From owner-svn-ports-head@freebsd.org Mon Jun 12 10:14:10 2017 Return-Path: Delivered-To: svn-ports-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 28D0ABF8B53; Mon, 12 Jun 2017 10:14:10 +0000 (UTC) (envelope-from tz@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 0370B65748; Mon, 12 Jun 2017 10:14:09 +0000 (UTC) (envelope-from tz@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id v5CAE92D011824; Mon, 12 Jun 2017 10:14:09 GMT (envelope-from tz@FreeBSD.org) Received: (from tz@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id v5CAE8VV011820; Mon, 12 Jun 2017 10:14:08 GMT (envelope-from tz@FreeBSD.org) Message-Id: <201706121014.v5CAE8VV011820@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: tz set sender to tz@FreeBSD.org using -f From: Torsten Zuehlsdorff Date: Mon, 12 Jun 2017 10:14:08 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r443421 - in head/security: . rubygem-securecompare X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Jun 2017 10:14:10 -0000 Author: tz Date: Mon Jun 12 10:14:08 2017 New Revision: 443421 URL: https://svnweb.freebsd.org/changeset/ports/443421 Log: New port: security/rubygem-securecompare securecompare borrows the secure_compare private method from ActiveSupport::MessageVerifier which lets you do safely compare strings without being vulnerable to timing attacks. Useful for Basic HTTP Authentication in your rack/rails application. WWW: https://github.com/samuelkadolph/securecompare Added: head/security/rubygem-securecompare/ head/security/rubygem-securecompare/Makefile (contents, props changed) head/security/rubygem-securecompare/distinfo (contents, props changed) head/security/rubygem-securecompare/pkg-descr (contents, props changed) Modified: head/security/Makefile Modified: head/security/Makefile ============================================================================== --- head/security/Makefile Mon Jun 12 10:06:14 2017 (r443420) +++ head/security/Makefile Mon Jun 12 10:14:08 2017 (r443421) @@ -1076,6 +1076,7 @@ SUBDIR += rubygem-ruby-rc4 SUBDIR += rubygem-ruby-saml SUBDIR += rubygem-scrypt + SUBDIR += rubygem-securecompare SUBDIR += rubygem-signet SUBDIR += rubygem-six SUBDIR += rubygem-sshkey Added: head/security/rubygem-securecompare/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/rubygem-securecompare/Makefile Mon Jun 12 10:14:08 2017 (r443421) @@ -0,0 +1,18 @@ +# $FreeBSD$ + +PORTNAME= securecompare +PORTVERSION= 1.0.0 +CATEGORIES= security rubygems +MASTER_SITES= RG + +MAINTAINER= ruby@FreeBSD.org +COMMENT= Constant time string comparison + +LICENSE= MIT +LICENSE_FILE= ${WRKSRC}/LICENSE + +NO_ARCH= yes +USE_RUBY= yes +USES= gem + +.include Added: head/security/rubygem-securecompare/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/rubygem-securecompare/distinfo Mon Jun 12 10:14:08 2017 (r443421) @@ -0,0 +1,3 @@ +TIMESTAMP = 1497262188 +SHA256 (rubygem/securecompare-1.0.0.gem) = cb0c6599deaaedf6d28f8d88538b06e7198c4826b1b8edb1dbeb44a2162fc62b +SIZE (rubygem/securecompare-1.0.0.gem) = 6656 Added: head/security/rubygem-securecompare/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/rubygem-securecompare/pkg-descr Mon Jun 12 10:14:08 2017 (r443421) @@ -0,0 +1,6 @@ +securecompare borrows the secure_compare private method from +ActiveSupport::MessageVerifier which lets you do safely compare strings without +being vulnerable to timing attacks. Useful for Basic HTTP Authentication in your +rack/rails application. + +WWW: https://github.com/samuelkadolph/securecompare