FreeBSD Bugzilla – Attachment 176119 Details for
Bug 203014
security/tor and security/tor-devel: Update and fix a few problems
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
[PATCH] security/tor-devel: r424527
security_tor-devel_patch_r424527 (text/plain), 7.41 KB, created by
VinÃcius Zavam
on 2016-10-24 20:26:20 UTC
(
hide
)
Description:
[PATCH] security/tor-devel: r424527
Filename:
MIME Type:
Creator:
VinÃcius Zavam
Created:
2016-10-24 20:26:20 UTC
Size:
7.41 KB
patch
obsolete
>Index: security/tor-devel/Makefile >=================================================================== >--- security/tor-devel/Makefile (revision 424527) >+++ security/tor-devel/Makefile (working copy) >@@ -3,6 +3,7 @@ > > PORTNAME= tor > DISTVERSION= 0.2.9.4-alpha >+PORTREVISION= 1 > CATEGORIES= security net ipv6 > MASTER_SITES= TOR > PKGNAMESUFFIX= -devel >@@ -13,29 +14,64 @@ > LICENSE= BSD3CLAUSE > LICENSE_FILE= ${WRKSRC}/LICENSE > >-BROKEN_mips64= Does not build: error: Need a uint128_t implementation! >-BROKEN_powerpc64= Does not build >-BROKEN_sparc64= Does not build: error: Need a uint128_t implementation! >+BROKEN_mips64= Does not build: error: Need a uint128_t implementation! >+BROKEN_powerpc64= Does not build. >+BROKEN_sparc64= Does not build: error: Need a uint128_t implementation! > >-USES= cpe gmake >+USES= cpe ssl > CPE_VENDOR= torproject >-#CPE_VERSION= ${DISTVERSION:C/-.*//} >-#CPE_UPDATE= ${DISTVERSION:C/.*-//} >-GNU_CONFIGURE= yes >-CONFIGURE_ARGS= --with-openssl-dir="${OPENSSLBASE}" --disable-asciidoc >-CONFIGURE_ENV= TOR_CPPFLAGS_libevent="-I${LOCALBASE}/include" \ >- TOR_LDFLAGS_libevent="-L${LOCALBASE}/lib/" \ >- TOR_LIBEVENT_LIBS="${TOR_LIBEVENT_LIBS}" >+# CPE_VERSION= ${DISTVERSION:C/-.*//} >+# CPE_UPDATE= ${DISTVERSION:C/.*-//} >+HAS_CONFIGURE= yes >+CONFIGURE_ARGS= --disable-asciidoc \ >+ --with-tor-user=${USERS} --with-tor-group=${GROUPS} \ >+ --with-libevent-dir=${LOCALBASE} \ >+ --with-zlib-dir=/usr >+CONFIGURE_ENV= TOR_CPPFLAGS_libevent='-I${LOCALBASE}/include' \ >+ TOR_CPPFLAGS_zlib='-I/usr/include' \ >+ TOR_LDFLAGS_libevent='-L${LOCALBASE}/lib' \ >+ TOR_LDFLAGS_zlib='-L/usr/lib' > >-OPTIONS_DEFINE= STATIC_TOR TCMALLOC TOR2WEB TRANSPARENT >+OPTIONS_DEFINE= STATIC TOR2WEB > >-STATIC_TOR_DESC= Build a static tor >-TCMALLOC_DESC= Use the tcmalloc memory allocation library >-TOR2WEB_DESC= Faster but non-anonymous hidden services >-TRANSPARENT_DESC= Transparent proxy support >+OPTIONS_RADIO= MALLOC >+OPTIONS_RADIO_MALLOC= DMALLOC TCMALLOC > >-OPTIONS_DEFAULT= TRANSPARENT >+OPTIONS_SINGLE= OPENSSL >+OPTIONS_SINGLE_OPENSSL= OPENSSL_BASE OPENSSL_PORT > >+DMALLOC_DESC= Use debug memory allocation library >+MALLOC_DESC= Dynamic memory allocation management >+OPENSSL_BASE_DESC= Use FreeBSD's base OpenSSL libraries >+OPENSSL_PORT_DESC= Use OpenSSL from ports instead of FreeBSD's >+STATIC_DESC= Create an entirely static Tor binary >+TCMALLOC_DESC= Use tcmalloc memory allocation library >+TOR2WEB_DESC= Support Tor2Web non-anonymous mode >+ >+OPTIONS_DEFAULT= OPENSSL_BASE >+ >+DMALLOC_CONFIGURE_ON= --with-dmalloc >+DMALLOC_CONFIGURE_OFF= >+DMALLOC_LIB_DEPENDS= libdmalloc.so:devel/dmalloc >+OPENSSL_BASE_CONFIGURE_ON= --with-openssl-dir=/usr >+OPENSSL_BASE_CONFIGURE_OFF= >+OPENSSL_BASE_CONFIGURE_ENV= TOR_CPPFLAGS_openssl='-I/usr/include' \ >+ TOR_LDFLAGS_openssl='-L/usr/lib' >+OPENSSL_BASE_LIB_DEPENDS= libevent.so:devel/libevent2 >+OPENSSL_PORT_CONFIGURE_ON= --with-openssl-dir=${OPENSSLBASE} >+OPENSSL_PORT_CONFIGURE_OFF= >+OPENSSL_PORT_CONFIGURE_ENV= TOR_CPPFLAGS_openssl='-I${OPENSSLBASE}/include' \ >+ TOR_LDFLAGS_openssl='-L${OPENSSLBASE}/lib' >+OPENSSL_PORT_LIB_DEPENDS= libevent.so:devel/libevent2 >+STATIC_CONFIGURE_ON= --enable-static-tor >+STATIC_CONFIGURE_OFF= >+STATIC_CONFIGURE_BUILD_DEPENDS= ${LOCALBASE}/lib/libevent.a:devel/libevent2 >+TCMALLOC_CONFIGURE_ON= --with-tcmalloc >+TCMALLOC_CONFIGURE_OFF= >+TCMALLOC_LIB_DEPENDS= libtcmalloc.so:devel/google-perftools >+TOR2WEB_CONFIGURE_ON= --enable-tor2web-mode >+TOR2WEB_CONFIGURE_OFF= >+ > USE_RC_SUBR= tor > SUB_FILES= pkg-message > >@@ -44,67 +80,36 @@ > > CONFLICTS= tor-[0-9]* > >-STATIC_TOR_USES= ssl:build >-STATIC_TOR_USES_OFF= ssl >- > .include <bsd.port.options.mk> > >-.if ${OSVERSION} < 1000000 >+.if ${OSVERSION} < 1000015 > WITH_OPENSSL_PORT= yes > .endif > >-.if !defined(USE_GCC) && empty(CC:T:M*gcc4*) && \ >-empty(PORT_OPTIONS:MSTATIC_TOR) && empty(ARCH:Mia64) >-CONFIGURE_ARGS+= --enable-gcc-hardening >-.else >-CONFIGURE_ARGS+= --disable-gcc-hardening >-.endif >- >-.if ${PORT_OPTIONS:MSTATIC_TOR} >-BUILD_DEPENDS += ${LOCALBASE}/lib/libevent.a:devel/libevent2 >-CONFIGURE_ARGS+= --enable-static-tor \ >- --with-zlib-dir=/usr/lib --disable-linker-hardening >-TOR_LIBEVENT_LIBS= ${LOCALBASE}/lib/libevent.a >-.else >-CONFIGURE_ARGS+= --enable-linker-hardening >-LIB_DEPENDS+= libevent.so:devel/libevent2 >-TOR_LIBEVENT_LIBS= -levent >-.endif >- >-.if ${PORT_OPTIONS:MTCMALLOC} >-CONFIGURE_ARGS+= --with-tcmalloc >-.if ${PORT_OPTIONS:MSTATIC_TOR} >+.if !empty(PORT_OPTIONS:MSTATIC) >+. if !empty(PORT_OPTIONS:MDMALLOC) >+BUILD_DEPENDS+= ${LOCALBASE}/lib/libdmalloc.a:devel/dmalloc >+. endif >+. if !empty(PORT_OPTIONS:MTCMALLOC) > BUILD_DEPENDS+= ${LOCALBASE}/lib/libtcmalloc.a:devel/google-perftools >-.else >-LIB_DEPENDS+= libtcmalloc.so:devel/google-perftools >+. endif > .endif >-.endif > >-.if ${PORT_OPTIONS:MTOR2WEB} >-CONFIGURE_ARGS+= --enable-tor2web-mode >-.endif >- >-.if ${PORT_OPTIONS:MTRANSPARENT} >-CONFIGURE_ARGS+= --enable-transparent >-.else >-CONFIGURE_ARGS+= --disable-transparent >-.endif >- > post-patch: >- @${REINPLACE_CMD} -E -e "s@(-z) (relro|now)@-Wl,\1,\2@g" \ >- ${WRKSRC}/configure >+# @${REINPLACE_CMD} -E -e "s@(-z) (relro|now)@-Wl,\1,\2@g" \ >+# ${WRKSRC}/configure > @${REINPLACE_CMD} -e 's|lib/tor|db/tor|' \ > ${WRKSRC}/src/config/torrc.