www/hiawatha patch to 11.3

2023-01-26 Thread Christopher Petrik 
Index: www/hiawatha/Makefile
===
RCS file: /cvs/ports/www/hiawatha/Makefile,v
retrieving revision 1.69
diff -u -p -r1.69 Makefile
--- www/hiawatha/Makefile	10 Jan 2023 17:43:53 -	1.69
+++ www/hiawatha/Makefile	27 Jan 2023 03:38:43 -
@@ -1,5 +1,5 @@
 COMMENT =		secure webserver
-DISTNAME =		hiawatha-11.2
+DISTNAME =		hiawatha-11.3
 CATEGORIES =		www net
 
 HOMEPAGE =		https://www.hiawatha-webserver.org/
Index: www/hiawatha/distinfo
===
RCS file: /cvs/ports/www/hiawatha/distinfo,v
retrieving revision 1.50
diff -u -p -r1.50 distinfo
--- www/hiawatha/distinfo	21 Dec 2022 13:49:48 -	1.50
+++ www/hiawatha/distinfo	27 Jan 2023 03:38:43 -
@@ -1,2 +1,2 @@
-SHA256 (hiawatha-11.2.tar.gz) = mcZPdpJ/k0afBiq3a3TreaOX6kvhLahr90ayu1fPG8U=
-SIZE (hiawatha-11.2.tar.gz) = 1583611
+SHA256 (hiawatha-11.3.tar.gz) = 1WQ0lmG/hgBc6lsGlxg7z2GALsPVNyJ0ZHTvfgWmOFo=
+SIZE (hiawatha-11.3.tar.gz) = 1669963

help

2023-01-13 Thread Christopher Petrik

Re: www/hiawatha

2022-10-26 Thread Christopher Petrik 
Hello,

Yes looks like my second option as other projects don’t like to use embedded 
libs but Hiawatha does a good job at keeping it updated.

Chris

> On Oct 26, 2022, at 6:00 AM, Stuart Henderson  wrote:
> 
> On 2022/10/25 16:20, Chris wrote:
>> Hello,
>> 
>> Can www/hiawatha be changed to include the embedded mbedtls 3.x which is in
>> par with the current version ?
>> 
>> Chris
>> 
> 
> That should be possible, try this (diff is against -current).
> It builds, I have not tested runtime.
> 
> Note that there is a license conflict between Hiawatha's "GPLv2 only"
> and mbedTLS' Apache v2, so binaries can't be distributed. (If Hiawatha
> could change to "GPLv2 or newer" then it would be OK).
> 
> There is some more information about this in the discussion on
> https://github.com/OpenVPN/openvpn/commit/110eee0288cff0720952a2cf16c4fb191d0bd616
> 
> Index: Makefile
> ===
> RCS file: /cvs/ports/www/hiawatha/Makefile,v
> retrieving revision 1.66
> diff -u -p -r1.66 Makefile
> --- Makefile25 Oct 2022 20:36:04 -1.66
> +++ Makefile26 Oct 2022 11:00:08 -
> @@ -1,6 +1,5 @@
> COMMENT =secure webserver
> -DISTNAME =hiawatha-10.11
> -REVISION =0
> +DISTNAME =hiawatha-11.2
> CATEGORIES =www net
> 
> HOMEPAGE =https://www.hiawatha-webserver.org/
> @@ -10,12 +9,11 @@ PERMIT_PACKAGE =mbedtls Apache 2 licens
> 
> MASTER_SITES =${HOMEPAGE}files/
> 
> -MODULES =devel/cmake
> +WANTLIB += c pthread xml2 xslt z
> 
> -WANTLIB += c mbedcrypto mbedtls mbedx509 pthread xml2 xslt z
> +MODULES =devel/cmake
> 
> -LIB_DEPENDS =security/polarssl>=2.8.0 \
> -textproc/libxslt
> +LIB_DEPENDS =textproc/libxslt
> 
> CONFIGURE_ARGS =-DWEBROOT_DIR="/var/hiawatha" \
>-DWORK_DIR="/var/db/hiawatha" \
> @@ -24,7 +22,8 @@ CONFIGURE_ARGS =-DWEBROOT_DIR="/var/hia
>-DCMAKE_INSTALL_MANDIR="${PREFIX}/man" \
>-DENABLE_XSLT=ON \
>-DPID_DIR="/var/run" \
> --DUSE_SYSTEM_MBEDTLS=ON
> +-DUSE_SHARED_MBEDTLS_LIBRARY=OFF \
> +-DUSE_STATIC_MBEDTLS_LIBRARY=ON
> 
> CONFIGURE_ENV =CPPFLAGS="-I${LOCALBASE}/include" \
>LDFLAGS="-L${WRKBUILD}/mbedtls/library -L${LOCALBASE}/lib"
> @@ -39,6 +38,8 @@ pre-configure:
> post-install:
>mv ${WRKINST}${SYSCONFDIR}/hiawatha ${PREFIX}/share/examples/hiawatha
>mv ${WRKINST}/var/hiawatha/index.html ${PREFIX}/share/examples/hiawatha/
> -rm -r ${WRKINST}/var
> +rm -r ${WRKINST}/var \
> +${PREFIX}/lib/hiawatha \
> +${PREFIX}/include/{psa,mbedtls}
> 
> .include 
> Index: distinfo
> ===
> RCS file: /cvs/ports/www/hiawatha/distinfo,v
> retrieving revision 1.49
> diff -u -p -r1.49 distinfo
> --- distinfo31 Jul 2020 07:20:45 -1.49
> +++ distinfo26 Oct 2022 11:00:08 -
> @@ -1,2 +1,2 @@
> -SHA256 (hiawatha-10.11.tar.gz) = edhdFl1o3XBDu9M39bx90Q2GMtaLph0OVX+EvWh8lyc=
> -SIZE (hiawatha-10.11.tar.gz) = 1393303
> +SHA256 (hiawatha-11.2.tar.gz) = mcZPdpJ/k0afBiq3a3TreaOX6kvhLahr90ayu1fPG8U=
> +SIZE (hiawatha-11.2.tar.gz) = 1583611
> Index: patches/patch-CMakeLists_txt
> ===
> RCS file: /cvs/ports/www/hiawatha/patches/patch-CMakeLists_txt,v
> retrieving revision 1.2
> diff -u -p -r1.2 patch-CMakeLists_txt
> --- patches/patch-CMakeLists_txt11 Mar 2022 20:09:55 -1.2
> +++ patches/patch-CMakeLists_txt26 Oct 2022 11:00:08 -
> @@ -4,7 +4,7 @@ in base, and several alternatives in por
> Index: CMakeLists.txt
> --- CMakeLists.txt.orig
> +++ CMakeLists.txt
> -@@ -192,15 +192,15 @@ endforeach()
> +@@ -170,15 +170,15 @@ endforeach()
> 
>  install(FILES extra/index.html DESTINATION ${WEBROOT_DIR})
> 
> Index: patches/patch-man_hiawatha_1_in
> ===
> RCS file: /cvs/ports/www/hiawatha/patches/patch-man_hiawatha_1_in,v
> retrieving revision 1.12
> diff -u -p -r1.12 patch-man_hiawatha_1_in
> --- patches/patch-man_hiawatha_1_in11 Mar 2022 20:09:55 -1.12
> +++ patches/patch-man_hiawatha_1_in26 Oct 2022 11:00:08 -
> @@ -25,7 +25,7 @@ Index: man/hiawatha.1.in
>  .TP
>  .B KickOnBan = yes|no
>  Close all other connections that originate from the same IP in case of a ban.
> -@@ -308,7 +308,7 @@ Example: RequestLimitMask = deny 192.168.0.1
> +@@ -300,7 +300,7 @@ Example: RequestLimitMask = deny 192.168.0.1
>  .B ServerId = |:[, , ...]
>  The userid and groupid(s) the server will change to. If only a userid is 
> specified, the groupid(s) will be looked up in /etc/passwd and /etc/group. 
> The userid en groupid of user root are not allowed here. The userid or 
> groupid can also be a name.
>  .br
> @@ -34,7 +34,7 @@ Index: man/hiawatha.1.in
>  .TP
>  .B ServerString = 
>  The text behind 'Server:'

