head 1.6; access; symbols pkgsrc-2023Q4:1.6.0.18 pkgsrc-2023Q4-base:1.6 pkgsrc-2023Q3:1.6.0.16 pkgsrc-2023Q3-base:1.6 pkgsrc-2023Q2:1.6.0.14 pkgsrc-2023Q2-base:1.6 pkgsrc-2023Q1:1.6.0.12 pkgsrc-2023Q1-base:1.6 pkgsrc-2022Q4:1.6.0.10 pkgsrc-2022Q4-base:1.6 pkgsrc-2022Q3:1.6.0.8 pkgsrc-2022Q3-base:1.6 pkgsrc-2022Q2:1.6.0.6 pkgsrc-2022Q2-base:1.6 pkgsrc-2022Q1:1.6.0.4 pkgsrc-2022Q1-base:1.6 pkgsrc-2021Q4:1.6.0.2 pkgsrc-2021Q4-base:1.6 pkgsrc-2021Q3:1.4.0.14 pkgsrc-2021Q3-base:1.4 pkgsrc-2021Q2:1.4.0.12 pkgsrc-2021Q2-base:1.4 pkgsrc-2021Q1:1.4.0.10 pkgsrc-2021Q1-base:1.4 pkgsrc-2020Q4:1.4.0.8 pkgsrc-2020Q4-base:1.4 pkgsrc-2020Q3:1.4.0.6 pkgsrc-2020Q3-base:1.4 pkgsrc-2020Q2:1.4.0.4 pkgsrc-2020Q2-base:1.4 pkgsrc-2020Q1:1.4.0.2 pkgsrc-2020Q1-base:1.4 pkgsrc-2019Q4:1.3.0.38 pkgsrc-2019Q4-base:1.3 pkgsrc-2019Q3:1.3.0.34 pkgsrc-2019Q3-base:1.3 pkgsrc-2019Q2:1.3.0.32 pkgsrc-2019Q2-base:1.3 pkgsrc-2019Q1:1.3.0.30 pkgsrc-2019Q1-base:1.3 pkgsrc-2018Q4:1.3.0.28 pkgsrc-2018Q4-base:1.3 pkgsrc-2018Q3:1.3.0.26 pkgsrc-2018Q3-base:1.3 pkgsrc-2018Q2:1.3.0.24 pkgsrc-2018Q2-base:1.3 pkgsrc-2018Q1:1.3.0.22 pkgsrc-2018Q1-base:1.3 pkgsrc-2017Q4:1.3.0.20 pkgsrc-2017Q4-base:1.3 pkgsrc-2017Q3:1.3.0.18 pkgsrc-2017Q3-base:1.3 pkgsrc-2017Q2:1.3.0.14 pkgsrc-2017Q2-base:1.3 pkgsrc-2017Q1:1.3.0.12 pkgsrc-2017Q1-base:1.3 pkgsrc-2016Q4:1.3.0.10 pkgsrc-2016Q4-base:1.3 pkgsrc-2016Q3:1.3.0.8 pkgsrc-2016Q3-base:1.3 pkgsrc-2016Q2:1.3.0.6 pkgsrc-2016Q2-base:1.3 pkgsrc-2016Q1:1.3.0.4 pkgsrc-2016Q1-base:1.3 pkgsrc-2015Q4:1.3.0.2 pkgsrc-2015Q4-base:1.3 pkgsrc-2015Q3:1.2.0.90 pkgsrc-2015Q3-base:1.2 pkgsrc-2015Q2:1.2.0.88 pkgsrc-2015Q2-base:1.2 pkgsrc-2015Q1:1.2.0.86 pkgsrc-2015Q1-base:1.2 pkgsrc-2014Q4:1.2.0.84 pkgsrc-2014Q4-base:1.2 pkgsrc-2014Q3:1.2.0.82 pkgsrc-2014Q3-base:1.2 pkgsrc-2014Q2:1.2.0.80 pkgsrc-2014Q2-base:1.2 pkgsrc-2014Q1:1.2.0.78 pkgsrc-2014Q1-base:1.2 pkgsrc-2013Q4:1.2.0.76 pkgsrc-2013Q4-base:1.2 pkgsrc-2013Q3:1.2.0.74 pkgsrc-2013Q3-base:1.2 pkgsrc-2013Q2:1.2.0.72 pkgsrc-2013Q2-base:1.2 pkgsrc-2013Q1:1.2.0.70 pkgsrc-2013Q1-base:1.2 pkgsrc-2012Q4:1.2.0.68 pkgsrc-2012Q4-base:1.2 pkgsrc-2012Q3:1.2.0.66 pkgsrc-2012Q3-base:1.2 pkgsrc-2012Q2:1.2.0.64 pkgsrc-2012Q2-base:1.2 pkgsrc-2012Q1:1.2.0.62 pkgsrc-2012Q1-base:1.2 pkgsrc-2011Q4:1.2.0.60 pkgsrc-2011Q4-base:1.2 pkgsrc-2011Q3:1.2.0.58 pkgsrc-2011Q3-base:1.2 pkgsrc-2011Q2:1.2.0.56 pkgsrc-2011Q2-base:1.2 