diff options
Diffstat (limited to 'app-forensics')
17 files changed, 424 insertions, 104 deletions
diff --git a/app-forensics/Manifest.gz b/app-forensics/Manifest.gz Binary files differindex 69ca8f7be5b2..fb68aead4d77 100644 --- a/app-forensics/Manifest.gz +++ b/app-forensics/Manifest.gz diff --git a/app-forensics/honggfuzz/Manifest b/app-forensics/honggfuzz/Manifest index 4f49fc8eaf5a..90c0ffe10dfd 100644 --- a/app-forensics/honggfuzz/Manifest +++ b/app-forensics/honggfuzz/Manifest @@ -1,4 +1,5 @@ AUX honggfuzz-1.1-binutils-2.29.patch 569 BLAKE2B 63198bc698c56517cb7f6394808096e8cdf3261e244f398ae18b24a8031e95c7e55bf8cc131aafc3f0a6b92414a7ebae54c7087f6dd46983b581f50579398c62 SHA512 c86927faf45e345fd56ff0eaaebadaaff41f020f853df8c791dc04b7f00890d3bdfe173cd0e78d5293c0eeba88f0626585c611f40d9a5cd49e705135922e59fb +AUX honggfuzz-1.7-no-werror.patch 219 BLAKE2B 704987f5aa2bcd805e1235baf063c4e1a32ac203b1008899e4e2ee4c899a9d14534835fdffe244a6df58cf640ea7b4860182a3c5c2f98f6654f7ad8cfde8054b SHA512 9bae5bec03a1d22a80f4841aaf4b6a6659ccb3745f4c0fe43f6c60e73e9b09c71490e121bca4eb41612fb463132f4f3ec2769c4262ef0b5d954b8ccd0f3e7f2c DIST honggfuzz-1.3.tar.gz 64461562 BLAKE2B b17271d147bab5d03ed056623760bca84d497871971ca57bb431d0bf7da6e600db0e7435afc214bebbcffa411db8d12659c92ee26cc6ac9dbe6e78825b46f324 SHA512 768ec82088c587858200c02c32c040a37a4ebb8bb21e2c6263f533954f4a4e4733cc61f8c6bc0d393bd49d4658177a80dfbb5a75b5c6de2bc8e95011aaf2cc3c DIST honggfuzz-1.4.tar.gz 79323662 BLAKE2B 187f87b596f58efd07ad090a4ce5fee6eda84c2e60ebd6fabd4e2c31582eceb34866416ca2645ee16921ad25dd893deb9743b7a247c986a9e332ffbef51b30a0 SHA512 9eaf4cd9cdf9a9bff438b49f9bb2e217d796a072c083174a810a74f08ed02b520565e3cadcb405db86bbdc09588f11962090705a91f32258918628826eb355b7 DIST honggfuzz-1.5.tar.gz 79321550 BLAKE2B dbc45529c7144e8d9847580b80efdea27c3d5fd2c3bd3a740ddb754e7eb786de31e8ece68cc5c8cbe9373e70e7984379708f83f7ad858ae7bc5e9c1fc213a6c3 SHA512 41c84d37b00e713db4aa4c40e8b2c55afc886ec6bd0a2d66acdd6f6d5ca2f862b2cb0e8d53234f497dc1f3a90a26f1b08c2857cf6f30482c7086719d086ee97d @@ -8,5 +9,5 @@ EBUILD honggfuzz-1.3.ebuild 791 BLAKE2B 35a05e1c420d3a28ca243704124b88d2c7c47dd6 EBUILD honggfuzz-1.4.ebuild 791 BLAKE2B dfe9520d44330d497503cb548ea6a20892b56b32134ff7ed7ed2a453384ee59ea1217da512f3588aff5014fa59fc782482f3098fe91d61ca666a337a919c7509 SHA512 119f86e0a8bb0805ce61b53076db6421ef1ad35a2da75f13051bb91412928859145b7a98024b214bbb8b0e554db521aaa84de9ba25b0b46ca591842376e7494a EBUILD honggfuzz-1.5.ebuild 791 BLAKE2B dfe9520d44330d497503cb548ea6a20892b56b32134ff7ed7ed2a453384ee59ea1217da512f3588aff5014fa59fc782482f3098fe91d61ca666a337a919c7509 SHA512 119f86e0a8bb0805ce61b53076db6421ef1ad35a2da75f13051bb91412928859145b7a98024b214bbb8b0e554db521aaa84de9ba25b0b46ca591842376e7494a EBUILD honggfuzz-1.6.ebuild 791 BLAKE2B dfe9520d44330d497503cb548ea6a20892b56b32134ff7ed7ed2a453384ee59ea1217da512f3588aff5014fa59fc782482f3098fe91d61ca666a337a919c7509 SHA512 119f86e0a8bb0805ce61b53076db6421ef1ad35a2da75f13051bb91412928859145b7a98024b214bbb8b0e554db521aaa84de9ba25b0b46ca591842376e7494a -EBUILD honggfuzz-1.7.ebuild 791 BLAKE2B dfe9520d44330d497503cb548ea6a20892b56b32134ff7ed7ed2a453384ee59ea1217da512f3588aff5014fa59fc782482f3098fe91d61ca666a337a919c7509 SHA512 119f86e0a8bb0805ce61b53076db6421ef1ad35a2da75f13051bb91412928859145b7a98024b214bbb8b0e554db521aaa84de9ba25b0b46ca591842376e7494a +EBUILD honggfuzz-1.7.ebuild 843 BLAKE2B 09b2829fab1c5dc809f9659eb5c1917e194946e473022e10b947301344a7f66f8899318eeca5c94394b8d4e42aeee5b5f91bf87bb5bde86c3faa2dcd17732af6 SHA512 31284443db31b9332e77ca55b8adc103c682d7abe28b63730f9e5ab9820ab64512b3693165c323681c0e50caf85cd5f970349fd36ef7a1737d34f27648540de3 MISC metadata.xml 332 BLAKE2B 72702618670b8f8ef24ef68d5f9b1b29c8d25c3630cc5fb22ef859ea7879af84d0c7fc758a02a0b4175e10707f2c161930151b65e2e3d07f154a1b2c48fee152 SHA512 1f75a39cce6995d550344225849dafb3a980df19cc6afd10025e58e6c08086a27a67173ff435c084660970cb4ed18183914afeba712dc461d7fd55f83f9e679d diff --git a/app-forensics/honggfuzz/files/honggfuzz-1.7-no-werror.patch b/app-forensics/honggfuzz/files/honggfuzz-1.7-no-werror.patch new file mode 100644 index 000000000000..bf4d65377369 --- /dev/null +++ b/app-forensics/honggfuzz/files/honggfuzz-1.7-no-werror.patch @@ -0,0 +1,5 @@ +--- a/Makefile ++++ b/Makefile +@@ -29 +29 @@ HFUZZ_CC_SRCS := hfuzz_cc/hfuzz-cc.c +-COMMON_CFLAGS := -D_GNU_SOURCE -Wall -Werror -Wno-format-truncation -I. ++COMMON_CFLAGS := -D_GNU_SOURCE -Wall -Wno-format-truncation -I. diff --git a/app-forensics/honggfuzz/honggfuzz-1.7.ebuild b/app-forensics/honggfuzz/honggfuzz-1.7.ebuild index a1c990e10224..c41e64b032cb 100644 --- a/app-forensics/honggfuzz/honggfuzz-1.7.ebuild +++ b/app-forensics/honggfuzz/honggfuzz-1.7.ebuild @@ -1,4 +1,4 @@ -# Copyright 1999-2018 Gentoo Foundation +# Copyright 1999-2018 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 EAPI=6 @@ -28,8 +28,13 @@ DOCS=( README.md ) +PATCHES=( + "${FILESDIR}"/${PN}-1.7-no-werror.patch +) + src_prepare() { default + if has_version ">=sys-libs/binutils-libs-2.29"; then eapply "${FILESDIR}"/${PN}-1.1-binutils-2.29.patch fi diff --git a/app-forensics/libbfio/Manifest b/app-forensics/libbfio/Manifest deleted file mode 100644 index 989992a2ee81..000000000000 --- a/app-forensics/libbfio/Manifest +++ /dev/null @@ -1,7 +0,0 @@ -DIST libbfio-alpha-20120425.tar.gz 1569560 BLAKE2B e104c6c5e1a94410c8e4dc8020764cea0a1d0d12447d1b47483168e9a3ea6ec0233000b7cc9fd87dee30dc7df673e24fbd7649ef170ddad2ff4ba2e67d2e79ba SHA512 058d5018202c404d789531f308b66d9e72924f4ce9d6365477c84a327a3fe2a4efb9cd0cc173f29dbf2d18cf366772e5577ffea6d0953b752865cbdf4da48c20 -DIST libbfio-alpha-20130609.tar.gz 1858612 BLAKE2B 42a445ee31a97c764829f0078725da88f7ec9d1565509ad8ff7a2a0fb698a634ad30c9d17fdd25c9654d0d4281b32c0aab3f87f04730a51bbb0e9bb9c73f537d SHA512 b2f46c7631aa8dca63d6e915c69ba6136f0f777f138708c4751e24f3e96a2399721182ce281e032b617b17ce631876cefb8ef686b9bd1cb866f9f1033d1dd18b -DIST libbfio-alpha-20130721.tar.gz 1899281 BLAKE2B 13edc70920e455d3058a7d77ce3e87439f4abf2a193cb544c5926163f46c798ae3f1dd26bf330d53d69ff5e8f20109b7c14e54931f6ede21e879a9173bae94cb SHA512 9a9e8f913e145d5dcf5ee94351b4023a8d35492f5c9c3863f4caf0850e45f1b9c79ee3ec7e0565f85f91d11ff25d134f2c770b176e3e1888b78c984fe4b8c2a8 -EBUILD libbfio-0.0.20120425_alpha.ebuild 638 BLAKE2B 157f370f7324d1af2b33fcec3f0b58a609096af483214e8be748d4fcad95f675dbe0b628334914dbf48860b14fcae7b4b826a008efb9bf60dd5a93a041ce0cbc SHA512 5b9ff0d42ee53c739ee5ff1b1fb66d4ab24368a7170adc9a9973251aca4b38cff6190892792f0a61d32aeed7528fbfed607f0079ecfa223ef52e3640763d92ef -EBUILD libbfio-0.0.20130609_alpha.ebuild 556 BLAKE2B 7d6334595688083a5b83c681efcdbdd13872d8ae914fd0f860ce5a435443c9cbb306050aed2d04d69b2dae866e01a360a05bc1cb30e93ffd283072203a074ef1 SHA512 feb4ce707c61ac367eaf30a223956a98420444daedf8de0de19ef44777f80a60222ca7830b7e7c46a5a583ca1614e6d65dbd1a1ddeb6228da142877f85d9b15a -EBUILD libbfio-0.0.20130721.ebuild 562 BLAKE2B 39209e0328f5756e5447aa9c09011efcdae6832ad47afa63b4e59484534e183fafdd86a375f633212c6c603daccb7708b446350b8e8d326da186d140c0d89b91 SHA512 c58ab7f759b7f7a27ddae80080577140a7a1437a5083cb58a414cb32b2ca5f219810d69d53946c858a636dd54c89a2a507c143ab6f74bc39c5a81ba4fcf6752b -MISC metadata.xml 326 BLAKE2B dc285b4ca51f50880100f3c1160cf0966b80dcfb68a20c694c6615745a872549c31972a707d40d11bb7043d562e9d8186b4eeec7cb58a6cad38166b7cb112a59 SHA512 2f935a0d6929bde1f27ca2704bc6e93b8947c88824826bee971ff765f205f664f2c235743b37f1e4b078b809577701755c6dbf1875eec9f3d5d91f579e3428e1 diff --git a/app-forensics/libbfio/libbfio-0.0.20120425_alpha.ebuild b/app-forensics/libbfio/libbfio-0.0.20120425_alpha.ebuild deleted file mode 100644 index a69e104313cd..000000000000 --- a/app-forensics/libbfio/libbfio-0.0.20120425_alpha.ebuild +++ /dev/null @@ -1,27 +0,0 @@ -# Copyright 1999-2014 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 - -EAPI=5 - -inherit versionator - -MY_DATE="$(get_version_component_range 3)" - -DESCRIPTION="Library for providing a basic file input/output abstraction layer" -HOMEPAGE="https://github.com/libyal/libbfio" -SRC_URI="http://dev.pentoo.ch/~zero/distfiles/${PN}-alpha-${MY_DATE}.tar.gz" - -LICENSE="LGPL-3" -SLOT="0" -KEYWORDS="~amd64 ~hppa ~ppc ~x86" -IUSE="unicode" - -S="${WORKDIR}/${PN}-${MY_DATE}" - -src_configure() { - econf $(use_enable unicode wide-character-type) -} - -src_install() { - emake install DESTDIR="${D}" || die "Failed to install" -} diff --git a/app-forensics/libbfio/libbfio-0.0.20130609_alpha.ebuild b/app-forensics/libbfio/libbfio-0.0.20130609_alpha.ebuild deleted file mode 100644 index b8464cda1fc2..000000000000 --- a/app-forensics/libbfio/libbfio-0.0.20130609_alpha.ebuild +++ /dev/null @@ -1,23 +0,0 @@ -# Copyright 1999-2014 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 - -EAPI=5 - -inherit versionator - -MY_DATE="$(get_version_component_range 3)" - -DESCRIPTION="Library for providing a basic file input/output abstraction layer" -HOMEPAGE="https://github.com/libyal/libbfio" -SRC_URI="http://dev.pentoo.ch/~zero/distfiles/${PN}-alpha-${MY_DATE}.tar.gz" - -LICENSE="LGPL-3" -SLOT="0" -KEYWORDS="~amd64 ~ppc ~x86" -IUSE="unicode" - -S="${WORKDIR}/${PN}-${MY_DATE}" - -src_configure() { - econf $(use_enable unicode wide-character-type) -} diff --git a/app-forensics/libbfio/libbfio-0.0.20130721.ebuild b/app-forensics/libbfio/libbfio-0.0.20130721.ebuild deleted file mode 100644 index a0cf6d2a23b1..000000000000 --- a/app-forensics/libbfio/libbfio-0.0.20130721.ebuild +++ /dev/null @@ -1,23 +0,0 @@ -# Copyright 1999-2014 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 - -EAPI=5 - -inherit versionator - -MY_DATE="$(get_version_component_range 3)" - -DESCRIPTION="Library for providing a basic file input/output abstraction layer" -HOMEPAGE="https://github.com/libyal/libbfio" -SRC_URI="http://dev.pentoo.ch/~zero/distfiles/${PN}-alpha-${MY_DATE}.tar.gz" - -LICENSE="LGPL-3" -SLOT="0" -KEYWORDS="~amd64 ~hppa ~ppc ~x86" -IUSE="unicode" - -S="${WORKDIR}/${PN}-${MY_DATE}" - -src_configure() { - econf $(use_enable unicode wide-character-type) -} diff --git a/app-forensics/libbfio/metadata.xml b/app-forensics/libbfio/metadata.xml deleted file mode 100644 index e1bfc9e31b23..000000000000 --- a/app-forensics/libbfio/metadata.xml +++ /dev/null @@ -1,11 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> -<pkgmetadata> - <maintainer type="person"> - <email>zerochaos@gentoo.org</email> - <name>Rick Farina</name> - </maintainer> - <upstream> - <remote-id type="github">libyal/libbfio</remote-id> - </upstream> -</pkgmetadata> diff --git a/app-forensics/lynis/Manifest b/app-forensics/lynis/Manifest index 2e267c968b9c..addef0043e3c 100644 --- a/app-forensics/lynis/Manifest +++ b/app-forensics/lynis/Manifest @@ -1,4 +1,4 @@ -AUX lynis.cron-new 70 BLAKE2B 64ffbfa698bc13450503907bd9073a1266075c12fe709a5036b412a6a39e5730de0cf83f52864f7e474506ec5f1aeabf9415f2c0d58a6d7e41847670ce311f91 SHA512 f90592c9adb6617b367c22912ceb984cca9a64c1bfa092efb50f5f9df48b07f61c7e990b969f3871161d92ff28bdb131175d46b334947980b7ead49dd6ff70c7 -DIST lynis-2.6.4.tar.gz 273031 BLAKE2B 66d83050a348cc348f101f603c62eb3107ef7e088f57a6d0f36cb657a03cea48b93293b1c22a2bab68bd1ed1178e5bab7cf72cdcdd073637224559bb0c8b1198 SHA512 baa9f1c06b4d55b7962cb218707e057c7e7b5a5c4dbd89ba317c6525f08f80a5de53aa1371ad361611f8e44f0a32dda9409d2816caaedba4cd4f508929c5ab3c -EBUILD lynis-2.6.4.ebuild 948 BLAKE2B bf6edb25a080382349878f4ee279c638e48c181dc0ba630f6f28e77984d2f9b95773f1eef6dfffa894fce73f355ebb5d6e8fe316d5f082effd286babd56920f5 SHA512 7a9f762e5e5ca0f6d7cd3f3c934d78b44c6c080bd926a0923eb21c6894f56fe27a8f355fd528d5276d2ddbc77967c728fc8e74fd29a7ec6d66edbae7e0644f4c +AUX lynis.cron-new 72 BLAKE2B 1f2d683c74e9e85f142c23277f24e8c81b33e4d1691a6f171694194bd5d81a5e1473532afe2c6fca23c995d9c7bd08d18d6eed78a07661618c12e22b35e9ff81 SHA512 1cdaaee433912c2ccdec8ad7c9b88be55fe3f1d68e2fca79cc6e0e10112d465a70cfbe0a049623437f604bfc9793e0d29b709e035cbf710d4d38ba48acc5355f +DIST lynis-2.7.0.tar.gz 276959 BLAKE2B 51f9a811f0410547c1866addd7a545a5976f5d8ab51f58b4538e1cbf93faccce7ea24e1943eb6dceda851616651619eab5f1eb88e47658e3953c60bcd0a4c0e4 SHA512 bf7fab22f762a15c2ace620731dee5a05b3c463acc7c7a4d9c2729cd5fb04639cd41faa951a9a0c99a85ed816dd531abb8f76f35d2af9ad81e6691a6f278450b +EBUILD lynis-2.7.0.ebuild 945 BLAKE2B 582a42dca00bf4ebef46ebd1da667fe35ad394bdd2ceeeecdbcacbb2bfda9e63d98cbdfe83ee9c6b59daa3d0c10c0ef2a664b21f302123641c6b90e3af6ee810 SHA512 4550f2085e7822ce2eb0291fc9d6184bd7cb5e43ae27a8169c30c1a0e12678cf0e2e461ba5bb10a096c0eaa7195ae3db6c14a149029de0107b0fd2e020691c95 MISC metadata.xml 167 BLAKE2B e4dadf27fd344484f2bccb5b904909c89aac568c32e5b3c44bdf139eacefd4b4fae74419f503d2b7da0dccc1b68ba05d777d11292c0f89270d1ac5c9c703e8ca SHA512 7c8decb24ee3a850e38186cf3c7f8933a28017426806870ad6ef9ceb2533be147a2681fc789b535a81cb528af8c29d90d3006e4f250aee23bd7dea4561294e33 diff --git a/app-forensics/lynis/files/lynis.cron-new b/app-forensics/lynis/files/lynis.cron-new index 15a39f1ca235..b5e4b0c23628 100644 --- a/app-forensics/lynis/files/lynis.cron-new +++ b/app-forensics/lynis/files/lynis.cron-new @@ -1,3 +1,3 @@ #!/bin/sh -/usr/sbin/lynis --checkall --auditor "automated" --cronjob +/usr/sbin/lynis audit system --auditor "automated" --cronjob diff --git a/app-forensics/lynis/lynis-2.6.4.ebuild b/app-forensics/lynis/lynis-2.7.0.ebuild index 03c1f53b426a..df4bdf19881b 100644 --- a/app-forensics/lynis/lynis-2.6.4.ebuild +++ b/app-forensics/lynis/lynis-2.7.0.ebuild @@ -1,4 +1,4 @@ -# Copyright 1999-2018 Gentoo Foundation +# Copyright 1999-2018 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 EAPI="6" diff --git a/app-forensics/sleuthkit/Manifest b/app-forensics/sleuthkit/Manifest index 9785302cad8a..78e833dbb6fa 100644 --- a/app-forensics/sleuthkit/Manifest +++ b/app-forensics/sleuthkit/Manifest @@ -1,8 +1,13 @@ AUX sleuthkit-4.1.0-tools-shared-libs.patch 1678 BLAKE2B f60496480425fd78bc211a663be80db2472a9683f1ff76c747f8190d5544df532857f6e1fb4343d0405f8bf51aa7b7bf86ed55fffbeea0153341ce9f2dca077b SHA512 b559f669837194bed447ac269884ab50e6ea746aba2df799688964245c22814567871f12f96d43ba74016d5c448247b02bef5d7bdfd32fd782ef5e668686238e +AUX sleuthkit-4.6.4-CVE-2018-19497-backport.patch 3422 BLAKE2B d63b0e4ed1f369d176e4cd5ed8e02e0c69777e406d31c2e82c966f365c78bad193048a27d2d745139e239f20a5097848432a8e151b331f0efd140a3b49962aab SHA512 07cfe08d8e6dbd4162e97ed9ef0ca4dcc9240a4afe0d0e1d35aac64f87586af365fe5ff97e7a6a323cfe88b23709cf716795afb2c4a39ccef8106e03caaf43d3 +AUX sleuthkit-4.6.4-default-jar-location-fix.patch 1768 BLAKE2B d9a0675223506649a5db7aa4e0ef883ecea84c8484836d2020528696f13e14bbe9334c2967c7b698126fb1cedd6a6719fbbe3fb945b4ea9b89d643a61232d5e8 SHA512 acc076ca74d3e5d7c75425292730783801a7afe858ea119186229a319ba4fd2e076c1214daca3e4aa3d5a7717c5ed08a9ca0bf11bb4dc2a04d3aad190dbf57c6 +DIST SparseBitSet-1.1.jar 23706 BLAKE2B 8623a723f11f97386a108c775fefddd324997b68bea7f7ade0581ec5800bfa8d32f699ab903ad66c631b7b5c69ba1ef377243653f5044f39234dac07543eb129 SHA512 cf75431c5f705961800ce5cbca2acb9b2459eaf98ec37b5ee21c5a90d204ffb466fa25457b0560fbb024489777efbea0276201024c7b1b2853124930ac490983 DIST libewf-20130128.tar.gz 1978794 BLAKE2B e5d2bd8f4a8b878e13536b89b032d8cee6982272065b2bf325f8a811dff258264118a79496912377337ceb9ad630138b6bedb89e3c3be89a5f6a6fea85ab586b SHA512 94cdd0c3f0d8f535f3462c5adba266302f9b129abacda077ed429fa38af6862fca5a90ba2e606b78607b509769305cc6134c483c7033c20e226596cca2d42b90 DIST sleuthkit-4.5.0.tar.gz 8611141 BLAKE2B a1ae66bfcb74ce1fec24f80dfe60cd68f1de53119331c38848f7f82de8052eda49d78fdea49e42ada5843094939ef212dece42a5ceb85931a79e02adccda30e6 SHA512 911890cacca739f121681514197104cb2dc3bd219f3e068c4ce61264498c56989359976fc75172e1f456c94e4e25c6206413b0234c36e55736a577b8e664e4b3 DIST sleuthkit-4.6.0.tar.gz 8634432 BLAKE2B b45721cdee798d84f0caa0bfe38645346539bb497f5a492c72016a6b3b0246b362ecea676a7a0e788d66cc0dc32335e719912434bd61aa205b7d51b8d4bd7c14 SHA512 dbf880e8503dccb0a686f1d9658d56e9cb40f452127f9b713cf2a4941f4083fa1cf80a886994d58421307a679242cd4ee005b3e874cf429cfb140a597a0dc739 +DIST sleuthkit-4.6.4.tar.gz 8655341 BLAKE2B 9d8a2884d1c90e9be3104221c22fdc4346c8f288a13384ef8205cea46bbda2249691b548b7d19a1b34d6d0d1fc6d5390aa0fc8c8b28ea75b53de946b62c8e25c SHA512 0dd3fc3659fd6dee49ababd8033bcc5ce218c9154b61eb072a943e8d1a96fb04dcabc85124583bc69ad0ced2609fed11812164a3db6587446255a9c507f08762 DIST sqlite-jdbc-3.8.11.jar 5131732 BLAKE2B 1a04fa9e9cb97fdddc19af2de9efa7b54c0b527642e6e325e31054e4e294e3bc6af00ea291087ed9dd26668d48dae356035fc85212c0eb81656550d552103ed0 SHA512 5f4705101992e8916e29742c560aef0d01eba9dc0d2d984b75a77e56be3c9fd20b284390fe8f9bb54bf9d1f8528c3413922684c446212ca8961ac731543fb179 EBUILD sleuthkit-4.5.0.ebuild 3948 BLAKE2B 33f4f1e2e5b1031557bc8b7c029bee10024cf32b6da46f966249aac1f476bd08bb6b721ced23ce3f289e5a666f456553f03d5977b05ff01d36d61da7bca93ed7 SHA512 a3bed0d219bf0b2768e3cacbcee2707152a5589cda3eb2810449b23fe89f21a7f8d1c237fed7e34ac2fbf249f1d2485b4b9e394a890d254c6a65793b3fac3326 -EBUILD sleuthkit-4.6.0.ebuild 5607 BLAKE2B 614f3183afbc167dee2aad4bb7483358cc98af8c6851d020ef6838fc51e4b9f5dadaf2c0615923e88a6188a78523b93b19d2abf87b388ec0fec56c26e740d9e3 SHA512 69e2a25b8cc77c4789b7d501604a8017d7059249de21b15e0bf108c4f42a7350e3a57d4adc24de19ed235a3cc67ce4d0d86719bf4ef0e6016bc3aa30cc3bfc4c +EBUILD sleuthkit-4.6.0.ebuild 5591 BLAKE2B 25556409413a14328fef21edc3e946ded7ab3debbabc2a38831d166ee888ccfab557e76ab2849f06b3a31a8a780f07270690f3ee175b721d08182e51d617e70a SHA512 150b371296332e9e9ee1430ca3de8def31f7e2d471b308c2eea80fd716676ebf814fe6a257a650f9f34bcf0eb74bdca3340572c2ee1d53251bb8bd9592ea4559 +EBUILD sleuthkit-4.6.4-r1.ebuild 6648 BLAKE2B c650b5526a90f2c9ca150566dc8f948426f47e2b1c091f6e5e8f34ef616c95605af018fc64ab96a8dd5b96dd0578642e6f45bc9ffc515958c9539adbc342f2bb SHA512 45d47d6f7f8a52dd6a12faaa561e2d99a265bb3c08ae489a8b943f653c84a19ac057d2421207f731a319604d6af965eb81d43645eb4f4e1dda66ed928690943a MISC metadata.xml 607 BLAKE2B 2c651da1253ec986eb766b6949ea9a9059d76351081e805aba5f795971bb3b9368987cc9d39fc335c1e65c12de9347471686984e2753487cafab431488762064 SHA512 2dbce141f133a9172c6ba61924a9fac2674394096063b899be5a90111a9741789e2a09aa06cc49e17a253d088d20c1ddad1c748b6e09f650131ec0f91116ae08 diff --git a/app-forensics/sleuthkit/files/sleuthkit-4.6.4-CVE-2018-19497-backport.patch b/app-forensics/sleuthkit/files/sleuthkit-4.6.4-CVE-2018-19497-backport.patch new file mode 100644 index 000000000000..3ed904774814 --- /dev/null +++ b/app-forensics/sleuthkit/files/sleuthkit-4.6.4-CVE-2018-19497-backport.patch @@ -0,0 +1,83 @@ +From dd679ad1d855e7f69a887eb343bb53d49dc664e7 Mon Sep 17 00:00:00 2001 +From: Jordy Zomer <zome8499@student.alfa-college.nl> +Date: Sat, 24 Nov 2018 12:19:38 +0100 +Subject: [PATCH 1/3] Fix CVE-2018-19497. + +An issue was discovered in The Sleuth Kit (TSK) through 4.6.4. +The "tsk_getu16(hfs->fs_info.endian, &rec_buf[rec_off2])" call in hfs_dir_open_meta_cb in +tsk/fs/hfs_dent.c does not properly check boundaries. This results in +a crash (SEGV on unknown address +READ memory access) +when reading too much in the destination buffer. +--- + tsk/fs/hfs.c | 3 ++- + 1 file changed, 2 insertions(+), 1 deletion(-) + +diff --git a/tsk/fs/hfs.c b/tsk/fs/hfs.c +index 00f1720b1b..0dec507165 100644 +--- a/tsk/fs/hfs.c ++++ b/tsk/fs/hfs.c +@@ -956,7 +956,8 @@ hfs_cat_traverse(HFS_INFO * hfs, + key = (hfs_btree_key_cat *) & node[rec_off]; + + keylen = 2 + tsk_getu16(hfs->fs_info.endian, key->key_len); +- if ((keylen) > nodesize) { ++ ++ if (keylen > nodesize - rec_off) { + tsk_error_set_errno(TSK_ERR_FS_GENFS); + tsk_error_set_errstr + ("hfs_cat_traverse: length of key %d in index node %d too large (%d vs %" + +From fb2bc0ad693db852fac1dcc77a072aeabe106ac8 Mon Sep 17 00:00:00 2001 +From: Jordy Zomer <zome8499@student.alfa-college.nl> +Date: Sat, 24 Nov 2018 12:37:09 +0100 +Subject: [PATCH 2/3] fix length in printf of nodesize + +Also fix the length in printf next to comit dd679ad1d855e7f69a887eb343bb53d49dc664e7 +--- + tsk/fs/hfs.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/tsk/fs/hfs.c b/tsk/fs/hfs.c +index 0dec507165..4f7c0679a8 100644 +--- a/tsk/fs/hfs.c ++++ b/tsk/fs/hfs.c +@@ -961,7 +961,7 @@ hfs_cat_traverse(HFS_INFO * hfs, + tsk_error_set_errno(TSK_ERR_FS_GENFS); + tsk_error_set_errstr + ("hfs_cat_traverse: length of key %d in index node %d too large (%d vs %" +- PRIu16 ")", rec, cur_node, keylen, nodesize); ++ PRIu16 ")", rec, cur_node, keylen, nodesize - rec_off); + free(node); + return 1; + } + +From 8242588f4354339d9cb1ad82622e7c16c55391c9 Mon Sep 17 00:00:00 2001 +From: Jordy Zomer <zome8499@student.alfa-college.nl> +Date: Sat, 24 Nov 2018 12:47:23 +0100 +Subject: [PATCH 3/3] UPDATE on CVE-2018-19497. + +make it >= because if keylen == nodesize - rec_off it's already past it's destination. +Also fix the sprintf +--- + tsk/fs/hfs.c | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/tsk/fs/hfs.c b/tsk/fs/hfs.c +index 4f7c0679a8..bb3819ada9 100644 +--- a/tsk/fs/hfs.c ++++ b/tsk/fs/hfs.c +@@ -957,11 +957,11 @@ hfs_cat_traverse(HFS_INFO * hfs, + + keylen = 2 + tsk_getu16(hfs->fs_info.endian, key->key_len); + +- if (keylen > nodesize - rec_off) { ++ if (keylen >= nodesize - rec_off) { + tsk_error_set_errno(TSK_ERR_FS_GENFS); + tsk_error_set_errstr + ("hfs_cat_traverse: length of key %d in index node %d too large (%d vs %" +- PRIu16 ")", rec, cur_node, keylen, nodesize - rec_off); ++ PRIu16 ")", rec, cur_node, keylen, (nodesize - rec_off)); + free(node); + return 1; + } diff --git a/app-forensics/sleuthkit/files/sleuthkit-4.6.4-default-jar-location-fix.patch b/app-forensics/sleuthkit/files/sleuthkit-4.6.4-default-jar-location-fix.patch new file mode 100644 index 000000000000..126fce904a8f --- /dev/null +++ b/app-forensics/sleuthkit/files/sleuthkit-4.6.4-default-jar-location-fix.patch @@ -0,0 +1,58 @@ +From f8c1cada7f01826b15a82b20600b8df7562fa2ed Mon Sep 17 00:00:00 2001 +From: =?UTF-8?q?G=C3=B6kt=C3=BCrk=20Y=C3=BCksek?= <gokturk@gentoo.org> +Date: Wed, 28 Nov 2018 21:33:46 -0500 +Subject: [PATCH v1] Allow --enable-offline to accept a directory argument for + jar libs + +Allow the hardcoded default_jar_location in build.xml to +/usr/share/java to be changed using the argument provided to +--enable-offline. Note that this changes the behavior of the switch +from "anything other than yes or no is incorrect" to "anything other +than no implies offline mode". +--- + bindings/java/Makefile.am | 4 ++++ + configure.ac | 10 +++++++++- + 2 files changed, 13 insertions(+), 1 deletion(-) + +diff --git a/bindings/java/Makefile.am b/bindings/java/Makefile.am +index ad27526e..f0bb9f68 100644 +--- a/bindings/java/Makefile.am ++++ b/bindings/java/Makefile.am +@@ -7,6 +7,10 @@ jar_DATA = $(tsk_jar) + + if OFFLINE + ant_args=-Doffline=true ++if CUSTOM_DEFAULT_JAR_LOCATION ++ ant_args+= -Ddefault-jar-location="@DEFAULT_JAR_LOCATION@" ++else ++endif + else + + endif +diff --git a/configure.ac b/configure.ac +index dc9026ed..d3d41646 100644 +--- a/configure.ac ++++ b/configure.ac +@@ -221,10 +221,18 @@ AC_ARG_ENABLE([offline], + [case "${enableval}" in + yes) offline=true ;; + no) offline=false ;; +- *) AC_MSG_ERROR([bad value ${enableval} for --enable-online]) ;; ++ *) ++ offline=true ++ default_jar_location="${enableval}" ++ ;; + esac],[offline=false]) + + AM_CONDITIONAL([OFFLINE], [test "x$offline" = xtrue]) ++AM_CONDITIONAL([CUSTOM_DEFAULT_JAR_LOCATION], [test "x$default_jar_location" != "x"]) ++AM_COND_IF([CUSTOM_DEFAULT_JAR_LOCATION], ++ [AC_SUBST([DEFAULT_JAR_LOCATION], [$default_jar_location])] ++) ++ + + + dnl Check if we should link libewf. +-- +2.19.1 + diff --git a/app-forensics/sleuthkit/sleuthkit-4.6.0.ebuild b/app-forensics/sleuthkit/sleuthkit-4.6.0.ebuild index ece90fe8ab4b..94b342435485 100644 --- a/app-forensics/sleuthkit/sleuthkit-4.6.0.ebuild +++ b/app-forensics/sleuthkit/sleuthkit-4.6.0.ebuild @@ -1,4 +1,4 @@ -# Copyright 1999-2018 Gentoo Foundation +# Copyright 1999-2018 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 EAPI=6 @@ -159,10 +159,8 @@ src_configure() { $(use_with zlib) ) - if use ewf; then - tsk_compile_libewf - myeconfargs+=( $(use_with ewf libewf "${T}"/image) ) - fi + use ewf && tsk_compile_libewf + myeconfargs+=( $(use_with ewf libewf "${T}"/image) ) if use java; then pushd "${S}"/bindings/java &>/dev/null || die diff --git a/app-forensics/sleuthkit/sleuthkit-4.6.4-r1.ebuild b/app-forensics/sleuthkit/sleuthkit-4.6.4-r1.ebuild new file mode 100644 index 000000000000..45b8e2dd049f --- /dev/null +++ b/app-forensics/sleuthkit/sleuthkit-4.6.4-r1.ebuild @@ -0,0 +1,256 @@ +# Copyright 1999-2018 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=6 + +JAVA_PKG_BSFIX_NAME="build.xml build-unix.xml" +inherit autotools java-pkg-opt-2 java-ant-2 + +DESCRIPTION="A collection of file system and media management forensic analysis tools" +HOMEPAGE="https://www.sleuthkit.org/sleuthkit/" +# TODO: sqlite-jdbc does not exist in the tree, we bundle it for now +# TODO: Upstream uses a very specific version of libewf which is not in +# the tree anymore. So we statically compile and link to sleuthkit. +# Hopefully upstream will figure something out in the future. +SRC_URI="https://github.com/${PN}/${PN}/releases/download/${P}/${P}.tar.gz + java? ( + http://repo1.maven.org/maven2/org/xerial/sqlite-jdbc/3.8.11/sqlite-jdbc-3.8.11.jar + http://repo1.maven.org/maven2/com/zaxxer/SparseBitSet/1.1/SparseBitSet-1.1.jar + ) + ewf? ( https://dev.gentoo.org/~gokturk/distfiles/app-forensics/libewf/libewf-20130128.tar.gz )" + +LICENSE="BSD CPL-1.0 GPL-2+ IBM java? ( Apache-2.0 )" +SLOT="0/13" # subslot = major soname version +KEYWORDS="~amd64 ~hppa ~ppc ~x86" +IUSE="aff doc ewf java postgres static-libs test +threads zlib" + +# Note: It is not possible to move the dep on dev-java/jdbc-postgresql +# inside a conditional postgres? block because java sources import +# org.postgres unconditionally as of writing this (version 4.6.4). The +# postgres USE flag will be used for the TSK postgresql support however. +DEPEND=" + dev-db/sqlite:3 + dev-lang/perl:* + aff? ( app-forensics/afflib ) + ewf? ( sys-libs/zlib ) + java? ( + >=virtual/jdk-1.8:* + >=dev-java/c3p0-0.9.5:0 + >=dev-java/jdbc-postgresql-9.4:0 + ) + postgres? ( dev-db/postgresql:= ) + zlib? ( sys-libs/zlib ) +" +# TODO: add support for not-in-tree libraries libvhdi and libvmdk +# libvhdi: https://github.com/libyal/libvhdi +# libvmdk: https://github.com/libyal/libvmdk +# DEPEND="${DEPEND} +# vhdi? ( dev-libs/libvhdi ) +# vmdk? ( dev-libs/libvmdk ) +# " + +RDEPEND="${DEPEND} + java? ( >=virtual/jre-1.8:= ) +" +DEPEND="${DEPEND} + doc? ( app-doc/doxygen ) + test? ( >=dev-util/cppunit-1.2.1 ) +" + +PATCHES=( + "${FILESDIR}"/${PN}-4.1.0-tools-shared-libs.patch + "${FILESDIR}"/${PN}-4.6.4-default-jar-location-fix.patch + "${FILESDIR}"/${PN}-4.6.4-CVE-2018-19497-backport.patch +) + +src_unpack() { + local f + + unpack ${P}.tar.gz + + # Ick, the upstream is stuck at libewf-20130128 which is + # not even in the tree anymore. So we have to bundle it. + if use ewf; then + pushd "${T}" &>/dev/null || die + unpack libewf-20130128.tar.gz + export TSK_LIBEWF_SRCDIR="${T}"/libewf-20130128 + popd &>/dev/null || die + fi + + # Copy the jar files that don't exist in the tree yet + if use java; then + TSK_JAR_DIR="${T}/lib" + mkdir "${TSK_JAR_DIR}" || die + for f in ${A}; do + if [[ ${f} =~ .jar$ ]]; then + cp "${DISTDIR}"/"${f}" "${TSK_JAR_DIR}" || die + fi + done + export TSK_JAR_DIR + fi +} + +tsk_prepare_libewf() { + # Yeah, libewf-20130128 obviously doesn't just nicely compile + sed -e 's/LIBUNA_INLINE inline/LIBUNA_INLINE/' \ + -i "${TSK_LIBEWF_SRCDIR}"/libuna/libuna_inline.h || die +} + +src_prepare() { + use ewf && tsk_prepare_libewf + + if use java; then + pushd "${S}"/bindings/java &>/dev/null || die + + # Prevent "make install" from installing + # jar files under /usr/share/java + # We'll use the java eclasses for this + sed -e '/^jar_DATA/ d;' -i Makefile.am || die + + java-pkg-opt-2_src_prepare + + popd &>/dev/null || die + fi + + # Override the doxygen output directories + if use doc; then + sed -e "/^OUTPUT_DIRECTORY/ s|=.*$|= ${T}/doc|" \ + -i tsk/docs/Doxyfile \ + -i bindings/java/doxygen/Doxyfile || die + fi + + # It's safe to call this even after java-pkg-opt-2_src_prepare + # because future calls to eapply_user do nothing and return 0 + default + + eautoreconf +} + +tsk_compile_libewf() { + local myeconfargs=( + --prefix=/ + --libdir=/lib + --enable-static + --disable-shared + --disable-winapi + --without-libbfio + --with-zlib + --without-bzip2 + --without-libhmac + --without-openssl + --without-libuuid + --without-libfuse + ) + # We want to contain our build flags + local CFLAGS="${CFLAGS}" + local LDFLAGS="${LDFLAGS}" + + pushd "${TSK_LIBEWF_SRCDIR}" &>/dev/null || die + + # Produce relocatable code + CFLAGS+=" -fPIC" + LDFLAGS+=" -fPIC" + econf "${myeconfargs[@]}" + + # Do not waste CPU cycles on building ewftools + sed -e '/ewftools/ d' -i Makefile || die + emake + + # Only install the headers and the library + emake -C libewf DESTDIR="${T}"/image install + emake -C include DESTDIR="${T}"/image install + find "${T}"/image -name '*.la' -delete || die + + popd &>/dev/null || die +} + +src_configure() { + local myeconfargs=( + --enable-offline="${TSK_JAR_DIR}" + $(use_enable java) + $(use_enable static-libs static) + $(use_enable threads multithreading) + $(use_with aff afflib) + $(use_with zlib) + ) + # Workaround the automagic detection of postgresql + local -x ac_cv_lib_pq_PQlibVersion="$(usex postgres)" + # TODO: add support for non-existing libraries libvhdi and libvmdk + # myeconfargs+=( + # $(use_with vhdi libvhdi) + # $(use_with vmdk libvmdk) + # ) + myeconfargs+=( + --without-libvhdi + --without-libvmdk + ) + + use ewf && tsk_compile_libewf + myeconfargs+=( $(use_with ewf libewf "${T}"/image) ) + + if use java; then + pushd "${S}"/bindings/java &>/dev/null || die + java-ant-2_src_configure + popd &>/dev/null || die + fi + + econf "${myeconfargs[@]}" +} + +src_compile() { + # Give it an existing bogus ivy home #672220 + local -x IVY_HOME="${T}" + + # Create symlinks of jars for the required dependencies + if use java; then + pushd "${S}"/bindings/java &>/dev/null || die + + java-pkg_jar-from --into "${TSK_JAR_DIR}" c3p0 + java-pkg_jar-from --into "${TSK_JAR_DIR}" jdbc-postgresql + + popd &>/dev/null || die + fi + + # Create the doc output dirs if requested + if use doc; then + mkdir -p "${T}"/doc/{api-docs,jni-docs} || die + fi + + emake all $(usex doc api-docs "") +} + +src_install() { + local f + + if use java; then + pushd "${S}"/bindings/java &>/dev/null || die + + java-pkg_newjar "dist/${P}.jar" "${PN}.jar" + + # Install the bundled jar files + pushd "${TSK_JAR_DIR}" &>/dev/null || die + for f in *; do + # Skip the symlinks java-pkg_jar-from created + [[ -f ${f} ]] || continue + + # Strip the version numbers as per eclass recommendation + [[ ${f} =~ -([0-9]+\.)+jar$ ]] || continue + + java-pkg_newjar "${f}" "${f/${BASH_REMATCH[0]}/.jar}" + done + popd &>/dev/null || die + + popd &>/dev/null || die + fi + + default + + # It unconditionally builds both api and jni docs + # We install conditionally based on the provided use flags + if use doc; then + dodoc -r "${T}"/doc/api-docs + use java && dodoc -r "${T}"/doc/jni-docs + fi + + find "${D}" -name '*.la' -delete || die +} |