graphics/ilmbase,openexr: fix vulnerabilities
Uses backported patches from upstream Git repository, without the
exr2aces parts, and regenerates all openexr patches from scratch.
The openexr part looks heaviweight because it regenerates all patches.
Security: e4d9dffb-2a32-11ea-9693-e1b3f6feec79
Security: CVE-2018-18443
Security: CVE-2018-18444
Approved by: ports-secteam@ (blanket, adding security patches)
sysutils/e2fsprogs: update to 1.45.4 (security fix)
Release Notes: http://e2fsprogs.sourceforge.net/e2fsprogs-release.html#1.45.4
This removes some patches or hunks that were integrated upstream.
Security: ad3451b9-23e0-11ea-8b36-f1925a339a82
Security: CVE-2019-5094
Approved by: ports-secteam@ (joneum)
This change fixes tests and likely runtime in certain locale environments
by replace the existing test_scandir.py patch with a backported upstream
patch from PR #109 [1][2], coupled with setting an appropriate locale.
While I'm here:
- Strip shared library and add LICENSE_FILE
Tests now all pass on all Python versions (2.7-3.8)
[1] https://github.com/benhoyt/scandir/pull/109
[2] https://github.com/benhoyt/scandir/issues/122
Approved by: portmgr (blanket: ports compliance, bugfix)
Approved by: ports-secteam (blanket(s): ports compliance, bugfix)
Fix test invocation with pytest 4.x [1], which was failing with:
if len(param.values) != len(argnames):
E TypeError: object of type 'MarkDecorator' has no len()
While here, fix out of order MASTER_SITES
[1] https://github.com/chardet/chardet/pull/174
Approved by: portmgr (blanket: ports compliance)
Approved by: ports-secteam (blanket(s): bugfix, ports compliance)
While we prefer using CHEESESHOP when souces are provided there, in the
event it's missing valuable files such as tests, test data, LICENCE, it
is preferable and more robust to use an alternative source entirely, than a
combination of CHEESESHOP (or anything else) combined with another source
for specific files, which can cause issues [1]
This change switches to USE_GITHUB and removes unecessary and associated
Makefile entries accordingly.
[1] ports r516897
See Also:
https://github.com/patrys/httmock/pull/59
PR: 242694
Submitted by: Derek Schrock <dereks lifeofadishwasher com>
Approved by: ports-secteam (blanket: fetch/build fix)
Genshi 0.7 doesn't support Python 3.5+, but the port currently allows it
to be built with any Python version. This doesn't affect the build, but
produces a broken runtime, including for all Genshi dependents:
Genshi (0.7) tests:
2.7: Ran 854 tests in 3.623s - FAILED (failures=1)
3.5: Ran 858 tests in 3.607s - FAILED (failures=4, errors=34)
3.6: Ran 858 tests in 3.610s - FAILED (failures=4, errors=34)
3.7: Ran 858 tests in 3.313s - FAILED (failures=11, errors=91)
3.8: Ran 858 tests in 3.094s - FAILED (failures=32, errors=359)
Genshi added 3.5+ support in subsequent versions [1]:
0.7.2: Add support for Python 3.8.
0.7.1: Add support for Python 3.5, 3.6 and 3.7
Given Genshi 0.7 -> 0.7.3 involves only additional Python version support
and bugfix-only changes, this change updates the port to 0.7.3, instead of
restricting (correctly) its use to USES=python:-3.4, and is intended to be
merged to the quarterly branch accordingly.
While I'm here:
- Add test target to encourage and ease future QA
- Strip speedup shared library on Python versions it builds in
- Remove backported patch to setup.py (now in this release)
- Use CHEESESHOP and update COMMENT according to Python policies
Genshi (0.7.3) QA tests:
2.7: Ran 861 tests in 3.626s - OK
3.5: Ran 867 tests in 3.561s - OK
3.6: Ran 867 tests in 3.540s - OK
3.7: Ran 867 tests in 3.268s - OK
3.8: Ran 867 tests in 3.267s - OK
[1] https://github.com/edgewall/genshi/blob/0.7.3/ChangeLog
Approved by: portmgr (blanket(s): runtime bugfix, ports (python) compliance)
Approved by: ports-secteam (blanket(s): runtime bugfix, bugfix release)
The 3.7.7.0 release of pyephem was converted [1] into a stub, depending on
the ephem package, in order to allow software authors to transition to the
new package name.
The ports r511276 commit updating the port to 3.7.7.0 missed the additional
dependency.
This change adds the missing dependency, after astro/py-ephem landed as a
new port in ports r520162, and unbreaks all current astro/pyephem
dependents, and all transitive dependents, including comms/gnuradio [2].
While I'm here:
- Add NO_ARCH
- Bump PORTREVISION given this issue did not affect builds, just runtime
and dependents accordingly.
[1] 5c32679a86
[2] bug 240546
PR: 240735
Submitted by: Rainer Hurling <rhurlin gwdg de>
Approved by: portmgr (blanket(s): missing dependencies, build/run fix (dependents))
Approved by: ports-secteam (joneum)
PyEphem provides an ephem Python package for performing high-precision
astronomy computations. The underlying numeric routines are coded in C
and are the same ones that drive the popular XEphem astronomy application,
whose author, Elwood Charles Downey, generously gave permission for their
use in PyEphem. The name ephem is short for the word ephemeris, which is
the traditional term for a table giving the position of a planet, asteroid,
or comet for a series of dates.
WWW: https://rhodesmill.org/pyephem/
WWW: https://pypi.org/project/ephem/
[1] Based on astro/pyephem
PR: 240736
Submitted by: Rainer Hurling <rhurlin gwdg de>
Approved by: ports-secteam (joneum)
convertdate does not [1] depend on pyephem, which was replaced with
pymeeus in 2.2.0.
Dependency astro/py-pymeeus landed in ports r520157 as a new port.
This issue was identified while QA'ing pyephem dependents for bug 240735
[1] HISTORY.rst:* Replace pyephem, which is now in maintenance mode, with pymeeus.
PR: 240735
Approved by: portmgr (blanket(s): dependencies, runtime bugfix)
Approved by: ports-secteam (implicit, via ports r520489 approval)
PyMeeus is a Python implementation of the astronomical algorithms
described in the classical book "Astronomical Algorithms, 2nd Edition,
Willmann-Bell Inc. (1998)" by Jean Meeus.
WWW: https://github.com/architest/pymeeus
PR: 240735
Approved by: ports-secteam (joneum)
- According to @koobs the dependency on pyephem/ephem is spurious hence removed.
- When gnuradio was first imported into the tree, UHD (Ettus) was pretty much the only
viable high speed device for it. This is no longer true so default option removed.
- Noted plist problem with removed UHD corrected.
PR: ports/240546
Reported by: w.schwarzenfeld@utanet.at
Approved by: portmgr (joneum)
graphics/drm-legacy-kmod: Update snapshot
Update the snapshot of graphics/drm-legacy-kmod.
This is an update for the deprecation of timeout_t
Approved by: portmgr (implicit, drm-drivers blanket)
net-mgmt/netbox: Fix assignment of IP addresses to interfaces
* Backport a patch from upstream's repository which fixes the assignment of
existing IP addresses to interfaces.
Without that patch the assignment of an IP address gives no error but the
interface doesn't contain the assigned IP address at the end.
* Bump PORTREVISION for package change.
Approved by: ports-secteam bugfix blanket
net-mgmt/netbox: Update to 2.6.8
* Backport a patch from upstream that fixes an exception on password change
page for local users.
Changelog:
Enhancements:
* Disable password change form for LDAP-authenticated users
* Display cable colors on device view
* Remove obsolete P3P policy header
* Add query filters for created and last_updated fields
* Allow the underscore character in IPAddress DNS names
Bug Fixes:
* Fix validation error when editing power cables in bulk
* Fix exception when connecting a cable to a RearPort with no corresponding
FrontPort
* Include weight field in prefix/VLAN role form
* Include comments on PowerFeed view
* Fix link for assigned ipaddress in interface page
* Prevent exception when importing an invalid cable definition
* Correctly indicate power feed terminations on cable list
* Fix API filtering of interfaces by more than one device name
* Enforce client validation for minimum service port number
https://github.com/netbox-community/netbox/releases/tag/v2.6.8
Approved by: ports-secteam (joneum)
games/anki: Add pkg-message with installation instructions
* Improve the user experience by adding a pkg-message which gives some
advice that audio/lame needs to be installed manually afterwards when
installing from the official FreeBSD package repositories.
