diff options
| author |   Tomas Chvatal <scarabeus@gentoo.org> | 2009-02-16 19:48:26 +0000 |
|---|---|---|
| committer | Tomas Chvatal <scarabeus@gentoo.org> | 2009-02-16 19:48:26 +0000 |
| commit | 73983fc5f99461e58248121b5fbe6edf8d03e8b5 (patch) | |
| tree | 617e4962704a7a73678a7ade7f6902824db0301f /sci-misc | |
| parent | Automated update of use.local.desc (diff) | |
| download | historical-73983fc5f99461e58248121b5fbe6edf8d03e8b5.tar.gz historical-73983fc5f99461e58248121b5fbe6edf8d03e8b5.tar.bz2 historical-73983fc5f99461e58248121b5fbe6edf8d03e8b5.zip | |
Revision bump. Fix the RSA Security issue. Per bug #258011.
Package-Manager: portage-2.2_rc23/cvs/Linux x86_64
Diffstat (limited to 'sci-misc')
| -rw-r--r-- | sci-misc/boinc/ChangeLog | 9 | ||||
| -rw-r--r-- | sci-misc/boinc/Manifest | 5 | ||||
| -rw-r--r-- | sci-misc/boinc/boinc-6.4.5-r1.ebuild (renamed from sci-misc/boinc/boinc-6.4.5.ebuild) | 4 | ||||
| -rw-r--r-- | sci-misc/boinc/files/6.4.5-RSA_security.patch | 78 |
4 files changed, 92 insertions, 4 deletions
diff --git a/sci-misc/boinc/ChangeLog b/sci-misc/boinc/ChangeLog index 800db92321d5..8710b4dabe82 100644 --- a/sci-misc/boinc/ChangeLog +++ b/sci-misc/boinc/ChangeLog @@ -1,6 +1,13 @@ # ChangeLog for sci-misc/boinc # Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sci-misc/boinc/ChangeLog,v 1.52 2009/02/13 16:42:41 ranger Exp $ +# $Header: /var/cvsroot/gentoo-x86/sci-misc/boinc/ChangeLog,v 1.53 2009/02/16 19:48:25 scarabeus Exp $ + +*boinc-6.4.5-r1 (16 Feb 2009) + + 16 Feb 2009; Tomas Chvatal <scarabeus@gentoo.org> + +files/6.4.5-RSA_security.patch, -boinc-6.4.5.ebuild, + +boinc-6.4.5-r1.ebuild: + Revision bump. Fix the RSA Security issue. Per bug #258011. 13 Feb 2009; Brent Baude <ranger@gentoo.org> boinc-6.4.5.ebuild: Marking boinc-6.4.5 ~ppc64 for bug 255156 diff --git a/sci-misc/boinc/Manifest b/sci-misc/boinc/Manifest index 457b86a70d2e..8da07e6750f5 100644 --- a/sci-misc/boinc/Manifest +++ b/sci-misc/boinc/Manifest @@ -1,6 +1,7 @@ +AUX 6.4.5-RSA_security.patch 2795 RMD160 d90c13b83d9b3d36d01e31303c241dfed177935a SHA1 7f8ad45e9655414ef53d14a011517bd7361baa8f SHA256 28b56ddb6526d823f7e7e9e413632912b853a0cb05c3372bba90e3cde8e0984d AUX boinc.conf 711 RMD160 b6bb25b9d10cbefd3de5d653e701e056e2de4587 SHA1 570929cb4ed50d4fc4408624c4d0d330e208609c SHA256 032f07145ee230f069ffdc93befe90c047fba4314aedfc8024bdb44c06798e9e AUX boinc.init 2959 RMD160 8fd53df3cae632021283be0bc24b7f897994ac57 SHA1 cd66a8fcb46c244d19428f35cc104f6442404eb7 SHA256 9c7c863030b7005d4e62ce49eeea386eccd16f58707674e4c7e4ff1387cf8a95 DIST boinc-6.4.5.tar.bz2 7639286 RMD160 8f7232a3e7d273076f6b2ae50b565550c03485cc SHA1 24c63d11c8e9ebda17beac359928407ce3b8678d SHA256 f6f1d053f10873ed9b3b6ce8dc4444a49f6c804196a3eb080f574db36e58557a -EBUILD boinc-6.4.5.ebuild 3711 RMD160 432067ea403f02b0014b97fdb0f6872f5ca60335 SHA1 4e7abd33d9a692b4b054a71b4a036962ba2e0b2e SHA256 c3e5387afb577197431251cba54bbde823eddeec887146a8c1f73c98a4b1955d -MISC ChangeLog 10399 RMD160 1425ffef397bbf3cb585c39623f9c4cc34b2256f SHA1 3aafae05bede787a34ae82217284672594fd02da SHA256 ae2483310a307b5f851230b250558a011ff27d1b9e86c945f13ebb37554f7af1 +EBUILD boinc-6.4.5-r1.ebuild 3805 RMD160 552fac5fc59b87d14d5dd6db9f25bbd587af2c2d SHA1 f3a61f8c8af470f60257b980ad5afb0c5ee758a9 SHA256 8e2e70a510b82dd3692962b3daee44d801a222044112cd6b422926c8c6bcd305 +MISC ChangeLog 10630 RMD160 4bf0658393546c96d476d6426a4e5bd33d404589 SHA1 a5598409efe7812d8c547275eab3dc9c58395681 SHA256 84b73997a505fd726fd52497cbb557512715cb64b58c592bdb3ea7445bb1a158 MISC metadata.xml 697 RMD160 8cfc36bbae9395d2675629d68af1c6354244bd5f SHA1 bcfd28d367a81a6fa8b6a548703270cb066a9392 SHA256 614f44eeb4b76fccb040b9ab7dee69e50152c930a9224946010f39e7eed6e04c diff --git a/sci-misc/boinc/boinc-6.4.5.ebuild b/sci-misc/boinc/boinc-6.4.5-r1.ebuild index 8a1b6cc2f716..2bb484f141c8 100644 --- a/sci-misc/boinc/boinc-6.4.5.ebuild +++ b/sci-misc/boinc/boinc-6.4.5-r1.