Page MenuHomeFreeBSD

security/heimdal: Remove EGD
Needs ReviewPublic

Authored by brnrd on Jul 2 2016, 12:38 PM.

Details

Reviewers
hrs
Summary
security/heimdal: Remove EGD

  - Backport EGD removal from upstream 1.6 branch
  - Move from USE_OPENSSL to USES=ssl
  - Use target-OPT for CRACKLIB option

PR:		198527
Reviewed_by:	hrs (maintainer)
Approved by:	(maintainer)
Differential_Revision:	D7053
Test Plan
  • poudriere testport
  • portlint -AC

Diff Detail

Repository
rP FreeBSD ports repository
Lint
No Linters Available
Unit
No Unit Test Coverage
Build Status
Buildable 4395
Build 4445: arc lint + arc unit

Event Timeline

brnrd retitled this revision from to security/heimdal: Remove EGD.Jul 2 2016, 12:38 PM
brnrd updated this object.
brnrd edited the test plan for this revision. (Show Details)
brnrd updated this revision to Diff 18072.
brnrd updated this object.Jul 2 2016, 12:40 PM
brnrd added a reviewer: hrs.
security/heimdal/files/patch-Remove-EGD-1.6
420

imho, there's missing minus sign

security/heimdal/files/patch-Remove-EGD-1.6
420

it should look like this:

@@ -62,22 +62,8 @@ seed_something(void)
     /* Calling RAND_status() will try to use /dev/urandom if it exists so
        we do not have to deal with it. */
     if (RAND_status() != 1) {
-#ifndef _WIN32
-       krb5_context context;
-       const char *p;
-
-       /* Try using egd */
-       if (!krb5_init_context(&context)) {
-           p = krb5_config_get_string(context, NULL, "libdefaults",
-                                      "egd_socket", NULL);
-           if (p != NULL)
-               RAND_egd_bytes(p, ENTROPY_NEEDED);
-           krb5_free_context(context);
-       }
-#else
        /* TODO: Once a Windows CryptoAPI RAND method is defined, we
           can use that and failover to another method. */
-#endif
     }

     if (RAND_status() == 1)    {