* Bump PORTREVISION to include the pkg-message.
PR: 242528
Submitted by: PauAmma <pauamma@gundo.com> (based on)
Approved by: ports-secteam (joneum)
net-mgmt/py-ciscoconfparse: Update to 1.4.10
Changelog since 1.4.7:
* Add support for parsing "pathlib.Path" objects which contain a
configuration
* Add ".as_cidr_net" and ".as_cidr_addr" on "IPv4Obj" and "IPv6Obj"
* Add support for name and track on IPv6 routes
net-mgmt/py-ciscoconfparse: Update to 1.4.11
Changelog:
* Explicitly close() open filehandles
Approved by: ports-secteam (joneum)
Add a patch to let the implicitclass backend run the ipp backend.
This fixes printer queues for remote printers detected by cups-browsed.
PR: 242615
Submitted by: J.R. Oldroyd <fbsd@opal.com>
Approved by: ports-secteam (blanket)
Fix configure when the CDPARANOIA option is enabled. It should depend on
sysutils/libcdio-paranoia, not audio/cdparanoia.
Run-time dependency libcdio_paranoia found: NO (tried pkgconfig)
src/input/plugins/meson.build:9:0: ERROR: Dependency "libcdio_paranoia" not found, tried pkgconfig
The ISO9660 option depends on sysutils/libcdio, not sysutils/libcdio-paranoia.
Bump PORTREVISION for LIB_DEPENDS changes.
Approved by: portmgr (build-fix blanket)
Approved by: ports-secteam (build-fix blanket)
- Update to 2.9.7. This release fixes CVE-2016-6318. Excerpt from NEWS:
* apply patch to fix CVE-2016-6318 Stack-based buffer overflow when
parsing large GECOS field
* fix a buffer overflow processing long words
* historical research and updates to repository tags to correct history,
and suggestions for new release process (Neustradamus)
- Replace a local patch with an upstream patch.
https://github.com/cracklib/cracklib/commit/a1379d0
- Apply a patch from the upstream to fix build.
https://github.com/cracklib/cracklib/commit/77082c4
- OPTIONize NLS and add pkg-plist to appease portlint.
Approved by: ports-secteam (miwi)
Use clang 7 as compiler on 11.x and 12.x to fix build.
clang 8 and later error for duplicate definitions of enum values. mdb
depends on having identical but duplicate definitions. This was fixed
differently in 13 with a change to the kernel, but that change is
disruptive and cannot be easily backported.
Reported by: pkg-fallout, Attila Nagy
Approved by: bdrewery
Differential Revision: https://reviews.freebsd.org/D22486
Approved by: ports-secteam (joneum)
Fix namespace pollution in python3.5 and python3.6 (upstreamed fix)
The standard math library (libm) may follow IEEE-754 recommendation to
include an implementation of sinPi(), i.e. sinPi(x):=sin(pi*x).
And this triggers a name clash, found by FreeBSD developer
Steve Kargl, who worked on putting sinpi into libm used on FreeBSD
(it has to be named "sinpi", not "sinPi", cf. e.g.
https://en.cppreference.com/w/c/experimental/fpext4).
- python2.7 and > 3.6 are already fixed
PR: 232792
Submitted by: Steve Kargl <sgk@troutmask.apl.washington.edu>, Dima Pasechnik <dimpase+freebsd@gmail.com>
Approved by: python (maintainer timeout)
Obtained from: b545ba0a50
Backport fix of https://bugs.python.org/issue32849
This is needed for starting sysutils/azure-agent at boot:
https://github.com/Azure/WALinuxAgent/issues/1687
Obtained from: f9c01a16da
Sponsored by: The FreeBSD Foundation
Fix makefile ordering.
Reported by: mat
Approved by: ports-secteam (miwi)
Sponsored by: The FreeBSD Foundation
textproc/py-chardet: drop uncoditional pytest dependency
Dependency on pytest-runner is only used when setup.py is called
with `test` target, so drop it from BUILD_DEPENDS.
PR: 241767
Submitted by: ngie
Reviewed by: koobs
Approved by: portmgr (blanket: ports/dependency fix)
Update to upstream version 41.0.0
Details:
- Bug fixes and enhancements, see
https://mkvtoolnix.download/doc/NEWS.md
including:
- Support for reading opus and vp9 from mp4 files
- Correction reading/applying data from
multiple input formats
- UI fixes
Approved by: ports-secteam (riggs)
Update to v.2.7.5.
(I would have preferred to do these 4 MFHs all at once, but when trying
to do so, svn insisted there were merge conflicts.)
Approved by: portmgr (tier-2 blanket)
Make buildable on non-x86 architecture:
- CImg.h assumes signed char, make it signed explicitly.
- -mtune=generic doesn't exist on e.g. powerpc64.
- USES=compiler:c11 is necessary.
PR: 241026
Submitted by: pkubaj
Approved by: portmgr (tier-2 blanket)
misc/openvdb: fix build on GCC architectures
Compiling on GCC architectures fails:
/wrkdirs/usr/ports/misc/openvdb/work/openvdb-6.1.0/openvdb/points/AttributeSet.cc: In member function 'openvdb::v6_1::points::AttributeSet::Descriptor::Ptr openvdb::v6_1::points::AttributeSet::Descriptor::duplicateDrop(const std::vector<long unsigned int>&) const':
/wrkdirs/usr/ports/misc/openvdb/work/openvdb-6.1.0/openvdb/points/AttributeSet.cc:875:59: error: 'CHAR_BIT' was not declared in this scope
875 | const size_t GROUP_BITS = sizeof(GroupType) * CHAR_BIT;
| ^~~~~~~~
/wrkdirs/usr/ports/misc/openvdb/work/openvdb-6.1.0/openvdb/points/AttributeSet.cc:35:1: note: 'CHAR_BIT' is defined in header '<climits>'; did you forget to '#include <climits>'?
34 | #include "AttributeGroup.h"
+++ |+#include <climits>
35 |
While here, add USES=xorg for TOOLS option.
PR: 240630
Approved by: portmgr (tier-2 blanket)
Once again, mark the freebsd-doc-* ports broken on powerc64. They have been
consistently failing to build for quite some time.
Approved by: portmgr (tier-2 blanket)
textproc/R-cran-readxl: fix build on GCC architectures
Include sys/types.h in src/ColSpec.h to fix build with GCC:
/usr/include/unistd.h:327:26: error: 'uid_t' has not been declared
PR: 240796
Approved by: portmgr (tier-2 blanket)
www/wpebackend-fdo needs C++11 compiler:
/wrkdirs/usr/ports/www/wpebackend-fdo/work/wpebackend-fdo-1.4.0/src/ipc.h:40: error: ISO C++ forbids declaration of 'unique_ptr' with no type
sysutils/xfce4-kbdleds-plugin needs C11 compiler similarly to other xfce ports.
This MFH should unblock 265 ports.
Approved by: portmgr (tier-2 blanket)
graphics/drm-fbsd11.2-kmod: Update snapshot
Update graphics/drm-fbsd11.2-kmod to the latest snapshot. This is a security
update, containing fixes for local privilege escalation and denial of
service bugs, as part of the Intel 2019.2 IPU
Security: ecb7fdec-0b82-11ea-874d-0c9d925bbbc0
Approved by: ports-secteam (implicit, security, drm-drivers blanket)
- Update to 2.2.45 (pre-release) to pull in the requried fix
https://github.com/Azure/WALinuxAgent/pull/1638/
- Update WWW to where the code exists
- Switch to use Python 3 to match the ports' default to avoid some subprocess
invoking issues
Approved by: Wei Hu <weh@microsoft.com> (maintainer, implicitly)
Sponsored by: The FreeBSD Foundation
Approved by: ports-secteam (blanket(s): bugfix release)
multimedia/ffmpeg: unbreak SVT* on FreeBSD 11.*
ERROR: SvtAv1Enc not found using pkg-config
ERROR: SvtHevcEnc not found using pkg-config
ERROR: SvtVp9Enc not found using pkg-config
Approved by: ports-secteam blanket
lang/php74: Update from 7.4.0RC 6 to 7.4.0
The PHP development team announces the immediate availability of PHP 7.4.0. This release marks the fourth feature update to the PHP 7 series.
PHP 7.4.0 comes with numerous improvements and new features such as:
Typed Properties
Arrow Functions
Limited Return Type Covariance and Argument Type Contravariance
Unpacking Inside Arrays
Numeric Literal Separator
Weak References
Allow Exceptions from __toString()
Opcache Preloading
Several Deprecations
Extensions Removed from the Core
Full Changelog:
Core:
Implemented RFC: Deprecate curly brace syntax for accessing array elements and string offsets.
Implemented RFC: Deprecations for PHP 7.4.
Fixed bug #52752 (Crash when lexing).
Fixed bug #60677 (CGI doesn't properly validate shebang line contains #!).
Fixed bug #71030 (Self-assignment in list() may have inconsistent behavior).
Fixed bug #72530 (Use After Free in GC with Certain Destructors).
Fixed bug #75921 (Inconsistent: No warning in some cases when stdObj is created on the fly).
Implemented FR #76148 (Add array_key_exists() to the list of specially compiled functions).
Fixed bug #76430 (__METHOD__ inconsistent outside of method).
Fixed bug #76451 (Aliases during inheritance type checks affected by opcache).
Implemented FR #77230 (Support custom CFLAGS and LDFLAGS from environment).
Fixed bug #77345 (Stack Overflow caused by circular reference in garbage collection).
Fixed bug #77812 (Interactive mode does not support PHP 7.3-style heredoc).
Fixed bug #77877 (call_user_func() passes $this to static methods).
Fixed bug #78066 (PHP eats the first byte of a program that comes from process substitution).
Fixed bug #78151 (Segfault caused by indirect expressions in PHP 7.4a1).
Fixed bug #78154 (SEND_VAR_NO_REF does not always send reference).
Fixed bug #78182 (Segmentation fault during by-reference property assignment).
Fixed bug #78212 (Segfault in built-in webserver).
Fixed bug #78220 (Can't access OneDrive folder).
Fixed bug #78226 (Unexpected __set behavior with typed properties).
Fixed bug #78239 (Deprecation notice during string conversion converted to exception hangs).
Fixed bug #78335 (Static properties/variables containing cycles report as leak).
Fixed bug #78340 (Include of stream wrapper not reading whole file).
Fixed bug #78344 (Segmentation fault on zend_check_protected).
Fixed bug #78356 (Array returned from ArrayAccess is incorrectly unpacked as argument).
Fixed bug #78379 (Cast to object confuses GC, causes crash).
Fixed bug #78386 (fstat mode has unexpected value on PHP 7.4).
Fixed bug #78396 (Second file_put_contents in Shutdown hangs script).
Fixed bug #78406 (Broken file includes with user-defined stream filters).
Fixed bug #78438 (Corruption when __unserializing deeply nested structures).
Fixed bug #78441 (Parse error due to heredoc identifier followed by digit).
Fixed bug #78454 (Consecutive numeric separators cause OOM error).
Fixed bug #78460 (PEAR installation failure).
Fixed bug #78531 (Crash when using undefined variable as object).
Fixed bug #78535 (auto_detect_line_endings value not parsed as bool).
Fixed bug #78604 (token_get_all() does not properly tokenize FOO<?php with short_open_tag=0).
Fixed bug #78614 (Does not compile with DTRACE anymore).
Fixed bug #78620 (Out of memory error).
Fixed bug #78632 (method_exists() in php74 works differently from php73 in checking priv. methods).
Fixed bug #78644 (SEGFAULT in ZEND_UNSET_OBJ_SPEC_VAR_CONST_HANDLER).
Fixed bug #78658 (Memory corruption using Closure::bindTo).
Fixed bug #78656 (Parse errors classified as highest log-level).
Fixed bug #78662 (stream_write bad error detection).
Fixed bug #78768 (redefinition of typedef zend_property_info).
Fixed bug #78788 (./configure generates invalid php_version.h).
Fixed incorrect usage of QM_ASSIGN instruction. It must not return IS_VAR. As a side effect, this allowed passing left hand list() "by reference", instead of compile-time error.
CLI:
The built-in CLI server now reports the request method in log files.
COM:
Deprecated registering of case-insensitive constants from typelibs.
Fixed bug #78650 (new COM Crash).
Fixed bug #78694 (Appending to a variant array causes segfault).
CURL:
Fixed bug #76480 (Use curl_multi_wait() so that timeouts are respected).
Implemented FR #77711 (CURLFile should support UNICODE filenames).
Deprecated CURLPIPE_HTTP1.
Deprecated $version parameter of curl_version().
Date:
Updated timelib to 2018.02.
Fixed bug #69044 (discrepency between time and microtime).
Fixed bug #70153 (\DateInterval incorrectly unserialized).
Fixed bug #75232 (print_r of DateTime creating side-effect).
Fixed bug #78383 (Casting a DateTime to array no longer returns its properties).
Fixed bug #78751 (Serialising DatePeriod converts DateTimeImmutable).
Exif:
Fixed bug #78333 (Exif crash (bus error) due to wrong alignment and invalid cast).
Fixed bug #78256 (heap-buffer-overflow on exif_process_user_comment). (CVE-2019-11042)
Fixed bug #78222 (heap-buffer-overflow on exif_scan_thumbnail). (CVE-2019-11041)
Fileinfo:
Fixed bug #78075 (finfo_file treats JSON file as text/plain).
Fixed bug #78183 (finfo_file shows wrong mime-type for .tga file).
Filter:
The filter extension no longer has the --with-pcre-dir on Unix builds, allowing the extension to be once more compiled as shared using ./configure.
FFI:
Added FFI extension.
Fixed bug #78488 (OOB in ZEND_FUNCTION(ffi_trampoline)).
Fixed bug #78543 (is_callable() on FFI\CData throws Exception).
Fixed bug #78716 (Function name mangling is wrong for some parameter types).
Fixed bug #78762 (Failing FFI::cast() may leak memory).
Fixed bug #78761 (Zend memory heap corruption with preload and casting).
Implement FR #78270 (Support __vectorcall convention with FFI).
Added missing FFI::isNull().
FPM:
Implemented FR #72510 (systemd service should be hardened).
Fixed bug #74083 (master PHP-fpm is stopped on multiple reloads).
Fixed bug #78334 (fpm log prefix message includes wrong stdout/stderr notation).
Fixed bug #78599 (env_path_info underflow in fpm_main.c can lead to RCE). (CVE-2019-11043)
GD:
Implemented the scatter filter (IMG_FILTER_SCATTER).
The bundled libgd behaves now like system libgd wrt. IMG_CROP_DEFAULT never falling back to IMG_CROP_SIDES.
The default $mode parameter of imagecropauto() has been changed to IMG_CROP_DEFAULT; passing -1 is now deprecated.
Added support for aspect ratio preserving scaling to a fixed height for imagescale().
Added TGA read support.
Fixed bug #73291 (imagecropauto() $threshold differs from external libgd).
Fixed bug #76324 (cannot detect recent versions of freetype with pkg-config).
Fixed bug #78314 (missing freetype support/functions with external gd).
GMP:
Fixed bug #78574 (broken shared build).
Hash:
Implemented RFC: The hash extension is now an integral part of PHP and cannot be disabled.
Implemented FR #71890 (crc32c checksum algorithm).
Iconv:
Fixed bug #78342 (Bus error in configure test for iconv //IGNORE).
Fixed bug #78642 (Wrong libiconv version displayed).
Libxml:
Fixed bug #78279 (libxml_disable_entity_loader settings is shared between requests (cgi-fcgi)).
InterBase:
Unbundled the InterBase extension and moved it to PECL.
Intl:
Raised requirements to ICU ≥ 50.1.
Changed ResourceBundle to implement Countable.
Changed default of $variant parameter of idn_to_ascii() and idn_to_utf8().
LDAP:
Deprecated ldap_control_paged_result_response and ldap_control_paged_result
LiteSpeed:
Updated to LiteSpeed SAPI V7.5 (Fixed clean shutdown).
