Commit graph

131 commits

Author SHA1 Message Date
joerg
6156234774 DESTDIR support 2010-02-16 16:18:14 +00:00
dholland
5686b869fb Hack this to build against Apache 1.3.42. As 1.3.42 doesn't change
anything significant in the internals, all this requires is patching
the accepted version and bumping BUILDLINK_API_DEPENDS. PKGREVISION++.
2010-02-10 03:55:18 +00:00
wiz
579796a3e5 Recursive PKGREVISION bump for jpeg update to 8. 2010-01-17 12:02:03 +00:00
joerg
e031855e4a Convert @exec/@unexec to @pkgdir or drop it. 2009-06-14 22:00:14 +00:00
obache
d0b8d3d185 Update ap-ssl to 2.8.31.
2.8.31: For Apache 1.3.41
2.8.30: Bug Fix
2.8.29: For Apache 1.3.39
2008-02-24 05:29:21 +00:00
tnn
ad6ceadd25 Per the process outlined in revbump(1), perform a recursive revbump
on packages that are affected by the switch from the openssl 0.9.7
branch to the 0.9.8 branch. ok jlam@
2008-01-18 05:06:18 +00:00
wiz
7df37351d3 Remove Ex-MASTER_SITE. From Zafer Aydogan. 2007-12-02 12:29:02 +00:00
joerg
a9b42d5bc0 Resort Apache dependency to get the more specific pattern first. 2007-06-10 08:34:25 +00:00
jdolecek
2827d74fec Update to 2.8.28, for apache-1.3.37
No changes besides the apache version update.
2006-07-30 11:19:38 +00:00
wiz
6b44bdb17e Update to 2.8.27, for apache-1.3.36.
Fixes PR 34060.

Changes unknown.
2006-07-23 17:25:56 +00:00
joerg
337c6b1297 Rename all PHP 4 packages to php4-*, all PHP 5 packages to php5-*,
all PEAR packages to php?-pear-* and all Apache packages to ap13-* or
ap2-* respectively. Add new variables to simplify the Makefile
handling. Add CONFLICTS on the old names. Reset revisions of bumped
packages. ap-php will now depend on the default Apache and PHP version.
All programs using it have an implicit option of the Apache version
as well.

OK from jlam@ and adrianp@.
2006-06-02 18:27:54 +00:00
reed
5abef9be14 Over 1200 files touched but no revisions bumped :)
RECOMMENDED is removed. It becomes ABI_DEPENDS.

BUILDLINK_RECOMMENDED.foo becomes BUILDLINK_ABI_DEPENDS.foo.

BUILDLINK_DEPENDS.foo becomes BUILDLINK_API_DEPENDS.foo.

BUILDLINK_DEPENDS does not change.

IGNORE_RECOMMENDED (which defaulted to "no") becomes USE_ABI_DEPENDS
which defaults to "yes".

Added to obsolete.mk checking for IGNORE_RECOMMENDED.

I did not manually go through and fix any aesthetic tab/spacing issues.

I have tested the above patch on DragonFly building and packaging
subversion and pkglint and their many dependencies.

I have also tested USE_ABI_DEPENDS=no on my NetBSD workstation (where I
have used IGNORE_RECOMMENDED for a long time). I have been an active user
of IGNORE_RECOMMENDED since it was available.

As suggested, I removed the documentation sentences suggesting bumping for
"security" issues.

As discussed on tech-pkg.

I will commit to revbump, pkglint, pkg_install, createbuildlink separately.

Note that if you use wip, it will fail!  I will commit to pkgsrc-wip
later (within day).
2006-04-06 06:21:32 +00:00
jlam
9c8b5ede43 Point MAINTAINER to pkgsrc-users@NetBSD.org in the case where no
developer is officially maintaining the package.

