diff options
| author | taca <taca@pkgsrc.org> | 2015-03-15 00:35:14 +0000 |
|---|---|---|
| committer | taca <taca@pkgsrc.org> | 2015-03-15 00:35:14 +0000 |
| commit | 04afec2897b8a103b476c8a7ae6c3f122e687c44 (patch) | |
| tree | 114de36c4e5e5e4d45c4c4fff82cce29299f9fd1 /security/php-suhosin/Makefile | |
| parent | 1f581d41eddb072e8bf1d4ea1dd3d188883fb524 (diff) | |
| download | pkgsrc-04afec2897b8a103b476c8a7ae6c3f122e687c44.tar.gz | |
Update php-suhosin to 0.9.37.1
* support for PHP 5.3 was dropped.
2014-12-12 - 0.9.37.1
- Changed version string to 0.9.37.1 (without -dev)
- Relaxed array index blacklist (removed '-') due to wordpress incompatibility
2014-12-03 - 0.9.37
- Added SQL injection protection for Mysqli and several test cases
- Added wildcard matching for SQL username
- Added check for SQL username to only contain valid characters (>= ASCII 32)
- Test cases for user_prefix and user_postfix
- Added experimental PDO support
- SQL checks other than mysql (Mysqli + old-style) must be enabled with
configure --enable-suhosin-experimental, e.g. MSSQL.
- disallow_ws now matches all single-byte whitespace characters
- remove_binary and disallow_binary now optionally allow UTF-8.
- Introduced suhosin.upload.allow_utf8 (experimental)
- Reimplemented suhosin_get_raw_cookies()
- Fixed potential segfault for disable_display_errors=fail (only on ARM)
- Fixed potential NULL-pointer dereference with func.blacklist and logging
- Logging timestamps are localtime instead of gmt now (thanks to mkrokos)
- Added new array index filter (character whitelist/blacklist)
- Set default array index blacklist to '"+-<>;()
- Added option to suppress date/time for suhosin file logging (suhosin.log.file.time=0)
- Added simple script to create binary Debian package
- Fixed additional recursion problems with session handler
- Suhosin now depends on php_session.h instead of version-specific struct code
2014-06-10 - 0.9.36
- Added better handling of non existing/non executable shell scripts
- Added protection against XSS/SQL/Other Injections through User-Agent HTTP header
- Fix variable logging statistics outputting on every include - ticket: #37
- Added more entropy from /dev/urandom to internal random seeding (64 bit => 256 bit)
- Added non initialized stack variables to random seeding
- Added php_win32_get_random_bytes for windows compatibility in random seeding
- Added suhosin.rand.seedingkey for INI supplied additional entropy string (idea DavisNT)
- Added suhosin.rand.reseed_every_request to allow reseeding on every request (idea DavisNT)
- Changed that calls to srand() / mt_srand() will trigger auto reseeding (idea DavisNT)
- Fixed problems with SessionHandler() class and endless recursions
- Added LICENSE file to make distributions happy
2014-02-24 - 0.9.35
- From now only PHP >= 5.4 is officially supported
- Fix problems with the hard memory_limit on 64 bit systems
- Fix problems with user space session handler due to change in PHP 5.4.0
- Add changes in PHP 5.5 session handlers structures for PHP 5.5 compability
- Fix std post handler for PHP >= 5.3.11
- Fix suhosin logo in phpinfo() for PHP 5.5
- Change fileupload handling for PHP >= 5.4.0 to use an up to date RFC1867 replacement code
- Adapted suhosin to PHP 5.5 executor
- Added some test cases for various things
- Added suhosin.log.stdout to log to stdout (for debugging purposes only)
- Add ini_set() fail mode to suhosin.disable.display_errors
- Fix suhosin.get/post/cookie.max_totalname_length filter
- Refactor array index handling in filter to make it work always
- Added support for PHP 5.6.0alpha2
- WARNING: FUNCTION WHITELISTS/BLACKLISTS NEVER WORKED CORRECTLY WITH PHP < 5.5
2012-02-12 - 0.9.34
- Added initial support for PHP 5.4.0
- Fix include whitelist and blacklist to support shemes with dots in their names
- Fix read after efree() that lets function_exists() malfunction
- Fix build with clang compiler
- Added a request variable drop statistic log message
Diffstat (limited to 'security/php-suhosin/Makefile')
| -rw-r--r-- | security/php-suhosin/Makefile | 19 |
1 files changed, 6 insertions, 13 deletions
diff --git a/security/php-suhosin/Makefile b/security/php-suhosin/Makefile index 9ae6ab14275..dd455e23618 100644 --- a/security/php-suhosin/Makefile +++ b/security/php-suhosin/Makefile @@ -1,27 +1,20 @@ -# $NetBSD: Makefile,v 1.10 2013/12/08 22:34:33 joerg Exp $ +# $NetBSD: Makefile,v 1.11 2015/03/15 00:35:14 taca Exp $ # MODNAME= suhosin DISTNAME= suhosin-${PECL_VERSION} -PECL_VERSION= 0.9.33 +PECL_VERSION= 0.9.37.1 PECL_LEGACY_VERSION_SCHEME= yes CATEGORIES= www -MASTER_SITES= http://download.suhosin.org/ +MASTER_SITES= https://download.suhosin.org/ +# Do not remove EXTRACT_SUFX. +EXTRACT_SUFX= .tar.gz MAINTAINER= cg@cgall.de -HOMEPAGE= http://www.hardened-php.net/suhosin/index.html +HOMEPAGE= http://www.suhosin.org/ COMMENT= Advanced protection system for PHP installations -# There is no patch for PHP 5.4 yet(?). -PHP_VERSIONS_ACCEPTED= 53 - CONFIGURE_ARGS= --enable-${MODNAME} .include "../../lang/php/ext.mk" - -.include "../../mk/compiler.mk" -.if !empty(PKGSRC_COMPILER:Mclang) && ${_PHP_VERSION} == "53" -CFLAGS+= -Wno-error=return-type -.endif - .include "../../mk/bsd.pkg.mk" |