PKGREVISION bump due to update of x11/modular-xorg-server.

(bjs)

Updated x11/modular-xorg-server to 1.4.2

(bjs)

Welcome to modular-xorg-server-1.4.2.

This long-overdue update brings many improvements:
  - Many improvements to EXA
  - Input Hotplugging via HAL or dbus (not enabled yet)
  - Support for RandR 1.2.  Users using a dual-head configuration are
    encouraged to see <http://www.x.org/wiki/Projects/XRandR> for more
    information.
  - The server now uses the same version of Mesa we have in pkgsrc;
    this likely will result in more reliable OpenGL/DRI operation.

I realize that this server is still not the latest release (1.5.0);
upgrading to that version will require an involved mesa update,
libpciaccess, etc.  I hope that by the next quarter, that work will be done.

Please file a problem report and/or contact us via the usual means
(mailing lists, etc.) should you encounter any issues.

(bjs)

Pasto fix (hi tron!).

(cube)

Updated x11/xf86-video-ati to 6.9.0nb1

(bjs)

This patch ensures the driver won't use the DRM's MODESET_CTL
unless direct rendering is enabled.

>From Owain Ainsworth <oga@openbsd.org>.

PKGREVISION++

(bjs)

Handle xtrans from native X.Org.

(cube)

in the gtk case, pull in desktop-file-utils because a .desktop file
is installed

(drochner)

Fix file list for fontconfig in native X.Org.

(cube)

Make sure libfontenc, libdrm, libXfont, libXprintUtil and liblbxutil are
handled in native X.Org.

(cube)

try to deal with incompatible changes in py-bsddb3-4.7.2
(I'm not sure commenting out DB_TXN_NOSYNC is the best solution, but
it seems to work for me at least.)
approved by gdt

(drochner)

On NetBSD require gawk. Don't do this for NetBSD 5.0 as it will have a
fixed awk.

(joerg)

-deal with an incompatible change in py-bsddb3-4.7.2
-remove py-xml bl3, this is not needed afaict
-pull in desktop-file-utils/bl3 because we install a .desktop file
bump PKGREVISION

(drochner)

bump BUILDLINK_API_DEPENDS to the new revision
(The dependency is already there, due to the propagated db4 dependency.
Just make it explicit.)

(drochner)

Fix MASTER_SITE.

(obache)

We've got version 2.11.9.1 of "phpmyadmin".

(tron)

Note update of the "phpmyadmin" package to version 2.11.9.1.

(tron)

Update "phpmyadmin" package to version 2.11.9.1. Changes since 2.11.8.1:
- bug #2031221 [auth] Links to version number on login screen
- bug #2032707 [core] PMA does not start if ini_set() is disabled
- bug #2004915 [bookmarks] Saved queries greater than 1000 chars
  not displayed
- bug #2037381 [export] Export type "replace" does not work
- bug #2037375 [export] DROP PROCEDURE needs IF EXISTS
- bug #2045512 [export] Numbers in Excel export
+ [lang] Norwegian UTF-8 original file remerged
- bug #2074250 [parser] Undefined variable seen_from
- [security] Code execution vulnerability

This update fixes the security vulnerability reported in PMASA-2008-7.

(tron)

Note removal of unixodbc-DataManager.

(wiz)

Remove another qt2 application, noted by joerg@.

(wiz)

Needs msgfmt, intltool and drop forcing pkgsrc gettext. Bump revision.

(joerg)

Fix build on DragonFly. From PR 39566.

(joerg)

Fix build on DragonFly. From PR 39578.

(joerg)

Add some required explicit scopes to fix ambiguity errors on
NetBSD/current.

(joerg)

Note update of the "mysql5-client" package to version 5.0.67nb1.

(tron)

Catch up with the usual platform specific mess in the mozilla build
system. Fixes bus errors in shlibsign. From PR 39576.

(joerg)

Fix path to Perl interpreter in the installed scripts. Bump package
revision because of this fix.

(tron)

Note update of time/ruby-tzinfo package to 0.3.10.

(taca)

Update ruby-tzinfo pacakge to 0.3.10.

This is a leaf package.

== Version 0.3.10 (tzdata v2008f) - 16-Sep-2008

* Updated to tzdata version 2008f
  (http://article.gmane.org/gmane.comp.time.tz/2293).

(taca)

Note update of inputmethod/canna* packages:

inputmethod/canna-lib
inputmethod/canna-server
inputmethod/canna
inputmethod/canna-canuum

(taca)

Bump PKGREVISION of inputmethod/canna* packages.

(taca)

Add a one line patch which fix crash problem of cannaserver.
This change is alreay exists in Canna's CVS repositry.

It was reported by Hiroshi SAKURAI on netbsd mailing list in Japan.

(taca)

Updated audio/easyh10 to 1.5nb1.

(ghen)

Avoid dependency on GNU iconv by using standard names for encodings (instead
of GNUisms).  NetBSD 4.0 supports the alternative names though, so this patch
could be removed later.  Bump PKGREVISION.

(ghen)

+Canna-3.7p3.

(taca)

Note update of databases/mysql5-client and databases/mysql5-server to 5.0.67.

This is securify fix for MySQL and most work was done by Martti Kuparinen.

(taca)

Update mysql5-server pacakge to 5.0.67.

This is security fix.

For complete changes, please refer
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-67.html.
Here is a part of it.

Functionality added or changed:

Security Enhancement:

  To enable stricter control over the location from which user-defined
  functions can be loaded, the plugin_dir system variable has been
  backported from MySQL 5.1. If the value is non-empty, user-defined
  function object files can be loaded only from the directory named by this
  variable. If the value is empty, the behavior that is used before 5.0.67
  applies: The UDF object files must be located in a directory that is
  searched by your system's dynamic linker. (Bug#37428)

Important Change: Incompatible Change:

  The FEDERATED storage engine is now disabled by default in the .cnf files
  shipped with MySQL distributions (my-huge.cnf, my-medium.cnf, and so
  forth). This affects server behavior only if you install one of these
  files. (Bug#37069)

Cluster API: Important Change:

  Because NDB_LE_MemoryUsage.page_size_kb shows memory page sizes in bytes
  rather than kilobytes, it has been renamed to page_size_bytes. The name
  page_size_kb is now deprecated and thus subject to removal in a future
  release, although it currently remains supported for reasons of backward
  compatibility. See The Ndb_logevent_type Type, for more information about
  NDB_LE_MemoryUsage. (Bug#30271)

Important Change:

  Some changes were made to CHECK TABLE ... FOR UPGRADE and REPAIR TABLE
  with respect to detection and handling of tables with incompatible .frm
  files (files created with a different version of the MySQL server). These
  changes also affect mysqlcheck because that program uses CHECK TABLE and
  REPAIR table, and thus also mysql_upgrade because that program invokes
  mysqlcheck.

(taca)

Update mysql5-client pacakge to 5.0.67.

For complete changes, please refer
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-67.html.
Here is a part of it.

Functionality added or changed:

Security Enhancement:

  To enable stricter control over the location from which user-defined
  functions can be loaded, the plugin_dir system variable has been
  backported from MySQL 5.1. If the value is non-empty, user-defined
  function object files can be loaded only from the directory named by this
  variable. If the value is empty, the behavior that is used before 5.0.67
  applies: The UDF object files must be located in a directory that is
  searched by your system's dynamic linker. (Bug#37428)

Important Change: Incompatible Change:

  The FEDERATED storage engine is now disabled by default in the .cnf files
  shipped with MySQL distributions (my-huge.cnf, my-medium.cnf, and so
  forth). This affects server behavior only if you install one of these
  files. (Bug#37069)

Cluster API: Important Change:

  Because NDB_LE_MemoryUsage.page_size_kb shows memory page sizes in bytes
  rather than kilobytes, it has been renamed to page_size_bytes. The name
  page_size_kb is now deprecated and thus subject to removal in a future
  release, although it currently remains supported for reasons of backward
  compatibility. See The Ndb_logevent_type Type, for more information about
  NDB_LE_MemoryUsage. (Bug#30271)

Important Change:

  Some changes were made to CHECK TABLE ... FOR UPGRADE and REPAIR TABLE
  with respect to detection and handling of tables with incompatible .frm
  files (files created with a different version of the MySQL server). These
  changes also affect mysqlcheck because that program uses CHECK TABLE and
  REPAIR table, and thus also mysql_upgrade because that program invokes
  mysqlcheck.

