openbsd-ports

Author	SHA1	Message	Date
landry	c354040f1d	Update to nss 3.17.2, will be required by gecko 35 anyway (see #1075686 ).. See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17_release_notes https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17.1_release_notes https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.17.2_release_notes For the changes (note that 3.16.2.1 had the same fixes as 3.17.1)	2014-10-13 09:39:34 +00:00
landry	38e5c395b8	Security update to NSS 3.16.2.1. Fixes bug #1064636 / CVE-2014-1568: RSA signature malleability in NSS (sorry, that's all the information i could find) We'll update to 3.17.1 later..	2014-09-24 18:47:08 +00:00
landry	52fd890687	Bugfix update to 3.16.2, required by upcoming gecko 31 releases. See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.16.2_release_notes	2014-07-08 20:07:53 +00:00
landry	49ec5a94fc	Update to nss 3.16, will be needed by gecko 29. See https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.16_release_notes Tested on ppc/amd64/sparc64.	2014-04-16 09:07:38 +00:00
landry	559f7b8b5e	Update to nss 3.15.4, needed by gecko 27. Contains a fix for (CVE-2013-1740): When false start is enabled, libssl will sometimes return unencrypted, unauthenticated data from PR_Recv (https://bugzilla.mozilla.org/show_bug.cgi?id=919877) See https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.4_release_notes	2014-01-09 20:09:44 +00:00
landry	575289e06c	SECURITY update to nss 3.15.3.1. Bug 946351 - Misissued Google certificates from DCSSI https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.3.1_release_notes	2013-12-10 11:17:05 +00:00
landry	b987467b49	SECURITY (f34r!) update to nss 3.15.3. Fixes CVE-2013-1739 (bug #894370) & CVE-2013-5605 (bug #934016) Adds support for AES-GCM ciphersuites in 3.15.2 (#bug 880543) See for more details: https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.2_release_notes https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.3_release_notes (the latter is not yet complete..)	2013-11-13 10:02:47 +00:00
landry	54936ef081	Update to nss 3.15.1, adds support for TLS 1.2. Will be required at some point by newer geckos... see https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.1_release_notes	2013-07-04 08:36:55 +00:00
landry	665aa1b119	Update to nss 3.15. https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15_release_notes After years of sticking to CVS, upstream finally switched to hg, changing its directory layout while here. All our patches are actually unchanged, but got renamed/moved. CVS doesn't handle moves :) Tested in an amd64 bulk build.	2013-06-23 18:40:01 +00:00
landry	6865587314	Security update to nss 3.14.3. Fixes CVE-2013-1620 / bug #822365 (Lucky Thirteen attack) Required by firefox 20 & later anyway.. and tested to work fine with 20.0b6.	2013-03-21 12:49:42 +00:00
landry	505f877d4b	Update to nss 3.14.2. Remove a useless patch, unix_rand.c uses /dev/urandom on OpenBSD since bug #174993 was fixed more that 5 years ago in nss 3.5. Enforce dependency on sqlite 3.7.15.2. Went in a handful of bulk builds.	2013-03-18 20:38:13 +00:00
landry	a0ef5c0b5f	Update to nss-3.14.1.with.ckbi.1.93, which explicitely distrusts "TURKTRUST Mis-issued Intermediate CA 1" & "TURKTRUST Mis-issued Intermediate CA 2". (added in #768547, removed in #825022)	2012-12-31 08:41:27 +00:00
landry	e6eff40b58	Update to nss 3.14.1, required by upcoming fx 18. Tested on sparc64 & hppa, and went into an amd64 bulk build. Node that builtins/certdata.c patch goes to the attic since it's autogenerated at build time from builtins/certdata.txt (which we patch too for CACert roots) since bug #683266. There might be a chemspill for a TURKTRUST CA distrust soon (bug #825022, sg-only) but let's get this in now.	2012-12-29 20:03:17 +00:00