Updated to LiteSpeed SAPI V7.4.3 (increased response header count limit from 100 to 1000, added crash handler to cleanly shutdown PHP request, added CloudLinux mod_lsapi mode).
Fixed bug #76058 (After "POST data can't be buffered", using php://input makes huge tmp files).
MBString:
Fixed bug #77907 (mb-functions do not respect default_encoding).
Fixed bug #78579 (mb_decode_numericentity: args number inconsistency).
Fixed bug #78609 (mb_check_encoding() no longer supports stringable objects).
MySQLi:
Fixed bug #67348 (Reading $dbc->stat modifies $dbc->affected_rows).
Fixed bug #76809 (SSL settings aren't respected when persistent connections are used).
Fixed bug #78179 (MariaDB server version incorrectly detected).
Fixed bug #78213 (Empty row pocket).
MySQLnd:
Fixed connect_attr issues and added the _server_host connection attribute.
Fixed bug #60594 (mysqlnd exposes 160 lines of stats in phpinfo).
ODBC:
Fixed bug #78473 (odbc_close() closes arbitrary resources).
Opcache:
Implemented preloading RFC.
Add opcache.preload_user INI directive.
Added new INI directive opcache.cache_id (Windows only).
Fixed bug #78106 (Path resolution fails if opcache disabled during request).
Fixed bug #78175 (Preloading segfaults at preload time and at runtime).
Fixed bug #78202 (Opcache stats for cache hits are capped at 32bit NUM).
Fixed bug #78271 (Invalid result of if-else).
Fixed bug #78341 (Failure to detect smart branch in DFA pass).
Fixed bug #78376 (Incorrect preloading of constant static properties).
Fixed bug #78429 (opcache_compile_file(__FILE__); segfaults).
Fixed bug #78512 (Cannot make preload work).
Fixed bug #78514 (Preloading segfaults with inherited typed property).
Fixed bug #78654 (Incorrectly computed opcache checksum on files with non-ascii characters).
OpenSSL:
Added TLS 1.3 support to streams including new tlsv1.3 stream.
Added openssl_x509_verify function.
openssl_random_pseudo_bytes() now throws in error conditions.
Changed the default config path (Windows only).
Fixed bug #78231 (Segmentation fault upon stream_socket_accept of exported socket-to-stream).
Fixed bug #78391 (Assertion failure in openssl_random_pseudo_bytes).
Fixed bug #78775 (TLS issues from HTTP request affecting other encrypted connections).
Pcntl:
Fixed bug #77335 (PHP is preventing SIGALRM from specifying SA_RESTART).
PCRE:
Implemented FR #77094 (Support flags in preg_replace_callback).
Fixed bug #72685 (Repeated UTF-8 validation of same string in UTF-8 mode).
Fixed bug #73948 (Preg_match_all should return NULLs on trailing optional capture groups).
Fixed bug #78338 (Array cross-border reading in PCRE).
Fixed bug #78349 (Bundled pcre2 library missing LICENCE file).
PDO:
Implemented FR #71885 (Allow escaping question mark placeholders). https://wiki.php.net/rfc/pdo_escape_placeholders
Fixed bug #77849 (Disable cloning of PDO handle/connection objects).
Implemented FR #78033 (PDO - support username and password specified in DSN).
PDO_Firebird:
Implemented FR #65690 (PDO_Firebird should also support dialect 1).
Implemented FR #77863 (PDO firebird support type Boolean in input parameters).
PDO_MySQL:
Fixed bug #41997 (SP call yields additional empty result set).
Fixed bug #78623 (Regression caused by "SP call yields additional empty result set").
PDO_OCI:
Support Oracle Database tracing attributes ACTION, MODULE, CLIENT_INFO, and CLIENT_IDENTIFIER.
Implemented FR #76908 (PDO_OCI getColumnMeta() not implemented).
PDO_SQLite:
Implemented sqlite_stmt_readonly in PDO_SQLite.
Raised requirements to SQLite 3.5.0.
Fixed bug #78192 (SegFault when reuse statement after schema has changed).
Fixed bug #78348 (Remove -lrt from pdo_sqlite.so).
Phar:
Fixed bug #77919 (Potential UAF in Phar RSHUTDOWN).
phpdbg:
Fixed bug #76596 (phpdbg support for display_errors=stderr).
Fixed bug #76801 (too many open files).
Fixed bug #77800 (phpdbg segfaults on listing some conditional breakpoints).
Fixed bug #77805 (phpdbg build fails when readline is shared).
Recode:
Unbundled the recode extension.
Reflection:
Fixed bug #76737 (Unserialized reflection objects are broken, they shouldn't be serializable).
Fixed bug #78263 (\ReflectionReference::fromArrayElement() returns null while item is a reference).
Fixed bug #78410 (Cannot "manually" unserialize class that is final and extends an internal one).
Fixed bug #78697 (ReflectionClass::implementsInterface - inaccurate error message with traits).
Fixed bug #78774 (ReflectionNamedType on Typed Properties Crash).
Session:
Fixed bug #78624 (session_gc return value for user defined session handlers).
SimpleXML:
Implemented FR #65215 (SimpleXMLElement could register as implementing Countable).
Fixed bug #75245 (Don't set content of elements with only whitespaces).
Sockets:
Fixed bug #67619 (Validate length on socket_write).
Fixed bug #78665 (Multicasting may leak memory).
sodium:
Fixed bug #77646 (sign_detached() strings not terminated).
Fixed bug #78510 (Partially uninitialized buffer returned by sodium_crypto_generichash_init()).
Fixed bug #78516 (password_hash(): Memory cost is not in allowed range).
SPL:
Fixed bug #77518 (SeekableIterator::seek() should accept 'int' typehint as documented).
Fixed bug #78409 (Segfault when creating instance of ArrayIterator without constructor).
Fixed bug #78436 (Missing addref in SplPriorityQueue EXTR_BOTH mode).
Fixed bug #78456 (Segfault when serializing SplDoublyLinkedList).
SQLite3:
Unbundled libsqlite.
Raised requirements to SQLite 3.7.4.
Forbid (un)serialization of SQLite3, SQLite3Stmt and SQLite3Result.
Added support for the SQLite @name notation.
Added SQLite3Stmt::getSQL() to retrieve the SQL of the statement.
Implement FR ##70950 (Make SQLite3 Online Backup API available).
Standard:
Implemented RFC password hashing registry.
Implemented RFC where password_hash() has argon2i(d) implementations from ext/sodium when PHP is built without libargon.
Implemented FR #38301 (field enclosure behavior in fputcsv).
Implemented FR #51496 (fgetcsv should take empty string as an escape).
Fixed bug #73535 (php_sockop_write() returns 0 on error, can be used to trigger Denial of Service).
Fixed bug #74764 (Bindto IPv6 works with file_get_contents but fails with stream_socket_client).
Fixed bug #76859 (stream_get_line skips data if used with data-generating filter).
Implemented FR #77377 (No way to handle CTRL+C in Windows).
Fixed bug #77930 (stream_copy_to_stream should use mmap more often).
Implemented FR #78177 (Make proc_open accept command array).
Fixed bug #78208 (password_needs_rehash() with an unknown algo should always return true).
Fixed bug #78241 (touch() does not handle dates after 2038 in PHP 64-bit).
Fixed bug #78282 (atime and mtime mismatch).
Fixed bug #78326 (improper memory deallocation on stream_get_contents() with fixed length buffer).
Fixed bug #78346 (strip_tags no longer handling nested php tags).
Fixed bug #78506 (Error in a php_user_filter::filter() is not reported).
Fixed bug #78549 (Stack overflow due to nested serialized input).
Fixed bug #78759 (array_search in $GLOBALS).
Testing:
Fixed bug #78684 (PCRE bug72463_2 test is sending emails on Linux).
Tidy:
Added TIDY_TAG_* constants for HTML5 elements.
Fixed bug #76736 (wrong reflection for tidy_get_head, tidy_get_html, tidy_get_root, and tidy_getopt)
WDDX:
Deprecated and unbundled the WDDX extension.
Zip:
Fixed bug #78641 (addGlob can modify given remove_path value).
