CVS commit: pkgsrc/security/hs-tls

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/hs-tls
From: "Masatake Daimon" <pho%netbsd.org@localhost>
Date: Thu, 30 Jan 2025 11:10:36 +0000

Module Name:    pkgsrc
Committed By:   pho
Date:           Thu Jan 30 11:10:36 UTC 2025

Modified Files:
        pkgsrc/security/hs-tls: Makefile PLIST buildlink3.mk distinfo

Log Message:
security/hs-tls: update to tls-2.1.7

# Change log for "tls"

## Version 2.1.7

* Introducing `Limit` parameter.
* Implementing "Record Size Limit Extension for TLS" (RFC8449).
  Set `limitRecordSize` use it.
* Implementing "TLS Certificate Compression" (RFC 8879).
  This feature is automatically used if the peer supports it.
* More tests with `tlsfuzzer` especially for client authentication
  and 0-RTT.
* Implementing a utility funcation, `validateClientCertificate`, for
  client authentication.
* Bug fix for echo back logic of Cookie extension.
* More pretty show for the internal `Handshake` structure for debugging.

## Version 2.1.6

* Testing with "tlsfuzzer" again. Now don't send an alert agaist to
  peer's alert. Double locking (aka self dead-lock) is fixed. Sending
  an alert for known-but-cannot-parse extensions. Other corner cases
  are also fixed.
* `tls-client -d` and `tls-server -d` pretty-prints `Handshake`.

## Version 2.1.5

* Removing the dependency on the async package.
* Restore a few DHE_RSA ciphers.
  [#493](https://github.com/haskell-tls/hs-tls/pull/493)

## Version 2.1.4

* Exporting defaultValidationCache.

## Version 2.1.3

* Remove `data-default` version constraint.
  [#492](https://github.com/haskell-tls/hs-tls/pull/492)
* Exporting default variables.
  [#448](https://github.com/haskell-tls/hs-tls/pull/488)

## Version 2.1.2

* Using data-default instead of data-default-class.

## Version 2.1.1

* `bye` directly calls `timeout recvHS13`, not spawning a thread for
  `timeout recvHS13`. So, `bye` can receive an exception if thrown.

## Version 2.1.0

* Breaking change: stop exporting constructors to maintain future
  compatibilities. Field names are still exported, and values can be updated
  with them using record syntax. Use `def` and `noSessionManager` as initial
  values.
* `onServerFinished` is added to `ClientHooks`.
* `clientWantSessionResumeList` is added to `ClientParams` to support
  multiple tickets for TLS 1.3.

## Version 2.0.6

* Setting `supportedCiphers` in `defaultSupported` to `ciphersuite_default`.
  So, users don't have to override this value anymore by exporting
  `Network.TLS.Extra.Cipher`.
  [#471](https://github.com/haskell-tls/hs-tls/pull/471)
* `ciphersuite_default` is the same as `ciphersuite_strong`.
  So, the duplicated definition is removed.
* Add missing modules for util/tls-client and util/tls-server.


To generate a diff of this commit:
cvs rdiff -u -r1.15 -r1.16 pkgsrc/security/hs-tls/Makefile \
    pkgsrc/security/hs-tls/buildlink3.mk
cvs rdiff -u -r1.5 -r1.6 pkgsrc/security/hs-tls/PLIST
cvs rdiff -u -r1.8 -r1.9 pkgsrc/security/hs-tls/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/hs-tls/Makefile
diff -u pkgsrc/security/hs-tls/Makefile:1.15 pkgsrc/security/hs-tls/Makefile:1.16
--- pkgsrc/security/hs-tls/Makefile:1.15        Thu May  9 01:32:34 2024
+++ pkgsrc/security/hs-tls/Makefile     Thu Jan 30 11:10:36 2025
@@ -1,29 +1,27 @@
-# $NetBSD: Makefile,v 1.15 2024/05/09 01:32:34 pho Exp $
+# $NetBSD: Makefile,v 1.16 2025/01/30 11:10:36 pho Exp $
 
-DISTNAME=      tls-2.0.5
-PKGREVISION=   1
+DISTNAME=      tls-2.1.7
 CATEGORIES=    security
 
