cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
173,080 Commits 1 Branch 0 Tags
Commit Graph

7963 Commits

Author SHA1 Message Date
tb
4d478cad8c openssl/1.0.2 also needs USE_NOEXECONLY on most architectures 2023-01-26 11:32:01 +00:00
tb
a00a550b91 openssl: fix eopenssl{11,30} binaries by reinstating LDFLAGS in the 
MAKE_FLAGS. My diff switching to USE_NOEXECONLY was a bit overeager.
 2023-01-26 11:29:43 +00:00
otto
26de2db273 Add patch for https://github.com/openwall/john/pull/5185, already merged 
in upstream, allowing for empty NSEC3 salt

ok sebastia@
 2023-01-24 14:20:29 +00:00
sthen
3f945b9dad update to certbot/py-acme-2.2.0 2023-01-22 15:13:13 +00:00
sthen
04224a063b update to minisign-0.11 
- For non-interactive usage (CI/CD, etc), encryption of private keys can
be disabled with the -W switch.

- A new command, -C was added to change passwords, or remove them (when
combined with -W).
 2023-01-22 15:06:57 +00:00
sthen
5b871f5a28 update to scanssh-2.1.3 2023-01-22 14:48:06 +00:00
tb
e356bbed90 Update to rust-openssl-tests 20230122 2023-01-22 09:06:06 +00:00
tb
8a8c4287e7 gnutls: unbreak i386 by removing patches added by accident. 2023-01-21 12:27:30 +00:00
bluhm
51ea501226 update p5-Crypt-OpenSSL-X509 to 1.914 
take maintainer
 2023-01-20 21:12:05 +00:00
tb
03225be04a sslscan: stop using USE_NOEXECONLY on amd64, bump after openssl 1.1 changes 
(static linking)
 2023-01-20 20:59:16 +00:00
tb
56710422fb openssl 1.0.2: assembly fixes for amd64 xonly 2023-01-20 20:52:02 +00:00
tb
28201cea45 openssl 1.1: assembly fixes for amd64 xonly 2023-01-20 20:49:35 +00:00
tb
10346a5cb3 openssl/3.0: assembly fixes for amd64 xonly. 2023-01-20 20:46:09 +00:00
bluhm
9417b1c510 update p5-IO-Socket-SSL to 2.080 2023-01-19 22:31:04 +00:00
tb
47f5cec607 libgcrypt: amd64 assembly fixes for x-only. 2023-01-19 17:11:02 +00:00
tb
d7fd0260f8 libgcrypt aarch64: fix one use of adr by using GET_DATA_POINTER() in 
camellia similar to what upstream has done recently.
 2023-01-19 13:01:16 +00:00
tb
cb2bf76c52 gnutls: amd64 and aarch64 assembly fixes. This is basically perlasm 
generated code with a few sprinkles of gnu. Passes regress except
for three tests that are unrelated to these changes.
 2023-01-19 12:41:35 +00:00
tb
cd7beb5c69 libnettle: Fix adr use in arm64 assembly - I accidentally committed an old 
version of these patches. Sorry about that.
 2023-01-19 12:23:58 +00:00
tb
89981e64fb libnettle: x-only fixes for m4-generated asm on aarch64 and amd64. 
Fixes libnettle regress and is needed for fixing gnutls regress.
 2023-01-19 10:32:12 +00:00
tb
2b9449e29f openssl 1.1: rewrite one remaining adr in ChaCha aarch64 assembly as 
adrp + add with :lo12: to fix the build of sslscan.

that's fine jsing
ok phessler
 2023-01-19 07:40:56 +00:00
millert
62656c9b83 Update to sudo 1.9.12p2, which includes a fix for CVE-2023-22809. 
Fixes a bug that could allow a user with "sudoedit" privileges to
edit arbitrary files.
 2023-01-18 16:02:36 +00:00
tb
18c1496317 Add a build dependency on security/rust-ring to all ports using ring. 
Bump.

ok semarie, tweak from sthen
 2023-01-18 13:08:37 +00:00
tb
e011218761 +rust-ring 2023-01-18 12:56:55 +00:00
tb
a77e85a62e import rust-ring, a port that bundles the source of the ring crate patched 
to work with OpenBSD's execute only policy.

