head 1.7; access; symbols pkgsrc-2018Q3:1.6.0.26 pkgsrc-2018Q3-base:1.6 pkgsrc-2018Q2:1.6.0.24 pkgsrc-2018Q2-base:1.6 pkgsrc-2018Q1:1.6.0.22 pkgsrc-2018Q1-base:1.6 pkgsrc-2017Q4:1.6.0.20 pkgsrc-2017Q4-base:1.6 pkgsrc-2017Q3:1.6.0.18 pkgsrc-2017Q3-base:1.6 pkgsrc-2017Q2:1.6.0.14 pkgsrc-2017Q2-base:1.6 pkgsrc-2017Q1:1.6.0.12 pkgsrc-2017Q1-base:1.6 pkgsrc-2016Q4:1.6.0.10 pkgsrc-2016Q4-base:1.6 pkgsrc-2016Q3:1.6.0.8 pkgsrc-2016Q3-base:1.6 pkgsrc-2016Q2:1.6.0.6 pkgsrc-2016Q2-base:1.6 pkgsrc-2016Q1:1.6.0.4 pkgsrc-2016Q1-base:1.6 pkgsrc-2015Q4:1.6.0.2 pkgsrc-2015Q4-base:1.6 pkgsrc-2015Q3:1.4.0.22 pkgsrc-2015Q3-base:1.4 pkgsrc-2015Q2:1.4.0.20 pkgsrc-2015Q2-base:1.4 pkgsrc-2015Q1:1.4.0.18 pkgsrc-2015Q1-base:1.4 pkgsrc-2014Q4:1.4.0.16 pkgsrc-2014Q4-base:1.4 pkgsrc-2014Q3:1.4.0.14 pkgsrc-2014Q3-base:1.4 pkgsrc-2014Q2:1.4.0.12 pkgsrc-2014Q2-base:1.4 pkgsrc-2014Q1:1.4.0.10 pkgsrc-2014Q1-base:1.4 pkgsrc-2013Q4:1.4.0.8 pkgsrc-2013Q4-base:1.4 pkgsrc-2013Q3:1.4.0.6 pkgsrc-2013Q3-base:1.4 pkgsrc-2013Q2:1.4.0.4 pkgsrc-2013Q2-base:1.4 pkgsrc-2013Q1:1.4.0.2 pkgsrc-2013Q1-base:1.4 pkgsrc-2012Q4:1.3.0.52 pkgsrc-2012Q4-base:1.3 pkgsrc-2012Q3:1.3.0.50 pkgsrc-2012Q3-base:1.3 pkgsrc-2012Q2:1.3.0.48 pkgsrc-2012Q2-base:1.3 pkgsrc-2012Q1:1.3.0.46 pkgsrc-2012Q1-base:1.3 pkgsrc-2011Q4:1.3.0.44 pkgsrc-2011Q4-base:1.3 pkgsrc-2011Q3:1.3.0.42 pkgsrc-2011Q3-base:1.3 pkgsrc-2011Q2:1.3.0.40 pkgsrc-2011Q2-base:1.3 pkgsrc-2011Q1:1.3.0.38 pkgsrc-2011Q1-base:1.3 pkgsrc-2010Q4:1.3.0.36 pkgsrc-2010Q4-base:1.3 pkgsrc-2010Q3:1.3.0.34 pkgsrc-2010Q3-base:1.3 pkgsrc-2010Q2:1.3.0.32 pkgsrc-2010Q2-base:1.3 pkgsrc-2010Q1:1.3.0.30 pkgsrc-2010Q1-base:1.3 pkgsrc-2009Q4:1.3.0.28 pkgsrc-2009Q4-base:1.3 pkgsrc-2009Q3:1.3.0.26 pkgsrc-2009Q3-base:1.3 pkgsrc-2009Q2:1.3.0.24 pkgsrc-2009Q2-base:1.3 pkgsrc-2009Q1:1.3.0.22 pkgsrc-2009Q1-base:1.3 pkgsrc-2008Q4:1.3.0.20 pkgsrc-2008Q4-base:1.3 pkgsrc-2008Q3:1.3.0.18 pkgsrc-2008Q3-base:1.3 cube-native-xorg:1.3.0.16 cube-native-xorg-base:1.3 pkgsrc-2008Q2:1.3.0.14 pkgsrc-2008Q2-base:1.3 cwrapper:1.3.0.12 pkgsrc-2008Q1:1.3.0.10 pkgsrc-2008Q1-base:1.3 pkgsrc-2007Q4:1.3.0.8 pkgsrc-2007Q4-base:1.3 pkgsrc-2007Q3:1.3.0.6 pkgsrc-2007Q3-base:1.3 pkgsrc-2007Q2:1.3.0.4 pkgsrc-2007Q2-base:1.3 pkgsrc-2007Q1:1.3.0.2 pkgsrc-2007Q1-base:1.3 pkgsrc-2006Q4:1.2.0.8 pkgsrc-2006Q4-base:1.2 pkgsrc-2006Q3:1.2.0.6 pkgsrc-2006Q3-base:1.2 pkgsrc-2006Q2:1.2.0.4 pkgsrc-2006Q2-base:1.2 pkgsrc-2006Q1:1.2.0.2 pkgsrc-2006Q1-base:1.2; locks; strict; comment @# @; 1.7 date 2018.12.03.15.19.51; author adam; state dead; branches; next 1.6; commitid VxIuOxbromFbKm2B; 1.6 date 2015.11.18.21.00.51; author christos; state Exp; branches; next 1.5; commitid BMXWJAXr9e4vlCJy; 1.5 date 2015.11.17.15.48.23; author christos; state Exp; branches; next 1.4; commitid Qa9Y8nLB3HyeEsJy; 1.4 date 2013.02.01.13.33.49; author is; state Exp; branches; next 1.3; 1.3 date 2007.02.25.00.57.54; author yyamano; state Exp; branches; next 1.2; 1.2 date 2006.02.17.14.43.49; author joerg; state Exp; branches; next 1.1; 1.1 date 2006.02.05.00.20.17; author adrianp; state Exp; branches; next ; desc @@ 1.7 log @libssh: updated to 0.8.5 version 0.8.5: * Added support to get known_hosts locations with ssh_options_get() * Fixed preferred algorithm for known hosts negotiations * Fixed KEX with some server implementations (e.g. Cisco) * Fixed issues with MSVC * Fixed keyboard-interactive auth in server mode (regression from CVE-2018-10933) * Fixed gssapi auth in server mode (regression from CVE-2018-10933) * Fixed socket fd handling with proxy command * Fixed a memory leak with OpenSSL version 0.8.4: * Fixed CVE-2018-10933 * Fixed building without globbing support * Fixed possible memory leaks * Avoid SIGPIPE on sockets version 0.8.3: * Added support for rsa-sha2 * Added support to parse private keys in openssh container format (other than ed25519) * Added support for diffie-hellman-group18-sha512 and diffie-hellman-group16-sha512 * Added ssh_get_fingerprint_hash() * Added ssh_pki_export_privkey_base64() * Added support for Match keyword in config file * Improved performance and reduced memory footprint for sftp * Fixed ecdsa publickey auth * Fixed reading a closed channel * Added support to announce posix-rename@@openssh.com and hardlink@@openssh.com in the sftp server version 0.8.2: * Added sha256 fingerprints for pubkeys * Improved compiler flag detection * Fixed race condition in reading sftp messages * Fixed doxygen generation and added modern style * Fixed library initialization on Windows * Fixed __bounded__ attribute detection * Fixed a bug in the options parser * Fixed documentation for new knwon_hosts API version 0.8.1: * Fixed version number in the header * Fixed version number in pkg-config and cmake config * Fixed library initialization * Fixed attribute detection version 0.8.0: * Removed support for deprecated SSHv1 protocol * Added new connector API for clients * Added new known_hosts parsing API * Added support for OpenSSL 1.1 * Added support for chacha20-poly1305 cipher * Added crypto backend for mbedtls crypto library * Added ECDSA support with gcrypt backend * Added advanced client and server testing using cwrap.org * Added support for curve25519-sha256 alias * Added support for global known_hosts file * Added support for symbol versioning * Improved ssh_config parsing * Improved threading support @ text @$NetBSD: patch-aa,v 1.6 2015/11/18 21:00:51 christos Exp $ Disable out of source build test --- CMakeLists.txt.orig 2015-09-16 02:44:35.000000000 -0400 +++ CMakeLists.txt 2015-11-17 10:44:55.000000000 -0500 @@@@ -36,8 +36,8 @@@@ include(CPackConfig.cmake) # disallow in-source build -include(MacroEnsureOutOfSourceBuild) -macro_ensure_out_of_source_build("${PROJECT_NAME} requires an out of source build. Please create a separate build directory and run 'cmake /path/to/${PROJECT_NAME} [options]' there.") +#include(MacroEnsureOutOfSourceBuild) +#macro_ensure_out_of_source_build("${PROJECT_NAME} requires an out of source build. Please create a separate build directory and run 'cmake /path/to/${PROJECT_NAME} [options]' there.") # search for libraries if (WITH_ZLIB) @ 1.6 log @Pass pkglint. @ text @d1 1 a1 1 $NetBSD$ @ 1.5 log @update to 0.72 since the previous versions have known security issues. @ text @d1 4 @ 1.4 log @Update libssh to (upstream) 0.5.4 == (our) 0.54. (We need to keep the old numbering syntax to make versions compare correctly.) There are only two consumers in pkgsrc; one of them (remmina and remmina-plugins) actually needed library version 0.4 or later, and didn't build the ssh/sftp/nx plugins without. Hydra is also supposed to build with 0.4.x and later.) Upstream changelogs: 0.5.4: CVE-2013-0176 - NULL dereference leads