security/openvpn-auth-ldap: Fix buffer overflow in C/R function

Bump PORTREVISION
Security:	e915b60e-ea25-11ef-a1c0-0050569f0b83

Mk/**ldap.mk: Convert USE_LDAP to USES=ldap

Convert the USE_LDAP=yes to USES=ldap and adds the following features:

- Adds the argument USES=ldap:server to add openldap2{4|5|6}-server as
  RUN_DEPENDS
- Adds the argument USES=ldap<version> and replaces WANT_OPENLDAP_VER
- Adds OPENLDAP versions in bsd.default-versions.mk
- Adds USE_OPENLDAP/WANT_OPENLDAP_VER in Mk/bsd.sanity.mk
- Changes consumers to use the features

Reviewed by:	delphij
Approved by:	portmgr
Differential Revision: https://reviews.freebsd.org/D38233

Remove WWW entries moved into port Makefiles

Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.

This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.

Approved by:		portmgr (tcberner)

Add WWW entries to port Makefiles

It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.

Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.

There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.

security/openvpn-auth-ldap: Fix crash/update MAINTAINER/bump PORTREVISION

Approved by:	mandree@ (maintainer)

security: remove 'Created by' lines

A big Thank You to the original contributors of these ports:

  *  <ports@c0decafe.net>
  *  Aaron Dalton <aaron@FreeBSD.org>
  *  Adam Weinberger <adamw@FreeBSD.org>
  *  Ade Lovett <ade@FreeBSD.org>
  *  Aldis Berjoza <aldis@bsdroot.lv>
  *  Alex Dupre <ale@FreeBSD.org>
  *  Alex Kapranoff <kappa@rambler-co.ru>
  *  Alex Samorukov <samm@freebsd.org>
  *  Alexander Botero-Lowry <alex@foxybanana.com>
  *  Alexander Kriventsov <avk@vl.ru>
  *  Alexander Leidinger <netchild@FreeBSD.org>

Cleanup: for ports under s* categories, drop redundant GH_* knobs.

net/openldap24-client: bump all dependent port

In the earlier net/openldap24-server commit, only those which depend on
net/openldap24-sasl-client were bumped. Bumping all dependent port that
didn't get a bump to force a rebuild of these packages.

Suggested by:	kib

Remove # $FreeBSD$ from Makefiles.

security/openvpn-auth-ldap: add -fcommon to future-proof

libobjc2 may need some love, but I'm not too acquainted with
Objective-C to do that... so limit my effort to my own port

PR:		248885
Reported by:	pkg-fallout@ on FreeBSD -head

security/openvpn-auth-ldap: try to fix head fallout from -export-dynamic

The option is a linker option but is passed to cc verbatim, and this
causes fallout complaints on head i386 (13):

--- lemon ---
cc  -o lemon lemon.o  -export-dynamic
ld: warning: cannot find entry symbol xport-dynamic; defaulting to 0x4049B0
===> making all in src
--- all ---
--- auth-ldap.o ---
cc -fPIC  -O2 -pipe  -fPIC -fstack-protector-strong -DLDAP_DEPRECATED
-fno-strict-aliasing  -Wno-import -L/usr/local/lib -I/usr/local/include -fPIC
-I/usr/local/include  -D_THREAD_SAFE  -fobjc-exceptions -fno-strict-aliasing -O2
-pipe  -fPIC -fstack-protector-strong -DLDAP_DEPRECATED -fno-strict-aliasing 
-DHAVE_CONFIG_H -Wall -I/usr/local/include -I/usr/local/include
-I/usr/local/include -I/usr/local/include -c auth-ldap.m -o auth-ldap.o -I.
-I../src -I.. -I../src -I. -I../tests -I../tests
--- TRConfigParser.m ---
./tools/lemon -T../tools/lempar.c -m -q TRConfigParser.lemon -OTRConfigParser.m
Segmentation fault (core dumped)

WWW/DL link maintenance in pkg-descr and Makefile

...to avoid permanent redirects, or broken sites.

