From owner-svn-ports-head@FreeBSD.ORG  Fri May 17 13:56:29 2013
Return-Path: <owner-svn-ports-head@FreeBSD.ORG>
Delivered-To: svn-ports-head@freebsd.org
Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115])
 by hub.freebsd.org (Postfix) with ESMTP id D5808B0D;
 Fri, 17 May 2013 13:56:29 +0000 (UTC)
 (envelope-from bdrewery@FreeBSD.org)
Received: from svn.freebsd.org (svn.freebsd.org
 [IPv6:2001:1900:2254:2068::e6a:0])
 by mx1.freebsd.org (Postfix) with ESMTP id B9A24E21;
 Fri, 17 May 2013 13:56:29 +0000 (UTC)
Received: from svn.freebsd.org ([127.0.1.70])
 by svn.freebsd.org (8.14.6/8.14.6) with ESMTP id r4HDuTIY069236;
 Fri, 17 May 2013 13:56:29 GMT
 (envelope-from bdrewery@svn.freebsd.org)
Received: (from bdrewery@localhost)
 by svn.freebsd.org (8.14.6/8.14.5/Submit) id r4HDuT9r069234;
 Fri, 17 May 2013 13:56:29 GMT
 (envelope-from bdrewery@svn.freebsd.org)
Message-Id: <201305171356.r4HDuT9r069234@svn.freebsd.org>
From: Bryan Drewery <bdrewery@FreeBSD.org>
Date: Fri, 17 May 2013 13:56:29 +0000 (UTC)
To: ports-committers@freebsd.org, svn-ports-all@freebsd.org,
 svn-ports-head@freebsd.org
Subject: svn commit: r318386 - in head/security/openssh-portable: . files
X-SVN-Group: ports-head
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-ports-head@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: SVN commit messages for the ports tree for head
 <svn-ports-head.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/svn-ports-head>,
 <mailto:svn-ports-head-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-ports-head>
List-Post: <mailto:svn-ports-head@freebsd.org>
List-Help: <mailto:svn-ports-head-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/svn-ports-head>,
 <mailto:svn-ports-head-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 17 May 2013 13:56:29 -0000

Author: bdrewery
Date: Fri May 17 13:56:29 2013
New Revision: 318386
URL: http://svnweb.freebsd.org/changeset/ports/318386

Log:
  - Remove CHROOT option and patch. ChrootDirectory was added in 5.0
    to achieve the same thing.

Modified:
  head/security/openssh-portable/Makefile
  head/security/openssh-portable/files/patch-session.c

Modified: head/security/openssh-portable/Makefile
==============================================================================
--- head/security/openssh-portable/Makefile	Fri May 17 13:55:37 2013	(r318385)
+++ head/security/openssh-portable/Makefile	Fri May 17 13:56:29 2013	(r318386)
@@ -40,7 +40,7 @@ SUDO?=		# empty
 MAKE_ENV+=	SUDO="${SUDO}"
 
 OPTIONS_DEFINE=		PAM TCP_WRAPPERS LIBEDIT BSM \
-			KERB_GSSAPI OPENSSH_CHROOT HPN LPK X509 \
+			KERB_GSSAPI HPN LPK X509 \
 			OVERWRITE_BASE SCTP
 OPTIONS_DEFAULT=	LIBEDIT PAM TCP_WRAPPERS
 OPTIONS_RADIO=		KERBEROS
@@ -48,7 +48,6 @@ OPTIONS_RADIO_KERBEROS=	MIT HEIMDAL HEIM
 TCP_WRAPPERS_DESC=	Enable tcp_wrappers support
 BSM_DESC=		Enable OpenBSM Auditing
 KERB_GSSAPI_DESC=	Enable Kerberos/GSSAPI patch (req: GSSAPI)
-OPENSSH_CHROOT_DESC=	Enable CHROOT support
 HPN_DESC=		Enable HPN-SSH patch
 LPK_DESC=		Enable LDAP Public Key (LPK) patch
 X509_DESC=		Enable x509 certificate patch
@@ -134,10 +133,6 @@ LDFLAGS=		# empty
 CONFIGURE_ARGS+=	--with-ssl-dir=${OPENSSLBASE}
 .endif
 
-.if ${PORT_OPTIONS:MOPENSSH_CHROOT}
-CFLAGS+=		-DCHROOT
-.endif
-
 # http://www.psc.edu/index.php/hpn-ssh
 .if ${PORT_OPTIONS:MHPN}
 PATCHFILES+=		${PORTNAME}-5.8p1-hpn13v11.diff.gz

Modified: head/security/openssh-portable/files/patch-session.c
==============================================================================
--- head/security/openssh-portable/files/patch-session.c	Fri May 17 13:55:37 2013	(r318385)
+++ head/security/openssh-portable/files/patch-session.c	Fri May 17 13:56:29 2013	(r318386)
@@ -105,33 +105,7 @@ PR:             35904
  
  	/* Set custom environment options from RSA authentication. */
  	if (!options.use_login) {
-@@ -1470,14 +1499,35 @@
- void
- do_setusercontext(struct passwd *pw)
- {
-+#ifdef CHROOT
-+	char *user_dir, *new_root;
-+#endif /* CHROOT */
- 	char *chroot_path, *tmp;
- 
-+ #ifdef CHROOT
-+	user_dir = xstrdup(pw->pw_dir);
-+	new_root = user_dir + 1;
-+ 
-+	while((new_root = strchr(new_root, '.')) != NULL) {
-+		new_root--;
-+		if(strncmp(new_root, "/./", 3) == 0) {
-+			*new_root = '\0';
-+			new_root += 2;
-+			if(chroot(user_dir) != 0)
-+				fatal("Couldn't chroot to user directory %s. %s", user_dir, strerror(errno));
-+			pw->pw_dir = new_root;
-+ 			break;
-+ 		}
-+ 		new_root += 2;
-+	}
-+ #endif /* CHROOT */
-+
+@@ -1473,9 +1502,9 @@
  	platform_setusercontext(pw);
  
  	if (platform_privileged_uidswap()) {
@@ -142,7 +116,7 @@ PR:             35904
  			perror("unable to set user context");
  			exit(1);
  		}
-@@ -1700,6 +1750,10 @@
+@@ -1700,6 +1729,10 @@
  	 */
  	environ = env;
  
@@ -153,7 +127,7 @@ PR:             35904
  #if defined(KRB5) && defined(USE_AFS)
  	/*
  	 * At this point, we check to see if AFS is active and if we have
-@@ -1729,9 +1783,6 @@
+@@ -1729,9 +1762,6 @@
  	/* Change current directory to the user's home directory. */
  	if (chdir(pw->pw_dir) < 0) {
  		/* Suppress missing homedir warning for chroot case */