Commit graph

55 commits

Author SHA1 Message Date
adam
f5e35d538b revbump for textproc/icu update 2022-04-18 19:09:40 +00:00
wiz
a8a34564df *: finish move of botan to versioned directories 2022-04-01 08:07:28 +00:00
adam
b6d9bd86bc revbump for icu and libffi 2021-12-08 16:01:42 +00:00
nia
3df0f20e22 security: Replace RMD160 checksums with BLAKE2s checksums
All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
2021-10-26 11:16:56 +00:00
nia
fa4b2904a6 security: Remove SHA1 hashes for distfiles 2021-10-07 14:53:40 +00:00
adam
9d0e79c401 revbump for textproc/icu 2021-04-21 11:40:12 +00:00
ryoon
4675ccbc79 *: Recursive revbump from textproc/icu-68.1 2020-11-05 09:06:42 +00:00
adam
6bd0c30da6 Revbump for icu 2020-06-02 08:22:31 +00:00
adam
24daafa112 Recursive revision bump after textproc/icu update 2020-04-12 08:27:48 +00:00
rillig
9fd786bb11 security: align variable assignments
pkglint -Wall -F --only aligned --only indent -r

No manual corrections.
2019-11-04 21:12:51 +00:00
rillig
c7ff05f63e all: replace SUBST_SED with the simpler SUBST_VARS
pkglint -Wall -r --only "substitution command" -F

With manual review and indentation fixes since pkglint doesn't get that
part correct in every case.
2019-05-23 19:22:54 +00:00
ryoon
6fc378bce9 Recursive revbump from textproc/icu 2019-04-03 00:32:25 +00:00
adam
16dd5de231 revbump after updating textproc/icu 2018-12-09 18:51:58 +00:00
ryoon
b9c1e1d533 Recursive revbump from textproc/icu-62.1 2018-07-20 03:33:47 +00:00
jperkin
5393242c73 *: Move SUBST_STAGE from post-patch to pre-configure
Performing substitutions during post-patch breaks tools such as mkpatches,
making it very difficult to regenerate correct patches after making changes,
and often leading to substituted string replacements being committed.
2018-07-04 13:40:07 +00:00
adam
299d329d51 revbump after icu update 2018-04-14 07:33:52 +00:00
adam
8977d31a36 Revbump after textproc/icu update 2017-11-30 16:45:00 +00:00
maya
33ebf687dc revbump for requiring ICU 59.x 2017-09-18 09:52:56 +00:00
wiz
42426a5a45 Follow some redirects. 2017-09-03 08:53:04 +00:00
adam
75a9285105 Revbump after icu update 2017-04-22 21:03:07 +00:00
ryoon
36ed025474 Recursive revbump from textproc/icu 58.1 2016-12-04 05:17:03 +00:00
joerg
d018e83e15 Tell configure where to look for Botan. 2016-06-01 13:41:14 +00:00
joerg
4d84444490 Bump revisions for Botan update. 2016-05-19 22:12:09 +00:00
ryoon
ac20a93574 Recursive revbump from textproc/icu 57.1 2016-04-11 19:01:33 +00:00
agc
5293710fb4 Add SHA512 digests for distfiles for security category
Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
2015-11-04 01:17:40 +00:00
ryoon
b141232e29 Recursive revbump from textproc/icu 2015-10-10 01:57:50 +00:00
adam
9071d6b787 Revbump after updating textproc/icu 2015-04-06 08:17:13 +00:00
he
f5a221527a Adapt a fix for SA59651, similar to CVE-2014-3209 from the
code branch fro SoftHSMv2: ensure created pkcs8 file is not
group- or world-readable.
Rename patch-aa to patch-Makefile.in, and add a comment.
Bump PKGREVISION.
2014-11-18 13:40:56 +00:00
adam
243c29c4cc Revbump after updating libwebp and icu 2014-10-07 16:47:10 +00:00
pettai
bd79d7f786 SoftHSM 1.3.7 - 2014-05-28
Bugfixes:
* SOFTHSM-94: umask affecting the calling application.
* SOFTHSM-96: Check if Botan has already been initialized.
2014-06-07 20:37:25 +00:00
obache
d8fc20e0b0 recursive bump from icu shlib major bump. 2014-04-09 07:26:56 +00:00
pettai
bc6c1fad0e SoftHSM 1.3.6
* SOFTHSM-51: Call umask to restrict created files.

