pkgsrc/security/heimdal, branch pkgsrc

pkgsrc/security/heimdal, branch pkgsrc_2008Q1 [no description] https://git.osdyson.ru/mirror/pkgsrc/atom?h=pkgsrc_2008Q1 2008-03-04T22:37:46Z As of revision 1.2 of termcap.buildlink3.mk, "-ltermcap" is automatically 2008-03-04T22:37:46Z jlam jlam 2008-03-04T22:37:46Z urn:sha1:61bd3a33b1a025a996a49011b4650fbf2de4ee48 transformed into the correct set of libraries, so we no longer need to override the configure script's check for which library has tgetent(). The "missing-from-system" headers that Heimdal installs are now placed 2008-03-02T06:41:32Z jlam jlam 2008-03-02T06:41:32Z urn:sha1:38712cc90e6dcbe8a795f10488a013df0d00fdb8 into ${PREFIX}/include/krb5/roken instead of ${PREFIX}/include/krb5. This is good because it reduces the likelihood of a conflict with any other similarly named headers if you simply add -I${PREFIX}/include/krb5 to the compiler command line. Patch from PR pkg/38119 by charlie. Rename termlib.* to termcap.* to better document exactly what packages 2008-02-29T22:41:13Z jlam jlam 2008-02-29T22:41:13Z urn:sha1:05936720dad08bf2ed3f1ce13c7fb38884f3d760 are trying to use (the termcap t*() API). Update security/heimdal to version 1.1. Changes from version 0.7.2 include: 2008-02-28T14:11:55Z jlam jlam 2008-02-28T14:11:55Z urn:sha1:1a27e15523165867adf2b93c1b126439fb35a509 * Read-only PKCS11 provider built-in to hx509. * Better compatibilty with Windows 2008 Server pre-releases and Vista. * Add RFC3526 modp group14 as default. * Handle [kdc] database = { } entries without realm = stanzas. * Add gss_pseudo_random() for mechglue and krb5. * Make session key for the krbtgt be selected by the best encryption type of the client. * Better interoperability with other PK-INIT implementations. * Alias support for inital ticket requests. * Make ASN.1 library less paranoid to with regard to NUL in string to make it inter-operate with MIT Kerberos again. * PK-INIT support. * HDB extensions support, used by PK-INIT. * New ASN.1 compiler. * GSS-API mechglue from FreeBSD. * Updated SPNEGO to support RFC4178. * Support for Cryptosystem Negotiation Extension (RFC 4537). * A new X.509 library (hx509) and related crypto functions. * A new ntlm library (heimntlm) and related crypto functions. * KDC will return the "response too big" error to force TCP retries for large (default 1400 bytes) UDP replies. This is common for PK-INIT requests. * Libkafs defaults to use 2b tokens. * krb5_kuserok() also checks ~/.k5login.d directory for acl files. * Fix memory leaks. * Bugs fixes Update security/heimdal to version 1.1. Changes from version 0.7.2 include: 2008-02-28T08:14:41Z jlam jlam 2008-02-28T08:14:41Z urn:sha1:875504683b7adea3b7ce9463d328e868c224218d * Read-only PKCS11 provider built-in to hx509. * Better compatibilty with Windows 2008 Server pre-releases and Vista. * Add RFC3526 modp group14 as default. * Handle [kdc] database = { } entries without realm = stanzas. * Add gss_pseudo_random() for mechglue and krb5. * Make session key for the krbtgt be selected by the best encryption type of the client. * Better interoperability with other PK-INIT implementations. * Alias support for inital ticket requests. * Make ASN.1 library less paranoid to with regard to NUL in string to make it inter-operate with MIT Kerberos again. * PK-INIT support. * HDB extensions support, used by PK-INIT. * New ASN.1 compiler. * GSS-API mechglue from FreeBSD. * Updated SPNEGO to support RFC4178. * Support for Cryptosystem Negotiation Extension (RFC 4537). * A new X.509 library (hx509) and related crypto functions. * A new ntlm library (heimntlm) and related crypto functions. * KDC will return the "response too big" error to force TCP retries for large (default 1400 bytes) UDP replies. This is common for PK-INIT requests. * Libkafs defaults to use 2b tokens. * krb5_kuserok() also checks ~/.k5login.d directory for acl files. * Fix memory leaks. * Bugs fixes Per the process outlined in revbump(1), perform a recursive revbump 2008-01-18T05:06:18Z tnn tnn 2008-01-18T05:06:18Z urn:sha1:1c8e24b168b5909ecc586bdbb660570b490d92ef on packages that are affected by the switch from the openssl 0.9.7 branch to the 0.9.8 branch. ok jlam@ Slightly change script so that ident sees only the NetBSD CVS ID and 2007-06-15T19:03:16Z joerg joerg 2007-06-15T19:03:16Z urn:sha1:016b58c519450cb0e8e5759227011075125e254f it can therefore be detected properly as up-to-date. Removed some code duplication from the buildlink3 files by using the new 2007-05-30T08:54:28Z rillig rillig 2007-05-30T08:54:28Z urn:sha1:17aa8412fd4070a69cde28753e059fcf5f301848 pkg-build-options.mk procedure. Fixed the build on IRIX 6.5. 2007-02-20T10:17:14Z rillig rillig 2007-02-20T10:17:14Z urn:sha1:905cde67fda02de0a4a4e5f23479c5a94c54d71f Replace mk/bsd.prefs.mk includes with bsd.fast.prefs.mk includes. 2006-12-12T21:52:34Z joerg joerg 2006-12-12T21:52:34Z urn:sha1:d1af941dedbcf2bb0ff03eac1ef3b1bd943960af The redundant parsing of bsd.prefs.mk is mostly avoided now and parse time e.g. for x11/kdebase3 gets reduced by up to 10%.