Changelog taken from: https://www.php.net/ChangeLog-7.php#7.4.0
Sponsored by: Professionelles Bounce Management
Approved by: ports-secteam (joneum)
net/py-wsproto: Fix runtime dependencies and Python version restriction
* Update the RUN_DEPENDS and limit the port to Python 3.6 or newer as the
support for Python 2.7 and 3.5 was dropped with the 0.15.0 release.
Python 3.6 needs also the devel/py-dataclasses package as an additional
dependency to work properly.
* Add a "do-test" target while I'm here to make future QA easier.
* Bump PORTREVISION for package change.
PR: 242025 (related)
Approved by: portmgr blanket (runtime fix)
Approved by: ports-secteam bugfix blanket
Update to 1.72.0 which is required for gitlab-ce 12.5.
devel/gitaly: upgrade to 1.72.1 which is required for gitlab-ce 12.5.1.
Approved by: ports-secteam (joneum)
audio/audacity: Remove bogus STATIC_WX option
This was accepted by me in r495224. STATIC_WX_ENABLE was probably
supposed to be STATIC_WX_CONFIGURE_ENABLE but the entire idea of
the option is flawed. wxgtk31 does not provide static libraries.
While here drop unhooked JACK_LIB_DEPENDS options helper. Audacity
has been using the system Portaudio for a while and JACK support
can be enabled there.
Remove a bunch of unused *_DESC
Update to upstream version 2.3.3
PR: 242169
Submitted by: xxjack12xx@gmail.com (maintainer)
Approved by: ports-secteam (riggs)
Prevent failure deep in the build if dtrace is not installed:
dtrace_cython/consumer.c:611:10: fatal error: 'sys/dtrace.h' file not found
Present a more informative message instead.
This affects (only some?) of the package building machines, e.g., for
powerpc64.
Approved by: portmgr (tier-2 blanket)
x11/pcdm: Fix rc script for FreeBSD
PCDM doesn't daemonize/fork, so we need to handle this by using
daemon(8). It seems this port has only been used/tested on TrueOS with
OpenRC, so it has been broken in FreeBSD ports for the last two years.
PR: 227034
Reported by: VulcanRider
Approved by: just fix it
Sponsored by: vBSDcon 2019
Approved by: ports-secteam (blanket, runtime fix)
Mark as broken on powerpc64. This port has been failing to build for quite
some time. I tried to investigate it earlier but failed.
Approved by: portmgr (tier-2 blanket)
Fix build on GCC-based systems:
/wrkdirs/usr/ports/www/libwpe/work/libwpe-1.4.0/src/pasteboard-generic.cpp:35: error: expected nested-name-specifier before 'Pasteboard'
(If I had understood how many ports this was blocking on -quarterly,
I would have done this much earlier.)
Approved by: portmgr (tier-2 blanket)
www/gitea: Update to 1.10.0
* Pet portlint by removing empty line at the beginning while I'm here.
Changelog:
https://blog.gitea.io/2019/11/gitea-1.10.0-is-released/
PR: 241981
Submitted by: Marius Halden <marius.halden@modirum.com>
Reported by: Nils Johannsen <nilsjohannsen@gmx.de>
Approved by: stb@lassitu.de (maintainer)
Security: b12a341a-0932-11ea-bf09-080027e0baa0
Approved by: ports-secteam (joneum)
Add rc.d support, stealing the rc.d file from base.
Make the installation of the rc script conditional to avoid conflict
with base.
Rather than an option, automatically detect if the target system
has an amd rc script. Eventually when amd is removed from base
packages will automatically include the rc script.
Adjust the location of the amd binary in the supplied rc script.
Approved by: portmgr (joneum)
Unbreak the port.
- Switch to fetching from GitHub.
- The GitHub release uses a different versioning method (or rather, it follows
a convention, while the zip file in the previous MASTER_SITES did not).
- Add NO_ARCH since we only install OTF files.
PR: 241858
Submitted by: m.ne@gmx.net
Approved by: ports-secteam (joneum)
graphics/drm-devel-kmod: Update snapshot
Update graphics/drm-devel-kmod to the latest snapshots. This includes
runtime fixes on recent CURRENT, as well as minor fixes to aarch64, ppc64
and sysfs usage.
graphics/drm-current-kmod: Update snapshot
Update graphics/drm-current-kmod to the latest snapshot, which fixes runtime
issues and panics on recent CURRENT.
Fix packaging on powerpc64
Fix packaging on powerpc64, the vboxvideo driver isn't installed there.
While here, replace space with tabs.
PR: 241478
Submitted by: pkubaj
graphics/drm-current-kmod: Update snapshot
Update graphics/drm-current-kmod to the latest snapshot. This is a security
update, containing fixes for local privilege escalation and denial of
service bugs, as part of the Intel 2019.2 IPU
Security: ecb7fdec-0b82-11ea-874d-0c9d925bbbc0
graphics/drm-devel-kmod: Update snapshot
Update graphics/drm-devel-kmod to the latest snapshot. This is a security
update, containing fixes for local privilege escalation and denial of
service bugs, as part of the Intel 2019.2 IPU
Security: ecb7fdec-0b82-11ea-874d-0c9d925bbbc0
graphics/drm-fbsd12.0-kmod: Update snapshot
Update graphics/drm-fbsd12.0-kmod to the latest snapshot. This is a security
update, containing fixes for local privilege escalation and denial of
service bugs, as part of the Intel 2019.2 IPU
Security: ecb7fdec-0b82-11ea-874d-0c9d925bbbc0
Approved by: ports-secteam (implicit, security, drm-drivers blanket)
audio/pulseaudio-module-xrdp: Update to 0.4
Relnotes: https://github.com/neutrinolabs/pulseaudio-module-xrdp/releases/tag/v0.4
Sponsored by: HAW International, Inc.
audio/pulseaudio-module-xrdp: improve audio redirection latency
by backporting from upstream. PulseAudio >= 12 become more strict.
This patch reduces network bandwidth and CPU usage of xrdp.
While here, set DIST_SUBDIR=xrdp for xrdp related ports.
Obtained from: https://github.com/neutrinolabs/pulseaudio-module-xrdp/pull/38
Update distinfo I missed in the previous commit r517939
Approved by: portmgr blanket (backport reliability fixes)
- Update to 351
- This update fixes a bug during deciding when to fallback from UTF-8 decoding
to ISO-8859-1 decoding
PR: 241961 (based on)
Submitted by: mbeis@xs4all.nl
Approved by: ports-secteam (joneum)
patch-ntpd_ntp.c should really be named patch-ntpd_ntpd.c as it patches
ntpd/ntpd.c.
Disable ntpd stack gap. When ASLR with STACK GAP != 0 ntpd suffers SIGSEGV.
PR: 241421, 241960
Reported by: Vladimir Zakharov <zakharov.vv@gmail.com>,
dewayne@heuristicsystems.com.au
Reviewed by: kib, imp (previous version), ian (suggestion)
Differential Revision: https://reviews.freebsd.org/D22358
Approved by: portmgr (joneum)
comms/iwmbt-firmware: Unbreak fetch
Future consideration for maintainer: include the "-2" portion of the
DISTNAME as part of the PORTVERSION parameter. This would also require
PORTEPOCH to be bumped as version 20190717 is considered greater than
20190717-2 by pkg-version(8).
Approved by: portmgr blanket
Approved by: portmgr (blanket - build fix)
Security update to 2.13:
* Fix CVE-2015-1197
* Fix CVE-2016-2037
* Fix CVE-2019-14866
* Remove --extract-over-symlinks option again, which was part of an earlier
third-party fix for CVE-2015-1197.
Security: f59af308-07f3-11ea-8c56-f8b156b6dcc8
Approved by: ports-secteam (joneum)
games/dMagnetic: Update to 0.18
* Update WWW and MASTER_SITES as both were switched to HTTPS.
Changelog:
* Fixed issues with graphics
* Fixed some glitches in the textual output
PR: 241885
Submitted by: Thomas Dettbarn <dettus@dettus.net> (maintainer)
Approved by: ports-secteam bugfix blanket
textproc/py-ocrmypdf: Update to 9.0.5
* Remove the workaround that coped with the files that were generated in the
CFFI out-of-line ABI mode (through devel/py-cffi) as they are now captured
correctly during the installation process.
