head 1.60; access; symbols pkgsrc-2023Q4:1.60.0.2 pkgsrc-2023Q4-base:1.60 pkgsrc-2023Q3:1.58.0.2 pkgsrc-2023Q3-base:1.58 pkgsrc-2023Q2:1.57.0.2 pkgsrc-2023Q2-base:1.57 pkgsrc-2023Q1:1.56.0.4 pkgsrc-2023Q1-base:1.56 pkgsrc-2022Q4:1.56.0.2 pkgsrc-2022Q4-base:1.56 pkgsrc-2022Q3:1.55.0.2 pkgsrc-2022Q3-base:1.55 pkgsrc-2022Q2:1.53.0.2 pkgsrc-2022Q2-base:1.53 pkgsrc-2022Q1:1.50.0.4 pkgsrc-2022Q1-base:1.50 pkgsrc-2021Q4:1.50.0.2 pkgsrc-2021Q4-base:1.50 pkgsrc-2021Q3:1.49.0.4 pkgsrc-2021Q3-base:1.49 pkgsrc-2021Q2:1.49.0.2 pkgsrc-2021Q2-base:1.49 pkgsrc-2021Q1:1.46.0.4 pkgsrc-2021Q1-base:1.46 pkgsrc-2020Q4:1.46.0.2 pkgsrc-2020Q4-base:1.46 pkgsrc-2020Q3:1.44.0.2 pkgsrc-2020Q3-base:1.44 pkgsrc-2020Q2:1.42.0.2 pkgsrc-2020Q2-base:1.42 pkgsrc-2020Q1:1.41.0.2 pkgsrc-2020Q1-base:1.41 pkgsrc-2019Q4:1.39.0.4 pkgsrc-2019Q4-base:1.39 pkgsrc-2019Q3:1.38.0.2 pkgsrc-2019Q3-base:1.38 pkgsrc-2019Q2:1.36.0.2 pkgsrc-2019Q2-base:1.36 pkgsrc-2019Q1:1.34.0.4 pkgsrc-2019Q1-base:1.34 pkgsrc-2018Q4:1.34.0.2 pkgsrc-2018Q4-base:1.34 pkgsrc-2018Q3:1.33.0.2 pkgsrc-2018Q3-base:1.33 pkgsrc-2018Q2:1.31.0.14 pkgsrc-2018Q2-base:1.31 pkgsrc-2018Q1:1.31.0.12 pkgsrc-2018Q1-base:1.31 pkgsrc-2017Q4:1.31.0.10 pkgsrc-2017Q4-base:1.31 pkgsrc-2017Q3:1.31.0.8 pkgsrc-2017Q3-base:1.31 pkgsrc-2017Q2:1.31.0.4 pkgsrc-2017Q2-base:1.31 pkgsrc-2017Q1:1.31.0.2 pkgsrc-2017Q1-base:1.31 pkgsrc-2016Q4:1.30.0.4 pkgsrc-2016Q4-base:1.30 pkgsrc-2016Q3:1.30.0.2 pkgsrc-2016Q3-base:1.30 pkgsrc-2016Q2:1.28.0.4 pkgsrc-2016Q2-base:1.28 pkgsrc-2016Q1:1.28.0.2 pkgsrc-2016Q1-base:1.28 pkgsrc-2015Q4:1.26.0.2 pkgsrc-2015Q4-base:1.26 pkgsrc-2015Q3:1.25.0.4 pkgsrc-2015Q3-base:1.25 pkgsrc-2015Q2:1.25.0.2 pkgsrc-2015Q2-base:1.25 pkgsrc-2015Q1:1.24.0.2 pkgsrc-2015Q1-base:1.24 pkgsrc-2014Q4:1.22.0.6 pkgsrc-2014Q4-base:1.22 pkgsrc-2014Q3:1.22.0.4 pkgsrc-2014Q3-base:1.22 pkgsrc-2014Q2:1.22.0.2 pkgsrc-2014Q2-base:1.22 pkgsrc-2014Q1:1.21.0.2 pkgsrc-2014Q1-base:1.21 pkgsrc-2013Q4:1.18.0.6 pkgsrc-2013Q4-base:1.18 pkgsrc-2013Q3:1.18.0.4 pkgsrc-2013Q3-base:1.18 pkgsrc-2013Q2:1.18.0.2 pkgsrc-2013Q2-base:1.18 pkgsrc-2013Q1:1.17.0.2 pkgsrc-2013Q1-base:1.17 pkgsrc-2012Q4:1.16.0.2 pkgsrc-2012Q4-base:1.16 pkgsrc-2012Q3:1.12.0.2 pkgsrc-2012Q3-base:1.12 pkgsrc-2012Q2:1.11.0.2 pkgsrc-2012Q2-base:1.11 pkgsrc-2012Q1:1.10.0.2 pkgsrc-2012Q1-base:1.10 pkgsrc-2011Q4:1.8.0.4 pkgsrc-2011Q4-base:1.8 pkgsrc-2011Q3:1.8.0.2 pkgsrc-2011Q3-base:1.8 pkgsrc-2011Q2:1.7.0.2 pkgsrc-2011Q2-base:1.7 pkgsrc-2011Q1:1.5.0.2 pkgsrc-2011Q1-base:1.5 pkgsrc-2010Q4:1.4.0.8 pkgsrc-2010Q4-base:1.4 pkgsrc-2010Q3:1.4.0.6 pkgsrc-2010Q3-base:1.4 pkgsrc-2010Q2:1.4.0.4 pkgsrc-2010Q2-base:1.4 pkgsrc-2010Q1:1.4.0.2 pkgsrc-2010Q1-base:1.4 pkgsrc-2009Q4:1.3.0.2 pkgsrc-2009Q4-base:1.3 pkgsrc-2009Q3:1.2.0.4 pkgsrc-2009Q3-base:1.2 pkgsrc-2009Q2:1.2.0.2 pkgsrc-2009Q2-base:1.2 pkgsrc-2009Q1:1.1.1.1.0.2 pkgsrc-2009Q1-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.60 date 2023.11.08.13.20.47; author wiz; state Exp; branches; next 1.59; commitid PsuHTklAIsF4bOLE; 1.59 date 2023.10.24.22.10.50; author wiz; state Exp; branches; next 1.58; commitid MTsrqKm6aGrQAVJE; 1.58 date 2023.08.14.05.25.10; author wiz; state Exp; branches; next 1.57; commitid LOSB79OLVxvXjIAE; 1.57 date 2023.04.19.08.08.41; author adam; state Exp; branches; next 1.56; commitid B8gCWhWtMX9vZGlE; 1.56 date 2022.11.23.16.18.59; author adam; state Exp; branches; next 1.55; commitid ju2K3LUYlTJKqQ2E; 1.55 date 2022.06.30.11.18.47; author nia; state Exp; branches; next 1.54; commitid AhctUV91Vubws3KD; 1.54 date 2022.06.28.11.35.35; author wiz; state Exp; branches; next 1.53; commitid D2UoJrTHpoHEANJD; 1.53 date 2022.06.07.07.39.45; author wiz; state Exp; branches; next 1.52; commitid PBoUfjRnGhmEZ4HD; 1.52 date 2022.05.19.01.23.31; author khorben; state Exp; branches; next 1.51; commitid fhhwCt765ijevBED; 1.51 date 2022.04.18.19.10.05; author adam; state Exp; branches; next 1.50; commitid eC9Na3jrfOOUpIAD; 1.50 date 2021.12.08.16.02.33; author adam; state Exp; branches; next 1.49; commitid 2PyWjHx5T8rqARjD; 1.49 date 2021.06.08.07.34.48; author manu; state Exp; branches; next 1.48; commitid asUgv6iXOnH4FiWC; 1.48 date 2021.05.24.19.53.52; author wiz; state Exp; branches; next 1.47; commitid qokaiStTApGMcrUC; 1.47 date 2021.04.21.11.40.37; author adam; state Exp; branches; next 1.46; commitid fph0Axs0eT3az9QC; 1.46 date 2020.12.04.20.45.39; author nia; state Exp; branches; next 1.45; commitid FPz71MqRX3WN0tyC; 1.45 date 2020.11.05.09.07.06; author ryoon; state Exp; branches; next 1.44; commitid VqGaBtHnBBcd5GuC; 1.44 date 2020.08.31.18.11.07; author wiz; state Exp; branches; next 1.43; commitid 7zxRbfOkDOoxbfmC; 1.43 date 2020.08.12.14.15.33; author manu; state Exp; branches; next 1.42; commitid HHOkgPjQHDIJvMjC; 1.42 date 2020.06.02.08.22.54; author adam; state Exp; branches; next 1.41; commitid nisovMpvvZm3RCaC; 1.41 date 2020.03.08.16.48.07; author wiz; state Exp; branches; next 1.40; commitid rcNYzTQo8icypCZB; 1.40 date 2020.01.18.21.48.22; author jperkin; state Exp; branches; next 1.39; commitid JW4hJgY8ZdoTFdTB; 1.39 date 2019.11.04.21.12.54; author rillig; state Exp; branches; next 1.38; commitid G51T39p39YNQTzJB; 1.38 date 2019.09.02.13.19.55; author adam; state Exp; branches; next 1.37; commitid JNtg51I3DnX4jrBB; 1.37 date 2019.08.11.13.22.46; author wiz; state Exp; branches; next 1.36; commitid Ifet9Pg6Qt99ZByB; 1.36 date 2019.04.26.14.12.44; author maya; state Exp; branches; next 1.35; commitid Y6vMANX4s26gKRkB; 1.35 date 2019.04.26.13.14.12; author maya; state Exp; branches; next 1.34; commitid U4pISddzN4WXpRkB; 1.34 date 2018.12.09.21.05.35; author adam; state Exp; branches; next 1.33; commitid Je6d0kS6YPv3ta3B; 1.33 date 2018.08.22.09.46.18; author wiz; state Exp; branches; next 1.32; commitid YLub8g3ofvFGb6PA; 1.32 date 2018.07.03.05.03.30; author adam; state Exp; branches; next 1.31; commitid bH4MNADzVzoIfEIA; 1.31 date 2017.01.01.14.43.54; author wiz; state Exp; branches; next 1.30; commitid TmfhF2MIYbgU4hAz; 1.30 date 2016.07.09.13.04.03; author wiz; state Exp; branches; next 1.29; commitid k9A2yv7vTRunbEdz; 1.29 date 2016.07.09.06.38.54; author wiz; state Exp; branches; next 1.28; commitid dlqnocGpOoXV2Cdz; 1.28 date 2016.03.14.09.43.42; author manu; state Exp; branches; next 1.27; commitid 694xCN3Gqru1QAYy; 1.27 date 2016.03.05.11.27.54; author jperkin; state Exp; branches; next 1.26; commitid 1LoxeQftu903HrXy; 1.26 date 2015.12.05.21.25.56; author adam; state Exp; branches; next 1.25; commitid bgA0CynThkP3WNLy; 1.25 date 2015.06.12.10.51.02; author wiz; state Exp; branches; next 1.24; commitid B4JmCfaVUbiY38py; 1.24 date 2015.04.02.16.55.09; author wiz; state Exp; branches; next 1.23; commitid 60IsSwWmN6Lzn2gy; 1.23 date 2015.04.01.14.05.02; author manu; state Exp; branches; next 1.22; commitid 4BAkNVmhVvgXrTfy; 1.22 date 2014.05.29.23.37.19; author wiz; state Exp; branches; next 1.21; commitid laryHfkCalgYtuCx; 1.21 date 2014.02.12.23.18.33; author tron; state Exp; branches; next 1.20; commitid dfJj7CwMMWJzNRox; 1.20 date 2014.02.05.09.26.58; author manu; state Exp; branches; next 1.19; commitid Al0lBxGFUxLQqTnx; 1.19 date 2014.01.01.11.52.03; author wiz; state Exp; branches; next 1.18; commitid QYCwxCyUCmbkmpjx; 1.18 date 2013.05.31.12.41.51; author wiz; state Exp; branches; next 1.17; commitid hIeXGcx6VfKHwMRw; 1.17 date 2013.02.06.23.21.33; author jperkin; state Exp; branches; next 1.16; 1.16 date 2012.12.16.01.52.33; author obache; state Exp; branches; next 1.15; 1.15 date 2012.12.15.15.29.28; author manu; state Exp; branches; next 1.14; 1.14 date 2012.11.07.15.31.23; author joerg; state Exp; branches; next 1.13; 1.13 date 2012.10.03.21.57.24; author wiz; state Exp; branches; next 1.12; 1.12 date 2012.09.15.10.06.15; author obache; state Exp; branches; next 1.11; 1.11 date 2012.06.14.07.43.12; author sbd; state Exp; branches; next 1.10; 1.10 date 2012.03.03.00.12.00; author wiz; state Exp; branches; next 1.9; 1.9 date 2012.02.06.12.41.26; author wiz; state Exp; branches; next 1.8; 1.8 date 2011.09.08.00.17.03; author joerg; state Exp; branches; next 1.7; 1.7 date 2011.04.22.13.42.16; author obache; state Exp; branches; next 1.6; 1.6 date 2011.04.04.08.30.30; author manu; state Exp; branches; next 1.5; 1.5 date 2011.03.24.03.04.16; author obache; state Exp; branches; next 1.4; 1.4 date 2010.01.17.12.02.41; author wiz; state Exp; branches; next 1.3; 1.3 date 2009.12.01.08.49.46; author manu; state Exp; branches; next 1.2; 1.2 date 2009.05.26.05.26.00; author manu; state Exp; branches; next 1.1; 1.1 date 2009.03.02.16.46.01; author manu; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 2009.03.02.16.46.01; author manu; state Exp; branches; next ; desc @@ 1.60 log @*: recursive bump for icu 74.1 @ text @# $NetBSD: Makefile,v 1.59 2023/10/24 22:10:50 wiz Exp $ PKGREVISION= 11 CONFIGURE_ENV+= INKSCAPE=/bin/false CONFIGURE_ARGS+= --disable-python CONFIGURE_ARGS+= --disable-php5 CONFIGURE_ARGS+= --disable-php7 CONFIGURE_ARGS+= --disable-perl CONFIGURE_ARGS+= --enable-gtk-doc PYTHON_VERSIONS_ACCEPTED= 27 # not yet ported as of 2.4.1 PYTHON_FOR_BUILD_ONLY= yes EXTRACT_USING= bsdtar BUILDLINK_API_DEPENDS.gtk-doc+= gtk-doc>=1.32nb9 .include "../../textproc/gtk-doc/buildlink3.mk" .include "../../security/lasso/Makefile.common" @ 1.59 log @*: bump for openssl 3 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.58 2023/08/14 05:25:10 wiz Exp $ d3 1 a3 1 PKGREVISION= 10 @ 1.58 log @*: recursive bump for Python 3.11 as new default @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.57 2023/04/19 08:08:41 adam Exp $ d3 1 a3 1 PKGREVISION= 9 @ 1.57 log @revbump after textproc/icu update @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.56 2022/11/23 16:18:59 adam Exp $ d3 1 a3 1 PKGREVISION= 8 @ 1.56 log @massive revision bump after textproc/icu update @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.55 2022/06/30 11:18:47 nia Exp $ d3 1 a3 1 PKGREVISION= 7 @ 1.55 log @*: Revbump packages that use Python at runtime without a PKGNAME prefix @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.54 2022/06/28 11:35:35 wiz Exp $ d3 1 a3 1 PKGREVISION= 6 @ 1.54 log @*: recursive bump for perl 5.36 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.53 2022/06/07 07:39:45 wiz Exp $ d3 1 a3 1 PKGREVISION= 5 @ 1.53 log @lasso: fix PLIST for fixed gtk-doc and depend on it. Bump PKGREVISION. