From owner-svn-ports-head@freebsd.org Tue Mar 14 14:17:32 2017 Return-Path: Delivered-To: svn-ports-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DD13FD0CBD2; Tue, 14 Mar 2017 14:17:32 +0000 (UTC) (envelope-from jrm@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id A7E931C0F; Tue, 14 Mar 2017 14:17:32 +0000 (UTC) (envelope-from jrm@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id v2EEHVLX074427; Tue, 14 Mar 2017 14:17:31 GMT (envelope-from jrm@FreeBSD.org) Received: (from jrm@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id v2EEHV9L074423; Tue, 14 Mar 2017 14:17:31 GMT (envelope-from jrm@FreeBSD.org) Message-Id: <201703141417.v2EEHV9L074423@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: jrm set sender to jrm@FreeBSD.org using -f From: Joseph Mingrone Date: Tue, 14 Mar 2017 14:17:31 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r436154 - in head/security: . sha1collisiondetection X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Mar 2017 14:17:33 -0000 Author: jrm Date: Tue Mar 14 14:17:31 2017 New Revision: 436154 URL: https://svnweb.freebsd.org/changeset/ports/436154 Log: security/sha1collisiondetection: a tool to detect SHA-1 collisions https://github.com/cr-marcstevens/sha1collisiondetection PR: 217733 Submitted by: jharris@widomaker.com (maintainer) Reviewed by: mat Approved by: swills (mentor, implicit) Differential Revision: https://reviews.freebsd.org/D9998 Added: head/security/sha1collisiondetection/ head/security/sha1collisiondetection/Makefile (contents, props changed) head/security/sha1collisiondetection/distinfo (contents, props changed) head/security/sha1collisiondetection/pkg-descr (contents, props changed) Modified: head/security/Makefile Modified: head/security/Makefile ============================================================================== --- head/security/Makefile Tue Mar 14 13:46:14 2017 (r436153) +++ head/security/Makefile Tue Mar 14 14:17:31 2017 (r436154) @@ -1083,6 +1083,7 @@ SUBDIR += secure_delete SUBDIR += sguil SUBDIR += sha + SUBDIR += sha1collisiondetection SUBDIR += shibboleth2-sp SUBDIR += shimmer SUBDIR += shishi Added: head/security/sha1collisiondetection/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/sha1collisiondetection/Makefile Tue Mar 14 14:17:31 2017 (r436154) @@ -0,0 +1,36 @@ +# $FreeBSD$ + +PORTNAME= sha1collisiondetection +PORTVERSION= 1.0.2 +DISTVERSIONPREFIX= stable-v +CATEGORIES= security + +MAINTAINER= jharris@widomaker.com +COMMENT= Library and command line tool to detect SHA-1 collisions + +LICENSE= MIT +LICENSE_FILE= ${WRKSRC}/LICENSE.txt + +USE_GITHUB= yes +GH_ACCOUNT= cr-marcstevens + +USE_LDCONFIG= yes +ALL_TARGET= library tools + +USES= gmake libtool:build + +PLIST_FILES= bin/sha1dcsum \ + bin/sha1dcsum_partialcoll \ + include/sha1dc/sha1.h \ + lib/libsha1detectcoll.so \ + lib/libsha1detectcoll.so.0 \ + lib/libsha1detectcoll.so.0.0.0 +do-install: + ${INSTALL_PROGRAM} ${WRKSRC}/bin/.libs/sha1dcsum* ${STAGEDIR}${PREFIX}/bin + @${MKDIR} ${STAGEDIR}${PREFIX}/include/sha1dc + ${INSTALL_DATA} ${WRKSRC}/lib/sha1.h ${STAGEDIR}${PREFIX}/include/sha1dc + ${INSTALL_LIB} ${WRKSRC}/bin/.libs/libsha1detectcoll.so.0.0.0 ${STAGEDIR}${PREFIX}/lib + ${LN} -sf ./libsha1detectcoll.so.0.0.0 ${STAGEDIR}${PREFIX}/lib/libsha1detectcoll.so + ${LN} -sf ./libsha1detectcoll.so.0.0.0 ${STAGEDIR}${PREFIX}/lib/libsha1detectcoll.so.0 + +.include Added: head/security/sha1collisiondetection/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/sha1collisiondetection/distinfo Tue Mar 14 14:17:31 2017 (r436154) @@ -0,0 +1,3 @@ +TIMESTAMP = 1489459273 +SHA256 (cr-marcstevens-sha1collisiondetection-stable-v1.0.2_GH0.tar.gz) = ab1a5624d12417b5af9ffe6662546b6932c39c0e4c4bef822851a2d0e53df790 +SIZE (cr-marcstevens-sha1collisiondetection-stable-v1.0.2_GH0.tar.gz) = 778302 Added: head/security/sha1collisiondetection/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/sha1collisiondetection/pkg-descr Tue Mar 14 14:17:31 2017 (r436154) @@ -0,0 +1,16 @@ +This library and command line tool were designed as near drop-in +replacements for common SHA-1 libraries and sha1sum. They will compute +the SHA-1 hash of any given file and additionally will detect +cryptanalytic collision attacks against SHA-1 present in each file. +It is very fast and takes less than twice the amount of time as +regular SHA-1. + +There are two programs: sha1dcsum and sha1dcsum_partialcoll. +The first program, sha1dcsum, will detect and warn for files that were +generated with a cryptanalytic SHA-1 collision attack like the one +documented at https://shattered.io/. The second program, +sha1dcsum_partialcoll, will detect and warn for files that were +generated with a cryptanalytic collision attack against reduced- +round SHA-1 (of which there are a few examples so far). + +WWW: https://github.com/cr-marcstevens/sha1collisiondetection