The rationale for changing this from "tech-pkg" to "pkgsrc-users" is
that it implies that any user can try to maintain the package (by
submitting patches to the mailing list).  Since the folks most likely
to care about the package are the folks that want to use it or are
already using it, this would leverage the energy of users who aren't
developers.
2006-03-04 21:28:51 +00:00
joerg
5911def816 Recursive revision bump / recommended bump for gettext ABI change. 2006-02-05 23:08:03 +00:00
wiz
768c589c29 Bump BUILDLINK_RECOMMENDED of textproc/expat to 2.0.0 because
of the shlib major bump.
PKGREVISION++ for the dependencies.
2006-01-24 07:31:52 +00:00
joerg
8f60a38025 Use SUBST framework, patch files directly. 2006-01-05 21:21:54 +00:00
jlam
dc9594e09d Remove USE_PKGINSTALL from pkgsrc now that mk/install/pkginstall.mk
automatically detects whether we want the pkginstall machinery to be
used by the package Makefile.
2005-12-29 06:21:30 +00:00
rillig
579e977969 Ran "pkglint --autofix", which corrected some of the quoting issues in
CONFIGURE_ARGS.
2005-12-05 23:55:01 +00:00
rillig
b71a1d488b Fixed pkglint warnings. The warnings are mostly quoting issues, for
example MAKE_ENV+=FOO=${BAR} is changed to MAKE_ENV+=FOO=${BAR:Q}. Some
other changes are outlined in

    http://mail-index.netbsd.org/tech-pkg/2005/12/02/0034.html
2005-12-05 20:49:47 +00:00
bouyer
99270c823c Update to mod_ssl 2.8.25. The only change is support for apache 1.3.34. 2005-10-19 20:33:44 +00:00
salo
7a0278e7c0 Update ap-ssl to version 2.8.24.
- Fix a security issue (CAN-2005-2700) where "SSLVerifyClient require"
  was not enforced in per-location context if "SSLVerifyClient optional"
  was configured in the global virtual host configuration.

Sync apache with the latest ap-ssl.
2005-09-16 13:53:56 +00:00
jlam
bd2788d930 Merge CONF_FILES/SUPPORT_FILES and CONF_FILES_PERMS/SUPPORT_FILES_PERMS
as the INSTALL and DEINSTALL scripts no longer distinguish between
the two types of files.  Drop SUPPORT_FILES{,_PERMS} and modify the
packages in pkgsrc accordingly.
2005-08-19 18:12:36 +00:00
wiz
c97318b86b Update to 2.8.23:
Changes with mod_ssl 2.8.23 (30-Oct-2004 to 06-Jul-2005)

   *) Ported to OpenSSL 0.9.8

   *) Fixed connection timeout handling by calling the EAPI connection
      close hook after (and not before) the B_OUT flag was set on the
      underlying I/O buffer in order to prevent attempted buffer flushes
      from blocking the connection.

   *) Updated the ca-bundle.crt file from Mozilla's "certdata.txt"
      (CVS revision 1.37).

   *) Fix timeout handling in POST request processing by resetting
      timeouts.

   *) Fixed double-definition of OPENSSL_free under OpenSSL 0.9.6 by
      fixing the version test in ssl_util_ssl.h

   *) Adjusted all copyright messages to contain the new year 2005 ;)
2005-07-14 04:04:58 +00:00
tv
f816d81489 Remove USE_BUILDLINK3 and NO_BUILDLINK; these are no longer used. 2005-04-11 21:44:48 +00:00
wiz
809ad6f2f7 Add RMD160 checksums. 2005-02-24 14:08:26 +00:00
wiz
543a300581 Remove ASCII art and drop some whitespace; |fmt. 2005-02-18 14:28:39 +00:00
wiz
13204a5e14 Unused after update to 2.8.22. 2005-02-18 14:27:50 +00:00
wiz
42ee4fa50d Update to 2.8.22:
Changes with mod_ssl 2.8.22 (22-Oct-2004 to 30-Oct-2004)