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.52 2022/05/19 01:23:31 khorben Exp $ d3 1 a3 1 PKGREVISION= 4 @ 1.52 log @lasso: fix the build with inkscape installed Basically lasso installs additional files when Inkscape is available, which it would normally re-generate but are already in the source tree. This unconditionally caches "/bin/false" as the path to Inkscape, which: * will always behave the same (install the missing files) * will break if they ever have to be re-generated (thus exposing the issue directly, which is a good thing) In addition since lasso can provide additional documentation when gtk-doc is installed, I have enabled this by default as well. Bumps PKGREVISION. Reviewed by manu@@, thanks! @ text @d1 3 a3 1 # $NetBSD: Makefile,v 1.51 2022/04/18 19:10:05 adam Exp $ d17 1 a17 3 PKGREVISION= 3 BUILDLINK_API_DEPENDS.gtk-doc+= gtk-doc>=1.20 @ 1.51 log @revbump for textproc/icu update @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.50 2021/12/08 16:02:33 adam Exp $ d3 1 d8 1 d15 4 a18 2 #PKGREVISION= 1 PKGREVISION= 2 @ 1.50 log @revbump for icu and libffi @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.49 2021/06/08 07:34:48 manu Exp $ d14 1 a14 1 PKGREVISION= 1 @ 1.49 log @Update lasso to 2.7.0 Changes from 2.6.1, from the NEWS file 2.7.0 - June 1st 2021 ---------------------- 36 commits, 45 files changed, 1945 insertions, 177 deletions * CVE-2021-28091: Fix signature checking on unsigned response with multiple assertions https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28091 When AuthnResponse messages are not signed (which is permitted by the specifiation), all assertion's signatures should be checked, but currently after the first signed assertion is checked all following assertions are accepted without checking their signature, and the last one is considered the main assertion. This patch : * check signatures from all assertions if the message is not signed, * refuse messages with assertion from different issuers than the one on the message, to prevent assertion bundling event if they are signed. * Python: improve display of warnings in the binding generator * replace deprecated index() by strchr() (#51385) * Fix: new provider reference count is incremented one time too many (#51420) * docs: update gtk-doc-tools integration (#50441) * bindings: disable java tests when java is disabled * Fix: python3 bindings (#51249) * configure.ac: disable java bindings * build: update to use origin/main * debian: add packaging for debian-buster * jenkins.sh: build against all available python versions (#44287) * python: do not leak out_pyvalue if method call protocol is not respected (#44287) * python: do not raise in valid_seq() (#44287) * python: return NULL if get_list_of_strings() fails (#44287) * python: return NULL if get_list_of_pygobject fails (#44287) * python: return NULL if get_list_of_xml_nodes fails (#44287) * python: return NULL if set_list_of_pygobject fails (#44287) * python: return NULL if set_list_of_xml_nodes fails (#44287) * python: return NULL if set_list_of_strings fails (#44287) * python: return NULL if set_hashtable_of_strings fails (#44287) * python: return NULL if set_hashtable_of_pygobject fails (#44287) * python: free internal string buffer if needed in set_list_of_strings (#44287) * python: check if hashtable is NULL before deallocatio (#44287)n * python: add a failure label to method wrappers (#44287) * python: add macro for early return (#44287) * python: remove newline before method call (#44287) * python: simplify get_logger_object (#44287) * python: fix warning about discarded const modifier (#44287) * python: replace exception by warning on logging path (#44287) * python: use simpler call format to prevent warning about PY_SSIZE_T_CLEAN (#44287) * python: remove deprecated PyErr_Warn (#44287) * python: remove unused PyString_Size (#44287) * python: Exception.message was removed in python3 (#45995) * tools: reimplement xmlURIEscapeStr to respect RFC3986 (#45581) * configure.ac: support php7 interpreter on CentOS 8 (#42299) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.42 2020/06/02 08:22:54 adam Exp $ d14 1 @ 1.48 log @*: recursive bump for perl 5.34 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.47 2021/04/21 11:40:37 adam Exp $ d5 1 a13 1 PKGREVISION= 5 @ 1.47 log @revbump for textproc/icu @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.46 2020/12/04 20:45:39 nia Exp $ d13 1 a13 1 PKGREVISION= 4 @ 1.46 log @Revbump packages with a runtime Python dep but no version prefix. For the Python 3.8 default switch. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.45 2020/11/05 09:07:06 ryoon Exp $ d13 1 a13 1 PKGREVISION= 3 @ 1.45 log @*: Recursive revbump from textproc/icu-68.1 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.44 2020/08/31 18:11:07 wiz Exp $ d13 1 a13 1 PKGREVISION= 2 @ 1.44 log @*: bump PKGREVISION for perl-5.32. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.43 2020/08/12 14:15:33 manu Exp $ d13 1 a13 1 PKGREVISION= 1 @ 1.43 log @Updated security/lasso to 2.6.1 Changes since previous pkgsrc version 2.5.1, from the NEWS file Also add a fix for proper escape single quotes in RelayState From upstream https://dev.entrouvert.org/issues/45581 2.6.1 - Aptil 22th 2019 ---------------------- 42 commits, 425 files changed, 3894 insertions, 795 deletions - Keep order of SessionIndexes - Clear SessionIndex when private SessionIndexes is empty (#41950) - misc: clear warnings about class_init signature using coccinelle - tests: fix compilation with check>0.12 (#39101) - Sort input file lists to make build deterministic (#40454) - debian: disable php7 (#28608) - Modify .gitignore for PHP 7 binding (#28608) - Add PHP 7 binding (#28608) - Fix tests broken by new DEBUG logs (#12829) - Improve error logging during node parsing (#12829) - Improve configure compatibility (#32425) - Improve compatibility with Solaris (#32425) - Fix reference count in lasso_server_add_provider2 (fixes #35061) - Fix python multi-version builds on jessie and stretch - docs: do not use Internet to fetch DTDs, entities or documents (#35590) - fix missing include for index() (fixes #33791) - PAOS: Do not populate "Destination" attribute (Dmitrii Shcherbakov) - export symbol lasso_log (#33784) - Do not ignore WantAuthnRequestSigned value with hint MAYBE (#33354) - Use io.open(encoding=utf8) in extract_symbols/sections.py (#33360) - xml: adapt schema in saml2:AuthnContext (#29340) - Fix ECP signature not found error when only assertion is signed (#26828) - autoconf: search python interpreters by versions (John Dennis) - python: make tools compatible with Py3 (John Dennis) - python: run tests and tools with same interpreter as binding target (John Dennis) - improve resiliency of lasso_inflate (#24853) - fix segfault in lasso_get_saml_message (#24830) - python: add classmethod Profile.getIssuer (#24831) - website: add news about 2.6.0 release - debian: sync with debian package (#24595) - faq: fix references to lasso.profileGetIssuer (#24832) - python: add a classmethod for lasso.profileGetIssuer (#24831) - tools: fix segfault in lasso_get_saml_message (fixes #24830) - jenkins.sh: add a make clean to prevent previous build to break new ones - tools: set output buffer size in lasso_inflate to 20 times the input size (fixes #24853) - Use python interpreter specified configure script - Make Python scripts compatible with both Py2 and Py3 - fix duplicate definition of LogoutTestCase and logoutSuite - Downcase UTF-8 file encoding name - Make more Python scripts compatible with both Py2 and Py3 - Configure should search for versioned Python interpreter. - Clean python cache when building python3 binding - Move AC_SUBST declaration for AM_CFLAGS with alike (#24771) - Remove -Werror from --enable-debugging (fixes #24771) - xml: fix parsing of saml:AuthnContext (fixes #25640) 2.6.0 - June 1st 2018 --------------------- 32 commits, 73 files changed, 1920 insertions, 696 deletions - add inline implementation of lasso_log - Choose the Reference transform based on the chosen Signature transform (fixes #10155) - add support for C14N 1.1 methods and C14N withComments methods (fixes #4863) - remove DGME specific commented out code - add docstring on SHA-2 signature method enum - tests: silence unused variable warning - check node names in lasso_node_impl_init_from_xml() (fixes #47) - fix segfault when parsed node has no namespace (#47) - do not call xmlSecKeyDuplicate is source key is NULL - enable user supplied CFLAGS - Fix ecp test validate_idp_list() (fixes #11421) - tests: convert log level as string - fix definitions of error, critical and warning macros (fixes #12830) - jenkins.sh: add V=1 - add defined for the XML namespace - ignore unknown attributes from the xsi: namespace - saml-2.0: improve support for free content inside samlp2:Extensions (fixes #18581) - debian: initialize stretch packaging with a copy of upstream debian (#21772) - replace use of which is deprecated (fixes #18771) - fix get_issuer and get_in_response_to - route logs from libxml2 and libxmlsec through GLib logging - tests: prevent crash in glib caused by abort on recursive logging - java: stop setting a bytecode version target - add xmlsec_soap.h to Makefile - python: route logs for libxml2 and libxmlsec2 to their own logger - perl: force use of the in-tree lasso when running tests (fixes #23276) - perl: set DESTDIR and PREFIX at Makefile's creation - Replace xmlSecSoap functions with lasso implementations - add a pem-public-key runtime flag - deprecate loading PEM formatted public keys in lasso_xmlsec_load_key_info - perl/tests: build Makefile.perl before running the tests @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.42 2020/06/02 08:22:54 adam Exp $ d13 1 @ 1.42 log @Revbump for icu @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.41 2020/03/08 16:48:07 wiz Exp $ d12 1 a12 1 PKGREVISION= 6 @ 1.41 log @*: recursive bump for libffi @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.40 2020/01/18 21:48:22 jperkin Exp $ d12 1 a12 1 PKGREVISION= 5 @ 1.40 log @*: Recursive revision bump for openssl 1.1.1. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.39 2019/11/04 21:12:54 rillig Exp $ d12 1 a12 1 PKGREVISION= 4 @ 1.39 log @security: align variable assignments pkglint -Wall -F --only aligned --only indent -r No manual corrections. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.38 2019/09/02 13:19:55 adam Exp $ d12 1 a12 1 PKGREVISION= 3 @ 1.38 log @Changed PYTHON_VERSIONS_INCOMPATIBLE to PYTHON_VERSIONS_ACCEPTED; needed for future Python 3.8 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.37 2019/08/11 13:22:46 wiz Exp $ d8 1 a8 1 PYTHON_FOR_BUILD_ONLY= yes @ 1.37 log @Bump PKGREVISIONs for perl 5.30.0 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.36 2019/04/26 14:12:44 maya Exp $ d7 1 a7 1 PYTHON_VERSIONS_INCOMPATIBLE= 36 37 # not yet ported as of 2.4.1 @ 1.36 log @fix some whitespace, mostly introduced in the previous python 3.4 / 3.5 removal commit. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.35 2019/04/26 13:14:12 maya Exp $ d12 1 a12 1 PKGREVISION= 2 @ 1.35 log @Omit mentions of python 34 and 35, after those were removed. - Includes some whitespace changes, to be handled in a separate commit. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.34 2018/12/09 21:05:35 adam Exp $ d7 1 a7 1 PYTHON_VERSIONS_INCOMPATIBLE= 36 37 # not yet ported as of 2.4.1 @ 1.34 log @Removed commented-out PKGREVISIONs @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.33 2018/08/22 09:46:18 wiz Exp $ d7 1 a7 1 PYTHON_VERSIONS_INCOMPATIBLE= 34 35 36 37 # not yet ported as of 2.4.1 @ 1.33 log @Recursive bump for perl5-5.28.0 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.32 2018/07/03 05:03:30 adam Exp $ a11 1 #PKGREVISION= 1 @ 1.32 log @extend PYTHON_VERSIONS_ for Python 3.7 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.31 2017/01/01 14:43:54 wiz Exp $ d13 1 a13 1 PKGREVISION= 1 @ 1.31 log @Add python-3.6 to incompatible versions. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.30 2016/07/09 13:04:03 wiz Exp $ d7 1 a7 1 PYTHON_VERSIONS_INCOMPATIBLE= 34 35 36 # not yet ported as of 2.4.1 @ 1.30 log @Remove python33: adapt all packages that refer to it. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.29 2016/07/09 06:38:54 wiz Exp $ d7 1 a7 1 PYTHON_VERSIONS_INCOMPATIBLE= 34 35 # not yet ported as of 2.4.1 @ 1.29 log @Bump PKGREVISION for perl-5.24.0 for everything mentioning perl. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.28 2016/03/14 09:43:42 manu Exp $ d7 1 a7 1 PYTHON_VERSIONS_INCOMPATIBLE= 33 34 35 # not yet ported as of 2.4.1 @ 1.28 log @Update lasso to 2.5.1 Changes since 2.4.1 from NEWS file: 2.5.1 - February 19th 2016 --------------------------- 17 commits, 16 files changed, 1096 insertions, 42 deletions - Add missing urn constants used in PAOS HTTP header - Set NotBefore in SAML 2.0 login assertions - tests: fix leak in test test16_test_get_issuer - id-ff: fix leak of profile->private_data->message_id - saml-2.0: fix leak of message_id in lasso_profile_saml20_build_paos_request_msg - tests: fix leaks in test_ecp - xml: fix wrong termination of comment - xml: fix leak in lasso_soap_envelope_new_full - profile: fix leak of private idp_list field - saml-2.0: fix leaks of url - tests: fix leak - tests: update valgrind suppressions - perl: remove quotes from $PERL -V::ccflags: output (#9572) - Fix wrong snippet type (fixes #9616). Thanks to Brett Gardner for the patch. - tools.c: use correct NID and digest length when building RSA signature using SHA-2 digest (fixes #10019) Thanks to Brett Gardner for the patch. - bindings/php5: fix enum getters and setters (fixes #10032). Thanks to Brett Gardner for the bug report. - fix warning about INCLUDES directive 2.5.0 - September 2nd 2015 -------------------------- 151 commits, 180 files changed, 8391 insertions, 1339 deletions - lots of bugfixes (reported by static analysis tools like clang, coverity and manual inspection) thanks to Simo Sorce and John Dennis from RedHat - xsd:choices are now parsed correctly by implementing a real finite automata for parsing XML documents. New flag for jumping forward and backward in schema snippets have been added. It fixes parsing of message from third party not following the ordre from the schema (they are entitled to do it but most SAML implementations do not) - added C CGI examples for SP and IdP side - removed the _POSIX_SOURCE declaration - added support for the SHA-2 family of hash functions - fixed protocol profile selection when parsing AuthnRequest - added support for Python 3, thanks to Houzefa Abbasbhay from XCG Consulting - fixed default value of WantAuthnRequestSigned in metadata parsing - SAML 2.0 ECP is now functionnal, thanks to John Dennis from RedHat - added two new API function to LassoProfile to extract the Issuer and InResponseTo attribute of messages, allowing pre-treatment before parsing the message, to load the metadata of the remote provider, or find the request which the response matches. - fixed segfault when parsing HTTP-Redirect marlformed base64 content - added support for automake 1.15 (jdennis) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.27 2016/03/05 11:27:54 jperkin Exp $ d13 1 @ 1.27 log @Bump PKGREVISION for security/openssl ABI bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.26 2015/12/05 21:25:56 adam Exp $ d12 1 a12 1 PKGREVISION= 2 @ 1.26 log @Extend PYTHON_VERSIONS_INCOMPATIBLE to 35 @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.25 2015/06/12 10:51:02 wiz Exp $ d12 1 a12 1 PKGREVISION= 1 @ 1.25 log @Recursive PKGREVISION bump for all packages mentioning 'perl', having a PKGNAME of p5-*, or depending such a package, for perl-5.22.0. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.24 2015/04/02 16:55:09 wiz Exp $ d7 1 a7 1 PYTHON_VERSIONS_INCOMPATIBLE= 33 34 # not yet ported as of 2.4.1 @ 1.24 log @Mark as not ready for python-3.x. Some cleanup. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.23 2015/04/01 14:05:02 manu Exp $ d12 1 @ 1.23 log @Upgrade lasso to 2.4.1 to fix CVE-2015-1783, approved by wiz@@ NEWS from last pkgsrc version: 2.4.1 - Septembre 28th 2014 --------------------------- 56 commits, 35 files changed, 12590 insertions(+), 31117 deletions(-) - fix bug #4455 runtime bug in perl binding on debian wheezy 32bits # - fix warning on g_type_init() on GLib > 2.36 - lot of null pointer, boundary checks, and dead code removal after validation using Coverity and Clang static analyzer (Simo Sorce) - always set NotOnOrAfter on the Condition element - fix pkg-config typo (Simon Josefsson) - Python binding now conserve the order of session indexes values - fix memory leaks - Python bindings now automatically convert unicode values to UTF-8 2.4.0 - January 7th 2014 ------------------------ 281 commits, 933 files changed, 45384 insertions, 6313 deletions Minor version number increase since ABI was extended (new methods). - Key rollover support: Lasso is now able to accept messages signed by any key declared as a signing key in a metadata and not just the last one. You can also decrypt encrypted nodes using any of a list of private keys, allowing roll-over of encryption certificates. Signing key roll-over is automatic, your provider just have to provide the new signing key in their metadata. For multiple-encryption key you can load another private key than the one loaded in the LassoServer constuctor with code like that: >>> import lasso >>> server = lasso.Server(our_metadata, first_private_key_path) >>> server.setEncryptionPrivateKey(second_private_key_path) See the FAQ file for the workflow of a proper key roll-over. - Partial logout response now produces a specific error code when parsed by lasso_logout_process_response_msg() - Bugs in lasso_assertion_query_build_request_msg() were fixed - Processing of assertions is not stopped when checking that first level status code is not success, so that later code can check the second level status code. - A new generic error for denied request was added, LASSO_PROFILE_ERROR_REQUEST_DENIED - A new API lasso_server_load_metadata() was added to load federation files (XML files containing metadata from multiple providers) and to check signatures on them. - Better warning and errors are reported in logs when failing to load a metadata file. - Bugs around missing namespace declaration for dump file were fixed, it prevented reloading dumped object (like LassoLogin). - lasso_node_get_xml_node_for_any_type() must be able to copy the content of an XML node to another (namespace, attribute and children). It did not, now it is fixed. It can be used for example to add specific attribute like xsi:type="string" to a Saml2AttributeValue. Here is a python snippet to do that: >>> import lasso >>> a = lasso.Saml2AttributeValue() >>> a.setOriginalXmlnode('Value') >>> print a.debug(0) Value - support for symetric keys signatures: for a long time XMLDsig standard has supported HMAC signature, or signature based on a shared secret key an hash algorithm. Lasso now supports to share a key with another Lasso using service or identity provider and to verify and sign SAML exchange using this key. Performance can be 100 times more than with assymetric cryptography, i.e. RSA. - nodes able to hold any XML attribyte (like saml:AttributeValue) contains a hashtable to for holding those attributes, those hashtable have a new syntax for attributes of another namespace than the current node namespace, inspired by the Python ElementTree library: {the_namespace}the_attribute_name ex: {http://www.w3.org/2001/XMLSchema-instance}type for the classic xsi:type attribute. - xmldsig:X509Data node now possess a binding as a Lasso object. You can use it combined with the new class LassoSaml2KeyInformationDataType to use the holder-of-key subject confirmation method. - The perfs benchmarking tools now allows to select a different metadata set (for example to test with different public key sizes). - Perl minimal version for the binding was downgraded to 5 - pseudo-XSchema validation: the new XML deserializer does more to enforce constraints of the schema defining SAML messages. It means Lasso is less forgiving with non-conform implementation of SAML. - thin-sessions mode: A new flag was added named thin-session, you can set it using lasso_set_flag("thin-sessions") or by setting the LASSO_FLAG environement variable to the string "thin-sessions". The effect of this flag is to remove complete storage of assertions in the LassoSession object, which was made mainly to support logout and the artifact binding