head 1.4; access; symbols pkgsrc-2021Q4:1.3.0.2 pkgsrc-2021Q4-base:1.3 pkgsrc-2021Q3:1.2.0.100 pkgsrc-2021Q3-base:1.2 pkgsrc-2021Q2:1.2.0.98 pkgsrc-2021Q2-base:1.2 pkgsrc-2021Q1:1.2.0.96 pkgsrc-2021Q1-base:1.2 pkgsrc-2020Q4:1.2.0.94 pkgsrc-2020Q4-base:1.2 pkgsrc-2020Q3:1.2.0.92 pkgsrc-2020Q3-base:1.2 pkgsrc-2020Q2:1.2.0.88 pkgsrc-2020Q2-base:1.2 pkgsrc-2020Q1:1.2.0.68 pkgsrc-2020Q1-base:1.2 pkgsrc-2019Q4:1.2.0.90 pkgsrc-2019Q4-base:1.2 pkgsrc-2019Q3:1.2.0.86 pkgsrc-2019Q3-base:1.2 pkgsrc-2019Q2:1.2.0.84 pkgsrc-2019Q2-base:1.2 pkgsrc-2019Q1:1.2.0.82 pkgsrc-2019Q1-base:1.2 pkgsrc-2018Q4:1.2.0.80 pkgsrc-2018Q4-base:1.2 pkgsrc-2018Q3:1.2.0.78 pkgsrc-2018Q3-base:1.2 pkgsrc-2018Q2:1.2.0.76 pkgsrc-2018Q2-base:1.2 pkgsrc-2018Q1:1.2.0.74 pkgsrc-2018Q1-base:1.2 pkgsrc-2017Q4:1.2.0.72 pkgsrc-2017Q4-base:1.2 pkgsrc-2017Q3:1.2.0.70 pkgsrc-2017Q3-base:1.2 pkgsrc-2017Q2:1.2.0.66 pkgsrc-2017Q2-base:1.2 pkgsrc-2017Q1:1.2.0.64 pkgsrc-2017Q1-base:1.2 pkgsrc-2016Q4:1.2.0.62 pkgsrc-2016Q4-base:1.2 pkgsrc-2016Q3:1.2.0.60 pkgsrc-2016Q3-base:1.2 pkgsrc-2016Q2:1.2.0.58 pkgsrc-2016Q2-base:1.2 pkgsrc-2016Q1:1.2.0.56 pkgsrc-2016Q1-base:1.2 pkgsrc-2015Q4:1.2.0.54 pkgsrc-2015Q4-base:1.2 pkgsrc-2015Q3:1.2.0.52 pkgsrc-2015Q3-base:1.2 pkgsrc-2015Q2:1.2.0.50 pkgsrc-2015Q2-base:1.2 pkgsrc-2015Q1:1.2.0.48 pkgsrc-2015Q1-base:1.2 pkgsrc-2014Q4:1.2.0.46 pkgsrc-2014Q4-base:1.2 pkgsrc-2014Q3:1.2.0.44 pkgsrc-2014Q3-base:1.2 pkgsrc-2014Q2:1.2.0.42 pkgsrc-2014Q2-base:1.2 pkgsrc-2014Q1:1.2.0.40 pkgsrc-2014Q1-base:1.2 pkgsrc-2013Q4:1.2.0.38 pkgsrc-2013Q4-base:1.2 pkgsrc-2013Q3:1.2.0.36 pkgsrc-2013Q3-base:1.2 pkgsrc-2013Q2:1.2.0.34 pkgsrc-2013Q2-base:1.2 pkgsrc-2013Q1:1.2.0.32 pkgsrc-2013Q1-base:1.2 pkgsrc-2012Q4:1.2.0.30 pkgsrc-2012Q4-base:1.2 pkgsrc-2012Q3:1.2.0.28 pkgsrc-2012Q3-base:1.2 pkgsrc-2012Q2:1.2.0.26 pkgsrc-2012Q2-base:1.2 pkgsrc-2012Q1:1.2.0.24 pkgsrc-2012Q1-base:1.2 pkgsrc-2011Q4:1.2.0.22 pkgsrc-2011Q4-base:1.2 pkgsrc-2011Q3:1.2.0.20 pkgsrc-2011Q3-base:1.2 pkgsrc-2011Q2:1.2.0.18 pkgsrc-2011Q2-base:1.2 pkgsrc-2011Q1:1.2.0.16 pkgsrc-2011Q1-base:1.2 pkgsrc-2010Q4:1.2.0.14 pkgsrc-2010Q4-base:1.2 pkgsrc-2010Q3:1.2.0.12 pkgsrc-2010Q3-base:1.2 pkgsrc-2010Q2:1.2.0.10 pkgsrc-2010Q2-base:1.2 pkgsrc-2010Q1:1.2.0.8 pkgsrc-2010Q1-base:1.2 pkgsrc-2009Q4:1.2.0.6 pkgsrc-2009Q4-base:1.2 pkgsrc-2009Q3:1.2.0.4 pkgsrc-2009Q3-base:1.2 pkgsrc-2009Q2:1.2.0.2; locks; strict; comment @# @; 1.4 date 2022.01.16.23.11.03; author wiz; state dead; branches; next 1.3; commitid 5MpfBThjsK58IUoD; 1.3 date 2021.10.09.10.59.21; author wiz; state Exp; branches; next 1.2; commitid WFrcqW8qZsKpQ7cD; 1.2 date 2009.09.14.16.48.44; author tron; state Exp; branches 1.2.2.1; next 1.1; 1.1 date 2009.07.24.18.06.04; author drochner; state Exp; branches; next ; 1.2.2.1 date 2009.09.14.16.48.44; author spz; state dead; branches; next 1.2.2.2; 1.2.2.2 date 2009.09.15.13.32.04; author spz; state Exp; branches; next ; desc @@ 1.4 log @neon: update to 0.32.2. Changes in release 0.32.2: * Fix auth handling for request-target of "*" (regressed since 0.31.x) * Fix bindtextdomain() detection on OS X (Daniel Macks) * Fix regeneration of docs in "make install" (Lonnie Abelbeck) * Fixes for NetBSD build (Thomas Klausner) @ text @$NetBSD: patch-ab,v 1.3 2021/10/09 10:59:21 wiz Exp $ Improve NetBSD support. https://github.com/notroj/neon/pull/68 --- src/ne_socket.c.orig 2009-08-18 14:16:07.000000000 +0100 +++ src/ne_socket.c 2009-09-14 13:40:37.000000000 +0100 @@@@ -1192,6 +1192,9 @@@@ in6.sin6_port = htons(port); /* fill in the _family field for AIX 4.3, which forgets to do so. */ in6.sin6_family = AF_INET6; +#ifdef __NetBSD__ + in6.sin6_len = sizeof in6; +#endif return bind(fd, (struct sockaddr *)&in6, sizeof in6); } else @@@@ -1210,6 +1213,9 @@@@ } in.sin_port = htons(port); in.sin_family = AF_INET; +#ifdef __NetBSD__ + in.sin_len = sizeof in; +#endif return bind(fd, (struct sockaddr *)&in, sizeof in); } @@@@ -1329,7 +1335,7 @@@@ ia = ne_calloc(sizeof *ia); #ifdef USE_GETADDRINFO - ia->ai_addr = ne_malloc(sizeof *ia); + ia->ai_addr = ne_malloc(len); ia->ai_addrlen = len; memcpy(ia->ai_addr, sad, len); ia->ai_family = saun.sa.sa_family; @@@@ -1365,6 +1371,9 @@@@ ia->ai_addr = (struct sockaddr *)in4; ia->ai_addrlen = sizeof *in4; in4->sin_family = AF_INET; +#ifdef __NetBSD__ + in4->sin_len = sizeof *in4; +#endif memcpy(&in4->sin_addr.s_addr, raw, sizeof in4->sin_addr.s_addr); } #ifdef AF_INET6 @@@@ -1374,6 +1383,9 @@@@ ia->ai_addr = (struct sockaddr *)in6; ia->ai_addrlen = sizeof *in6; in6->sin6_family = AF_INET6; +#ifdef __NetBSD__ + in6->sin6_len = sizeof *in6; +#endif memcpy(&in6->sin6_addr, raw, sizeof in6->sin6_addr.s6_addr); } #endif @ 1.3 log @neon: add upstream pull request link to patches @ text @d1 1 a1 1 $NetBSD: patch-ab,v 1.2 2009/09/14 16:48:44 tron Exp $ @ 1.2 log @Update "neon" package to version 0.29. Changes since version 0.28.5: * Interface changes: o none, API and ABI backwards-compatible with 0.28.x and 0.27.x * New interfaces and features: o added NTLM auth support for Unix builds (Kai Sommerfeld, Daniel Stenberg) o ne_auth.h: added NE_AUTH_GSSAPI and NE_AUTH_NTLM auth protocol codes o added ne_acl3744.h, updated WebDAV ACL support (Henrik Holst) o added built-in SOCKS v4/v4a/v5 support: ne_socket.h:ne_sock_proxy(), and ne_session.h:ne_session_socks_proxy() o added support for system-default proxies: ne_session_system_proxy(), implemented using libproxy where available o ne_session.h: added NE_SESSFLAG_EXPECT100 session flag, SSL verification failure bits extended by NE_SSL_BADCHAIN and NE_SSL_REVOKED, better handling of failures within the cert chain (thanks to Ludwig Nussel) o ne_socket.h: ne_sock_writev() (Julien Reichel), ne_sock_set_error(), ne_iaddr_raw(), ne_iaddr_parse() o ne_string.h: ne_buffer_qappend(), ne_strnqdup() * Deprecated interfaces: o ne_acl.h is