devel/Makefile: + hs-enclosed-exceptions

(pho)

doc: Added devel/hs-enclosed-exceptions version 1.0.3

(pho)

devel/hs-enclosed-exceptions: import hs-enclosed-exceptions-1.0.3

The purpose of this module is to allow you to capture all exceptions
originating from within the enclosed computation, while still reacting to
asynchronous exceptions aimed at the calling thread.

This way, you can be sure that the function that calls, for example,
catchAny, will still respond to ThreadKilled or Timeout events raised by
another thread (with throwTo), while capturing all exceptions, synchronous
or asynchronous, resulting from the execution of the enclosed computation.

One particular use case is to allow the safe execution of code from various
libraries (which you do not control), capturing any faults that might
occur, while remaining responsive to higher level events and control
actions.

(pho)

devel/Makefile: + hs-hinotify

(pho)

doc: Added devel/hs-hinotify version 0.4.1

(pho)

devel/hs-hinotify: import hs-hinotify-0.4.1

This library provides a wrapper to the Linux Kernel's inotify feature,
allowing applications to subscribe to notifications when a file is accessed
or modified.

(pho)

devel/haskell-language-server: Generate shell completion scripts with optparse-applicative

(pho)

devel/hs-ghcide: Generate shell completion scripts with optparse-applicative

Although it is no longer recommended to invoke ghcide directly, that
doesn't mean we shouldn't generate completion scripts for it.

(pho)

devel/hs-hie-bios: Generate shell completion scripts with optparse-applicative

(pho)

devel/floskell: Generate shell completion scripts with optparse-applicative

(pho)

devel/fourmolu: Generate shell completion scripts with optparse-applicative

(pho)

devel/retrie: Link retrie with static Haskell libraries

Also generate shell completion scripts with optparse-applicative.

(pho)

devel/hs-hiedb: Generate shell completion scripts with optparse-applicative

(pho)

devel/ormolu: Generate shell completion scripts with optparse-applicative

(pho)

lang/idris: Link idris with static Haskell libraries

Also generate shell completion scripts with optparse-applicative.

(pho)

doc: Updated graphics/gegl to 0.4.36

(wiz)

gegl: update to 0.4.36.

GEGL-0.4.36 2022-02-21

The primary addition in this release is SIMD dispatch, buffer access functions
get built for x86-64 v2 and v3 microarchitecture levels as well as ARM neon.
the same applies to core operations where we have .so bundles for the variants
as well as a generic build.

Operations:

The npd operation fixed with multiple threads.

(wiz)

doc: Updated graphics/babl to 0.1.90

(wiz)

babl: update to 0.1.90.

Automatic LUT creation for conversions from <=24bpp of colorant componants,
SIMD builds for x86_64 micro-architecture levels and ARM neon, pre-defined
CIE Lab u8 and CIE Lab u16 formats. Fix bug of an unlocked non-locked mutex,
which started failing on some platforms.

(wiz)

devel/darcs: Link darcs with static Haskell libraries

(pho)

net/hoogle: Link hoogle with static Haskell libraries

(pho)

converters/pandoc: Link pandoc with static Haskell libraries

(pho)

doc: Updated security/wolfssl to 5.2.0

(fox)

security/wolfssl: Update to v5.2.0

Changes since v5.1.1:

wolfSSL Release 5.2.0 (Feb 21, 2022)

Release 5.2.0 of wolfSSL embedded TLS has bug fixes and new features including:
Vulnerabilities

  * [High] A TLS v1.3 server who requires mutual authentication can be
    bypassed. If a malicious client does not send the certificate_verify message
    a client can connect without presenting a certificate even if the server
    requires one. Thank you to Aina Toky Rasoamanana and Olivier Levillain of
    Télécom SudParis.
  * [High] A TLS v1.3 client attempting to authenticate a TLS v1.3 server can
    have its certificate check bypassed. If the sig_algo in the
    certificate_verify message is different than the certificate message checking
    may be bypassed. Thank you to Aina Toky Rasoamanana and Olivier Levillain of
    Télécom SudParis.

New Feature Additions

  *  Example applications for Renesas RX72N with FreeRTOS+IoT
  *  Renesas FSP 3.5.0 support for RA6M3
  *  For TLS 1.3, improved checks on order of received messages.
  *  Support for use of SHA-3 cryptography instructions available in ARMv8.2-A
    architecture extensions. (For Apple M1)
  *  Support for use of SHA-512 cryptography instructions available in ARMv8.2-A
    architecture extensions. (For Apple M1)
  *  Fixes for clang -Os on clang >= 12.0.0
  *  Expose Sequence Numbers so that Linux TLS (kTLS) can be configured
  *  Fix bug in TLSX_ALPN_ParseAndSet when using ALPN select callback.
  *  Allow DES3 with FIPS v5-dev.
  *  Include HMAC for deterministic ECC sign build
  *  Add --enable-chrony configure option. This sets build options needed to
    build the Chrony NTP (Network Time Protocol) service.
  *  Add support for STM32U575xx boards.
  *  Fixes for NXP’s SE050 Ed25519/Curve25519.
  *  TLS: Secure renegotiation info on by default for compatibility.
  *  Inline C code version of ARM32 assembly for cryptographic algorithms
    available and compiling for improved performance on ARM platforms
  *  Configure HMAC: define NO_HMAC to disable HMAC (default: enabled)
  *  ISO-TP transport layer support added to wolfio for TLS over CAN Bus
  *  Fix initialization bug in SiLabs AES support
  *  Domain and IP check is only performed on leaf certificates

