pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/pkgsrc-2005Q1]: pkgsrc/security/gnutls Pullup ticket 479 - requested ...



details:   https://anonhg.NetBSD.org/pkgsrc/rev/03c0fe77f906
branches:  pkgsrc-2005Q1
changeset: 491009:03c0fe77f906
user:      salo <salo%pkgsrc.org@localhost>
date:      Mon May 02 20:14:06 2005 +0000

description:
Pullup ticket 479 - requested by Thomas Klausner
security update for gnutls

Revisions pulled up:
- pkgsrc/security/gnutls/Makefile               1.26, 1.28
- pkgsrc/security/gnutls/PLIST                  1.13-1.14
- pkgsrc/security/gnutls/buildlink3.mk          1.8
- pkgsrc/security/gnutls/distinfo               1.15-1.16
- pkgsrc/security/gnutls/patches/patch-aa       removed

   Module Name:         pkgsrc
   Committed By:        wiz
   Date:                Fri Apr  8 15:50:41 UTC 2005

   Modified Files:
        pkgsrc/security/gnutls: Makefile PLIST distinfo
   Removed Files:
        pkgsrc/security/gnutls/patches: patch-aa

   Log Message:
   Update to 1.2.1:
   * Version 1.2.1 (2005-04-04)
   - gnutls_bye() will no longer fail when RDWR is used and application
     data are available for reading.
   - Added more strict checks for the SRP parameters (g,n), when they
     are not in the included list.
   - Added warning to certtool when MD5 is being used for digital
     signatures.
   - Optimizations ("-O2 -finline-functions") are not enabled by default,
     instead the standard autoconf defaults are used.  Use `./configure
     CFLAGS="-O2 -finline-functions"' to get the old optimizations.
   - Added the option --get-dh-params to certtool, in order to get the
     included in the library primes and generators.
   - Improved the semantics of GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, to
     allow only trusted Version 1 CAs and introduced
     GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT which has the old semantics.
   - Nettle self tests now build properly, reported by Pierre
   - Eliminated some memory leaks in DHE and RSA-EXPORT cipher suites.
     Reported by Yoann Vandoorselaere
   - Added the functions:
       gnutls_x509_crt_list_import(),
       gnutls_x509_crq_get_attribute_by_oid(),
       gnutls_x509_crq_set_attribute_by_oid() and
       gnutls_x509_crt_set_extension_by_oid().
   - If the library has been compiled with features disabled, a warning is
     issued during the compilation of any program.
---
   Module Name:         pkgsrc
   Committed By:        wiz
   Date:                Mon May  2 12:59:24 UTC 2005

   Modified Files:
        pkgsrc/security/gnutls: Makefile PLIST distinfo

   Log Message:
   Update to 1.2.3:

   * Version 1.2.3
   - Corrected bug in record packet parsing that could lead
     to a denial of service attack.
   - Corrected bug in RSA key export. Previously exported keys
     can be fixed using certtool. Use certtool -k <infile >outfile
   - API and ABI modifications:
       gnutls_x509_privkey_fix(): Add.

   * Version 1.2.2 (2005-04-25)
   - gnutls_error_to_alert() now considers
     GNUTLS_E_UNEXPECTED_HANDSHAKE_PACKET.
   - Fixed error in session resuming that could cause a crash in
     a session.
   - Fixed pkcs12 friendly name and local key identifier decoding.
   - Internal cleanups, removed duplicate typedef/struct definitions,
     and made source code include external include file, to check
     function prototypes during compile time.
   - API and ABI modifications:
     No changes since last version.  At least not intentional, but due
     to the include header changes, there may be inadvertant changes,
     please let us know if you find any.
---
   Module Name:         pkgsrc
   Committed By:        salo
   Date:                Mon May  2 19:48:37 UTC 2005

   Modified Files:
        pkgsrc/security/gnutls: buildlink3.mk

   Log Message:
   Bump BUILDLINK_RECOMMENDED after latest security update. (hi wiz!)

diffstat:

 security/gnutls/Makefile         |   5 +++--
 security/gnutls/PLIST            |  12 +++++++++---
 security/gnutls/buildlink3.mk    |   4 ++--
 security/gnutls/distinfo         |   9 ++++-----
 security/gnutls/patches/patch-aa |  13 -------------
 5 files changed, 18 insertions(+), 25 deletions(-)

diffs (141 lines):

diff -r e7ac135ba934 -r 03c0fe77f906 security/gnutls/Makefile
--- a/security/gnutls/Makefile  Mon May 02 16:24:35 2005 +0000
+++ b/security/gnutls/Makefile  Mon May 02 20:14:06 2005 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.25 2005/02/25 15:23:24 wiz Exp $
+# $NetBSD: Makefile,v 1.25.2.1 2005/05/02 20:14:06 salo Exp $
 
