<pre style='margin:0'>
tobypeterson pushed a commit to branch master
in repository macports-ports.
</pre>
<p><a href="https://github.com/macports/macports-ports/commit/98bc3797751c40fb1688c6de5881399065e0b443">https://github.com/macports/macports-ports/commit/98bc3797751c40fb1688c6de5881399065e0b443</a></p>
<pre style="white-space: pre; background: #F8F8F8">The following commit(s) were added to refs/heads/master by this push:
<span style='display:block; white-space:pre;color:#404040;'> new 98bc379 libressl: update to 2.4.5, use https
</span>98bc379 is described below
<span style='display:block; white-space:pre;color:#808000;'>commit 98bc3797751c40fb1688c6de5881399065e0b443
</span>Author: Zero King <l2dy@icloud.com>
AuthorDate: Fri Feb 3 01:56:58 2017 +0000
<span style='display:block; white-space:pre;color:#404040;'> libressl: update to 2.4.5, use https
</span>---
security/libressl/Portfile | 14 ++++++--------
security/libressl/files/CVE-2016-7056.patch | 15 ---------------
2 files changed, 6 insertions(+), 23 deletions(-)
<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl/Portfile b/security/libressl/Portfile
</span><span style='display:block; white-space:pre;color:#808080;'>index 22349ca..e711bb4 100644
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -5,8 +5,7 @@ PortGroup muniversal 1.0
</span> PortGroup compiler_blacklist_versions 1.0
name libressl
<span style='display:block; white-space:pre;background:#ffe0e0;'>-version 2.4.4
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-revision 1
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+version 2.4.5
</span> categories security devel
platforms darwin
license OpenSSL SSLeay
<span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -18,17 +17,16 @@ long_description LibreSSL is composed of four parts: \
</span> libcrypto: a library of cryptography fundamentals \
libssl: a TLS library, backwards-compatible with OpenSSL \
libtls: a new TLS library, designed to make it easier to write foolproof applications
<span style='display:block; white-space:pre;background:#ffe0e0;'>-homepage http://www.libressl.org
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+homepage https://www.libressl.org
</span>
conflicts openssl libressl-devel
<span style='display:block; white-space:pre;background:#ffe0e0;'>-master_sites http://ftp.openbsd.org/pub/OpenBSD/LibreSSL
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-checksums rmd160 39c9f14e559f01fef2da368416b1b248adfdebfd \
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- sha256 6fcfaf6934733ea1dcb2f6a4d459d9600e2f488793e51c2daf49b70518eebfd1
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+master_sites https://ftp.openbsd.org/pub/OpenBSD/LibreSSL
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+checksums rmd160 bf447c0551289c1d17c490c2f3ae2be868c4bbba \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ sha256 d300c4e358aee951af6dfd1684ef0c034758b47171544230f3ccf6ce24fe4347
</span>
patchfiles \
<span style='display:block; white-space:pre;background:#ffe0e0;'>- openssldir-cert.pem.patch \
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- CVE-2016-7056.patch
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ openssldir-cert.pem.patch
</span>
configure.args \
--disable-silent-rules \
<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl/files/CVE-2016-7056.patch b/security/libressl/files/CVE-2016-7056.patch
</span>deleted file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index fc0f7c6..0000000
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl/files/CVE-2016-7056.patch
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -1,15 +0,0 @@
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-OpenBSD 5.9 errata 33, Jan 5, 2017:
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-Avoid possible side-channel leak of ECDSA private keys when signing.
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>---- crypto/ecdsa/ecs_ossl.c 8 Feb 2015 13:35:07 -0000 1.6
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-+++ crypto/ecdsa/ecs_ossl.c 5 Jan 2017 13:27:17 -0000 1.6.2.1
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-@@ -141,6 +141,8 @@ ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- if (BN_num_bits(k) <= BN_num_bits(order))
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- if (!BN_add(k, k, order))
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- goto err;
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-+
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-+ BN_set_flags(k, BN_FLG_CONSTTIME);
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- /* compute r the x-coordinate of generator * k */
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) {
</span></pre><pre style='margin:0'>
</pre>