Parent Directory
| 
Revision Log
| Links to HEAD: | (view) (download) (annotate) |
| Sticky Revision: |
Update to 3.6.15. MFH: 2020Q3 Security: https://gnutls.org/security-new.html#GNUTLS-SA-2020-09-04
Chase security/p11-kit update After switch to meson libp11-kit.so no longer has symbols in the LIBP11_KIT_1.0 namespace. As a workaround, bump PORTREVISION of consumers to get those rebuilt. See more details in the comments of the linked PR. PR: 248819 Reported by: John Hein
security/gnutls: Add MAN3 option There are over 1,000 man3 pages. This adds a MAN3 option to control their installation, similar to the openssl and libressl ports. PR: 248841 Approved by: maintainer (tijl)
Update to 3.6.14. MFH: 2020Q2 Security: https://gnutls.org/security-new.html#GNUTLS-SA-2020-06-03
Bump PORTREVISION for security/nettle shlib change
Update to 3.6.13. Security: https://gnutls.org/security-new.html#GNUTLS-SA-2020-03-31
Update to 3.6.12.
Update to 3.6.11.1, white space fix, and https WWW.
Update to 3.6.10. Also revert r508194 (-Wl,-z,notext on i386). The problem has been fixed upstream.
Fix build on i386. Some asm code isn't position independent. Reported by: cy
Update to 3.6.9.
Bump PORTREVISION for ports depending on the canonical version of GCC as defined in Mk/bsd.default-versions.mk which has moved from GCC 8.3 to GCC 9.1 under most circumstances now after revision 507371. This includes ports - with USE_GCC=yes or USE_GCC=any, - with USES=fortran, - using Mk/bsd.octave.mk which in turn features USES=fortran, and - with USES=compiler specifying openmp, nestedfct, c11, c++0x, c++11-lang, c++11-lib, c++14-lang, c++17-lang, or gcc-c++11-lib plus, everything INDEX-11 shows with a dependency on lang/gcc9 now. PR: 238330
Update security/nettle to 3.5.1 - Bump PORTREVISION of dependent ports for shlib change - Fix build of devel/pijul [1] Changes: https://git.lysator.liu.se/nettle/nettle/blob/master/NEWS PR: 238991 Exp-run by: antoine Thanks to: tobik [1]
Update to 3.6.8.
- Prevent detection of autogen. It causes some files to be regenerated and then they require a newer header than is provided with gnutls. - Remove ZLIB option. It's no longer available. PR: 237419 Reported by: Kevin Oberman <rkoberman@gmail.com>
Update to 3.6.7. MFH: 2019Q2 Security: https://www.gnutls.org/security-new.html#GNUTLS-SA-2019-03-27
- Let gnutls look for its configuration files in PREFIX/etc instead of /etc. - Use --with-default-trust-store-file to set the location of the root certificates so configure doesn't have to autodetect this and the build dependency can be removed. - Define TEST_TARGET. - Remove DOCSDIR. The files are also in PREFIX/share/info. - Use p11-kit-trust as the default PKCS#11 trust store. PR: 235703 Reported by: mi
Update dns/libidn2 to 2.1.1 - Bump PORTREVISION of dependent ports for shlib change Changes: https://gitlab.com/libidn/libidn2/blob/master/NEWS
Update to 3.6.6.
Update dns/libidn2 to 2.1.0 - Bump PORTREVISION of dependent ports for shlib change Changes: https://gitlab.com/libidn/libidn2/blob/master/NEWS
Update to 3.6.5. PR: 234012 Exp-run by: antoine
Install texinfo files (GNU info) into ${PREFIX}/share/info
After a discussion on the mailing list on moving manpages to
${PREFIX}/share/man for consistency with base where it is
installed in usr/share/man, it appeared the same should happen
to GNU info files which were installed under share in base and
not in ports.
Now texinfo is not in base on any of the supported version of FreeBSD
it is possible to proceed to this move and it is easier to do than
the manpage change.
Other benefit than consistency are less patching: all build tools but
cmake are expecting info files to be under share/info and cmake (patched here)
was having an exception for BSD so the patch makes FreeBSD case less
specific for them
Bump revision of all impacted ports
PR: 232907
exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D17816
Update to 3.5.19.
