graphics/ilmbase,openexr: fix vulnerabilities
Uses backported patches from upstream Git repository, without the
exr2aces parts, and regenerates all openexr patches from scratch.
The openexr part looks heaviweight because it regenerates all patches.
Security: e4d9dffb-2a32-11ea-9693-e1b3f6feec79
Security: CVE-2018-18443
Security: CVE-2018-18444
Approved by: ports-secteam@ (blanket, adding security patches)
sysutils/e2fsprogs: update to 1.45.4 (security fix)
Release Notes: http://e2fsprogs.sourceforge.net/e2fsprogs-release.html#1.45.4
This removes some patches or hunks that were integrated upstream.
Security: ad3451b9-23e0-11ea-8b36-f1925a339a82
Security: CVE-2019-5094
Approved by: ports-secteam@ (joneum)
This change fixes tests and likely runtime in certain locale environments
by replace the existing test_scandir.py patch with a backported upstream
patch from PR #109 [1][2], coupled with setting an appropriate locale.
While I'm here:
- Strip shared library and add LICENSE_FILE
Tests now all pass on all Python versions (2.7-3.8)
[1] https://github.com/benhoyt/scandir/pull/109
[2] https://github.com/benhoyt/scandir/issues/122
Approved by: portmgr (blanket: ports compliance, bugfix)
Approved by: ports-secteam (blanket(s): ports compliance, bugfix)
Fix test invocation with pytest 4.x [1], which was failing with:
if len(param.values) != len(argnames):
E TypeError: object of type 'MarkDecorator' has no len()
While here, fix out of order MASTER_SITES
[1] https://github.com/chardet/chardet/pull/174
Approved by: portmgr (blanket: ports compliance)
Approved by: ports-secteam (blanket(s): bugfix, ports compliance)
While we prefer using CHEESESHOP when souces are provided there, in the
event it's missing valuable files such as tests, test data, LICENCE, it
is preferable and more robust to use an alternative source entirely, than a
combination of CHEESESHOP (or anything else) combined with another source
for specific files, which can cause issues [1]
This change switches to USE_GITHUB and removes unecessary and associated
Makefile entries accordingly.
[1] ports r516897
See Also:
https://github.com/patrys/httmock/pull/59
PR: 242694
Submitted by: Derek Schrock <dereks lifeofadishwasher com>
Approved by: ports-secteam (blanket: fetch/build fix)
Genshi 0.7 doesn't support Python 3.5+, but the port currently allows it
to be built with any Python version. This doesn't affect the build, but
produces a broken runtime, including for all Genshi dependents:
Genshi (0.7) tests:
2.7: Ran 854 tests in 3.623s - FAILED (failures=1)
3.5: Ran 858 tests in 3.607s - FAILED (failures=4, errors=34)
3.6: Ran 858 tests in 3.610s - FAILED (failures=4, errors=34)
3.7: Ran 858 tests in 3.313s - FAILED (failures=11, errors=91)
3.8: Ran 858 tests in 3.094s - FAILED (failures=32, errors=359)
Genshi added 3.5+ support in subsequent versions [1]:
0.7.2: Add support for Python 3.8.
0.7.1: Add support for Python 3.5, 3.6 and 3.7
Given Genshi 0.7 -> 0.7.3 involves only additional Python version support
and bugfix-only changes, this change updates the port to 0.7.3, instead of
restricting (correctly) its use to USES=python:-3.4, and is intended to be
merged to the quarterly branch accordingly.
While I'm here:
- Add test target to encourage and ease future QA
- Strip speedup shared library on Python versions it builds in
- Remove backported patch to setup.py (now in this release)
- Use CHEESESHOP and update COMMENT according to Python policies
Genshi (0.7.3) QA tests:
2.7: Ran 861 tests in 3.626s - OK
3.5: Ran 867 tests in 3.561s - OK
3.6: Ran 867 tests in 3.540s - OK
3.7: Ran 867 tests in 3.268s - OK
3.8: Ran 867 tests in 3.267s - OK
[1] https://github.com/edgewall/genshi/blob/0.7.3/ChangeLog
Approved by: portmgr (blanket(s): runtime bugfix, ports (python) compliance)
Approved by: ports-secteam (blanket(s): runtime bugfix, bugfix release)
The 3.7.7.0 release of pyephem was converted [1] into a stub, depending on
the ephem package, in order to allow software authors to transition to the
new package name.