(taca)

Fix build on Solaris by using nbcompat.

(joerg)

Needs msgfmt.

(joerg)

Needs msgfmt.

(joerg)

Needs msgfmt.

(joerg)

Needs msgfmt.

(joerg)

Needs msgfmt. From PR 39577.

(joerg)

Fix "dyld: Symbol not found: _program_name" on Darwin. pkg/39435

(yyamano)

Note update of ns.

(minskim)

Update ns to 2.33. This version contains many new modules, especially
wireless network models, and bug fixes.

Changes since 2.31:

Wireless shadowing bug fix; originally reported by Marcello Caleffi;
suggestion from Nicola Baldo applied

AODV bug fix from Marco Fiore

Add dynamic libraries patch from SIGNET group, University of Padova

Add 80211Ext models from Mercedes-Benz/Karlsruhe team

Add Ilango Purushothaman's 802.11 infrastructure mode support.

Add ns-2 TCP Linux patch and calendar scheduler improvements.

Enable Tk for ns-2.

Several changes to SCTP module, contributed by Nasif Ekiz and Protocol
Engineering Lab at the University of Delaware

(minskim)

Handle libXevie with native X.Org.

(cube)

Reference x11/libXdmcp.

(cube)

Link in to native X.Org libXTrap and fix libXau.

(cube)

Search for libXss.so as well as the pkgconfig file.  This allows
libXScrnSaver to be still considered native on a platform that doesn't
provide pkgconfig files for X packages.  Issue mentioned and fix suggested
by joerg@.

(cube)

- Make this subroutine more generic by allowing a base in which the files
  are considered native different than X11BASE.  However, it is the default.

- Fix an evaluation bug for BUILTIN_PKG.<BUILTIN_PKG>;  := is needed here.

- Only construct a BUILTIN_PKG.<BUILTIN_PKG> variable if we actually found
  a .pc file.  This allows the caller to search for more than just a .pc
  file, in case the native package doesn't provide one, or even not to
  search for .pc file, but for something different.  This makes the
  subroutine even more generic.

(cube)

Updated x11/x11vnc to 0.9.4

(obache)

Update x11vnc to 0.9.4.

New in the 0.9.4 x11vnc release:

        Reverse VNC connections (-connect and  -connect_or_exit options)
                work in the -find and -create X session FINDCREATEDISPLAY
                modes.

        Reverse VNC connections (either normal or using SSL) can use a
                Web Proxy, a SOCKS proxy, the UltraVNC repeater proxy,
                an SSH connection, or even a CGI URL to make the outgoing
                connection (-proxy option).  Forward connections can
                use the -ssh option to set up a reachable redirection.

        Support for the ZYWRLE encoding is added, this is the RealVNC ZRLE
                encoding extended to do motion video and photo regions
                more efficiently by way of a Wavelet based transformation.

        The session finding and creating modes (-find and -create) have
                been improved to be more reliable and also provide a new
                desktop types (xfce) and new service redirection options.

        Support for indexed colormaps (PseudoColor) with depths other
                than 8 is provided (depths 1 to 16 now work).

        Java viewer applet source code is provided in the x11vnc 0.9.4
                tarball so now everything can be built from source.

  miscellaneous new features and changes:

        To unset Caps_Lock, Num_Lock and raise all keys in the X server
                use -clear_all, or by remote control 'x11vnc -R clear_all'

        The -autoport option gives more control over the server port
                range that probes.

        The -ping option can be used to help keep idle connections alive.

        The -finddpy and -listdpy utilities help to debug and configure
                the -find, -create, and -display WAIT:... modes.

        Some automatic detection of screen resizes are handled even if
                the -xrandr option is not supplied.

