net/socat: Update to 1.8.0.1

Changes: http://www.dest-unreach.org/socat/CHANGES

net/socat: Ensure socat respects non-default SSL libraries

PR:		277517 (based on)
Reported by:	dave@jetcafe.org

MAN?PREFIX: eleminate its usage  and move man to share/man

net/socat: Add configurable IPv4/IPv6 preference option

In socat version 1.8.0.0, a new feature was introduced allowing users to
configure the default IP version preference at build time using the
`--enable-default-ipv` option. This change resulted in a default
preference for IPv6, which led to unexpected behavior for some users.

To address this, a new option has been added to the FreeBSD port of
socat. By default, the port restores the previous behavior where IPv4
is preferred. However, users now have the option to explicitly specify a
preference for IPv6 if desired.

This change aims to align with the Principle of Least Astonishment
(POLA) and provide users with flexibility in choosing their preferred IP
version.

PR:		275653 (based on)

net/socat: Update to 1.8.0.0

net/socat: Update to 1.7.4.4

Remove WWW entries moved into port Makefiles

Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.

This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.

Approved by:		portmgr (tcberner)

Add WWW entries to port Makefiles

It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.

Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.

There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.

net: remove 'Created by' lines

A big Thank You to the original contributors of these ports:

  *  <ports@c0decafe.net>
  *  Aaron Dalton <aaron@FreeBSD.org>
  *  Aaron Straup Cope <ascope@cpan.org>
  *  Aaron Zauner <az_mail@gmx.at>
  *  Adam Jette <jettea46@yahoo.com>
  *  Adam Weinberger <adamw@FreeBSD.org>
  *  Alan Eldridge <alane@geeksrus.net>
  *  Alex Bakhtin <Alex.Bakhtin@gmail.com>
  *  Alex Deiter <Alex.Deiter@Gmail.COM>
  *  Alex Dupre <ale@FreeBSD.org>
  *  Alex Dupre <sysadmin@alexdupre.com>

net/socat: Update to 1.7.4.3

net/socat: Update to 1.7.4.2

PR:		259657

cleanup: drop support for EOL FreeBSD 11.X

Search criteria used:
- 11.4
- OSREL*
- OSVER*
- *_FreeBSD_11

Input from:
- adridg: devel/qca-legacy
- jbeich: _WITH_DPRINTF, _WITH_GETLINE, GNU bfd workarounds
- sunpoet: security/p5-*OpenSSL*

Reviewed by:	doceng, kde, multimedia, perl, python, ruby, rust
Differential Revision: https://reviews.freebsd.org/D32008
Test Plan: make index

all: Remove all other $FreeBSD keywords.

Remove # $FreeBSD$ from Makefiles.

Enhance the sample configuration with a TCP example for making things
easier to start as quickly as possible.

PR:		253180
Submitted by:	Harald Schmalzbauer <bugzilla.freebsd@omnilan.de>

Update to 1.7.4.1

Update to 1.7.4.0

Fix build with clang11

Notified by:	pkg-fallout

Update to 1.7.3.4

Drop the ipv6 virtual category for n* category as it is not relevant anymore

Update devel/readline to 8.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://tiswww.case.edu/php/chet/readline/CHANGES
PR:		236156
Exp-run by:	antoine

- Update to 1.7.3.3
- Pacify portlint

Add multi-instances rc(8) support by using a config file.

PR:		226405
Submitted by:	Harald Schmalzbauer <bugzilla.freebsd@omnilan.de>

Reinstate a patch from r384479 that was accidentally removed in r432474. It
restores support to bridge a serial port across tcp.

Notified by:	leres, Alexandre.Fenyo@secu-independants.fr (via mail)
MFH:		2018Q2 (blanket)

Patch socat/Makefile to reference all of dependencies when
linking filan so that parallel make is reliable again.

