this brings the double_t-related typedefs in line with our definitions
and brings back the rounding helpers for those.
PR: 258804
Reported by: Felix Palmen
(cherry picked from commit edae8a1c04)
This makes sure phabricator is using the Mozilla root CA bundle
when doing webhook calls (e.g., from harbormaster).
Before it would use the custom root CA bundle that shipped with
arcanist, which hasn't been updated in a while. This caused
problems with Let's Encrypt issued certificates, after the R3
Let's Encrypt intermediate CA expired.
(cherry picked from commit e48613f2da)
This fixes problems with Let's Encrypt certificates after
the R3 Let's Encrypt intermediate CA expired.
Arcanist uses its own certificate bundle by default (default.pem),
overriding curl's default, unless curl.cainfo is set explicitly.
The port now replaces this custom bundle with a symlink to Mozilla's
root CA bundle as installed by security/ca_root_nss.
PR: 258824
Reported by: yasu
(cherry picked from commit 21ddc093a4)
Restore patch-bug1628567 to unbreak glslopt crate build due to cc crate
passing Rust target "x86_64-unknown-freebsd" without OS version to clang++:
[glslopt 0.1.9] cargo:warning=/wrkdirs/usr/ports/www/firefox/work/.build/
ist/system_wrappers/new:3:15: fatal error: 'new' file not found
[glslopt 0.1.9] cargo:warning=#include_next <new>
PR: 258837
(cherry picked from commit dcc587e702)
Major changes between sudo 1.9.8p2 and 1.9.8p1:
* Fixed a potential out-of-bounds read with "sudo -i" when the
target user's shell is bash. This is a regression introduced
in sudo 1.9.8. Bug #998.
* sudo_logsrvd now only sends a log ID for first command of a session.
There is no need to send the log ID for each sub-command.
* Fixed a few minor memory leaks in intercept mode.
* Fixed a problem with sudo_logsrvd in relay mode if "store_first"
was enabled when handling sub-commands. A new zero-length journal
file was created for each sub-command instead of simply using
the existing journal file.
PR: 258666
Submitted by: cy
Reported by: cy
Approved by: garga (maintainer)
(cherry picked from commit 3c5b4dac33)
Sudo version 1.9.8 patchelevel 1 is now available which fixes a few
regressions introduced in sudo 1.9.8.
Source:
https://www.sudo.ws/dist/sudo-1.9.8p1.tar.gz
ftp://ftp.sudo.ws/pub/sudo/sudo-1.9.8p1.tar.gz
SHA256 checksum:
0939ee24df7095a92e0ca4aa3bd53b2a10965a7b921d51a26ab70cdd24388d69
MD5 checksum:
ae9c8b32268f27d05bcdcb8f0c04d461
Binary packages:
https://www.sudo.ws/download.html#binaryhttps://github.com/sudo-project/sudo/releases/tag/SUDO_1_9_8
For a list of download mirror sites, see:
https://www.sudo.ws/download_mirrors.html
Sudo web site:
https://www.sudo.ws/
Sudo web site mirrors:
https://www.sudo.ws/mirrors.html
Major changes between sudo 1.9.8p1 and 1.9.8:
* Fixed support for passing a prompt (sudo -p) or a login class
(sudo -c) on the command line. This is a regression introduced
in sudo 1.9.8. Bug #993.
* Fixed a crash with "sudo ALL" rules in the LDAP and SSSD back-ends.
This is a regression introduced in sudo 1.9.8. Bug #994.
* Fixed a compilation error when the --enable-static-sudoers configure
option was specified. This is a regression introduced in sudo
1.9.8 caused by a symbol clash with the intercept and log server
protobuf functions.
PR: 258537
Submitted by: cy
Reported by: Adrian Waters <draenan _ gmail_com>
Approved by: garga (maintainer)
MFH: 2021Q3
(cherry picked from commit 549e87a5ed)
* Update MASTER_SITES and WWW as project has moved to GitHub
* Pass maintainership to submitter
* Clean up and reformat Makefile
PR: 258326
Approved by: meta (mentor)
MFH: 2021Q3
Differential Revision: https://reviews.freebsd.org/D32220
(cherry picked from commit 4c35fa18e7)
This is primarily a secure release; 2.14.20 also includes:
- [NEXUS-25956] Signatures with ECC algorithm not being recognized
PR: 252564
Security: b2f1f86f-20e6-11ec-a574-080027eedc6a
Security: 730e922f-20e7-11ec-a574-080027eedc6a
(cherry picked from commit 1e427d2595)
On amd64 platforms that have a CPU with Haswell New Instructions (AVX2),
related optimizations are automatically compiled in, unless this is
explicitly prevented.
If the package is then used on other amd64 platforms, that have no AVX2
support, this causes problems, because the generated .so files are
incompatible and lead to crashes with SIGILL upon invocation.
Remedy the issue by turning off AVX2 support by default which is also
upstream's default and bump PORTREVISION to force a rebuild.
PR: 258714
Reported by: dvl (on IRC)
Reviewed by: wen (maintainer)
Approved by: portmgr (blanket: build fix)
MFH: 2021Q3
(cherry picked from commit f31b25e7dc)
https://nodejs.org/en/blog/release/v14.17.1/
Drop files/patch-deps_v8_src_objects_js-list-format.cc since the change
has been upstreamed along with the ICU minimum version bump.
Sponsored by: Miles AS
(cherry picked from commit 6cc50a438b)
Add "/pub" which is the canonical path in FTP as site owner suggested
Add the HTTP master site as submitter suggested
PR: 258741
Reported by: bas@area536.com
MFH: 2021Q3
(cherry picked from commit 9abd1e471d)