        The -advertise_truecolor option can workaround some VNC viewer
                incompatibilities with PseudoColor.

        The option '-clip xinerama0' can be used to clip to the first
                Xinerama sub-screen, etc.

        If a fast framebuffer read rate is detected the -wait and -defer
                parameters are reduced to 10 and 15 msec, respectively.

        Pasting of the selection/clipboard into remote applications
                (e.g. Java) is improved.

        Usage with dvorak keyboards is improved.  The option -macuskbd is
                available on MacOSX to use the original US keyboard code.

        Via a compiler option (-DENABLE_GRABLOCAL) one can use the
                -grablocal n option to filter VNC client input if someone
                at the console has done mouse or keyboard input n secs ago.

        The -sleepin option can now sleep a random amount of time between
                min and max time delays (-sleepin min-max).

(obache)

Correct handling of tvtime.xml. Bump revision.

(joerg)

Fix a bug on some platforms which causes the installation to fail.
Thanks to Peter Avalos for debugging and joerg@ for pointing it out.

(adrianp)

Fix a bug on some platforms which causes the installation to fail.
Thanks to Peter Avalos for debugging and joerg@ for pointing it out.

(adrianp)

Link in to native X.Org the following packages:
  libFS and libXScrnSaver

For libXScrnSaver, there is a catch.  Previously, the code assumed its
presence from the fact that X11_TYPE was native.  I'm changing that to
provide a builtin.mk file.  This essentially means that the "native X.Org"
functionality of pkgsrc requires said native X.Org to provide the
necessary pkg-config files.  Expect more change of that kind.

(cube)

+ description for zlib

(adrianp)

filter_tomsmocomp is only present on i386. Mark as DESTDIR safe.

(joerg)

Forgot to add that file in previous commit.

(cube)

Link in to native X.Org all the remaining "proto" packages:
trapproto, vidmodeproto, xf86bigfontproto, xf86dgaproto, xf86driproto,
xf86miscproto, xf86vidmodeproto, xproxymanagementprotocol

(cube)

Oops, forgot that file in an earlier commit.

(cube)

Link in resourceproto to native X.Org.

(cube)

Link in scrnsaverproto to native X.Org.

(cube)

Link in recordproto to native X.Org.

(cube)

Order bl3.mk files in alphabetical order.

(cube)

Link in printproto to native X.Org.

(cube)

Needs BROKEN_GETTEXT_DETECTION to build on Ubuntu 8.04.

(rillig)

Link in glproto to native X.Org.

(cube)

Use external libffi to make it usable on amd64. Fix part of a regression
test, I have no idea about the remaining test case though.
Bump revision.

(joerg)

Fix build on DragonFly. From PR 38835.
Add DESTDIR support.

(joerg)

Match native X.Org's freetype2 library.

(cube)

Fix build with newer awk in netbsd-current.

(joerg)

Note update of www/drraw to 2.2a5nb1.

(kleink)

doc/WISHLIST is no longer.  Bump to 2.2a5nb1.

(kleink)

When I broke apr/-util out to build separately from httpd on
2007/01/24 19:46:45, I left Makefile.common in apache22 for no
reason at all.  Drop it.

approved by tron

(epg)

Needs intltool.

(joerg)

Pass pkgsrc ${CFLAGS} to the build via ${DEBUG}.

(bjs)

pkg_install-20080916:
Merge from changes for read_plist from pkg_install-renovation to always
initialize the plist and add append_plist for the one case where this is
not desired. Fixes PR 39276.

(joerg)

Link in fontsproto to native X.Org.

(cube)

Fix build on DragonFly. From PR 39561.

(joerg)

Link in fontcacheproto to native X.Org.

(cube)

Allow building libv4l on older NetBSD systems by providing videoio.h.
Don't override user CFLAGS.
Bump revision.

(joerg)

Support newer DragonFly versions. From PR 39148.

(joerg)

Support newer DragonFly versions. From PR 39148.

(joerg)

Fix build on DragonFly. From PR 39570.

(joerg)

Include pthread.h before including pthread_np.h.
>From Hasso Tepper in PR 39268.