PR: 226012
Reviewed by: ler (mentor)
Approved by: ler (mentor)
Differential Revision: https://reviews.freebsd.org/D14445

security/openssl-devel: Remove BROKEN from some ports

 * databases/freetds: Fixed 2017-02-14
 * databases/postgresql10-server: Fixed 2016-09-15 [1]
 * ftp/lftp: Fixed in 4.8.0
 * ftp/proftpd: Fixed in 1.3.5c
 * ftp/wget: Fixed in 1.19.3 [2]
 * lang/erlang-runtime20: Fixed in 20.0
 * net/socat: Fixed in 1.7.3.2
 * security/libssh2: Fixed in 1.8.0 [3]
 * security/p5-Crypt-OpenSSL-X509: Fixed in 1.8.8
 * sysutils/bacula9-server: Fixed in 9.0.6
 * www/nginx: Fixed in 1.9.14

 * Bulk build OK 10.3/11.1 both i386 and amd64:
    - multimedia/librtmp
    - net/libvncserver
    - www/lynx

PR:		225875 [1], 225872 [2], 225873 [3]

Update devel/readline to 7.0 patch 3

- Bump PORTREVISION for shlib change

Changes:	https://cnswww.cns.cwru.edu/php/chet/readline/CHANGES
		https://lists.gnu.org/archive/html/bug-bash/2016-09/msg00107.html
		https://lists.gnu.org/archive/html/bug-readline/2017-01/msg00002.html
Differential Revision:	https://reviews.freebsd.org/D11172
PR:		219947
Exp-run by:	antoine

Remove superfluous configure argument.

Notified by:	mat

socat will automatically link against readline if devel/readline is installed.
Make readline optional and explicitly enable/disable during configure. This
did not affect pkg only users as readline is not present on package build
clusters but might affect (depending on readline presence) users that manually
build ports. Therefore bump PORTREVISION.

PR:		218370 (based on)
Submitted by:	sunpoet

Update to 1.7.3.2

Mark some ports as not openssl-devel ready.

Sponsored by:	Absolight

Remove antique and now useless line about ARCH 'arm'.

Reported by:	jbeich

Don't use USE_OPENSSL anymore.

Fix usage of WITH_OPENSSL_BASE, WITH_OPENSSL_PORT and OPENSSL_PORT.

WITH_OPENSSL_* can't be set after bsd.port.pre.mk.
Fold all other usage into using SSL_DEFAULT == foo

PR:		210149
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	The FreeBSD Foundation, Absolight
Differential Revision:	https://reviews.freebsd.org/D6577

net/socat: Fix OpenSSL build issues

  - While here fix CPE Vendor (NVD has dest-unreach)
  - Fix build when OpenSSL from ports was built without SSLv3 support
  - Fix build when OpenSSL is built without compression support
  - Fix build for OpenSSL 1.1.0pre without EGD support

PR:		197192
Reviewed by:	koobs (mentor), feld (mentor), ehaupt (maintainer)
Approved by:	feld (mentor), ehaupt (maintainer)
Differential Revision:	D2691

net/socat: Update to 1.7.3.1

This release fixes an important security bug with a hardcoded DH
parameter not being a prime number.

http://www.dest-unreach.org/socat/contrib/socat-secadv7.html

MFH:		2016Q1
Security:	https://vuxml.freebsd.org/freebsd/a52a7172-c92e-11e5-96d6-14dae9d210b8.html

Fix build with ports version of OpenSSL. This broke when SSLv3 support was
removed.

Submitted by:	Herve Commowick <herve.commowick@adobe.com>

With SOCAT on systems where b0 to b4000000 options are not available, like
FreeBSD, setting the speed of a TERMIOS terminal is done using the ispeed and
ospeed options.

But when using simultaneously ispeed and ospeed parameters with SOCAT, the speed
values are set within two distinct ioctl requests, so changing the speed of
terminals or devices that need matching input and output returns an Invalid
argument error (the TIOCSETA/TIOCSETAW/TIOCSETAF ioctl returns -1 and sets errno
to EINVAL).

