non port: security/easy-rsa/Makefile |
Number of commits found: 32 |
Monday, 16 Oct 2023
|
20:25 Matthias Andree (mandree)
security/easy-rsa: update to 3.1.7
Changelog: https://github.com/OpenVPN/easy-rsa/releases/tag/v3.1.7
026d3f6 |
Friday, 18 Aug 2023
|
17:15 Matthias Andree (mandree)
security/easy-rsa: update to 3.1.6
Quoting its changes:
* New commands: 'inline' and 'x509-eku' (#993)
inline: Build an inline file for a commonName
x509-eku: Extract X509v3 extended key usage from a certificate
* Expose serial-check, display-dn, display-san and default-san to
command line. (#980) (Debugging functions, which remain undocumented)
* Expand default status to include vars-file and CA status (#973)
* sign-req: Allow the CSR DN-field order to be preserved (#970)
fb40173 |
Sunday, 11 Jun 2023
|
14:27 Matthias Andree (mandree)
security/easy-rsa: update to v3.1.5
Changelog: https://github.com/OpenVPN/easy-rsa/releases/tag/v3.1.5
de94497 |
Thursday, 25 May 2023
|
00:23 Matthias Andree (mandree)
security/easy-rsa: update to v3.1.4
ChangeLog: https://github.com/OpenVPN/easy-rsa/releases/tag/v3.1.4
MFH: 2023Q2
027131b |
Friday, 19 May 2023
|
13:07 Matthias Andree (mandree)
security/easy-rsa: update 3.1.2 → 3.1.3
ChangeLog: https://github.com/OpenVPN/easy-rsa/releases/tag/v3.1.3
b0225f4 |
Friday, 13 Jan 2023
|
23:01 Matthias Andree (mandree)
security/easy-rsa: update to v3.1.2
ChangeLog: https://github.com/OpenVPN/easy-rsa/releases/tag/v3.1.2
ba184d2 |
Saturday, 15 Oct 2022
|
08:21 Matthias Andree (mandree)
security/easy-rsa: update to v3.1.1
Changelog: https://github.com/OpenVPN/easy-rsa/releases/tag/v3.1.1
Detailed: https://github.com/OpenVPN/easy-rsa/compare/v3.1.0...v3.1.1
also fixes
PR: 266727
Reported by: topical@gmx.net
22ecf34 |
Sunday, 2 Oct 2022
|
09:08 Matthias Andree (mandree)
security/easy-rsa: sed \s -> [[:space:]]
Fix https://github.com/OpenVPN/easy-rsa/issues/714
Patch suggested (needed to be integrated) and
Reported by: topical@gmx.net
PR: 266726
MFH: 2022Q4
5d062d5 |
Wednesday, 7 Sep 2022
|
21:10 Stefan Eßer (se)
Add WWW entries to port Makefiles
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
This commit implements such a proposal and moves one of the WWW: entries
of each pkg-descr file into the respective port's Makefile. A heuristic
attempts to identify the most relevant URL in case there is more than
one WWW: entry in some pkg-descr file. URLs that are not moved into the
Makefile are prefixed with "See also:" instead of "WWW:" in the pkg-descr
files in order to preserve them.
There are 1256 ports that had no WWW: entries in pkg-descr files. These
ports will not be touched in this commit.
The portlint port has been adjusted to expect a WWW entry in each port
Makefile, and to flag any remaining "WWW:" lines in pkg-descr files as
deprecated.
Approved by: portmgr (tcberner)
b7f0544 |
Sunday, 5 Jun 2022
|
12:57 Matthias Andree (mandree)
security/easy-rsa: fix EASYRSA override and locale
* remove our own wrapper, overriding the EASYRSA folder is no
longer working since 3.1.0.
* patch EasyRSA to unset LC_ALL and override LC_TIME, to avoid
date command failures
* bump PORTREVISION=2
see comment #7 ff. of
PR: 264415
32877d0 |
Thursday, 2 Jun 2022
|
21:29 Matthias Andree (mandree)
security/easy-rsa: fix confusion of vars file
...and no longer package it as @sample. It is per-PKI, and easyrsa init-pki
will copy vars.example from the distribution, and create a PKI-local copy
named vars. Should fix grembo@'s bug report [1]
add a new pkg-message file to explain this.
while here, add a convenience hardlink easy-rsa to the easyrsa wrapper,
to have an executable matching the package name.
