Commit 7a4738e7 authored by Julián Moreno Patiño's avatar Julián Moreno Patiño Committed by Raphaël Hertzog
Browse files

Imported Debian patch 1.8.0-2

parents 020316bc aae656e3
john (1.8.0-2) unstable; urgency=medium
* Add myself to Uploaders. Thanks to Ruben Molina
for the permission.
* Add missing hardening fortify functions export.
* Bump Standards-Version to 3.9.5. (no changes).
* Add support to check upstream gpg signature.
* Add myself to debian copyright.
-- Julián Moreno Patiño <julian@debian.org> Wed, 19 Mar 2014 15:37:37 -0500
john (1.8.0-1) unstable; urgency=low
* New upstream release (Closes: #670582)
* Fixing $PIDDIR logic in crontab (Closes: #660822). Thanks Phil.
* Reefreshing patches
* Updating to Standards-Version 3.9.4 (no changes)
* Updating install scripts
* Updating debian/copyright for machine-readable format, version 1.0
* Updating compatibility level to 9
* Adding versioned Build-Depends on dpkg-dev (>= 1.16.1~)
-- Ruben Molina <rmolina@udea.edu.co> Mon, 26 Nov 2012 14:35:38 -0500
john (1.7.8-1) unstable; urgency=low
* New upstream release (Fix: CVE-2011-2483, LP: #805258)
......
......@@ -2,8 +2,9 @@ Source: john
Section: admin
Priority: optional
Maintainer: Ruben Molina <rmolina@udea.edu.co>
Build-Depends: debhelper (>= 7.0.50~)
Standards-Version: 3.9.2
Uploaders: Julián Moreno Patiño <julian@debian.org>
Build-Depends: debhelper (>= 9.0.0~), dpkg-dev (>= 1.16.1~)
Standards-Version: 3.9.5
Homepage: http://www.openwall.com/john/
Package: john
......
Format-Specification: http://svn.debian.org/wsvn/dep/web/deps/dep5.mdwn?op=file&rev=135
Name: john
Maintainer: Alexander Peslyak (Solar Designer) <solar@openwall.com>
Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
Upstream-Name: John the Ripper
Upstream-Contact: Alexander Peslyak (Solar Designer) <solar@openwall.com>
Source: http://www.openwall.com/john/
Files: *
Copyright: © 1996-2011, Solar Designer <solar@openwall.com>
License: GPL-2
This package is free software; you can redistribute it and/or modify it
under the terms of the GNU General Public License version 2 as
published by the Free Software Foundation.
This program is free software; you can redistribute it
and/or modify it under the terms of the GNU General Public
License as published by the Free Software Foundation; version 2.
.
This package is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
General Public License for more details.
This program is distributed in the hope that it will be
useful, but WITHOUT ANY WARRANTY; without even the implied
warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR
PURPOSE. See the GNU General Public License for more
details.
.
You should have received a copy of the GNU General Public License along
with this program. If not, see <http://www.gnu.org/licenses/>
You should have received a copy of the GNU General Public
License along with this package; if not, write to the Free
Software Foundation, Inc., 51 Franklin St, Fifth Floor,
Boston, MA 02110-1301 USA
.
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2".
On Debian systems, the full text of the GNU General Public
License version 2 can be found in the file
`/usr/share/common-licenses/GPL-2'.
Files: debian/*
Copyright: © 2009-2011, Ruben Molina <rmolina@udea.edu.co>
© 2008,2009. David Paleino <d.paleino@gmail.com>
Copyright: © 2009-2013, Ruben Molina <rmolina@udea.edu.co>
© 2014, Julián Moreno Patiño <julian@debian.org>
© 2008-2009. David Paleino <d.paleino@gmail.com>
© 2004-2006, Guilherme de S. Pastore <gpastore@debian.org>
© 2003-2004, Javier Fernandez-Sanguino Peña <jfs@computer.org>
© 2000-2004, Christian Kurz <shorty@debian.org>
License: GPL-2+
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2". See above.
