diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..20f50d1 --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +SOURCES/nmap-7.91.tar.bz2 diff --git a/.nmap.metadata b/.nmap.metadata new file mode 100644 index 0000000..e00ab46 --- /dev/null +++ b/.nmap.metadata @@ -0,0 +1 @@ +e72198f463ee9d557e4c5c9444cc5a0e5c36b00c SOURCES/nmap-7.91.tar.bz2 diff --git a/SOURCES/ncat_reg_stdin.diff b/SOURCES/ncat_reg_stdin.diff new file mode 100644 index 0000000..e6034b2 --- /dev/null +++ b/SOURCES/ncat_reg_stdin.diff @@ -0,0 +1,12 @@ +diff -up nmap-6.01/ncat/ncat_main.c.noepoll nmap-6.01/ncat/ncat_main.c +--- nmap-6.01/ncat/ncat_main.c.noepoll 2013-01-04 12:50:18.670295473 +0100 ++++ nmap-6.01/ncat/ncat_main.c 2013-01-04 12:50:18.692295660 +0100 +@@ -280,6 +280,8 @@ int main(int argc, char *argv[]) + #ifdef WIN32 + windows_init(); + #endif ++ ++ nsock_set_default_engine("select"); + + while (1) { + /* handle command line arguments */ diff --git a/SOURCES/nmap-4.03-mktemp.patch b/SOURCES/nmap-4.03-mktemp.patch new file mode 100644 index 0000000..68baffe --- /dev/null +++ b/SOURCES/nmap-4.03-mktemp.patch @@ -0,0 +1,23 @@ +--- nmap-4.03/shtool.mktemp 2006-05-10 13:09:34.000000000 +0200 ++++ nmap-4.03/shtool 2006-05-10 13:13:58.000000000 +0200 +@@ -579,15 +579,11 @@ + else + tmpdir="/tmp" + fi +- tmpdir="$tmpdir/.shtool.$$" +- ( umask 077 +- rm -rf "$tmpdir" >/dev/null 2>&1 || true +- mkdir "$tmpdir" >/dev/null 2>&1 +- if [ $? -ne 0 ]; then +- echo "$msgprefix:Error: failed to create temporary directory \`$tmpdir'" 1>&2 +- exit 1 +- fi +- ) ++ tmpdir=`mktemp -p $tmpdir -d` ++ if [ $? -ne 0 ]; then ++ echo "$msgprefix:Error: failed to create temporary directory \`$tmpdir'" 1>&2 ++ exit 1 ++ fi + + # create (implicitly) secure temporary file + tmpfile="$tmpdir/shtool.tmp" diff --git a/SOURCES/nmap-4.52-noms.patch b/SOURCES/nmap-4.52-noms.patch new file mode 100644 index 0000000..2161715 --- /dev/null +++ b/SOURCES/nmap-4.52-noms.patch @@ -0,0 +1,24 @@ +diff -up nmap-4.90RC1/docs/nmap.1.noms nmap-4.90RC1/docs/nmap.1 +--- nmap-4.90RC1/docs/nmap.1.noms 2009-06-25 01:12:51.000000000 +0200 ++++ nmap-4.90RC1/docs/nmap.1 2009-07-16 09:58:22.090769947 +0200 +@@ -282,7 +282,7 @@ Nmap 4\&.90RC1 ( http://nmap\&.org ) + Usage: nmap [Scan Type(s)] [Options] {target specification} + TARGET SPECIFICATION: + Can pass hostnames, IP addresses, networks, etc\&. +- Ex: scanme\&.nmap\&.org, microsoft\&.com/24, 192\&.168\&.0\&.1; 10\&.0\&.0\-255\&.1\-254 ++ Ex: scanme\&.nmap\&.org, 192\&.168\&.0\&.1; 10\&.0\&.0\-255\&.1\-254 + \-iL : Input from list of hosts/networks + \-iR : Choose random targets + \-\-exclude : Exclude hosts/networks +diff -up nmap-4.90RC1/docs/nmap.usage.txt.noms nmap-4.90RC1/docs/nmap.usage.txt +--- nmap-4.90RC1/docs/nmap.usage.txt.noms 2009-06-25 01:12:51.000000000 +0200 ++++ nmap-4.90RC1/docs/nmap.usage.txt 2009-07-16 09:56:24.758078049 +0200 +@@ -2,7 +2,7 @@ Nmap 4.90RC1 ( http://nmap.org ) + Usage: nmap [Scan Type(s)] [Options] {target specification} + TARGET SPECIFICATION: + Can pass hostnames, IP addresses, networks, etc. +- Ex: scanme.nmap.org, microsoft.com/24, 192.168.0.1; 10.0.0-255.1-254 ++ Ex: scanme.nmap.org, 192.168.0.1; 10.0.0-255.1-254 + -iL : Input from list of hosts/networks + -iR : Choose random targets + --exclude : Exclude hosts/networks diff --git a/SOURCES/nmap-6.25-displayerror.patch b/SOURCES/nmap-6.25-displayerror.patch new file mode 100644 index 0000000..6b59845 --- /dev/null +++ b/SOURCES/nmap-6.25-displayerror.patch @@ -0,0 +1,17 @@ +diff -up nmap-6.25/zenmap/zenmapGUI/App.py.displayerror nmap-6.25/zenmap/zenmapGUI/App.py +--- nmap-6.25/zenmap/zenmapGUI/App.py.displayerror 2013-05-23 15:11:46.595569883 +0200 ++++ nmap-6.25/zenmap/zenmapGUI/App.py 2013-05-23 15:12:44.786049525 +0200 +@@ -116,7 +116,12 @@ except Exception: + # startup scripts, and for some reason the first connection (the one that + # caused the launch) is rejected. But somehow subsequent connections work + # fine! So if the import fails, try one more time. +- import gtk ++ try: ++ import gtk ++ except Exception, e: ++ print >> sys.stderr, 'Error:', str(e) ++ sys.exit(1) ++ + warnings.resetwarnings() + + from zenmapGUI.higwidgets.higdialogs import HIGAlertDialog diff --git a/SOURCES/nmap-7.91.tar.bz2.asc b/SOURCES/nmap-7.91.tar.bz2.asc new file mode 100644 index 0000000..1adeeed --- /dev/null +++ b/SOURCES/nmap-7.91.tar.bz2.asc @@ -0,0 +1,6 @@ +-----BEGIN PGP SIGNATURE----- + +iF0EABECAB0WIQRDbWarmnmEJf2g4/gBr58Da5NV0AUCX4IG7AAKCRABr58Da5NV +0En1AJ40wogwUYKdlVLFaPWl9LPSuNmJ5QCfR6Y8/9JBvs+w6rklBmN/zTcIcX0= +=/xYe +-----END PGP SIGNATURE----- diff --git a/SOURCES/nmap-safe_fd_functions.patch b/SOURCES/nmap-safe_fd_functions.patch new file mode 100644 index 0000000..391879c --- /dev/null +++ b/SOURCES/nmap-safe_fd_functions.patch @@ -0,0 +1,378 @@ +From 28bfe0dfd26dbc4e9917db9ad5457ab496769d24 Mon Sep 17 00:00:00 2001 +From: dmiller +Date: Thu, 7 Jan 2021 17:52:24 +0000 +Subject: [PATCH] Use checked versions of FD_* macros. Closes #2202 + +--- + ncat/ncat_core.c | 2 +- + ncat/ncat_listen.c | 78 +++++++++++++++++++++++----------------------- + ncat/ncat_posix.c | 8 ++--- + ncat/ncat_proxy.c | 12 +++---- + 5 files changed, 53 insertions(+), 50 deletions(-) + +diff --git a/ncat/ncat_core.c b/ncat/ncat_core.c +index d1a88ac946..7c39e5d360 100644 +--- a/ncat/ncat_core.c ++++ b/ncat/ncat_core.c +@@ -431,7 +431,7 @@ int ncat_broadcast(fd_set *fds, const fd_list_t *fdlist, const char *msg, size_t + + ret = 0; + for (i = 0; i <= fdlist->fdmax; i++) { +- if (!FD_ISSET(i, fds)) ++ if (!checked_fd_isset(i, fds)) + continue; + + fdn = get_fdinfo(fdlist, i); +diff --git a/ncat/ncat_listen.c b/ncat/ncat_listen.c +index 84ece94d08..e6dad13597 100644 +--- a/ncat/ncat_listen.c ++++ b/ncat/ncat_listen.c +@@ -244,10 +244,10 @@ static int ncat_listen_stream(int proto) + unblock_socket(listen_socket[num_sockets]); + + /* setup