Bugfixes:
* Fix malloc(0) warning in clang.
2014-02-28 09:32:53 +00:00
joerg
38a72245a8 Add upper limit to the botan dependency. Bump revisions as needed. 2014-02-25 11:51:32 +00:00
adam
63c018902c Revbump after updating textproc/icu 2013-10-19 09:06:55 +00:00
pettai
52ce9bb0e8 SoftHSM 1.3.5
Bugfixes:
* SOFTHSM-45: Improved handling of a busy database
* SUPPORT-76: Add -Wall -Werror flags and fix the warnings.
              Fix more warnings on EPEL.
2013-10-15 21:19:39 +00:00
adam
1ab43a036f Massive revbump after updating graphics/ilmbase, graphics/openexr, textproc/icu. 2013-05-09 07:39:04 +00:00
adam
f4c3b89da7 Revbump after graphics/jpeg and textproc/icu 2013-01-26 21:36:13 +00:00
pettai
726d20d2bc SoftHSM 1.3.4 - 2012-11-24
* SOFTHSM-28: Support RSASSA-PSS signature scheme.
* SOFTHSM-29: The default location of the token database is
  now $localstatedir/lib/softhsm/.
2012-11-26 11:29:01 +00:00
asau
1a433eae91 Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days. 2012-10-23 18:16:19 +00:00
pettai
2316f8d166 SoftHSM 1.3.3
* Increased performance by adding more indexes to the database.
* Describe the usage of SO and user PIN in the README.

Bugfixes:
* Detect if a C++ compiler is missing.
2012-05-23 10:05:44 +00:00
dholland
7e751949e4 Set BUILDLINK_ABI_DEPENDS correctly (with +=, not ?=)
It turns out there were a lot of these.
2012-05-07 01:53:12 +00:00
obache
a6d5ad9edc Recursive bump from icu shlib major bumped to 49. 2012-04-27 12:31:32 +00:00
pettai
3086b4e8e8 SoftHSM 1.3.2
* Update the README with information on moving the database
  between different architectures.

Bugfixes:
* Fix the destruction order of the Singleton objects.
2012-03-18 15:11:07 +00:00
pettai
b8128be5f9 SoftHSM 1.3.1
* The library is now installed in $libdir/softhsm/.

Bugfixes:
* Do not give a warning about the schema version if the token
  has not been initialized yet.
* The tools now return the correct exit code.
2012-01-23 11:12:47 +00:00
joerg
3ed5baab49 Recursive bump for Boton 2011-11-25 21:26:14 +00:00
pettai
78e4d81360 SoftHSM 1.3.0
* Can now read CKA_ALWAYS_AUTHENTICATE but does not use it.
* Encryption and decryption using CKM_RSA_PKCS.
* Support X.509 certificates. (Patch from Thomas Calderon)
* Updated backup instructions.
* Only a Security Officer can set CKA_TRUSTED to true.
* The softhsm tool can set the value of CKA_TRUSTED.
* Support Botan 1.10.0.
* Better signing performance with a single element cache for
  the PK_Signer object.
* Document README.MinGW describes how to build on Windows.
  (Text and patches contributed by Jaroslav Imrich)

Bugfixes:
* API changes in Botan created a namespace collision.
* API changes in Botan's state handling.
* BigInt::to_u32bit was accidently dropped in Botan. Adding it
  as a compatibility function to SoftHSM.
* Better exception handling.
* CKF_USER_PIN_COUNT_LOW and CKF_SO_PIN_COUNT_LOW must be set
  if an incorrect PIN has been entered at least once.
* Windows: Detect LoadLibrary.
* Windows: Set CRYPTOKI_EXPORTS.
* Windows: Load library correctly in softhsm.
* Windows: Compatibility function for getpass.
* Windows: Use _putenv and not setenv.
* Windows: Generate the DLL file.
* Windows: The softhsm tool will use the DLL file by default.
* Windows: Log to EventLog.
* Windows: Fix parsing of configuration file.
* Windows: The check program now links with a shared libgcc in order to
  make the exceptions work.

Known issue:
* Firefox does improper setting of CKA_DERIVE attribute during PKCS#12
  import. See https://bugzilla.mozilla.org/show_bug.cgi?id=515663
2011-09-17 21:47:30 +00:00
obache
9572f6d892 recursive bump from textproc/icu shlib major bump. 2011-06-10 09:39:41 +00:00
pettai
c2d7d13fb6 SoftHSM 1.2.1 - 2011-05-03
* Backport mutex handling from v2 for increased multithreaded
  performance.
* Remove signature verification used for debugging purposes.
  (was enabled with ./configure --enable-sigver)
* Added an index to the attribute table in the database.
* Optimization of the database handling.
2011-05-04 10:10:18 +00:00
agc
b7ed882699 Be consistent in the way we quote the '#' character 2011-03-31 18:37:33 +00:00
agc
2549c32ff0 The '#' character is kinda special to makefiles - re-work the comment field
so that we don't have any '#' chars in it.

Avoids the following:

	% grep COMMENT Makefile
	COMMENT=       Cryptographic store accessible through a PKCS#11 interface
	% pkg_info softhsm
	Information for softhsm-1.2.0:

	Comment:
	Cryptographic store accessible through a PKCS
2011-03-31 18:30:32 +00:00