Differential D11141 Authored by feld on Jun 10 2017, 9:00 PM.
Details Summary It is impossible to set hash_function in PHP on FreeBSD due to session This is a security issue we need to resolve. Test Plan Apply this patch which removes the extensions from the tree, removes Build, test, run.
Diff Detail
Event TimelineHerald added 1 blocking reviewer(s): portmgr. · View Herald TranscriptJun 10 2017, 9:00 PM2017-06-10 21:00:06 (UTC+0) Harbormaster completed remote builds in B9792: Diff 29445.Jun 10 2017, 9:02 PM2017-06-10 21:02:29 (UTC+0) Comment Actions This update fixes places where removing hash or session module from USE_PHP was missed It may still contain hanging ":build" etc values or empty USE_PHP= Harbormaster completed remote builds in B9793: Diff 29448.Jun 10 2017, 9:46 PM2017-06-10 21:46:19 (UTC+0) This revision is now accepted and ready to land.Jun 12 2017, 11:56 AM2017-06-12 11:56:31 (UTC+0) Comment Actions Mmmm, this morning, epiphany. You need to add, at the very least, an updating entry saying that the php*-hash and php*-session must be removed, alsoit could be advisable be to provide an empty package for the time being, so that people do not get bitten. Best yet would be to have pkg learn MOVED and remove the packages itself :-) This revision now requires changes to proceed.Jun 13 2017, 8:36 AM2017-06-13 08:36:43 (UTC+0)
Revision Contents
Diff 29445 |