The MAKE_JOBS_UNSAFE flag was set 10 June 2014 (PR 181923) and it
was removed without explanation on 30 Aug 2014 (r366616). I have
first-hand confirmation that it is still required with default
options set. I'm resetting this flag as it shouldn't have been removed.
- Convert to USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip
- Remove patches that renamed include directories and libraries so they
didn't conflict with early development versions of glib/gtk 2.0
This ports installs libraries needed by other fostware in it's own
directory, so USE_LDCONFIG is needed heere or libraries will not
be found.
PR: 193521
Submitted by: nick@foobar.org
Approved by: portmgr (just fix it blanket)
The ports the depend on net/libnet10 should have been set to expire on
the same day as net/libnet10. That didn't happen, so postpone the removal
of libnet10 three weeks to afford an opportunity for 12 ports to migrate
to a new libnet.
- Update nspr to 4.10.7
- Update ca_root_nss to 3.17 (mark as NO_ARCH while here)
- Update firefox to 32.0
- Update thunderbird to 31.1.0
- Add net-im/linux-instantbird
- Update firefox-est to 31.1.0
- Update libxul to 24.8.0
- Update seamonkey to 2.29
Submitted by: Jan Beich for gecko@
- Add USES=libtool
- Remove USE_LDCONFIG, not needed for modules
- Disable static modules
- Remove install-configure from INSTALL_TARGET, no impact with staging
- Add manpages to pkg-plist
- Use @sample
- Replace pkg-(de)install and pre-install target with USERS and GROUPS
- Create /var/run/authdaemond at package installation instead of in rc
script
databases/firebird21-* will be removed imminently. Hydra has a
non-default option that relies on the firebird client library which
the currently version of Firebird (2.5.x) also has. This change
is untested. There's no revbump because the option is not normally set.
Change is necessary, it's an attempt to avoid breakage when Firebird
ports are removed.
It can be used to test how well a program can stand malformed and potentially
malicious inputs. It operates on given sample inputs and thus requires minimal
effort to set up.
WWW: https://www.ee.oulu.fi/research/ouspg/Radamsa
PR: ports/187576
Submitted by: Jukka Ukkonen <jau@iki.fi>
- Add USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip
- Convert to USES=python
- Use MAKE_CMD
- Create manpage link in post-install instead of using @exec
Avoid crashing when users have the antiquated PyXML package
installed. Python tries to be nice and loads it when we import xml, but it
isn't compatible. Instead, we force Python to use the standard library xml
module. [Daniel Miller]
Fix a bug in DiffViewer causing this crash:
TypeError: GtkTextBuffer.set_text() argument 1 must be string or read-only
buffer, not NmapParserSAX
Crash happened when trying to compare two scans within Zenmap. [Daniel Miller]
- USES python instead of USE_PYTHON=yes
- Use USE_PYTHON=distutils instead of USE_PYDISTUTILS=yes
- Use USE_PYTHON=autoplist instead of PYDISTUTILS_AUTOPLIST=yes
Remove patches and hacks that were used to work around the previous
situation
This allows to stage more ports as a regular user
Differential Revision: https://reviews.freebsd.org/D703
Reviewed by and discussed with: bapt
With hat: portmgr
Crypt::Tea and Crypt::Tea_JS. Crypt::Tea_JS can be backwards
compatible, but isn't by default. I've changed the COMMENT in
Crypt::Tea_JS to be different from Crypt::Tea.
security/p5-Crypt-T_e_a development stopped at 2.11 and there will be no
further releases for that port. Development has continued by the same
author, under a new name, Crypt::Tea_JS.
I've added conflicts between the two, but p5-Crypt-T_e_a should probably
be considered deprecated.
This module implements TEA, the Tiny Encryption Algorithm, and some Modes of
Use, in Perl and JavaScript.
The $key is a sufficiently longish string; at least 17 random 8-bit bytes for
single encryption.
Crypt::Tea_JS can be used for secret-key encryption in general, or, in
particular, to communicate securely between browser and web-host. In this case,
the simplest arrangement is for the user to enter the key into a JavaScript
variable, and for the host to retrieve that user's key from a database. Or, for
extra security, the first message (or even each message) between browser and
host could contain a random challenge-string, which each end would then turn
into a signature, and use that signature as the encryption-key for the session
(or the reply).
WWW: http://search.cpan.org/dist/Crypt-Tea_JS/
Merge back bsd.pkgng.mk into bsd.port.mk
Add a note about @stopdaemon not being supported anymore
With hat: portmgr
Differential Revision: https://reviews.freebsd.org/D693
- Add USES=libtool and bump dependent ports
- Add INSTALL_TARGET=install-strip
- Always install libidn-components.png because it is used by libidn.info
- Add -lintl to Libs.private instead of Libs in libidn.pc
- Build kcm by default.
- Use gssapi.mk.
- Use ${opt}_* variables instead of .if ${PORT_OPTIONS:Mopt} wherever possible.
- Use /var/heimdal as $hdbdir for compatibility with Heimdal in base.
- Merge pkg-plist.* into pkg-plist.
- Remove lines that are no longer valid.
- Remove stale kdc.sh. rc.d scripts in base system work with this port.
- Use USES=python [2]
- Use USE_PYTHON=autoplist to fix packaging when DEFAULT_VERSIONS=python=3.* [2]
Approved by: portmgr (blanket) [1]
With hat: python [2]
- Convert PYDISTUTILS_AUTOPLIST and USE_PYDISTUTILS to USE_PYTHON
- Remove python from SHEBANG_LANG
- Add REINPLACE_ARGS
- Move .bak/.orig removal from pre-install: to post-patch:
- Use @sample
- Bump PORTREVISION for package change
- Take maintainership
- Convert to USES=libtool and USES=pathfix
- Add INSTALL_TARGET=install-strip
- Only depend on openssl if GCRYPT option is off
- Sanitize libssh2.pc
devel/libvirt:
- Remove workaround for broken libssh2.pc
- Add USES=libtool and bump dependent ports
- Convert to INSTALL_TARGET=install-strip
devel/libvirt-glib:
- Convert to USES=libtool
Approved by: portmgr (implicit, bump unstaged port)
- Add USES=libtool and bump dependent ports
- Move variable definitions in front of include bsd.port.options.mk
- Replace patch with USES=pathfix
Approved by: portmgr (implicit, bump unstaged port)
bcrypt() is a sophisticated and secure hash algorithm designed by The OpenBSD
project for hashing passwords. The bcrypt Ruby gem provides a simple wrapper
for safely handling passwords.
WWW: https://github.com/codahale/bcrypt-ruby
Fprintd is a D-Bus daemon that offers libfprint functionality over
the D-Bus interprocess communication bus. By adding this daemon
layer above libfprint, we solve various problems related to multiple
applications simulatenously competing for fingerprint readers.
While it is not very nice to think of a daemon being necessary in
this scenario, fprintd will be launched by D-Bus through the
activation mechanism. This means it is launched only when needed,
and additionally it will shut itself down after a period of inactivity.
(Text copied from link below.)
WWW: http://www.freedesktop.org/wiki/Software/fprint/fprintd/
PR: 192683
Submitted by: Martin Birgmeier
liballium attempts to reduce the amount of boilerplate code required to
implement pluggable transports for Tor in C or C++.
WWW: https://github.com/yawning/liballium
obfsclient is a C++11 Tor-managed pluggable transport client
implementation of the following protocols:
obfs2 - The Twobfuscator
obfs3 - The Threebfuscator
ScrambleSuit - Experimental
WWW: https://github.com/yawning/obfsclient
PR: 187926, 187927
Submitted by: fk@fabiankeil.de
Line 606 of the vendor Makefile has a malformed error message that comes
up if the makefile is given no target. For reasons I don't understand,
the gmake on FreeBSD tolerates it and the same exact gmake on DragonFly
catches it. Just amend the sed command the remove the line completely
as it's never executed in the ports framework.
- add CPE entry
- sort pkg-plist
Changelog (entries related to the command line tools)
Nmap 6.47 [2014-08-20]
o Integrated all of your IPv4 OS fingerprint submissions since June 2013
(2700+ of them). Added 366 fingerprints, bringing the new total to 4485.