obsoleted by ne_acl3744.h (but is still present) o obsolete feature "NE_FEATURE_SOCKS" now never marked present * Other changes: o fix handling of "stale" flag in RFC2069-style Digest auth challenge o ne_free() implemented as a function on Win32 (thanks to Helge Hess) o symbol versioning used for new symbols, where supported o ensure SSL connections are closed cleanly with OpenSSL o fix build with OpenSSL 1.0 beta o updated Polish (pl) translation (Arfrever Frehtes Taifersar Arahesis) * SECURITY (CVE-2009-2473): Fix "billion laughs" attack against expat; could allow a Denial of Service attack by a malicious server. * SECURITY (CVE-2009-2474): Fix handling of an embedded NUL byte in a certificate subject name; could allow an undetected MITM attack against an SSL server if a trusted CA issues such a cert. Tested by Daniel Horecki with SVN client. @ text @d1 4 a4 1 $NetBSD$ @ 1.2.2.1 log @file patch-ab was added on branch pkgsrc-2009Q2 on 2009-09-15 13:32:04 +0000 @ text @d1 53 @ 1.2.2.2 log @Pullup ticket 2894 - requested by tron security update Revisions pulled up: - pkgsrc/www/neon/Makefile by patch - pkgsrc/www/neon/PLIST by patch - pkgsrc/www/neon/distinfo by patch Files added: pkgsrc/www/neon/patches/patch-ab by patch Module Name: pkgsrc Committed By: tron Date: Mon Sep 14 16:48:44 UTC 2009 Modified Files: pkgsrc/www/neon: Makefile PLIST distinfo pkgsrc/www/neon/patches: patch-ab Removed Files: pkgsrc/www/neon/patches: patch-aa Log Message: Update "neon" package to version 0.29. Changes since version 0.28.5: * Interface changes: o none, API and ABI backwards-compatible with 0.28.x and 0.27.x * New interfaces and features: o added NTLM auth support for Unix builds (Kai Sommerfeld, Daniel Stenberg) o ne_auth.h: added NE_AUTH_GSSAPI and NE_AUTH_NTLM auth protocol codes o added ne_acl3744.h, updated WebDAV ACL support (Henrik Holst) o added built-in SOCKS v4/v4a/v5 support: ne_socket.h:ne_sock_proxy(), and ne_session.h:ne_session_socks_proxy() o added support for system-default proxies: ne_session_system_proxy(), implemented using libproxy where available o ne_session.h: added NE_SESSFLAG_EXPECT100 session flag, SSL verification failure bits extended by NE_SSL_BADCHAIN and NE_SSL_REVOKED, better handling of failures within the cert chain (thanks to Ludwig Nussel) o ne_socket.h: ne_sock_writev() (Julien Reichel), ne_sock_set_error(), ne_iaddr_raw(), ne_iaddr_parse() o ne_string.h: ne_buffer_qappend(), ne_strnqdup() * Deprecated interfaces: o ne_acl.h is obsoleted by ne_acl3744.h (but is still present) o obsolete feature "NE_FEATURE_SOCKS" now never marked present * Other changes: o fix handling of "stale" flag in RFC2069-style Digest auth challenge o ne_free() implemented as a function on Win32 (thanks to Helge Hess) o symbol versioning used for new symbols, where supported o ensure SSL connections are closed cleanly with OpenSSL o fix build with OpenSSL 1.0 