Handle AddTrust External Root CA certificate expiration; from upstream.

2020-06-01 14:38:18 +00:00 · 2020-06-01 14:38:18 +00:00 · 2622248db0
commit 2622248db0
parent c757100d1a
2 changed files with 12 additions and 1 deletions
--- a/security/gnutls/Makefile
+++ b/security/gnutls/Makefile
@ -1,10 +1,19 @@
-# $OpenBSD: Makefile,v 1.163 2020/04/01 07:40:53 ajacoutot Exp $
+# $OpenBSD: Makefile,v 1.164 2020/06/01 14:38:18 ajacoutot Exp $

 COMMENT=		GNU Transport Layer Security library

 V=			3.6.13
 DISTNAME=		gnutls-${V}
 EXTRACT_SUFX=		.tar.xz
+REVISION=		0
+
+# https://gitlab.com/gnutls/gnutls/-/issues/1008
+# _gnutls_pkcs11_verify_crt_status: check validity against system cert
+# x509: trigger fallback verification path when cert is expired
+# tests: add test case for certificate chain superseding
+MASTER_SITES0=		https://gitlab.com/gnutls/gnutls/-/merge_requests/
+PATCHFILES=		1271.patch:0
+PATCH_DIST_STRIP=	-p1

 CATEGORIES=		security

--- a/security/gnutls/distinfo
+++ b/security/gnutls/distinfo
@ -1,2 +1,4 @@
+SHA256 (1271.patch) = rYGgCwr1jELjKToHWT1+ZxLu6Cye/0QNSIlkIcDDn6Y=
 SHA256 (gnutls-3.6.13.tar.xz) = MgQd9EfZ9GRFcM9XPJ9gNY6GVjfWm35Z0RWbckC1Lzg=
+SIZE (1271.patch) = 15894
 SIZE (gnutls-3.6.13.tar.xz) = 5958956