 MAINTAINER=    pho%cielonegro.org@localhost
 COMMENT=       TLS/SSL protocol native implementation (Server and Client)
 LICENSE=       modified-bsd
 
-HASKELL_UNRESTRICT_DEPENDENCIES+=      \
-       crypton
+CONFIGURE_ARGS+=       -f-devel
 
 .include "../../devel/hs-asn1-encoding/buildlink3.mk"
 .include "../../devel/hs-asn1-types/buildlink3.mk"
-.include "../../devel/hs-async/buildlink3.mk"
 .include "../../converters/hs-base16-bytestring/buildlink3.mk"
 .include "../../devel/hs-cereal/buildlink3.mk"
 .include "../../security/hs-crypton/buildlink3.mk"
 .include "../../security/hs-crypton-x509/buildlink3.mk"
 .include "../../security/hs-crypton-x509-store/buildlink3.mk"
 .include "../../security/hs-crypton-x509-validation/buildlink3.mk"
-.include "../../devel/hs-data-default-class/buildlink3.mk"
+.include "../../devel/hs-data-default/buildlink3.mk"
 .include "../../devel/hs-memory/buildlink3.mk"
 .include "../../net/hs-network/buildlink3.mk"
 .include "../../devel/hs-serialise/buildlink3.mk"
 .include "../../time/hs-unix-time/buildlink3.mk"
+.include "../../archivers/hs-zlib/buildlink3.mk"
 .include "../../mk/haskell.mk"
 .include "../../mk/bsd.pkg.mk"
Index: pkgsrc/security/hs-tls/buildlink3.mk
diff -u pkgsrc/security/hs-tls/buildlink3.mk:1.15 pkgsrc/security/hs-tls/buildlink3.mk:1.16
--- pkgsrc/security/hs-tls/buildlink3.mk:1.15   Thu May  9 01:32:34 2024
+++ pkgsrc/security/hs-tls/buildlink3.mk        Thu Jan 30 11:10:36 2025
@@ -1,28 +1,28 @@
-# $NetBSD: buildlink3.mk,v 1.15 2024/05/09 01:32:34 pho Exp $
+# $NetBSD: buildlink3.mk,v 1.16 2025/01/30 11:10:36 pho Exp $
 
 BUILDLINK_TREE+=       hs-tls
 
 .if !defined(HS_TLS_BUILDLINK3_MK)
 HS_TLS_BUILDLINK3_MK:=
 
-BUILDLINK_API_DEPENDS.hs-tls+= hs-tls>=2.0.5
-BUILDLINK_ABI_DEPENDS.hs-tls+= hs-tls>=2.0.5nb1
+BUILDLINK_API_DEPENDS.hs-tls+= hs-tls>=2.1.7
+BUILDLINK_ABI_DEPENDS.hs-tls+= hs-tls>=2.1.7
 BUILDLINK_PKGSRCDIR.hs-tls?=   ../../security/hs-tls
 
 .include "../../devel/hs-asn1-encoding/buildlink3.mk"
 .include "../../devel/hs-asn1-types/buildlink3.mk"
-.include "../../devel/hs-async/buildlink3.mk"
 .include "../../converters/hs-base16-bytestring/buildlink3.mk"
 .include "../../devel/hs-cereal/buildlink3.mk"
 .include "../../security/hs-crypton/buildlink3.mk"
 .include "../../security/hs-crypton-x509/buildlink3.mk"
 .include "../../security/hs-crypton-x509-store/buildlink3.mk"
 .include "../../security/hs-crypton-x509-validation/buildlink3.mk"
-.include "../../devel/hs-data-default-class/buildlink3.mk"
+.include "../../devel/hs-data-default/buildlink3.mk"
 .include "../../devel/hs-memory/buildlink3.mk"
 .include "../../net/hs-network/buildlink3.mk"
 .include "../../devel/hs-serialise/buildlink3.mk"
 .include "../../time/hs-unix-time/buildlink3.mk"
+.include "../../archivers/hs-zlib/buildlink3.mk"
 .endif # HS_TLS_BUILDLINK3_MK
 