The ports r511276 commit updating the port to 3.7.7.0 missed the additional
dependency.
This change adds the missing dependency, after astro/py-ephem landed as a
new port in ports r520162, and unbreaks all current astro/pyephem
dependents, and all transitive dependents, including comms/gnuradio [2].
While I'm here:
- Add NO_ARCH
- Bump PORTREVISION given this issue did not affect builds, just runtime
and dependents accordingly.
[1] 5c32679a86
[2] bug 240546
PR: 240735
Submitted by: Rainer Hurling <rhurlin gwdg de>
Approved by: portmgr (blanket(s): missing dependencies, build/run fix (dependents))
Approved by: ports-secteam (joneum)
PyEphem provides an ephem Python package for performing high-precision
astronomy computations. The underlying numeric routines are coded in C
and are the same ones that drive the popular XEphem astronomy application,
whose author, Elwood Charles Downey, generously gave permission for their
use in PyEphem. The name ephem is short for the word ephemeris, which is
the traditional term for a table giving the position of a planet, asteroid,
or comet for a series of dates.
WWW: https://rhodesmill.org/pyephem/
WWW: https://pypi.org/project/ephem/
[1] Based on astro/pyephem
PR: 240736
Submitted by: Rainer Hurling <rhurlin gwdg de>
Approved by: ports-secteam (joneum)
convertdate does not [1] depend on pyephem, which was replaced with
pymeeus in 2.2.0.
Dependency astro/py-pymeeus landed in ports r520157 as a new port.
This issue was identified while QA'ing pyephem dependents for bug 240735
[1] HISTORY.rst:* Replace pyephem, which is now in maintenance mode, with pymeeus.
PR: 240735
Approved by: portmgr (blanket(s): dependencies, runtime bugfix)
Approved by: ports-secteam (implicit, via ports r520489 approval)
PyMeeus is a Python implementation of the astronomical algorithms
described in the classical book "Astronomical Algorithms, 2nd Edition,
Willmann-Bell Inc. (1998)" by Jean Meeus.
WWW: https://github.com/architest/pymeeus
PR: 240735
Approved by: ports-secteam (joneum)
- According to @koobs the dependency on pyephem/ephem is spurious hence removed.
- When gnuradio was first imported into the tree, UHD (Ettus) was pretty much the only
viable high speed device for it. This is no longer true so default option removed.
- Noted plist problem with removed UHD corrected.
PR: ports/240546
Reported by: w.schwarzenfeld@utanet.at
Approved by: portmgr (joneum)
graphics/drm-legacy-kmod: Update snapshot
Update the snapshot of graphics/drm-legacy-kmod.
This is an update for the deprecation of timeout_t
Approved by: portmgr (implicit, drm-drivers blanket)
net-mgmt/netbox: Fix assignment of IP addresses to interfaces
* Backport a patch from upstream's repository which fixes the assignment of
existing IP addresses to interfaces.
Without that patch the assignment of an IP address gives no error but the
interface doesn't contain the assigned IP address at the end.
* Bump PORTREVISION for package change.
Approved by: ports-secteam bugfix blanket
net-mgmt/netbox: Update to 2.6.8
* Backport a patch from upstream that fixes an exception on password change
page for local users.
Changelog:
Enhancements:
* Disable password change form for LDAP-authenticated users
* Display cable colors on device view
* Remove obsolete P3P policy header
* Add query filters for created and last_updated fields
* Allow the underscore character in IPAddress DNS names
Bug Fixes:
* Fix validation error when editing power cables in bulk
* Fix exception when connecting a cable to a RearPort with no corresponding
FrontPort
* Include weight field in prefix/VLAN role form
* Include comments on PowerFeed view
* Fix link for assigned ipaddress in interface page
* Prevent exception when importing an invalid cable definition
* Correctly indicate power feed terminations on cable list
* Fix API filtering of interfaces by more than one device name
* Enforce client validation for minimum service port number
https://github.com/netbox-community/netbox/releases/tag/v2.6.8
Approved by: ports-secteam (joneum)
games/anki: Add pkg-message with installation instructions
* Improve the user experience by adding a pkg-message which gives some
advice that audio/lame needs to be installed manually afterwards when
installing from the official FreeBSD package repositories.