select sets and max fd */ +- FD_SET(listen_socket[num_sockets], &master_readfds); ++ checked_fd_set(listen_socket[num_sockets], &master_readfds); + add_fd(&client_fdlist, listen_socket[num_sockets]); + +- FD_SET(listen_socket[num_sockets], &listen_fds); ++ checked_fd_set(listen_socket[num_sockets], &listen_fds); + + num_sockets++; + } +@@ -296,7 +296,7 @@ static int ncat_listen_stream(int proto) + struct fdinfo *fdi = &client_fdlist.fds[i]; + int cfd = fdi->fd; + /* Loop through descriptors until there's something to read */ +- if (!FD_ISSET(cfd, &readfds) && !FD_ISSET(cfd, &writefds)) ++ if (!checked_fd_isset(cfd, &readfds) && !checked_fd_isset(cfd, &writefds)) + continue; + + if (o.debug > 1) +@@ -304,27 +304,27 @@ static int ncat_listen_stream(int proto) + + #ifdef HAVE_OPENSSL + /* Is this an ssl socket pending a handshake? If so handle it. */ +- if (o.ssl && FD_ISSET(cfd, &sslpending_fds)) { +- FD_CLR(cfd, &master_readfds); +- FD_CLR(cfd, &master_writefds); ++ if (o.ssl && checked_fd_isset(cfd, &sslpending_fds)) { ++ checked_fd_clr(cfd, &master_readfds); ++ checked_fd_clr(cfd, &master_writefds); + switch (ssl_handshake(fdi)) { + case NCAT_SSL_HANDSHAKE_COMPLETED: + /* Clear from sslpending_fds once ssl is established */ +- FD_CLR(cfd, &sslpending_fds); ++ checked_fd_clr(cfd, &sslpending_fds); + post_handle_connection(*fdi); + break; + case NCAT_SSL_HANDSHAKE_PENDING_WRITE: +- FD_SET(cfd, &master_writefds); ++ checked_fd_set(cfd, &master_writefds); + break; + case NCAT_SSL_HANDSHAKE_PENDING_READ: +- FD_SET(cfd, &master_readfds); ++ checked_fd_set(cfd, &master_readfds); + break; + case NCAT_SSL_HANDSHAKE_FAILED: + default: + SSL_free(fdi->ssl); + Close(fdi->fd); +- FD_CLR(cfd, &sslpending_fds); +- FD_CLR(cfd, &master_readfds); ++ checked_fd_clr(cfd, &sslpending_fds); ++ checked_fd_clr(cfd, &master_readfds); + rm_fd(&client_fdlist, cfd); + /* Since we removed this one, start loop over at the beginning. + * Wastes a little time, but ensures correctness. +@@ -339,7 +339,7 @@ static int ncat_listen_stream(int proto) + } + } else + #endif +- if (FD_ISSET(cfd, &listen_fds)) { ++ if (checked_fd_isset(cfd, &listen_fds)) { + /* we have a new connection request */ + handle_connection(cfd); + } else if (cfd == STDIN_FILENO) { +@@ -424,7 +424,7 @@ static void handle_connection(int socket_accept) + int i; + for (i = 0; i < num_listenaddrs; i++) { + Close(listen_socket[i]); +- FD_CLR(listen_socket[i], &master_readfds); ++ checked_fd_clr(listen_socket[i], &master_readfds); + rm_fd(&client_fdlist, listen_socket[i]); + } + } +@@ -468,9 +468,9 @@ static void handle_connection(int socket_accept) + #ifdef HAVE_OPENSSL + if (o.ssl) { + /* Add the socket to the necessary descriptor lists. */ +- FD_SET(s.fd, &sslpending_fds); +- FD_SET(s.fd, &master_readfds); +- FD_SET(s.fd, &master_writefds); ++ checked_fd_set(s.fd, &sslpending_fds); ++ checked_fd_set(s.fd, &master_readfds); ++ checked_fd_set(s.fd, &master_writefds); + /* Add it to our list of fds too for maintaining maxfd. */ + if (add_fdinfo(&client_fdlist, &s) < 0) + bye("add_fdinfo() failed."); +@@ -503,10 +503,10 @@ static void post_handle_connection(struct fdinfo sinfo) + } else { + /* Now that a client is connected, pay attention to stdin. */ + if (!stdin_eof) +- FD_SET(STDIN_FILENO, &master_readfds); ++ checked_fd_set(STDIN_FILENO, &master_readfds); + if (!o.sendonly) { + /* add to our lists */ +- FD_SET(sinfo.fd, &master_readfds); ++ checked_fd_set(sinfo.fd, &master_readfds); + /* add it to our list of fds for maintaining maxfd */ + #ifdef HAVE_OPENSSL + /* Don't add it twice (see handle_connection above) */ +@@ -518,7 +518,7 @@ static void post_handle_connection(struct fdinfo sinfo) + } + #endif + } +- FD_SET(sinfo.fd, &master_broadcastfds); ++ checked_fd_set(sinfo.fd, &master_broadcastfds); + if (add_fdinfo(&broadcast_fdlist, &sinfo) < 0) + bye("add_fdinfo() failed."); + +@@ -543,7 +543,7 @@ int read_stdin(void) + logdebug("EOF on stdin\n"); + + /* Don't close the file because that allows a socket to be fd 0. */ +- FD_CLR(STDIN_FILENO, &master_readfds); ++ checked_fd_clr(STDIN_FILENO, &master_readfds); + /* Buf mark that we've seen EOF so it doesn't get re-added to the + select list. */ + stdin_eof = 1; +@@ -596,14 +596,14 @@ int read_socket(int recv_fd) + } + #endif + close(recv_fd); +- FD_CLR(recv_fd, &master_readfds); ++ checked_fd_clr(recv_fd, &master_readfds); + rm_fd(&client_fdlist, recv_fd); +- FD_CLR(recv_fd, &master_broadcastfds); ++ checked_fd_clr(recv_fd, &master_broadcastfds); + rm_fd(&broadcast_fdlist, recv_fd); + + conn_inc--; + if (get_conn_count() == 0) +- FD_CLR(STDIN_FILENO, &master_readfds); ++ checked_fd_clr(STDIN_FILENO, &master_readfds); + + return n; + } +@@ -693,7 +693,7 @@ static int ncat_listen_dgram(int proto) + logdebug("do_listen(\"%s\"): %s\n", inet_ntop_ez(&listenaddrs[i].storage, sizeof(listenaddrs[i].storage)), socket_strerror(socket_errno())); + continue; + } +- FD_SET(sockfd[num_sockets].fd, &listen_fds); ++ checked_fd_set(sockfd[num_sockets].fd, &listen_fds); + add_fd(&listen_fdlist, sockfd[num_sockets].fd); + sockfd[num_sockets].addr = listenaddrs[i]; + num_sockets++; +@@ -713,14 +713,14 @@ static int ncat_listen_dgram(int proto) + + if (fdn != -1) { + /*remove socket descriptor which is burnt */ +- FD_CLR(sockfd[fdn].fd, &listen_fds); ++ checked_fd_clr(sockfd[fdn].fd, &listen_fds); + rm_fd(&listen_fdlist, sockfd[fdn].fd); + + /* Rebuild the udp socket which got burnt */ + sockfd[fdn].fd = do_listen(SOCK_DGRAM, proto, &sockfd[fdn].addr); + if (sockfd[fdn].fd == -1) + bye("do_listen: %s", socket_strerror(socket_errno())); +- FD_SET(sockfd[fdn].fd, &listen_fds); ++ checked_fd_set(sockfd[fdn].fd, &listen_fds); + add_fd(&listen_fdlist, sockfd[fdn].fd); + + } +@@ -758,7 +758,7 @@ static int ncat_listen_dgram(int proto) + */ + for (i = 0; i <= listen_fdlist.fdmax && fds_ready > 0; i++) { + /* Loop through descriptors until there is something ready */ +- if (!FD_ISSET(i, &fds)) ++ if (!checked_fd_isset(i, &fds)) + continue; + + /* Check each listening socket */ +@@ -856,8 +856,8 @@ static int ncat_listen_dgram(int proto) + continue; + } + +- FD_SET(socket_n, &read_fds); +- FD_SET(STDIN_FILENO, &read_fds); ++ checked_fd_set(socket_n, &read_fds); ++ checked_fd_set(STDIN_FILENO, &read_fds); + fdmax = socket_n; + + /* stdin -> socket and socket -> stdout */ +@@ -877,7 +877,7 @@ static int ncat_listen_dgram(int proto) + if (fds_ready == 0) + bye("Idle timeout expired (%d ms).", o.idletimeout); + +- if (FD_ISSET(STDIN_FILENO, &fds)) { ++ if (checked_fd_isset(STDIN_FILENO, &fds)) { + nbytes = Read(STDIN_FILENO, buf, sizeof(buf)); + if (nbytes <= 0) { + if (nbytes < 0 && o.verbose) { +@@ -885,7 +885,7 @@ static int ncat_listen_dgram(int proto) + } else if (nbytes == 0 && o.debug) { + logdebug("EOF on stdin\n"); + } +- FD_CLR(STDIN_FILENO, &read_fds); ++ checked_fd_clr(STDIN_FILENO, &read_fds); + if (nbytes < 0) + return 1; + continue; +@@ -909,7 +909,7 @@ static int ncat_listen_dgram(int proto) + tempbuf = NULL; + } + } +- if (FD_ISSET(socket_n, &fds)) { ++ if (checked_fd_isset(socket_n, &fds)) { + nbytes = recv(socket_n, buf, sizeof(buf), 0); + if (nbytes < 0) { + loguser("%s.\n", socket_strerror(socket_errno())); +@@ -993,7 +993,7 @@ static void read_and_broadcast(int recv_fd) + + /* Don't close the file because that allows a socket to be + fd 0. */ +- FD_CLR(recv_fd, &master_readfds); ++ checked_fd_clr(recv_fd, &master_readfds); + /* But mark that we've seen EOF so it doesn't get re-added to + the select list. */ + stdin_eof = 1; +@@ -1020,14 +1020,14 @@ static void read_and_broadcast(int recv_fd) + } + #endif + close(recv_fd); +- FD_CLR(recv_fd, &master_readfds); ++ checked_fd_clr(recv_fd, &master_readfds); + rm_fd(&client_fdlist, recv_fd); +- FD_CLR(recv_fd, &master_broadcastfds); ++ checked_fd_clr(recv_fd, &master_broadcastfds); + rm_fd(&broadcast_fdlist, recv_fd); + + conn_inc--; + if (conn_inc == 0) +- FD_CLR(STDIN_FILENO, &master_readfds); ++ checked_fd_clr(STDIN_FILENO, &master_readfds); + + if (o.chat) + chat_announce_disconnect(recv_fd); +@@ -1058,7 +1058,7 @@ static void read_and_broadcast(int recv_fd) + + /* Send to everyone except the one who sent this message. */ + broadcastfds = master_broadcastfds; +- FD_CLR(recv_fd, &broadcastfds); ++ checked_fd_clr(recv_fd, &broadcastfds); + ncat_broadcast(&broadcastfds, &broadcast_fdlist, outbuf, n); + + free(chatbuf); +@@ -1073,7 +1073,7 @@ static void shutdown_sockets(int how) + int i; + + for (i = 0; i <= broadcast_fdlist.fdmax; i++) { +- if (!FD_ISSET(i, &master_broadcastfds)) ++ if (!checked_fd_isset(i, &master_broadcastfds)) + continue; + + fdn = get_fdinfo(&broadcast_fdlist, i); +@@ -1098,7 +1098,7 @@ static int chat_announce_connect(int fd, const union sockaddr_u *su) + union sockaddr_u tsu; + socklen_t len = sizeof(tsu.storage); + +- if (i == fd || !FD_ISSET(i, &master_broadcastfds)) ++ if (i == fd || !checked_fd_isset(i, &master_broadcastfds)) + continue; + + if (getpeername(i, &tsu.sockaddr, &len) == -1) +diff --git a/ncat/ncat_posix.c b/ncat/ncat_posix.c +index b9fc3bc0b3..4f5641e4ac 100644 +--- a/ncat/ncat_posix.c ++++ b/ncat/ncat_posix.c +@@ -205,8 +205,8 @@ void netexec(struct fdinfo *info, char *cmdexec) + int r, n_r; + + FD_ZERO(&fds); +- FD_SET(info->fd, &fds); +- FD_SET(child_stdout[0], &fds); ++ checked_fd_set(info->fd, &fds); ++ checked_fd_set(child_stdout[0], &fds); + + r = fselect(maxfd + 1, &fds, NULL, NULL, NULL); + if (r == -1) { +@@ -215,7 +215,7 @@ void netexec(struct fdinfo *info, char *cmdexec) + else + break; + } +- if (FD_ISSET(info->fd, &fds)) { ++ if (checked_fd_isset(info->fd, &fds)) { + int pending; + + do { +@@ -225,7 +225,7 @@ void netexec(struct fdinfo *info, char *cmdexec) + write_loop(child_stdin[1], buf, n_r); + } while (pending); + } +- if (FD_ISSET(child_stdout[0], &fds)) { ++ if (checked_fd_isset(child_stdout[0], &fds)) { + char *crlf = NULL, *wbuf; + n_r = read(child_stdout[0], buf, sizeof(buf)); + if (n_r <= 0) +diff --git a/ncat/ncat_proxy.c b/ncat/ncat_proxy.c +index 5ba10a61ad..befcf902a5 100644 +--- a/ncat/ncat_proxy.c ++++ b/ncat/ncat_proxy.c +@@ -166,7 +166,7 @@ int ncat_http_server(void) + unblock_socket(listen_socket[num_sockets]); + + /* setup select sets and max fd */ +- FD_SET(listen_socket[num_sockets], &listen_fds); ++ checked_fd_set(listen_socket[num_sockets], &listen_fds); + add_fd(&listen_fdlist, listen_socket[num_sockets]); + + num_sockets++; +@@ -199,7 +199,7 @@ int ncat_http_server(void) + + for (i = 0; i <= listen_fdlist.fdmax && fds_ready > 0; i++) { + /* Loop through descriptors until there is something ready */ +- if (!FD_ISSET(i, &read_fds)) ++ if (!checked_fd_isset(i, &read_fds)) + continue; + + /* Check each listening socket */ +@@ -457,8 +457,8 @@ static int handle_connect(struct socket_buffer *client_sock, + + maxfd = client_sock->fdn.fd < s ? s : client_sock->fdn.fd; + FD_ZERO(&m); +- FD_SET(client_sock->fdn.fd, &m); +- FD_SET(s, &m); ++ checked_fd_set(client_sock->fdn.fd, &m); ++ checked_fd_set(s, &m); + + errno = 0; + +@@ -472,7 +472,7 @@ static int handle_connect(struct socket_buffer *client_sock, + + zmem(buf, sizeof(buf)); + +- if (FD_ISSET(client_sock->fdn.fd, &r)) { ++ if (checked_fd_isset(client_sock->fdn.fd, &r)) { + do { + do { + len = fdinfo_recv(&client_sock->fdn, buf, sizeof(buf)); +@@ -488,7 +488,7 @@ static int handle_connect(struct socket_buffer *client_sock, + } while (fdinfo_pending(&client_sock->fdn)); + } + +- if (FD_ISSET(s, &r)) { ++ if (checked_fd_isset(s, &r)) { + do { + len = recv(s, buf, sizeof(buf), 0); + } while (len == -1 && socket_errno() == EINTR); diff --git a/SOURCES/nmap-unix_crash.patch b/SOURCES/nmap-unix_crash.patch new file mode 100644 index 0000000..feb8f7a --- /dev/null +++ b/SOURCES/nmap-unix_crash.patch @@ -0,0 +1,32 @@ +From f6b40614e4a8131394792d590965f8af3c635323 Mon Sep 17 00:00:00 2001 +From: nnposter +Date: Fri, 16 Oct 2020 02:54:52 +0000 +Subject: [PATCH] Fix a Unix domain socket crash. Fixes #2154 + +--- + CHANGELOG | 2 ++ + ncat/ncat_main.c | 4 ++-- + 2 files changed, 4 insertions(+), 2 deletions(-) + +diff --git a/ncat/ncat_main.c b/ncat/ncat_main.c +index 8942d83cb9..2792a6ac24 100644 +--- a/ncat/ncat_main.c ++++ b/ncat/ncat_main.c +@@ -846,7 +846,7 @@ int main(int argc, char *argv[]) + targetaddrs->addr.un.sun_family = AF_UNIX; + strncpy(targetaddrs->addr.un.sun_path, argv[optind], sizeof(targetaddrs->addr.un.sun_path)); + targetaddrs->addrlen = SUN_LEN(&targetaddrs->addr.un); +- o.target = argv[optind]; ++ o.sslservername = o.target = argv[optind]; + optind++; + } else + #endif +@@ -865,7 +865,7 @@ int main(int argc, char *argv[]) + targetaddrs->addr.vm.svm_cid = long_cid; + + targetaddrs->addrlen = sizeof(targetaddrs->addr.vm); +- o.target = argv[optind]; ++ o.sslservername = o.target = argv[optind]; + optind++; + } + } else diff --git a/SOURCES/nmap_gpgkeys.txt b/SOURCES/nmap_gpgkeys.txt new file mode 100644 index 0000000..6aa5094 --- /dev/null +++ b/SOURCES/nmap_gpgkeys.txt @@ -0,0 +1,95 @@ +GPG detached signatures and MD5/SHA-1 hashes for each Nmap release are +available from https://nmap.org/dist/sigs/?C=M;O=D . The +releases are signed by the Nmap project GPG key (KeyId 6B9355D0). +Some messages to Nmap mailing lists may be signed by Nmap author and +maintainer Fyodor. Fyodor's KeyID is 33599B5F. Those two keys and +their fingerprints are reproduced below. The latest version of this +file is always available at +https://nmap.org/data/nmap_gpgkeys.txt . + +To verify a file with GPG, obtain and import the keys with a command +such as "gpg --import nmap_gpgkeys.txt" and then verify the obtained +files as shown in this example: + + > gpg --verify nmap-3.81.tar.bz2.gpg.txt nmap-3.81.tar.bz2 + gpg: Signature made Sat 23 Apr 2005 11:34:32 PM PDT using DSA key ID 6B9355D0 + gpg: Good signature from "Nmap Project Signing Key (http://www.insecure.org/)" + +Here are the GPG keys for the Nmap Project and Fyodor: + +pub 1024D/6B9355D0 2005-04-24 + Key fingerprint = 436D 66AB 9A79 8425 FDA0 E3F8 01AF 9F03 6B93 55D0 +uid Nmap Project Signing Key (http://www.insecure.org/) +sub 2048g/A50A6A94 2005-04-24 + +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v1.4.1 (GNU/Linux) + +mQGiBEJrBfgRBADogo5DEoGsm2C3OC3NoKBQ0J7Ixp/cymuMeGQmDhqP6Vfmxmso +BGln4nhDr3WMDW76Q2p6dHTZEbWx3NAna8q3wa3PrPTVRcmEgEgUd8y086I33NqW +BV5Fz4bvPWtSGc/4MxXwac+XqrGY+iTkaO3sd4/eEKa/KkJlXpIGAbGbZwCgq9HS +bHctYmUWmvz1YXJmFlQvnTsD/RRyTlnQ/AOpq2XPYy5AlUzHMWAef2Dt+wXYKSjp +zvqVWtl8QigrWSOP3ia39v+rDUF/CHb1U8mmx9XzRpy9KgS99Wi4IUnBCYM/e/IP +K5ReAoNoPMjLmLU4cxYzOxF1yzuSFvhXiKVy/QW6Qo9AP9YdlhlxxXrJA+HrAcXb +UE/SBACsoJRsIEyzcfm7Y/KA11enEhxo2nVZ/HpJCq8RHcaXxWFaCglKlydNaw1S +vlZkLggRXQrig6aHgVva3WC+gSYMk+SPtzYNrjWiDE+v+DoEFdNEuO8DXScTMGmB +pmUtZNWGoK9ewo9kE/ccGDl6lmrxfC9x2nYFHlCvV/PJrbTbfLQzTm1hcCBQcm9q +ZWN0IFNpZ25pbmcgS2V5IChodHRwOi8vd3d3Lmluc2VjdXJlLm9yZy8piF4EExEC +AB4FAkJrBfgCGwMGCwkIBwMCAxUCAwMWAgECHgECF4AACgkQAa+fA2uTVdBGbACf +e4qpukKV23yZjlbjEzJeCN8Gyh4AniXrbP7M+ul6zzWTFBgB6heYjKT8iEYEEBEC +AAYFAkJrGVAACgkQGvbsUDNZm1+kXgCfbBGI8UxrwiKRbtgYHOUYd6u5qdwAnRFZ +ryKFEzkuQGBQWfd6ys6ygjgtuQINBEJrBfoQCADUNWhc7n68jANoWAWl38itVGqI +qZEEvchV3m/uslVD0BSn/KRSY9/cZbMTX2hV8eemlGV2suJW4jWB0cQXjZQap4OL +WmMexeFA+q1YE803k0X4XgzRuJXkLaX3isCJGbgFRF6IfWmK38/gXz4YVBQXFQXy +4M2Y/o2GBsq8cQVgRAZNTQvN5oh2u8WN0wANk+iKySKqBG3Twgh4BbTaoajidSFR +hv3xFPw6dQFTd3fYyDlMcOQQcAdzzlS6hTyZuZLOXLdWckilnlP2/orQ5wUs6nXd +QeWuxME56z2vwNNeufoLWqNUlR1/IyRAfownDuvdjxYeIgsDd4DP+jInCpPzAAMG +CACZ8ewQdpWJ/4CgC7OT865DurNIQH0udm/CSB0mb3v0IxuuXMJml2yMi2NkJh8X +KMaluTznz2x8kpPXgmhu+qosAi+YUbdbP+/ilY6+WqLVQewSr7GmxJy6EWW5s2+S +3V7yneiDQXBUBMr4WwjfOxX7m/+Io7RSLQaWNq82C2fSukqpootVgLV7CaVJMHvZ +iA+3AL32N1d6O6h8bUqEyfOw3kIr19e0OhqWSpQrZs3tkUpwH7/vn/4NkAxjodkP +JChf1Y89pU98GBC9JxF+mc2mnDVUnUs31S8kQ/6PhZP8ldn47W2CakHSA3S/M99A +gltKiG6MR2z018fqD8FJC3tLiEkEGBECAAkFAkJrBfoCGwwACgkQAa+fA2uTVdBM +QgCfciVPJeohzn5mJ4WGE/6B1CyCOIYAn2ghTW1IKTP+tfOgxVg/p8HJOoiz +=18Dk +-----END PGP PUBLIC KEY BLOCK----- + + +pub 1024D/33599B5F 2005-04-24 + Key fingerprint = BB61 D057 C0D7 DCEF E730 996C 1AF6 EC50 3359 9B5F +uid Fyodor +sub 2048g/D3C2241C 2005-04-24 + +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v1.4.1 (GNU/Linux) + +mQGiBEJrBG4RBADfjVQenTh2v1NK2N0Wi83pGMm0u/IDDX8eT8lxSR+XdevdcK+F +bRhVh+tMhTo1T2OoZkBfYj+OVCWsBZlIxZtGycWaGAwn3MbUEiUJD0YVv4pm4KVk +HEZSOYEkzUFIw3IP03Cv6wBDrhk5lAu99+sK0iQGeHGw+gBhIuA3axSeBwCgn86p +r+C4P3w61musiflp1SosfSsEALwyE7o60S105UTijAn5tswqecZlumQAxQ+DIeC+ +9F8mSujIZn8xb1wJtaZb2F0HU0vd67BaOIDXqO7KVe6Tx6JKf5zup2vaGRvUspNv +V8CLuSbT7WnnvTBM5dfBMTJw6xLjOsSTk65Q24xcTJ3f2efnYy9imAMl7EzhalBE +11pfBADVLuhe6rUpRrhaMJRXZJLdE9A2zcHWtM0X3DDe6QhaWU94JivtORKtleGv +atGu4or9jwIhXixeBsvu7RP3bWog5jiLgUWJrvJNeLcFQqIWTtIdh5iuInzezxbg +Fvst2YIdUrT+QdcYKKTnJNyUgXQBGKQ18ra8oMvakgUqVjrPnbQcRnlvZG9yIDxm +eW9kb3JAaW5zZWN1cmUub3JnPoheBBMRAgAeBQJCawRuAhsDBgsJCAcDAgMVAgMD +FgIBAh4BAheAAAoJEBr27FAzWZtfZwcAn0iGnn1p6wXuBTj7VQSdglTtJd46AJ9T +Gt51/ZUT2yiFG9vsc5CZn5WiRYicBBMBAgAGBQJCaxEpAAoJEM4dPqJTWH2VO4oE +AKso+R5gSO9jhtTiCIMoh9CqeboQCbBKzEwDhy7S7gChAHOz6HeOdcsyfnprwsiH +I+FjufxvdtmiIENSzyjqGxbMdO+Zoz5JMx1RtzrkjkE4GLVq0c6NzL/36MUtAjEU +tCTFXYZW6Lvu6SgnmlmelrAjqs10vZoOrbOlB/l9mn/EuQINBEJrBHIQCACUlrH2 +qhVekDKeK9zQlBK2dxcIyPSwP6Tqv+rWvKEzHRUVNBcDSruuNVBNvJC3VQAj0oTA +XI+xoWGNx5CInX7qKFaGd9/MlsrEyjasRcY75lkr3QyTSk92q0luX1j+V1uumDWs +pacyki0Zt/9FhssjdkljFBPpDRPURxjJdJ6TCq6G0wPjelKsekRNvipIYcrcIs7I +EBtqsDCvQBRKgYzjUuziudOMoNFAn6eQHBu/B7RNtRzqTL1ugCjs0AEhLRKw+Ag6 +bP3lTjmiR33wxajAuUPKe8abe7CfVPrGmihJSJaqULeldSHTugnf84/hTh9BQKYd +EZd3QlF72wRmCcnjAAMGB/4oXK4/BXExfnZ+QbmTIyQGJb/OcWa7Dc9WA6DnaE58 +1BeZgYrKFQMdVpAhUMTxeqPIL4EVc6N+BkSk7JHf5+6DoK8KDJ1RJCCgYmdx7zdT +/GAZlUFDiYOs4sx75UZZGFcEEDmIHFC4s7B2HPuSfMoq5vBr0qi6pD1HCgyJV0aG +jhQdmfkp+fYEibPWrIGTsayQnYiCrVo3W7C7ZplekoAJkcN0rnfJeV1+kj694XSe +U6oYj9RaNoTV1xt1lx5Rwl00HwEYHWAsGmT6+pWmbXo5PT7N7OfcmtclICBsrcjC +hKcn6WdTitUR+uOXgL+86Th4W/FYdIXAyyC9KTXhMDmfiEkEGBECAAkFAkJrBHIC +GwwACgkQGvbsUDNZm19xAgCeNmaeak8iviUmHje1YAePwEFGleEAn26n8sNrVole +NtNX5k7XyTWBQUdG +=cBzb +-----END PGP PUBLIC KEY BLOCK----- diff --git a/SOURCES/nmap_resolve_config.patch b/SOURCES/nmap_resolve_config.patch new file mode 100644 index 0000000..f1d2ecf --- /dev/null +++ b/SOURCES/nmap_resolve_config.patch @@ -0,0 +1,12 @@ +diff --git a/ncat/ncat_core.c b/ncat/ncat_core.c +index b76d5ea..9f0b0cf 100644 +--- a/ncat/ncat_core.c ++++ b/ncat/ncat_core.c +@@ -289,6 +289,7 @@ int resolve(const char *hostname, unsigned short port, + int result; + + flags = 0; ++ flags |= AI_ADDRCONFIG; + if (o.nodns) + flags |= AI_NUMERICHOST; + diff --git a/SPECS/nmap.spec b/SPECS/nmap.spec new file mode 100644 index 0000000..5f1a04a --- /dev/null +++ b/SPECS/nmap.spec @@ -0,0 +1,781 @@ +#Todo: stop using local copy of libdnet, once system distributed version +#supports sctp (grep sctp /usr/include/dnet.h) + +%global _hardened_build 1 + +Name: nmap +Epoch: 3 +Version: 7.91 +#global prerelease TEST5 +Release: 10%{?dist} +Summary: Network exploration tool and security scanner +URL: http://nmap.org/ +# Uses combination of licenses based on GPL license, but with extra modification +# so it got its own license tag rhbz#1055861 +License: Nmap + +Source0: http://nmap.org/dist/%{name}-%{version}%{?prerelease}.tar.bz2 +Source1: https://nmap.org/dist/sigs/%{name}-%{version}.tar.bz2.asc +Source2: https://svn.nmap.org/nmap/docs/nmap_gpgkeys.txt + + +#prevent possible race condition for shtool, rhbz#158996 +Patch1: nmap-4.03-mktemp.patch + +#don't suggest to scan microsoft +Patch2: nmap-4.52-noms.patch + +# upstream provided patch for rhbz#845005, not yet in upstream repository +Patch3: ncat_reg_stdin.diff +Patch4: nmap-6.25-displayerror.patch +# https://github.com/nmap/nmap/pull/2247 +Patch7: nmap_resolve_config.patch +## https://github.com/nmap/nmap/commit/28bfe0dfd26dbc4e9917db9ad5457ab496769d24.patch +Patch9: nmap-safe_fd_functions.patch + +## https://github.com/nmap/nmap/commit/f6b40614e4a8131394792d590965f8af3c635323.patch +Patch10: nmap-unix_crash.patch + +BuildRequires: automake make +BuildRequires: autoconf +BuildRequires: gcc-c++ +BuildRequires: gettext-devel +BuildRequires: libpcap-devel +%if 0%{?fedora} +BuildRequires: libssh2-devel +%endif +BuildRequires: libtool +BuildRequires: lua-devel +BuildRequires: openssl-devel +BuildRequires: pcre-devel +BuildRequires: zlib-devel +BuildRequires: gnupg2 +Requires: %{name}-ncat = %{epoch}:%{version}-%{release} + +Obsoletes: nmap-frontend +Obsoletes: nmap-ndiff + +%define pixmap_srcdir zenmap/share/pixmaps + +%description +Nmap is a utility for network exploration or security auditing. It supports +ping scanning (determine which hosts are up), many port scanning techniques +(determine what services the hosts are offering), and TCP/IP fingerprinting +(remote host operating system identification). Nmap also offers flexible target +and port specification, decoy scanning, determination of TCP sequence +predictability characteristics, reverse-identd scanning, and more. In addition +to the classic command-line nmap executable, the Nmap suite includes a flexible +data transfer, redirection, and debugging tool (netcat utility ncat), a utility +for comparing scan results (ndiff), and a packet generation and response +analysis tool (nping). + +%package ncat +Summary: Nmap's Netcat replacement +Requires(post): %{_sbindir}/alternatives +Requires(preun): %{_sbindir}/alternatives +Obsoletes: nc < 1.109.20120711-2 +Obsoletes: nc6 < 1.00-22 +Provides: nc nc6 + +%description ncat +Ncat is a feature packed networking utility which will read and +write data across a network from the command line. It uses both +TCP and UDP for communication and is designed to be a reliable +back-end tool to instantly provide network connectivity to other +applications and users. Ncat will not only work with IPv4 and IPv6 +but provides the user with a virtually limitless number of potential +uses. + + +%prep +%{gpgverify} --keyring=%{SOURCE2} --signature='%{SOURCE1}' --data='%{SOURCE0}' +%autosetup -p1 + + +#be sure we're not using tarballed copies of some libraries +#rm -rf liblua libpcap libpcre macosx mswin32 ###TODO### + +rm -rf libpcap libpcre macosx mswin32 libssh2 libz + +%build +export CFLAGS="$RPM_OPT_FLAGS -fno-strict-aliasing" +export CXXFLAGS="$RPM_OPT_FLAGS -fno-strict-aliasing" +### TODO ## configure --with-libpcap=/usr ###TODO### +%configure --with-libpcap=yes --with-liblua=included \ + --without-zenmap --without-ndiff \ +%if 0%{?fedora} + --with-libssh2=yes \ +%else + --with-libssh2=no \ +%endif + --enable-dbus + +%make_build + +#fix man page (rhbz#813734) +sed -i 's/-md/-mf/' nping/docs/nping.1 + +%install +#prevent stripping - replace strip command with 'true' +make DESTDIR=%{buildroot} STRIP=true install + +#do not include certificate bundle (#734389) +rm -f %{buildroot}%{_datadir}/ncat/ca-bundle.crt +rmdir %{buildroot}%{_datadir}/ncat + +#we provide 'nc' replacement (#1653119) +touch %{buildroot}%{_mandir}/man1/nc.1.gz +touch %{buildroot}%{_bindir}/nc + +%find_lang nmap --with-man + +%post ncat +%{_sbindir}/alternatives --install %{_bindir}/nc nc %{_bindir}/ncat 10 \ + --slave %{_mandir}/man1/nc.1.gz nc-man %{_mandir}/man1/ncat.1.gz + +%preun ncat +if [ $1 -eq 0 ]; then + %{_sbindir}/alternatives --remove nc %{_bindir}/ncat +fi + +%files -f nmap.lang +%license LICENSE +%doc docs/README +%doc docs/nmap.usage.txt +%{_bindir}/nmap +%{_bindir}/nping +%{_mandir}/man1/nmap.1.gz +%{_mandir}/man1/nping.1.gz +%{_datadir}/nmap + +%files ncat +%license LICENSE +%doc ncat/docs/AUTHORS