PR: 264415
Reported by: grembo@ (Michael Gmelin)
0a0dd56 |
Saturday, 21 May 2022
|
13:10 Matthias Andree (mandree)
security/easy-rsa: update to 3.1.0
3.1.0 (2022-05-18)
* Introduce basic support for OpenSSL version 3 (#492)
* Update regex in grep to be POSIX compliant (#556)
* Introduce status reporting tools (#555 & #557)
* Display certificates using UTF8 (#551)
* Allow certificates to be created with fixed date offset (#550)
* Add 'verify' to verify certificate against CA (#549)
* Add PKCS#12 alias 'friendlyName' (#544)
* Disallow use of '--vars=FILE init-pki' (#566)
* Support multiple IP-Addresses in SAN (#564)
* Add option '--renew-days=NN', custom renew grace period (#557)
* Add 'nopass' option to the 'export-pkcs' functions (#411)
* Add support for 'busybox' (#543)
* Add option '--tmp-dir=DIR' to declare Temp-dir (Commit f503a22)
3.0.9 (2022-05-17)
* Upgrade OpenSSL from 1.1.0j to 1.1.1o (#405, #407)
- We are buliding this ourselves now.
* Fix --version so it uses EASYRSA_OPENSSL (#416)
* Use openssl rand instead of non-POSIX mktemp (#478)
* Fix paths with spaces (#443)
* Correct OpenSSL version from Homebrew on macOs (#416)
* Fix revoking a renewed certificate (Original PR #394)
Follow-up commit: ef22701878bb10df567d60f2ac50dce52a82c9ee
* Introduce 'show-crl' (d1993892178c5219f4a38d50db3b53d1a972b36c)
* Support Windows-Git 'version of bash' (#533)
* Disallow use of single quote (') in vars file, Warning (#530)
* Creating a CA uses x509-types/ca and COMMON (#526)
* Prefer 'PKI/vars' over all other locations (#528)
* Introduce 'init-pki soft' option (#197)
* Warnings are no longer silenced by --batch (#523)
* Improve packaging options (#510)
* Update regex for POSIX compliance (#556)
* Correct date format for Darwin/BSD (#559)
3ec62b0 |
Friday, 6 May 2022
|
17:34 Matthias Andree (mandree)
security/easy-rsa: fix cert issuance with BSD grep
easyrsa running on systems with bsdgrep for grep
fails issuing certs because it attempts \d as shorthand for
[[:digit:]] or [0-9] and triggers a grep failure with diagnostic
grep: trailing backslash (\)
Filed upstream: https://github.com/OpenVPN/easy-rsa/issues/556
PR: 263812
Submitted by: grembo@
8e0b9d2 |
Thursday, 25 Nov 2021
|
21:40 Stefan Eßer (se)
*/*: Remove redundant '-*' from CONFLICTS definitions
The conflict checks compare the patterns first against the package
names without version (as reported by "pkg query "%n"), then - if
there was no match - agsinst the full package names including the
version (as reported by "pkg query "%n-%v").
Approved by: portmgr (blanket)
04b9da4 |
Wednesday, 7 Apr 2021
|
08:09 Mathieu Arnold (mat)
One more small cleanup, forgotten yesterday.
Reported by: lwhsu
cf118cc |
Tuesday, 6 Apr 2021
|
14:31 Mathieu Arnold (mat)
Remove # $FreeBSD$ from Makefiles.
305f148 |
Saturday, 19 Sep 2020
|
07:49 mandree
security/easy-rsa: update to 3.0.8
* Provide --version option (#372)
* Version information now within generated certificates like on *nix
* Fixed issue where gen-dh overwrote existing files without warning (#373)
* Fixed issue with ED/EC certificates were still signed by RSA (#374)
* Added support for export-p8 (#339)
* Clarified error message (#384)
* 2->3 upgrade now errors and prints message when vars isn't found (#377)
|
Tuesday, 31 Mar 2020
|
00:36 mandree
security/easy-rsa: Update to v3.0.7
FreeBSD-relevant ChangeLog extract since 3.0.6:
* Remove RANDFILE environment variable (#261)
* Workaround for bug in win32 mktemp (#247, #305, PR #312)
* Handle IP address in SAN and renewals (#317)
* Workaround for ash and no set -o echo (#319)
* Shore up windows testing framework (#314)
* Provide upgrade mechanism for older versions of EasyRSA (#349)
* Add support for KDC certificates (#322)
* Add support for Edward Curves (#354, #350)
* Add support for EASYRSA_PASSIN and EASYRSA_PASSOUT env vars (#368)
* Add support for RID to SAN (#362)
Update WWW: link in pkg-descr.
