cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
110,119 Commits 1 Branch 0 Tags
Commit Graph

59 Commits

Author SHA1 Message Date
naddy
4e1c0559e6 Replace iconv and gettext modules. 
Clean up the dependencies of the -main and -fastcgi subpackages.
ok sthen@ robert@
 2016-04-13 11:42:59 +00:00
sthen
69a82c669b move php MESSAGE/UNMESSAGE to a README instead, fleshed out with a 
little more information about how to use it with different web servers.
feedback/OK jasper@ aja@, bumps etc to follow.
 2016-02-01 21:53:06 +00:00
sthen
056c0c3e5c merge php-fpm into the main php packages, making things easier for 
httpd/nginx/lighttpd users.  ok robert@
 2016-01-07 18:06:45 +00:00
sthen
1134b3f483 WANTLIB sync, missed from the big batch of curl nghttp2 2015-11-06 18:31:45 +00:00
robert
a90e360a29 Re-introduce the suhosin extension and the no_suhosin flavor as well 
which can be used to disable the suhosin extension in the php packages.

We are not going to build this flavor by default because people should
use suhosin by default, but in some corner-cases if someone wants to disable
it, the flavor can be used.

Also move some variables and the sybase_ct subpackage from the Makefiles
to the shared one, there is no need to have the same data in 3 different
Makefiles.
 2015-10-14 19:36:01 +00:00
sthen
078318e1bf de-conflict php-fpm packages, ok robert@ 
Heads up! The rc script has changed name:

  sed -i s/php_fpm/php56_fpm/g /etc/rc.conf.local
 2015-09-18 09:18:22 +00:00
robert
f48cb51386 security update to 5.4.45 2015-09-15 12:33:36 +00:00
robert
9b854f5b99 security update to 5.4.44 2015-08-12 05:49:42 +00:00
sthen
205e3dad56 fix typo 2015-07-19 20:09:58 +00:00
sthen
52dc481d6e guard SSLv3_*_method with OPENSSL_NO_SSL3, same as php 5.6 does 
(if you use SSL/TLS in php, you really should be using 5.6+)
(...if you use php at all,   "                           " )
 2015-07-18 20:54:19 +00:00
ajacoutot
3bae775dc7 Tweak pexp a bit. 2015-07-15 16:03:07 +00:00
robert
a43332a4cd update to 5.4.43 2015-07-10 06:29:25 +00:00
robert
8b09308970 security update to 5.4.42; fixes the following CVEs: 
CVE-2015-3414, CVE-2015-3415, CVE-2015-3416
 2015-06-14 13:38:46 +00:00
robert
f1bda7e79e security update to 5.4.41 2015-05-17 12:00:22 +00:00
robert
02a6b2026a security update to 5.4.40; fixes the following CVEs: 
CVE-2014-9709, CVE-2015-2301, CVE-2015-2783, CVE-2015-1352
 2015-04-25 16:08:35 +00:00
sthen
2754be19a9 update to PHP-5.4.39, ok robert@ 2015-03-21 22:32:41 +00:00
sthen
9d14cb2afe SECURITY update to php-5.4.38, ok robert@ 
CVE-2015-0273 (use-after-free with arbitrary code execution;
https://bugs.php.net/bug.php?id=68942), and various other fixes
 2015-02-19 20:14:55 +00:00
robert
396285c570 update to 5.4.37; 
fixes CVE-2015-0231, CVE-2014-9427 and CVE-2015-0232
 2015-01-23 16:09:41 +00:00
robert
e81d32b615 security update to 5.4.36; fixes CVE-2014-8142 2014-12-28 12:13:04 +00:00
robert
57eb3208cd security update to php-5.4.35 2014-11-15 10:18:12 +00:00
sthen
f0e5d2ca70 Since we got rid of 5.2, all versions of php in tree now support fpm and 
pcntl, so move the Makefile parts up to Makefile.inc. Looks ok to robert@
 2014-11-06 17:34:33 +00:00
sthen
678fc8d73f update to php 5.4.34, 5.5.18 
ok robert@ who also had a diff for this but forgot to commit it :)
 2014-10-18 20:31:11 +00:00
brad
b94a402501 Switch from using MySQL to using MariaDB attempt #2. MariaDB is a drop-in replacement. 
ok sthen@
 2014-09-13 18:09:20 +00:00
dlg
64a1c82fb3 port the fix for the tidy tidyReleaseDate vs tidyVersion segfault. 
basically ports/lang/php/5.3/patches/patch-ext_tidy_tidy_c r1.3

ok robert@ sthen@
 2014-08-29 06:56:48 +00:00
sthen
4ecb66c86f update to php 5.4.32, ok robert@ 2014-08-23 10:45:41 +00:00
ajacoutot
42b7592114 Properly register sampled directories with @sample instead of running 
mkdir manually... bug found by sysmerge(8) WIP support for packages.
 2014-07-14 08:02:07 +00:00
robert
dd4cc4f838 update to 5.4.30: 
Over 20 bugs were fixed in this release, including the following CVEs:
CVE-2014-3981, CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480,
CVE-2014-3487, CVE-2014-4049, CVE-2014-3515.
 2014-06-27 16:13:08 +00:00
sthen
c43b0c2145 update to php-5.4.28 / 5.5.13, bug/crash/DOS fixes. ok robert@ 
http://www.php.net/ChangeLog-5.php
 2014-06-03 21:52:46 +00:00
sthen
2bcd8c5c0c /var/www/conf/modules.sample is no longer provided by base; noticed by florian@ 2014-05-30 13:14:08 +00:00
sthen
ea3f05829d update to php 5.4.28/5.5.12, various fixes including some security-ish/leaks/ 
memory corruption.  ok robert@

http://www.php.net/ChangeLog-5.php
 2014-05-12 22:12:03 +00:00
edd
507bc399c8 Enable readline support in PHP-5.4 and PHP-5.5. 
(But not in PHP-5.3, since readline support is broken and EOL).

