Remove SSLv2 support. Bump revision.

author: joerg <joerg> 2016-03-29 22:00:13 +0000
committer: joerg <joerg> 2016-03-29 22:00:13 +0000
commit: 01722ebed43082a513764054ced97f8eacae93da (patch)
tree: bd09016f3c989d6c6e83093cd3a494b8df7f73db /security
parent: fa83d162f0dad584e76cdeb92310006f200db71d (diff)
download: pkgsrc-01722ebed43082a513764054ced97f8eacae93da.tar.gz
3 files changed, 27 insertions, 3 deletions
diff --git a/security/openvas-client/Makefile b/security/openvas-client/Makefile
index 3a824610164..f0e303c4ec8 100644
--- a/security/openvas-client/Makefile
+++ b/security/openvas-client/Makefile
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.30 2016/03/05 11:29:23 jperkin Exp $
+# $NetBSD: Makefile,v 1.31 2016/03/29 22:00:13 joerg Exp $
 #
 
 DISTNAME=	openvas-client-2.0.1
-PKGREVISION=	25
+PKGREVISION=	26
 CATEGORIES=	security
 MASTER_SITES=	http://wald.intevation.org/frs/download.php/552/
 
diff --git a/security/openvas-client/distinfo b/security/openvas-client/distinfo
index 7e48448bff4..f3b193040c7 100644
--- a/security/openvas-client/distinfo
+++ b/security/openvas-client/distinfo
@@ -1,7 +1,8 @@
-$NetBSD: distinfo,v 1.3 2015/11/04 01:17:52 agc Exp $
+$NetBSD: distinfo,v 1.4 2016/03/29 22:00:13 joerg Exp $
 
 SHA1 (openvas-client-2.0.1.tar.gz) = 07ada2cb7538da072c27a3a1cf58f9c6152d5e64
 RMD160 (openvas-client-2.0.1.tar.gz) = aa966e1e9911b63e5fee48d947cda5f0b036dd0a
 SHA512 (openvas-client-2.0.1.tar.gz) = b20235fb9b6d6355a01b02156f6b10b78c98e74e1ebcfac586167989c8175f347a8eaf6eab543a76556745ef4c6aaa88a6e63f984a081d55a7f496d6063fe892
 Size (openvas-client-2.0.1.tar.gz) = 629551 bytes
 SHA1 (patch-aa) = ffca8ce1116a4014e1a65f53536e0fc4faeeb675
+SHA1 (patch-nessus_nessus.c) = 9c2e10a8abe410db8c9b8a7a575dd6cfdbec5804
diff --git a/security/openvas-client/patches/patch-nessus_nessus.c b/security/openvas-client/patches/patch-nessus_nessus.c
new file mode 100644
index 00000000000..cc051c78eba
--- /dev/null
+++ b/security/openvas-client/patches/patch-nessus_nessus.c
@@ -0,0 +1,23 @@
+$NetBSD: patch-nessus_nessus.c,v 1.1 2016/03/29 22:00:14 joerg Exp $
+
+--- nessus/nessus.c.orig	2016-03-29 18:19:57.396124258 +0000
++++ nessus/nessus.c
+@@ -410,9 +410,7 @@ Please launch openvasclient-mkrand(1) fi
+ 	}
+       if (ssl_mt == NULL)
+ 	{
+-	  if (strcasecmp(ssl_ver, "SSLv2") == 0)
+-	    ssl_mt = SSLv2_client_method();
+-	  else if (strcasecmp(ssl_ver, "SSLv3") == 0)
++	  if (strcasecmp(ssl_ver, "SSLv3") == 0)
+ 	    ssl_mt = SSLv3_client_method();
+ 	  else if (strcasecmp(ssl_ver, "SSLv23") == 0)
+ 	    ssl_mt = SSLv23_client_method();
+@@ -443,6 +441,7 @@ Please launch openvasclient-mkrand(1) fi
+ 	    return "SSL error";
+ 	  }
+ 
++      SSL_CTX_set_options(ssl_ctx, SSL_OP_NO_SSLv2);
+       if (SSL_CTX_set_options(ssl_ctx, SSL_OP_ALL) < 0)
+ 	sslerror("SSL_CTX_set_options(SSL_OP_ALL)");
+
author	joerg <joerg>	2016-03-29 22:00:13 +0000
committer	joerg <joerg>	2016-03-29 22:00:13 +0000
commit	01722ebed43082a513764054ced97f8eacae93da (patch)
tree	bd09016f3c989d6c6e83093cd3a494b8df7f73db /security
parent	fa83d162f0dad584e76cdeb92310006f200db71d (diff)
download	pkgsrc-01722ebed43082a513764054ced97f8eacae93da.tar.gz