This is especially the case On FreeBSD, where many tty device drivers need
matching input and output speeds: - those that depend on ucom(4): uark(4),
ubsa(4), ubser(4), uftdi(4), umcs(4), uplcom(4), uslcom(4), uvscom(4) - some
others, even not depending on ucom(4): sio(4), digi(4), rp(4) But some don't:
tty(4)

Add CPE

Update to 1.7.3.0

Move MASTER_SITES from CRITICAL to LOCAL/ehaupt

Quiesce mkdir

Convert USE_BZIP2=yes to USES=tar:bzip2

Update to 1.7.2.4

Now that this port is staged and DOCS defined we can stop testing for DOCS in
any install target.

- Respect PREFIX
- Use procname instead of hardcoded /usr/local/bin/socat

Submitted by:	sunpoet (myself)
Approved by:	ehaupt (maintainer)

Update to 1.7.2.3, this fixes a security issue, where socats PROXY-CONNECT
address was vulnerable to a buffer overflow with data provided on the command
line.

Security:       CVE-2014-0019

This patch will make the socat rc script more reliable. [1]

While here, use 'compiler' USES macro to determine compiler type.

PR:		185946 [1]
Submitted by:	feld

Support staging.

Add NO_STAGE all over the place in preparation for the staging support (cat:
net)

Change the clang detector to use a pattern match instead of a conditional
define and always test. This fixes build on 9-STABLE and saves some shell
commands.

PR:		181007
Submitted by:	"r4721@tormail.org" <r4721@tormail.org>

Fix logic in clang detection.

Notified by:	crees

Remove MAKE_JOBS_SAFE which is now default.

Make sure the binaries are linked against the port OpenSSL libraries when
and only when WITH_OPENSSL_PORT is defined.

PR:             180395 (based on)
Submitted by:   "r4721@tormail.org" <r4721@tormail.org>

Rework previous commit. The problem is not clang 3.3 but rather the fact that
with 1000024 CC became 'cc' rather than 'clang'.

Handle clang 3.3 fallout. I wish we had a __FreeBSD_version tag from when the
clang 3.3 import happened, that way we wouldn't have to resort to such hacks.

Update to 1.7.2.2

Security:	CVE-2013-3571

Change rc script to launch socat using daemon and remove the unnecessary
wrapper script.

PR:		176321
Submitted by:	Mark Felder <feld@feld.me>

- Use DOC instead of NOPORTDOCS
- Pacify portlint
- Convert header

Mark as broken on ARM.

Approved by:	maintainer

Fix build with clang

PR:             168164
Submitted by:   bapt

Update to 1.7.2.1

Fix startup script issue with a wrapper script obtained from www/gatling.

This wrapper tries to emulate part of the functionality usually supplied by
software like daemontools or runit. It is used to start socat which does not
daemonize itself and logs to stdout/stderr. It redirects stdout and stderr to
logger(1) via a fifo.

While here also remove if-statement around PORTDOCS based on NOPORTDOCS since
it's redundant with checks in ports/Mk/bsd.ports.mk.

PR:             166947
Submitted by:   Mark Felder <feld@feld.me>

In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.

- Update to 1.7.2.0 (this release allows tun/tap interfaces without IP
  addresses)
- Remove the option to build without OpenSSL, we're supposed to provide
  sensible default configurations and options. Building a port without
  OpenSSL support in 2011 makes no sense. This has also been discussed at the
  Dev Summit 2011

Feature safe:   yes

Add LICENSE and remove MD5 sums.

Feature safe:   yes

Update to 1.7.1.3

Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#

Update to 1.7.1.2

Update to 1.7.1.1

Fix a few "bad example" problems in the rc.d scripts that have been
propogated by copy and paste.

1. Primarily the "empty variable" default assignment, which is mostly
${name}_flags="", but fix a few others as well.
2. Where they are not already documented, add the existence of the _flags
(or other deleted empties) option to the comments, and in some cases add
comments from scratch.
3. Replace things that look like:
prefix=%%PREFIX%%
command=${prefix}/sbin/foo
to just use %%PREFIX%%. In many cases the $prefix variable is only used
once, and in some cases it is not used at all.
4. In a few cases remove ${name}_flags from command_args
5. Remove a long-stale comment about putting the port's rc.d script in
/etc/rc.d (which is no longer necessary).

