head 1.3; access; symbols pkgsrc-2013Q2:1.3.0.2 pkgsrc-2013Q2-base:1.3 pkgsrc-2012Q4:1.1.1.1.0.34 pkgsrc-2012Q4-base:1.1.1.1 pkgsrc-2012Q3:1.1.1.1.0.32 pkgsrc-2012Q3-base:1.1.1.1 pkgsrc-2012Q2:1.1.1.1.0.30 pkgsrc-2012Q2-base:1.1.1.1 pkgsrc-2012Q1:1.1.1.1.0.28 pkgsrc-2012Q1-base:1.1.1.1 pkgsrc-2011Q4:1.1.1.1.0.26 pkgsrc-2011Q4-base:1.1.1.1 pkgsrc-2011Q3:1.1.1.1.0.24 pkgsrc-2011Q3-base:1.1.1.1 pkgsrc-2011Q2:1.1.1.1.0.22 pkgsrc-2011Q2-base:1.1.1.1 pkgsrc-2011Q1:1.1.1.1.0.20 pkgsrc-2011Q1-base:1.1.1.1 pkgsrc-2010Q4:1.1.1.1.0.18 pkgsrc-2010Q4-base:1.1.1.1 pkgsrc-2010Q3:1.1.1.1.0.16 pkgsrc-2010Q3-base:1.1.1.1 pkgsrc-2010Q2:1.1.1.1.0.14 pkgsrc-2010Q2-base:1.1.1.1 pkgsrc-2010Q1:1.1.1.1.0.12 pkgsrc-2010Q1-base:1.1.1.1 pkgsrc-2009Q4:1.1.1.1.0.10 pkgsrc-2009Q4-base:1.1.1.1 pkgsrc-2009Q3:1.1.1.1.0.8 pkgsrc-2009Q3-base:1.1.1.1 pkgsrc-2009Q2:1.1.1.1.0.6 pkgsrc-2009Q2-base:1.1.1.1 pkgsrc-2009Q1:1.1.1.1.0.4 pkgsrc-2009Q1-base:1.1.1.1 pkgsrc-2008Q4:1.1.1.1.0.2 pkgsrc-2008Q4-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.3 date 2013.03.03.16.53.42; author yyamano; state dead; branches; next 1.2; 1.2 date 2013.02.17.17.37.41; author fhajny; state Exp; branches; next 1.1; 1.1 date 2008.12.16.07.39.41; author yyamano; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 2008.12.16.07.39.41; author yyamano; state Exp; branches; next ; desc @@ 1.3 log @Update apache maven to 3.0.5. http://maven.apache.org/docs/3.0.5/release-notes.html Apache Maven 3.0.5 is a maintenance release to fix a security issue CVE-2013-0253 Apache Maven 3.0.4 http://maven.apache.org/security.html CVE-2013-0253 Apache Maven 3.0.4 Apache Maven 3.0.4 (with Apache Maven Wagon 2.1) has introduced a non-secure SSL mode by default. This mode disables all SSL certificate checking, including: host name verification , date validity, and certificate chain. Not validating the certificate introduces the possibility of a man-in-the-middle attack. All users are recommended to upgrade to Apache Maven 3.0.5 and Apache Maven Wagon 2.4. @ text @$NetBSD: patch-ab,v 1.2 2013/02/17 17:37:41 fhajny Exp $ --- bin/mvn.orig 2012-01-17 08:47:39.000000000 +0000 +++ bin/mvn @@@@ -69,6 +69,15 @@@@ if [ -z "$JAVA_HOME" ] ; then fi fi +if [ "$JAVA_HOME" = "" ] ; then + JAVA_HOME=@@JAVA_HOME@@ +fi + +if [ "$M2_HOME" = "" ] ; then + # try to find maven + M2_HOME=@@PREFIX@@ +fi + if [ -z "$M2_HOME" ] ; then ## resolve links - $0 may be a link to maven's home PRG="$0" @@@@ -166,7 +175,9 @@@@ fi exec "$JAVACMD" \ $MAVEN_OPTS \ - -classpath "${M2_HOME}"/boot/plexus-classworlds-*.jar \ - "-Dclassworlds.conf=${M2_HOME}/bin/m2.conf" \ + -classpath "${M2_HOME}"/lib/java/maven/boot/plexus-classworlds-*.jar \ + "-Dclassworlds.conf=${M2_HOME}/etc/maven/m2.conf" \ "-Dmaven.home=${M2_HOME}" \ + "-Dorg.apache.maven.global-settings=${M2_HOME}/etc/maven/settings.xml" \ + "-Dorg.apache.maven.global-plugin-registry=${M2_HOME}/etc/maven/plugin-registry.xml" \ ${CLASSWORLDS_LAUNCHER} "$@@" @ 1.2 log @Update maven to 3.0.4. Too many changes since 2.2.1. Apache Maven 3.0.4 should be backwards compatibility with 2.x. For compatibility issues, see https://cwiki.apache.org/MAVEN/maven-3x-compatibility-notes.html @ text @d1 1 a1 1 $NetBSD$ @ 1.1 log @Initial revision @ text @d3 1 a3 1 --- bin/mvn.orig 2008-04-07 09:04:44.000000000 -0700 d5 1 a5 1 @@@@ -74,6 +74,15 @@@@ if [ -z "$JAVA_HOME" ] ; then d21 1 a21 1 @@@@ -156,8 +165,10 @@@@ fi d25 1 a25 1 - -classpath "${M2_HOME}"/boot/classworlds-*.jar \ d27 1 a27 1 + -classpath "${M2_HOME}"/lib/java/maven/boot/classworlds-*.jar \ d32 1 a32 2 ${CLASSWORLDS_LAUNCHER} $QUOTED_ARGS @ 1.1.1.1 log @Import apache-maven-2.0.9 as devel/apache-maven Maven is a software project management and comprehension tool. Based on the concept of a project object model (POM), Maven can manage a project's build, reporting and documentation from a central piece of information. @ text @@