CVS commit: pkgsrc/security/botan2

["Adam Ciarcinski" <adam%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   adam
Date:           Sat Sep 27 06:59:05 UTC 2025

Modified Files:
        pkgsrc/security/botan2: Makefile PLIST distinfo
Added Files:
        pkgsrc/security/botan2/patches: patch-src_lib_utils_boost_info.txt

Log Message:
botan2: updated to 2.19.5

Version 2.19.5, 2024-07-08

* A reminder that Botan2 reaches end of life at the end of 2024

* CVE-2024-34702: Fix a DoS caused by excessive name constraints.

* CVE-2024-39312: Fix a name constraint processing error, where if
  permitted and excluded rules both applied to a certificate, only the
  permitted rules would be checked.

* Fix a crash in OCB

* During certificate verification, first verify the entire chain of
  certificates, then perform other validation.

* Fix a test failure in compression with certain versions of zlib

* Fix some iterator debugging errors in TLS CBC decryption.

* Avoid a miscompilation in ARIA when using XCode 14


To generate a diff of this commit:
cvs rdiff -u -r1.13 -r1.14 pkgsrc/security/botan2/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/security/botan2/PLIST
cvs rdiff -u -r1.6 -r1.7 pkgsrc/security/botan2/distinfo
cvs rdiff -u -r0 -r1.1 \
    pkgsrc/security/botan2/patches/patch-src_lib_utils_boost_info.txt

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/botan2/Makefile
diff -u pkgsrc/security/botan2/Makefile:1.13 pkgsrc/security/botan2/Makefile:1.14
--- pkgsrc/security/botan2/Makefile:1.13        Sat Feb  1 22:01:38 2025
+++ pkgsrc/security/botan2/Makefile     Sat Sep 27 06:59:05 2025
@@ -1,8 +1,7 @@
-# $NetBSD: Makefile,v 1.13 2025/02/01 22:01:38 he Exp $
+# $NetBSD: Makefile,v 1.14 2025/09/27 06:59:05 adam Exp $
 
-DISTNAME=      Botan-2.19.4
+DISTNAME=      Botan-2.19.5
 PKGNAME=       ${DISTNAME:tl}
-PKGREVISION=   3
 CATEGORIES=    security
 MASTER_SITES=  https://botan.randombit.net/releases/
 EXTRACT_SUFX=  .tar.xz
@@ -19,8 +18,10 @@ PYTHON_FOR_BUILD_ONLY=       yes
 
 CONFIG_SHELL=          ${PYTHONBIN}
 CONFIGURE_SCRIPT=      ./configure.py
-CONFIGURE_ARGS+=       --prefix=${PREFIX} --with-zlib --with-boost
+CONFIGURE_ARGS+=       --prefix=${PREFIX}
 CONFIGURE_ARGS+=       --docdir=share/doc
+CONFIGURE_ARGS+=       --with-boost
+CONFIGURE_ARGS+=       --with-zlib
 CONFIGURE_ARGS+=       --without-sphinx
 
 REPLACE_PYTHON+=       *.py src/scripts/*.py
@@ -65,8 +66,8 @@ TEST_TARGET=  tests
 post-test:
        cd ${WRKSRC} && ./botan-test
 
-.include "../../devel/zlib/buildlink3.mk"
 .include "../../devel/boost-libs/buildlink3.mk"
+.include "../../devel/zlib/buildlink3.mk"
 .include "../../lang/python/application.mk"
 .include "../../lang/python/extension.mk"
 .include "../../mk/bsd.pkg.mk"

Index: pkgsrc/security/botan2/PLIST
diff -u pkgsrc/security/botan2/PLIST:1.4 pkgsrc/security/botan2/PLIST:1.5
--- pkgsrc/security/botan2/PLIST:1.4    Mon Feb 26 21:01:13 2024
+++ pkgsrc/security/botan2/PLIST        Sat Sep 27 06:59:05 2025
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.4 2024/02/26 21:01:13 nros Exp $
+@comment $NetBSD: PLIST,v 1.5 2025/09/27 06:59:05 adam Exp $
 bin/botan
 include/botan-2/botan/adler32.h
 include/botan-2/botan/aead.h
@@ -317,7 +317,7 @@ include/botan-2/botan/zlib.h
 lib/libbotan-2.a
 lib/libbotan-2.so
 lib/libbotan-2.so.19
-lib/libbotan-2.so.19.19.4
+lib/libbotan-2.so.19.19.5
 lib/pkgconfig/botan-2.pc
 ${PYSITELIB}/botan2.py
 share/doc/${PKGNAME}/authors.txt