Changelog since 9.0.3:
https://github.com/jbarlow83/OCRmyPDF/blob/v9.0.5/docs/release_notes.rst
Approved by: ports-secteam (miwi)
textproc/py-pikepdf: Update to 1.6.5
textproc/py-pikepdf: Update to 1.7.0
* Switch to "c++14-lang" because the support for building on C++11 has been
removed by upstream.
Changelog:
https://github.com/pikepdf/pikepdf/blob/v1.7.0/docs/release_notes.rst
Approved by: ports-secteam (miwi)
www/chromium: update to 78.0.3904.87
Submitted by: Matthias Wolf via github
www/chromium: update to 78.0.3904.97
Submitted by: Matthias Wolf
Security: 88d00176-058e-11ea-bd1c-3065ec8fd3ec
Approved by: ports-secteam (joneum)
textproc/py-transifex-client: Relax requirements for urllib3
* Prepare the port for use with urllib 1.25.x [1].
* Bump PORTREVISION for package change.
PR: 229322 [1]
Approved by: portmgr blanket (runtime bugfix)
Approved by: ports-secteam bugfix blanket
www/py-requests: Update to 2.22.0
* Backport a patch from upstream that fixes the unittests in conjunction
with devel/py-pytest >= 4.
* Remove obsolete CONFLICTS_INSTALL entry as www/py-requests1 no longer
exists in the Ports tree.
This update includes a pinned urllib3 version bump to < 1.26, which clears
the way for a net/urllib3 update to 1.25.6 [1].
Changelog:
https://github.com/requests/requests/blob/v2.22.0/HISTORY.md
PR: 239302, 229322 [1]
Submitted by: swills (based on)
Approved by: koobs (maintainer)
Approved by: ports-secteam (joneum)
Update to upstream version 39.0.0
Details:
- Bug fixes plus several new features, see:
https://mkvtoolnix.download/doc/NEWS.md
- Adds Bulgarian translation of the programs and man pages
Approved by: ports-secteam (riggs)
dns/knot-resolver: no need to explicitly set NOT_FOR_ARCH here.
The ports framework ignores this port by itself because the dependency of this
port will fail.
Reported by: mat
Approved by: portmgr (implicit)
devel/fb-adb: regen patches
=> Attempting to fetch https://github.com/facebook/fb-adb/commit/a25602788c1b.patch
=> Fetched file size mismatch (expected 9741, actual 9730)
--- a25602788c1b.patch 2017-11-14 11:32:11 UTC
+++ a25602788c1b.patch 2019-11-06 13:33:45 UTC
@@ -16,9 +16,9 @@ This change just gets us back to using a PTY unconditi
We could take advantage of adb fixes to get rid of some of our
encoding logic, but that's a separate project.
---
- chat.c | 14 ++++++-
- cmd_shex.c | 122 ++++++++++++++++++++++++++++++++++++++++++++++++++++++-------
- util.c | 29 +++++++++++++++
+ chat.c | 14 +++++-
+ cmd_shex.c | 122 +++++++++++++++++++++++++++++++++++++++++++++++------
+ util.c | 29 +++++++++++++
util.h | 12 ++++++
4 files changed, 162 insertions(+), 15 deletions(-)
Approved by: ports-secteam blanket
graphics/dspdfviewer - Fixes broken build in 11.3-RELEASE.
Adds conditional to check for 11.3-RELEASE and 12.1-RELEASE since
both of them use Clang 8 now.
approved by: philip (mentor)
misc/esniper: Mark BROKEN
After recent eBay website changes, the esniper tool does not work anymore.
Mark port BROKEN by maintainer request.
PR: 241364
Submitted by: Armin Gruner <ag-freebsd@muc.de> (maintainer)
Approved by: tz (mentor, implicit)
Approved by: portmgr (implicit)
deskutils/freeplane: Update to 1.7.10
Changelog:
* Fix menu mnemonics
* Do not output links twice when copying nodes to clipboard
* Allow to change positions of LINE shape connectors
* New action: Select nodes matching filter
* Dark UI mode support (Look and feel and map template "Darcula")
* Overwrite system properties from installation specific file
<install-dir>/system.properties
* Environment var FREEPLANE_JAVA_OPTION_FILE can override path to
system.properties read on start
* Add new properties to connector API : dashArray, opacity, width,
labelFontFamily and labelFontSize
* Suggest to delete all user configuration and resource files on uninstall
PR: 241522
Submitted by: Loïc Bartoletti <lbartoletti@tuxfamily.org> (maintainer)
Approved by: ports-secteam (joneum)
net-mgmt/netbox: Update to 2.6.7
* Change GH_ACCOUNT as upstream's repository redirects to a new location.
Changelog:
Enhancements:
* Add support for additional user defined headers to be added to
webhook requests
* Add ca_file_path to Webhook model to support user supplied CA certificate
verification of webhook requests
* Add ChoiceVar for custom scripts
* Add 400GE OSFP interface type
* Add filtering for objects in admin UI
Bug Fixes:
* Rewrite change logging middleware to resolve sporadic testing failures
* Add missing options to connect front ports to console ports
* Enable filter sites/devices/VMs by null region
* Extend upgrade script to validate Python dependencies
* Prevent server error when reassigning a device to a new device bay
* Use get_lldp_neighors_detail to validate LLDP neighbors
* Add missing cache support for the circuits app
* Add missing rack_group field to PowerFeed CSV export
* Limit next/previous rack by assigned rack group
https://github.com/netbox-community/netbox/releases/tag/v2.6.7
Approved by: ports-secteam (miwi)
graphics/gpxsee: Update to 7.14
graphics/gpxsee: Update to 7.15
Changelog:
* Fixed broken align of zoom level 0 with tiles of a different size
than 256px.
* Increased the default tile cache to 256MB
* IMG maps text layout tweaking and optimization.
PR: 241443
Submitted by: Nikolay Korotkiy <sikmir@gmail.com> (maintainer)
Approved by: ports-secteam (miwi)
(Fix gitlab-ce build problems)
sysutils/vagrant: relax "listen" dependency version constraint
unbreaks vagrant after ports r513697 (update of devel/rubygem-listen)
Approved by: just-fix-it
sysutils/rubygem-vagrant_cloud: update to 2.0.3
https://github.com/hashicorp/vagrant_cloud/releases
sysutils/vagrant: update to 2.2.6
https://github.com/hashicorp/vagrant/releases
PR: 241313
Approved by: joe at thrallingpenguin dot com
Update to 1.3.0
- Take maintainership
Changes: https://github.com/rubyzip/rubyzip/releases
Change RUN_DEPENDS from rubygem-rubyzip to rubygem-rubyzip12
- Bump PORTREVISION for dependency change
Approved by: ports-secteam (miwi)
Add -rdynamic to ezmlm-idx's conf-ld. This flag was added in ezmlm-idx
7.2.2 and is necessary in order for ezmlm to work on FreeBSD 12; but it
was being removed when we overwrote conf-ld. [1]
While I'm here, remove the djbware "no license" LEGAL_TEXT, which was
added in error several years ago; this package is GPLv2.
PR: 236869
Reported by: Matt Simerson
Approved by: ports-secteam (blanket: run bugfixes)
Reminded by: koobs
Update webkit2-gtk3 to 2.26.1.
* Drop the NPAPI option, which was removed. This option was used to support gtk+2 plugins (like flash).
* Add a note when binutils can be dropped for linking.
Security: 92243b6a-5775-4aea-8727-a938058df5ba
Approved by: ports-secteam
- Produce meaningful error when timidity is built without required option
- Add USES=sdl
PR: 238080
Reported by: list1@gjunka.com
Approved by: ports-secteam (with hat)
databases/rrdtool: Fix segfault
Add upstream patch to databases/rrdtool to fix segfault when trying to
calculate median of all-NaN values
PR: 241477
Submitted by: amdmi3
Approved by: ports-secteam (joenum)
graphics/mesa: Add -D_GNU_SOURCE to compile flags
Add -D_GNU_SOURCE to compile flags when building on FreeBSD. This is needed
to have mesa work with various locales, that for instance use , instead of .
as a decmal separator.
Bump portrevision on all mesa related ports.
PR: 241506
Reported by: Jesper Schmitz Mouridsen
Approved by: ports-secteam (joenum)
www/py-cheroot: Update to 6.5.6
* There is currently a signification amount of version churn in the upstream
repository so use the most recent signed release for now.
