Number of commits found: 177 (showing only 100 on this page)

1 | 2  »  

Update to 3.6.10.

Also revert r508194 (-Wl,-z,notext on i386).  The problem has been fixed
upstream.

Fix build on i386.  Some asm code isn't position independent.

Reported by:	cy

Update to 3.6.9.

Bump PORTREVISION for ports depending on the canonical version of GCC
as defined in Mk/bsd.default-versions.mk which has moved from GCC 8.3
to GCC 9.1 under most circumstances now after revision 507371.

This includes ports
 - with USE_GCC=yes or USE_GCC=any,
 - with USES=fortran,
 - using Mk/bsd.octave.mk which in turn features USES=fortran, and
 - with USES=compiler specifying openmp, nestedfct, c11, c++0x, c++11-lang,
   c++11-lib, c++14-lang, c++17-lang, or gcc-c++11-lib
plus, everything INDEX-11 shows with a dependency on lang/gcc9 now.

PR:		238330

Update security/nettle to 3.5.1

- Bump PORTREVISION of dependent ports for shlib change
- Fix build of devel/pijul [1]

Changes:	https://git.lysator.liu.se/nettle/nettle/blob/master/NEWS
PR:		238991
Exp-run by:	antoine
Thanks to:	tobik [1]

Update to 3.6.8.

- Prevent detection of autogen.  It causes some files to be regenerated
  and then they require a newer header than is provided with gnutls.
- Remove ZLIB option.  It's no longer available.

PR:		237419
Reported by:	Kevin Oberman <rkoberman@gmail.com>

Update to 3.6.7.

MFH:		2019Q2
Security:	https://www.gnutls.org/security-new.html#GNUTLS-SA-2019-03-27

- Let gnutls look for its configuration files in PREFIX/etc instead of /etc.
- Use --with-default-trust-store-file to set the location of the root
  certificates so configure doesn't have to autodetect this and the
  build dependency can be removed.
- Define TEST_TARGET.
- Remove DOCSDIR.  The files are also in PREFIX/share/info.
- Use p11-kit-trust as the default PKCS#11 trust store.

PR:		235703
Reported by:	mi

Update dns/libidn2 to 2.1.1

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS

Update to 3.6.6.

Update dns/libidn2 to 2.1.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS

Update to 3.6.5.

PR:		234012
Exp-run by:	antoine

Install texinfo files (GNU info) into ${PREFIX}/share/info

After a discussion on the mailing list on moving manpages to
${PREFIX}/share/man for consistency with base where it is
installed in usr/share/man, it appeared the same should happen
to GNU info files which were installed under share in base and
not in ports.

Now texinfo is not in base on any of the supported version of FreeBSD
it is possible to proceed to this move and it is easier to do than
the manpage change.

Other benefit than consistency are less patching: all build tools but
cmake are expecting info files to be under share/info and cmake (patched here)
was having an exception for BSD so the patch makes FreeBSD case less
specific for them

Bump revision of all impacted ports

PR:		232907
exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D17816

Update to 3.5.19.

Update to 3.5.18.

Update to 3.5.17.

security/gnutls: revert r431494 per FreeBSD 11.0 EOL

PR:		216045
Approved by:	portmgr blanket

Update to 3.5.16.

Update to 3.5.15.

Update to 3.5.13.

MFH:		2017Q2
Security:	https://gnutls.org/security.html#GNUTLS-SA-2017-4

Update to 3.5.12.

Update to 3.5.11.

Update to 3.5.9.  Disable use of libidn2 for now because it does not provide
a pkgconfig file.

PR:		217073
Exp-run by:	antoine

security/gnutls: unbreak aarch64 after r431214

lib/accelerated/aarch64/elf/aes-aarch64.s.tmp.S:5:1: error: unknown directive
.arch armv8-a+crypto
^
lib/accelerated/aarch64/elf/aes-aarch64.s.tmp.S:49:2: error: instruction
requires: crypto
 aese v6.16b,v0.16b
 ^

PR:		216045
Approved by:	tijl (maintainer)

Update to 3.5.8.