for ID-FF 1.2. A new thinner structure is used for supporting logout, and ID-FF 1.2 can now use the same storage mechanism as the SAML 2 implementation for the artifact binding (i.e. using lasso_profile_get_artifact_message after artifact generation and lasso_profile_set_artifact_message before artifact retrieval). - better initialization and access to SessionIndex in logout requests: LassoSession now store all generated SessionIndex for a session using a small structure, using it the LassoLogout profile can now initialize LassoLogout message with all of them. It's not necessary to implement this functionnalitý in your service or identity provider anymore. - new LassoKey object: this new class was introduced to simplify management of keys when using shared key signature. But you can also use it to load assymetric keys. In the future it should gain API to do XML signature and encryptiong independently of any SAML 2.0 or ID-FF 1.2 exchange. Providing the first simple binding of libxmlsec to Python. - Improvements to autoconf and automake files to compile under Darwin (Mac Os X) and Fedora. - a FAQ file was started. - added API: LASSO_LOGOUT_ERROR_PARTIAL_LOGOUT LASSO_PROFILE_ERROR_ENDPOINT_INDEX_NOT_FOUND LASSO_PROFILE_ERROR_REQUEST_DENIED LASSO_PROVIDER_ROLE_ALL LASSO_SERVER_ERROR_NO_PROVIDER_LOADED LASSO_SERVER_LOAD_METADATA_FLAG_CHECK_ENTITIES_DESCRIPTOR_SIGNATURE LASSO_SERVER_LOAD_METADATA_FLAG_CHECK_ENTITY_DESCRIPTOR_SIGNATURE LASSO_SERVER_LOAD_METADATA_FLAG_DEFAULT LASSO_SERVER_LOAD_METADATA_FLAG_INHERIT_SIGNATURE LASSO_SIGNATURE_METHOD_HMAC_SHA1 LASSO_SIGNATURE_METHOD_NONE LASSO_XMLENC_ERROR_INVALID_ENCRYPTED_DATA LASSO_XMLENC_HREF LASSO_XMLENC_PREFIX struct LassoDsX509Data { LassoDsX509DataPrivate* private_data } struct LassoKey { LassoKeyPrivate* private_data } struct LassoSaml2KeyInfoConfirmationDataType { LassoSaml2KeyInfoConfirmationDataTypePrivate* private_data } LassoServerLoadMetadataFlag LassoDsX509Data* lasso_ds_key_value_get_x509_data ( LassoDsKeyValue* key_value ) None lasso_ds_key_value_set_x509_data ( LassoDsKeyValue* key_value, LassoDsX509Data* x509_data ) const char* lasso_ds_x509_data_get_certificate ( LassoDsX509Data* x509_data ) const char* lasso_ds_x509_data_get_crl ( LassoDsX509Data* x509_data ) const char* lasso_ds_x509_data_get_subject_name ( LassoDsX509Data* x509_data ) GType lasso_ds_x509_data_get_type ( ) LassoDsX509Data* lasso_ds_x509_data_new ( ) None lasso_ds_x509_data_set_certificate ( LassoDsX509Data* x509_data, const char* certificate ) None lasso_ds_x509_data_set_crl ( LassoDsX509Data* x509_data, const char* crl ) None lasso_ds_x509_data_set_subject_name ( LassoDsX509Data* x509_data, const char* subject_name ) GType lasso_key_get_type ( ) LassoKey* lasso_key_new_for_signature_from_base64_string ( char* base64_string, char* password, LassoSignatureMethod signature_method, char* certificate ) LassoKey* lasso_key_new_for_signature_from_file ( char* filename_or_buffer, char* password, LassoSignatureMethod signature_method, char* certificate ) char* lasso_key_query_sign ( LassoKey* key, const char* query ) lasso_error_t lasso_key_query_verify ( LassoKey* key, const char* query ) xmlNode* lasso_key_saml2_xml_sign ( LassoKey* key, const char* id, xmlNode* document ) lasso_error_t lasso_key_saml2_xml_verify ( LassoKey* key, char* id, xmlNode* document ) GList* lasso_lib_logout_request_get_session_indexes ( LassoLibLogoutRequest* lib_logout_request ) None lasso_lib_logout_request_set_session_indexes ( LassoLibLogoutRequest* lib_logout_request, GList* session_indexes ) lasso_error_t lasso_provider_add_key ( LassoProvider* provider, LassoKey* key, gboolean after ) lasso_error_t lasso_provider_set_server_signing_key ( LassoProvider* provider, LassoKey* key ) int lasso_provider_verify_signature ( LassoProvider* provider, const char* message, const char* id_attr_name, LassoMessageFormat format ) GList* lasso_saml2_key_info_confirmation_data_type_get_key_info ( LassoSaml2KeyInfoConfirmationDataType* kicdt ) GType lasso_saml2_key_info_confirmation_data_type_get_type ( ) LassoNode* lasso_saml2_key_info_confirmation_data_type_new ( ) None lasso_saml2_key_info_confirmation_data_type_set_key_info ( LassoSaml2KeyInfoConfirmationDataType* kicdt, GList* key_infos ) gboolean lasso_saml_name_identifier_equals ( LassoSamlNameIdentifier* a, LassoSamlNameIdentifier* b ) lasso_error_t lasso_server_add_provider2 ( LassoServer* server, LassoProvider* provider ) lasso_error_t lasso_server_load_metadata ( LassoServer* server, LassoProviderRole role, const gchar* federation_file, const gchar* trusted_roots, GList* blacklisted_entity_ids, GList** loaded_entity_ids, LassoServerLoadMetadataFlag flags ) GList* lasso_session_get_assertion_ids ( LassoSession* session, const gchar* providerID ) GList* lasso_session_get_name_ids ( LassoSession* session, const gchar* providerID ) GList* lasso_session_get_session_indexes ( LassoSession* session, const gchar* providerID, LassoNode* name_id ) @ text @d1 1 a1 4 # $NetBSD: Makefile,v 1.18 2013/05/31 12:41:51 wiz Exp $ # #PKGREVISION= 1 d7 1 a7 2 PKG_DESTDIR_SUPPORT= destdir @ 1.22 log @Bump for perl-5.20.0. Do it for all packages that * mention perl, or * have a directory name starting with p5-*, or * depend on a package starting with p5- like last time, for 5.18, where this didn't lead to complaints. Let me know if you have any this time. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.21 2014/02/12 23:18:33 tron Exp $ d4 1 a4 1 PKGREVISION= 16 @ 1.21 log @Recursive PKGREVISION bump for OpenSSL API version bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.20 2014/02/05 09:26:58 manu Exp $ d4 1 a4 1 PKGREVISION= 15 @ 1.20 log @Enforce -D_POSIX_C_SOURCE=199506 so that strtok_r() is defined by , otherwise the compiler assumes it returns an int, and it breaks on LP64 machines. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.19 2014/01/01 11:52:03 wiz Exp $ d4 1 a4 1 PKGREVISION= 14 @ 1.19 log @Recursive PKGREVISION bump for libgcrypt-1.6.0 shlib major bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.18 2013/05/31 12:41:51 wiz Exp $ d4 1 a4 1 PKGREVISION= 13 @ 1.18 log @Bump all packages for perl-5.18, that a) refer 'perl' in their Makefile, or b) have a directory name of p5-*, or c) have any dependency on any p5-* package Like last time, where this caused no complaints. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.17 2013/02/06 23:21:33 jperkin Exp $ d4 1 a4 1 PKGREVISION= 12 @ 1.17 log @PKGREVISION bumps for the security/openssl 1.0.1d update. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.16 2012/12/16 01:52:33 obache Exp $ d4 1 a4 1 PKGREVISION= 11 @ 1.16 log @recursive bump from cyrus-sasl libsasl2 shlib major bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.15 2012/12/15 15:29:28 manu Exp $ d4 1 a4 1 PKGREVISION= 10 @ 1.15 log @Fix double free in patch for libxml 2.9.0 support @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.14 2012/11/07 15:31:23 joerg Exp $ d4 1 a4 1 PKGREVISION= 9 @ 1.14 log @Don't use nested functions. Bump revision. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.13 2012/10/03 21:57:24 wiz Exp $ d4 1 a4 1 PKGREVISION= 8 @ 1.13 log @Bump all packages that use perl, or depend on a p5-* package, or are called p5-*. I hope that's all of them. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.12 2012/09/15 10:06:15 obache Exp $ d4 1 a4 1 PKGREVISION= 7 @ 1.12 log @recursive bump from libffi shlib major bump (additionaly, reset PKGREVISION of qt4-* sub packages from base qt4 update) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.11 2012/06/14 07:43:12 sbd Exp $ d4 1 a4 1 PKGREVISION= 6 @ 1.11 log @Recursive PKGREVISION bump for libxml2 buildlink addition. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.10 2012/03/03 00:12:00 wiz Exp $ d4 1 a4 1 PKGREVISION= 5 @ 1.10 log @Recursive bump for pcre-8.30* (shlib major change) @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.9 2012/02/06 12:41:26 wiz Exp $ d4 1 a4 1 PKGREVISION= 4 @ 1.9 log @Revbump for a) tiff update to 4.0 (shlib major change) b) glib2 update 2.30.2 (adds libffi dependency to buildlink3.mk) Enjoy. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.8 2011/09/08 00:17:03 joerg Exp $ d4 1 a4 1 PKGREVISION= 3 @ 1.8 log @Do not use nested functions. Add missing prototypes. Bump revision. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.7 2011/04/22 13:42:16 obache Exp $ d4 1 a4 1 PKGREVISION= 2 @ 1.7 log @recursive bump from gettext-lib shlib bump. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.6 2011/04/04 08:30:30 manu Exp $ d4 1 a4 1 PKGREVISION= 1 @ 1.6 log @Major update, with many changes that ould be difficult to sum up. Please see the NEWS file. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.5 2011/03/24 03:04:16 obache Exp $ d4 2 @ 1.5 log @Use bsdtar for extract, or result in corrupted file name with certain tar. Bump PKGREVISION. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.4 2010/01/17 12:02:41 wiz Exp $ a3 2 PKGREVISION= 5 d5 1 a5 1 CONFIGURE_ARGS+= --disable-php4 @ 1.4 log @Recursive PKGREVISION bump for jpeg update to 8. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.3 2009/12/01 08:49:46 manu Exp $ d4 1 a4 1 PKGREVISION= 4 d14 2 @ 1.3 log @Pullup single logout related bugfixes from lasso -current. On SP initiated logout, the SP x509 certificate was included in the HTTP redirect URL. First this was an SAML standard violation, and second it inflated the URL beyond 2038 bytes, which is the maximum length for IE7 and prior. As a result, SP initated single logout was broken with IE7 and prior versions. @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.2 2009/05/26 05:26:00 manu Exp $ d4 1 a4 1 PKGREVISION= 3 @ 1.2 log @Two bugfixes pulled from upstream: - make sure assertions are signed - don't crash when parsing saml:AttributeValue with xsi:type set @ text @d1 1 a1 1 # $NetBSD: Makefile,v 1.1.1.1 2009/03/02 16:46:01 manu Exp $ d4 1 a4 1 PKGREVISION= 2 @ 1.1 log @Initial revision @ text @d1 1 a1 1 # $NetBSD$ d4 2 @ 1.1.1.1 log @Lasso is a free software C library aiming to implement the Liberty Alliance standards: ID-FF, ID-WSF and SAML. It defines processes for federated identities, single sign-on and related protocols. Lasso is built on top of libxml2, XMLSec and OpenSSL and is GPL licensed. @ text @@