diff --git a/security/easy-rsa/Makefile b/security/easy-rsa/Makefile index 8a3ff8cf0c9d..52c2ec6782b2 100644 --- a/security/easy-rsa/Makefile +++ b/security/easy-rsa/Makefile @@ -1,49 +1,49 @@ PORTNAME= easy-rsa -DISTVERSION= 3.1.0 -PORTREVISION= 3 +DISTVERSION= 3.1.1 CATEGORIES= security net-mgmt -MASTER_SITES= https://github.com/OpenVPN/easy-rsa/releases/download/v${DISTVERSION}/ +MASTER_SITES= https://github.com/OpenVPN/easy-rsa/releases/download/v${DISTVERSION}/ \ + LOCAL/mandree/ DISTNAME= EasyRSA-${DISTVERSION} MAINTAINER= mandree@FreeBSD.org COMMENT= Small RSA key management package based on openssl WWW= https://github.com/OpenVPN/easy-rsa LICENSE= GPLv2 USES= tar:tgz CONFLICTS_INSTALL=easy-rsa2 NO_BUILD= yes NO_ARCH= yes WRKSRC= ${WRKDIR}/EasyRSA-${DISTVERSION} OPTIONS_DEFINE= DOCS EXAMPLES PORTDATA= x509-types/ _pd_files= ChangeLog COPYING.md README.md README.quickstart.md mktemp.txt _pd_dirs= doc/ PORTDOCS= ${_pd_files} ${_pd_dirs} do-install: ${MKDIR} ${STAGEDIR}${PREFIX}/bin ${MKDIR} ${STAGEDIR}${DATADIR}/x509-types/ ${INSTALL_SCRIPT} ${WRKSRC}/easyrsa ${STAGEDIR}${PREFIX}/bin/ ${LN} -fh ${STAGEDIR}${PREFIX}/bin/easyrsa ${STAGEDIR}${PREFIX}/bin/easy-rsa ${INSTALL_DATA} ${WRKSRC}/vars.example ${STAGEDIR}${DATADIR}/ ${INSTALL_DATA} ${WRKSRC}/openssl-easyrsa.cnf ${STAGEDIR}${DATADIR}/openssl-easyrsa.cnf.example (cd ${WRKSRC}/x509-types/ && ${COPYTREE_SHARE} . ${STAGEDIR}${DATADIR}/x509-types/) do-install-DOCS-on: ${MKDIR} ${STAGEDIR}${DOCSDIR} .for i in ${_pd_files} ${INSTALL_DATA} ${WRKSRC}/${i} ${STAGEDIR}${DOCSDIR} .endfor .for i in ${_pd_dirs} ${MKDIR} ${STAGEDIR}${DOCSDIR}/${i} (cd ${WRKSRC}/${i} && ${COPYTREE_SHARE} . ${STAGEDIR}${DOCSDIR}/${i}) .endfor .include diff --git a/security/easy-rsa/distinfo b/security/easy-rsa/distinfo index 7d8559944507..196b1bb67416 100644 --- a/security/easy-rsa/distinfo +++ b/security/easy-rsa/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1653138476 -SHA256 (EasyRSA-3.1.0.tgz) = 01b07ecb58dc003e47d4e74f9fc4da35ec6842e96cd003d66ed72a43df983659 -SIZE (EasyRSA-3.1.0.tgz) = 61255 +TIMESTAMP = 1665821482 +SHA256 (EasyRSA-3.1.1.tgz) = 779d425cacf1de56262b7a7ed6b90b36e614ce9273f08ad7b86992740cb3b2a5 +SIZE (EasyRSA-3.1.1.tgz) = 68434 diff --git a/security/easy-rsa/files/patch-easyrsa b/security/easy-rsa/files/patch-easyrsa index f839ca4b6015..c0141db47a8d 100644 --- a/security/easy-rsa/files/patch-easyrsa +++ b/security/easy-rsa/files/patch-easyrsa @@ -1,32 +1,13 @@ -Isolate date -j -f ... + ... from locale. -Filed upstream as Issue #591 +workaround to fix https://github.com/OpenVPN/easy-rsa/issues/725 ---- easyrsa.orig 2022-05-19 01:53:50 UTC +--- easyrsa.orig 2022-10-13 11:37:48 UTC +++ easyrsa -@@ -2037,7 +2037,7 @@ renewable() { - verify_ca_init - - in_dir="$EASYRSA_PKI" -- MATCH=$(echo "$*" | sed -re 's/\s+/|/g') -+ MATCH=$(echo "$*" | sed -re 's/[[:space:]]+/|/g') - DATE=$(date --date \ - "+${EASYRSA_CERT_RENEW} days" \ - +"%y%m%d%H%M%S") -@@ -2445,7 +2445,7 @@ display_san() { - - if echo "$EASYRSA_EXTRA_EXTS" | grep -q subjectAltName; then - print "$(echo "$EASYRSA_EXTRA_EXTS" | grep subjectAltName | -- sed 's/^\s*subjectAltName\s*=\s*//')" -+ sed 's/^[[:space:]]*subjectAltName[[:space:]]*=[[:space:]]*//')" - else - san="$( - x509v3san="X509v3 Subject Alternative Name:" -@@ -3828,6 +3828,8 @@ VERSION_TEXT - - NL=' - ' -+ -+LC_TIME=C ; export LC_TIME ; unset LC_ALL - - # Be secure with a restrictive umask - [ -z "$EASYRSA_NO_UMASK" ] && umask "${EASYRSA_UMASK:-077}" +@@ -1317,7 +1317,7 @@ Missing X509-type 'COMMON'" + + # Check for insert-marker in ssl config file + if ! grep -q '^#%CA_X509_TYPES_EXTRA_EXTS%' "$EASYRSA_SSL_CONF"; then +- die "\ ++ warn "\ + The copy of openssl-easyrsa.cnf in use does not support X509-type 'ca'. + * $EASYRSA_SSL_CONF + Please update openssl-easyrsa.cnf to the latest official release."