*.in \ > ${WRKSRC}/doc/tor.1.* \ > ${WRKSRC}/doc/tor.html.in > >-post-patch-STATIC_TOR-off: >- @${REINPLACE_CMD} -e "s@-ltcmalloc@${LOCALBASE}/lib/libtcmalloc.so@" \ >- ${WRKSRC}/configure >+# post-patch-STATIC-off: >+# @${REINPLACE_CMD} -e "s@-ltcmalloc@${LOCALBASE}/lib/libtcmalloc.so@" \ >+# ${WRKSRC}/configure > >-post-patch-STATIC_TOR-on: >- @${REINPLACE_CMD} -e "s@-ltcmalloc@${LOCALBASE}/lib/libtcmalloc.a@" \ >- ${WRKSRC}/configure >+# post-patch-STATIC-on: >+# @${REINPLACE_CMD} -e "s@-ltcmalloc@${LOCALBASE}/lib/libtcmalloc.a@" \ >+# ${WRKSRC}/configure > > post-configure: > @${REINPLACE_CMD} -e '\|^nodist_man1_MANS =|s|$$|$$(install_mans:=.1)|' \ >@@ -113,10 +118,4 @@ > post-install: > @${MKDIR} ${STAGEDIR}/var/log/tor ${STAGEDIR}/var/run/tor > >-.if ! ${PORT_OPTIONS:MTOR2WEB} >-check regression-test test: build >- @cd ${BUILD_WRKSRC} ; ${SETENV} ${MAKE_ENV} ${MAKE_CMD} \ >- ${MAKE_ARGS} check >-.endif >- > .include <bsd.port.mk> >Index: security/tor-devel/files/pkg-message.in >=================================================================== >--- security/tor-devel/files/pkg-message.in (revision 424527) >+++ security/tor-devel/files/pkg-message.in (working copy) >@@ -1,14 +1,16 @@ > ================================================================================ >-To enable the tor server, set tor_enable="YES" in your /etc/rc.conf >-and edit %%PREFIX%%/etc/tor/torrc as desired. (However, note that the >-%%PREFIX%%/etc/rc.d/tor rc.subr script can override some torrc >-options: see that script for details.) To use the torify script, install >-the net/torsocks port. >+To enable the Tor, please set tor_enable="YES" in your /etc/rc.conf and >+edit %%PREFIX%%/etc/tor/torrc as desired (however, note that the >+%%PREFIX%%/etc/rc.d/tor rc.subr script can override some torrc options; >+see that script for details). > >-Tor users are strongly advised to prevent traffic analysis that >-exploits sequential IP IDs by setting: >+To use torify, you need to install the 'net/torsocks' port. > >-sysctl net.inet.ip.random_id=1 >+Tor users are strongly advised to prevent traffic analysis that exploits >+sequential IP IDs by setting: > >-(see sysctl.conf(5)). >+ # sysctl net.inet.ip.random_id=1 >+ >+Please refer to sysctl.conf(5) for more information on how to make this change >+permanent. > ================================================================================
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=176119">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 203014
:
162605
|
162606
|
162608
|
162609
|
162610
|
162611
|
162613
|
162616
|
162630
|
162631
|
162632
|
162633
|
163253
|
163254
|
163337
|
163338
|
163340
|
163341
|
163342
|
163355
|
163356
|
163538
|
164153
|
176119
|
176798
|
176829
|
176832
|
176857
|
176858
|
176873
|
176874
|
176875
|
177615
|
177618