PR:		215909
Submitted by:	brnrd
Exp-run by:	antoine
MFH:		2017Q1
Security:	0c5369fc-d671-11e6-a9a5-b499baebfeaf

Update to 3.4.17 and pass the right dlopen path for libtspi to configure.

Update to 3.4.16.

Add math/gmp to LIB_DEPENDS

Q/A warned that bin/certtool was linked to lib/libgmps.so.10

Approved by:	swills (mentor) tijl (maintainer)
Differential Revision:	https://reviews.freebsd.org/D8153

Most commonly used build systems support silent builds, when they
hide actual commands executed and only show short summary line (like
"CC foo.c"). CMake and ninja enable this by default, some autotools
using ports do as well. This is unacceptable because we need complete
build logs at any time, so we now switch to verbose build logs
unconditionally. Note that this change deliberately affects ALL
builds and not only package builds on cluster, because we need to
be sure that user experiencing failure can always provide informative
build log regardless of settings and without rerunning the build.

Change summary:

- Always do verbose builds for cmake, ninja and GNU configure (the
  latter includes check if --disable-silent-rules is actually supported
  by the configure script; there are isolated cases when it's not true)

(Only the first 15 lines of the commit message are shown above )

Update to 3.4.15.

MFH:		2016Q3
Security:	https://gnutls.org/security.html#GNUTLS-SA-2016-3

Update to 3.4.14.

Update to 3.4.13.

Update to 3.4.12.

libpkcs11mock1.so is commented out in pkg-plist because it is part of the
testsuite and shouldn't be installed.  This has been fixed upstream.

Update to 3.4.11.

Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight

- Update security/gnutls to 3.4.10.
- Rename the LIBDANE option DANE because that's the name of the protocol
  supported by libgnutls-dane and gnutls-cli.  Also clarify the option
  description.
- Add an IDN option.
- libgnutls-openssl has been removed in 3.4.  Some ports used this library
  in their LIB_DEPENDS but no port actually required it.
- Some old API functions have been removed.  Ports that used these have been
  updated or patched to use the new API.
- Add a patch to print/cups to prevent overlinking of libgnutls.so.
- Bump PORTREVISION on dependent ports.

net-im/jabber: This port used the old API to give users fine grained
control over which crypto algorithms were used via a configuration file.
It's not immediately obvious how to port this to the new API so the port
always uses the defaults now.

www/hydra: Mark BROKEN.  This uses more removed calls than the other ports,
is said to be alpha quality and not fully functional and has been abandoned
10 years ago.

PR:		207768
Exp-run by:	antoine
Approved by:	portmgr (antoine)

- Take maintainer.
- Fix a build problem with upcoming libc++.

PR:		207768, 208175
Approved by:	bdrewery (maintainer)

- bump PORTREVISION on ports depending on unbound

PR:		207948
Submitted by:	jaap@NLnetLabs.nl (maintainer)

- Update unbound to 1.5.7
- Bump PORTREVISIOn on dependent ports

Some Upgrade Notes:

This release fixes a validation failure for nodata with wildcards and
emptynonterminals. Fixes OpenSSL Library compability. Fixes correct
response for malformed EDNS queries. For crypto in libunbound there is
libnettle support.

Qname minimisation is implemented. Use qname-minimisation: yes to
enable it. This version sends the full query name when an error is
found for intermediate names. It should therefore not fail for names
on nonconformant servers. It combines well with
harden-below-nxdomain: yes because those nxdomains are probed by the

(Only the first 15 lines of the commit message are shown above )

Bump versions to chase Nettle shared library update

Update MASTER_SITES to fix fetching problem due to abnormal version number

PR:		202332

- Update to 3.3.17.1

MFH:		2015Q3
Relnotes:	http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/8268
Security:	ec6a2a1e-429d-11e5-9daa-14dae9d210b8

- Update to 3.3.16

Changes: http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/8235

Update to 3.3.15.