Index: pkgsrc/security/botan2/distinfo
diff -u pkgsrc/security/botan2/distinfo:1.6 pkgsrc/security/botan2/distinfo:1.7
--- pkgsrc/security/botan2/distinfo:1.6 Sat Feb  1 22:01:38 2025
+++ pkgsrc/security/botan2/distinfo     Sat Sep 27 06:59:05 2025
@@ -1,12 +1,13 @@
-$NetBSD: distinfo,v 1.6 2025/02/01 22:01:38 he Exp $
+$NetBSD: distinfo,v 1.7 2025/09/27 06:59:05 adam Exp $
 
-BLAKE2s (Botan-2.19.4.tar.xz) = 7a865e592c497bfff1035d52415cc044c070e4c77a57797f129d08974bd4970a
-SHA512 (Botan-2.19.4.tar.xz) = 2fab4347367703dce8302b7710698ed228c6cc6dd609c39829ba17ad580407ed40d822862d467aa7aea4bfd633c1f1d1c0d437e86376f453845cc609596335d8
-Size (Botan-2.19.4.tar.xz) = 6099528 bytes
+BLAKE2s (Botan-2.19.5.tar.xz) = c13fcad1935ac6e48db9820e012ab61e61a09a055c2c170e2b1cdc07ebf9a624
+SHA512 (Botan-2.19.5.tar.xz) = 323930fbabd833a6affd71f90835e4ca31a9632e346dee9c5f396aca898697d0f2993b860f739d02cdf49fa7fbb3a2d306c4790e5d5f39620b2dea284983669c
+Size (Botan-2.19.5.tar.xz) = 6140148 bytes
 SHA1 (patch-configure.py) = 2688fe59474bf3de425b49d2e0c9c1f4ecccfd16
 SHA1 (patch-src_build-data_os_openbsd.txt) = 7858a819d457e0cb18a5b9d608c386bee36813ee
 SHA1 (patch-src_cli_tls__http__server.cpp) = f99030de233a8221f9c33ecb22987cd5b7690c89
 SHA1 (patch-src_cli_tls__proxy.cpp) = 713900a5c01a518577071637207d7d34ecd17546
+SHA1 (patch-src_lib_utils_boost_info.txt) = 2f784a79cd99fe75f632127516964bbdad8809fc
 SHA1 (patch-src_lib_utils_os__utils.cpp) = cf914c9566e7c0f376b045c85bb39fb6a573b225
 SHA1 (patch-src_lib_utils_socket_socket.cpp) = 3e9125cd94d5b4a77ab836a5928c256163248acb
 SHA1 (patch-src_lib_utils_socket_socket__udp.cpp) = c7201c57e8c2d64f449b3386ec9fc52e4be3d39f

Added files:

Index: pkgsrc/security/botan2/patches/patch-src_lib_utils_boost_info.txt
diff -u /dev/null pkgsrc/security/botan2/patches/patch-src_lib_utils_boost_info.txt:1.1
--- /dev/null   Sat Sep 27 06:59:05 2025
+++ pkgsrc/security/botan2/patches/patch-src_lib_utils_boost_info.txt   Sat Sep 27 06:59:05 2025
@@ -0,0 +1,12 @@
+$NetBSD: patch-src_lib_utils_boost_info.txt,v 1.1 2025/09/27 06:59:05 adam Exp $
+
+boost_system is not longer installed as of boost 1.89.0.
+
+--- src/lib/utils/boost/info.txt.orig  2025-08-15 10:32:12.056061619 +0000
++++ src/lib/utils/boost/info.txt
+@@ -5,5 +5,4 @@ BOOST_ASIO -> 20131228
+ load_on vendor
+ 
+ <libs>
+-all -> boost_system
+ </libs>