landry	40547a68f6	Update to nss 3.14. - use ${SUBST_CMD} instead of old-style perl -pi -e commands - update nss-config from debian's nss-config.in, since apparently it comes from there.. needed to fix detection by mozillas, otherwise the current script returns 3.14 for --version while configure scripts expect 3.14.0... grab version via awk on nss.h at runtime. Tested on amd64/i386/powerpc and in an amd64 bulk build. Needed by firefox 18. ok sthen@ ajacoutot@ jasper@	2012-11-12 20:43:09 +00:00
landry	52c4c5958a	Update to nss 3.13.6. Needed by upcoming Mozilla 16 releases. Been in a bunch of amd64 bulks, tested on ppc/sparc64 too. ok ajacoutot@	2012-09-17 20:01:22 +00:00
landry	fb31069d9c	Update to nss 3.13.3. This release actively distrusts the MITM subCA issued by TrustWave, see details at https://bugzilla.mozilla.org/show_bug.cgi?id=724929 (also #727167 & #728617). While here, depend on nspr 4.9.	2012-02-22 20:00:55 +00:00
landry	e1119cc19f	Update to nss 3.12.2, needed by mozilla 11+. Tested on alpha amd64 hppa i386 powerpc sparc64, no change in regress output.	2012-02-20 09:18:05 +00:00
nigel	c9c77840a6	Update to 3.13.1 with ckbi 1.88 changes include SSL 2.0 is disabled by default. A defense against the SSL 3.0 and TLS 1.0 CBC chosen plaintext attack demonstrated by Rizzo and Duong (CVE-2011-3389) is enabled by default. SHA-224 is supported. additional blacklist CA's. Malaysia-based DigiCert Sdn. Bhd Ok sthen@	2011-11-18 12:32:37 +00:00
landry	21a1502fbb	Update to nss 3.12.11p0 with ckbi 1.87, ckbi being the internal builtin CA root/certificate database. This special release (along incoming mozilla releases) fixes the DigiNotar mess, for which more info is available at http://blog.gerv.net/2011/09/diginotar-compromise/, MFSA2011-34 and http://blog.mozilla.com/security/2011/09/02/diginotar-removal-follow-up/	2011-09-06 19:39:34 +00:00
landry	77fcb12fe2	Update to nss 3.12.10, needed by upcoming mozilla updates. ok martynas@ rpointel@.	2011-08-23 20:07:50 +00:00
landry	20218047ab	Update to nss 3.12.9, required by ffx4.0b8 and later,and soon-to-be-required by stable releases in other mozilla branches. ok sthen@ martynas@	2011-01-15 16:59:37 +00:00
landry	54921dc6b1	Update to nss 3.12.8, required by upcoming moz* updates. Bump major and switch to newer lib_depends while here.	2010-10-22 19:14:56 +00:00
landry	6c94d7699b	Update to nss 3.12.6, tested by jasper@ in a bulk, thanks! ok naddy@	2010-04-03 09:21:00 +00:00
martynas	f1b61996b5	update to nss-3.12.3.1 which was released while nss-3.12.3 was still sitting in my tree. changes for openbsd: couple of certs got added. bump minor, since ckfw symbols were added. looks good to sthen@	2009-08-04 15:13:02 +00:00
martynas	4e9112069d	update to nss-3.12.3. security. please note, this will be needed in stable for further mozilla-firefox security updates. bulk build done by sthen@. thanks!	2009-08-04 14:00:21 +00:00
martynas	a389f7850b	update to nss-3.12. also needed by firefox 3.0 tested by many, both w/ mozilla 1.8 branch projects, and mozilla 1.9 "nspr and nss should go in" naddy@ ok kurt@	2008-07-25 00:46:59 +00:00
martynas	aa0abd1f55	update to 3.11.9. bump SO_VERSION major. pass BUILD_OPT so that correct OBJDIR is detected. ok kurt@	2008-02-12 23:26:31 +00:00
kurt	0424f0c5bd	- update to 3.11.7 - major bump due to function removal - use NSPR_INCLUDE_DIR/NSPR_LIB_DIR - remove patches no longer needed okay martynas@	2007-08-01 21:16:10 +00:00
espie	d4ebcd974d	more base64 checksums	2007-04-05 17:26:05 +00:00
martynas	c6d84b2cac	update to nss-3.11.5	2007-03-26 20:45:44 +00:00
naddy	4a0fbf8d51	- Install only the main tools. - Fix build on alpha. From maintainer Martynas Venckus; ok kurt@	2007-02-13 17:11:05 +00:00
kurt	7c0da245f7	import nss 3.11.4 Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. from MAINTAINER Martynas Venckus <martynas at altroot.org>. okay jolan@	2006-12-04 17:19:54 +00:00

32 Commits