head 1.4; access; symbols pkgsrc-2014Q3:1.3.0.20 pkgsrc-2014Q3-base:1.3 pkgsrc-2014Q2:1.3.0.18 pkgsrc-2014Q2-base:1.3 pkgsrc-2014Q1:1.3.0.16 pkgsrc-2014Q1-base:1.3 pkgsrc-2013Q4:1.3.0.14 pkgsrc-2013Q4-base:1.3 pkgsrc-2013Q3:1.3.0.12 pkgsrc-2013Q3-base:1.3 pkgsrc-2013Q2:1.3.0.10 pkgsrc-2013Q2-base:1.3 pkgsrc-2013Q1:1.3.0.8 pkgsrc-2013Q1-base:1.3 pkgsrc-2012Q4:1.3.0.6 pkgsrc-2012Q4-base:1.3 pkgsrc-2012Q3:1.3.0.4 pkgsrc-2012Q3-base:1.3 pkgsrc-2012Q2:1.3.0.2 pkgsrc-2012Q2-base:1.3 pkgsrc-2012Q1:1.2.0.16 pkgsrc-2012Q1-base:1.2 pkgsrc-2011Q4:1.2.0.14 pkgsrc-2011Q4-base:1.2 pkgsrc-2011Q3:1.2.0.12 pkgsrc-2011Q3-base:1.2 pkgsrc-2011Q2:1.2.0.10 pkgsrc-2011Q2-base:1.2 pkgsrc-2011Q1:1.2.0.8 pkgsrc-2011Q1-base:1.2 pkgsrc-2010Q4:1.2.0.6 pkgsrc-2010Q4-base:1.2 pkgsrc-2010Q3:1.2.0.4 pkgsrc-2010Q3-base:1.2 pkgsrc-2010Q2:1.2.0.2 pkgsrc-2010Q2-base:1.2 pkgsrc-2010Q1:1.1.1.1.0.2 pkgsrc-2010Q1-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.4 date 2014.11.18.13.40.57; author he; state dead; branches; next 1.3; commitid dY1mkGx2TgloDFYx; 1.3 date 2012.05.23.10.05.44; author pettai; state Exp; branches; next 1.2; 1.2 date 2010.05.09.18.20.38; author pettai; state Exp; branches; next 1.1; 1.1 date 2010.03.13.17.47.56; author pettai; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 2010.03.13.17.47.56; author pettai; state Exp; branches; next ; desc @@ 1.4 log @Adapt a fix for SA59651, similar to CVE-2014-3209 from the code branch fro SoftHSMv2: ensure created pkcs8 file is not group- or world-readable. Rename patch-aa to patch-Makefile.in, and add a comment. Bump PKGREVISION. @ text @$NetBSD: patch-aa,v 1.3 2012/05/23 10:05:44 pettai Exp $ --- Makefile.in.orig 2012-05-09 18:41:49.000000000 +0000 +++ Makefile.in @@@@ -271,6 +271,7 @@@@ sharedstatedir = @@sharedstatedir@@ softhsmdbdir = @@softhsmdbdir@@ srcdir = @@srcdir@@ sysconfdir = @@sysconfdir@@ +EGDIR = @@EGDIR@@ target_alias = @@target_alias@@ top_build_prefix = @@top_build_prefix@@ top_builddir = @@top_builddir@@ @@@@ -869,11 +870,11 @@@@ uninstall-man: uninstall-man5 install-data-hook: - test -d ${DESTDIR}${sysconfdir} || \ - ${INSTALL} -d ${DESTDIR}${sysconfdir} - test -f ${DESTDIR}${sysconfdir}/softhsm.conf || \ - ${INSTALL_DATA} ${top_builddir}/softhsm.conf ${DESTDIR}${sysconfdir} - ${INSTALL_DATA} ${top_builddir}/softhsm.conf ${DESTDIR}${sysconfdir}/softhsm.conf.sample + test -d ${DESTDIR}${EGDIR} || \ + ${INSTALL} -d ${DESTDIR}${EGDIR} + test -f ${DESTDIR}${EGDIR}/softhsm.conf || \ + ${INSTALL_DATA} ${top_builddir}/softhsm.conf ${DESTDIR}${EGDIR} + ${INSTALL_DATA} ${top_builddir}/softhsm.conf ${DESTDIR}${EGDIR}/softhsm.conf.sample test -d ${DESTDIR}${softhsmdbdir} || \ ${INSTALL} -d -m 700 ${DESTDIR}${softhsmdbdir} @ 1.3 log @SoftHSM 1.3.3 * Increased performance by adding more indexes to the database. * Describe the usage of SO and user PIN in the README. Bugfixes: * Detect if a C++ compiler is missing. @ text @d1 1 a1 1 $NetBSD$ @ 1.2 log @SoftHSM 1.1.4 - 2010-04-06 * Respect --disable-64bit * Respect $DESTDIR for config files * The binaries can now show the version number * softhsm-keyconv could not handle --ttl properly * Link softhsm static with libsofthsm * Build libsofthsm.so without version number * libsofthsm.so is now a loadable module @ text @d1 1 a1 1 $NetBSD: patch-aa,v 1.1.1.1 2010/03/13 17:47:56 pettai Exp $ d3 3 a5 3 --- Makefile.in.orig 2009-12-22 23:14:34.000000000 +0100 +++ Makefile.in 2009-12-22 23:16:23.000000000 +0100 @@@@ -256,6 +256,7 @@@@ d13 1 a13 1 @@@@ -757,11 +758,11 @@@@ d29 1 a29 1 # Tell versions [3.59,3.63) of GNU make to not export all variables. @ 1.1 log @Initial revision @ text @d1 1 a1 1 $NetBSD$ d13 1 a13 1 @@@@ -833,11 +834,11 @@@@ d17 1 a17 1 - test -d ${sysconfdir} || \ d19 1 a19 1 - test -f ${sysconfdir}/softhsm.conf || \ d22 1 a22 1 + test -d ${EGDIR} || \ d24 1 a24 1 + test -f ${EGDIR}/softhsm.conf || \ d27 1 a27 1 test -d ${softhsmdbdir} || \ d29 1 a29 1 @ 1.1.1.1 log @SoftHSM is an implementation of a cryptographic store accessible through a PKCS#11 interface. You can use it to explore PKCS#11 without having a Hardware Security Module. It is being developed as a part of the OpenDNSSEC project. SoftHSM uses Botan for its cryptographic operations. @ text @@