notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Ukraine
Some details on the 2023-01-16 website outage.
We just rebooted with several updates: * new HMTLify code * no port maintainer is now highly visible (e.g. https://freshports.org/security/sssd/) * fixed search logic error when using plain/ text details at https://github.com/FreshPorts/freshports/releases/tag/2.2.34
non port: devel/xmltooling/Makefile
SVNWeb

Number of commits found: 55

Wed, 11 Jan 2023
[ 14:46 Palle Girgensohn (girgen) search for other commits by this committer ]    commit hash:a9e71595d93377de9af87a999cd128f3f43069e5  commit hash:a9e71595d93377de9af87a999cd128f3f43069e5  commit hash:a9e71595d93377de9af87a999cd128f3f43069e5  a9e7159 
shibboleth-sp: Update to 3.4.1

A patch release of the Service Provider, V3.4.1, is now available. This
release fixes a couple of small bugs and adds a warning requested by one
of our member organizations in the absence of the redirectLimit setting,
which leads to SPs being abused as open redirectors.

Notably, this release includes an update to the xmltooling library that
hardens the code base against the sorts of attacks reported against the
IdP in the recent advisory. The SP is, as far as can be determined, not
impacted directly by that vulnerability, but this is a precautionary
change.

Release
notes:	https://shibboleth.atlassian.net/wiki/spaces/SP3/pages/2065335693/ReleaseNotes
Mon, 7 Nov 2022
[ 17:03 Palle Girgensohn (girgen) search for other commits by this committer ]    commit hash:b4e7dc9bf4a25f8fb4858b55d811f2b001a49602  commit hash:b4e7dc9bf4a25f8fb4858b55d811f2b001a49602  commit hash:b4e7dc9bf4a25f8fb4858b55d811f2b001a49602  b4e7dc9  (Only the first 10 of 11 ports in this commit are shown above. View all ports for this commit)
security/shibboleth-sp: update to 3.4.0

This is a minor update containing a new setting suggested by a
contributor (thus the unplanned minor version change) controlling
retries when TCP connections to shibd are used. The other changes are
minimal in nature.

Update the toolchain as well:

devel/xmltooling
textproc/xerces-c3

and bump PORTREVISION for security/opensaml due to dependencies'
updates.

Release notes:	https://wiki.shibboleth.net/confluence/display/SP3/ReleaseNotes
Wed, 7 Sep 2022
[ 21:10 Stefan Eßer (se) search for other commits by this committer ]    commit hash:b7f05445c00f2625aa19b4154ebcbce5ed2daa52  commit hash:b7f05445c00f2625aa19b4154ebcbce5ed2daa52  commit hash:b7f05445c00f2625aa19b4154ebcbce5ed2daa52  b7f0544  (Only the first 10 of 27931 ports in this commit are shown above. View all ports for this commit)
Add WWW entries to port Makefiles

It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.

Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.

There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 12 Aug 2022
[ 14:46 Dima Panov (fluffy) search for other commits by this committer ]    commit hash:4cf39decb348615b9c8a28370d987a85d1b8a5ed  commit hash:4cf39decb348615b9c8a28370d987a85d1b8a5ed  commit hash:4cf39decb348615b9c8a28370d987a85d1b8a5ed  4cf39de  (Only the first 10 of 722 ports in this commit are shown above. View all ports for this commit)
*/*: bump all consumers after recent boost upgrade
Wed, 20 Jul 2022
[ 14:21 Tobias C. Berner (tcberner) search for other commits by this committer ]    commit hash:aa6eefd5e663357e8223399bc38c7987f5e35746  commit hash:aa6eefd5e663357e8223399bc38c7987f5e35746  commit hash:aa6eefd5e663357e8223399bc38c7987f5e35746  aa6eefd  (Only the first 10 of 5087 ports in this commit are shown above. View all ports for this commit)
devel: remove 'Created by' lines

A big Thank You to the original contributors of these ports:

  *  "Waitman Gobble" <uzimac@da3m0n8t3r.com>
  *  <jkoshy@FreeBSD.org>
  *  Aaron Dalton <aaron@FreeBSD.org>
  *  Aaron Dalton <aaron@daltons.ca>
  *  Aaron H. K. Diep <ahkdiep@gmail.com>
  *  Aaron Hurt <ahurt@anbcs.com>
  *  Abel Chow <abel_chow@yahoo.com>
  *  Adam McLaurin
  *  Adam Saponara <as@php.net>
  *  Adam Weinberger <adamw@FreeBSD.org>
  *  Ade Lovett <ade@FreeBSD.org>
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 30 Nov 2021
[ 14:42 Palle Girgensohn (girgen) search for other commits by this committer ]    commit hash:8de027017663e95f66026d5e42c4e9472443538a  commit hash:8de027017663e95f66026d5e42c4e9472443538a  commit hash:8de027017663e95f66026d5e42c4e9472443538a  8de0270 
devel/xmltooling: update to 3.2.1
Mon, 18 Oct 2021
[ 19:25 Stefan Eßer (se) search for other commits by this committer ]    commit hash:0075061f388413409d72380d3316032e8bc9e615  commit hash:0075061f388413409d72380d3316032e8bc9e615  commit hash:0075061f388413409d72380d3316032e8bc9e615  0075061 
devel/xmltooling: Add CPE information

Approved by:	portmgr (blanket)
Tue, 6 Apr 2021
[ 14:31 Mathieu Arnold (mat) search for other commits by this committer ]    commit hash:305f148f482daf30dcf728039d03d019f88344eb  commit hash:305f148f482daf30dcf728039d03d019f88344eb  commit hash:305f148f482daf30dcf728039d03d019f88344eb  305f148  (Only the first 10 of 29333 ports in this commit are shown above. View all ports for this commit)
Remove # $FreeBSD$ from Makefiles.
Fri, 18 Dec 2020
[ 08:51 girgen search for other commits by this committer ] Original commit   Revision:558359
Update xmltooling to 3.2.0

Bump dependant ports. xmltooling is only used as a dependency for
security/shibboleth-sp.

Release notes:	https://wiki.shibboleth.net/confluence/display/SP3/ReleaseNotes
Mon, 13 Apr 2020
[ 22:15 girgen search for other commits by this committer ] Original commit   Revision:531638
The Shibboleth Project has released V3.1.0 of the Service Provider software.

Release notes:	https://wiki.shibboleth.net/confluence/display/SP3/ReleaseNotes
Wed, 11 Dec 2019
[ 17:53 jbeich search for other commits by this committer ] Original commit   Revision:519824 (Only the first 10 of 417 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.72.0

Changes:	http://www.boost.org/users/history/version_1_72_0.html
PR:		241449
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D22136
Mon, 19 Aug 2019
[ 15:35 jbeich search for other commits by this committer ] Original commit   Revision:509290 (Only the first 10 of 412 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.71.0

Changes:	http://www.boost.org/users/history/version_1_71_0.html
PR:		238827
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D20774
Fri, 12 Apr 2019
[ 06:36 jbeich search for other commits by this committer ] Original commit   Revision:498698 (Only the first 10 of 392 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.70.0

Changes:	http://www.boost.org/users/history/version_1_70_0.html
PR:		235956
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D19303
Mon, 11 Mar 2019
[ 17:02 girgen search for other commits by this committer ] Original commit   Revision:495367
Update Shibboleth and its tool chain to 3.0.4

The security problem was patched alreadyin 3.0.3p1, but all users are
recommended to update to the latest version at next service window.

Security:	CVE-2019-9628
		https://shibboleth.net/community/advisories/secadv_20190311.txt
Release notes:	https://wiki.shibboleth.net/confluence/display/SP3/ReleaseNotes
Sun, 10 Mar 2019
[ 17:50 girgen search for other commits by this committer ] Original commit   Revision:495308
Pull upstreams fix from upcoming release

This fixes a DoS scenario. The commit message from the original commit is

	CPPXT - Crash due to uncaught DOMException
Sun, 23 Dec 2018
[ 10:54 girgen search for other commits by this committer ] Original commit   Revision:488188
Update to version 3.0.3

The update corrects a denial of service vulnerability.

Security:	4f8665d0-0465-11e9-b77a-6cc21735f730
Wed, 12 Dec 2018
[ 00:15 jbeich search for other commits by this committer ] Original commit   Revision:487266 (Only the first 10 of 415 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.69.0

Changes:	http://www.boost.org/users/history/version_1_69_0.html
PR:		232525
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D17645
Thu, 9 Aug 2018
[ 06:58 jbeich search for other commits by this committer ] Original commit   Revision:476723 (Only the first 10 of 404 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.68.0

- Switch to C++14 for libboost_system to support C++14 consumers

Changes:	http://www.boost.org/users/history/version_1_68_0.html
PR:		229569
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D16165
Tue, 7 Aug 2018
[ 13:24 girgen search for other commits by this committer ] Original commit   Revision:476595 (Only the first 10 of 32 ports in this commit are shown above. View all ports for this commit)
Update Shibboleth to 3.0.2

Also update the toolchain to latest versions. This includes a security fix for
apache-xml-security-c.

