From nobody Wed Sep 18 18:10:51 2024
X-Original-To: dev-commits-ports-all@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4X86CH2q2Zz5XBtG;
	Wed, 18 Sep 2024 18:10:51 +0000 (UTC)
	(envelope-from git@FreeBSD.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4X86CH2HkCz4fV3;
	Wed, 18 Sep 2024 18:10:51 +0000 (UTC)
	(envelope-from git@FreeBSD.org)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim;
	t=1726683051;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding;
	bh=LV57/WTH14kT4JSSCfdRUkLT6FXSrc+0YKEppTcTHLM=;
	b=GGUoMP4o8NoV7CTm+8cpSRMiN60KIe0lU+tHE22QemKTy/kGj9FI9pOMClCbhpa5T2NXhs
	pJ1zb5zQgv4NJQ7Rl4Lqn4aDWYQdmkoZhVohG88FqEocnjMUwqcFqNdtKtMLg5QWrrSsZh
	kxPGNO6igmJK5HCqdAW5/+SZM2GUY7hiGLLA1t4F12OK/2/7ncq9yoMS25vAI3SzyTICGi
	tDnnzM74rbW9jOeXPF4kTvSiJZ1UWXYz4VIxlHxJsu3BusvZavILLyWEqtL8yrtPKfobZo
	hzjSRcq+n/2QLq3/A8mlf8VTFsJxFvBN2urIGPuW9zVAS3mKIFWNmNkeyJOaIA==
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1726683051; a=rsa-sha256; cv=none;
	b=ljzZZfI6Xjsf60HM5cEK3mdZVo1eKYqDm8MpNPMs5U0issQf4a1ZMwgDxbOOedvPOrQ7Fe
	GVFEo/HTL1vVl4qgF8xMedXob0cb5wOVakUg8DBg2YT9QAh+JImBqeTs9a1RbH9g3MQnRr
	U4FDFRvl9dCjsxxs9knNl4X+sAXQRy0q3Ra/7sw8Xcl2h6G56E2SU2AHlESNfD8Sw11wJE
	z0NOSfFrv/gi0eyKuC1M9MJaTLjakIdQfMIPd/Jw+NMfXJFQDfVkkckgkK82y7BfjMn8ik
	ekYz/+Xq7cJbeB7TY8KRg3D8aJkhy3hdOBf+iCvb+uwqCtUwLmjOwj+M77TdBg==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1726683051;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding;
	bh=LV57/WTH14kT4JSSCfdRUkLT6FXSrc+0YKEppTcTHLM=;
	b=UvaFQKUMC5kMsYxcd1/mC6fF+qYCq1XosP2BIFik9T3la3ZZgVp+uW16+LqzZIycRAu0s4
	rG2nOmUgVIXrX7EsJBOwnS73UJVI8txvj0wiHF+JRxZnAYh/r14a1EEy65v6CMAz7bQh8O
	TSp3v/cH/6NJnExU9BcZzGju+VGa+U9uxjfIJ332SwwzUdXTMiwHDD1NsCoTdWSWVk+o6M
	I6R1od1afwBBoLBRTkyg++XxGlZXV22lXJnX8ZmCPXr5K927lXvxAdkTCmlpyywkAhj1gI
	hKnXqaLyiWdt6V4fS0qbDscyJJym+Hg37ROa5qxvohCkGfior+xi81VeV4JIDQ==
Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4X86CH1trgzXsp;
	Wed, 18 Sep 2024 18:10:51 +0000 (UTC)
	(envelope-from git@FreeBSD.org)
Received: from gitrepo.freebsd.org ([127.0.1.44])
	by gitrepo.freebsd.org (8.18.1/8.18.1) with ESMTP id 48IIAp5X071423;
	Wed, 18 Sep 2024 18:10:51 GMT
	(envelope-from git@gitrepo.freebsd.org)
Received: (from git@localhost)
	by gitrepo.freebsd.org (8.18.1/8.18.1/Submit) id 48IIApKV071420;
	Wed, 18 Sep 2024 18:10:51 GMT
	(envelope-from git)
Date: Wed, 18 Sep 2024 18:10:51 GMT
Message-Id: <202409181810.48IIApKV071420@gitrepo.freebsd.org>
To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org,
        dev-commits-ports-main@FreeBSD.org
From: Vladimir Druzenko <vvd@FreeBSD.org>
Subject: git: e047c4bce547 - main - security/crowdsec-firewall-bouncer:
  Update 0.0.28 =?utf-8?Q?=E2=86=92?= 0.0.29
List-Id: Commit messages for all branches of the ports repository <dev-commits-ports-all.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-all
List-Help: <mailto:dev-commits-ports-all+help@freebsd.org>
List-Post: <mailto:dev-commits-ports-all@freebsd.org>
List-Subscribe: <mailto:dev-commits-ports-all+subscribe@freebsd.org>
List-Unsubscribe: <mailto:dev-commits-ports-all+unsubscribe@freebsd.org>
X-BeenThere: dev-commits-ports-all@freebsd.org
Sender: owner-dev-commits-ports-all@FreeBSD.org
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
X-Git-Committer: vvd
X-Git-Repository: ports
X-Git-Refname: refs/heads/main
X-Git-Reftype: branch
X-Git-Commit: e047c4bce547161b07de906d0d6199404fe8615d
Auto-Submitted: auto-generated

The branch main has been updated by vvd:

URL: https://cgit.FreeBSD.org/ports/commit/?id=e047c4bce547161b07de906d0d6199404fe8615d

commit e047c4bce547161b07de906d0d6199404fe8615d
Author:     marco <marco@crowdsec.net>
AuthorDate: 2024-09-18 18:07:29 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2024-09-18 18:07:29 +0000

    security/crowdsec-firewall-bouncer: Update 0.0.28 → 0.0.29
    
    Changelog:
    https://github.com/crowdsecurity/cs-firewall-bouncer/releases/tag/v0.0.29
    
    Also pet portclippy.
    
    PR:     281533
---
 security/crowdsec-firewall-bouncer/Makefile             | 14 ++++++--------
 security/crowdsec-firewall-bouncer/distinfo             | 10 +++++-----
 security/crowdsec-firewall-bouncer/files/pkg-message.in | 15 +++++++++------
 3 files changed, 20 insertions(+), 19 deletions(-)

diff --git a/security/crowdsec-firewall-bouncer/Makefile b/security/crowdsec-firewall-bouncer/Makefile
index ed943eefc833..faefff2b1783 100644
--- a/security/crowdsec-firewall-bouncer/Makefile
+++ b/security/crowdsec-firewall-bouncer/Makefile
@@ -1,7 +1,6 @@
 PORTNAME=	crowdsec-firewall-bouncer
 DISTVERSIONPREFIX=	v
-DISTVERSION=	0.0.28
-PORTREVISION=	10
+DISTVERSION=	0.0.29
 CATEGORIES=	security
 
 MAINTAINER=	marco@crowdsec.net
@@ -12,7 +11,7 @@ LICENSE=	MIT
 LICENSE_FILE=	${WRKSRC}/LICENSE
 
 USES=		go:modules
-_COMMIT=	af6e7e2
+_COMMIT=	9594360c
 _BUILD_DATE=	$$(date -u "+%F_%T")
 USE_RC_SUBR=	crowdsec_firewall
 