ncat/docs/README ncat/docs/THANKS ncat/docs/examples +%ghost %{_bindir}/nc +%{_bindir}/ncat +%ghost %{_mandir}/man1/nc.1.gz +%{_mandir}/man1/ncat.1.gz + +%changelog +* Mon Aug 09 2021 Mohan Boddu - 3:7.91-10 +- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags + Related: rhbz#1991688 + +* Wed Jul 28 2021 Florian Weimer - 3:7.91-9 +- Rebuild to pick up OpenSSL 3.0 Beta ABI (#1984097) + +* Wed Jun 16 2021 Mohan Boddu - 3:7.91-8 +- Rebuilt for RHEL 9 BETA for openssl 3.0 + Related: rhbz#1971065 + +* Wed May 5 2021 Pavel Zhukov - 3:7.91-7 +- Fix crash with unix sockets + +* Fri Apr 16 2021 Pavel Zhukov - 3:7.91-6 +- Bumping release because brew is ignorant of such innovative concept as RPM Epochs + +* Fri Apr 16 2021 Mohan Boddu - 3:7.91-2 +- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 + +* Thu Apr 8 2021 Pavel Zhukov - 3:7.91-1 +- Bring 7.91 back + +* Sun Mar 07 2021 Robert Scheck - 3:7.80-11 +- Manage nc symlink using alternatives (#1653119) + +* Wed Feb 10 2021 Pavel Zhukov - 3:7.80-10 +- Do not listen on ipv6 if it's disabled + +* Tue Jan 26 2021 Fedora Release Engineering - 3:7.80-9 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild + +* Wed Jan 13 2021 Pavel Zhukov - 3:7.80-8 +- Replace FD_ functions with safe implementation (#1914734) + +* Sun Jan 10 2021 Pavel Zhukov - 3:7.80-7 +- Drop nmap >= 7.90 + +* Thu Aug 20 2020 Pavel Zhukov - 2:7.80-6 +- Drop libssh from eln + +* Tue Jul 28 2020 Fedora Release Engineering - 2:7.80-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild + +* Tue May 19 2020 Pavel Zhukov - 2:7.80-4 +- Do not assert on unsolicited ARP response (#1836989) + +* Wed Jan 29 2020 Fedora Release Engineering - 2:7.80-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild + +* Tue Aug 13 2019 Peter Robinson 2:7.80-2 +- Re-provide nc, clearly 7 years isn't enough + +* Mon Aug 12 2019 Peter Robinson 2:7.80-1 +- Update to 7.80 +- Drop features conditionals from old releases +- Use %%license, package cleanups + +* Thu Jul 25 2019 Fedora Release Engineering - 2:7.70-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild + +* Thu May 2 2019 Pavel Zhukov - 2:7.70-7 +- Fix double free when ssh connections fails + +* Tue Feb 5 2019 Pavel Zhukov - 2:7.70-6 +- Fix ipv6 literals parsing in proxy connection + +* Fri Feb 01 2019 Fedora Release Engineering - 2:7.70-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild + +* Mon Sep 10 2018 Pavel Zhukov - 2:7.70-4 +- Obsolete frontend packages in f29+ (#1626804) + +* Fri Jul 13 2018 Fedora Release Engineering - 2:7.70-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild + +* Thu Apr 19 2018 Pavel Zhukov - 2:7.70-2 +- Do not build zenmap and ndiff because of python2 deprecation + +* Wed Mar 21 2018 Pavel Zhukov - 2:7.70-1 +- New version 7.70 (#1558770) + +* Tue Feb 27 2018 Pavel Zhukov - 2:7.60-14 +- Add appdata file (#1476506) + +* Mon Feb 19 2018 Pavel Zhukov - 2:7.60-12 +- add gcc-c++ BR + +* Thu Feb 08 2018 Fedora Release Engineering - 2:7.60-11 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild + +* Mon Jan 22 2018 Pavel Zhukov - 2:7.60-10 +- Print source address in UDP mode + +* Thu Jan 18 2018 Igor Gnatenko - 2:7.60-9 +- Remove obsolete scriptlets + +* Mon Aug 21 2017 Pavel Zhukov - 2:7.60-8 +- Fix memory leaks on error + +* Thu Aug 3 2017 Pavel Zhukov - 2:7.60-7 +- Use upstream patch + +* Thu Aug 3 2017 Pavel Zhukov - 2:7.60-6 +- Fix library version for non-included libraries + +* Thu Aug 3 2017 Pavel Zhukov - 2:7.60-4 +- Keep nmap specific libssh and libz headers +- Drop unused libssh2 patch + +* Thu Aug 3 2017 Pavel Zhukov - 2:7.60-4 +- Delete bundled libssh2 +- Delete bundled zlib + +* Wed Aug 02 2017 Pavel Zhukov - 2:7.60-1 +- New release 7.60 (#1477387) + +* Wed Jul 26 2017 Fedora Release Engineering - 2:7.50-10 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild + +* Fri Jul 21 2017 Pavel Zhukov - 2:7.50-9 +- Don't ship ndiff in nmap package + +* Wed Jul 19 2017 Pavel Zhukov - 2:7.50-8 +- change ndiff arch to noarch +- Move nmap to Requires (was in BR) + +* Tue Jul 18 2017 Pavel Zhukov - 2:7.50-6 +- Add missed py[co] files + +* Tue Jul 18 2017 Pavel Zhukov - 2:7.50-5 +- Move ndiff to subpackage (#1471999) +- Specify python version + +* Fri Jun 30 2017 Pavel Zhukov - 2:7.50-3 +- Add provides for nc6 (#1348348) +- Fix rpmlint errors + +* Wed Jun 21 2017 Pavel Zhukov - 2:7.50-1 +- New release (7.50) + +* Fri Feb 10 2017 Fedora Release Engineering - 2:7.40-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild + +* Tue Jan 03 2017 Michal Hlavinka - 2:7.40-1 +- nmap updated to 7.40 + +* Mon Oct 24 2016 Michal Hlavinka - 2:7.31-1 +- nmap updated to 7.31 + +* Mon Oct 03 2016 Michal Hlavinka - 2:7.30-1 +- nmap updated to 7.30 + +* Tue Jul 19 2016 Fedora Release Engineering - 2:7.12-2 +- https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages + +* Thu Mar 31 2016 Michal Hlavinka - 2:7.12-1 +- nmap updated to 7.12 + +* Wed Mar 23 2016 Michal Hlavinka - 2:7.11-1 +- nmap updated to 7.11 + +* Fri Mar 18 2016 Michal Hlavinka - 2:7.10-1 +- nmap updated to 7.10 + +* Thu Feb 04 2016 Fedora Release Engineering - 2:7.01-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild + +* Fri Dec 11 2015 Michal Hlavinka - 2:7.01-1 +- nmap updated to 7.01 + +* Tue Sep 01 2015 Michal Hlavinka - 2:6.47-5 +- fix FTBFS + +* Mon Aug 31 2015 Michal Hlavinka - 2:6.47-4 +- ncat should try to connect to all resolved addresses, not only the first one (#978964) + +* Wed Jun 17 2015 Fedora Release Engineering - 2:6.47-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild + +* Wed Dec 10 2014 Michal Hlavinka - 2:6.47-2 +- do not own icons/hicolor//apps directory (#1171813) + +* Mon Aug 25 2014 Michal Hlavinka - 2:6.47-1 +- nmap updated to 6.47 + +* Sun Aug 17 2014 Fedora Release Engineering - 2:6.46-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild + +* Sat Jun 07 2014 Fedora Release