Update to 3.5.18.
Update to 3.5.17.
security/gnutls: revert r431494 per FreeBSD 11.0 EOL PR: 216045 Approved by: portmgr blanket
Update to 3.5.16.
Update to 3.5.15.
Update to 3.5.13. MFH: 2017Q2 Security: https://gnutls.org/security.html#GNUTLS-SA-2017-4
Update to 3.5.12.
Update to 3.5.11.
Update to 3.5.9. Disable use of libidn2 for now because it does not provide a pkgconfig file. PR: 217073 Exp-run by: antoine
security/gnutls: unbreak aarch64 after r431214 lib/accelerated/aarch64/elf/aes-aarch64.s.tmp.S:5:1: error: unknown directive .arch armv8-a+crypto ^ lib/accelerated/aarch64/elf/aes-aarch64.s.tmp.S:49:2: error: instruction requires: crypto aese v6.16b,v0.16b ^ PR: 216045 Approved by: tijl (maintainer)
Update to 3.5.8. PR: 215909 Submitted by: brnrd Exp-run by: antoine MFH: 2017Q1 Security: 0c5369fc-d671-11e6-a9a5-b499baebfeaf
Update to 3.4.17 and pass the right dlopen path for libtspi to configure.
Update to 3.4.16.
Add math/gmp to LIB_DEPENDS Q/A warned that bin/certtool was linked to lib/libgmps.so.10 Approved by: swills (mentor) tijl (maintainer) Differential Revision: https://reviews.freebsd.org/D8153
Most commonly used build systems support silent builds, when they hide actual commands executed and only show short summary line (like "CC foo.c"). CMake and ninja enable this by default, some autotools using ports do as well. This is unacceptable because we need complete build logs at any time, so we now switch to verbose build logs unconditionally. Note that this change deliberately affects ALL builds and not only package builds on cluster, because we need to be sure that user experiencing failure can always provide informative build log regardless of settings and without rerunning the build. Change summary: - Always do verbose builds for cmake, ninja and GNU configure (the latter includes check if --disable-silent-rules is actually supported by the configure script; there are isolated cases when it's not true) - Remove CMAKE_VERBOSE, NINJA_VERBOSE and CONFIGURE_ARGS=--disable-silent-rules from all ports which set them for this is no longer needed - Revert hacks for --disable-silent-rules support priorly committed to biology/ncbi-blast+ and net-p2p/mldonkey - no longer needed as well Submitted by: amdmi3 Reviewed by: mat Exp-run by: antoine Approved by: portmgr (mat, antoine) Differential Revision: D7534
Update to 3.4.15. MFH: 2016Q3 Security: https://gnutls.org/security.html#GNUTLS-SA-2016-3
Update to 3.4.14.
Update to 3.4.13.
Update to 3.4.12. libpkcs11mock1.so is commented out in pkg-plist because it is part of the testsuite and shouldn't be installed. This has been fixed upstream.
Update to 3.4.11.
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.