Releaseinfo:    https://wiki.shibboleth.net/confluence/display/SP3/ReleaseNotes
Security:       5786185a-9a43-11e8-b34b-6cc21735f730
Security:       https://shibboleth.net/community/advisories/secadv_20180803.txt
Wed, 18 Apr 2018
[ 13:57 jbeich search for other commits by this committer ] Original commit   Revision:467711 (Only the first 10 of 388 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.67.0

Changes:	http://www.boost.org/users/history/version_1_67_0.html
PR:		227427
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D15030
Tue, 27 Feb 2018
[ 15:37 girgen search for other commits by this committer ] Original commit   Revision:463146
Shibboleth SP software vulnerable to additional data forgery flaws

The XML processing performed by the Service Provider software has been
found to be vulnerable to new flaws similar in nature to the one
addressed in an advisory last month.

Security:	22438240-1bd0-11e8-a2ec-6cc21735f730
URL:		https://shibboleth.net/community/advisories/secadv_20180227.txt
Thu, 18 Jan 2018
[ 04:11 jbeich search for other commits by this committer ] Original commit   Revision:459315 (Only the first 10 of 356 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.66.0

Changes:	http://www.boost.org/users/history/version_1_66_0.html
PR:		223922
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D13279
Fri, 12 Jan 2018
[ 17:39 girgen search for other commits by this committer ] Original commit   Revision:458860
Update to version 1.6.3

Shibboleth SP software vulnerable to forged user attribute data
====================================================================
The Service Provider software relies on a generic XML parser to process
SAML responses and there are limitations in older versions of the parser
that make it impossible to fully disable Document Type Definition (DTD)
processing.

Through addition/manipulation of a DTD, it's possible to make changes
to an XML document that do not break a digital signature but are
mishandled by the SP and its libraries. These manipulations can alter
the user data passed through to applications behind the SP and result
in impersonation attacks and exposure of protected information.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 17 Nov 2017
[ 10:37 girgen search for other commits by this committer ] Original commit   Revision:454371
Update to latest version

This is a fix for a regression in the latest security fix for
security/shibboleth2-sp.

Security:	b4b7ec7d-ca27-11e7-a12d-6cc21735f730
Mon, 25 Sep 2017
[ 00:08 jbeich search for other commits by this committer ] Original commit   Revision:450560 (Only the first 10 of 342 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.65.1

Changes:	http://www.boost.org/users/history/version_1_65_1.html
PR:		218835
Approved by:	maintainer timeout (1.65.1: 2 weeks; 1.65.0: 1 month)
Tested by:	jhibbits (on powerpc64, earlier version)
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D11582
[ 00:05 jbeich search for other commits by this committer ] Original commit   Revision:450557 (Only the first 10 of 327 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: enable C++11 features

PR:		218835
Obtained from:	https://github.com/DragonFlyBSD/DeltaPorts/pull/690
Approved by:	maintainer timeout (2 months)
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D11582
Tue, 2 May 2017
[ 06:48 jbeich search for other commits by this committer ] Original commit   Revision:439934 (Only the first 10 of 336 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.64.0

Changes:	http://www.boost.org/users/history/version_1_64_0.html
PR:		218835
Approved by:	office (bapt)
Exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D10472
Wed, 15 Mar 2017
[ 14:45 mat search for other commits by this committer ] Original commit   Revision:436247 (Only the first 10 of 257 ports in this commit are shown above. View all ports for this commit)
Remove all USE_OPENSSL occurrences.

Sponsored by:	Absolight
Fri, 6 Jan 2017
[ 08:45 jbeich search for other commits by this committer ] Original commit   Revision:430692 (Only the first 10 of 324 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.63.0

Changes:	http://www.boost.org/users/history/version_1_63_0.html
PR:		215598
Exp-run by:	antoine
Approved by:	office (bapt)
MFH:		2017Q1
Wed, 23 Nov 2016
[ 12:45 jbeich search for other commits by this committer ] Original commit   Revision:426908 (Only the first 10 of 353 ports in this commit are shown above. View all ports for this commit)
devel/boost-*: update to 1.62.0

- Enable `long double` C99 math usage
- Switch 9.x back to building with GCC

Changes:	http://www.boost.org/users/history/
PR:		199601
Submitted by:	Chen Xu, bapt, amdmi3, truckman (based on)
Reviewed by:	rakuco (kde) (earlier version)
Exp-run by:	antoine (3 tries), truckman (consumers only, earlier versions)
Approved by:	bapt (office)
Sun, 11 Sep 2016
[ 21:52 girgen search for other commits by this committer ] Original commit   Revision:421878 (Only the first 10 of 12 ports in this commit are shown above. View all ports for this commit)
Upgrade shibboleth-sp 2.6 and its tool chain
Fri, 1 Apr 2016
[ 14:00 mat search for other commits by this committer ] Original commit   Revision:412346 (Only the first 10 of 5103 ports in this commit are shown above. View all ports for this commit)
Remove ${PORTSDIR}/ from dependencies, categories d, e, f, and g.