to denial of service Fixed several NULL pointer dereferences in SSHv1. Fixed a free crash bug in options parsing. and for completeness 0.5.3: This is an important SECURITY and maintenance release in order to address CVE-2012-4559, CVE-2012-4560, CVE-2012-4561 and CVE-2012-4562. CVE-2012-4559 - Fix multiple double free() flaws CVE-2012-4560 - Fix multiple buffer overflow flaws CVE-2012-4561 - Fix multiple invalid free() flaws CVE-2012-4562 - Fix multiple improper overflow checks (...) Suggested by Noud de Brouwer in wip/libssh and PR pkg/47518, but needed some changes to PLIST as well as to make "pkg_admin audit" and updates compare correctly. @ text @d1 2 a2 2 --- CMakeLists.txt.orig 2013-01-30 11:46:25.000000000 +0000 +++ CMakeLists.txt 2013-01-30 11:45:52.000000000 +0000 d12 2 a13 2 # add macros include(MacroAddPlugin) @ 1.3 log @Make this build on Darwin. @ text @d1 4 a4 5 $NetBSD: patch-aa,v 1.2 2006/02/17 14:43:49 joerg Exp $ --- sample.c.orig 2005-03-05 04:54:59.000000000 +0900 +++ sample.c @@@@ -20,7 +20,14 @@@@ clients must be made or how a client sho d6 8 a13 13 #include #include +#if defined(__NetBSD__) || defined(__APPLE__) +#include +#include /* openpty() on NetBSD and Darwin */ +#elif defined(__DragonFly__) +#include +#else #include +#endif #include #include #include @ 1.2 log @Add DragonFly support. @ text @d1 1 a1 1 $NetBSD$ d3 1 a3 1 --- sample.c.orig 2005-03-04 19:54:59.000000000 +0000 d9 1 a9 1 +#if defined(__NetBSD__) d11 1 a11 1 +#include /* openpty() on NetBSD */ @ 1.1 log @Update to 0.11 > -server implementation development. I won't document it before it even works. > -small bug corrected when connecting to sun ssh servers. > -channel wierdness corrected (writing huge data packets) > -channel_read_nonblocking added > -channel bug where stderr wasn't correctly read fixed. > -sftp_file_set_nonblocking added. It's now possible to have nonblocking SFTP IO > -connect_status callback. > -priv.h contains the internal functions, libssh.h the public interface > -options_set_timeout (thx marcelo) really working. > -tcp tunneling through channel_open_forward. > -channel_request_exec() > -channel_request_env() > -ssh_get_pubkey_hash() > -ssh_is_server_known() > -ssh_write_known_host() > -options_set_ssh_dir > -how could this happen ! there weren't any channel_close ! > -nasty channel_free bug resolved. > -removed the unsigned long all around the code. use only u8,u32 & u64. > -it now compiles and runs under amd64 ! > -channel_request_exec() > -channel_request_env() > -ssh_get_pubkey_hash() > -ssh_is_server_known() > -ssh_write_known_host() > -options_set_ssh_dir > -how could this happen ! there weren't any channel_close ! > -nasty channel_free bug resolved. > -removed the unsigned long all around the code. use only u8,u32 & u64. > -it now compiles and runs under amd64 ! > -channel_request_pty_size > -channel_change_pty_size > -options_copy() > -ported the doc to an HTML file. > -small bugfix in packet.c > -prefixed error constants with SSH_ > -sftp_stat, sftp_lstat, sftp_fstat. thanks Michel Bardiaux for the patch. > -again channel number mismatch fixed. > -fixed a bug in ssh_select making the select fail when a signal has been caught. > -keyboard-interactive authentication working. @ text @d5 1 a5 1 @@@@ -20,7 +20,12 @@@@ clients must be made or how a client sho d12 2 @