(joerg)

twisted is restricted to 2.4+, so restrict here as well.

(joerg)

Pullup tickets #2525 and #2528.

(tron)

Pullup ticket #2528 - requested by taca
ruby18-base: security patch

Revisions pulled up:
- lang/ruby18-base/Makefile 1.47
- lang/ruby18-base/distinfo 1.34
- lang/ruby18-base/patches/patch-dg 1.5
- lang/ruby18-base/patches/patch-dh 1.3
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Sep 14 05:17:18 UTC 2008

Modified Files:
pkgsrc/lang/ruby18-base: Makefile distinfo
Added Files:
pkgsrc/lang/ruby18-base/patches: patch-dg patch-dh

Log Message:
Add fix for http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3790
(http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/)
from ruby_1_8 branch.

Bump PKGREVISION.

(tron)

Pullup ticket #2525 - requested by abs
apache-tomcat55: security update

Revisions pulled up:
- www/apache-tomcat55/Makefile 1.17
- www/apache-tomcat55/PLIST 1.6
- www/apache-tomcat55/distinfo 1.7
---
    Module Name: pkgsrc
    Committed By: abs
    Date: Wed Sep 10 09:53:31 UTC 2008

    Modified Files:
    pkgsrc/www/apache-tomcat55: Makefile PLIST distinfo

    Log Message:
    Updated www/apache-tomcat55 to 5.5.27

    Tomcat 5.5.27 (fhanik)

        General

            44463: War file upload in manager webapp fails due to missing commons-io dependency. Added commons-io 1.4. (rjung)

        Catalina

            44021, 43013: Add support for # to signify multi-level contexts for directories and wars.
            44494: Backport from 6.0 (rjung)
            Add additional checks for URI normalization. (remm)
            Don't throw an ArrayIndexOutOfBoundsException when empty URL is requested. Patch provided by Charles R Caldarale. (markt)
            29936: Don't use parser from a webapp to parse web.xml and possibly context.xml files. (markt)
            43079: Correct pattern verification for suspicious URLs. Patch provided by John Kew. (markt)
            43080: Log suspicious URL pattern warnings to the correct web application. (markt)
            43117: Setting an empty workDIR could delete all of CATALINA_HOME. Patch provided by Takayuki Kaneko. (markt)
            44282: Prevent security exception in trace level logging for web application class loader when running under a security manager. (markt)
            44529: No roles specified (deny all) should take precedence over no auth-constraint specified (allow-all). (markt)
            43578: Enable start on Linux if $CATALINA_HOME contains a space. Original patch provided by Ray Sauers with improvements by Ian Ward Comfort. (markt)
            44673: Throw IOE if ServletInputStream is closed and a call is made to any read(), ready(), mark(), reset(), or skip() method as per javadocs for Reader. (markt)
            Enable the CGIServlet to work with Windows Vista. (markt)
            Add additional permission required to read JDK logging configuration when running with a security manager. (markt)
            44943: Reduce copy/paste issues caused by different engine names in server.xml. (markt)
            45195: Prevent NPE when calling Session.getAttribute(null) and Session.removeAttribute(null). The spec is unclear but this is a regression from 5.0.x. (markt)
            45293: Update name of commons-logging jar in security policy. (markt)
            45453: Fix race condition in JDBC Realm. Based on a patch provided by Santtu Hyrkk. (markt)
            JAAS Realm did not read role information for users. (markt)

        Connectors

            Log errors for AJP signoffs at DEBUG level, since it is harmless if mod_jk has hung up the phone. (billbarker)
            42727: Handle request lines that are exact multiples of 4096 in length. Patch provided by Will Pugh. (markt)
            43191: Compression could not be disabled for some file types. Based on a patch by Len Popp. (markt)
            45591: Fix NPE on shutdown failure in some cases. Based on a patch by Matt Passell. (markt)

