OpenPKG Specs / file revision

gcrypt/gcrypt.patch@0ba300bdf30a

gcrypt/gcrypt.patch

Mon, 20 Apr 2009 19:22:00 +0200

author
Michael Schloh von Bennewitz <michael@schloh.com>
date
Mon, 20 Apr 2009 19:22:00 +0200
changeset 178
0ba300bdf30a
permissions
-rw-r--r--

Change unfortunate but partly useful overreaching security tradeoff.
The principle of allocating each running process an individual system
user and group can have security benefits, however maintining a plethora
of users, groups, processes, file modes, file permissions, and even
nonportable file ACLs on a host serving from a hundred processes has
some security disadvantages. This tradeoff is even worse for systems
like OpenPKG which benefit from administration transparency through the
use of minimal system intrusion and only three usage privilege levels.

     1 Index: cipher/cipher.c

     2 diff -Nau cipher/cipher.c.orig cipher/cipher.c

     3 --- cipher/cipher.c.orig	2008-09-12 15:23:37.000000000 +0200

     4 +++ cipher/cipher.c	2009-02-18 19:07:30.388253084 +0100

     5 @@ -97,6 +97,10 @@

     6      { &_gcry_cipher_spec_rfc2268_40,

     7        &dummy_extra_spec,                  GCRY_CIPHER_RFC2268_40 },

     8  #endif

     9 +#if USE_IDEA

    10 +    { &_gcry_cipher_spec_idea,

    11 +      &dummy_extra_spec,                  GCRY_CIPHER_IDEA },

    12 +#endif

    13  #if USE_SEED

    14      { &_gcry_cipher_spec_seed, 

    15        &dummy_extra_spec,                  GCRY_CIPHER_SEED },

    16 Index: src/cipher.h

    17 diff -Nau src/cipher.h.orig src/cipher.h

    18 --- src/cipher.h.orig	2008-09-03 12:04:42.000000000 +0200

    19 +++ src/cipher.h	2009-02-18 19:09:20.193397539 +0100

    20 @@ -105,6 +105,7 @@

    21  extern gcry_cipher_spec_t _gcry_cipher_spec_camellia128;

    22  extern gcry_cipher_spec_t _gcry_cipher_spec_camellia192;

    23  extern gcry_cipher_spec_t _gcry_cipher_spec_camellia256;

    24 +extern gcry_cipher_spec_t _gcry_cipher_spec_idea;

    25  

    26  extern cipher_extra_spec_t _gcry_cipher_extraspec_tripledes;

    27  extern cipher_extra_spec_t _gcry_cipher_extraspec_aes;

    28 Index: tests/basic.c

    29 diff -Nau tests/basic.c.orig tests/basic.c

    30 --- tests/basic.c.orig	2008-09-18 16:35:57.000000000 +0200

    31 +++ tests/basic.c	2009-02-18 19:10:14.460255272 +0100

    32 @@ -1028,6 +1028,9 @@

    33      GCRY_CIPHER_CAMELLIA192,

    34      GCRY_CIPHER_CAMELLIA256,

    35  #endif

    36 +#if USE_IDEA

    37 +    GCRY_CIPHER_IDEA,

    38 +#endif

    39      0

    40    };

    41    static int algos2[] = {

Mercurial Repository: OpenPKG Specs

Europalab SCM Repository Server

mercurial