mirror/freebsd-ports
1
0
Fork 0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-23 04:23:08 +00:00
Code Issues Releases Activity
d9b1c83ace
freebsd-ports/net/ocserv/pkg-message
Matthias Andree 804b0f94b7 net/ocserv: Update to 1.0.1 
Changelog:
https://gitlab.com/openconnect/ocserv/-/blob/1.0.1/NEWS#L1

This commit makes the following additional changes from Juraj's
submission:

- fix LIB_DEPENDS to libpc.so:devel/pcl (not devel/libpcl)
- replace LOCALBASE by PREFIX throughout, as these are internal references
- remove the src/config.c patch, it makes no sense to first
  statically patch and then run REINPLACE_CMD for DEFAULT_CFG_FILE
- remove doc/sample.config from another REINPLACE_CMD
- remove @ - it makes no sense to hide running commands
- patch example configuration to avoid isolate-workers = true, which
  currently only works on Linux's seccomp.
- in the same vein, put up a warning pkg-message that there is no worker
  process isolation
- install the @sample file as ocserv.conf.sample, not conf.sample,
  so it matches the default configuration file path

Things that could be done but are not:
- rcfile option to configure a separate config file

PR:		245521
Submitted by:	Juraj Lutter <juraj@lutter.sk>
Approved by:	cpm@ (maintainer timeout, 15 d)
2020-04-25 14:38:20 +00:00

8 lines
172 B
Plaintext
Raw Blame History

[
{ message: <<EOM
SECURITY NOTE: ocserv 1.0.1 currently cannot isolate workers processes
on FreeBSD, it only supports Linux's seccomp, but not FreeBSD's capsicum.
EOM
}
]
Reference in New Issue View Git Blame Copy Permalink