cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
118,656 Commits 1 Branch 0 Tags
Commit Graph

83 Commits

Author SHA1 Message Date
landry
fb105fb645 Update to nss 3.30.2, 3.30.1 is required by firefox 54. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.30_release_notes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.30.1_release_notes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.30.2_release_notes
Bump shlib major for many symbols addition/removal.
 2017-04-22 11:57:39 +00:00
landry
fc6d5553c6 Update to 3.29.5: '3.29.4 has been deleted, because it identified itself 
with an incorrect version number'

prodded by naddy@
 2017-04-07 11:55:43 +00:00
landry
d6a0c2dbe8 Bugfix update to nss 3.29.4. 
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.29.4_release_notes
 2017-04-06 11:42:21 +00:00
landry
28e5c6b40a Bugfix update to NSS 3.29.3. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.29.2_release_notes
and
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.29.3_release_notes

Fixes mostly #1342358 and #1340841
 2017-03-12 15:09:43 +00:00
landry
da8f6c78c6 Update to nss 3.29.1. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.29_release_notes
and
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.29.1_release_notes
 2017-02-20 19:33:13 +00:00
landry
3a113f7c02 Update to nss 3.28.1, because perfection is never attained. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.28.1_release_notes
 2017-01-05 20:41:43 +00:00
landry
615e891338 Update to nss 3.28, will be required by upcoming firefox 51. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.28_release_notes

Enable TLS 1.3 (draft) support per
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.28_release_notes#Request_to_test_and_prepare_for_TLS_1.3.
 2017-01-04 12:17:48 +00:00
landry
31ef2a472e Update to nss 3.27.2. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.27.2_release_notes
 2016-12-15 10:15:53 +00:00
landry
fc050c27fc Update to nss 3.27, required by gecko 50. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.27_release_notes

Note that a bunch of CA's were removed, but not WoSign, because it owns
StartSSL/StartCOM.. see
https://docs.google.com/document/d/1C6BlmbeQfn4a9zydVi2UvjBGv6szuSB4sMYUcVrR8vQ/preview
and https://wiki.mozilla.org/CA:WoSign_Issues for details. Anyway, we
know the CA model is broken, right ?

Bump major, functions added/removed...
 2016-10-06 12:10:22 +00:00
sthen
564c6c344a Cope with moving sqlite3 back to ports. 2016-09-23 09:16:52 +00:00
landry
1c7255b5eb Update to nss 3.26. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.26_release_notes,
notables changes:

- the letsencrypt CA (ISRG Root X1) root certificate was added
- NPN is disabled and ALPN is enabled by default
 2016-09-04 08:55:13 +00:00
landry
a56bd35ece Update to NSS 3.25, will be required by firefox 49. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.25_release_notes
 2016-08-05 06:56:58 +00:00
landry
7a3e950865 Update to nss 3.24, requirement of firefox 48. 
- Remove patch-nss_lib_util_verref_h, merged upstream (#1226179)
- Remove useless patch-nss_coreconf_UNIX_mk, our -O2 takes precedence
- Remove chunk of patch-nss_coreconf_OpenBSD_mk, was merged upstream in
  #1250891. While here remove the addition of -Wl,Bsymbolic to MKSHLIB
which was here since forever for no justified reason.
 2016-06-14 14:48:51 +00:00
naddy
ef68f42b62 remove SHARED_ONLY from ports that don't use any MODULES 2016-03-16 16:46:31 +00:00
naddy
22bfc05958 replace after-bsd.port.mk hack with PROPERTIES check 2016-03-10 19:29:25 +00:00
landry
1d4125ae85 Update to nss 3.23. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.23_release_notes
for details.