No PORTREVISION bumps because all of these changes are noops.

Mark MAKE_JOBS_SAFE

Set PORTSCOUT in order to skip beta version of the distfile

- Update to 1.7.0.0
- Add ipv6 sub category
- Add additional master sites
- Provide an rc script
- Take maintainer-ship

Reset nivo+kw+ports.bfa274@is-root.com due to lack of time to work
on FreeBSD at the moment.

Hat:            portmgr

- Incorporate Sainsbury's service name resolution patch:
  http://www.dest-unreach.org/socat/contrib/socat-servicenames.html
- Incorporate Lucq's file descriptor patch:
  http://www.dest-unreach.org/socat/contrib/socat-maxfds.html

PR:             ports/113283
Submitted by:   bf <bf2006a@yahoo.com>
Approved by:    Nils Vogels <nivo@is-root.com> (maintainer)

- Update to 1.6.0.0

PR:             ports/111372
Submitted by:   Nils Vogels <nivo+kw+ports.bfa274 at is-root.com> (maintainer)

- Update to 1.5.0.0
- Transfer maintainership to submitter

PR:             103556
Submitted by:   Nils Vogels <nivo+kw+ports.bfa274 at is-root.com>

Reset inactive maintainer who has not responded to email.

Hat:            portmgr

- Patches to make libwrap usage functional
- Bump PORTREVISION
- portlint(1)

PR:             93708
Submitted by:   Rudolf Cejka <cejkar___fit.vutbr.cz>
Approved by:    maintainer timeout (66 days)

Update to version 1.4.3.1.

The changes since 1.4.2.0 are listed on http://www.dest-unreach.org/socat/

Approved by:    markus, maintainer

SHA256ify

Approved by: krion@

- Update to 1.4.2.0 [1]
- OPTIONSify
- Fix the packing list when NOPORTDOCS is defined
- Polish the Makefile

PR:             ports/82387 [1]
Submitted by:   maintainer [1]

At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.

Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.

- Update to 1.4.0.3 and close vulnerability

PR:             ports/73783
Submitted by:   rik <freebsd-ports@rikrose.net> (maintainer)

socat 1.4.0.0 has buggy SOCKS4A code. The maintainer patch on the web site has
(probably had, now) a platform-specific bug,
which was resolved in conjunction with the socat author earlier. The problem
will be corrected in socat 1.4.0.1, but in the
meantime is provided separately. This patch adds the fix as a replacement
xio-socks.c.

I have also set myself as the maintainer as part of the patch below. I am
willing to take on maintainership of this port.

PR:             69317
Submitted by:   rik <freebsd-ports@rikrose.net>

Update to 1.4.0.0

PR:             ports/68483
Submitted by:   Nicolas Jombart <ecu@ipv42.net>

SIZEify.

- Update to 1.3.2.2

PR:             58291
Submmitted by:  Nicolas Jombart <ecu@ipv42.net>
Approved by:    krion (implicitly)

Update to 1.3.2.1

Submitted by:   Nicolas Jombart <ecu@ipv42.net>
PR:             56032

Update net/socat: 1.3.1.0 -> 1.3.2.0

* A new mode allows you to directly connect an
  executed program to the other side of the relay.
* A couple of minor improvements and corrections
  have been made.

PR:             54284
Submitted by:   Kirill Ponomarew <ponomarew@oberon.net>

Update net/socat to 1.3.1.0
Add a few docs
Change COMMENT to something < 70 chars

PR:             53083
Submitted by:   Nicolas Jombart <ecu@ipv42.net>
Approved by:    edwin (mentor)

De-pkg-comment.

Update to 1.3.0.1

PR:             46306
Submitted by:   KATO Tsuguru <tkato@prontomail.com>

upgrade to 1.3.0.0

upgrade to 1.2.0.0

upgrade to 1.1.0.0

add socat 1.0.4.2
A relay for bidirectional data transfer between two indep. data channels