pkgsrc-2011Q1:1.2.0.54 pkgsrc-2011Q1-base:1.2 pkgsrc-2010Q4:1.2.0.52 pkgsrc-2010Q4-base:1.2 pkgsrc-2010Q3:1.2.0.50 pkgsrc-2010Q3-base:1.2 pkgsrc-2010Q2:1.2.0.48 pkgsrc-2010Q2-base:1.2 pkgsrc-2010Q1:1.2.0.46 pkgsrc-2010Q1-base:1.2 pkgsrc-2009Q4:1.2.0.44 pkgsrc-2009Q4-base:1.2 pkgsrc-2009Q3:1.2.0.42 pkgsrc-2009Q3-base:1.2 pkgsrc-2009Q2:1.2.0.40 pkgsrc-2009Q2-base:1.2 pkgsrc-2009Q1:1.2.0.38 pkgsrc-2009Q1-base:1.2 pkgsrc-2008Q4:1.2.0.36 pkgsrc-2008Q4-base:1.2 pkgsrc-2008Q3:1.2.0.34 pkgsrc-2008Q3-base:1.2 cube-native-xorg:1.2.0.32 cube-native-xorg-base:1.2 pkgsrc-2008Q2:1.2.0.30 pkgsrc-2008Q2-base:1.2 cwrapper:1.2.0.28 pkgsrc-2008Q1:1.2.0.26 pkgsrc-2008Q1-base:1.2 pkgsrc-2007Q4:1.2.0.24 pkgsrc-2007Q4-base:1.2 pkgsrc-2007Q3:1.2.0.22 pkgsrc-2007Q3-base:1.2 pkgsrc-2007Q2:1.2.0.20 pkgsrc-2007Q2-base:1.2 pkgsrc-2007Q1:1.2.0.18 pkgsrc-2007Q1-base:1.2 pkgsrc-2006Q4:1.2.0.16 pkgsrc-2006Q4-base:1.2 pkgsrc-2006Q3:1.2.0.14 pkgsrc-2006Q3-base:1.2 pkgsrc-2006Q2:1.2.0.12 pkgsrc-2006Q2-base:1.2 pkgsrc-2006Q1:1.2.0.10 pkgsrc-2006Q1-base:1.2 pkgsrc-2005Q4:1.2.0.8 pkgsrc-2005Q4-base:1.2 pkgsrc-2005Q3:1.2.0.6 pkgsrc-2005Q3-base:1.2 pkgsrc-2005Q2:1.2.0.4 pkgsrc-2005Q2-base:1.2 pkgsrc-2005Q1:1.2.0.2 pkgsrc-2005Q1-base:1.2 pkgsrc-2004Q4:1.1.1.1.0.14 pkgsrc-2004Q4-base:1.1.1.1 pkgsrc-2004Q3:1.1.1.1.0.12 pkgsrc-2004Q3-base:1.1.1.1 pkgsrc-2004Q2:1.1.1.1.0.10 pkgsrc-2004Q2-base:1.1.1.1 pkgsrc-2004Q1:1.1.1.1.0.8 pkgsrc-2004Q1-base:1.1.1.1 pkgsrc-2003Q4:1.1.1.1.0.6 pkgsrc-2003Q4-base:1.1.1.1 netbsd-1-6-1:1.1.1.1.0.2 netbsd-1-6-1-base:1.1.1.1 netbsd-1-6:1.1.1.1.0.4 netbsd-1-6-RELEASE-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.6 date 2021.10.26.11.17.40; author nia; state Exp; branches; next 1.5; commitid PNswNV9GDLZeojeD; 1.5 date 2021.10.07.14.54.24; author nia; state Exp; branches; next 1.4; commitid nfjKlj1wTplMcTbD; 1.4 date 2020.02.04.17.25.59; author rillig; state Exp; branches; next 1.3; commitid LSB5AIymtrpHGnVB; 1.3 date 2015.11.04.01.18.02; author agc; state Exp; branches; next 1.2; commitid agUNgZr58GM2fIHy; 1.2 date 2005.02.24.13.10.12; author agc; state Exp; branches; next 1.1; 1.1 date 2002.08.06.01.36.59; author cjs; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 2002.08.06.01.36.59; author cjs; state Exp; branches; next ; desc @@ 1.6 log @security: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Unfetchable distfiles (fetched conditionally?): ./security/cyrus-sasl/distinfo cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2 @ text @$NetBSD: distinfo,v 1.5 2021/10/07 14:54:24 nia Exp $ BLAKE2s (pscan.tar.gz) = d37b8b2e3eeeedccb5e1cae0c277dcb2ff3c5fb4c4d06dfb53b1989d90ff3f78 SHA512 (pscan.tar.gz) = 83196cc9c450217fc2287d38fd1a0b9d1d9951b8f6328b6b9f7f50b680f653b099af04d4c448f3cb2b2a96871eec8772557851e887faa2f41dc259f01c031e78 Size (pscan.tar.gz) = 14555 bytes SHA1 (patch-aa) = 9e9c171a974281834eba3ca9f9fc72bb8d0ae977 @ 1.5 log @security: Remove SHA1 hashes for distfiles @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.4 2020/02/04 17:25:59 rillig Exp $ d3 1 a3 1 RMD160 (pscan.tar.gz) = 7c92b2b8c8e2f65dc4a37da37de47170ae24809c @ 1.4 log @security/pscan: fix pkglint warnings @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.3 2015/11/04 01:18:02 agc Exp $ a2 1 SHA1 (pscan.tar.gz) = 7844cabcc1fa014d5d2d192d94565133d60cd51b @ 1.3 log @Add SHA512 digests for distfiles for security category Problems found locating distfiles: Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz Package libidea: missing distfile libidea-0.8.2b.tar.gz Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2 Package uvscan: missing distfile vlp4510e.tar.Z Otherwise, existing SHA1 digests verified and found to be the same on the machine holding the existing distfiles (morden). All existing SHA1 digests retained for now as an audit trail. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.2 2005/02/24 13:10:12 agc Exp $ d7 1 a7 1 SHA1 (patch-aa) = f9b62f12372392bbe65dd97e441037eceb02c622 @ 1.2 log @Add RMD160 digests. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.1.1.1 2002/08/06 01:36:59 cjs Exp $ d5 1 @ 1.1 log @Initial revision @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.1 2002/08/05 08:09:27 cjs Exp $ d4 1 @ 1.1.1.1 log @PScan is a C source code security scanner, which looks for misuse of libc functions which use varargs and printf-style formatting operators. In many situations these can cause security vulnerabilities in the application if it runs with privileges (setugid, or listening to a network socket, etc). An example of the kind of situation pscan looks for is the following: variable = "%s"; /* or malicious user input */ sprintf(buffer, variable); /* BAD! */ WWW: http://www.striker.ottawa.on.ca/~aland/pscan/ @ text @@