Remove patches that have been integrated upstream.
Shuffle USES=-line to please portlint.
Add NO_ARCH=yes, since this is all scripts and text.
Reported by: Eric F Crist (upstream maintainer)
|
Saturday, 23 Mar 2019
|
11:11 mandree
security/easy-rsa: update to 3.0.6
ChangeLog: <https://github.com/OpenVPN/easy-rsa/releases/tag/v3.0.6>
This also includes a cherry-pick for Issue #261 that happened
only after v3.0.6, <https://github.com/OpenVPN/easy-rsa/issues/261>
|
Saturday, 15 Sep 2018
|
15:30 mandree
Fix security/easy-rsa regression that broke bootstrapping.
v3.0.5 added code that expanded variables, for compatibility with LibreSSL.
This code assumed that the source configuration file could be variable-
expanded and the result could be saved next to the source - which it
cannot, since the latter is under ${PREFIX} where the unprivileged users
should not be able to write.
Add a patch provided by Eric Crist, and rename another file to keep
a sane patch order.
|
13:22 mandree
Mark broken pending a band-aid fix from upstream.
|
12:55 mandree
Update security/easy-rsa to 3.0.5 release.
ChangeLog: <https://github.com/OpenVPN/easy-rsa/releases/tag/v3.0.5>
|
Monday, 25 Jun 2018
|
19:00 mandree
Upgrade Easy-RSA to v3.0.4
Upstream's ChangeLog (without Windows-/Travis related changes) since v3.0.1:
* Remove use of egrep (#154)
* Remove "local" from variable assignment (#165)
* Assign values to variables defined previously w/local
* Finally(?) fix the subjectAltName issues presented earlier (really fixes #168)
* copy CSR extensions into signed certificate
|
Thursday, 11 Jan 2018
|
14:18 danfe
Do not abuse INSTALL_MAN when installing documentation, examples, and
other miscellaneous files that are not actually manual pages (part 2).
|
Wednesday, 17 Feb 2016
|
20:36 mandree
Install openssl-1.0.cnf as well (EasyRSA-3.0 specific).
Originally install it as ${DATADIR}/*.example and mark it as @sample in
pkg-plist, so that it gets copied to the real file name on installation,
and will not be removed if modified by the user.
Submitted by: Michele Possamai (e-mail kept private)
|
Monday, 11 Jan 2016
|
23:27 mandree
Repair breakage on older make implementations (FreeBSD 9.3).
|
23:23 mandree
Update security/easy-rsa to major release 3.0.1.
Move a copy of the older package to security/easy-rsa2,
add CONFLICTS_INSTALL markers, and an UPDATING entry.
Changelog: <https://github.com/OpenVPN/easy-rsa/releases>
|
Thursday, 21 May 2015
|
05:08 bdrewery
Update to 2.2.2.
Changes:
- Default KEY_SIZE to 2048 bits
- Default the signing hash to SHA256 rather than SHA1 and MD5
- vars cleanups
- pkitool cleanups
- pkitool -days fix for https://community.openvpn.net/openvpn/ticket/198
Approved by: 2 year old fix for SHA1->SHA256.
|
Wednesday, 25 Sep 2013
|
00:54 bdrewery
- Remove NO_STAGE as these have been tested to be safe
With hat: portmgr
|
Friday, 20 Sep 2013
|
22:55 bapt
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
|
Friday, 29 Mar 2013
|
19:33 cs
- Remove A/An in COMMENT
- Trim Header where applicable
|
Sunday, 13 Jan 2013
|
21:35 mandree
Add a new security/easy-rsa package that contains the bits that got
split out of OpenVPN prior to the current 2.3.0 release, and make that
security/openvpn RUN_DEPENDS on it. Also update UPDATING record.
|
Number of commits found: 32 |