Additions include Linux 3.10 - 3.14, iOS 7, OpenBSD 5.4 - 5.5, FreeBSD 9.2,
OS X 10.9, Android 4.3, and more. Many existing fingerprints were improved.
Highlights: http://seclists.org/nmap-dev/2014/q3/325 [Daniel Miller]
o Removed the External Entity Declaration from the DOCTYPE in Nmap's XML. This
was added in 6.45, and resulted in trouble for Nmap XML parsers without
network access, as well as increased traffic to Nmap's servers. The doctype
is now:
<!DOCTYPE nmaprun>
o [Ncat] Fixed SOCKS5 username/password authentication. The password length was
being written in the wrong place, so authentication could not succeed.
Reported with patch by Pierluigi Vittori.
o Avoid formatting NULL as "%s" when running nmap --iflist. GNU libc converts
this to the string "(null)", but it caused segfault on Solaris. [Daniel Miller]
o Handle ICMP admin-prohibited messages when doing service version detection.
Crash reported by Nathan Stocks was: Unexpected error in NSE_TYPE_READ
callback. Error code: 101 (Network is unreachable) [David Fifield]
o [NSE] Fix a bug causing http.head to not honor redirects. [Patrik Karlsson]
MFH: 2014Q3
Now that libprelude is safe from EXPIRE and has been staged [1], and devel/libhtp
now *actually* links against libiconv even though autoconf detection was fine
[2] ... Have fun!
- Update to 2.0.3
- Switch libhtp to the upstream version port (devel/libhtp)
- Use USES=libtool
- Use OPTIONS helpers and other OPTIONS_* goodies
- Sort USE(S)* section
- Deprecate USE_AUTOTOOLS (USES instead)
- Deprecate AUTOMAKE_ARGS, ACLOCAL_ARGS (no longer necessary)
- Update COMMENT
- Add m4 macro for checking compiler flags and add relevent
check to configure.ac. Our GCC doesn't like
-Wno-error=unused-result and upstreams configure bits arent as
portable as they could be.
[1] http://svnweb.freebsd.org/changeset/ports/365562
[2] http://svnweb.freebsd.org/changeset/ports/364955
Requested by: many
Crypt::Rhash module is an object-oriented interface to the LibRHash library,
allowing simultaneous calculation of several hash functions for a file or a
text message.
Resulting hash digest can be obtained in hexadecimal, BASE32, BASE64, raw
binary format or as a magnet link.
WWW: http://search.cpan.org/dist/Crypt-RHash/
PR: 192899
Submitted by: proler@gmail.com
- Mk/bsd.database.mk rewrite, new default to db5.
- db6 is eligible by default only if installed on the system.
- Bump PORTREVISION of all ports that directly depend on BerkeleyDB or
where USE_BDB is found in the port's directory
- Patch a few ports such that they will pick up or work with newer
versions.
- Add UPDATING entry
- Drive-by format fix for pks
- Drop BerkeleyDB option from mail/popular for now, requires more work.
- Exp-run logs linked from the PR below.
- Ports that do not build (IGNORE, BROKEN, etc.) have pro-forma changes
for new Berkeley DB, but are untested.
NOTE: please read UPDATING and the Wiki page before proceeding!
Announcement: http://lists.freebsd.org/pipermail/freebsd-ports-announce/2014-August/000090.html
Wiki reference: https://wiki.freebsd.org/Ports/BerkeleyDBCleanup
PR: 192690
Approved by: portmgr (implicit, PORTREVISION bump on unstaged ports)
- Take Maintainership
- Enable STAGE support
- Tweak MASTER_SITES https -> http (portlint)
- Add LICENSE and LICENSE_FILE
- Deprecate USE_AUTOTOOLS for libtool (-> USES)
- Sort USES and OPTIONS
- Use OPTIONS helpers as much as possible for now [1]
- Add --enable-static to CONFIGURE_ARGS to retain the static lib
- Assign and Use ETCDIR rather than hardcoding
- Use the install-strip install target
- Update pkg-plist, use @sample and other goodies
While I'm here, bump dependent ports since our SHLIB major version has
changed
[1] https://reviews.freebsd.org/D665
Approved by: portmgr (implicit, bump unstaged port)
The maintainer has not been responsive and multiple PRs have timed out.