 BUILDLINK_TREE+=       -hs-tls

Index: pkgsrc/security/hs-tls/PLIST
diff -u pkgsrc/security/hs-tls/PLIST:1.5 pkgsrc/security/hs-tls/PLIST:1.6
--- pkgsrc/security/hs-tls/PLIST:1.5    Sat May  4 06:10:13 2024
+++ pkgsrc/security/hs-tls/PLIST        Thu Jan 30 11:10:36 2025
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.5 2024/05/04 06:10:13 pho Exp $
+@comment $NetBSD: PLIST,v 1.6 2025/01/30 11:10:36 pho Exp $
 ${PLIST.shlibs}lib/${HS_PLATFORM}/libHS${HS_PKGID}-${HS_VER}.so
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS.hi
@@ -39,6 +39,9 @@ ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKG
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/ErrT.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/ErrT.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/ErrT.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Error.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Error.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Error.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Extension.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Extension.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Extension.p_hi
@@ -129,12 +132,21 @@ ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKG
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Handshake/State13.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Handshake/State13.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Handshake/State13.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/HashAndSignature.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/HashAndSignature.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/HashAndSignature.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Hooks.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Hooks.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Hooks.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO/Decode.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO/Decode.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO/Decode.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO/Encode.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO/Encode.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/IO/Encode.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Imports.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Imports.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Imports.p_hi
@@ -168,36 +180,30 @@ ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKG
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/RNG.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/RNG.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/RNG.p_hi
-${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Receiving.dyn_hi
-lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Receiving.hi
-${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Receiving.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record.p_hi
-${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Disengage.dyn_hi
-lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Disengage.hi
-${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Disengage.p_hi
-${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Engage.dyn_hi
-lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Engage.hi
-${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Engage.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Decrypt.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Decrypt.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Decrypt.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Encrypt.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Encrypt.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Encrypt.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Layer.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Layer.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Layer.p_hi
-${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Reading.dyn_hi
-lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Reading.hi
-${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Reading.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Recv.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Recv.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Recv.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Send.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Send.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Send.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/State.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/State.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/State.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Types.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Types.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Types.p_hi
-${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Writing.dyn_hi
-lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Writing.hi
-${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Record/Writing.p_hi
-${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Sending.dyn_hi
-lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Sending.hi
-${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Sending.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Session.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Session.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Session.p_hi
@@ -213,6 +219,18 @@ ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKG
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Cipher.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Cipher.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Cipher.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Secret.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Secret.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Secret.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Session.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Session.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Session.p_hi
+${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Version.dyn_hi
+lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Version.hi
+${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Types/Version.p_hi
 ${PLIST.shlibs}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Util.dyn_hi
 lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Util.hi
 ${PLIST.prof}lib/${HS_PLATFORM}/${HS_PKGID}/Network/TLS/Util.p_hi

Index: pkgsrc/security/hs-tls/distinfo
diff -u pkgsrc/security/hs-tls/distinfo:1.8 pkgsrc/security/hs-tls/distinfo:1.9
--- pkgsrc/security/hs-tls/distinfo:1.8 Sat May  4 06:10:13 2024
+++ pkgsrc/security/hs-tls/distinfo     Thu Jan 30 11:10:36 2025
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.8 2024/05/04 06:10:13 pho Exp $
+$NetBSD: distinfo,v 1.9 2025/01/30 11:10:36 pho Exp $
 
-BLAKE2s (tls-2.0.5.tar.gz) = 6b5b42abd6c2ec273c725a5e3e7a7b271a5789674aaedb1960cb2c1a9d377d0f
-SHA512 (tls-2.0.5.tar.gz) = 86dc0d519e9060e45518ed7dcac596664a40002e84d47227b47d3761c445491503180a07f3b2e5dca0fbfca854c9ba20dc7581cfb7901d75fa2c7c67d2574d95
-Size (tls-2.0.5.tar.gz) = 160741 bytes
+BLAKE2s (tls-2.1.7.tar.gz) = 0faee6a2b1fb6820de750e99fe3f4658a8a6a80600d6fe8f8338e29c4ffae743
+SHA512 (tls-2.1.7.tar.gz) = 0cb83f3220be33564c48a248633a5dae1c6b4c78134e465a397f0894f3e4e0134577bf5936fbabf4412cfcb9415d7fe36be3f057cd16e37da3dc1c186edb61ee
+Size (tls-2.1.7.tar.gz) = 172969 bytes

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index