beta o updated Polish (pl) translation (Arfrever Frehtes Taifersar Arahesis) * SECURITY (CVE-2009-2473): Fix "billion laughs" attack against expat; could allow a Denial of Service attack by a malicious server. * SECURITY (CVE-2009-2474): Fix handling of an embedded NUL byte in a certificate subject name; could allow an undetected MITM attack against an SSL server if a trusted CA issues such a cert. Tested by Daniel Horecki with SVN client. To generate a diff of this commit: cvs rdiff -u -r1.48 -r1.49 pkgsrc/www/neon/Makefile cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/neon/PLIST cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/neon/distinfo cvs rdiff -u -r1.1 -r0 pkgsrc/www/neon/patches/patch-aa cvs rdiff -u -r1.1 -r1.2 pkgsrc/www/neon/patches/patch-ab @ text @a0 53 $NetBSD: patch-ab,v 1.2 2009/09/14 16:48:44 tron Exp $ --- src/ne_socket.c.orig 2009-08-18 14:16:07.000000000 +0100 +++ src/ne_socket.c 2009-09-14 13:40:37.000000000 +0100 @@@@ -1192,6 +1192,9 @@@@ in6.sin6_port = htons(port); /* fill in the _family field for AIX 4.3, which forgets to do so. */ in6.sin6_family = AF_INET6; +#ifdef __NetBSD__ + in6.sin6_len = sizeof in6; +#endif return bind(fd, (struct sockaddr *)&in6, sizeof in6); } else @@@@ -1210,6 +1213,9 @@@@ } in.sin_port = htons(port); in.sin_family = AF_INET; +#ifdef __NetBSD__ + in.sin_len = sizeof in; +#endif return bind(fd, (struct sockaddr *)&in, sizeof in); } @@@@ -1329,7 +1335,7 @@@@ ia = ne_calloc(sizeof *ia); #ifdef USE_GETADDRINFO - ia->ai_addr = ne_malloc(sizeof *ia); + ia->ai_addr = ne_malloc(len); ia->ai_addrlen = len; memcpy(ia->ai_addr, sad, len); ia->ai_family = saun.sa.sa_family; @@@@ -1365,6 +1371,9 @@@@ ia->ai_addr = (struct sockaddr *)in4; ia->ai_addrlen = sizeof *in4; in4->sin_family = AF_INET; +#ifdef __NetBSD__ + in4->sin_len = sizeof *in4; +#endif memcpy(&in4->sin_addr.s_addr, raw, sizeof in4->sin_addr.s_addr); } #ifdef AF_INET6 @@@@ -1374,6 +1383,9 @@@@ ia->ai_addr = (struct sockaddr *)in6; ia->ai_addrlen = sizeof *in6; in6->sin6_family = AF_INET6; +#ifdef __NetBSD__ + in6->sin6_len = sizeof *in6; +#endif memcpy(&in6->sin6_addr, raw, sizeof in6->sin6_addr.s6_addr); } #endif @ 1.1 log @-on NetBSD, set the sa_len sockaddr field, makes at least the "reverse lookup" selftest succeed -fix a memory allocation in case a sockaddr is larger than "struct addrinfo" -- likely with IPv6 ride on update @ text @d3 3 a5 3 --- src/ne_socket.c.orig 2009-06-09 15:34:34.000000000 +0200 +++ src/ne_socket.c @@@@ -1192,6 +1192,9 @@@@ static int do_bind(int fd, int peer_fami d15 1 a15 1 @@@@ -1210,6 +1213,9 @@@@ static int do_bind(int fd, int peer_fami d25 1 a25 1 @@@@ -1328,7 +1334,7 @@@@ ne_inet_addr *ne_sock_peer(ne_socket *so d33 2 a34 2 ia->ai_family = sad->sa_family; @@@@ -1364,6 +1370,9 @@@@ ne_inet_addr *ne_iaddr_make(ne_iaddr_typ d44 1 a44 1 @@@@ -1373,6 +1382,9 @@@@ ne_inet_addr *ne_iaddr_make(ne_iaddr_typ @