diff options
Diffstat (limited to 'security')
| -rw-r--r-- | security/fakeroot/Makefile | 2 | ||||
| -rw-r--r-- | security/fakeroot/distinfo | 6 | ||||
| -rw-r--r-- | security/fizz/Makefile | 2 | ||||
| -rw-r--r-- | security/fizz/distinfo | 6 | ||||
| -rw-r--r-- | security/modsecurity3/Makefile | 2 | ||||
| -rw-r--r-- | security/modsecurity3/distinfo | 6 | ||||
| -rw-r--r-- | security/quantis-kmod/Makefile | 4 | ||||
| -rw-r--r-- | security/tpm2-abrmd/Makefile | 7 | ||||
| -rw-r--r-- | security/tpm2-abrmd/files/patch-dist_tpm2-abrmd.conf | 22 | ||||
| -rw-r--r-- | security/tpm2-abrmd/files/patch-src_response-sink.c | 11 | ||||
| -rw-r--r-- | security/tpm2-abrmd/files/patch-src_tcti-tabrmd.c | 11 | ||||
| -rw-r--r-- | security/tpm2-abrmd/files/patch-src_util.c | 11 | ||||
| -rw-r--r-- | security/tpm2-abrmd/files/patch-src_util.h | 11 | ||||
| -rw-r--r-- | security/tpm2-abrmd/files/tpm2-abrmd-devd.conf | 9 | ||||
| -rw-r--r-- | security/tpm2-abrmd/files/tpm2_abrmd.in (renamed from security/tpm2-abrmd/files/tpm2-abrmd.in) | 0 | ||||
| -rw-r--r-- | security/tpm2-abrmd/pkg-message | 10 | ||||
| -rw-r--r-- | security/tpm2-abrmd/pkg-plist | 1 |
17 files changed, 86 insertions, 35 deletions
diff --git a/security/fakeroot/Makefile b/security/fakeroot/Makefile index f8a9e8bc2dc7..8fe1685435e6 100644 --- a/security/fakeroot/Makefile +++ b/security/fakeroot/Makefile @@ -1,5 +1,5 @@ PORTNAME= fakeroot -PORTVERSION= 1.37.1.1 +PORTVERSION= 1.37.1.2 CATEGORIES= security MASTER_SITES= DEBIAN DISTNAME= ${PORTNAME}_${PORTVERSION}.orig diff --git a/security/fakeroot/distinfo b/security/fakeroot/distinfo index 28735cbb6158..a938ca8fcddc 100644 --- a/security/fakeroot/distinfo +++ b/security/fakeroot/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1744921082 -SHA256 (fakeroot_1.37.1.1.orig.tar.gz) = 86b0b75bf319ca42e525c098675b6ed10a06b76e69ec9ccf20ef5e03883b3a14 -SIZE (fakeroot_1.37.1.1.orig.tar.gz) = 595265 +TIMESTAMP = 1747131024 +SHA256 (fakeroot_1.37.1.2.orig.tar.gz) = 959496928c8a676ec8377f665ff6a19a707bfad693325f9cc4a4126642f53224 +SIZE (fakeroot_1.37.1.2.orig.tar.gz) = 594008 diff --git a/security/fizz/Makefile b/security/fizz/Makefile index 8bf1cfeab4b0..69356dd3585d 100644 --- a/security/fizz/Makefile +++ b/security/fizz/Makefile @@ -1,6 +1,6 @@ PORTNAME= fizz DISTVERSIONPREFIX= v -DISTVERSION= 2025.05.05.00 +DISTVERSION= 2025.05.12.00 CATEGORIES= security MAINTAINER= yuri@FreeBSD.org diff --git a/security/fizz/distinfo b/security/fizz/distinfo index a96749dd9f1f..b92c50f7c07e 100644 --- a/security/fizz/distinfo +++ b/security/fizz/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1746504537 -SHA256 (facebookincubator-fizz-v2025.05.05.00_GH0.tar.gz) = 424c8bfb229ff3e46ab878cb7fb91b79ce785f9b61d85d4dc0eb5a0cd370cda6 -SIZE (facebookincubator-fizz-v2025.05.05.00_GH0.tar.gz) = 754049 +TIMESTAMP = 1747102733 +SHA256 (facebookincubator-fizz-v2025.05.12.00_GH0.tar.gz) = d3608b4595fff4e0d59585b1b12bead6f6ce4bf2d3bee41fb084f7128a28e4b2 +SIZE (facebookincubator-fizz-v2025.05.12.00_GH0.tar.gz) = 754096 diff --git a/security/modsecurity3/Makefile b/security/modsecurity3/Makefile index 98a04a3147ba..15147e278ed0 100644 --- a/security/modsecurity3/Makefile +++ b/security/modsecurity3/Makefile @@ -1,6 +1,6 @@ PORTNAME= modsecurity DISTVERSIONPREFIX= v -DISTVERSION= 3.0.13 +DISTVERSION= 3.0.14 CATEGORIES= security www MASTER_SITES= https://github.com/owasp-modsecurity/ModSecurity/releases/download/v${PORTVERSION}/ PKGNAMESUFFIX= 3 diff --git a/security/modsecurity3/distinfo b/security/modsecurity3/distinfo index c039c9a54753..482023ee9036 100644 --- a/security/modsecurity3/distinfo +++ b/security/modsecurity3/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1726168534 -SHA256 (modsecurity-v3.0.13.tar.gz) = 86b4881164a161b822a49df3501e83b254323206906134bdc34a6f3338f4d3f2 -SIZE (modsecurity-v3.0.13.tar.gz) = 9677566 +TIMESTAMP = 1745827976 +SHA256 (modsecurity-v3.0.14.tar.gz) = f7599057b35e67ab61764265daddf9ab03c35cee1e55527547afb073ce8f04e8 +SIZE (modsecurity-v3.0.14.tar.gz) = 9755566 diff --git a/security/quantis-kmod/Makefile b/security/quantis-kmod/Makefile index dfe765e1d376..15b2f7cc4ca1 100644 --- a/security/quantis-kmod/Makefile +++ b/security/quantis-kmod/Makefile @@ -13,9 +13,7 @@ LICENSE= BSD3CLAUSE GPLv2 LICENSE_COMB= dual LICENSE_FILE= ${WRKDIR}/Quantis-${DISTVERSION}/License.txt -USES= kmod uidfix zip:infozip - -EXTRACT_BEFORE_ARGS= -aqo +USES= kmod uidfix zip WRKSRC= ${WRKDIR}/Quantis-${DISTVERSION}/Drivers/Unix/QuantisPci diff --git a/security/tpm2-abrmd/Makefile b/security/tpm2-abrmd/Makefile index 0e4b4e89641a..00e8255f5b4c 100644 --- a/security/tpm2-abrmd/Makefile +++ b/security/tpm2-abrmd/Makefile @@ -1,6 +1,6 @@ PORTNAME= tpm2-abrmd DISTVERSION= 3.0.0 -PORTREVISION= 3 +PORTREVISION= 4 CATEGORIES= security MASTER_SITES= https://github.com/tpm2-software/tpm2-abrmd/releases/download/${DISTVERSION}/ @@ -17,7 +17,7 @@ RUN_DEPENDS= dbus-daemon:devel/dbus USES= gmake libtool pkgconfig gnome USE_LDCONFIG= yes USE_GNOME= glib20 -USE_RC_SUBR= tpm2-abrmd +USE_RC_SUBR= tpm2_abrmd GNU_CONFIGURE= yes GNU_CONFIGURE_MANPREFIX=${PREFIX}/share @@ -28,9 +28,6 @@ USERS= _tss SUB_LIST= DBUS_DAEMON=dbus -pre-install: - @${INSTALL_DATA} ${FILESDIR}/tpm2-abrmd-devd.conf ${STAGEDIR}${PREFIX}/etc/devd - post-install: @${RM} ${STAGEDIR}${PREFIX}/lib/systemd/system-preset/tpm2-abrmd.preset @${RM} ${STAGEDIR}${PREFIX}/lib/systemd/system/tpm2-abrmd.service diff --git a/security/tpm2-abrmd/files/patch-dist_tpm2-abrmd.conf b/security/tpm2-abrmd/files/patch-dist_tpm2-abrmd.conf index 755942458792..29c02ab9640d 100644 --- a/security/tpm2-abrmd/files/patch-dist_tpm2-abrmd.conf +++ b/security/tpm2-abrmd/files/patch-dist_tpm2-abrmd.conf @@ -1,25 +1,37 @@ --- dist/tpm2-abrmd.conf.orig 2022-05-09 15:39:53 UTC +++ dist/tpm2-abrmd.conf -@@ -2,7 +2,7 @@ +@@ -2,27 +2,25 @@ "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd"> <busconfig> <!