Sat Sep 14 03:40:01 2013 UTC ()
version bump to latest 2012.55 to 2013.58
also added a netbsd-specific build option

(changes)
2013.58 - Thursday 18 April 2013

- Fix building with Zlib disabled, thanks to Hans Harder and cuma@freetz

- Use % as a separator for ports, fixes scp in multihop mode, from Hans Harder

- Reject logins for other users when running as non-root, from Hans Harder

- Disable client immediate authentication request by default, it prevents
  passwordless logins from working

2013.57 - Monday 15 April 2013

- Decreased connection setup time particularly with high latency connections,
  the number of round trips has been reduced for both client and server.
  CPU time hasn't been changed.

- Client will send an initial key exchange guess to save a round trip.
  Dropbear implements an extension kexguess2@matt.ucc.asn.au to allow the first
  packet guess to succeed in wider circumstances than the standard behaviour.
  When communicating with other implementations the standard behaviour is used.

- Client side: when public key or password authentication with
  $DROPBEAR_PASSWORD is used an initial authentication request will
  be sent immediately rather than querying the list of available methods.
  This behaviour is enabled by CLI_IMMEDIATE_AUTH option (on by default),
  please let the Dropbear author know if it causes any interoperability
  problems.

- Implement client escape characters ~. (terminate session) and
  ~^Z (background session)

- Server will more reliably clean up utmp when connection is closed, reported by
  Mattias Walstr<C3><B6>m
- Don't crash if /dev/urandom isn't writable (RHEL5), thanks to Scott Case

- Add "-y -y" client option to skip host key checking, thanks to Hans Harder

- scp didn't work properly on systems using vfork(), thanks to Frank Van Uffelen

- Added IUTF8 terminal mode support (Linux and Mac OS). Not standardised yet
though probably will be soon

- Some verbose DROPBEAR_TRACE output is now hidden unless $DROPBEAR_TRACE2
  enviroment variable is set

- Fix using asymmetric MAC algorithms (broke in )

- Renamed configure.in to configure.ac to quieten autoconf, from Mike Frysinger

2013.56 - Thursday 21 March 2013

- Allow specifying cipher (-c) and MAC (-m) lists for dbclient

- Allow using 'none' cipher or MAC (off by default, use options.h). Encryption
  is used during authentication then disabled, similar to OpenSSH HPN mode

- Allow a user in immediately if the account has a blank password and blank
  passwords are enabled

- Include a few extra sources of entropy from /proc on Linux, hash private keys
  as well. Dropbear will also write gathered entropy back into /dev/urandom

- Added hmac-sha2-256 and hmac-sha2-512 support (off by default, use options.h)

- Don't sent bad address "localhost" for -R forward connections,
  reported by Denis Bider

- Add "-B" runtime option to allow blank passwords

- Allow using IPv6 bracket notation for addresses in server "-p" option, from Ben Jencks

- A few improvements for Android from Reimar D<C3><B6>ffinger

- Fix memory leak for TCP forwarded connections to hosts that timed out,
  reported by Norbert Bencz<C3><BA>r. Appears to be a very long-standing bug.

- Fix "make clean" for out of tree builds

- Fix compilation when ENABLE_{SVR,CLI}_AGENTFWD are unset


(mspo)
diff -r1.27 -r1.28 pkgsrc/security/dropbear/Makefile
diff -r1.19 -r1.20 pkgsrc/security/dropbear/distinfo
cvs diff -r1.27 -r1.28 pkgsrc/security/dropbear/Makefile (expand / switch to context diff)
--- pkgsrc/security/dropbear/Makefile 2012/10/23 18:16:26 1.27
+++ pkgsrc/security/dropbear/Makefile 2013/09/14 03:40:01 1.28
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.27 2012/10/23 18:16:26 asau Exp $
+# $NetBSD: Makefile,v 1.28 2013/09/14 03:40:01 mspo Exp $
 
-DISTNAME=	dropbear-2012.55
+DISTNAME=	dropbear-2013.58
 CATEGORIES=	security
 MASTER_SITES=	http://matt.ucc.asn.au/dropbear/releases/
 
@@ -10,6 +10,7 @@
 
 GNU_CONFIGURE=	yes
 USE_TOOLS+=	gmake
+EXTRACT_SUFX=	.tar.bz2
 
 CONFIGURE_ARGS+=	--sysconfdir=${PKG_SYSCONFDIR:Q}
 
@@ -45,6 +46,10 @@
 CPPFLAGS+=-DXAUTH_COMMAND="\"${X11BASE}/bin/xauth\""
 .else
 CPPFLAGS+=-DXAUTH_COMMAND="\"${X11PREFIX}/bin/xauth\""
+.endif
+
+.if ${OPSYS} == "NetBSD"
+CFLAGS+=	-DHAVE_NETINET_IN_SYSTM_H
 .endif
 
 INSTALLATION_DIRS=	share/doc/dropbear ${PKGMANDIR}/man1 ${PKGMANDIR}/man8
cvs diff -r1.19 -r1.20 pkgsrc/security/dropbear/distinfo (expand / switch to context diff)
--- pkgsrc/security/dropbear/distinfo 2012/08/13 17:47:26 1.19
+++ pkgsrc/security/dropbear/distinfo 2013/09/14 03:40:01 1.20
@@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.19 2012/08/13 17:47:26 drochner Exp $
+$NetBSD: distinfo,v 1.20 2013/09/14 03:40:01 mspo Exp $
 
-SHA1 (dropbear-2012.55.tar.gz) = 2c65dd1f423884a38079f5e4386c698015222279
-RMD160 (dropbear-2012.55.tar.gz) = 1eff6fa5260e938a4b34cf426a6d29fe1e9e4a34
-Size (dropbear-2012.55.tar.gz) = 1774927 bytes
+SHA1 (dropbear-2013.58.tar.bz2) = fdbc0ed332b17fc7579dbce6d95d585cf5d653d7
+RMD160 (dropbear-2013.58.tar.bz2) = 4eac17f92d90d06556034432e9a2f7bbd51e3eaa
+Size (dropbear-2013.58.tar.bz2) = 1580584 bytes
 SHA1 (patch-aa) = 01bf4d80c4e76f9a60341b448cd7e77b2a03c286
 SHA1 (patch-ab) = 911a0525f309386901d32c23404d13ae67c2e2d1