With hat:	portmgr
Sponsored by:	Absolight
Tue, 1 Sep 2015
[ 16:20 amdmi3 search for other commits by this committer ] Original commit   Revision:395777 (Only the first 10 of 47 ports in this commit are shown above. View all ports for this commit)
- Switch to options helpers
- While here, add some NO_ARCHes

Approved by:	portmgr blanket
Thu, 23 Jul 2015
[ 13:21 girgen search for other commits by this committer ] Original commit   Revision:392720 (Only the first 10 of 12 ports in this commit are shown above. View all ports for this commit)
Shibboleth SP software crashes on well-formed but invalid XML.

The Service Provider software contains a code path with an uncaught
exception that can be triggered by an unauthenticated attacker by
supplying well-formed but schema-invalid XML in the form of SAML
metadata or SAML protocol messages. The result is a crash and so
causes a denial of service.

You must rebuild opensaml and shibboleth with xmltooling-1.5.5 or later.
The easiest way to do so is to update the whole chain including
shibboleth-2.5.5 an opensaml2.5.5.

URL:    	http://shibboleth.net/community/advisories/secadv_20150721.txt
Security:	CVE-2015-2684
Fri, 16 Jan 2015
[ 16:17 tijl search for other commits by this committer ] Original commit   Revision:377187
Add USES=libtool
Thu, 3 Jul 2014
[ 23:57 adamw search for other commits by this committer ] Original commit   Revision:360487 (Only the first 10 of 47 ports in this commit are shown above. View all ports for this commit)
Remove NOPORTDOCS and NOPORTEXAMPLES.

Approved by:	portmgr (blanket)
Mon, 23 Jun 2014
[ 13:38 amdmi3 search for other commits by this committer ] Original commit   Revision:358942
- Use new LIB_DEPENDS syntax
- Remove redundant docs plist entries (handled by PORTDOCS=*)

Approved by:	portmgr blanket
Thu, 6 Mar 2014
[ 14:19 miwi search for other commits by this committer ] Original commit   Revision:347229
- Stage support
Fri, 20 Sep 2013
[ 17:17 bapt search for other commits by this committer ] Original commit   Revision:327726 (Only the first 10 of 623 ports in this commit are shown above. View all ports for this commit)
Add NO_STAGE all over the place in preparation for the staging support (cat:
devel part 4)
Fri, 13 Sep 2013
[ 14:09 bapt search for other commits by this committer ] Original commit   Revision:327150
Remove USE_GCC=any the port fail at building with gcc 4.6 while is builds
properly with clang
Mon, 2 Sep 2013
[ 06:20 bapt search for other commits by this committer ] Original commit   Revision:325939
Add an expicit dependency on pkgconf
Thu, 11 Jul 2013
[ 16:26 sunpoet search for other commits by this committer ] Original commit   Revision:322783 (Only the first 10 of 252 ports in this commit are shown above. View all ports for this commit)
- Update to 7.31.0
- Bump PORTREVISION for ftp/curl shlib change
- Add TEST_DEPENDS
- Convert to new options framework
- Adjust options:
  - Add COOKIES
  - Add CYASSL, NSS, POLARSSL, THREADED_RESOLVER, TLS_SRP [1]
  - Add GSSAPI and SPNEGO [2]
  - Remove KERBEROS4
  - Rename LIBIDN to IDN
  - Remove TRACKMEMORY [1]
- Sort option handler
- Add SLAVEDIRS: ftp/curl-hiphop
- Cosmetic change
- Cleanup Makefile header
- While I'm here, fix typo (PORTREVSION) in x11-wm/ede/Makefile

Changes:	http://curl.haxx.se/changes.html
PR:		ports/172325 (-exp run), ports/177369 (based on) [1]
Submitted by:	Hirohisa Yamaguchi <umq@ueo.co.jp> [1], hrs (via email) [2]
Exp run by:	miwi
Tue, 18 Jun 2013
[ 15:15 girgen search for other commits by this committer ] Original commit   Revision:321194
Security update for apache-xml-security-c.
Dependant ports, especially shibboleth2-sp, opensaml2, xmltooling
and log4shib should all be updated.