-DISTNAME=      gnutls-1.2.0
+DISTNAME=      gnutls-1.2.3
 CATEGORIES=    security devel
 MASTER_SITES=  http://josefsson.org/gnutls/releases/ \
                ftp://ftp.gnutls.org/pub/gnutls/ \
@@ -18,6 +18,7 @@
 USE_BUILDLINK3=                YES
 USE_LIBTOOL=           YES
 GNU_CONFIGURE=         YES
+TEST_TARGET=           check
 
 INFO_FILES=            gnutls.info
 
diff -r e7ac135ba934 -r 03c0fe77f906 security/gnutls/PLIST
--- a/security/gnutls/PLIST     Mon May 02 16:24:35 2005 +0000
+++ b/security/gnutls/PLIST     Mon May 02 20:14:06 2005 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.12 2005/02/19 00:14:23 wiz Exp $
+@comment $NetBSD: PLIST,v 1.12.2.1 2005/05/02 20:14:06 salo Exp $
 bin/certtool
 bin/gnutls-cli
 bin/gnutls-cli-debug
@@ -23,8 +23,6 @@
 man/man1/gnutls-cli.1
 man/man1/gnutls-serv.1
 man/man1/srptool.1
-man/man3/_gnutls_x509_get_raw_crt_activation_time.3
-man/man3/_gnutls_x509_get_raw_crt_expiration_time.3
 man/man3/gnutls_alert_get.3
 man/man3/gnutls_alert_get_name.3
 man/man3/gnutls_alert_send.3
@@ -286,6 +284,7 @@
 man/man3/gnutls_x509_crl_verify.3
 man/man3/gnutls_x509_crq_deinit.3
 man/man3/gnutls_x509_crq_export.3
+man/man3/gnutls_x509_crq_get_attribute_by_oid.3
 man/man3/gnutls_x509_crq_get_challenge_password.3
 man/man3/gnutls_x509_crq_get_dn.3
 man/man3/gnutls_x509_crq_get_dn_by_oid.3
@@ -294,6 +293,7 @@
 man/man3/gnutls_x509_crq_get_version.3
 man/man3/gnutls_x509_crq_import.3
 man/man3/gnutls_x509_crq_init.3
+man/man3/gnutls_x509_crq_set_attribute_by_oid.3
 man/man3/gnutls_x509_crq_set_challenge_password.3
 man/man3/gnutls_x509_crq_set_dn_by_oid.3
 man/man3/gnutls_x509_crq_set_key.3
@@ -333,6 +333,7 @@
 man/man3/gnutls_x509_crt_get_version.3
 man/man3/gnutls_x509_crt_import.3
 man/man3/gnutls_x509_crt_init.3
+man/man3/gnutls_x509_crt_list_import.3
 man/man3/gnutls_x509_crt_list_verify.3
 man/man3/gnutls_x509_crt_set_activation_time.3
 man/man3/gnutls_x509_crt_set_authority_key_id.3
@@ -341,6 +342,7 @@
 man/man3/gnutls_x509_crt_set_crq.3
 man/man3/gnutls_x509_crt_set_dn_by_oid.3
 man/man3/gnutls_x509_crt_set_expiration_time.3
+man/man3/gnutls_x509_crt_set_extension_by_oid.3
 man/man3/gnutls_x509_crt_set_issuer_dn_by_oid.3
 man/man3/gnutls_x509_crt_set_key.3
 man/man3/gnutls_x509_crt_set_key_purpose_oid.3
@@ -361,6 +363,7 @@
 man/man3/gnutls_x509_privkey_export_dsa_raw.3
 man/man3/gnutls_x509_privkey_export_pkcs8.3
 man/man3/gnutls_x509_privkey_export_rsa_raw.3
+man/man3/gnutls_x509_privkey_fix.3
 man/man3/gnutls_x509_privkey_generate.3
 man/man3/gnutls_x509_privkey_get_key_id.3
 man/man3/gnutls_x509_privkey_get_pk_algorithm.3
@@ -382,9 +385,12 @@
 share/examples/gnutls/ex-cert-select.c
 share/examples/gnutls/ex-client-resume.c
 share/examples/gnutls/ex-client-srp.c
+share/examples/gnutls/ex-client1.c
 share/examples/gnutls/ex-client2.c
 share/examples/gnutls/ex-crq.c
 share/examples/gnutls/ex-pkcs12.c
+share/examples/gnutls/ex-rfc2818.c
+share/examples/gnutls/ex-serv-anon.c
 share/examples/gnutls/ex-serv-export.c
 share/examples/gnutls/ex-serv-pgp.c
 share/examples/gnutls/ex-serv-srp.c
diff -r e7ac135ba934 -r 03c0fe77f906 security/gnutls/buildlink3.mk
--- a/security/gnutls/buildlink3.mk     Mon May 02 16:24:35 2005 +0000
+++ b/security/gnutls/buildlink3.mk     Mon May 02 20:14:06 2005 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: buildlink3.mk,v 1.7 2004/10/03 00:18:08 tv Exp $
+# $NetBSD: buildlink3.mk,v 1.7.4.1 2005/05/02 20:14:06 salo Exp $
 