        Jasper

            31257: Quote endorsed dirs if they contain a space. (markt)
            42943: Make sure nested element is inside <jsp:text> element before throwing exception. (markt)
            44877: Prevent collisions in tag pool names. (markt)
            45015: Enfore JSP spec rules on quoting in attrbutes. This is configurable using the system property org.apache.jasper.compiler.Parser.STRICT_QUOTE_ESCAPING. (markt)

        Webapps

            42899: When saving config from admin app, correctly handle case where the old config file does not exist. (markt)
            44541: Document packetSize attribute for AJP connector. (markt)
            44715: Document use of secret for AJP connector. (markt)
            45323: Add note that context.xml files can only contain a single Context element. (markt)
            Update JNDI datasource docs since maxActive setting for unlimited changed in commons-pool > 1.2. (markt)

        Specification

            Use a localised error message if a user tries to write a negative length byte array during default processing of a HEAD request. (markt)
            44562: HEAD requests cannot use includes. Patch provided by David Jencks. (markt)

(tron)

Note the start of the freeze in preparation for the pkgsrc-2008Q3 branch.

(agc)

distinfo is now correct

(adam)

Link in evieext/evieproto (why do I have that feeling this package will be
renamed in a future X.Org release?).

(cube)

Link in bigreqsproto.

(cube)

xorg.xextensions has not been used since x11/xextensions disappeared more
than two years ago.

(cube)

Update to scmgit-1.6.0.2

(bjs)

Update to scmgit-1.6.0.2.  In pkgsrc, in Makefile.common .include,
change ${.CURDIR}/../... to ../../devel/scmgit/...; makes
a lot more sense.

Fixes since v1.6.0.1
--------------------

* Installation on platforms that needs .exe suffix to git-* programs were
  broken in 1.6.0.1.

* Installation on filesystems without symbolic links support did nto
  work well.

* In-tree documentations and test scripts now use "git foo" form to set a
  better example, instead of the "git-foo" form (which is an acceptable
  form if you have "PATH=$(git --exec-path):$PATH" in your script)

* Many commands did not use the correct working tree location when used
  with GIT_WORK_TREE environment settings.

* Some systems needs to use compatibility fnmach and regex libraries
  independent from each other; the compat/ area has been reorganized to
  allow this.

* "git apply --unidiff-zero" incorrectly applied a -U0 patch that inserts
  a new line before the second line.

* "git blame -c" did not exactly work like "git annotate" when range
  boundaries are involved.

* "git checkout file" when file is still unmerged checked out contents from
  a random high order stage, which was confusing.

* "git clone $there $here/" with extra trailing slashes after explicit
  local directory name $here did not work as expected.

* "git diff" on tracked contents with CRLF line endings did not drive "less"
  intelligently when showing added or removed lines.

* "git diff --dirstat -M" did not add changes in subdirectories up
  correctly for renamed paths.

* "git diff --cumulative" did not imply "--dirstat".

* "git for-each-ref refs/heads/" did not work as expected.

* "git gui" allowed users to feed patch without any context to be applied.

* "git gui" botched parsing "diff" output when a line that begins with two
  dashes and a space gets removed or a line that begins with two pluses
  and a space gets added.

* "git gui" translation updates and i18n fixes.

* "git index-pack" is more careful against disk corruption while completing
  a thin pack.

* "git log -i --grep=pattern" did not ignore case; neither "git log -E
  --grep=pattern" triggered extended regexp.

* "git log --pretty="%ad" --date=short" did not use short format when
  showing the timestamp.

* "git log --author=author" match incorrectly matched with the
  timestamp part of "author " line in commit objects.

* "git log -F --author=author" did not work at all.

* Build procedure for "git shell" that used stub versions of some
  functions and globals was not understood by linkers on some platforms.

* "git stash" was fooled by a stat-dirty but otherwise unmodified paths
  and refused to work until the user refreshed the index.

* "git svn" was broken on Perl before 5.8 with recent fixes to reduce
  use of temporary files.

* "git verify-pack -v" did not work correctly when given more than one
  packfile.

Also contains many documentation updates.

(bjs)

Add zlib option.
This is for PR 39433.
It is not enabled by default.

(reed)

Updated ruby-gnome2 to 0.17.0 release.

(obache)