PR:		198875
Approved by:	maintainer

GnuTLS tries to use /usr/local/share/certs/ca-root-nss.crt. Instead of
maybe using it if it is already installed or if the P11KIT option is selected
(which depends on ca_root_nss), just always depend on ca_root_nss.

Reported by:	Tatsuki Makino

Add CPE information.

PR:		153859
Submitted by:	shun <shun.fbsd.pr@dropcut.net>

Update gnutls to 3.2.21

PR:		196400
Approved by:	bdrewery (maintainer)

- Fix plist for LIBDANE option

Approved by:	portmgr blanket

Fix build on systems without stdnoreturn.h

Reported by:	many

- Update to 3.2.19

Update to 3.2.18

dns/libidn:
- Add USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip
- Always install libidn-components.png because it is used by libidn.info
- Add -lintl to Libs.private instead of Libs in libidn.pc

- Switch dns/unbound to USES=libtool, drop .la files
- Bump dependent ports as .so version has changed
- While here, add LICENSE_FILE to dns/getdns

Approved by:	portmgr blanket

security/gnutls: Support OPTIONal library dependencies

Factor out libidn, libp11-kit and libtspi into OPTIONal library
dependencies, with the CRYWRAP, P11KIT and TPM options respectively, as per
the upstream documentation [1].

Make ZLIB an OPTION because we can, and the choice to customise
compression support in security software (especially lately) may be
very useful for some consumers.

Add CRYWRAP, P11KIT, TPM and ZLIB to OPTIONS_DEFAULT to retain current
default functionality.

[1] http://gnutls.org/manual/html_node/Downloading-and-installing.html

Inspired by:	Recent gnutls 2 -> 3 change, fan of minimal dependencies

PR:		192090
Submitted by:	koobs
Approved by:	maintainer

- Update security/libtasn1 to 4.0
- Add USES= libtool and set INSTALL_TARGET to install-strip
- Drop useless bsd.port.options.mk include
- Bump PORTREVISION of ports that depend on libtasn1 as
  shlib version has changed
- Add an UPDATING entry for that

Exp-run by:	antoine

- Fix plist

Reported by:	many

Update to 3.2.16

- Replace security/gnutls with security/gnutls3 and update to 3.2.15
- Bump PORTREVISION on all ports that depend on security/gnutls and
  adjust all ports that depend on security/gnutls3
- Update mail/anubis to version 4.2 which supports gnutls 3.x
- Update mail/libvmime to a development snapshot (recommended by upstream
  developers)

PR:		191274
Exp-run by:	antoine
Approved by:	portmgr (antoine)

Add DOCS to OPTIONS_DEFINE to ports that check for PORT_OPTIONS:MDOCS.

Patch CVE-2014-3466 to prevent memory corruption due to server hello parsing.

Obtained from: 
https://gitorious.org/gnutls/gnutls/commit/688ea6428a432c39203d00acd1af0e7684e5ddfd
Security:       CVE-2014-3466, 9733c480-ebff-11e3-970b-206a8a720317

- New LIB_DEPENDS syntax.
- USES=libtool:keepla tar:bzip2.
- Remove -fPIC flag.  Leftover from an old version.

- Add fixes for:
  CVE-2014-0092 - Certificate verification issue
  CVE-2014-1959 - Certificate verification issue

  All users are recommended to upgrade ASAP.

Security:	f645aa90-a3e8-11e3-a422-3c970e169bc2

Add an additional mirror to MASTER_SITES.