Files: debian/man/john.8
Files: debian/man/*
Copyright: © 1999-2001, Jordi Mallach <jordi@debian.org>
© 1999-2001, Jeronimo Pellegrini <pellegrini@mpcnet.com.br>
License: GPL-2+
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2". See above.
Files: debian/man/mailer.8, debian/man/un*.8
Copyright: © 1999-2001, Jordi Mallach <jordi@debian.org>
Files:src/MD5_std.*
Copyright: © 1996-2006, Solar Designer <solar@openwall.com>
License: GPL-2+
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2". See above.
License: GPL-2+
This program is free software; you can redistribute it
and/or modify it under the terms of the GNU General Public
License as published by the Free Software Foundation; version 2 or (at
your option) any later version.
.
This program is distributed in the hope that it will be
useful, but WITHOUT ANY WARRANTY; without even the implied
warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR
PURPOSE. See the GNU General Public License for more
details.
.
You should have received a copy of the GNU General Public
License along with this package; if not, write to the Free
Software Foundation, Inc., 51 Franklin St, Fifth Floor,
Boston, MA 02110-1301 USA
.
On Debian systems, the full text of the GNU General Public
License version 2 can be found in the file
`/usr/share/common-licenses/GPL-2'.
Files: src/crc32.*
Copyright: © 1998-2005, Solar Designer <solar@openwall.com>
License: PD
License: public-domain
Written by Solar Designer <solar at openwall.com> in 1998, revised in
2005 for use in John the Ripper, and placed in the public domain.
Files:src/MD5_std.*
Copyright: © 1996-2006, Solar Designer <solar@openwall.com>
License: GPL-2+
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2". See above.
.
Based on the RSA Data Security, Inc. MD5 Message-Digest Algorithm and
FreeBSD MD5-based crypt(3) by Poul-Henning Kamp <phk at login.dknet.dk>.
Files: src/BF_std.*
Copyright: © 1998, 1996-2010, Solar Designer <solar@openwall.com>
License: Microlicense
License: GPL-2+
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2". See above.
.
This implementation is compatible with OpenBSD bcrypt.c (version 2a)
by Niels Provos <provos at citi.umich.edu>, and uses some of his
ideas. The password hashing algorithm was designed by David Mazieres
<dm at lcs.mit.edu>.
.
Some of the tricks in BF_ROUND might be inspired by Eric Young's
Blowfish library (I can't be sure if I would think of something if I
hadn't seen his code).
Copyright: © 1996-2010, Solar Designer <solar@openwall.com>
License: public-domain
A public domain version of this code, with reentrant and crypt(3)
interfaces added, but optimizations specific to password cracking
removed, is available at: http://www.openwall.com/crypt/
Files: src/nonstd.c
src/sboxes.c
Copyright: © 1998, Matthew Kwan <mkwan@darkside.com.au>
License: Microlicense
License: permissive
This software may be modified, redistributed, and used for any purpose,
so long as its origin is acknowledged.
Files: src/x86-64.S
Copyright: © 2000-2006, Solar Designer <solar@openwall.com>
© 1998, Matthew Kwan <mkwan@darkside.com.au>
License: GPL-2+
http://lists.alioth.debian.org/pipermail/pkg-john-devel/2009-January/000260.html
.
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2". See above.
Files: src/x86-mmx.S
src/x86-sse.S
Copyright: © 2000-2006, Solar Designer <solar@openwall.com>
© 1998, Matthew Kwan <mkwan@darkside.com.au>
© 1998, Bruce Ford <b.ford@qut.edu.au>
© 1998, Rémi Guyomarch <rguyom@mail.dotcom.fr>
License: GPL-2+
http://lists.alioth.debian.org/pipermail/pkg-john-devel/2009-January/000260.html
.
On Debian systems, the complete text of the GNU General Public License
version 2 can be found in "/usr/share/common-licenses/GPL-2". See above.