With hat: portmgr
Sponsored by: Absolight
- Update security/gnutls to 3.4.10. - Rename the LIBDANE option DANE because that's the name of the protocol supported by libgnutls-dane and gnutls-cli. Also clarify the option description. - Add an IDN option. - libgnutls-openssl has been removed in 3.4. Some ports used this library in their LIB_DEPENDS but no port actually required it. - Some old API functions have been removed. Ports that used these have been updated or patched to use the new API. - Add a patch to print/cups to prevent overlinking of libgnutls.so. - Bump PORTREVISION on dependent ports. net-im/jabber: This port used the old API to give users fine grained control over which crypto algorithms were used via a configuration file. It's not immediately obvious how to port this to the new API so the port always uses the defaults now. www/hydra: Mark BROKEN. This uses more removed calls than the other ports, is said to be alpha quality and not fully functional and has been abandoned 10 years ago. PR: 207768 Exp-run by: antoine Approved by: portmgr (antoine)
- Take maintainer. - Fix a build problem with upcoming libc++. PR: 207768, 208175 Approved by: bdrewery (maintainer)
- bump PORTREVISION on ports depending on unbound PR: 207948 Submitted by: jaap@NLnetLabs.nl (maintainer)
- Update unbound to 1.5.7 - Bump PORTREVISIOn on dependent ports Some Upgrade Notes: This release fixes a validation failure for nodata with wildcards and emptynonterminals. Fixes OpenSSL Library compability. Fixes correct response for malformed EDNS queries. For crypto in libunbound there is libnettle support. Qname minimisation is implemented. Use qname-minimisation: yes to enable it. This version sends the full query name when an error is found for intermediate names. It should therefore not fail for names on nonconformant servers. It combines well with harden-below-nxdomain: yes because those nxdomains are probed by the qname minimisation, and that will both stop privacy sensitive traffic and reduce nonsense traffic to authority servers. So consider enabling both. In this implementation IPv6 reverse lookups add several labels per increment, because otherwise those lookups would be very slow. [ Reference https://tools.ietf.org/html/draft-ietf-dnsop-qname-minimisation-08 ] More details at <http://unbound.net> PR: 206347 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> Approved by: maintainer timeout Sponsored by: DK Hostmaster A/S
Bump versions to chase Nettle shared library update
Update MASTER_SITES to fix fetching problem due to abnormal version number PR: 202332
- Update to 3.3.17.1 MFH: 2015Q3 Relnotes: http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/8268 Security: ec6a2a1e-429d-11e5-9daa-14dae9d210b8
- Update to 3.3.16 Changes: http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/8235
Update to 3.3.15. PR: 198875 Approved by: maintainer
GnuTLS tries to use /usr/local/share/certs/ca-root-nss.crt. Instead of maybe using it if it is already installed or if the P11KIT option is selected (which depends on ca_root_nss), just always depend on ca_root_nss. Reported by: Tatsuki Makino
Add CPE information. PR: 153859 Submitted by: shun <shun.fbsd.pr@dropcut.net>
Update gnutls to 3.2.21 PR: 196400 Approved by: bdrewery (maintainer)
- Fix plist for LIBDANE option Approved by: portmgr blanket
Fix build on systems without stdnoreturn.h Reported by: many
- Update to 3.2.19
Update to 3.2.18
dns/libidn: - Add USES=libtool and bump dependent ports - Add INSTALL_TARGET=install-strip - Always install libidn-components.png because it is used by libidn.info - Add -lintl to Libs.private instead of Libs in libidn.pc
- Switch dns/unbound to USES=libtool, drop .la files - Bump dependent ports as .so version has changed - While here, add LICENSE_FILE to dns/getdns Approved by: portmgr blanket
security/gnutls: Support OPTIONal library dependencies Factor out libidn, libp11-kit and libtspi into OPTIONal library dependencies, with the CRYWRAP, P11KIT and TPM options respectively, as per the upstream documentation [1]. Make ZLIB an OPTION because we can, and the choice to customise compression support in security software (especially lately) may be very useful for some consumers. Add CRYWRAP, P11KIT, TPM and ZLIB to OPTIONS_DEFAULT to retain current default functionality. [1] http://gnutls.org/manual/html_node/Downloading-and-installing.html Inspired by: Recent gnutls 2 -> 3 change, fan of minimal dependencies PR: 192090 Submitted by: koobs Approved by: maintainer
- Update security/libtasn1 to 4.0 - Add USES= libtool and set INSTALL_TARGET to install-strip - Drop useless bsd.port.options.mk include - Bump PORTREVISION of ports that depend on libtasn1 as shlib version has changed - Add an UPDATING entry for that Exp-run by: antoine
- Fix plist Reported by: many
Update to 3.2.16
- Replace security/gnutls with security/gnutls3 and update to 3.2.15 - Bump PORTREVISION on all ports that depend on security/gnutls and adjust all ports that depend on security/gnutls3 - Update mail/anubis to version 4.2 which supports gnutls 3.x - Update mail/libvmime to a development snapshot (recommended by upstream developers) PR: 191274 Exp-run by: antoine Approved by: portmgr (antoine)
Add DOCS to OPTIONS_DEFINE to ports that check for PORT_OPTIONS:MDOCS.