Engineering - 2:6.46-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild + +* Tue Apr 22 2014 Michal Hlavinka - 2:6.46-1 +- nmap updated to 6.46 + +* Mon Apr 14 2014 Michal Hlavinka - 2:6.45-1 +- nmap updated to 6.45 + +* Wed Apr 09 2014 Michal Hlavinka - 2:6.40-6 +- fix unexpected crash when too much paralelism is used (#1057912) + +* Wed Apr 09 2014 Michal Hlavinka - 2:6.40-5 +- update license tag (#1055861) + +* Tue Mar 04 2014 Michal Hlavinka - 2:6.40-4 +- use _hardened_build + +* Thu Oct 17 2013 Michal Hlavinka - 2:6.40-3 +- ncat should support UNIX sockets correctly, drop wrapper with socat + +* Thu Aug 08 2013 Michal Hlavinka - 2:6.40-2 +- do not print debug messages during normal use (#994376) + +* Tue Jul 30 2013 Michal Hlavinka - 2:6.40-1 +- nmap updated to 6.40 + +* Mon Jul 22 2013 Michal Hlavinka - 2:6.25-7 +- bundled lua no longer required + +* Mon Jun 24 2013 Michal Hlavinka - 2:6.25-6.20130624svn +- use svn snapshot that contains all necessary UDP patches + +* Fri May 24 2013 Michal Hlavinka - 2:6.25-5 +- fix man page typo + +* Thu May 23 2013 Michal Hlavinka - 2:6.25-4 +- zenamp: fix icon symlink (#957381) + +* Thu May 23 2013 Michal Hlavinka - 2:6.25-3 +- zenmap: do not traceback when there si no display, just exit nicely (#958240) + +* Thu Mar 28 2013 Michal Hlavinka - 2:6.25-2 +- fix aarch64 support (#926241) + +* Fri Mar 08 2013 Michal Hlavinka - 2:6.25-1 +- nmap updated to 6.25 + +* Thu Feb 14 2013 Fedora Release Engineering - 2:6.01-11 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild + +* Fri Jan 04 2013 Michal Hlavinka - 2:6.01-10 +- use select as default nsock engine + +* Thu Nov 29 2012 Michal Hlavinka - 2:6.01-9 +- do not use strict aliasing + +* Thu Nov 29 2012 Michal Hlavinka - 2:6.01-8 +- call shutdown also in listen mode + +* Tue Oct 02 2012 Petr Šabata - 2:6.01-7 +- Move the socat dependency to the ncat subpackage (#858733) + +* Wed Sep 19 2012 Michal Hlavinka - 2:6.01-6 +- shutdown socket on EOF (#845075) + +* Mon Aug 13 2012 Michal Hlavinka - 2:6.01-5 +- ncat did not work when file was used as input (#845005) + +* Tue Jul 24 2012 Michal Hlavinka - 2:6.01-4 +- add nc wrapper with socat as a fallback for unix sockets + +* Fri Jul 20 2012 Fedora Release Engineering - 2:6.01-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild + +* Wed Jul 18 2012 Michal Hlavinka - 2:6.01-2 +- provide ncat in extra package as replacement for nc + +* Mon Jun 18 2012 Michal Hlavinka - 2:6.01-1 +- nmap updated to 6.01 + +* Tue Jun 05 2012 Michal Hlavinka - 2:6.00-2 +- prevent stripping binaries + +* Tue Jun 05 2012 Michal Hlavinka - 2:6.00-1 +- updated to 6.00 + +* Wed Mar 14 2012 Michal Hlavinka - 2:5.61-0.1.TEST5 +- updated to 5.61TEST5 + +* Fri Feb 10 2012 Petr Pisar - 2:5.51-5 +- Rebuild against PCRE 8.30 + +* Fri Feb 10 2012 Petr Pisar - 2:5.51-4 +- Rebuild against PCRE 8.30 + +* Fri Jan 13 2012 Fedora Release Engineering - 2:5.51-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild + +* Thu Dec 08 2011 Michal Hlavinka - 2:5.51-2 +- do not use bundled certificates, use only system ones (#734389) + +* Mon Feb 14 2011 Michal Hlavinka - 2:5.51-1 +- nmap updated to 5.51 + +* Tue Feb 08 2011 Fedora Release Engineering - 2:5.50-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild + +* Mon Feb 07 2011 Michal Hlavinka - 2:5.50-1 +- updated to 5.50 + +* Tue Oct 05 2010 Michal Hlavinka - 2:5.21-10 +- add workaround for zenmap crash (#637403) + +* Wed Sep 29 2010 jkeating - 2:5.21-9 +- Rebuilt for gcc bug 634757 + +* Fri Sep 17 2010 Michal Hlavinka - 2:5.21-8 +- fix location of ja man page (#632104) + +* Thu Aug 19 2010 Michal Hlavinka - 2:5.21-7 +- update icon cache only after gui install + +* Wed Aug 11 2010 Michal Hlavinka - 2:5.21-6 +- update icon cache after package install + +* Wed Jul 21 2010 David Malcolm - 2:5.21-5 +- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild + +* Mon Jun 21 2010 Michal Hlavinka - 2:5.21-4 +- build -frontend as noarch + +* Fri Jun 18 2010 Michal Hlavinka - 2:5.21-3 +- fix multilib issue + +* Fri Apr 30 2010 Ville Skyttä - 2:5.21-2 +- Mark localized man pages with %%lang. + +* Mon Feb 01 2010 Michal Hlavinka - 2:5.21-1 +- updated to 5.21 + +* Tue Jan 12 2010 Michal Hlavinka - 2:5.00-6 +- use sqlite3 (instead of sqlite2) + +* Tue Dec 01 2009 Michal Hlavinka - 2:5.00-5 +- spec cleanup + +* Mon Nov 02 2009 Michal Hlavinka - 2:5.00-4 +- spec cleanup + +* Fri Aug 21 2009 Tomas Mraz - 2:5.00-3 +- rebuilt with new openssl + +* Sat Jul 25 2009 Fedora Release Engineering - 2:5.00-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild + +* Fri Jul 17 2009 Michal Hlavinka - 2:5.0-1 +- updated to 5.0 + +* Wed Jul 15 2009 Michal Hlavinka - 2:4.90-0.RC1 +- updated to 4.90RC1 + +* Thu Jun 18 2009 Michal Hlavinka - 2:4.85-0.BETA10 +- updated to 4.85beta10 + +* Wed Feb 25 2009 Fedora Release Engineering - 2:4.76-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild + +* Sat Jan 17 2009 Tomas Mraz - 2:4.76-3 +- rebuild with new openssl + +* Mon Dec 15 2008 Michal Hlavinka - 2:4.77-2 +- bump release for rebuild + +* Mon Dec 15 2008 Michal Hlavinka - 2:4.76-1 +- new upstream version 4.76 +- use consolehelper for root auth + +* Sat Nov 29 2008 Ignacio Vazquez-Abrams - 2:4.68-4 +- Rebuild for Python 2.6 + +* Mon Aug 11 2008 Tom "spot" Callaway - 2:4.68-3 +- add missing BuildRequires to use system libs rather than local copies +- really fix license tag + +* Mon Aug 11 2008 Tom "spot" Callaway - 2:4.68-2 +- fix license tag + +* Thu Jul 24 2008 Tomas Smetana - 2:4.68-1 +- new upstream version + +* Mon May 12 2008 Tomas Smetana - 2:4.62-1 +- new upstream version + +* Mon Feb 04 2008 Tomas Smetana - 2:4.53-1 +- new upstream version + +* Mon Jan 07 2008 Tomas Smetana - 2:4.52-2 +- bump release because of build error + +* Mon Jan 07 2008 Tomas Smetana - 2:4.52-1 +- new upstream version + +* Wed Dec 05 2007 Tomas