......@@ -24,7 +24,7 @@ RESTORE=$RUNDIR/restore
PASSFILE=`grep -v ^# /etc/john/john-mail.conf | grep -e "[ ]*passfile[ ]*=[ ]*" | sed -e "s/#.*//" -e "s/.*=[ ]*//" |head -1`
GROUP=`grep -v ^# /etc/john/john-mail.conf | grep -e "[ ]*group[ ]*=[ ]*" | sed -e "s/#.*//" -e "s/.*=[ ]*//" | head -1`
[ ! -d $PIDDIR ] || mkdir -p $PIDDIR
[ ! -d $PIDDIR ] && mkdir -p $PIDDIR
cd $RUNDIR
# Gets the PID of the process that should be running john,
......
run/all.chr /usr/share/john/
run/alnum.chr /usr/share/john/
run/alpha.chr /usr/share/john/
run/digits.chr /usr/share/john/
run/lanman.chr /usr/share/john/
run/password.lst /usr/share/john/
run/*.chr /usr/share/john/
run/*.lst /usr/share/john/
Description: allows CFLAGS/LDFLAGS modification from debian/rules
Description: allows FLAGS modification from debian/rules
Author: Ruben Molina <rmolina@udea.edu.co>
Last-Update: 2011-01-21
Last-Update: 2013-06-04
Forwarded: no
Index: john-1.7.6/src/Makefile
Index: john-1.8.0/src/Makefile
===================================================================
--- john-1.7.6.orig/src/Makefile 2011-01-21 20:24:08.984732206 -0500
+++ john-1.7.6/src/Makefile 2011-01-21 20:24:12.296735324 -0500
@@ -19,9 +19,9 @@
--- john-1.8.0.orig/src/Makefile 2013-05-29 18:21:25.000000000 -0500
+++ john-1.8.0/src/Makefile 2013-06-04 01:17:22.272040456 -0500
@@ -18,7 +18,7 @@
TR = tr
SED = sed
NULL = /dev/null
-CPPFLAGS = -E
+CPPFLAGS += -E
OMPFLAGS =
# gcc with OpenMP
#OMPFLAGS = -fopenmp
@@ -28,11 +28,11 @@
#OMPFLAGS = -fopenmp -D_FORTIFY_SOURCE=0
# Sun Studio with OpenMP (set the OMP_NUM_THREADS env var at runtime)
#OMPFLAGS = -xopenmp
-CFLAGS = -c -Wall -O2 -fomit-frame-pointer $(OMPFLAGS)
+CFLAGS += -c -Wall -O2 -fomit-frame-pointer $(OMPFLAGS)
-CFLAGS = -c -Wall -Wdeclaration-after-statement -O2 -fomit-frame-pointer $(OMPFLAGS)
+CFLAGS += -c -Wall -Wdeclaration-after-statement -O2 -fomit-frame-pointer $(OMPFLAGS)
# CFLAGS for use on the main john.c file only
CFLAGS_MAIN = $(CFLAGS)
ASFLAGS = -c $(OMPFLAGS)
-LDFLAGS = -s $(OMPFLAGS)
+LDFLAGS += -s $(OMPFLAGS)
OPT_NORMAL = -funroll-loops
OPT_INLINE = -finline-functions
# Remove the "-Os" if you're using an ancient version of gcc
OPT_INLINE = -Os -funroll-loops -finline-functions
......@@ -3,19 +3,18 @@ Description: removes -funroll-loops (FTBFS in arm)
Author: David Paleino <d.paleino@gmail.com>
Reviewed-By: Ruben Molina <rmolina@udea.edu.co>
Bug-Debian: http://bugs.debian.org/476460
Last-Update: 2011-01-21
Last-Update: 2013-06-04
Forwarded: no
Index: john-1.7.6/src/Makefile
Index: john-1.8.0/src/Makefile
===================================================================
--- john-1.7.6.orig/src/Makefile 2011-01-21 20:24:12.296735324 -0500
+++ john-1.7.6/src/Makefile 2011-01-21 20:24:18.541731547 -0500
@@ -22,7 +22,7 @@
CFLAGS += -c -Wall -O2 -fomit-frame-pointer $(OMPFLAGS)
--- john-1.8.0.orig/src/Makefile 2013-06-04 01:19:37.244046143 -0500
+++ john-1.8.0/src/Makefile 2013-06-04 01:19:38.876046194 -0500
@@ -33,7 +33,6 @@
CFLAGS_MAIN = $(CFLAGS)
ASFLAGS = -c $(OMPFLAGS)
LDFLAGS += -s $(OMPFLAGS)
