Index: head/security/testssl.sh/Makefile =================================================================== --- head/security/testssl.sh/Makefile (revision 519966) +++ head/security/testssl.sh/Makefile (revision 519967) @@ -1,39 +1,49 @@ # $FreeBSD$ PORTNAME= testssl.sh -DISTVERSION= 3.0rc5 +DISTVERSION= 3.0rc6 CATEGORIES= security MAINTAINER= tobik@FreeBSD.org COMMENT= Test TLS/SSL encryption anywhere on any port LICENSE= GPLv2 LICENSE_FILE= ${WRKSRC}/LICENSE -RUN_DEPENDS= bash:shells/bash \ - ${LOCALBASE}/openssl-unsafe/bin/openssl:security/openssl-unsafe +RUN_DEPENDS= ${LOCALBASE}/openssl-unsafe/bin/openssl:security/openssl-unsafe \ + bash:shells/bash +TEST_DEPENDS= p5-JSON>=0:converters/p5-JSON -USES= shebangfix +USES= perl5 shebangfix USE_GITHUB= yes GH_ACCOUNT= drwetter +USE_PERL5= test +SHEBANG_FILES= testssl.sh utils/* +TEST_ENV= TESTSSL_INSTALL_DIR=${WRKSRC} NO_ARCH= yes NO_BUILD= yes -SHEBANG_FILES= testssl.sh utils/* - post-patch: @${REINPLACE_CMD} -e '/elif test_openssl_suffix/d' \ -e 's@OPENSSL=PREFIX@OPENSSL=${PREFIX}@' \ -e 's@$${TESTSSL_INSTALL_DIR:-""}@$${TESTSSL_INSTALL_DIR:-"${DATADIR}"}@' \ -e '/check_bsd_mount$$/d' \ ${WRKSRC}/testssl.sh do-install: - ${INSTALL_SCRIPT} ${WRKSRC}/testssl.sh ${STAGEDIR}${PREFIX}/bin - ${INSTALL_MAN} ${WRKSRC}/doc/testssl.1 ${STAGEDIR}${MAN1PREFIX}/man/man1 - @${MKDIR} ${STAGEDIR}${DATADIR}/etc ${STAGEDIR}${DATADIR}/utils - @cd ${WRKSRC}/etc && ${COPYTREE_SHARE} . ${STAGEDIR}${DATADIR}/etc - @cd ${WRKSRC}/utils && ${COPYTREE_SHARE} . ${STAGEDIR}${DATADIR}/utils + ${INSTALL_SCRIPT} ${WRKSRC}/testssl.sh \ + ${STAGEDIR}${PREFIX}/bin + ${INSTALL_MAN} ${WRKSRC}/doc/testssl.1 \ + ${STAGEDIR}${MAN1PREFIX}/man/man1 + @cd ${WRKSRC} && \ + ${COPYTREE_SHARE} "etc utils" ${STAGEDIR}${DATADIR} + +do-test: +# Run the badssl.com test as a sanity check. The full test suite +# opens too many network connections and might take too long to +# run. + @cd ${WRKSRC} && \ + ${SETENV} ${TEST_ENV} prove -v t/51_badssl.com.t .include Index: head/security/testssl.sh/distinfo =================================================================== --- head/security/testssl.sh/distinfo (revision 519966) +++ head/security/testssl.sh/distinfo (revision 519967) @@ -1,3 +1,3 @@ -TIMESTAMP = 1556211810 -SHA256 (drwetter-testssl.sh-3.0rc5_GH0.tar.gz) = 6118f08b88c0075f39820296f0d76889165dd67e64dbfdfd1104d6d122a938c9 -SIZE (drwetter-testssl.sh-3.0rc5_GH0.tar.gz) = 9181084 +TIMESTAMP = 1576123689 +SHA256 (drwetter-testssl.sh-3.0rc6_GH0.tar.gz) = fc5aee354e5350448ac48294dee04c34989a21517d2181ff83738b6858eb12f2 +SIZE (drwetter-testssl.sh-3.0rc6_GH0.tar.gz) = 9198338 Index: head/security/testssl.sh/files/patch-testssl.sh =================================================================== --- head/security/testssl.sh/files/patch-testssl.sh (revision 519966) +++ head/security/testssl.sh/files/patch-testssl.sh (revision 519967) @@ -1,12 +1,12 @@ ---- testssl.sh.orig 2018-09-08 11:00:02 UTC +--- testssl.sh.orig 2019-12-11 11:41:31 UTC +++ testssl.sh -@@ -188,6 +188,9 @@ TERM_CURRPOS=0 +@@ -190,6 +190,9 @@ TERM_CURRPOS=0 ########### Defining (and presetting) variables which can be changed # # Following variables make use of $ENV and can be used like "OPENSSL= ./testssl.sh " +if [[ -z "$OPENSSL" ]] ; then + OPENSSL=PREFIX/openssl-unsafe/bin/openssl +fi - declare -x OPENSSL OPENSSL_TIMEOUT - PHONE_OUT=${PHONE_OUT:-false} # Whether testssl can retrieve CRLs and OCSP - FAST_SOCKET=${FAST_SOCKET:-false} # EXPERIMENTAL feature to accelerate sockets -- DO NOT USE it for production + declare -x OPENSSL + OPENSSL_TIMEOUT=${OPENSSL_TIMEOUT:-""} # Default connect timeout with openssl before we call the server side unreachable + CONNECT_TIMEOUT=${CONNECT_TIMEOUT:-""} # Default connect timeout with sockets before we call the server side unreachable Index: head/security/testssl.sh/pkg-plist =================================================================== --- head/security/testssl.sh/pkg-plist (revision 519966) +++ head/security/testssl.sh/pkg-plist (revision 519967) @@ -1,32 +1,34 @@ bin/testssl.sh man/man1/testssl.1.gz %%DATADIR%%/etc/Apple.pem %%DATADIR%%/etc/Java.pem %%DATADIR%%/etc/Linux.pem %%DATADIR%%/etc/Microsoft.pem %%DATADIR%%/etc/Mozilla.pem %%DATADIR%%/etc/README.md %%DATADIR%%/etc/ca_hashes.txt %%DATADIR%%/etc/cipher-mapping.txt %%DATADIR%%/etc/client-simulation.txt %%DATADIR%%/etc/client-simulation.wiresharked.txt %%DATADIR%%/etc/common-primes.txt %%DATADIR%%/etc/curves.txt %%DATADIR%%/etc/tls_data.txt %%DATADIR%%/utils/00_unittest_baseline.sh %%DATADIR%%/utils/ccs-injection.bash %%DATADIR%%/utils/checkcert.sh %%DATADIR%%/utils/create_ca_hashes.sh %%DATADIR%%/utils/curves.bash +%%DATADIR%%/utils/docker-debian10.tls13only.start.sh +%%DATADIR%%/utils/docker-nginx.tls13-earlydata.start.sh %%DATADIR%%/utils/generate_static_cipher_lists.sh %%DATADIR%%/utils/gmap2testssl.sh %%DATADIR%%/utils/heartbleed.bash %%DATADIR%%/utils/hexstream2cipher.sh %%DATADIR%%/utils/make-openssl.sh %%DATADIR%%/utils/make-openssl111.sh %%DATADIR%%/utils/parse_client_ciphers.pl %%DATADIR%%/utils/prototype.ssl2proto-check.bash %%DATADIR%%/utils/prototype.tls-protocol-checker.bash %%DATADIR%%/utils/resume.sh %%DATADIR%%/utils/ticketbleed.bash %%DATADIR%%/utils/update_client_sim_data.pl