MFH:		2020Q2 (blanket, download/WWW URL chase)

Regular USE_GITHUB cleanup.

openvpn-auth-ldap: Update to Github 2.0.4 release.

* Switch from a handmade SVN checkout to Github tag
* Drop MAKE_JOBS_UNSAFE and post-patch, no longer needed

PR:		244022
Submitted by:	Geoffroy Desvernay

Implement new virtual category: net-vpn for VPN related ports

based on discussion at ports@ [1]. As VPN softwares are put in different
physical category net and security. This is a little bit confusing. Let's
give them new virtual category net-vpn.

[1] https://lists.freebsd.org/pipermail/freebsd-ports/2019-April/115915.html

PR:		239395
Submitted by:	myself
Approved by:	portmgr (mat)
Differential Revision:	https://reviews.freebsd.org/D21174

Add OpenSSL base dir to CONFIGURE_ARGS.

WHile I cannot reproduce the issue, it seems harmless and may help
certain system configurations.

PR:		235776
Submitted by:	dewayne@heuristicsystems.com.au

Move Objective-C ports to the v2 GNUstep ABI.

 * Bump the LLVM revision used for GNUstep to 7, the minimum to support
   the new ABI.
 * GNUstep-back does not work with lld, so mark it to use Gold (BFD LD
   doesn't seem able to link Objective-C things).
 * Turn off some annoying debug logs in GNUstep back, which generate
   several messages per second when you move the mouse.  These should
   never have been enabled in a release build anyway.
 * Downgrade Cenon to 4.0.2.  This was the last version to actually work
   with GNUstep (the later ones use XCode >= 5 .xib files, which GNUstep
   can't parse).
 * Update gorm to git head. The current release doesn't work with the
   new Objective-C ABI, but -head has the patches to fix it.
 * Update PikoPixel and add it to the gnustep-app meta-package.
 * Update the three core GNUstep packages to the latest release.
 * Update gnumail and pantomime to the latest release and fix a linking
   error with the new ABI.
 * Update GNUstep FTP to the latest version.

Reviewed by:	bapt (previous version)

Update Objective-C LLVM version to 6.0.

Fixes aarch64 build.  Reduces depends on obsolete LLVM 4.0.

PR:		230116
Submitted by:	mikael.urankar@gmail.com
Approved by:	theraven (prior version)
Sponsored by:	DARPA, AFRL

Revise Github comment.

No longer depend on OpenVPN sources.

OpenVPN 2.3.0 and newer have installed the openvpn-plugin.h file.
Cease requiring and extracting the source tarball to obtain this file
(as we used to do with 2.2.x and older).

Modernize, resolving DEVELOPER=yes warnings.

While here, do not include sys/types.h but rather only stddef.h, for the
openvpn-plugin.h test patch.

Unbreak openvpn-plugin.h detection.

Apparently the header file changed in openvpn 2.4.2 and now requires
#include <sys/types.h> explicitly to pull the typedef for size_t in.
Add that header line to the test so it won't report a false negative result.

Reported by:	pkg-fallout@

Move devel/libcheck to devel/check

- Bump PORTREVISION for dependent ports

Add some comments on the Googlecode->Github export. Not yet formally converted.

${RM} already has -f.

PR:		213570
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	Absolight

GOOGLE_CODE has gone away.

- If a port has another upstream, remove GOOGLE_CODE
- If a port only has GOOGLE_CODE mark it BROKEN

Some ports have a local mirror configured but for security reasons, it
is not considered upstream.

Sponsored by:	Absolight

- Fix trailing whitespace in pkg-descrs, categories [p-x]*

Approved by:	portmgr blanket

Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight

MASTER_SITES cleanup.

- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
  of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
  no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.

While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.

Also, replace some EXTRACT_SUFX occurences with USES=tar:*.