-OPT_NORMAL = -funroll-loops
+#OPT_NORMAL = -funroll-loops
OPT_INLINE = -finline-functions
# Remove the "-Os" if you're using an ancient version of gcc
OPT_INLINE = -Os -funroll-loops -finline-functions
JOHN_OBJS = \
Description: allows CFG_FULL_NAME/CFG_ALT_NAME modification from debian/rules
Author: Kees Cook <kees@debian.org>
Reviewed-By: Ruben Molina <rmolina@udea.edu.co>
Last-Update: 2011-01-21
Last-Update: 2013-06-04
Forwarded: no
Index: john-1.7.6/src/params.h
Index: john-1.8.0/src/params.h
===================================================================
--- john-1.7.6.orig/src/params.h 2011-01-21 21:32:16.397730018 -0500
+++ john-1.7.6/src/params.h 2011-01-21 21:33:32.993729997 -0500
@@ -103,8 +103,12 @@
--- john-1.8.0.orig/src/params.h 2013-05-29 22:32:02.000000000 -0500
+++ john-1.8.0/src/params.h 2013-06-04 01:20:08.292047105 -0500
@@ -135,8 +135,12 @@
/*
* File names.
*/
......
Description: adds c3_fmt.o to JOHN_OBJS in freebsd-* targets
Author: Julián Moreno Patiño <darkjunix@gmail.com>
Author: Julián Moreno Patiño <julian@debian.org>
Reviewed-By: Ruben Molina <rmolina@udea.edu.co>
Last-Update: 2011-01-21
Last-Update: 2013-06-04
Forwarded: no
Index: john-1.7.6/src/Makefile
Index: john-1.8.0/src/Makefile
===================================================================
--- john-1.7.6.orig/src/Makefile 2011-01-21 20:24:18.541731547 -0500
+++ john-1.7.6/src/Makefile 2011-01-21 20:24:21.344731582 -0500
@@ -255,24 +255,24 @@
--- john-1.8.0.orig/src/Makefile 2013-06-04 01:19:38.876046194 -0500
+++ john-1.8.0/src/Makefile 2013-06-04 01:20:00.164046852 -0500
@@ -308,24 +308,24 @@
freebsd-x86-64:
$(LN) x86-64.h arch.h
$(MAKE) $(PROJ) \
......
......@@ -6,12 +6,14 @@
# This has to be exported to make some magic below work.
export DH_OPTIONS
# This will be needed for target selection
# This is for the target selection
CPU := $(shell dpkg-architecture -qDEB_HOST_ARCH_CPU)
OS := $(shell dpkg-architecture -qDEB_HOST_ARCH_OS)
CFLAGS := $(shell dpkg-buildflags --get CFLAGS)
CFLAGS += -DJOHN_SYSTEMWIDE
# This is to add missing hardening fortify functions export
CFLAGS += $(shell dpkg-buildflags --get CPPFLAGS)
CFLAGS += -DJOHN_SYSTEMWIDE
# See src/params.h
ifeq ($(OS),kfreebsd)
......@@ -84,7 +86,7 @@ ifeq ($(CPU),i386)
endif
%:
dh --sourcedirectory=src $@
dh $@ --sourcedirectory=src
override_dh_auto_build:
# building the selected target
......
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1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=ItHH
-----END PGP PUBLIC KEY BLOCK-----
version=3
opts=pgpsigurlmangle=s/$/.sign/ \
http://www.openwall.com/john/ ./john-([\d\.]+)\.tar\.gz
The following changes have been made between John 1.7.9.8 and 1.8.0:
* Revised the incremental mode to let the current character counts grow for
each character position independently, with the aim to improve efficiency in
terms of successful guesses per candidate passwords tested.
* Revised the pre-defined incremental modes, as well as external mode filters
that are used to generate .chr files.
