This release also fixed the bug in 0.6.4 that prevented the GCRYPT option
from working.
PR: 200106
Approved by: johans
MFH: 2015Q2
Security: 0b040e24-f751-11e4-b24d-5453ed2e2b49
This port breaks if it violates standards according to the -pedantic flag.
Accord to gcc-5, it indeed does with dozens of warnings like this:
/wrkdirs/security/libssh/work/libssh-0.6.3/include/libssh/priv.h:200:33:
error: ISO C does not support '__FUNCTION__' predefined identifier
[-Wpedantic] _ssh_set_error(error, code, __FUNCTION__, __VA_ARGS__)
The maintainer has been MIA for over a year with PRs on 8 ports. I'm not
waiting for this one to time out too. While here, reset MAINTAINER.
PR: 197785
Submitted by: marino
Approved by: maintainer reset
Changes:
- src/sexp.c (do_vsexp_sscan): Return error for invalid args.
- cipher/md.c (_gcry_md_info): Fix a segv in case of calling
with wrong parameters.
- cipher/primegen.c (_gcry_generate_elg_prime): Change to return an
error code, possible NULL deref in call to prime generator.
- cipher/dsa.c (generate): Take care of new return code.
- cipher/elgamal.c (generate): Change to return an error code. Take
care of _gcry_generate_elg_prime return code.
- ecc: Support the non-standard 0x40 compression flag for EdDSA.
- mpi: Extend the internal mpi_get_buffer.
- mpi: Fix regression for powerpc-apple-darwin detection.
- Fix bug inhibiting the use of the sentinel attribute in src/gcrypt.h.in
- Fix building for the x32 target without asm modules in
mpi/generic/mpi-asm-defs.h: Use a fixed value for the x32 ABI.
- Fix ARM assembly when building __PIC__
- mpi: Fix a subtle bug setting spurious bits with in mpi_set_bit.
* mpi/mpi-bit.c (_gcry_mpi_set_bit, _gcry_mpi_set_highbit): Clear
allocated but not used bits before resizing.
* tests/t-mpi-bits.c (set_bit_with_resize): New.
- Use internal malloc function in fips.c.
* src/fips.c (check_binary_integrity): s/gcry_malloc/xtrymalloc/.
- pubkey: Re-map all deprecated RSA algo numbers.
- cipher: Fix possible NULL dereference in cipher/md.c for being NULL.
- Fix ARMv6 detection when CFLAGS modify target CPU architecture.
PR: 193264
Approved by: cpm@fbsd.es (maintainer)
While here, get rid of a lot of cruft:
- Use an https in MASTER_SITES and stop using a snapshot URL for the
tarballs.
- Switch to an out-of-source CMake build with USES=cmake:outsource, and get
rid of all the messing around with CMAKE_SOURCE_PATH and *_WRKSRC.
- Move the LICENSE block to the right place to pet portlint.
- Explicitly set CMAKE_ARGS with some options which we were already
implicitly assuming to be set.
- Disable examples and tests via CMAKE_ARGS instead of using an ugly sed
call.
- Do not pass WITH_OPENSSL=ON/OFF to CMake, this has no effect in the build
system.
- Stop gratuitously including bsd.port.options.mk.
- Remove sed calls and patches related to the libssh_threads. I fixed some
of the problems a few releases ago upstream, and the things I've removed
now just look unnecessary.
PR: 187595
Approved by: fluffy (implicit, and 230 days of timeout)
MFH: 2014Q4
Security: f8c88d50-5fb3-11e4-81bd-5453ed2e2b49
in r363436 and remove the UPDATING entry because it did not guarantee
that all ports were updated nor that they were updated in the right order.
Also remove libgcrypt.la again.
PR: 192342
Approved by: portmgr (implicit, bump unstaged ports)