OK sthen@, with input from ajacoutot@, thanks.
 2014-04-23 08:39:58 +00:00
sthen
5f34bd4774 also zap gssapi, spotted by aja 2014-04-21 15:35:34 +00:00
sthen
2ff18878e9 sync wantlib 2014-04-21 14:18:14 +00:00
sthen
7953ca56d9 handle RAND_egd removal 2014-04-19 12:06:44 +00:00
sthen
1cf0109ea8 update to PHP 5.4.27, ok robert@ 
- Core: Fixed bug #60602 (proc_open() changes environment array)
- Fileinfo: Fixed bug #66946 (fileinfo: extensive backtracking in awk rule
   regular expression (CVE-2013-7345))
- FPM: Added clear_env configuration directive to disable clearenv() call.
- GMP: Fixed bug #66872 (invalid argument crashes gmp_testbit)
- Mail: Fixed bug #66535 (Don't add newline after X-PHP-Originating-Script)
- MySQLi: Fixed bug #66762 (Segfault in mysqli_stmt::bind_result() when
   link closed)
- Openssl: Fixed bug #66833 (Default disgest algo is still MD5, switch to SHA1)
 2014-04-06 12:52:25 +00:00
sthen
2a8901bfb7 fix WANTLIB 2014-03-27 14:04:34 +00:00
sthen
d785bbbc57 switch sample php-fpm config to using unix sockets. ok robert@, 
tested with new nginx sample config, everything in chroot.
 2014-03-27 10:41:21 +00:00
ajacoutot
04eae4c316 Default to UTC instead of having an undefined timezone. 
This can be easily changed per application or system-wide and will allow
some PHP apps to behave right out-of-the-box without the following vomit:

PHP message: PHP Warning:  date(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set().....

ok robert@ (maintainer)
 2014-03-20 13:02:19 +00:00
sthen
40b75a3638 Security update to php 5.4.26, ok robert@ 
5.4.26:
JSON: Fixed bug #65753 (JsonSerializeable couldn't implement on module extension)
Fileinfo: Fixed bug #66731 (file: infinite recursion) (CVE-2014-1943)
Fileinfo: Fixed bug #66820 (out-of-bounds memory access in fileinfo) (CVE-2014-2270)
LDAP: Implemented ldap_modify_batch (https://wiki.php.net/rfc/ldap_modify_batch).
Openssl: Fixed bug #66501 (Add EC key support to php_openssl_is_private_key).
Pgsql: Added warning for dangerous client encoding and remove possible
  injections for pg_insert()/pg_update()/pg_delete()/pg_select().

5.4.25:
Core: Fixed bug #66286 (Incorrect object comparison with inheritance).
Core: Fixed bug #66509 (copy() arginfo has changed starting from 5.4).
mysqlnd: Fixed bug #66283 (Segmentation fault after memory_limit).
PDO_pgsql: Fixed bug #62479 (PDO-psql cannot connect if password contains spaces).
Session: Fixed bug #66481 (Calls to session_name() segfault when session.name is null).
 2014-03-18 15:18:36 +00:00
sthen
febaa89cd3 handle httpd move, originally from florian@, tweaks by me 2014-03-13 17:33:27 +00:00
sthen
8e440cddeb php 5.4 now uses autoconf 2.69 upstream, pointed out by Donovan Watteau, 
adjust AUTOCONF_VERSION to match.
 2014-01-16 23:17:32 +00:00
sthen
17d31c4036 update to php 5.4.24, various crash fixes, and CVE-2013-6420 memory corruption 
in openssl_x509_parse.

remove local freetype patch, upstream now uses freetype-config.

ok robert@
 2014-01-11 15:02:46 +00:00
landry
84bc032ff9 Allow to build with upcoming freetype update. 
5.4 patch from matthieu@, backported to 5.3 - still builds with current
freetype.
 2014-01-09 19:51:04 +00:00
robert
f33b576334 update to 5.4.21 2013-11-03 15:34:52 +00:00
landry
324eee4323 Add an -intl subpackage for the php intl extension using ICU. 
ok robert@ (maintainer)
 2013-10-24 18:20:39 +00:00
ajacoutot
460f3ce7af Fix deps after re-alpine -> alpine. 2013-10-17 09:11:34 +00:00
espie
a9b904eb4c no-conflict is a lie, the rcscripts conflict. 
I'll let robert@ figure out whether he wants to version the scripts
or what...
 2013-10-12 10:44:22 +00:00
sthen
ce1ab8e3ac update to php 5.4.20, ok robert@ 2013-09-20 20:20:10 +00:00
sthen
7af28e3c16 add conflict and pkgpath markers, so that pecl-phar gets merged into PHP 
ok robert@
 2013-09-07 13:49:42 +00:00
sthen
1f67939c2b suhosin hasn't been ported to php 5.4 or 5.5 yet, so remove the 
suhosin-related lines that we were patching into the config files
to avoid confusion.  ok robert@
 2013-08-24 09:23:28 +00:00