* Added makechr, a script to (re-)generate .chr files.
* Enhanced the status reporting to include four distinct speed metrics (g/s,
p/s, c/s, and C/s).
* Added the "--fork=N" and "--node=MIN[-MAX]/TOTAL" options for trivial
parallel and distributed processing.
* In the external mode compiler, treat character literals as unsigned.
* Renamed many of the formats.
* Updated the documentation.
* Relaxed the license for many source files to cut-down BSD.
* Relaxed the license for John the Ripper as a whole from GPLv2 (exact version)
to GPLv2 or newer with optional OpenSSL and unRAR exceptions.
* Assorted other changes have been made.
The following changes have been made between John 1.7.9 and 1.7.9.8:
* Enhanced the support for DES-based tripcodes by making use of the bitslice
DES implementation and supporting OpenMP parallelization.
* Implemented bitmaps for fast initial comparison of computed hashes against
those loaded for cracking. This is applied before hash table lookups, and it
allows for the use of smaller hash tables (thereby saving memory) while
achieving the same or greater speed that larger hash tables previously did.
The speed increase is due to improved locality of reference (where only the
smaller bitmap is accessed all the time, whereas the larger hash table behind
it is only accessed for a percentage of comparisons and additionally it is
smaller than it would otherwise need to be).
* Tuned the bitmap and hash table sizes and thresholds based on testing on
saltless hashes on a Core 2'ish CPU.
* When cracking LM hashes, don't store the ASCII encodings of the hashes in
memory, but instead reconstruct them from the binary hashes for writing into
john.pot when a password gets cracked.
* With 32-bit x86 builds and at least MMX enabled, the "two hashes at a time"
code for bcrypt is now enabled for GCC 4.2 and newer. This change is made
based on benchmark results for different builds made with different versions of
GCC on CPUs ranging from Pentium 3 to Core i7. Unfortunately, there's a known
performance regression with this change on Atom. Previously, this code was
only enabled for x86-64 and/or OpenMP-enabled builds.
* The formats interface has been enhanced to better support GPU implementations
(in jumbo), as well as fast hashes on multi-CPU systems (not yet made use of).
* Assorted minor corrections to Cygwin builds were made.
* Fixed a bug in the Keyboard external mode (uninitialized variables on
"--restore" or when minlength is greater than 1).
* Enhanced the generic crypt(3) format to handle possible NULL returns from
crypt() and crypt_r().
* Updated the FAQ.
The following changes have been made between John 1.7.8 and 1.7.9:
* Added optional parallelization of the MD5-based crypt(3) code with OpenMP.
* Added optional parallelization of the bitslice DES code with OpenMP.
* Replaced the bitslice DES key setup algorithm with a faster one, which
significantly improves performance at LM hashes, as well as at DES-based
crypt(3) hashes when there's just one salt (or very few salts).
* Optimized the DES S-box x86-64 (16-register SSE2) assembly code.
* Added support for 10-character DES-based tripcodes (not optimized yet).
* Added support for the "$2y$" prefix of bcrypt hashes.
* Added two more hash table sizes (16M and 128M entries) for faster processing
of very large numbers of hashes per salt (over 1M).
* Added two pre-defined external mode variables: "abort" and "status", which
let an external mode request the current cracking session to be aborted or the
status line to be displayed, respectively.
* Made some minor optimizations to external mode function calls and virtual
machine implementation.
* The "--make-charset" option now uses floating-point rather than 64-bit
integer operations, which allows for larger CHARSET_* settings in params.h.
* Added runtime detection of Intel AVX and AMD XOP instruction set extensions,
with optional fallback to an alternate program binary.
* In OpenMP-enabled builds, added support for fallback to a non-OpenMP build
when the requested thread count is 1.
* Added relbench, a Perl script to compare two "john --test" benchmark runs,
such as for different machines, "make" targets, C compilers, optimization
options, or/and versions of John the Ripper.
* Additional public lists of "top N passwords" have been merged into the
bundled common passwords list, and some insufficiently common passwords were
removed from the list.
* Many minor enhancements and a few bug fixes were made.