Patch CVE-2014-3466 to prevent memory corruption due to server hello parsing. Obtained from: https://gitorious.org/gnutls/gnutls/commit/688ea6428a432c39203d00acd1af0e7684e5ddfd Security: CVE-2014-3466, 9733c480-ebff-11e3-970b-206a8a720317
- New LIB_DEPENDS syntax. - USES=libtool:keepla tar:bzip2. - Remove -fPIC flag. Leftover from an old version.
- Add fixes for: CVE-2014-0092 - Certificate verification issue CVE-2014-1959 - Certificate verification issue All users are recommended to upgrade ASAP. Security: f645aa90-a3e8-11e3-a422-3c970e169bc2
Add an additional mirror to MASTER_SITES. PR: 185901 Submitted by: Bruno Machado <bruno@bsd.com.br>
security/gnutls: Fix hardcoded perl paths Perl was recently added as a build tool for gnutls, and immediately the port fails to build on systems that do not have the /usr/bin/perl symlink. The cause is harded perl path of "/usr/bin/perl". Shebangfix will fix a couple of these, REINPLACE_CMD will fix the other. Committed under the new "Just fix it" blanket, but it was tested in redports.
- Fix possbile DoS in TLS record decoding [1] - Fix installation without NLS [2] - Require gmake and perl for build because in some occasions it will rebuild the documentation that works in a proper way with gmake only and needs perl - Bump PORTREVISION Security: CVE-2013-2116 Reported by: mat [2]
- Support stagedir - Add LICENSE - Fix pkg-descr formatting PR: 185409 Submitted by: Takefu <takefu@airport.fm>
- Chase security/libtasn1 update - Add UPDATING entry
Add NO_STAGE all over the place in preparation for the staging support (cat: security)
- Remove MAKE_JOBS_SAFE variable Approved by: portmgr (bdrewery)
- Convert USE_ICONV=yes to USES=iconv - Change USE_GNOME=pkgconfig|gnomehack to USES=pathfix|pkgconfig and USE_GETTEXT=yes to USES=gettext while here
- Convert USE_GETTEXT to USES (part 4) Approved by: portmgr (bapt)
Finish converting the whole ports tree to USES=pkgconfig
- Add UPDATING entry for libtasn1 update - Bump PORTREVISIONs for dependant ports
Update to 2.12.23. Security: http://www.gnutls.org/security.html#GNUTLS-SA-2013-1
- Drop automatic dependency detection [1] - Do not link to -lphread directly [2] - Use USE_PKGCONFIG [2] - Pet portlint by removing ABI number references [2] - Drop no longer actual --with-lzo=no switch, lzo support is disabled by default anyway [2] - Bump PORTREVISION PR: 170390 [2] Submitted by: Jason E. Hale [2], A.J. Kehoe IV (Nanoman) [1]
- Remove cvs2svn:cvs-rev property - part 3
Respect NOPORTEXAMPLES. PR: 166693 Submitted by: scheidell, crees
Update to 2.12.18. This update includes a dirty hack to prevent shared library bump which is necessary because of not properly set LIBTOOLFILES. This would be properly fixed after ports slush is over. PR: 166307 Submitted by: delphij Security: CVE-2012-1569, CVE-2012-1573 Feature safe: yes
Update to 2.12.16.
- Remove WITH_FBSD10_FIX, is no longer needed
Update to 2.12.14.
- Fix build on FreeBSD 10 Reported by: pointyhat
Update to 2.12.12.
- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead
PR: 157936
Submitted by: myself
Exp-runs by: pav
Approved by: pav
Update to 2.12.11.
Update to 2.12.10.
Update to 2.12.9.
- Switch to nettle as crypto library as it's primary library supported by upstream and additionally there are some inconsistences with libgcrypt 1.5.x. - Bump PORTREVISION
- Chase the libgcrypt shared lib version
Update to 2.12.7.
- Bump PORTREVISION for the .pc fix
This form allows you to request diffs between any two revisions of this file. For each of the two "sides" of the diff, enter a numeric revision.
| ViewVC Help | |
| Powered by ViewVC 1.1.27 |