From 4174e9ad6e3f82cfb7114cc23701366b42845d31 Mon Sep 17 00:00:00 2001 From: shell Date: Sun, 9 Feb 2003 08:09:08 +0000 Subject: Updated to p5-SSLeay-0.47 Changes from 0.45 + Added patch from Pavel Hlavnicka for freeing memory leaks from SSL_CTX_use_pkcs12_file() whose functionality is triggered by the $ENV{HTTPS_PKCS12_*} settings + Set timeout to 15 seconds for ./net_ssl_test and lwp-ssl-test sample scripts for better testing of timeout behavior + Added alarm() during Net::SSL->read() to honor socket timeout setting for more robust applications. read() will die_with_error() which in consistent with previous semantics used during SSL read() failure Thanks to Pavel Hlavnicka for prompting this change. + Removed code that supported versions of SSLeay before version 0.8 I believe SSLeay v.8 was released back in 1998 + Added patch from Devin Heitmueller so that initial random seed would be taken from /dev/urandom if available via RAND_load_file API --- security/p5-SSLeay/DESCR | 15 ++++++++------- security/p5-SSLeay/Makefile | 4 ++-- security/p5-SSLeay/distinfo | 8 ++++---- security/p5-SSLeay/patches/patch-aa | 27 ++++++++++++++++++++------- 4 files changed, 34 insertions(+), 20 deletions(-) diff --git a/security/p5-SSLeay/DESCR b/security/p5-SSLeay/DESCR index 4d0b2084a66..3e45d700a90 100644 --- a/security/p5-SSLeay/DESCR +++ b/security/p5-SSLeay/DESCR @@ -1,15 +1,16 @@ -This perl module provides support for the https protocol under LWP, so -that a LWP::UserAgent can make https GET & HEAD & POST requests. Please -see perldoc LWP for more information on POST requests. +This perl module provides support for the https protocol under LWP, +so that a LWP::UserAgent can make https GET & HEAD & POST requests. +Please see perldoc LWP for more information on POST requests. The Crypt::SSLeay package contains Net::SSL, which is automatically loaded by LWP::Protocol::https on https requests, and provides the -necessary SSL glue for that module to work via these deprecated modules: +necessary SSL glue for that module to work via these deprecated +modules: Crypt::SSLeay::CTX Crypt::SSLeay::Conn Crypt::SSLeay::X509 -Work on Crypt::SSLeay has been continued only to provide https support -for the LWP - libwww perl libraries. If you want access to the OpenSSL -API via perl, check out Sampo's Net::SSLeay. +Work on Crypt::SSLeay has been continued only to provide https +support for the LWP - libwww perl libraries. If you want access to +the OpenSSL API via perl, check out Sampo's Net::SSLeay. diff --git a/security/p5-SSLeay/Makefile b/security/p5-SSLeay/Makefile index f7fe56e0030..36b83550dc1 100644 --- a/security/p5-SSLeay/Makefile +++ b/security/p5-SSLeay/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.5 2002/09/27 09:41:21 shell Exp $ +# $NetBSD: Makefile,v 1.6 2003/02/09 08:09:08 shell Exp $ # -DISTNAME= Crypt-SSLeay-0.45 +DISTNAME= Crypt-SSLeay-0.47 PKGNAME= p5-${DISTNAME} SVR4_PKGNAME= p5csl CATEGORIES= security perl5 www diff --git a/security/p5-SSLeay/distinfo b/security/p5-SSLeay/distinfo index aa476c0f02d..f058baaddc1 100644 --- a/security/p5-SSLeay/distinfo +++ b/security/p5-SSLeay/distinfo @@ -1,5 +1,5 @@ -$NetBSD: distinfo,v 1.4 2002/09/27 09:41:21 shell Exp $ +$NetBSD: distinfo,v 1.5 2003/02/09 08:09:08 shell Exp $ -SHA1 (Crypt-SSLeay-0.45.tar.gz) = 1d558c1c0a581c8a3256db024e3463e3d34a8bf4 -Size (Crypt-SSLeay-0.45.tar.gz) = 116659 bytes -SHA1 (patch-aa) = 0edc4fcf6a87b20688912df587b1145055763ed3 +SHA1 (Crypt-SSLeay-0.47.tar.gz) = 8aee3fc21c9a7c2748de16bf153649f100c1b277 +Size (Crypt-SSLeay-0.47.tar.gz) = 116215 bytes +SHA1 (patch-aa) = f79576ad49381a5fef228537502770f22ae00e41 diff --git a/security/p5-SSLeay/patches/patch-aa b/security/p5-SSLeay/patches/patch-aa index 893ac6c9d43..2ce5d7205da 100644 --- a/security/p5-SSLeay/patches/patch-aa +++ b/security/p5-SSLeay/patches/patch-aa @@ -1,17 +1,27 @@ -$NetBSD: patch-aa,v 1.2 2002/01/19 03:19:13 mjl Exp $ +$NetBSD: patch-aa,v 1.3 2003/02/09 08:09:09 shell Exp $ ---- Makefile.PL.orig Fri Aug 17 06:03:38 2001 +--- Makefile.PL.orig Sun Feb 9 14:08:27 2003 +++ Makefile.PL -@@ -13,7 +13,7 @@ +@@ -13,7 +13,7 @@ my $currdir = dirname($0) || '.'; chdir($currdir) || die("can't change to $currdir: $!"); # FIND POSSIBLE SSL INSTALLATIONS -my @POSSIBLE_SSL_DIRS = qw(/usr/local/openssl /usr/local/ssl /local/ssl /opt/ssl /usr/local /local /usr); +my @POSSIBLE_SSL_DIRS = qw(%%SSLBASE%%); - my @CANDIDATE; - my $open_ssl = 0; - my $dir; -@@ -47,7 +47,7 @@ + if($^O eq 'MSWin32') { + unshift(@POSSIBLE_SSL_DIRS, 'c:/openssl'); + } +@@ -40,7 +40,8 @@ if (@CANDIDATE == 1) { + } + } + +-my $SSL_DIR; ++my $SSL_DIR = $CANDIDATE[0][0]; ++<<__SKIP__; + if($opt_default && (@CANDIDATE == 1) && $CANDIDATE[0][0]) { + $SSL_DIR = $CANDIDATE[0][0]; + print "Using --default OpenSSL candidate found at $SSL_DIR\n"; +@@ -51,9 +52,10 @@ if($opt_default && (@CANDIDATE == 1) && unless($CANDIDATE[0][0]) { print "No OpenSSL installation found, usually in $POSSIBLE_SSL_DIRS[0]\n"; } @@ -19,4 +29,7 @@ $NetBSD: patch-aa,v 1.2 2002/01/19 03:19:13 mjl Exp $ + $SSL_DIR = $CANDIDATE[0][0]; } } ++__SKIP__ + my $candidate = &Candidate($SSL_DIR); + unless($candidate) { -- cgit v1.2.3