diff options
| author |   Sam James <sam@gentoo.org> | 2021-06-08 09:15:09 +0000 |
|---|---|---|
| committer | Sam James <sam@gentoo.org> | 2021-06-08 09:15:46 +0000 |
| commit | fd084561a392cdbfe60d4240abf7069b9c8d78bd (patch) | |
| tree | 8a258b5056278a3ed94c7b1db7163b0a03fbc2e4 /net-ftp/vsftpd | |
| parent | dev-php/composer: bump to v2.1.2 (diff) | |
| download | gentoo-fd084561a392cdbfe60d4240abf7069b9c8d78bd.tar.gz gentoo-fd084561a392cdbfe60d4240abf7069b9c8d78bd.tar.bz2 gentoo-fd084561a392cdbfe60d4240abf7069b9c8d78bd.zip | |
net-ftp/vsftpd: add 3.0.4
Restores seccomp filtering as changes were made upstream.
Closes: https://bugs.gentoo.org/443898
Signed-off-by: Sam James <sam@gentoo.org>
Diffstat (limited to 'net-ftp/vsftpd')
| -rw-r--r-- | net-ftp/vsftpd/Manifest | 1 | ||||
| -rw-r--r-- | net-ftp/vsftpd/vsftpd-3.0.4.ebuild | 147 |
2 files changed, 148 insertions, 0 deletions
diff --git a/net-ftp/vsftpd/Manifest b/net-ftp/vsftpd/Manifest index 672d3786dd43..93494676a05b 100644 --- a/net-ftp/vsftpd/Manifest +++ b/net-ftp/vsftpd/Manifest @@ -1 +1,2 @@ DIST vsftpd-3.0.3.tar.gz 196649 BLAKE2B dbf96e788494c29d78ca49fad6a03641c9725f9a5b01a4059ad009870fdc28520cd467cd8288a8a9a520c411c495a42c3fff57ee1069efc65840adb245792dca SHA512 5a4410a88e72ecf6f60a60a89771bcec300c9f63c2ea83b219bdf65fd9749b9853f9579f7257205b55659aefcd5dab243eba878dbbd4f0ff8532dd6e60884df7 +DIST vsftpd-3.0.4.tar.gz 197637 BLAKE2B 3a2457bd74076de8ffba7ad2861009157c80dd9f38cdb63033804c72d7482666f7e1a400777e2cff4170f0999d79f9d384339ade3ad48f2a7567b2e684e48817 SHA512 a4c3b28ef7bd762dcfe53f5c9b68fc1bb371d2eb61dc88038959cc9f5efba8cc2c45a15956a7fddbac3b1ce03d8555df8fb7b86300e273a78e632f3dac15c2e3 diff --git a/net-ftp/vsftpd/vsftpd-3.0.4.ebuild b/net-ftp/vsftpd/vsftpd-3.0.4.ebuild new file mode 100644 index 000000000000..5803985cfa00 --- /dev/null +++ b/net-ftp/vsftpd/vsftpd-3.0.4.ebuild @@ -0,0 +1,147 @@ +# Copyright 1999-2021 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=7 + +inherit systemd toolchain-funcs + +DESCRIPTION="Very Secure FTP Daemon written with speed, size and security in mind" +HOMEPAGE="http://vsftpd.beasts.org/" +SRC_URI="http://security.appspot.com/downloads/${P}.tar.gz" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~s390 ~sparc ~x86" +IUSE="caps pam tcpd ssl selinux xinetd" + +DEPEND="caps? ( >=sys-libs/libcap-2 ) + pam? ( sys-libs/pam ) + tcpd? ( >=sys-apps/tcp-wrappers-7.6 ) + ssl? ( dev-libs/openssl:0= )" +RDEPEND="${DEPEND} + net-ftp/ftpbase + selinux? ( sec-policy/selinux-ftp ) + xinetd? ( sys-apps/xinetd )" + +PATCHES=( + # kerberos patch. bug #335980 + "${FILESDIR}/${PN}-2.3.2-kerberos.patch" + + # Patch the source, config and the manpage to use /etc/vsftpd/ + "${FILESDIR}/${PN}-2.3.5-gentoo.patch" + + # Fix building without the libcap + "${FILESDIR}/${PN}-2.1.0-caps.patch" + + # Fix building on alpha. Bug #405829 + "${FILESDIR}/${PN}-3.0.2-alpha.patch" + + # Bug #335977 + "${FILESDIR}"/${PN}-3.0.0-Makefile.patch + + # Bug #450536 + "${FILESDIR}"/${PN}-3.0.2-remove-legacy-cap.patch + + # Bug #630704 + "${FILESDIR}"/${PN}-3.0.3-sparc.patch + + # https://bugs.gentoo.org/443898 + #"${FILESDIR}"/vsftpd-disable-seccomp-sandbox.patch +) + +src_prepare() { + # Configure vsftpd build defaults + if use tcpd ; then + echo "#define VSF_BUILD_TCPWRAPPERS" >> builddefs.h || die + fi + + if use ssl ; then + echo "#define VSF_BUILD_SSL" >> builddefs.h || die + fi + + if ! use pam; then + echo "#undef VSF_BUILD_PAM" >> builddefs.h || die + fi + + # Ensure that we don't link against libcap unless asked + if ! use caps ; then + sed -i '/^#define VSF_SYSDEP_HAVE_LIBCAP$/ d' sysdeputil.c || die + eapply "${FILESDIR}"/${PN}-2.2.0-dont-link-caps.patch + fi + + # Let portage control stripping + sed -i '/^LINK[[:space:]]*=[[:space:]]*/ s/-Wl,-s//' Makefile || die + + default +} + +src_compile() { + # Override LIBS variable. Bug #508192 + LIBS= + use caps && LIBS+=" -lcap" + use pam && LIBS+=" -lpam" + use tcpd && LIBS+=" -lwrap" + use ssl && LIBS+=" -lssl -lcrypto" + + tc-export CC + + CFLAGS="${CFLAGS}" emake LIBS="${LIBS}" +} + +src_install() { + into /usr + doman ${PN}.conf.5 ${PN}.8 + dosbin ${PN} + + dodoc AUDIT BENCHMARKS BUGS Changelog FAQ \ + README README.security REWARD SIZE \ + SPEED TODO TUNING + newdoc ${PN}.conf ${PN}.conf.example + + docinto security + dodoc SECURITY/* + + docinto examples + dodoc -r EXAMPLE/* + + insinto /etc/${PN} + newins ${PN}.conf{,.example} + + insinto /etc/logrotate.d + newins "${FILESDIR}"/${PN}.logrotate ${PN} + + if use xinetd ; then + insinto /etc/xinetd.d + newins "${FILESDIR}"/${PN}.xinetd ${PN} + fi + + newinitd "${FILESDIR}"/${PN}.init ${PN} + + keepdir /usr/share/${PN}/empty + + exeinto /usr/libexec + doexe "${FILESDIR}"/vsftpd-checkconfig.sh + systemd_dounit "${FILESDIR}"/${PN}.service + systemd_newunit "${FILESDIR}"/${PN}_at.service "${PN}@.service" + systemd_dounit "${FILESDIR}"/${PN}.socket +} + +pkg_preinst() { + # If we use xinetd, then we set listen=NO + # so that our default config works under xinetd - fixes #78347 + if use xinetd ; then + sed -i 's/listen=YES/listen=NO/g' "${D}"/etc/${PN}/${PN}.conf.example || die + fi +} + +pkg_postinst() { + einfo "vsftpd openRC init script can now be multiplexed." + einfo "The default init script forces /etc/vsftpd/vsftpd.conf to exist." + einfo "If you symlink the init script to another one, say vsftpd.foo" + einfo "then that uses /etc/vsftpd/foo.conf instead." + einfo + einfo "Example:" + einfo " cd /etc/init.d" + einfo " ln -s vsftpd vsftpd.foo" + einfo "You can now treat vsftpd.foo like any other service" +} |