Re: [NEW] security/polarssl3

2022-10-25 Thread Christopher Petrik 
Ah ok, now makes sense.


> On Oct 25, 2022, at 1:22 PM, Stuart Henderson  wrote:
> 
> If there are two versions of a library are in the ports tree, it must
> be possible to install them both at the same time, they may not conflict.
> 
> Otherwise there is a problem in bulk builds where one port depends
> on one version of the library, and another port depends on the other
> version.
> 
>> On 2022/10/25 12:56, Chris wrote:
>> Hello,
>> 
>> https://cvsweb.openbsd.org/ports/security/polarssl/Makefile
>> Not sure what you mean there is no mbedtls port, it's called polarssl and it
>> fetches mbedtls.
>> 
>> polarssl3 just install mbedtls 3.2.1 ?
>> 
>> Ideally this should be renamed to mbedtls/mbedtls-lts and mbedtls3
>> 
>> Chris
>> 
>>> On 10/25/2022 12:46 PM, Stuart Henderson wrote:
>>> On 2022/10/25 12:16, Chris wrote:
 Hello,
 
 Guess I should of asked first as ports has
 https://openports.se/security/polarssl
>>> 
>>> btw openports.se is not an authoritative source and has various
>>> problems with its parsing of the ports tree.
>>> 
 Reading the Makefile it mentions mbedtls but the name was
 changed some time ago to mbedtls.
 
 the LTS is the 2.28.1 and the current versions is 3.2.1
 
 So I decided to create a polarssl3 keeping the current name.
>>> 
>>> To import this in a new directory it would need to be de-conflicted with
>>> the existing mbedtls port, but better to update the existing port
>>> ideally.
>>> 
 Please find attached tar file as requested.
 
 Chris
 
 
 
 On 10/25/2022 11:29 AM, Stuart Henderson wrote:
> On 2022/10/25 09:56, Chris wrote:
>> Hello,
>> 
>> First attempt at creating a new port for polarssl3 3.x version
> 
> Please don't send shars. CVS diff or git diff preferred for updates, tar
> for new ports.
> 
> To import this in a new directory it would need to be de-conflicted with
> the existing mbedtls port, but better to update the existing port
> ideally.
> 
>>> 
>>> 
>

[NEW] security/polarssl3

2022-10-25 Thread Christopher Petrik 


polarssl3.shar
Description: Binary data

subscribe

2022-10-15 Thread Christopher Petrik