discussed with semarie, sthen
 2023-01-18 12:56:09 +00:00
tb
1c301a3ad0 Update to rust-openssl-tests 20230118 2023-01-18 09:41:57 +00:00
rsadowski
c41f8b03d0 Update knockpy to 6.0.0 2023-01-17 20:08:58 +00:00
tb
180498a0fe sslscan: no need for USE_NOEXECONLY on riscv64. 2023-01-17 16:15:33 +00:00
tb
b12a15f8a7 openssl: no need for USE_NOEXECONLY on riscv64: there's no perlasm. 
pointed out by kettenis
 2023-01-17 16:14:42 +00:00
tb
de3b73d2bd Update to rust-openssl-tests 20230116 2023-01-16 22:55:30 +00:00
sthen
2a3dc066bd update to dropbear-2022.83 2023-01-16 17:53:41 +00:00
gonzalo
4e391c213c Update for OSV-Scanner to 1.1.0 
OK lraab@
 2023-01-16 13:19:50 +00:00
kn
3b7c9c94b8 Defer test compilation to test target 
Same approach as in net/libtorrent-rasterbar.
No symbol/PLIST/package change.

With FLAVOR='yubikey browser', "make build" compiles 198 less files.
"make test" does so and runs tests as usual.

keepassxc is built in four different FLAVOR combinations, so overall
saving is a little more compared to libtorrent-rasterbar.

OK rsadowski
 2023-01-15 11:39:19 +00:00
tb
ba03b57a13 libgcrypt: arm64 assembly fixes: move constants from .text to .rodata. 
"right" kettenis
ok ajacoutot phessler
 2023-01-15 09:35:41 +00:00
kn
b4fbd2c2e0 tweak xalan-c removal, link to new upstream PR 2023-01-14 22:19:11 +00:00
kn
c67797d0dd update/regen iconv patch 2023-01-14 21:32:18 +00:00
tb
88a2d25dd9 sslscan: remove USE_NOEXECONLY from aarch64 builds now that OpenSSL 1.1 
is fixed.
 2023-01-14 17:10:47 +00:00
tb
11191d45b1 openssl/1.1: backport kettenis's arm64 assembly fixes. 
looks good to kettenis
 2023-01-14 17:09:56 +00:00
kettenis
e44882bdb7 Tweak arm64 perlasm to move all data from .text to .rodata. 
This allows us to drop -Wl,--no-execute-only on arm64.

ok tb@
 2023-01-14 11:15:34 +00:00
rsadowski
f9213f545d Update knockpy to 5.4.0 2023-01-13 11:17:36 +00:00
kn
814ef024bd Disable useless examples 
Not packaged and not used in tests (31 out of 32 still pass on amd64),
but 59 less .c files to compile.

No WANTLIB, dynamix export or PLIST changes.
OK jca
 2023-01-11 21:35:20 +00:00
sthen
9b35988445 set USE_NOEXECONLY for ports statically linking ports/security/openssl/* 2023-01-11 16:33:57 +00:00
sthen
a164e846fe +badkeys 2023-01-11 15:56:21 +00:00
sthen
72df6e51c8 import ports/security/badkeys, ok tb@ 
badkeys checks public keys in a variety of formats (including X.509
certificates, Certificate Signing Requests, SSH public keys and others)
for known vulnerabilities.
 2023-01-11 15:55:39 +00:00
kn
97a58a2977 update to libdigidocpp 3.14.12 2023-01-10 20:28:50 +00:00
jca
a88895410f Bring compat functions decls in scope and fix build with clang 15 2023-01-10 17:55:31 +00:00
sthen
c03bc10778 update to p5-CryptX-0.077 2023-01-10 13:48:36 +00:00
sthen
74204f1686 update to zkt-1.1.6 2023-01-10 13:43:48 +00:00
sthen
bf1ef6bb4a update to p5-Crypt-PKCS10-2.005 2023-01-10 13:27:26 +00:00
sthen
21db354ef7 update to p5-Crypt-Curve25519-0.07 2023-01-10 13:27:23 +00:00
sthen
7b28c2acbb update to p5-Crypt-X509-0.55 2023-01-10 13:25:26 +00:00