Smetana - 2:4.20-6.1 +- rebuild + +* Wed Aug 22 2007 Harald Hoyer - 2:4.20-6 +- changed license tag + +* Fri Mar 23 2007 Harald Hoyer - 2:4.20-5 +- fixed changelog versions + +* Thu Mar 15 2007 Karsten Hopp 2:4.20-4 +- rebuild with current gtk2 to add png support (#232013) + +* Tue Feb 27 2007 Harald Hoyer - 2:4.20-3 +- specfile cleanup +- fixed Florian La Roche's patch + +* Tue Jan 30 2007 Florian La Roche - 2:4.20-2 +- do not strip away debuginfo + +* Tue Jan 09 2007 Florian La Roche - 2:4.20-1 +- version 4.20 + +* Wed Jul 12 2006 Jesse Keating - 2:4.11-1.1 +- rebuild + +* Tue Jun 27 2006 Harald Hoyer - 2:4.11-1 +- version 4.11 + +* Wed May 17 2006 Harald Hoyer 4.03-2 +- added more build requirements (bug #191932) + +* Wed May 10 2006 Karsten Hopp 4.03-1 +- update to 4.03, this fixes #184286 +- remove duplicate menu entry in 'Internet' (#183056) +- fix possible tmpdir race condition during build (#158996) + +* Fri Feb 10 2006 Jesse Keating - 2:4.00-1.2 +- bump again for double-long bug on ppc(64) + +* Tue Feb 07 2006 Jesse Keating - 2:4.00-1.1 +- rebuilt for new gcc4.1 snapshot and glibc changes + +* Thu Feb 02 2006 Harald Hoyer - 2:4.00-1 +- version 4.00 + +* Mon Dec 19 2005 Harald Hoyer - 2:3.95-1 +- version 3.95 + +* Fri Dec 09 2005 Jesse Keating +- rebuilt + +* Fri Nov 11 2005 Harald Hoyer - 2:3.93-3 +- fixed wrong __attribute__ test + +* Thu Nov 10 2005 Tomas Mraz - 2:3.93-2 +- rebuilt against new openssl + +* Tue Sep 13 2005 Harald Hoyer - 2:3.93-1 +- version 3.93 + +* Wed Aug 03 2005 Harald Hoyer - 2:3.81-4 +- removed references how to scan microsoft.com (bz #164962) +- finally got rid of gtk+-devel dependency + +* Thu Apr 21 2005 Harald Hoyer - 2:3.81-3 +- removed gtk+ requirement + +* Thu Apr 21 2005 Harald Hoyer - 2:3.81-2 +- fixed desktop file and added icons (bug #149157) + +* Wed Mar 02 2005 Harald Hoyer - 2:3.81-1 +- version 3.81 + +* Wed Feb 02 2005 Harald Hoyer - 2:3.78-2 +- evil port of nmapfe to gtk2 + +* Fri Dec 17 2004 Harald Hoyer - 2:3.78-1 +- version 3.78 + +* Mon Sep 13 2004 Harald Hoyer - 2:3.70-1 +- version 3.70 + +* Tue Jul 13 2004 Harald Hoyer - 2:3.55-1 +- new version + +* Tue Jun 15 2004 Elliot Lee +- rebuilt + +* Fri Feb 13 2004 Elliot Lee +- rebuilt + +* Thu Jan 29 2004 Harald Hoyer - 2:3.50-2 +- added BuildRequires: openssl-devel, gtk+-devel, pcre-devel, libpcap + +* Thu Jan 22 2004 Harald Hoyer - 2:3.50-1 +- version 3.50 + +* Wed Oct 8 2003 Harald Hoyer 2:3.48-1 +- version 3.48 + +* Tue Sep 23 2003 Florian La Roche +- allow disabling frontend if gtk1 is not available + +* Wed Jul 30 2003 Harald Hoyer 2:3.30-1 +- version 3.30 + +* Wed Jun 04 2003 Elliot Lee +- rebuilt + +* Mon May 26 2003 Harald Hoyer 2:3.27-1 +- version 3.27 + +* Mon May 12 2003 Harald Hoyer 2:3.20-2 +- changed macro comments to double %% for changelog entries + +* Mon Apr 14 2003 Harald Hoyer 2:3.20-1 +- version 3.2 + +* Wed Jan 22 2003 Tim Powers +- rebuilt + +* Thu Jan 9 2003 Harald Hoyer 3.0-3 +- nmap-3.00-nowarn.patch added + +* Mon Nov 18 2002 Tim Powers +- rebuild on all arches +- remove old desktop file from $$RPM_BUILD_ROOT so rpm won't complain + +* Thu Aug 1 2002 Harald Hoyer +- version 3.0 + +* Mon Jul 29 2002 Harald Hoyer 2.99.2-1 +- bumped version + +* Fri Jul 26 2002 Harald Hoyer 2.99.1-2 +- bumped version to 2.99RC1 + +* Fri Jul 19 2002 Florian La Roche +- add an epoch + +* Mon Jul 1 2002 Harald Hoyer 2.54.36-1 +- removed desktop file +- removed "BETA" name from version +- update to BETA36 + +* Fri Jun 21 2002 Tim Powers +- automated rebuild + +* Sun May 26 2002 Tim Powers +- automated rebuild + +* Wed May 22 2002 Harald Hoyer 2.54BETA34-1 +- update to 2.54BETA34 + +* Mon Mar 25 2002 Harald Hoyer +- more recent version (#61490) + +* Mon Jul 23 2001 Harald Hoyer +- buildprereq for nmap-frontend (#49644) + +* Sun Jul 22 2001 Heikki Korpela +- buildrequire gtk+ + +* Tue Jul 10 2001 Tim Powers +- fix bugs in desktop file (#48341) + +* Wed May 16 2001 Tim Powers +- updated to 2.54BETA22 + +* Mon Nov 20 2000 Tim Powers +- rebuilt to fix bad dir perms + +* Fri Nov 3 2000 Tim Powers +- fixed nmapdatadir in the install section, forgot lto include + $RPM_BUILD_ROOT in the path + +* Thu Nov 2 2000 Tim Powers +- update to nmap-2.54BETA7 to possibly fix bug #20199 +- use the desktop file provided by the package instead of using my own +- patches in previous version are depreciated. Included in SRPM for + reference only + +* Mon Jul 24 2000 Prospector +- rebuilt + +* Mon Jul 10 2000 Tim Powers +- rebuilt + +* Wed Jun 28 2000 Tim Powers +- rebuilt package + +* Thu Jun 8 2000 Tim Powers +- fixed man pages so that they are in an FHS compliant location +- use %%makeinstall +- use predefined RPM macros wherever possible + +* Tue May 16 2000 Tim Powers +- updated to 2.53 +- using applnk now +- use %%configure, and %%{_prefix} where possible +- removed redundant defines at top of spec file + +* Mon Dec 13 1999 Tim Powers +- based on origional spec file from + http://www.insecure.org/nmap/index.html#download +- general cleanups, removed lots of commenrts since it madethe spec hard to + read +- changed group to Applications/System +- quiet setup +- no need to create dirs in the install section, "make + prefix=$RPM_BUILD_ROOT&{prefix} install" does this. +- using defined %%{prefix}, %%{version} etc. for easier/quicker maint. +- added docs +- gzip man pages +- strip after files have been installed into buildroot +- created separate package for the frontend so that Gtk+ isn't needed for the + CLI nmap +- not using -f in files section anymore, no need for it since there aren't that + many files/dirs +- added desktop entry for gnome + +* Sun Jan 10 1999 Fyodor +- Merged in spec file sent in by Ian Macdonald + +* Tue Dec 29 1998 Fyodor +- Made some changes, and merged in another .spec file sent in + by Oren Tirosh + +* Mon Dec 21 1998 Riku Meskanen +- initial build for RH 5.x