@@ -20,19 +19,18 @@ GO_MODULE=	github.com/crowdsecurity/cs-firewall-bouncer
 GO_TARGET=	${PORTNAME}:./${PORTNAME}
 GO_BUILDFLAGS=	-trimpath -tags netgo \
 		-ldflags="\
-		-a -s -w -extldflags '-static' \
+		-a -s -w \
 		-X github.com/crowdsecurity/go-cs-lib/version.Version=${DISTVERSIONPREFIX}${DISTVERSION}-freebsd \
 		-X github.com/crowdsecurity/go-cs-lib/version.BuildDate=${_BUILD_DATE} \
 		-X github.com/crowdsecurity/go-cs-lib/version.Tag=${_COMMIT}"
+# to allow WITH_PIE with a non PIC libc
+CGO_ENABLED=	1
 
-CGO_ENABLED=	0
-
+ETCDIR=		${PREFIX}/etc/crowdsec/bouncers
 SUB_FILES=	pkg-deinstall \
 		pkg-install \
 		pkg-message
 
-ETCDIR=		${PREFIX}/etc/crowdsec/bouncers
-
 do-install:
 	#
 	# Binaries
diff --git a/security/crowdsec-firewall-bouncer/distinfo b/security/crowdsec-firewall-bouncer/distinfo
index 4a349fd2bda7..d1aa0b954474 100644
--- a/security/crowdsec-firewall-bouncer/distinfo
+++ b/security/crowdsec-firewall-bouncer/distinfo
@@ -1,5 +1,5 @@
-TIMESTAMP = 1696243362
-SHA256 (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.28/v0.0.28.mod) = 8da878a2e78081ce7fd2b81f210eb146f87fa77f4c0b5b3857d1e6a4551dd048
-SIZE (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.28/v0.0.28.mod) = 2632
-SHA256 (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.28/v0.0.28.zip) = 6aeaa00beee415f68b2f7a4d98e6b3c83c239f3fe8b1e8be93f34b13e77c940e
-SIZE (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.28/v0.0.28.zip) = 181050
+TIMESTAMP = 1726507675
+SHA256 (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.29/v0.0.29.mod) = e446d195419353c53d1ccdec4c40e30adad1b91f23edd360ceb377409069efd3
+SIZE (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.29/v0.0.29.mod) = 2610
+SHA256 (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.29/v0.0.29.zip) = 194dbef79c3db1028b616c30b1869e438be6b4071484db7fcb6542cf09d8c091
+SIZE (go/security_crowdsec-firewall-bouncer/crowdsec-firewall-bouncer-v0.0.29/v0.0.29.zip) = 188387
diff --git a/security/crowdsec-firewall-bouncer/files/pkg-message.in b/security/crowdsec-firewall-bouncer/files/pkg-message.in
index 336b3e4fd4dd..edfea50b1176 100644
--- a/security/crowdsec-firewall-bouncer/files/pkg-message.in
+++ b/security/crowdsec-firewall-bouncer/files/pkg-message.in
@@ -20,13 +20,14 @@ This package depends on the Packet Filter service.
 To make sure it's active:
 
 ----------
-# sysrc pf_enable=YES
-pf_enable: NO -> YES
+# service pf enable
+pf enabled in /etc/rc.conf
 # service pf start
 Enabling pf.
 ----------
 
-Add the following in /etc/pf.conf to create the firewall tables and rules:
+Add the following in /etc/pf.conf to create the firewall tables and rules. If the start
+command complained about missing pf.conf, you'll have to run it again.
 
 ----------
 table <crowdsec-blacklists> persist
@@ -35,15 +36,17 @@ block drop in quick from <crowdsec-blacklists> to any
 block drop in quick from <crowdsec6-blacklists> to any
 ----------
 
+If you already have any pass rule, you may want to put the block rules before them.
+
 To apply the file:
 
 # pfctl -f /etc/pf.conf
 
-Then activate the bouncer via sysrc and run it:
+Then activate the bouncer service and run it:
 
 ----------
-# sysrc crowdsec_firewall_enable="YES"
-crowdsec_firewall_enable: NO -> YES
+# service crowdsec_firewall enable
+crowdsec_firewall enabled in /etc/rc.conf
 # service crowdsec_firewall start
 ----------