* Since release 6.3.0 the port installs a CLI tool outside the Python
environment thus make it concurrent safe.
* Also backport two patches to retain compatibility with recent versions of
devel/py-setuptools and avoid failures at runtime with Python 3 while I'm
here. [1]
Changelog since 6.0.0:
https://github.com/cherrypy/cheroot/blob/v6.5.6/CHANGES.rst
PR: 241369
Submitted by: Keith Gaughan <k@stereochro.me> (maintainer)
Approved by: Keith Gaughan <k@stereochro.me> (maintainer) [1]
Approved by: ports-secteam (miwi)
converters/pdf2djvu: fix build on GCC architectures
When compiling with GCC, as used on GCC architectures, it errors with:
sys-uuid.cc:96:12: error: 'strlen' was not declared in this scope
assert(strlen(s) == 36U);
^~~~~~
sys-uuid.cc:96:12: note: 'strlen' is defined in header '<cstring>'; did you forget to '#include <cstring>'?
converters/pdf2djvu: Update to 0.9.13
Remove now obsolete patches that were merged by upstream:
* Build fixes for graphics/poppler >= 0.76.0
* Improvement of build-time logging
While I'm here:
* Add path to LICENSE_FILE
* Fix no-op occurence of DOCS_DESC
Changelog:
https://github.com/jwilk/pdf2djvu/blob/0.9.13/doc/changelog
PR: 239366
Submitted by: Samy Mahmoudi <samy.mahmoudi@gmail.com> (maintainer)
Approved by: ports-secteam (miwi)
Fix build with EXTRAS disabled.
clangd is part of EXTRAS, not CLANG.
PR: 240826
Reported by: rozhuk.im@gmail.com
Rollup of fixes since the 9.0.0 release.
- Change the default -march for i386 from i486 to i586. This avoids
the need for libatomics and had been the defacto default for some
time. [0]
- Add -m(no)-spe to clang. (powerpc)
- Deduce MIPS specific ELF header flags from `emulation`. (mips)
- Fix a variety of assertions and compile/link errors including crashes
with CPUTYPE=haswell. [1]
- Switch back to https for downloads. [2]
The new patches were initially committed to FreeBSD src by dim@.
PR: 240918 [0], 240759 [1], 240870 [2]
Reported by: jbeich [0,1], Miyashita Touka <imagin8r@protonmail.com> [2]
Fix build without CLANG enabled. [0]
Fix LLD build where PREFIX != LOCALBASE. [1]
powerpc64: add configure option to select ELFv2 ABI [2]
In preparation for compiler+ABI change in PowerPC64, this change adds a
configure option to select ELFv2 as default powerpc64 ABI when compiling
llvm90.
The new option automatically set when ELFv2 environment is detected
(when PPC_ABI=ELFv2)
PR: 241400 [1], 241410 [0]
Submitted by: Alfredo Dal'Ava Júnior [2]
Differential Revision: https://reviews.freebsd.org/D22100 [2]
Approved by: portmgr (blanket for build and reliability fixes)
databases/py-lmdb: Update to 0.97
* Update WWW field as upstream has a new maintainer.
* While I'm here: Add "do-test" target to make future QA easier.
Notable changes since 0.93:
* Only preload the value with the GIL (= Global Interpreter Lock) unlocked
when the value is actually requested. This significantly improves read
performance to retrieve keys with large values when the value isn't
retrieved.
* Handling of the Environment(create=True) flag was improved.
* Database names may be reused after they are dropped on CFFI, without
reopening the environment.
* Python argument parsing now matches the behaviour of CFFI, and most sane
Python APIs: a bool parameter is considered to be true if it is any truthy
value, not just if it is exactly True.
* Updated LMDB to version 0.9.22.
* Fixed several 2.7/3 bugs in command line tool.
https://github.com/jnwatson/py-lmdb/blob/py-lmdb_0.97/ChangeLog
PR: 241367
Submitted by: Keith Gaughan <k@stereochro.me> (maintainer)
Approved by: ports-secteam (joneum)
lang/php71: Update from 7.1.32 to 7.1.33
Changelog:
FPM:
Fixed bug #78599 (env_path_info underflow in fpm_main.c can lead to RCE). (CVE-2019-11043)
Changelog taken from: https://www.php.net/ChangeLog-7.php#7.1.33
Approved by: ports-secteam (joneum)
lang/php72: Update from 7.2.23 to 7.2.24
Changelog:
Core:
Fixed bug #78535 (auto_detect_line_endings value not parsed as bool).
Fixed bug #78620 (Out of memory error).
Exif:
Fixed bug #78442 ('Illegal component' on exif_read_data since PHP7) (Kalle)
FPM:
Fixed bug #78599 (env_path_info underflow in fpm_main.c can lead to RCE). (CVE-2019-11043)
MBString:
Fixed bug #78579 (mb_decode_numericentity: args number inconsistency).
Fixed bug #78609 (mb_check_encoding() no longer supports stringable objects).
MySQLi:
Fixed bug #76809 (SSL settings aren't respected when persistent connections are used).
PDO_MySQL:
Fixed bug #78623 (Regression caused by "SP call yields additional empty result set").
Session:
Fixed bug #78624 (session_gc return value for user defined session handlers).
Standard:
Fixed bug #76342 (file_get_contents waits twice specified timeout).
Fixed bug #78612 (strtr leaks memory when integer keys are used and the subject string shorter).
Fixed bug #76859 (stream_get_line skips data if used with data-generating filter).
Zip:
Fixed bug #78641 (addGlob can modify given remove_path value).
Changelog taken from: https://www.php.net/ChangeLog-7.php#7.2.24
Approved by: ports-secteam (joneum)
lang/php73: Update from 7.3.10 to 7.3.11
Changelog:
Core:
Fixed bug #78535 (auto_detect_line_endings value not parsed as bool).
Fixed bug #78620 (Out of memory error).
Exif:
Fixed bug #78442 ('Illegal component' on exif_read_data since PHP7) (Kalle)
FPM:
Fixed bug #78599 (env_path_info underflow in fpm_main.c can lead to RCE). (CVE-2019-11043)
Fixed bug #78413 (request_terminate_timeout does not take effect after fastcgi_finish_request).
MBString:
Fixed bug #78633 (Heap buffer overflow (read) in mb_eregi).
Fixed bug #78579 (mb_decode_numericentity: args number inconsistency).
Fixed bug #78609 (mb_check_encoding() no longer supports stringable objects).
MySQLi:
Fixed bug #76809 (SSL settings aren't respected when persistent connections are used).
Mysqlnd:
Fixed bug #78525 (Memory leak in pdo when reusing native prepared statements).
PCRE:
Fixed bug #78272 (calling preg_match() before pcntl_fork() will freeze child process).
PDO_MySQL:
Fixed bug #78623 (Regression caused by "SP call yields additional empty result set").
Session:
Fixed bug #78624 (session_gc return value for user defined session handlers).
Standard:
Fixed bug #76342 (file_get_contents waits twice specified timeout).
Fixed bug #78612 (strtr leaks memory when integer keys are used and the subject string shorter).
Fixed bug #76859 (stream_get_line skips data if used with data-generating filter).
Zip:
Fixed bug #78641 (addGlob can modify given remove_path value).
Changelog taken from: https://www.php.net/ChangeLog-7.php#7.3.11
Approved by: ports-secteam (joneum)
net-mgmt/py-napalm: Update to 2.5.0
* Add a patch that fixes the unittests with net-mgmt/py-junos-eznc >= 2.3.0
* Switch to GitHub for a while to make use of the test-suite that isn't
available in the sdist, yet.
* Add "do-test" target to make future QA easier.
Changelog:
Note: This is the last release supporting Python 2. Going forward, only
Python 3.6+ will be supported.
https://github.com/napalm-automation/napalm/releases/tag/2.5.0
Approved by: ports-secteam (miwi)
audio/murmur: Fix for clean installs
Config file in 1.3.0 does not specify logfile location and attempts to
write murmur.log to $PWD. Specify path for log and pidfile by patching
sample config file.
Also support reloading service via SIGUSR1 so TLS cert/key updates can
be deployed without restarting server.
