- Update devel/gettext to 0.19.4
- Update devel/libtool and devel/libltdl to 2.4.5
- This version of libtool has been fixed to pass -fstack-protector to the
compiler during linking. Add the same fix to USES=libtool. This should
improve SSP support on FreeBSD/i386 8 and 9.
- databases/libmemcached, security/sssd: patch configure.ac so
AC_CONFIG_AUX_DIR appears earlier.
For databases/libmemcached changing configure.ac causes manpages to be
regenerated which requires extra dependencies so patch a makefile to
prevent that.
- devel/xfce4-dev-tools: only depend on recent versions of autoconf and
automake
PR: 196938
Exp-run by: antoine
Approved by: portmgr (antoine)
- Normalize the ImageMagick library name so it stays the same regardless of
what the 16-bit and HDRI option are set to [1]. Teach cmake to look for
the new name. Bump ports that link to the libraries due to this.
- As a result do away with the "HALFSUPPORTED" option block, and list
16-bit and HDRI with the other options.
- ImageMagick ships a basic SVG plugin when not using librsvg2 for SVG
support. This basic SVG plugin needs libxml2 to work [2]. Make libxml2
a mandatory dependency (instead of only when the SVG option was selected).
- Don't touch .keep files in the modules directory, there files there so
it useless.
PR: 194949 [1]
PR: 195227 [2]
Requested by: many [1]
Submitted by: software-freebsd@interfasys.ch [2]
- Update to 0.7.2
- Update BUILD_DEPENDS and TEST_DEPENDS
- Patch upstream sources to fix LibreSSL:
* Remove EGD (Perl Entropy Gathering Daemon) support. This hasn't
been needed on FreeBSD since FreeBSD 4.2
* Disable compression conditionally using OPENSSL_NO_COMP
* Check features, not version for x509_vfy
[1] https://github.com/pyca/cryptography/issues/928
PR: 196827
Submitted by: Bernard Spil <spil.oss gmail com>
- Move DATABASE Backend options to OPTIONS_RADIO as only one backend is
supported at a time. MYSQL and MYSQL_SSL will create conflict in
previous state
- Update pkg-plist to make proper use of @sample
- Pass Maintainership [1]
PR: 196552 [1]
Differential Revision: https://reviews.freebsd.org/D1514
Submitted by: pauls@utdallas.edu [1]
Approved by: bapt(mentor)
Asignify tool is heavily inspired by signify used in OpenBSD. However, the main
goal of this project is to define high level API for signing files, validating
signatures and encrypting using public keys cryptography. Asignify is designed
to be portable and self-contained with zero external dependencies. It uses
blake2b as the hash function and ed25519 implementation from tweetnacl.
Key features:
- Zero dependencies (libc and C compiler are likely required though), so it
could be easily used in embedded systems.
- Modern cryptography primitives (ed25519, blake2 and sha512 namely).
- Ability to encrypt files with the same keys using curve25519 based cryptobox.
- Protecting secret keys by passwords using PBKDF2-BLAKE2 routine.
- Asignify can convert ssh ed25519 private keys to the native format and verify
signatures using just ssh ed25519 public keys (without intermediate
conversions).
- Asignify provides high level API for application developers for signing,
verifying, encrypting and keys generation.
- All keys, signatures and encrypted files contain version information allowing
to change cryptographical primitives in the future without loosing of
backward compatibility.
