svn commit: r365131 - in head/net/freeradius2: . files

Ryan Steinmetz zi at FreeBSD.org
Sat Aug 16 20:19:31 UTC 2014 

Author: zi
Date: Sat Aug 16 20:19:30 2014
New Revision: 365131
URL: http://svnweb.freebsd.org/changeset/ports/365131
QAT: https://qat.redports.org/buildarchive/r365131/

Log:
  - Do not fail to start if there is a mismatch between libssl compile/runtime
  versions.  We will still print the error, but it will not be fatal.  This is to
  workaround an issue with pkg where pkg will only reinstall dependant ports if
  the .so version changes.
  - Bump PORTREVISION
  
  PR:		192661
  Submitted by:	mat@

Added:
  head/net/freeradius2/files/patch-src__main__version.c   (contents, props changed)
Modified:
  head/net/freeradius2/Makefile

Modified: head/net/freeradius2/Makefile
==============================================================================
--- head/net/freeradius2/Makefile	Sat Aug 16 20:14:44 2014	(r365130)
+++ head/net/freeradius2/Makefile	Sat Aug 16 20:19:30 2014	(r365131)
@@ -3,7 +3,7 @@
 
 PORTNAME=	freeradius
 DISTVERSION=	2.2.5
-PORTREVISION=	2
+PORTREVISION=	3
 CATEGORIES=	net
 MASTER_SITES=	ftp://ftp.freeradius.org/pub/freeradius/%SUBDIR%/ \
 		ftp://ftp.ntua.gr/pub/net/radius/freeradius/%SUBDIR%/ \

Added: head/net/freeradius2/files/patch-src__main__version.c
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/net/freeradius2/files/patch-src__main__version.c	Sat Aug 16 20:19:30 2014	(r365131)
@@ -0,0 +1,24 @@
+--- ./src/main/version.c.orig	2014-08-16 16:17:41.000000000 -0400
++++ ./src/main/version.c	2014-08-16 16:18:31.000000000 -0400
+@@ -60,21 +60,8 @@
+ 		       (unsigned long) ssl_built,
+ 		       (unsigned long) ssl_linked);
+ 
+-		return -1;
+ 	};
+ 
+-	if (!allow_vulnerable) {
+-		/* Check for bad versions */
+-		/* 1.0.1 - 1.0.1f CVE-2014-0160 http://heartbleed.com */
+-		if ((ssl_linked >= 0x010001000) && (ssl_linked < 0x010001070)) {
+-			radlog(L_ERR, "Refusing to start with libssl version %s (in range 1.0.1 - 1.0.1f).  "
+-			      "Security advisory CVE-2014-0160 (Heartbleed)", ssl_version());
+-			radlog(L_ERR, "For more information see http://heartbleed.com");
+-
+-			return -1;
+-		}
+-	}
+-
+ 	return 0;
+ }
+

More information about the svn-ports-all mailing list