Remove c++-comments patch, now that we remove -ansi from the build flags it
is allowed in C99. (see https://bugzilla.mozilla.org/show_bug.cgi?id=1250891)
 2016-03-04 16:29:24 +00:00
landry
5ab13415e4 Trololololol. 2016-02-22 20:10:37 +00:00
landry
43f6eb0469 C++-style comments are bad. Srsly. 2016-02-22 20:01:05 +00:00
landry
303455caf2 Security update to nss 3.21.1. 
No CVE or MFSA (yet?), bug #1245528 (details undisclosed), commit
https://hg.mozilla.org/projects/nss/rev/b9a31471759d says "fix bugs in
ASN.1 decoding" adding overflow checks.

discussed with naddy@ & sthen@
 2016-02-22 19:56:50 +00:00
landry
59d526b504 well, take maintainership since its somewhere in the moz stack... 2016-01-06 20:08:19 +00:00
ajacoutot
53eceea198 Remove martynas@ from here as well. 2016-01-06 18:41:42 +00:00
landry
5bd2a921a8 Update to nss 3.21. 
Tested in a bulk and ok ajacoutot@, thanks!
 2015-11-23 11:32:12 +00:00
landry
ccd918b8ff Update to nss 3.20.1. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.20_release_notes
for 3.20 relnotes.

nss & nspr were tested in a bulk build by ajacoutot@, thanks!
 2015-10-30 07:59:39 +00:00
landry
6cc463cdec Update to nss 3.19.2 - will be required by upcoming fx 39, now at rc4. 
Fixes a regression introduced in 3.19.1, see
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.2_release_notes
and https://bugzilla.mozilla.org/show_bug.cgi?id=1172128
 2015-06-26 07:42:27 +00:00
landry
7ef2704721 Update to nss 3.19.1, will be required by firefox 39 anyway. Bump minor. 
Fixes for logjam attack, among other things, see
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes
and https://bugzilla.mozilla.org/show_bug.cgi?id=1138554

Commited over urndis0 in a hytte in Å, Lofoten :)
 2015-05-30 21:33:59 +00:00
espie
2ace40bfb8 don't depend on modes in the ports tree being what we want installed 2015-05-08 09:08:44 +00:00
landry
8ce46fdfed Bugfix update to nss 3.18.1, required by upcoming firefox 38. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.18.1_release_notes
for details.
 2015-04-27 19:15:10 +00:00
landry
4265020636 Update to nss 3.18, required by firefox 38. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.18_release_notes
for details. Bump major since CERT_FindCertURLExtension was removed.
 2015-04-04 08:57:41 +00:00
landry
08c6cabf90 Bugfix update to nss 3.17.4. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17.4_release_notes
for details.
 2015-03-16 19:15:44 +00:00
landry
ffae1f351f bugfix update to nss 3.17.3 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17.3_release_notes
Passes all regress tests on amd64.
 2014-12-06 08:33:29 +00:00
landry
c354040f1d Update to nss 3.17.2, will be required by gecko 35 anyway (see #1075686).. 
See
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17_release_notes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17.1_release_notes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17.2_release_notes
For the changes (note that 3.16.2.1 had the same fixes as 3.17.1)
 2014-10-13 09:39:34 +00:00
landry
d1487edbe7 shlib Minor bump + PLIST update, i actually missed that pkcs1sig.h was 
supposed to be installed.. noted by and ok jasper@
 2014-09-29 08:52:30 +00:00
landry
38e5c395b8 Security update to NSS 3.16.2.1. 
Fixes bug #1064636 / CVE-2014-1568: RSA signature malleability in NSS
(sorry, that's all the information i could find)

We'll update to 3.17.1 later..
 2014-09-24 18:47:08 +00:00
landry
52fd890687 Bugfix update to 3.16.2, required by upcoming gecko 31 releases. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.16.2_release_notes
 2014-07-08 20:07:53 +00:00
landry
ba1b302d96 Remove the patch adding CACert, which has strict requirements on redistribution 
(http://www.cacert.org/policy/RootDistributionLicense.php) which we don't meet.

