From owner-freebsd-ports-bugs@FreeBSD.ORG Thu Dec 4 05:40:23 2003 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D3CF316A4CE for ; Thu, 4 Dec 2003 05:40:23 -0800 (PST) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id CDEC743FF2 for ; Thu, 4 Dec 2003 05:40:13 -0800 (PST) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.9/8.12.9) with ESMTP id hB4DeDFY092191 for ; Thu, 4 Dec 2003 05:40:13 -0800 (PST) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.9/8.12.9/Submit) id hB4DeDnP092190; Thu, 4 Dec 2003 05:40:13 -0800 (PST) (envelope-from gnats) Resent-Date: Thu, 4 Dec 2003 05:40:13 -0800 (PST) Resent-Message-Id: <200312041340.hB4DeDnP092190@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Marius Strobl Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 870E716A4CE for ; Thu, 4 Dec 2003 05:37:52 -0800 (PST) Received: from alchemy.franken.de (alchemy.franken.de [194.94.249.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id B8BA043FD7 for ; Thu, 4 Dec 2003 05:37:50 -0800 (PST) (envelope-from marius@alchemy.franken.de) Received: from alchemy.franken.de (localhost [127.0.0.1]) id hB4DbnKr042963; Thu, 4 Dec 2003 14:37:49 +0100 (CET) (envelope-from marius@alchemy.franken.de) Received: (from marius@localhost) by alchemy.franken.de (8.12.10/8.12.10/Submit) id hB4DbmIY042962; Thu, 4 Dec 2003 14:37:48 +0100 (CET) (envelope-from marius) Message-Id: <200312041337.hB4DbmIY042962@alchemy.franken.de> Date: Thu, 4 Dec 2003 14:37:48 +0100 (CET) From: Marius Strobl To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 cc: markun@onohara.to Subject: ports/59948: security/clamav several fixes and improvements X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Marius Strobl List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Dec 2003 13:40:24 -0000 >Number: 59948 >Category: ports >Synopsis: security/clamav several fixes and improvements >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu Dec 04 05:40:12 PST 2003 >Closed-Date: >Last-Modified: >Originator: Marius Strobl >Release: FreeBSD 5.2-BETA sparc64 >Organization: >Environment: System: FreeBSD alchemy.franken.de 5.2-BETA FreeBSD 5.2-BETA #6: Tue Nov 25 20:03:30 CET 2003 root@alchemy.franken.de:/tmp/obj/usr/src/sys/alchemy sparc64 >Description: The patch referenced below implements the following changes: - Respect PTHREAD_CFLAGS. - Use USE_LIBTOOL_VER=14 as the libtool shipping with clamav 0.65 erroneously links against libc _and_ libc_r on FreeBSD 4. - Don't link against libcipher on FreeBSD < 501100, clamav doesn't depend on it. The linker warnings suggesting that it is required were triggered by linking against both, libc and libc_r. - Unconditionally depend on math/libgmp4. Otherwise, if libgmp4 is already installed on a FreeBSD 4-STABLE system compilation of security/clamav fails, as the headers of libgmp4 are used but the base libgmp is used for linking. - Fix generation of clamav-milter.8 when building with WITH_MILTER (part of new files/patch-clamav-milter::Makefile.in). - Don't USE_GETOPT_LONG when compiling with WITH_MILTER, clamav uses its own getopt_long() regardless if a devel/libgnugetopt is installed or the version in the base of FreeBSD 5 is present. - Allow compilation of WITH_MILTER with mail/sendmail. - Install a startup-script (taken from security/clamav-devel with some fixes in comments) for clamav-milter when compiled with WITH_MILTER. BEWARE: As rcoder(8) isn't present on FreeBSD 4 but clamd must be be started before clamav-milter the startup-script for clamd must alphabetically arranged before the startup-script for clamav-milter. I decided to use the clamd statup-scrtipt from security/clamav-devel (clamav-clamd.sh), so users running an older version of security/clamav have to change 'clamd_enable="YES"' to 'clamav_clamd_enable="YES"' in /etc/rc.conf. On the other hand this changes makes it easier to switch between security/clamav and security/clamav-devel. - In pkg-descr remove the note that clamav-milter doesn't build on FreeBSD 4 with base gcc, it builds fine there. Mention that clamav-milter can be optionally used (taken from pkg-descr of security/clamav-devel). - Fix compilation when an older version of security/clamav is installed. If there's an older version of libclamav installed clamav 0.65 will link against it instead of the newly built one. This is not a problem if the installed version is compatible with the new one as libclamav gets linked dynamically and the installed version will be replaced with the new one. However, if the older version is incompatible linking of clamav 0.65 fails. This problem was discovered by Jan-Peter Koopmann Jan-Peter.Koopmann@seceidos.de and the fix (most of the new patches in the files directory) confirmed working. - Remove the obsolete files/patch5-* patches. >How-To-Repeat: >Fix: Patch is at: http://quad.zeist.de/security_clamav.diff New files: files/clamav-clamd.sh files/clamav-milter.sh files/patch-clamav-milter::Makefile.in files/patch-clamd::Makefile.in files/patch-clamdscan::Makefile.in files/patch-clamscan::Makefile.in files/patch-freshclam::Makefile.in files/patch-sigtool::Makefile.in Deleted files: files/clamd.sh files/patch5-libclamav::zziplib::zzip-file.c files/patch5-libclamav::zziplib::zzip-stat.c >Release-Note: >Audit-Trail: >Unformatted: