Opened 10 years ago

Closed 10 years ago

Last modified 9 years ago

#16158 closed update (fixed)

dnsmasq 2.45 Security update, Portfile update

Reported by: davidgilman1+macports@… Owned by: ryandesign (Ryan Schmidt)
Priority: Normal Milestone:
Component: ports Version: 1.6.0
Keywords: security, dns Cc:
Port: dnsmasq

Description

This patch has a number of fixes: 1) Updating to the latest upstream version of dnsmasq comes with bug fixes and a fix for the dns poisoning attack that's been publicized recently. 2) dnsmasq's pidfile is stored properly in the destroot instead of /var/run/. 3) Changed the hardcoded nawk in the Makefile to awk.

Attachments (4)

Portfile.2.45.patch (773 bytes) - added by davidgilman1+macports@… 10 years ago.
patch to update portfile to 2.45
patch-config.h.diff (1.5 KB) - added by davidgilman1+macports@… 10 years ago.
update config.h to store pidfile in destroot
patch-Makefile.diff (820 bytes) - added by davidgilman1+macports@… 10 years ago.
use awk instead of gawk
patch-config.h.noresolv.diff (1.3 KB) - added by davidgilman1+macports@… 10 years ago.
replacement of config.h patch, see comments

Download all attachments as: .zip

Change History (9)

Changed 10 years ago by davidgilman1+macports@…

Attachment: Portfile.2.45.patch added

patch to update portfile to 2.45

Changed 10 years ago by davidgilman1+macports@…

Attachment: patch-config.h.diff added

update config.h to store pidfile in destroot

Changed 10 years ago by davidgilman1+macports@…

Attachment: patch-Makefile.diff added

use awk instead of gawk

comment:1 Changed 10 years ago by davidgilman1+macports@…

Ack, disregard that patch-config.h.diff file. It forced the software to look in ${destroot}/etc/resolv.conf for upstream DNS information. The default config of dnsmasq expects that file to be updated by the system as connections are made and new DNS servers are made available, however macos x doesn't know to update macport's resolv.conf.

I'm attaching a new config.h patch that keeps dnsmasq checking the resolv.conf file that is updated by the system as most users would expect the software to do.

Changed 10 years ago by davidgilman1+macports@…

replacement of config.h patch, see comments

comment:2 Changed 10 years ago by ryandesign (Ryan Schmidt)

Milestone: Port Updates
Owner: changed from macports-tickets@… to ryandesign@…
Port: dnsmasq added
Status: newassigned

comment:3 Changed 10 years ago by ryandesign (Ryan Schmidt)

Resolution: fixed
Status: assignedclosed
Type: defectenhancement

Thanks for the update! I committed it in r39895.

comment:4 Changed 9 years ago by jmroot (Joshua Root)

Type: enhancementupdate

comment:5 Changed 9 years ago by (none)

Milestone: Port Updates

Milestone Port Updates deleted

Note: See TracTickets for help on using tickets.