* Bump PORTREVISION to include the pkg-message.
PR: 242528
Submitted by: PauAmma <pauamma@gundo.com> (based on)
Approved by: ports-secteam (joneum)
net-mgmt/py-ciscoconfparse: Update to 1.4.10
Changelog since 1.4.7:
* Add support for parsing "pathlib.Path" objects which contain a
configuration
* Add ".as_cidr_net" and ".as_cidr_addr" on "IPv4Obj" and "IPv6Obj"
* Add support for name and track on IPv6 routes
net-mgmt/py-ciscoconfparse: Update to 1.4.11
Changelog:
* Explicitly close() open filehandles
Approved by: ports-secteam (joneum)
Add a patch to let the implicitclass backend run the ipp backend.
This fixes printer queues for remote printers detected by cups-browsed.
PR: 242615
Submitted by: J.R. Oldroyd <fbsd@opal.com>
Approved by: ports-secteam (blanket)
Fix configure when the CDPARANOIA option is enabled. It should depend on
sysutils/libcdio-paranoia, not audio/cdparanoia.
Run-time dependency libcdio_paranoia found: NO (tried pkgconfig)
src/input/plugins/meson.build:9:0: ERROR: Dependency "libcdio_paranoia" not found, tried pkgconfig
The ISO9660 option depends on sysutils/libcdio, not sysutils/libcdio-paranoia.
Bump PORTREVISION for LIB_DEPENDS changes.
Approved by: portmgr (build-fix blanket)
Approved by: ports-secteam (build-fix blanket)
- Update to 2.9.7. This release fixes CVE-2016-6318. Excerpt from NEWS:
* apply patch to fix CVE-2016-6318 Stack-based buffer overflow when
parsing large GECOS field
* fix a buffer overflow processing long words
* historical research and updates to repository tags to correct history,
and suggestions for new release process (Neustradamus)
- Replace a local patch with an upstream patch.
https://github.com/cracklib/cracklib/commit/a1379d0
- Apply a patch from the upstream to fix build.
https://github.com/cracklib/cracklib/commit/77082c4
- OPTIONize NLS and add pkg-plist to appease portlint.
Approved by: ports-secteam (miwi)
Use clang 7 as compiler on 11.x and 12.x to fix build.
clang 8 and later error for duplicate definitions of enum values. mdb
depends on having identical but duplicate definitions. This was fixed
differently in 13 with a change to the kernel, but that change is
disruptive and cannot be easily backported.
Reported by: pkg-fallout, Attila Nagy
Approved by: bdrewery
Differential Revision: https://reviews.freebsd.org/D22486
Approved by: ports-secteam (joneum)
Fix namespace pollution in python3.5 and python3.6 (upstreamed fix)
The standard math library (libm) may follow IEEE-754 recommendation to
include an implementation of sinPi(), i.e. sinPi(x):=sin(pi*x).
And this triggers a name clash, found by FreeBSD developer
Steve Kargl, who worked on putting sinpi into libm used on FreeBSD
(it has to be named "sinpi", not "sinPi", cf. e.g.
https://en.cppreference.com/w/c/experimental/fpext4).
- python2.7 and > 3.6 are already fixed
PR: 232792
Submitted by: Steve Kargl <sgk@troutmask.apl.washington.edu>, Dima Pasechnik <dimpase+freebsd@gmail.com>
Approved by: python (maintainer timeout)
Obtained from: b545ba0a50
Backport fix of https://bugs.python.org/issue32849
This is needed for starting sysutils/azure-agent at boot:
https://github.com/Azure/WALinuxAgent/issues/1687
Obtained from: f9c01a16da
Sponsored by: The FreeBSD Foundation
Fix makefile ordering.
Reported by: mat
Approved by: ports-secteam (miwi)
Sponsored by: The FreeBSD Foundation