Checked by:	make fetch-urlall-list
With hat:	portmgr
Sponsored by:	Absolight

Grab maintainership and unmark BROKEN.
Bump PORTREVISION for the benefit of those that used TRYBROKEN=*.

PR: 190497

Fix crash when configuration file is not EOL-terminated.

Fix warnings due to missing #import.

work around missing deps in src/Makefile[.in]

Add a fix to prevent crashes on close if initialization failed.

Update to upstream SVN revision 1379 and refresh patches.

Needs real-world testing, so is still marked BROKEN.
If there are positive test results from reporter or third parties,
the BROKEN can be removed.

PR:		190497

Mark the critical warning as an error, and bump PORTREVISION,
so that everyone is aware of the run-time issues.

Mark broken.

Make sure that -export-dynamic is passed to the linker.

Enable WITH_DEBUG=yes.

Release three ports of snb@

Sean Nicholas Barkas is releasing these ports:
  sysutils/farbot
  security/openvpn-auth-ldap
  net/splatd

Thanks for looking after these, Sean!

PR:	191967

net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample

Convert to USES=objc and drop hard coded gcc 4.6 dep

Update the default version of GCC used in the Ports Collection from
GCC 4.6.4 to GCC 4.7.3.  This entails updating the lang/gcc port as
well as changing the default in Mk/bsd.default-versions.mk.

Part II, Bump PORTREVISIONs.

PR:		182136
Supported by:	Christoph Moench-Tegeder <cmt@burggraben.net> (fixing many ports)
Tested by:	bdrewery (two -exp runs)

This port really requires not just GCC, but also no version newer than
GCC 4.6 -- so, set USE_GCC=4.6.

Approved by:	snb (maintainer)

archivers/xz is in base for all versions and has been removed from the ports
tree

Expand comment on why GCC is required.

Chase openvpn source layout changes,
and chase base GCC changes (Objective-C no longer build in 9+, uses port),
and make a few other changes, to fix the build. [1]

While here:
- support staging
- strip installed .so file unless under WITH_DEBUG regime
- convert NOPORTEXAMPLES to optionsNG, too

PR:		ports/175692
Submitted by:	snb@ (maintainer) [1]

Add NO_STAGE all over the place in preparation for the staging support (cat:
security)

-remove MD5

- Mark BROKEN on 9-CURRENT: fails to configure

  configure: error: Objective C preprocessor "/lib/cpp" fails sanity check

Reported by:    pointyhat

Chase after net/openldap24-server update.

Reminded by:    miwi

- Try creatively to prevent this from failing on pointyhat

Reported by:    pointyhat

Conditionally install configuration example (auth-ldap.conf) to EXAMPLESDIR.

PR:             149229 (based on)
Submitted by:   Alexey V.Degtyarev <alexey@renatasystems.org>
Approved by:    snb (via mail)

Update home page and MASTER_SITES
Approved by:    ehaupt

Change MAINTAINER to my @FreeBSD.org address

Approved by:    erwin

Bump PORTREVISION's after OpenLDAP update.

Suggested by:   rafan

Unmark broken; the missing Objective C header with gcc 4.2 has now been
fixed.

PR:             ports/117967
Submitted by:   maintainer
Approved by:    portmgr (self)

Mark as broken on gcc4.2.

Remove errornous # DO NOT DELETE lines caused by makedepend(1)

Remove cruft.

New port: security/openvpn-auth-ldap - LDAP authentication plugin for OpenVPN

        The OpenVPN Auth-LDAP Plugin implements username/password
        authentication via LDAP for OpenVPN 2.x. It also includes
        some integration with the OpenBSD packet filter, supporting
        adding and removing VPN clients from PF tables.

        WWW: http://dpw.threerings.net/projects/openvpn-auth-ldap/

PR:             ports/113925
Submitted by:   Nick Barkas <snb@threerings.net>