pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/chat/jabberd Backport fix for DoS attack in handling S...
details: https://anonhg.NetBSD.org/pkgsrc/rev/fc61efc99529
branches: trunk
changeset: 490814:fc61efc99529
user: salo <salo%pkgsrc.org@localhost>
date: Sun Mar 20 18:50:09 2005 +0000
description:
Backport fix for DoS attack in handling SSL connections from 1.4.3.
Bump PKGREVISION.
diffstat:
chat/jabberd/Makefile | 4 ++--
chat/jabberd/distinfo | 3 ++-
chat/jabberd/patches/patch-ad | 29 +++++++++++++++++++++++++++++
3 files changed, 33 insertions(+), 3 deletions(-)
diffs (61 lines):
diff -r e5ac038c838d -r fc61efc99529 chat/jabberd/Makefile
--- a/chat/jabberd/Makefile Sun Mar 20 18:21:39 2005 +0000
+++ b/chat/jabberd/Makefile Sun Mar 20 18:50:09 2005 +0000
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile,v 1.10 2004/12/28 02:47:41 reed Exp $
+# $NetBSD: Makefile,v 1.11 2005/03/20 18:50:09 salo Exp $
#
DISTNAME= jabber-1.4.2
PKGNAME= jabberd-1.4.2
-PKGREVISION= 3
+PKGREVISION= 4
CATEGORIES= chat
MASTER_SITES= http://jabberd.jabberstudio.org/downloads/ \
http://jabberd.jabberstudio.org/1.4/dist/
diff -r e5ac038c838d -r fc61efc99529 chat/jabberd/distinfo
--- a/chat/jabberd/distinfo Sun Mar 20 18:21:39 2005 +0000
+++ b/chat/jabberd/distinfo Sun Mar 20 18:50:09 2005 +0000
@@ -1,7 +1,8 @@
-$NetBSD: distinfo,v 1.2 2004/02/21 05:38:29 xtraeme Exp $
+$NetBSD: distinfo,v 1.3 2005/03/20 18:50:09 salo Exp $
SHA1 (jabber-1.4.2.tar.gz) = aa0bc2e9815e4fa4a1ca8ba7f320bfd3c85ba11f
Size (jabber-1.4.2.tar.gz) = 690217 bytes
SHA1 (patch-aa) = 726ff89388dca237ac9acb83113a683feca8a356
SHA1 (patch-ab) = 8722b0db3870e14eaf3e40f5493544db8a813fc1
SHA1 (patch-ac) = 3b17761c9ea2d1e17f3194ac8cf54fbca4c80367
+SHA1 (patch-ad) = 0e8f2faa154e8c147b129aa3ca3cfd2dbaff1093
diff -r e5ac038c838d -r fc61efc99529 chat/jabberd/patches/patch-ad
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/chat/jabberd/patches/patch-ad Sun Mar 20 18:50:09 2005 +0000
@@ -0,0 +1,29 @@
+$NetBSD: patch-ad,v 1.3 2005/03/20 18:50:09 salo Exp $
+
+--- jabberd/mio_ssl.c.orig 2002-02-08 08:39:27.000000000 +0100
++++ jabberd/mio_ssl.c 2005-03-20 19:38:42.000000000 +0100
+@@ -219,6 +219,15 @@
+ SSL_CTX *ctx = NULL;
+ int fd;
+ int sret;
++ int flags;
++
++ fd = accept(m->fd, serv_addr, addrlen);
++
++ /* set the socket to non-blocking as this is not
++ inherited */
++ flags = fcntl(fd, F_GETFL, 0);
++ flags |= O_NONBLOCK;
++ fcntl(fd, F_SETFL, flags);
+
+ if(m->ip == NULL)
+ {
+@@ -226,8 +235,6 @@
+ return -1;
+ }
+
+- fd = accept(m->fd, serv_addr, addrlen);
+-
+ ctx = ghash_get(ssl__ctxs, m->ip);
+ if(ctx == NULL)
+ {
Home |
Main Index |
Thread Index |
Old Index