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2009 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sci-misc/boinc/boinc-6.4.5.ebuild,v 1.3 2009/02/13 16:42:41 ranger Exp $ +# $Header: /var/cvsroot/gentoo-x86/sci-misc/boinc/boinc-6.4.5-r1.ebuild,v 1.1 2009/02/16 19:48:25 scarabeus Exp $ # # Don't forget to keep things in sync with binary boinc package! @@ -51,6 +51,8 @@ src_prepare() { cp /etc/ssl/certs/ca-certificates.crt "${S}"/curl/ca-bundle.crt # copy icons to correct location cp "${S}"/sea/*.png "${S}"/clientgui/res/ + # RSA Security bug fix. Per bug #258011 + epatch "${FILESDIR}"/${PV}-RSA_security.patch # fix stripping ## TODO } diff --git a/sci-misc/boinc/files/6.4.5-RSA_security.patch b/sci-misc/boinc/files/6.4.5-RSA_security.patch new file mode 100644 index 000000000000..1f10ae467fe8 --- /dev/null +++ b/sci-misc/boinc/files/6.4.5-RSA_security.patch @@ -0,0 +1,78 @@ +--- boinc-6.4.5/lib/crypt.cpp 2009-02-15 05:27:43.284347370 +0100 ++++ boinc-6.4.5/lib/crypt.cpp 2009-02-15 05:31:25.554348346 +0100 +@@ -243,7 +243,7 @@ + // The output block must be decrypted in its entirety. + // + int encrypt_private(R_RSA_PRIVATE_KEY& key, DATA_BLOCK& in, DATA_BLOCK& out) { +- int n, modulus_len; ++ int n, modulus_len, retval; + + modulus_len = (key.bits+7)/8; + n = in.len; +@@ -252,17 +252,27 @@ + } + RSA* rp = RSA_new(); + private_to_openssl(key, rp); +- RSA_private_encrypt(n, in.data, out.data, rp, RSA_PKCS1_PADDING); ++ retval = RSA_private_encrypt(n, in.data, out.data, rp, RSA_PKCS1_PADDING); ++ if (retval < 0) { ++ RSA_free(rp); ++ return ERR_CRYPTO; ++ } + out.len = RSA_size(rp); + RSA_free(rp); + return 0; + } + + int decrypt_public(R_RSA_PUBLIC_KEY& key, DATA_BLOCK& in, DATA_BLOCK& out) { ++ int retval; + RSA* rp = RSA_new(); + public_to_openssl(key, rp); +- RSA_public_decrypt(in.len, in.data, out.data, rp, RSA_PKCS1_PADDING); ++ retval = RSA_public_decrypt(in.len, in.data, out.data, rp, RSA_PKCS1_PADDING); ++ if (retval < 0) { ++ RSA_free(rp); ++ return ERR_CRYPTO; ++ } + out.len = RSA_size(rp); ++ RSA_free(rp); + return 0; + } + +@@ -684,4 +694,4 @@ + return verified; + } + +-const char *BOINC_RCSID_4f0c2e42ea = "$Id: 6.4.5-RSA_security.patch,v 1.1 2009/02/16 19:48:26 scarabeus Exp $"; ++const char *BOINC_RCSID_4f0c2e42ea = "$Id: 6.4.5-RSA_security.patch,v 1.1 2009/02/16 19:48:26 scarabeus Exp $"; + + +--- boinc-6.4.5/lib/str_util.cpp 2009-02-15 05:27:43.292347379 +0100 ++++ boinc-6.4.5/lib/str_util.cpp 2009-02-15 05:31:25.560347422 +0100 +@@ -735,6 +735,7 @@ + case ERR_RMDIR: return "rmdir() failed"; + case ERR_SYMLINK: return "symlink() failed"; + case ERR_DB_CONN_LOST: return "DB connection lost during enumeration"; ++ case ERR_CRYPTO: return "encryption error"; + case 404: return "HTTP file not found"; + case 407: return "HTTP proxy authentication failure"; + case 416: return "HTTP range request error"; +@@ -876,4 +877,4 @@ + return retval; + } + +-const char *BOINC_RCSID_ab90e1e = "$Id: 6.4.5-RSA_security.patch,v 1.1 2009/02/16 19:48:26 scarabeus Exp $"; ++const char *BOINC_RCSID_ab90e1e = "$Id: 6.4.5-RSA_security.patch,v 1.1 2009/02/16 19:48:26 scarabeus Exp $"; + + +--- boinc-6.4.5/lib/error_numbers.h 2009-02-15 05:27:43.290347301 +0100 ++++ boinc-6.4.5/lib/error_numbers.h 2009-02-15 05:31:25.558348407 +0100 +@@ -185,6 +185,7 @@ + #define ERR_RMDIR -227 + #define ERR_SYMLINK -229 + #define ERR_DB_CONN_LOST -230 ++#define ERR_CRYPTO -231 + + // PLEASE: add a text description of your error to + // the text description function boincerror() in str_util.C. + |