<pre style='margin:0'>
tobypeterson pushed a commit to branch master
in repository macports-ports.
</pre>
<p><a href="https://github.com/macports/macports-ports/commit/38f49d86e13024d23d7e65abd81d7f089662912c">https://github.com/macports/macports-ports/commit/38f49d86e13024d23d7e65abd81d7f089662912c</a></p>
<pre style="white-space: pre; background: #F8F8F8">The following commit(s) were added to refs/heads/master by this push:
<span style='display:block; white-space:pre;color:#404040;'> new 38f49d8 libressl-devel: update to 2.5.1, use https
</span>38f49d8 is described below
<span style='display:block; white-space:pre;color:#808000;'>commit 38f49d86e13024d23d7e65abd81d7f089662912c
</span>Author: Zero King <l2dy@icloud.com>
AuthorDate: Fri Feb 10 17:16:54 2017 +0000
<span style='display:block; white-space:pre;color:#404040;'> libressl-devel: update to 2.5.1, use https
</span>---
security/libressl-devel/Portfile | 14 ++++++--------
security/libressl-devel/files/CVE-2016-7056.patch | 15 ---------------
2 files changed, 6 insertions(+), 23 deletions(-)
<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl-devel/Portfile b/security/libressl-devel/Portfile
</span><span style='display:block; white-space:pre;color:#808080;'>index 4c5b58a..62bb9eb 100644
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl-devel/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl-devel/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -5,8 +5,7 @@ PortGroup muniversal 1.0
</span> PortGroup compiler_blacklist_versions 1.0
name libressl-devel
<span style='display:block; white-space:pre;background:#ffe0e0;'>-version 2.5.0
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-revision 1
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+version 2.5.1
</span> distname libressl-${version}
categories security devel
<span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -20,17 +19,16 @@ long_description LibreSSL is composed of four parts: \
</span> libcrypto: a library of cryptography fundamentals \
libssl: a TLS library, backwards-compatible with OpenSSL \
libtls: a new TLS library, designed to make it easier to write foolproof applications
<span style='display:block; white-space:pre;background:#ffe0e0;'>-homepage http://www.libressl.org
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+homepage https://www.libressl.org
</span>
conflicts openssl libressl
<span style='display:block; white-space:pre;background:#ffe0e0;'>-master_sites http://ftp.openbsd.org/pub/OpenBSD/LibreSSL
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-checksums rmd160 a3e63495c8ae20f920fba9f2ffa323e2c609e6d6 \
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- sha256 8652bf6b55ab51fb37b686a3f604a2643e0e8fde2c56e6a936027d12afda6eae
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+master_sites https://ftp.openbsd.org/pub/OpenBSD/LibreSSL
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+checksums rmd160 6b97c8aaf5131d921ee72e8105b37f5c1270166f \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ sha256 f71ae0a824b78fb1a47ffa23c9c26e9d96c5c9b29234eacedce6b4c7740287cd
</span>
patchfiles \
<span style='display:block; white-space:pre;background:#ffe0e0;'>- openssldir-cert.pem.patch \
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- CVE-2016-7056.patch
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ openssldir-cert.pem.patch
</span>
configure.args \
--disable-silent-rules \
<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl-devel/files/CVE-2016-7056.patch b/security/libressl-devel/files/CVE-2016-7056.patch
</span>deleted file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index fc0f7c6..0000000
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl-devel/files/CVE-2016-7056.patch
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -1,15 +0,0 @@
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-OpenBSD 5.9 errata 33, Jan 5, 2017:
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-Avoid possible side-channel leak of ECDSA private keys when signing.
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>---- crypto/ecdsa/ecs_ossl.c 8 Feb 2015 13:35:07 -0000 1.6
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-+++ crypto/ecdsa/ecs_ossl.c 5 Jan 2017 13:27:17 -0000 1.6.2.1
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-@@ -141,6 +141,8 @@ ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- if (BN_num_bits(k) <= BN_num_bits(order))
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- if (!BN_add(k, k, order))
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- goto err;
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-+
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-+ BN_set_flags(k, BN_FLG_CONSTTIME);
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- /* compute r the x-coordinate of generator * k */
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>- if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) {
</span></pre><pre style='margin:0'>
</pre>