head	1.4;
access;
symbols
	pkgsrc-2013Q2:1.4.0.24
	pkgsrc-2013Q2-base:1.4
	pkgsrc-2012Q4:1.4.0.22
	pkgsrc-2012Q4-base:1.4
	pkgsrc-2011Q4:1.4.0.20
	pkgsrc-2011Q4-base:1.4
	pkgsrc-2011Q2:1.4.0.18
	pkgsrc-2011Q2-base:1.4
	pkgsrc-2009Q4:1.4.0.16
	pkgsrc-2009Q4-base:1.4
	pkgsrc-2008Q4:1.4.0.14
	pkgsrc-2008Q4-base:1.4
	pkgsrc-2008Q3:1.4.0.12
	pkgsrc-2008Q3-base:1.4
	cube-native-xorg:1.4.0.10
	cube-native-xorg-base:1.4
	pkgsrc-2008Q2:1.4.0.8
	pkgsrc-2008Q2-base:1.4
	pkgsrc-2008Q1:1.4.0.6
	pkgsrc-2008Q1-base:1.4
	pkgsrc-2007Q4:1.4.0.4
	pkgsrc-2007Q4-base:1.4
	pkgsrc-2007Q3:1.4.0.2
	pkgsrc-2007Q3-base:1.4
	pkgsrc-2007Q2:1.2.0.8
	pkgsrc-2007Q2-base:1.2
	pkgsrc-2007Q1:1.2.0.6
	pkgsrc-2007Q1-base:1.2
	pkgsrc-2006Q4:1.2.0.4
	pkgsrc-2006Q4-base:1.2
	pkgsrc-2006Q3:1.2.0.2
	pkgsrc-2006Q3-base:1.2
	pkgsrc-2006Q2:1.1.0.2;
locks; strict;
comment	@# @;


1.4
date	2007.10.06.06.12.35;	author taca;	state dead;
branches;
next	1.3;

1.3
date	2007.09.30.04.08.16;	author taca;	state Exp;
branches;
next	1.2;

1.2
date	2006.09.07.15.40.01;	author taca;	state dead;
branches;
next	1.1;

1.1
date	2006.08.02.07.02.44;	author taca;	state Exp;
branches
	1.1.2.1;
next	;

1.1.2.1
date	2006.08.02.07.02.44;	author salo;	state dead;
branches;
next	1.1.2.2;

1.1.2.2
date	2006.08.02.13.59.02;	author salo;	state Exp;
branches;
next	;


desc
@@


1.4
log
@Update Ruby packages to 1.8.6-p111.

Basically, no change since previous update except Net::HTTP default
@@enable_post_connection_check was wrongly set to true.  (It might
cause compatibility problem.)
@
text
@$NetBSD: patch-ag,v 1.3 2007/09/30 04:08:16 taca Exp $

--- ext/openssl/lib/openssl/ssl.rb.orig	2007-02-13 08:01:19.000000000 +0900
+++ ext/openssl/lib/openssl/ssl.rb
@@@@ -88,7 +88,7 @@@@ module OpenSSL
             end
           }
         end
-        raise SSLError, "hostname not match"
+        raise SSLError, "hostname was not match with the server certificate"
       end
     end
 
@


1.3
log
@Add patches against Ruby 1.8.6-p111.  Since 1.8.6-p111 dosen't
officially released (SVN's tag only), I decide to keep pkgsrc's Ruby's
version.

This isn't leaf package but fixes security problem reported by
http://www.isecpartners.com/advisories/2007-006-rubyssl.txt.

Bump PKGREVISION.
@
text
@d1 1
a1 1
$NetBSD$
@


1.2
log
@Update Ruby to 1.8.5 (+ ruby-1-8 branch on 2006-09-07).

pkgsrc changes:

* Add RUBY_DYNAMIC_DIRS which cause generating dynamic PLIST entries.
* Move using buildlinks to rubyversion.mk.
* Merge converters/ruby-iconv to ruby18-base.

Ruby changes:

* too may, see ChangeLog file or
  http://eigenclass.org/hiki.rb?ruby+1.8.5+changelog
@
text
@d1 1
a1 1
$NetBSD: patch-ag,v 1.1 2006/08/02 07:02:44 taca Exp $
d3 1
a3 1
--- ext/openssl/lib/openssl/ssl.rb.orig	2005-05-22 19:16:56.000000000 +0900
d5 1
a5 9
@@@@ -82,8 +82,9 @@@@ module OpenSSL
         }
         if check_common_name
           cert.subject.to_a.each{|oid, value|
-            if oid == "CN" && value.casecmp(hostname) == 0
-              return true
+            if oid == "CN"
+              reg = Regexp.escape(value).gsub(/\\\*/, "[^.]+")
+              return true if /\A#{reg}\z/i =~ hostname
d9 5
@


1.1
log
@Add three patches accidently left on my work area.

- Add two miscellaneous patches for openssl and yaml libraries.
  They were left from last year, sigh.
- Add one more part for CVE-2006-3694.

Bump PKGREVISION.
@
text
@d1 1
a1 1
$NetBSD$
@


1.1.2.1
log
@file patch-ag was added on branch pkgsrc-2006Q2 on 2006-08-02 07:02:44 +0000
@
text
@d1 16
@


1.1.2.2
log
@Pullup ticket 1771 - requested by taca
security fixes for ruby18-base

Revisions pulled up:
- pkgsrc/lang/ruby18-base/Makefile		1.23
- pkgsrc/lang/ruby18-base/distinfo		1.13
- pkgsrc/lang/ruby18-base/patches/patch-ag	1.1
- pkgsrc/lang/ruby18-base/patches/patch-ah	1.1
- pkgsrc/lang/ruby18-base/patches/patch-cp	1.1

   Module Name:		pkgsrc
   Committed By:	taca
   Date:		Wed Aug  2 07:02:44 UTC 2006

   Modified Files:
   	pkgsrc/lang/ruby18-base: Makefile distinfo
   Added Files:
   	pkgsrc/lang/ruby18-base/patches: patch-ag patch-ah patch-cp

   Log Message:
   Add three patches accidently left on my work area.

   - Add two miscellaneous patches for openssl and yaml libraries.
     They were left from last year, sigh.
   - Add one more part for CVE-2006-3694.

   Bump PKGREVISION.
@
text
@a0 16
$NetBSD: patch-ag,v 1.1.2.1 2006/08/02 13:59:02 salo Exp $

--- ext/openssl/lib/openssl/ssl.rb.orig	2005-05-22 19:16:56.000000000 +0900
+++ ext/openssl/lib/openssl/ssl.rb
@@@@ -82,8 +82,9 @@@@ module OpenSSL
         }
         if check_common_name
           cert.subject.to_a.each{|oid, value|
-            if oid == "CN" && value.casecmp(hostname) == 0
-              return true
+            if oid == "CN"
+              reg = Regexp.escape(value).gsub(/\\\*/, "[^.]+")
+              return true if /\A#{reg}\z/i =~ hostname
             end
           }
         end
@