Approved by: portmgr (implicit)
devel/py-path.py: update to 11.5.2
- Connect tests to the framework
- Define LICENSE_FILE as MIT has many styles
- Skip later versions due to lack of Python 2 support
- Take maintainership
Changes: https://github.com/jaraco/path.py/compare/8.1.2...11.5.2
PR: 241112
Approved by: wg (maintainer)
Approved by: ports-secteam (miwi)
AFFECTS line should contain portcategory/portname
so that automated tools can parse it as easily as possible, according to
Porter's handbook 11.2.1 [1].
[1] https://www.freebsd.org/doc/en/books/porters-handbook/moved-and-updating-files.html
PR: 241169
Submitted by: Yuichiro NAITO <naito.yuichiro@gmail.com>
Approved by: portmgr blanket
Approved by: portmgr (adamw)
Update to upstream release 0.73 (security fixes)
Relevant changes taken from this...
ChangeLog: https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
* Security fix: in bracketed paste mode, the terminal escape sequences that
should delimit the pasted data were appearing together on one side of it,
making it possible to misidentify pasted data as manual keyboard input.
* Bug fix (possibly security-related): an SSH-1 server sending a disconnection
message could cause an access to freed memory.
* Bug fix: tweaked terminal handling to prevent lost characters at the ends of
lines in gcc's coloured error messages.
* Bug fix: removed a bad interaction between the 'clear scrollback' operation
and mouse selection that could give rise to the dreaded "line==NULL"
assertion box.
Approved by: ports-secteam@ (miwi@)
sysutils/grub2-bhyve: fix build on 13-CURRENT
Build error: ./stdio.h:456:1: error: 'gets' undeclared here (not in a
function); did you mean 'getw'?
grub2 doesn't use gets() at all so it's just an error in the glib header
file as a result of gets being excised from FreeBSD. Commenting out the
_GL_WARN_ON_USE macro for that is fine.
PR: 241168
Submitted by: Robert James Hernandez <rob@sarcasticadmin.com>
Approved by: grehan (maintainer)
Approved by: ports-secteam (joneum)
Fixed dependency problem introduced by 513431.
This will use now an additional port and I will revert 513431.
Reported by: sunpoet
Undo commit 513431 to not downgrade a port without increasing the portepoch.
The downgraded version is available as port devel/rubygem-numerizer01.
Reported by: sunpoet
Approved by: ports-secteam (miwi)
ports-mgmt/caronade:
- Project moved to GitHub so update WWW
- Switch to fetch from GitHub
- Regenerate GH_TUPLE with modules2tuple
Approved by: ports-secteam (miwi)
mail/smtprelay:
- Project moved to GitHub so update WWW
- Switch to fetch from GitHub
- Regenerate GH_TUPLE with modules2tuple
Approved by: ports-secteam (miwi)
net-mgmt/netbox: Update to 2.6.6
Changelog:
Enhancements:
* Add InfiniBand interface types
* Add rack and site filters for cables
* Disallow raw HTML in Markdown-rendered fields
* Add MultiObjectVar for custom scripts
* Enable editing of individual DeviceType components
* Render text and URL fields as textareas in the custom link form
* Introduce commit_default custom script attribute to not commit changes by
default
Bug Fixes:
* Prevent primary IP address for a device/VM from being reassigned
* Correct CSV headers for exported power feeds
* Fix device status page loading when NAPALM call fails
* Prevent erroneous redirects when editing tags
* Ensure consistent display of changelog retention period
* Change device to parent in interface editing VLAN filtering logic
* Restore label for comments field when bulk editing circuits
* Enforce view permissions on global search results
* Enforce object-form JSON for local context data on devices and VMs
https://github.com/netbox-community/netbox/releases/tag/v2.6.6
Approved by: ports-secteam (miwi)
fetchmail: Fix manpage rendering w/ groff, fix t.smoke failure
PR: 240914
PR: 241032
Submitted by: Corey Halpin (maintainer)
Reported by: Helge Oldach, Konstantin Belousov
One patch removes a .br from the .man page to fix manpage rendering
with groff on FreeBSD 12.0, one patch changes the environment for a
build-time self-test that will not be installed but unbreaks a build
in some configurations, hence claiming blanket approval.
Approved by: ports-secteam@ (blanket)
Don't run tests by default in my ports
Yuzu tests frequently time out and didn't find r513863. More
comprehensive tests tend to have extra dependencies and are behind
non-default TEST option, anyway.
Approved by: ports-secteam blanket
security/stoken: Unbreak
it is actually not broken. Builds fine without any modifications.
Marking as BROKEN was MFH'ed, so MFH unbreak again.
PR: 240940
Reported by: Rubin Simons <rubin@xs4all.nl>
Approved by: samm@os2.kiev.ua (maintainer)
Approved by: portmgr (miwi)
dns/ddclient: Get rid of a wrong shebang statement
in bin/ddclient. It has double shebang line and one is
"#!/usr/local/local/bin/perl -w" This is definitely wrong.
Also bumped PORTREVISION due to package content change.
PR: 231277
Submitted by: koobs
Reported by: O. Hartmann <ohartmann@walstatt.org>
Approved by: maintainer
Approved by: portmgr (miwi)
sysutils/py-azure-cli: Add shells/bash to RUN_DEPENDS
It was removed by mistake in the update to 2.0.72.
PR: 241107
Submitted by: lwhsu
Approved by: portmgr (blanket(s): bugfix, missing dependencies)
Bump remaining mesa ports after llvm version change
Bump these mesa ports as well, to ensure that they are rebuilt with the
correct llvm port.
This was missed in r513776
PR: 239682
Approved by: ports-secteam (implicit, cleanup after earlier commits)
graphics/mesa-dri: revert r512573 and limit to llvm80 after r512440
Mesa 18.3 doesn't support LLVM 9. While some fixes were backported
there're probably more issues. Apparently, Gnome shows black screen.
As the port is unlikely to be ready for future LLVM_DEFAULT bumps
without a version update just limit to previously tested value.
PR: 239682
Requested by: imp
Approved by: ports-secteam blanket
net/ocserv: fix tun handoff between parent and worker process
ocserv hands off a tun fd to a worker process, but the worker process never
claims the tun with TUNSIFPID. The parent then closes the tunnel and leaves
it in a nasty state.
Bump PORTREVISION, as this is runtime breakage.
PR: 238500
Approved by: bapt (ports), cpm (maintainer, e-mail)
Approved by: ports-secteam (miwi)
Attempt to fix pkg on mips.
Since recently, libarchive is linked to libzstd, which itself uses threads
somehow, this make the build of pkg in mips unhappy.
Given libpkg is not threadsafe anyway just drop the __thread
PR: 240822
Reported by: tech-lists@zyxst.net and mandree
Discussed with: jhb
net/qt5-network: readd support for LibreSSL
- as with every Qt5 upgrade, we dropped LibreSSL support
- this readds it
PR: 240962
Submitted by: Walter Schwarzenfeld <w.schwarzenfeld@utanet.at>
Approved by: ports-secteam (joneum)
net/olsrd:
- Update to 0.9.8
- Switch to fetch from GitHub because they don't provide tarballs anymore
- Fix portlint warnings
- Fix some GNUisms (cp -t)
- Fix compile error when RTF_CLONING is not defined
PR: 240563
Submitted by: myself
Approved by: ports-secteam (joneum)
editors/thoteditor: Unbreak
Unbreak editors/thoteditor by no longer link against libXp, since it is
being deprecated and slated for removal.
Add a bunch of missing xorg dependencies.
Approved by: ports-secteam (joneum)
audio/xmradio: Unbreak after libXp deprecation
Unbreak audio/xmradio by not linking against libXp, since it's deprecated.
Add a bunch of missing xorg dependencies.
Approved by: ports-secteam (joneum)
math/ngraph: Fix build
Fix build by not trying to link against libXp (since it is deprecated).
Add missing xorg dependencies.
remove broken
Approved by: ports-secteam (joneum)
@@ -86,7 +86,7 @@ set(PostgreSQL_LIBRARY_DIR_MESSAGE "Set the PostgreSQL_LIBRARY_DIR cmake cache e
set(PostgreSQL_ROOT_DIR_MESSAGE "Set the PostgreSQL_ROOT system variable to where PostgreSQL is found on the machine E.g C:/Program Files/PostgreSQL/8.4")