[dnstop] * Mon Sep 15 2014 Paul Wouters <pwouters at redhat.com> - 20140915-1 - Updated to 20140915 with new-gtl
Paul Wouters
pwouters at fedoraproject.org
Mon Sep 15 19:12:14 UTC 2014
commit 2a2590b4980ec4b51cb37d8ca8a23d8bc7c25548
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Sep 15 15:12:05 2014 -0400
* Mon Sep 15 2014 Paul Wouters <pwouters at redhat.com> - 20140915-1
- Updated to 20140915 with new-gtlds filter support
- Updated warning patch (partially merged upstream)
- Added usage patch that was missing the new filter name new-gtlds
- Enabled hardening as this application takes in network input.
.gitignore | 2 +
dnstop-20140915-fix-warnings.patch | 47 ++++++++++++++++++++++++++++++++++++
dnstop-20140915-usage.patch | 11 ++++++++
dnstop.spec | 24 ++++++++++--------
sources | 2 +-
5 files changed, 74 insertions(+), 12 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index dbc586e..51c2826 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,5 @@
dnstop-20090128.tar.gz
/dnstop-20110502.tar.gz
/dnstop-20121017.tar.gz
+/dnstop-20140912.tar.gz
+/dnstop-20140915.tar.gz
diff --git a/dnstop-20140915-fix-warnings.patch b/dnstop-20140915-fix-warnings.patch
new file mode 100644
index 0000000..24aa49b
--- /dev/null
+++ b/dnstop-20140915-fix-warnings.patch
@@ -0,0 +1,47 @@
+diff -Naur dnstop-20140915-orig/dnstop.c dnstop-20140915/dnstop.c
+--- dnstop-20140915-orig/dnstop.c 2014-09-15 13:54:51.000000000 -0400
++++ dnstop-20140915/dnstop.c 2014-09-15 15:01:07.330360808 -0400
+@@ -18,6 +18,8 @@
+
+ #include <netinet/in.h>
+
++#include <err.h>
++#include <errno.h>
+ #include <pcap.h>
+ #include <signal.h>
+ #include <stdio.h>
+@@ -328,12 +330,16 @@
+ ptr->addr = *orig_addr;
+ ptr->data = (void *)(ptr + 1);
+ if (4 == inXaddr_version(orig_addr)) {
+- (void) read(entropy_fd, buf, 4);
++ ssize_t rd = read(entropy_fd, buf, 4);
++ if (rd < 4)
++ err(errno, "read entropy");
+ inXaddr_assign_v4(ptr->data, (struct in_addr *)buf);
+ }
+ #if USE_IPV6
+ else {
+- (void) read(entropy_fd, buf, 16);
++ ssize_t rd = read(entropy_fd, buf, 16);
++ if (rd < 16)
++ err(errno, "read entropy");
+ inXaddr_assign_v6(ptr->data, (struct in6_addr *)buf);
+ }
+ #endif
+@@ -1581,7 +1587,6 @@
+ UnknownTldFilter(FilterData * fd)
+ {
+ const char *tld = QnameToNld(fd->qname, 1);
+- unsigned int i;
+ if (NULL == tld)
+ return 1; /* tld is unknown */
+ if (hash_find(tld, KnownTLDs))
+@@ -1593,7 +1598,6 @@
+ NewGTldFilter(FilterData * fd)
+ {
+ const char *tld = QnameToNld(fd->qname, 1);
+- unsigned int i;
+ if (NULL == tld)
+ return 0; /* tld is unknown */
+ if (hash_find(tld, NewGTLDs))
diff --git a/dnstop-20140915-usage.patch b/dnstop-20140915-usage.patch
new file mode 100644
index 0000000..dbf70cf
--- /dev/null
+++ b/dnstop-20140915-usage.patch
@@ -0,0 +1,11 @@
+diff -Naur dnstop-20140915-orig/dnstop.c dnstop-20140915/dnstop.c
+--- dnstop-20140915-orig/dnstop.c 2014-09-15 15:04:22.269036463 -0400
++++ dnstop-20140915/dnstop.c 2014-09-15 15:05:25.844562897 -0400
+@@ -1808,6 +1808,7 @@
+ fprintf(stderr, "\n");
+ fprintf(stderr, "Available filters:\n");
+ fprintf(stderr, "\tunknown-tlds\n");
++ fprintf(stderr, "\tnew-gtlds\n");
+ fprintf(stderr, "\tA-for-A\n");
+ fprintf(stderr, "\trfc1918-ptr\n");
+ fprintf(stderr, "\trefused\n");
diff --git a/dnstop.spec b/dnstop.spec
index 0b5d262..0e26e28 100644
--- a/dnstop.spec
+++ b/dnstop.spec
@@ -1,16 +1,15 @@
+%global _hardened_build 1
Name: dnstop
-Version: 20121017
-Release: 6%{?dist}
+Version: 20140915
+Release: 1%{?dist}
Summary: Displays information about DNS traffic on your network
Group: Applications/System
License: BSD
URL: http://dns.measurement-factory.com/tools/dnstop/
Source0: http://dns.measurement-factory.com/tools/dnstop/src/dnstop-%{version}.tar.gz
-# At one point int[] arrays are passed to a uint* function; since all
-# callers are signed, changed function to take signed ints.
-# Also, check read(2) for entropy data and abort on short reads.
-Patch0: dnstop-20121017-fix-warnings.diff
+Patch1: dnstop-20140915-fix-warnings.patch
+Patch2: dnstop-20140915-usage.patch
BuildRequires: libpcap-devel
BuildRequires: ncurses-devel
@@ -31,28 +30,31 @@ tcpdump savefile.
%prep
%setup -q
-%patch0 -p1
+%patch1 -p1
+%patch2 -p1
%build
%configure
make %{?_smp_mflags}
-
%install
mkdir -p $RPM_BUILD_ROOT%{_bindir}
mkdir -p $RPM_BUILD_ROOT%{_mandir}/man8
make install DESTDIR=$RPM_BUILD_ROOT
-
%files
-%defattr(-,root,root,-)
%doc LICENSE CHANGES
%{_bindir}/dnstop
%{_mandir}/man8/dnstop.8*
-
%changelog
+* Mon Sep 15 2014 Paul Wouters <pwouters at redhat.com> - 20140915-1
+- Updated to 20140915 with new-gtlds filter support
+- Updated warning patch (partially merged upstream)
+- Added usage patch that was missing the new filter name new-gtlds
+- Enabled hardening as this application takes in network input.
+
* Sat Aug 16 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 20121017-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
diff --git a/sources b/sources
index 0fd37cf..db31200 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-0407f08e5788b59268048d00cdddd5b6 dnstop-20121017.tar.gz
+f0fe1690b114e076196a51d63266eadc dnstop-20140915.tar.gz
More information about the scm-commits
mailing list