Convert USE_PYTHON=yes to USES=python:2 as this application will not
run on Python 3.x
PR: 187408
Submitted by: corsmith (gmail)
Approved by: maintainer timeout
This port is i386 only (due to dependency on wine, so the ONLY_FOR_ARCH
definition is actually unnecessary) so I can't test it. It's also
unstaged. However, the standard json-c patches apply, so just assume
that officeCat needs them. If I'm wrong, the port will probably be
pruned in a week anyway.
Approved by: portmgr (implicit, NO_STAGE)
are likely other ports that will fail in similar ways. (i.e. libjson.so->libjson-c.so,
and json/json.h -> json-c/json.h).
While here, use OPTIONS helpers to avoid unnecessary bsd.port.options.mk inclusion.
2014-08-20 deskutils/horde3-klutz: EOL in April 2012
2014-08-20 deskutils/horde3-kronolith: EOL in April 2012
2014-08-20 deskutils/horde3-mnemo: EOL in April 2012
2014-08-20 devel/horde3-chora: EOL in April 2012
2014-08-20 ftp/horde3-gollem: EOL in April 2012
2014-08-20 games/linux-steam: Unmaintained interactive port
2014-08-20 games/linux-ut2004-demo: Unmaintained restricted ancient demo
2014-08-20 mail/horde3-dimp: EOL in April 2012
2014-08-20 mail/horde3-forwards: EOL in April 2012
2014-08-20 mail/horde3-ingo: EOL in April 2012
2014-08-20 mail/horde3-mimp: EOL in April 2012
2014-08-20 mail/horde3-vacation: EOL in April 2012
2014-08-20 net-mgmt/horde3-nic: EOL in April 2012
2014-08-20 net-mgmt/nocol: Unmaintained interactive port
2014-08-20 net-mgmt/ourmon: Unmaintained interactive port
2014-08-20 net/wowzamediaserverpro: Unmaintained interactive port
2014-08-20 news/p5-NNML: Unmaintained interactive port
2014-08-20 print/dvips: Unmaintained interactive port
2014-08-20 print/xdvi: Unmaintained interactive port
2014-08-20 security/horde3-jeta: EOL in April 2012
2014-08-20 security/hunch: Likely unused interactive port
2014-08-20 www/horde3-ansel: EOL in April 2012
2014-08-20 www/horde3-meta: EOL in April 2012
2014-08-20 www/horde3-passwd: EOL in April 2012
2014-08-20 www/horde3-trean: EOL in April 2012
2014-08-20 www/wwwcount: Ancient interactive port
2014-08-20 x11-clocks/xalarm: Unmaintained interactive port
rubyforge.org shutdown on May 15, 2014. This commit accounts for that by doing
several things:
- Deprecate ruby that had only rubyforge.org as MASTER_SITES (and so are now
only fetchable via our cache)
- Deprecate ports that depend on those
- Update the WWW pkg-descr line that points to rubyforge.org for rubygem ports
(which are still fetchable from rubygems.org)
The next step will be to remove rubyforge.org from bsd.sites.mk, after these
deprecated ports are deleted.
Phabric: D591
With hat: ruby
Approved by: portmgr (because of committing to unstaged graphics/mingplot port)
While here, including missing library files and use install-strip
target. Maintainer added a crash fix patch while reviewing.
PR: 192366
Submitted by: dewayne (heruristicssystems.com.au)
Approved by: maintainer (strongswan nanoteq.com)
Common Platform Enumeration (CPE) is a standardized method of describing
and identifying classes of applications, operating systems, and hardware
devices present among an enterprise's computing assets.
For more information, please visit the official website of CPE, developed
by MITRE and maintained by NIST.
Features:
* Versions: 1.1, 2.2, 2.3
* Formats: WFN, URI, FS.
* Cross-version conversion.
* Language parsing and evaluation.
WWW: https://github.com/nilp0inter/cpe
This port replaces security/sguil-client, security/sguild-server and
security/sguil-sensor which are at version 0.8.0. They will be removed
shortly as a result.