-- ../system.conf have denied everything, so we just punch some holes --> - <policy user="tss"> -+ <policy user="_tss"> - <allow own="com.intel.tss2.Tabrmd"/> - </policy> +- <allow own="com.intel.tss2.Tabrmd"/> +- </policy> +- <policy user="root"> +- <allow own="com.intel.tss2.Tabrmd"/> +- </policy> + <!-- Match /dev/tpmrm0 permissions tss tss 0660 --> <policy user="root"> -@@ -17,11 +17,11 @@ <allow send_destination="com.intel.tss2.Tabrmd"/> <allow receive_sender="com.intel.tss2.Tabrmd"/> ++ <allow own="com.intel.tss2.Tabrmd"/> + </policy> +- <policy group="root"> ++ <policy group="wheel"> + <allow send_destination="com.intel.tss2.Tabrmd"/> + <allow receive_sender="com.intel.tss2.Tabrmd"/> ++ <allow own="com.intel.tss2.Tabrmd"/> </policy> - <policy user="tss"> + <policy user="_tss"> <allow send_destination="com.intel.tss2.Tabrmd"/> <allow receive_sender="com.intel.tss2.Tabrmd"/> ++ <allow own="com.intel.tss2.Tabrmd"/> </policy> - <policy group="tss"> + <policy group="_tss"> <allow send_destination="com.intel.tss2.Tabrmd"/> <allow receive_sender="com.intel.tss2.Tabrmd"/> ++ <allow own="com.intel.tss2.Tabrmd"/> </policy> + </busconfig> diff --git a/security/tpm2-abrmd/files/patch-src_response-sink.c b/security/tpm2-abrmd/files/patch-src_response-sink.c new file mode 100644 index 000000000000..a54debd6835a --- /dev/null +++ b/security/tpm2-abrmd/files/patch-src_response-sink.c @@ -0,0 +1,11 @@ +--- src/response-sink.c.orig 2025-02-22 21:59:15 UTC ++++ src/response-sink.c +@@ -188,7 +188,7 @@ response_sink_process_response (Tpm2Response *response + + g_debug ("%s: writing 0x%x bytes", __func__, size); + g_debug_bytes (buffer, size, 16, 4); +- written = write_all (ostream, buffer, size); ++ written = g_write_all (ostream, buffer, size); + g_object_unref (connection); + + return written; diff --git a/security/tpm2-abrmd/files/patch-src_tcti-tabrmd.c b/security/tpm2-abrmd/files/patch-src_tcti-tabrmd.c new file mode 100644 index 000000000000..4af7e9727b29 --- /dev/null +++ b/security/tpm2-abrmd/files/patch-src_tcti-tabrmd.c @@ -0,0 +1,11 @@ +--- src/tcti-tabrmd.c.orig 2025-02-22 21:59:15 UTC ++++ src/tcti-tabrmd.c +@@ -46,7 +46,7 @@ tss2_tcti_tabrmd_transmit (TSS2_TCTI_CONTEXT *context, + g_debug_bytes (command, size, 16, 4); + ostream = g_io_stream_get_output_stream (TSS2_TCTI_TABRMD_IOSTREAM (context)); + g_debug ("%s: blocking write on ostream", __func__); +- write_ret = write_all (ostream, command, size); ++ write_ret = g_write_all (ostream, command, size); + /* should switch on possible errors to translate to TSS2 error codes */ + switch (write_ret) { + case -1: diff --git a/security/tpm2-abrmd/files/patch-src_util.c b/security/tpm2-abrmd/files/patch-src_util.c new file mode 100644 index 000000000000..32c36126c75b --- /dev/null +++ b/security/tpm2-abrmd/files/patch-src_util.c @@ -0,0 +1,11 @@ +--- src/util.c.orig 2025-02-22 21:59:15 UTC ++++ src/util.c +@@ -68,7 +68,7 @@ ssize_t + /** Write as many of the size bytes from buf to fd as possible. + */ + ssize_t +-write_all (GOutputStream *ostream, ++g_write_all (GOutputStream *ostream, + const uint8_t *buf, + const size_t size) + { diff --git a/security/tpm2-abrmd/files/patch-src_util.h b/security/tpm2-abrmd/files/patch-src_util.h new file mode 100644 index 000000000000..2c8936779c7f --- /dev/null +++ b/security/tpm2-abrmd/files/patch-src_util.h @@ -0,0 +1,11 @@ +--- src/util.h.orig 2025-02-22 21:59:15 UTC ++++ src/util.h +@@ -79,7 +79,7 @@ typedef TSS2_RC (*KeyValueFunc) (const key_value_t* ke + #define TPMA_CC_RES(attrs) (attrs.val & 0xc0000000) + */ + +-ssize_t write_all (GOutputStream *ostream, ++ssize_t g_write_all (GOutputStream *ostream, + const uint8_t *buf, + const size_t size); + int read_data (GInputStream *istream, diff --git a/security/tpm2-abrmd/files/tpm2-abrmd-devd.conf b/security/tpm2-abrmd/files/tpm2-abrmd-devd.conf deleted file mode 100644 index f7f4091a25a5..000000000000 --- a/security/tpm2-abrmd/files/tpm2-abrmd-devd.conf +++ /dev/null @@ -1,9 +0,0 @@ -# Allow members of _tss group to access tpm device - -notify 100 { - match "system" "DEVFS"; - match "subsystem" "CDEV"; - match "type" "CREATE"; - match "cdev" "tpm[0-9]+"; - action "chgrp _tss /dev/tpm0; chmod g+rw /dev/tpm0"; -}; diff --git a/security/tpm2-abrmd/files/tpm2-abrmd.in b/security/tpm2-abrmd/files/tpm2_abrmd.in index 62d61d98b1d6..62d61d98b1d6 100644 --- a/security/tpm2-abrmd/files/tpm2-abrmd.in +++ b/security/tpm2-abrmd/files/tpm2_abrmd.in diff --git a/security/tpm2-abrmd/pkg-message b/security/tpm2-abrmd/pkg-message new file mode 100644 index 000000000000..cfc2c09fdf0b --- /dev/null +++ b/security/tpm2-abrmd/pkg-message @@ -0,0 +1,10 @@ +[ +{ type: install + message: <<EOM +Please add the following lines to /etc/devfs.conf as tpm2-abrmd needs /dev/tpm0 +to be mode 0660 and group _tss: +perm tpm0 0660 +own tpm0 root:_tss +EOM +} +] diff --git a/security/tpm2-abrmd/pkg-plist b/security/tpm2-abrmd/pkg-plist index d20a9a42b2ca..978d156f8219 100644 --- a/security/tpm2-abrmd/pkg-plist +++ b/security/tpm2-abrmd/pkg-plist @@ -1,6 +1,5 @@ include/tss2/tss2-tcti-tabrmd.h etc/dbus-1/system.d/tpm2-abrmd.conf -etc/devd/tpm2-abrmd-devd.conf lib/libtss2-tcti-tabrmd.a lib/libtss2-tcti-tabrmd.so lib/libtss2-tcti-tabrmd.so.0 |