 BUILDLINK_DEPTH:=      ${BUILDLINK_DEPTH}+
 GNUTLS_BUILDLINK3_MK:= ${GNUTLS_BUILDLINK3_MK}+
@@ -12,7 +12,7 @@
 
 .if !empty(GNUTLS_BUILDLINK3_MK:M+)
 BUILDLINK_DEPENDS.gnutls+=     gnutls>=1.0.13
-BUILDLINK_RECOMMENDED.gnutls+= gnutls>=1.0.20nb2
+BUILDLINK_RECOMMENDED.gnutls+= gnutls>=1.2.3
 BUILDLINK_PKGSRCDIR.gnutls?=   ../../security/gnutls
 .endif # GNUTLS_BUILDLINK3_MK
 
diff -r e7ac135ba934 -r 03c0fe77f906 security/gnutls/distinfo
--- a/security/gnutls/distinfo  Mon May 02 16:24:35 2005 +0000
+++ b/security/gnutls/distinfo  Mon May 02 20:14:06 2005 +0000
@@ -1,7 +1,6 @@
-$NetBSD: distinfo,v 1.13.2.1 2005/04/03 17:36:27 salo Exp $
+$NetBSD: distinfo,v 1.13.2.2 2005/05/02 20:14:06 salo Exp $
 
-SHA1 (gnutls-1.2.0.tar.bz2) = 618d502fc872530b726e791a818af5a95ee39d00
-RMD160 (gnutls-1.2.0.tar.bz2) = 1f03385047112721173f116821dc92680d60b687
-Size (gnutls-1.2.0.tar.bz2) = 2417909 bytes
-SHA1 (patch-aa) = 3b4adf0b6acde5a56c0a7f3003a0a1e90bfbd672
+SHA1 (gnutls-1.2.3.tar.bz2) = 78e1b92a9d818479faca9042d446eed61770fb17
+RMD160 (gnutls-1.2.3.tar.bz2) = 8e796bcd3f303f52f6c2c9dad18814a467b550eb
+Size (gnutls-1.2.3.tar.bz2) = 2446437 bytes
 SHA1 (patch-ab) = a3327de3052375acd569ee8541c90e2555e73f2d
diff -r e7ac135ba934 -r 03c0fe77f906 security/gnutls/patches/patch-aa
--- a/security/gnutls/patches/patch-aa  Mon May 02 16:24:35 2005 +0000
+++ /dev/null   Thu Jan 01 00:00:00 1970 +0000
@@ -1,13 +0,0 @@
-$NetBSD: patch-aa,v 1.3 2005/02/19 00:14:23 wiz Exp $
-
---- configure.orig     2005-01-27 14:16:39.000000000 +0100
-+++ configure
-@@ -3651,8 +3651,6 @@ rm -f conftest.err conftest.$ac_objext c
- if test $ac_cv_c_compiler_gnu != no; then
-       if test x$opt_developer_mode = xyes; then
-         CFLAGS="${CFLAGS} -g -Wno-format-y2k -Wall -Wcast-align -W -Wpointer-arith -Wchar-subscripts -Wformat-security -Wmissing-braces -Winline -Wstrict-prototypes"
--      else
--        CFLAGS="${CFLAGS} -O2 -finline-functions"
-       fi
- 
-       if test x$opt_dmalloc_mode = xyes; then



Home | Main Index | Thread Index | Old Index