Navigation:
Browse pkgsrc
(this page)| 2023-10-25 00:11:51 by Thomas Klausner | Files touched by this commit (2298) |
Log message: *: bump for openssl 3 |
2023-08-14 18:08:32 by Emmanuel Dreyfus | Files touched by this commit (3) |  |
Log message: Fix for security/opensc regression When security/opensc was updated to 0.23.0, it gained a --enable-notify configure flag. The feature adds a libopensc dependency on libglib, which in turns brings libpthread into the game. When using the opensc-pkcs11.so module with a non threaded program such as ssh(1), libopensc will load some thread-enabled glib function that attemps to initialize pthread stuff. That would require libpthread to be linked in, and if it is not the case, module load aborts. Here is the crash in action: Program received signal SIGABRT, Aborted. 0x000072403899c46a in _lwp_kill () from /lib/libc.so.12 (gdb) bt #0 0x000072403899c46a in _lwp_kill () from /lib/libc.so.12 #1 0x0000724038849223 in __libc_thr_create_stub () from /lib/libc.so.12 #2 0x0000724036a9c3ee in ?? () #3 0x0000000000000000 in ?? () This change turns the notify feature into a disabled by default option so that opensc-pkcs11.so can work agan with ssh(1). |
| 2023-06-06 14:42:56 by Taylor R Campbell | Files touched by this commit (1319) |
Log message: Mass-change BUILD_DEPENDS to TOOL_DEPENDS outside mk/. Almost all uses, if not all of them, are wrong, according to the semantics of BUILD_DEPENDS (packages built for target available for use _by_ tools at build-time) and TOOL_DEPEPNDS (packages built for host available for use _as_ tools at build-time). No change to BUILD_DEPENDS as used correctly inside buildlink3. As proposed on tech-pkg: https://mail-index.netbsd.org/tech-pkg/2023/06/03/msg027632.html |
| 2023-04-19 10:12:01 by Adam Ciarcinski | Files touched by this commit (2359) | |
Log message: revbump after textproc/icu update |
| 2023-02-21 18:23:07 by Adam Ciarcinski | Files touched by this commit (9) | |
Log message: opensc: updated to 0.23.0 New in 0.23.0; 2022-11-29 General improvements Support signing of data with a length of more than 512 bytes By default, disable support for old card drivers Bump minimal required OpenSSL version to 1.1.1 and add support for OpenSSL 3.0 Compatibility with LibreSSL Remove support for DSA Extend p11test to support symmetric keys Notice detached reader on macOS Support for OAEP padding Fix for PSS salt length Improve fuzzing by adding new tests Fixed various issues reported by OSS-Fuzz and Coverity regarding card drivers, \ PKCS#11 and PKCS#15 init Fix issues with OpenPACE Containers support for local testing Add support for encryption and decryption using symmetric keys Stop building support for Gost algorithms with OpenSSL 3.0 as they require \ deprecated API Fix detection of disconnected readers in PCSC Add configuration option for on-disk caching of private data Skip building empty binaries when dependencies are missing and remove needless \ linking Define arm64 as a supported architecture in the Installer package PKCS#11 Implement C_CreateObject for EC keys and fix signature verification for \ CKM_ECDSA_SHAx cards pkcs11-tool Add more elliptic curves Add support for symmetric encrypt and decrypt, wrap and unwrap operations, and \ initialization vector Fix consistent handling of secret key attributes Add support for signing and verifying with HMAC Add support for SHA3 Make object selectable via label Do not require an R/W session for some operations and add --session-rw option Print more information: CKA_UNIQUE_ID attribute, SHA3 HMACs and serial number \ for certificates Add new option --undestroyable to create keys with CKA_DESTROYABLE=FALSE sc-hsm-tool Add options for public key authentication Minidriver Fix reinit of the card Add an entry for Italian CNS (e) Fix detection of ECC mechanisms Fix ATRs before adding them to the windows registry NQ-Applet Add support for the JCOP4 Cards with NQ-Applet ItaCNS Add support for ItaCMS v1.1 (key length 2048) Belpic Add support for applet v1.8 Starcos Add ATR for V3.4 Add PKCS#15 emulator for 3.x cards with eSign app ePass2003 Fix PKCS#15 initialization Add support for FIPS Fix matching with newer versions and tokens initialized with OpenSC MyEID Support logout operation Support for symmetric encryption and decryption GIDS Fix decipher for TPM OpenPGP Get the list of supported algorithms from algorithm information on the card Support for 3 certificates with OpenPGP 3+ nPA Fix card detection Rutoken Fix formatting rtecp cards PIV Add new PIVKey ATRs for current cards |
| 2022-11-23 17:21:30 by Adam Ciarcinski | Files touched by this commit (1878) | |
Log message: massive revision bump after textproc/icu update |
| 2022-04-18 21:12:27 by Adam Ciarcinski | Files touched by this commit (1798) | |
Log message: revbump for textproc/icu update |
| 2021-12-08 17:07:18 by Adam Ciarcinski | Files touched by this commit (3063) |
Log message: revbump for icu and libffi |
| 2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605) |
Log message: security: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Unfetchable distfiles (fetched conditionally?): ./security/cyrus-sasl/distinfo \ cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2 |
| 2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606) |
Log message: security: Remove SHA1 hashes for distfiles |
New packages: