6f5a1be9923459a01b45ffb04129e23313873fea2fd41c45f7f42f90 CVE-2015-8629.patch
c91415ff810ea1b3d8ba80d005bc40bb3595be4b7610b69d6c8c97bdcb290c1eb400997ccb091863d558bfb8a4cbb8f00557a690f60c0ada700ba76194960b0a CVE-2015-8630.patch
59b70cf6aa3f462fe8dab0f02e7f649f9615c5e40ad43517a9b9febd2c5d87b0d38f3e620ad6dd006c9ecbc9a4bbcab39655e518c6d37fbe74f40a888545ae79 CVE-2015-8631.patch
43b9885b7eb8d0d60920def688de482f2b1701288f9acb1bb21dc76b2395428ff304961959eb04ba5eafd0412bae35668d6d2c8223424b9337bc051eadf51682 krb5kadmind.initd
ede15f15bbbc9d0227235067abe15245bb9713aea260d397379c63275ce74aea0db6c91c15d599e40c6e89612d76f3a0f8fdd21cbafa3f30d426d4310d3e2cec krb5kdc.initd
45be0d421efd41e9dd056125a750c90856586e990317456b68170d733b03cba9ecd18ab87603b20e49575e7839fb4a6d628255533f2631f9e8ddb7f3cc493a90 krb5kpropd.initd"
|