Cherry-pick upstream bug fixes from Git.
This is pending an 1.44.2 release, and contains these fixes from maint:
filefrag: avoid temporary buffer overflow
libext2fs: add sanity checks for ea_in_inode
e2image: fix metadata image handling on big endian systems
e2fsck: warn if checkinterval and broken_system_clock both set
tests: don't leave temp files behind after running i_bitmaps
tests: add new test f_ea_inode_self_ref
chattr.1: 'a' and 'i' attribute do not affect existing file
Approved by: ports-secteam (riggs@)
Update to 4.1.2
Improvements:
* API: increase serial after DNSSEC related updates
* Dnsreplay: bail out on a too small outgoing buffer
* Lower ‘packet too short’ loglevel
* Make check-zone error on rows that have content but shouldn’t
* Avoid an isane amount of new backend connections during an AXFR
* Report unparseable data in stoul invalid_argument exception
* Recheck serial when AXFR is done
* Add TCP support for alias
PR: 228114
Submitted by: maintainer
Approved by: ports-secteam
- Update to 3.2.6-369-g91f1ddf5f
- jail -u freebsd-update: Auto confirm prompts
- bulk tests: Don't let system perl interfere with the partial tree used.
- compute_deps: Determine all errors before bailing out
Approved by: portmgr (implicit)
Fix libtclstub.a being stripped of symbols and thus being useless.
- We forced -s to INSTALL because we were not using install-strip.
- qa.sh was bugged and improperly reported that the shared library
was not stripped. That was fixed in r469589.
Approved by: portmgr (implicit)
stage-qa: Change stripped check to only look for .debug_info.
'strip -x', and splitting out debug symbols with objcopy, will leave
a .symtab section but will still remove the .debug_info section. file(1)
shows this distinction as well after the use of 'strip -x':
work/tcl8.7a1/unix/libtcl8.7.so: ELF 64-bit LSB shared object, x86-64, version 1 (FreeBSD), dynamically linked, with debug_info, not stripped
work/stage/usr/local/lib/libtcl8.7.so: ELF 64-bit LSB shared object, x86-64, version 1 (FreeBSD), dynamically linked, not stripped
This fixes false-positives when using install-strip and symbol splitting.
With hat: portmgr
Approved by: portmgr (implicit)
games/gzdoom: Update to 3.3.2
Highlights since 3.3.0:
- Better handling of defaults with some ZScript/DECORATE functions
- Many bug fixes
- Fixed detection of .ipk7 custom IWADs
- Restored vanilla behavior of lightning for original Hexen
- Added loading of ZSDF lumps by full paths
- Exported P_ActivateLine() to ZScript along with constants for activation
type
- Increased size of the savegame comment area.
- Disabled the survey* code
* This was an opt-in hardware survey that ran for effectively the month of
April. Discussion of the results are available at:
https://forum.zdoom.org/viewtopic.php?f=49&t=60156
While here, disable stripping of binaries on 10.4/i386. strip(1) there
claims it can't strip due to an unknown file format. 11.x and later use
elftoolchain strip(1) and have no issues. Due to the replacement as of 11.x
and that there will be no more 10.x releases, no effort will be expended in
tracking down why strip(1) fails here for now.
Approved by: bapt (ports), me (maintainer)
Approved by: ports-secteam (riggs)
emulators/rpcs3: update to 0.0.5.259
- Switch to bundled LLVM 6.0 due to downstream changes
Changes: 753d8170d...76a1d0d8f
Changes: f1b37feef3...6154c0dcaf
Approved by: ports-secteam (junovitch, implicit for snapshots)
Add clang60 support
Update howto
- 11.0+ base can just use WITH_CCACHE_BUILD=yes [1]
- Remove older advise for libtool which is no longer needed
- No need for clang unused argument hack anymore
PR: 222765 [1]
Submitted by: pete@nomadlogic.org [1] (based on)
Approved by: portmgr (implicit)
Update drm-next-kmod, drm-stable-kmod and gpu-firmware-kmod to latest
versions from upstream git.
This brings:
* shorter module names for the GPU firmwares
* addition to the kld category for all three ports
* fixes from FreeBSDDesktop since last update
* fixes to build on latest current, after r333263 [0]
Submitted by: jmd, zeising [0]
Approved by: maintainer (jmd)
Differential Revision: https://reviews.freebsd.org/D14765 (based on)
Fix dependency on gpu-firmware-kmod
Fix the dependency on gpu-firmware-kmod, the version used was about a year
off.
Bump portrevision since dependency changed.
Approved by: jmd (maintainer)
X-MFH-notes: merge with r469162
Approved by: ports-secteam (riggs)
Reinstate a patch from r384479 that was accidentally removed in r432474. It
restores support to bridge a serial port across tcp.
Notified by: leres, Alexandre.Fenyo@secu-independants.fr (via mail)
Approved by: ports-secteam (blanket)
- Prevent OpenSMTPD session hangs and retain a descriptor forever on empty body
(i.e. when the dot appears on the line directly after the headers).
This could be used by an attacker to exhaust resources.
PR: 227899
Submitted by: grembo
Obtained from: OpenSMTPD git repo (backported)
Approved by: ports-secteam (riggs)
mysql57-{client, server}: Update port to 5.7.22
This update includes fixes for multiple CVEs including:
CVE-2018-2755 in replication component, MySQL protocol
CVE-2018-2805 in GIS extention
CVE-2018-2782 in InnoDB
and more info on http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixMSQL
PR: 227621
Reported by: Markus Kohlmeyer <rootservice@gmail.com>
Sponsored by: Netzkommune GmbH
databases/mysql57-client: Fix build with 10.x default compiler/linker
The upstream seems merged our local-patches but
added a -R flag to its `c++` [actually ld] command.
The -R $DIR is like -rpath on 11.x and CURRENT bases but not on 10.x
We then use -rpath to make sure it works on all supported bases.
Reported by: John W. O'Brien <john@saltant.com>
Sponsored by: Netzkommune GmbH
Approved by: ports-secteam (feld)
mysql56-{client, server}: Update port to 5.6.40
This update includes fixes for multiple CVEs including:
CVE-2018-2755 in replication component, MySQL protocol
CVE-2018-2805 in GIS extention
CVE-2018-2782 in InnoDB
and more info on http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html#AppendixMSQL
databases/mysql56-server: Add missed distinfo for r467817
Approved by: ports-secteam (feld)