   *) Upgraded to Apache 1.3.33
2005-02-18 14:07:50 +00:00
abs
ed5de29e2b Update to ap-ssl-2.8.21nb1
Patch to work against apache 1.3.32
2004-10-29 14:12:23 +00:00
tron
e1493598ba Update "ap-ssl" package to version 2.8.21. Changes since version 2.8.20:
- Upgraded to Apache 1.3.32
2004-10-25 08:51:23 +00:00
tron
6e854f1cbe Update "ap-ssl" package to version 2.8.20. Changes since version 2.8.19:
- With OpenSSL 0.9.7, prevent session resumption during a
  renegotiation to force the client to negotiate a new (and
  acceptable to mod_ssl) cipher suite. Additionally, ensure
  that a correct cipher suite has been negotiated afterwards
  (CAN-2004-0885).
- Fixed more printf(3) style format string bugs (not security
  related) which could crash the server if mod_ssl's trace
  or debug log level is enabled.
2004-10-18 09:27:18 +00:00
tv
c487cb967a Libtool fix for PR pkg/26633, and other issues. Update libtool to 1.5.10
in the process.  (More information on tech-pkg.)

Bump PKGREVISION and BUILDLINK_DEPENDS of all packages using libtool and
installing .la files.

Bump PKGREVISION (only) of all packages depending directly on the above
via a buildlink3 include.
2004-10-03 00:12:51 +00:00
jlam
ca70938428 Replace RPATH_FLAG with LINKER_RPATH_FLAG and COMPILER_RPATH_FLAG,
which are the full option names used to set rpath directives for the
linker and the compiler, respectively.  In places were we are invoking
the linker, use "${LINKER_RPATH_FLAG} <path>", where the space is
inserted in case the flag is a word, e.g. -rpath.  The default values
of *_RPATH_FLAG are set by the compiler/*.mk files, depending on the
compiler that you use.  They may be overridden on a ${OPSYS}-specific
basis by setting _OPSYS_LINKER_RPATH_FLAG and _OPSYS_COMPILER_RPATH_FLAG,
respectively.  Garbage-collect _OPSYS_RPATH_NAME and _COMPILER_LD_FLAG.
2004-08-27 06:29:06 +00:00
tron
ec65a84555 Update "ap-ssl" package to version 2.8.19:
- Fix ssl_log() related format string vulnerability in mod_proxy
  hook functions.
2004-07-17 12:43:37 +00:00
grant
33d163a2da updated mod_ssl to 2.8.18.
- fix installation of example README.CSR.


  Changes with mod_ssl 2.8.18 (11-May-2004 to 27-May-2004)

   *) Fix buffer overflow in "SSLOptions +FakeBasicAuth" implementation
      if the Subject-DN in the client certificate exceeds 6KB in length.
      (CVE CAN-2004-0488).

   *) Handle the case of OpenSSL retry requests after interrupted system
      calls during the SSL handshake phase.

   *) Remove some unused functions.
2004-05-30 10:29:00 +00:00
taca
822c75de8b Update ap-ssl package (mod_ssl) to 2.8.17.
Changes with mod_ssl 2.8.17 (01-Nov-2003 to 11-May-2004)

   *) Upgraded to Apache 1.3.31

   *) Log the OpenSSL error stack contents if the crypto engine
      load/init fails.

   *) Fixed segfault in lookup of variable SESSION_ID
      in case SSL_get_session() returns NULL.

   *) Bugfix "dbm" session cache: the DBM file was closed
      too early (before accessing the data).

   *) Bugfix "shmcb" session cache for situations where
      the session data is bigger than the cache size.

   *) Adjusted all copyright messages to contain the new year 2004 ;)
2004-05-13 11:40:14 +00:00
jlam
617fe97f1b bl3ify 2004-04-26 20:28:54 +00:00
jlam
e8132b3fbf Relinquish maintainership of packages to tech-pkg@NetBSD.org. 2004-04-24 22:46:08 +00:00
wiz
a661ce60c0 PKGREVISION bump after openssl-security-fix-update to 0.9.6m.
Buildlink files: RECOMMENDED version changed to current version.
2004-03-26 02:27:34 +00:00
jschauma
fe19bb05b5 PKGREVISION++ after openssl update. 2003-11-12 03:39:39 +00:00
grant
868dbb0a08 Updated ap-ssl to 2.8.16.
Major changes since 2.8.15:

   *) Upgraded to Apache 1.3.29

   *) Avoid memory corruption in certificate handling caused by a heap
      memory double-freeing situation.

   *) Allow "HTTPS" variable to be passed through by suEXEC.