PR: 191347
Submitted by: Muhammad Rahman
Sguil (pronounced sgweel) is built by network security analysts for network
security analysts. Sguil's main component is an intuitive GUI that provides
access to realtime events, session data, and raw packet captures. Sguil
facilitates the practice of Network Security Monitoring and event driven
analysis. The Sguil client is written in tcl/tk and can be run on any operating
system that supports tcl/tk (including Linux, *BSD, Solaris, MacOS, and Win32).
GCC 4.2 in FreeBSD 8.X/9.X base is now too old to compile OpenEXR, so
GCC-based systems will upgrade to the default ports compiler (GCC 4.7
currently.)
Add two patches to OpenEXR to permit building it in a live system with
the older OpenEXR version installed. Bug report filed to upstream Github
at https://github.com/openexr/openexr/issues/130
Couple OpenEXR more tightly to ilmbase and require its exact .so
version.
Add UPDATING note, and bump PORTREVISION of all dependent ports.
Proto-STAGE hugin-devel, and mark it IGNORE because hugin is newer.
Approved by: portmgr (implicit for bumping PORTREVISION on unstaged ports)
Tools to deal with SCEP and PKCS7 messages.
This is a forked version of openca-tools changed to work with
security/p5-openxpki.
WWW: http://www.openxpki.org
PR: 192473
Submitted by: Sergei Vyshenski (with changes)
- added some FreeBSD defaults regarding SSH
- made port more PREFIX aware
- changed maintainer
PR: 191842
Submitted by: Gerard J. Cerchio and Lukasz Wasikowski (maintainer)
Main port security/p5-openxpki-0.15+ abandoned Mason UI technology
in favor of FastCGI, which is built into perl.
Mason based UI is no longer supported.
PR: 192590
Submitted by: maintainer
Stoken is an open source tokencode generator compatible with RSA SecurID 128-bit
(AES) tokens. It is a hobbyist project, not affiliated with or endorsed by RSA
Security.
WWW: http://stoken.sourceforge.net
PR: 192517
Submitted by: samm os2 kiev ua
Please use USES=python instead of USE_PYTHON.
USE_PYTHON=yes becomes USES=python
USE_PYTHON=2.7+ becomes USES=python:2.7+
USE_PYTHON_BUILD=3.3 becomes USES=python:3.3,build
...
A new PYTHON_FEATURES variable was added, which enables certain features for a
port and replaces some knobs at the same time;
PYTHON_FEATURES=distutils replaces USE_PYDISTUTILS
PYTHON_FEATURES=autoplist replaces PYDISTUTILS_AUTOPLIST
PYTHON_FEATURES=py3kplist replaces PYTHON_PY3K_PLIST_HACK
PYTHON_FEATURES=noegginfo replaces PYDISTUTILS_NOEGGINFO
PYTHON_FEATURES=concurrent replaces PYTHON_CONCURRENT_INSTALL
PYTHON_FEATURES=pythonprefix replaces USE_PYTHON_PREFIX
Some knobs have been deprecated and are to be removed in the near future:
PYTHON_MASTER_SITES - use MASTER_SITE_PYTHON instead
PYTHON_PKGNAMESUFFIX - use PYTHON_PKGNAMEPREFIX instead
PYDISTUTILS_INSTALLNOSINGLE - deprecated without replacement
Some knobs have been removed completely:
PYTHON_MASTER_SITE_SUBDIR
PYTHON_DISTNAME
PYTHON_WRKSRC
Several variables specific to the Python framework are no longer passed to the
build environment to avoid polluting dependency builds.
PYTHON_VERSION is not passed to .MAKEFLAGS anymore
PYTHON_DEFAULT_VERSION,
PYTHON_DEFAULT_PORTVERSION and
PYTHONBASE are not passed to the make environment anymore
The conversion required a couple of ports to be updated to fit the changes and
new requirements. Those included "bsd.python.mk" directly or contained checks
in places, for which the USES framework would fail to provide correct values.
Python modules directly using the upstream Python package (such as py-tkinter
or py-sqlite3) were updated to avoid using the now unnecessary and remmoved
knobs from "bsd.python.mk".
Phabric: D399
exp-run: 167368 192357
PR: 167368 192357
Reviewed by: antoine, wg
Exp-run award: antoine
With hat: python@
Approved by: portmgr
