MFH: r555585 r557829

security/sssd: update to 1.16.5

This fixes several security vulnerabilities and unexpires
the port because it moves to Python 3.

PR:		241347
Submitted by:	lukas.slebodnik@intrak.sk (initial patch)
Security:	CVE-2018-16838
Security:	CVE-2019-3811

security/sssd: fix SMB option

- use Samba 4.12 instead of the removed Samba 4.10
- use ldb 2.1 instead of ldb 2.0

While here, recognize Kerberos 1.18

PR:		250864
Submitted by:	joerg (patch by Richard Frewin)
Approved by:	maintainer timeout (14 days)

1 files changed, 7 insertions, 6 deletions

diff --git a/security/sssd/files/patch-src__util__crypto__libcrypto__crypto_sha512crypt.c b/security/sssd/files/patch-src__util__crypto__libcrypto__crypto_sha512crypt.c
index 4a5d0aed9fd7..323eef4fb139 100644
--- a/security/sssd/files/patch-src__util__crypto__libcrypto__crypto_sha512crypt.c
+++ b/security/sssd/files/patch-src__util__crypto__libcrypto__crypto_sha512crypt.c
@@ -1,15 +1,16 @@
---- src/util/crypto/libcrypto/crypto_sha512crypt.c.orig	2014-09-17 13:01:37 UTC
+diff --git src/util/crypto/libcrypto/crypto_sha512crypt.c src/util/crypto/libcrypto/crypto_sha512crypt.c
+index 2275ccd96..c1e418917 100644
+--- src/util/crypto/libcrypto/crypto_sha512crypt.c
 +++ src/util/crypto/libcrypto/crypto_sha512crypt.c
-@@ -28,6 +28,12 @@
- #include <openssl/evp.h>
- #include <openssl/rand.h>
+@@ -30,6 +30,11 @@
+ 
+ #include "sss_openssl.h"
  
 +void *
 +mempcpy (void *dest, const void *src, size_t n)
 +{
 +  return (char *) memcpy (dest, src, n) + n;
 +}
-+
+ 
  /* Define our magic string to mark salt for SHA512 "encryption" replacement. */
  const char sha512_salt_prefix[] = "$6$";
- #define SALT_PREF_SIZE (sizeof(sha512_salt_prefix) - 1)