   *) Clear the OpenSSL error code in pass phrase reading code to
      workaround the following situation: multiple keys, all with
      different passphrases -- entering the correct pass phrase at each
      prompt leads to an OpenSSL error message after the last prompt.

   *) Reverted the recent change where ap_cleanup_for_exec() called
      ap_kill_alloc_shared(). This caused nasty side-effects in other
      processes and is not necessary at all (because shared memory
      segments are not inherited across exec).

   *) mod_ssl was checking the OpenSSL error reason code against
      SSL_R_HTTP_REQUEST and concluded the result is an SSL error. Since
      OpenSSL reason codes are not unique, this isn't always the case.
      It now additionally checks that the library is the SSL library.
2003-11-02 05:38:56 +00:00
grant
ac2754dcb7 kill all references to gcc.buildlink2.mk and compiler.mk, and define
USE_GCC2 or USE_GCC3 where appropriate.

the functionality of the old gcc.buildlink2.mk has been rolled into
compiler.mk now, which is automatically used.

more changes to come later...
2003-09-12 20:07:06 +00:00
tron
38af44e8ec Update "ap-ssl" package to version 2.8.15. Changes since version 2.8.14:
- Upgraded to Apache 1.3.28
- Take over security fix from Apache 2.0 related to per-directory
  renogotiations.
2003-07-19 12:34:18 +00:00
grant
ca3be631f2 s/netbsd.org/NetBSD.org/ 2003-07-17 22:50:55 +00:00
grant
7481001464 use mk/gcc.buildlink2.mk 2003-05-27 08:49:18 +00:00
jmmv
f1446ddf2b Drop trailing whitespace. Ok'ed by wiz. 2003-05-06 17:40:18 +00:00
grant
3c889eb8cb include lang/gcc/buildlink2.mk, so this can find libgcc from lang/gcc
if we're using it.
2003-04-15 02:21:22 +00:00
wiz
44d2208ac0 Update to 2.8.14:
Changes with mod_ssl 2.8.14 (18-Mar-2002 to 21-Mar-2003)

   *) Fixed logic in the destruction of a temporary certificate
      structure and this way avoid a crash due to freeing NULL object.

   *) Removed one newly introduced X509_free() call in the context of
      SSL_get_certificate(), because this function does not increment a
      reference count (although SSL_get_peer_certificate() does).

   *) Fixed hash-table based shared memory session cache (shmht)
      implementation by making sure that the underlying hash table
      library does not crash if memory cannot be allocated.

  Changes with mod_ssl 2.8.13 (23-Oct-2002 to 18-Mar-2003)

   *) Always enforce RSA blinding on RSA private keys in order to be
      resistent to timing attacks.

   *) Added timeout also to the "pre-sucking" of the trailing data in
      POST request handling.

   *) Correctly shutdown shared memory pools on fork+exec situations.

   *) Bugfix SSL client certificate verification: OpenSSL was not
      informed with SSL_set_verify_result(ssl, X509_V_OK) in case
      mod_ssl forced the verification to be ok.

   *) Consistently use OPENSSL_free() instead of plain free() to
      deallocate memory chunks allocated inside OpenSSL.

   *) Fixed various memory leaks related to X509 certificates.

New patch-ac sent to maintainer.
2003-04-10 08:36:41 +00:00
jlam
3ef633718c (1) Publicly export the value of _OPSYS_RPATH_NAME as RPATH_FLAG;
Makefiles simply need to use this value often, for better or for
    worse.

(2) Create a new variable FIX_RPATH that lists variables that should
    be cleansed of -R or -rpath values if ${_USE_RPATH} is "no".  By
    default, FIX_RPATH contains LIBS, X11_LDFLAGS, and LDFLAGS, and
    additional variables may be appended from package Makefiles.
2003-03-14 19:37:30 +00:00
jlam
d7f69e47ce Instead of including bsd.pkg.install.mk directly in a package Makefile,
have it be automatically included by bsd.pkg.mk if USE_PKGINSTALL is set
to "YES".  This enforces the requirement that bsd.pkg.install.mk be
included at the end of a package Makefile.  Idea suggested by Julio M.
Merino Vidal <jmmv at menta.net>.
2003-01-28 22:03:00 +00:00