PR:		185901
Submitted by:	Bruno Machado <bruno@bsd.com.br>

security/gnutls: Fix hardcoded perl paths

Perl was recently added as a build tool for gnutls, and immediately the
port fails to build on systems that do not have the /usr/bin/perl
symlink.  The cause is harded perl path of "/usr/bin/perl".  Shebangfix
will fix a couple of these, REINPLACE_CMD will fix the other.  Committed
under the new "Just fix it" blanket, but it was tested in redports.

- Fix possbile DoS in TLS record decoding [1]
- Fix installation without NLS [2]
- Require gmake and perl for build because in some
  occasions it will rebuild the documentation that
  works in a proper way with gmake only and needs perl
- Bump PORTREVISION

Security:	CVE-2013-2116
Reported by:	mat [2]

- Support stagedir
- Add LICENSE
- Fix pkg-descr formatting

PR:		185409
Submitted by:	Takefu <takefu@airport.fm>

- Chase security/libtasn1 update
- Add UPDATING entry

Add NO_STAGE all over the place in preparation for the staging support (cat:
security)

- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)

- Convert USE_ICONV=yes to USES=iconv
- Change USE_GNOME=pkgconfig|gnomehack to USES=pathfix|pkgconfig and
  USE_GETTEXT=yes to USES=gettext while here

- Convert USE_GETTEXT to USES (part 4)

Approved by:	portmgr (bapt)

Finish converting the whole ports tree to USES=pkgconfig

- Add UPDATING entry for libtasn1 update
- Bump PORTREVISIONs for dependant ports

Update to 2.12.23.

Security:	http://www.gnutls.org/security.html#GNUTLS-SA-2013-1

- Drop automatic dependency detection [1]
- Do not link to -lphread directly [2]
- Use USE_PKGCONFIG [2]
- Pet portlint by removing ABI number references [2]
- Drop no longer actual --with-lzo=no switch, lzo support
  is disabled by default anyway [2]
- Bump PORTREVISION

PR:		170390 [2]
Submitted by:	Jason E. Hale [2], A.J. Kehoe IV (Nanoman) [1]

Respect NOPORTEXAMPLES.

PR:             166693
Submitted by:   scheidell, crees

Update to 2.12.18. This update includes a dirty hack to prevent shared
library bump which is necessary because of not properly set LIBTOOLFILES.
This would be properly fixed after ports slush is over.

PR:             166307
Submitted by:   delphij
Security:       CVE-2012-1569, CVE-2012-1573
Feature safe:   yes

Update to 2.12.16.

- Remove WITH_FBSD10_FIX, is no longer needed

Update to 2.12.14.

- Fix build on FreeBSD 10

Reported by:    pointyhat

Update to 2.12.12.

- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav

Update to 2.12.11.

Update to 2.12.10.

Update to 2.12.9.

- Switch to nettle as crypto library as it's primary library
  supported by upstream and additionally there are some
  inconsistences with libgcrypt 1.5.x.
- Bump PORTREVISION

- Chase the libgcrypt shared lib version

Update to 2.12.7.

- Bump PORTREVISION for the .pc fix

Proper fix for gnutls.pc generation by ripping out 'zlib' part
from configure as it was originally submitted by Fumiyuki Shimizu in
ports/157647.

Pointy hat to:          novel

Fix gnutls.pc file by stripping 'zlib' from Requires.private.

PR:             157647 (based on)
Submitted by:   Fumiyuki Shimizu

Update to 2.12.6.1.

Sync to new bsd.autotools.mk

Chase security/libgcrypt shlib bump.

PR:             ports/148755
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>

Bounce PORTREVISION for gettext-related ports.  Have fun, ya'll.

Update to 2.8.6.

Introduce WITH_CAMELLIA knob to enable camellia ciphers (off by default).

PR:             138721
Submitted by:   Ivan Sy Jr <ivan_jr@yahoo.com>

Update to 2.8.3.

Number of commits found: 177 (showing only 100 on this page)

1 | 2  »  

4 vulnerabilities affecting 12 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2019-10-19 10:52:46