The following changes have been made between John 1.7.7 and 1.7.8:
* The bitslice DES S-box expressions have been replaced with those generated
......@@ -245,4 +328,4 @@ Mac OS X (PowerPC and x86), SCO, BeOS.
* Bug and portability fixes, and new bugs.
* Bonus: "Strip" cracker included in the default john.conf (john.ini).
$Owl: Owl/packages/john/john/doc/CHANGES,v 1.58 2011/06/22 13:39:46 solar Exp $
$Owl: Owl/packages/john/john/doc/CHANGES,v 1.91 2013/05/30 03:11:02 solar Exp $
......@@ -13,8 +13,13 @@ you're using (if applicable). If you need to provide a binary file,
place it on a private URL and post that, do not attach the file to your
message.
If you need to contact me privately, please e-mail me at the address
below, but most messages should really be directed to the list instead.
If you absolutely need to contact me (the original author of John the
Ripper) privately, please e-mail me at:
Solar Designer <solar at openwall.com>
although most messages should really be directed to the list instead
(and you're more likely to receive a response if you write to the list).
Please don't ask questions until you read the FAQ.
......@@ -22,7 +27,4 @@ Commercial support for John the Ripper is available from Openwall:
http://www.openwall.com/services/
--
Solar Designer <solar at openwall.com>
$Owl: Owl/packages/john/john/doc/CONTACT,v 1.3 2006/01/02 05:00:42 solar Exp $
$Owl: Owl/packages/john/john/doc/CONTACT,v 1.4 2013/05/30 00:10:11 solar Exp $
GNU GENERAL PUBLIC LICENSE
Version 2, June 1991
Copyright (C) 1989, 1991 Free Software Foundation, Inc.,
51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
Everyone is permitted to copy and distribute verbatim copies
of this license document, but changing it is not allowed.
Preamble
The licenses for most software are designed to take away your
freedom to share and change it. By contrast, the GNU General Public
License is intended to guarantee your freedom to share and change free
software--to make sure the software is free for all its users. This
General Public License applies to most of the Free Software
Foundation's software and to any other program whose authors commit to
using it. (Some other Free Software Foundation software is covered by
the GNU Lesser General Public License instead.) You can apply it to
your programs, too.
When we speak of free software, we are referring to freedom, not
price. Our General Public Licenses are designed to make sure that you
have the freedom to distribute copies of free software (and charge for
this service if you wish), that you receive source code or can get it
if you want it, that you can change the software or use pieces of it
in new free programs; and that you know you can do these things.
To protect your rights, we need to make restrictions that forbid
anyone to deny you these rights or to ask you to surrender the rights.
These restrictions translate to certain responsibilities for you if you
distribute copies of the software, or if you modify it.
For example, if you distribute copies of such a program, whether
gratis or for a fee, you must give the recipients all the rights that
you have. You must make sure that they, too, receive or can get the
source code. And you must show them these terms so they know their
rights.
We protect your rights with two steps: (1) copyright the software, and
(2) offer you this license which gives you legal permission to copy,
distribute and/or modify the software.
Also, for each author's protection and ours, we want to make certain
that everyone understands that there is no warranty for this free
software. If the software is modified by someone else and passed on, we
want its recipients to know that what they have is not the original, so
that any problems introduced by others will not reflect on the original
authors' reputations.
Finally, any free program is threatened constantly by software
patents. We wish to avoid the danger that redistributors of a free
program will individually obtain patent licenses, in effect making the
program proprietary. To prevent this, we have made it clear that any
patent must be licensed for everyone's free use or not licensed at all.
The precise terms and conditions for copying, distribution and
modification follow.
GNU GENERAL PUBLIC LICENSE
TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
0. This License applies to any program or other work which contains
a notice placed by the copyright holder saying it may be distributed
under the terms of this General Public License. The "Program", below,
refers to any such program or work, and a "work based on the Program"
means either the Program or any derivative work under copyright law:
that is to say, a work containing the Program or a portion of it,
either verbatim or with modifications and/or translated into another
language. (Hereinafter, translation is included without limitation in