Following what was done in src/lib/libssl/cert.pem r1.24 3 weeks ago.
ok sthen@
 2014-04-29 12:01:54 +00:00
landry
49ec5a94fc Update to nss 3.16, will be needed by gecko 29. 
See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.16_release_notes

Tested on ppc/amd64/sparc64.
 2014-04-16 09:07:38 +00:00
landry
559f7b8b5e Update to nss 3.15.4, needed by gecko 27. 
Contains a fix for (CVE-2013-1740): When false start is enabled, libssl
will sometimes return unencrypted, unauthenticated data from PR_Recv
(https://bugzilla.mozilla.org/show_bug.cgi?id=919877)

See https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.4_release_notes
 2014-01-09 20:09:44 +00:00
landry
575289e06c SECURITY update to nss 3.15.3.1. 
Bug 946351 - Misissued Google certificates from DCSSI
https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.3.1_release_notes
 2013-12-10 11:17:05 +00:00
landry
b987467b49 SECURITY (f34r!) update to nss 3.15.3. 
Fixes CVE-2013-1739 (bug #894370) & CVE-2013-5605 (bug #934016)
Adds support for AES-GCM ciphersuites in 3.15.2 (#bug 880543)

See for more details:
https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.2_release_notes
https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.3_release_notes
(the latter is not yet complete..)
 2013-11-13 10:02:47 +00:00
landry
54936ef081 Update to nss 3.15.1, adds support for TLS 1.2. Will be required at some 
point by newer geckos...

see https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.1_release_notes
 2013-07-04 08:36:55 +00:00
landry
665aa1b119 Update to nss 3.15. 
https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15_release_notes

After years of sticking to CVS, upstream finally switched to hg,
changing its directory layout while here. All our patches are actually
unchanged, but got renamed/moved. CVS doesn't handle moves :)

Tested in an amd64 bulk build.
 2013-06-23 18:40:01 +00:00
landry
6865587314 Security update to nss 3.14.3. 
Fixes CVE-2013-1620 / bug #822365 (Lucky Thirteen attack)
Required by firefox 20 & later anyway.. and tested to work fine with 20.0b6.
 2013-03-21 12:49:42 +00:00
landry
505f877d4b Update to nss 3.14.2. 
Remove a useless patch, unix_rand.c uses /dev/urandom on OpenBSD since
bug #174993 was fixed more that 5 years ago in nss 3.5.
Enforce dependency on sqlite 3.7.15.2.
Went in a handful of bulk builds.
 2013-03-18 20:38:13 +00:00
espie
eae66e4a7b PERMIT_* / REGRESS->TEST sweep 2013-03-11 11:35:43 +00:00
landry
a0ef5c0b5f Update to nss-3.14.1.with.ckbi.1.93, which explicitely distrusts 
"TURKTRUST Mis-issued Intermediate CA 1" & "TURKTRUST Mis-issued
Intermediate CA 2".
(added in #768547, removed in #825022)
 2012-12-31 08:41:27 +00:00
landry
e6eff40b58 Update to nss 3.14.1, required by upcoming fx 18. 
Tested on sparc64 & hppa, and went into an amd64 bulk build.

Node that builtins/certdata.c patch goes to the attic since it's
autogenerated at build time from builtins/certdata.txt (which we patch
too for CACert roots) since bug #683266.

There might be a chemspill for a TURKTRUST CA distrust soon (bug
#825022, sg-only) but let's get this in now.
 2012-12-29 20:03:17 +00:00
landry
051b961835 Remove the chunks only containing #@!#@!$@! rcs ids changes, patch was 
not applying properly because of them.
Reported by ajacoutot@
 2012-11-13 08:26:25 +00:00
landry
40547a68f6 Update to nss 3.14. 
- use ${SUBST_CMD} instead of old-style perl -pi -e commands
- update nss-config from debian's nss-config.in, since apparently it
comes from there.. needed to fix detection by mozillas, otherwise the
current script returns 3.14 for --version while configure scripts
expect 3.14.0... grab version via awk on nss.h at runtime.

Tested on amd64/i386/powerpc and in an amd64 bulk build. Needed by
firefox 18.

ok sthen@ ajacoutot@ jasper@
 2012-11-12 20:43:09 +00:00
landry
52c4c5958a Update to nss 3.13.6. 
Needed by upcoming Mozilla 16 releases.
Been in a bunch of amd64 bulks, tested on ppc/sparc64 too.
ok ajacoutot@
 2012-09-17 20:01:22 +00:00
espie
4ed7caa04f first pass at handling sqlite3 move 2012-04-23 17:15:17 +00:00