Security: CVE-2013-2156
Tue, 4 Jun 2013
[ 17:29 girgen search for other commits by this committer ] Original commit   Revision:319885 (Only the first 10 of 21 ports in this commit are shown above. View all ports for this commit)
Update Shibboleth-sp and its tool chain to 2.5.1.

Note that from 2.5, shibd is run as the user shibd.  The port tries to fix the
key file ownership but if you have changed the file name of the key from the
default sp-key.pem, make sure you chown your key file(s) to user shibd.

Also, take maintainership of the entire tool chain (approved by all previous
maintainers).

Incorporates the ideas suggested by Craig Leres [177668], making sure that the
ssl key is not added to the package.

PR:	177668, 178694
Wed, 9 Jan 2013
[ 19:50 tabthorpe search for other commits by this committer ] Original commit   Revision:310162 (Only the first 10 of 66 ports in this commit are shown above. View all ports for this commit)
- Change MAINTAINER address
- Trim headers while I am here
- Clean up some trailing whitespace
Tue, 9 Oct 2012
[ 22:12 linimon search for other commits by this committer ] Original commit   Revision:305610 (Only the first 10 of 95 ports in this commit are shown above. View all ports for this commit)
Force numerous ports that fail to build with clang over to instead always
rely on gcc.  The patch uses the new USE_GCC=any code in Mk/bsd.gcc.mk to
accomplish this.

The ports chosen were ports that blocked 2 or more ports from building with
clang.  (There are several hundred other ports that still fail to build with
clang, even with this patch.  This is merely one step along the way.)

Those interested in fixing these ports with clang, and have clang as their
default compiler, can simply set FORCE_BASE_CC_FOR_TESTING=yes.

For those who have gcc as their default compiler, this change is believed
to cause no change.

Hat:		portmgr
Tested with:	multiple runs on amd64-8-exp-bcm and 9-exp-clang, with various
		combinations of patch/no-patch and flag settings.
Sat, 13 Aug 2011
[ 15:31 swills search for other commits by this committer ] Original commit 
- Use xerces-c 3 [1]
- Pass maintainership back to Janos Mohacsi <janos.mohacsi@bsd.hu> [2]

PR:             ports/159714 [1]
Submitted by:   Janos Mohacsi <janos.mohacsi@bsd.hu> [1]
Approved by:    maintainer (me) [2]
Thu, 28 Jul 2011
[ 11:53 swills search for other commits by this committer ] Original commit 
- Update to 1.4.2
- Update home page while here
- Take maintainership

PR:             ports/159195
Approved by:    linimon
Mon, 27 Jun 2011
[ 02:57 swills search for other commits by this committer ] Original commit  (Only the first 10 of 13 ports in this commit are shown above. View all ports for this commit)
- Update to latest versions

PR:             ports/157822
Submited by:    Palle Girgensohn <girgen@FreeBSD.org>
Approved by:    maintainer timeout
Sat, 3 Apr 2010
[ 10:44 roam search for other commits by this committer ] Original commit  (Only the first 10 of 202 ports in this commit are shown above. View all ports for this commit)
Chase the ftp/curl shlib version bump.
Mon, 11 Jan 2010
[ 05:08 pgollucci search for other commits by this committer ] Original commit 
- s/ /\t/g
- 'Fix' make index
Fri, 8 Jan 2010
[ 01:24 pgollucci search for other commits by this committer ] Original commit 
- Update to 2.3

PR:             ports/142324
Submitted by:   Steve Wills <steve@mouf.net>
Approved by:    Mohacsi Janos <janos.mohacsi@bsd.hu> (maintainer)
Fri, 10 Jul 2009
[ 01:15 wxs search for other commits by this committer ] Original commit 
- Update to 1.2

PR:             ports/136033
Submitted by:   Steve Wills <steve@mouf.net>
Approved by:    maintainer
Fri, 23 Jan 2009
[ 15:43 roam search for other commits by this committer ] Original commit  (Only the first 10 of 182 ports in this commit are shown above. View all ports for this commit)
Bump the version of the curl shared library after the ftp/curl update
to 7.19.2.
Bump PORTREVISION, even on the ports that do not have a versioned
dependency, since the binaries will most probably still stop working.
Sat, 22 Nov 2008
[ 15:15 miwi search for other commits by this committer ] Original commit 
Shibboleth 2.x relies on OpenSAML 2, which in turn requires this
lower-level library that provides a higher level interface to XML
processing, particularly in light of signing and encryption.

WWW: https://spaces.internet2.edu/display/OpenSAML/XMLTooling-C

PR:             ports/127326
Submitted by:   Janos Mohacsi

Number of commits found: 55