ARM PSA Support (Platform Security Architecture) API

  * Initial support added for ARM’s Platform Security Architecture (PSA) API in
    wolfCrypt which allows support of ARM PSA enabled devices by wolfSSL,
    wolfSSH, and wolfBoot and wolfCrypt FIPS.
  * Included algorithms: ECDSA, ECDH, HKDF, AES, SHA1, SHA256, SHA224, RNG

ECICE Updates

  * Support for more encryption algorithms: AES-256-CBC, AES-128-CTR,
    AES-256-CTR
  * Support for compressed public keys in messages.

Math Improvements

  * Improved performance of X448 and Ed448 through inlining Karatsuba in square
    and multiplication operations for 128-bit implementation (64-bit platforms
    with 128-bit type support).
  * SP Math C implementation: fix for corner case in curve specific
    implementations of Montgomery Reduction (P-256, P-384).
  * SP math all: assembly snippets added for ARM Thumb. Performance improvement
    on platform.
  * SP math all: ARM64/32 sp_div_word assembly snippets added to remove
    dependency on __udiv3.
  * SP C implementation: multiplication of two signed types with overflow is
    undefined in C. Now cast to unsigned type before multiplication is
    performed.
  * SP C implementation correctly builds when using CFLAG: -m32

OpenSSL Compatibility Layer

  * Added DH_get_2048_256 to compatibility layer.
  * wolfSSLeay_version now returns the version of wolfSSL
  * Added C++ exports for API’s in wolfssl/openssl/crypto.h. This allows better
    compatibility when building with a C++ compiler.
  * Fix for OpenSSL x509_NAME_hash mismatch
  * Implement FIPS_mode and FIPS_mode_set in the compat layer.
  * Fix for certreq and certgen options with openssl compatibility
  * wolfSSL_BIO_dump() and wolfSSL_OBJ_obj2txt() rework
  * Fix IV length bug in EVP AES-GCM code.
  * Add new ASN1_INTEGER compatibility functions.
  * Fix wolfSSL_PEM_X509_INFO_read with NO_FILESYSTEM

CMake Updates

  * Check for valid override values.
  * Add KEYGEN option.
  * Cleanup help messages.
  * Add options to support wolfTPM.

VisualStudio Updates

  * Remove deprecated VS solution
  * Fix VS unreachable code warning

New Algorithms and Protocols

  * AES-SIV (RFC 5297)
  * DTLS SRTP (RFC 5764), used with WebRTC to agree on profile for new real-time
    session keys
  * SipHash MAC/PRF for hash tables. Includes inline assembly for x86_64 and
    Aarch64.

Remove Obsolete Algorithms

  * IDEA
  * Rabbit
  * HC-128

(fox)

doc: Updated audio/din to 53.1

(fox)

audio/din: Update to 53.1

Changes since 53:

DIN Is Noise 53.1:
  ! fixed : runaway launch of drones when Drone Params > Defaults > Generations
            is > 1 (higher the value worse the outcome!) and Drones Per Minute = 0
            due to wrong initialisation of this drone parameter after DIN restart /
            reload

  Update ASAP to DIN53.1

(fox)

Bump all Haskell packages after enabling "split sections" in mk/haskell.mk

(pho)

mk/haskell.mk: Enable --enable-split-sections

Ask GHC to put each compiled function in a separate section and ld(1) to
perform GC. This greatly reduces the size of executables linked with static
Haskell libraries. For example, lang/purescript shrinks down from 104 MiB
to 57 MiB! Reduced storage use means reduced I/O cost!

(pho)

README.NetBSD: slightly rephrase note about make(1)

On 5.99.11, make(1) is missing a feature now expected by pkgsrc's mk
framework. (I don't have anything 6.x to test with.)

(gutteridge)

doc: Updated lang/python27 to 2.7.18nb8

(gutteridge)

python27: fix two security issues

Addresses CVE-2021-4189 and CVE-2022-0391. Patches sourced via Fedora.

(gutteridge)

doc: Updated converters/p5-Sereal to 4.023

(fcambus)

p5-Sereal: update to 4.023.

4.023 Sun Feb 20, 2022
    * Make it possible to upgrade with passing tests when using
      Sereal::Decoder 4.015 - 4.019 on threaded debugging perls.

      IF YOU USE THREADED PERLS YOU ARE STRONGLY ADVISED TO UPDATE
      TO THIS VERSION OR LATER. *UPGRADE THE DECODER IMMEDIATELY.*

4.022 Sat Feb 19, 2022
4.021 Fri Feb 18, 2022
    * Early but incomplete versions of 4.023, skip these releases.

4.020 Thurs Feb 17, 2022
    * Fix "panic: free from wrong pool" errors on threaded debugging builds.
      This error is only visible on DEBUGGING perls however it exists
      regardless. If you are using a threaded build upgrade to this!
      Thanks to Andreas J. Koenig for finding the bug, and Nicholas Clark
      for suggesting valgrind to debug and fix it.

4.019 Mon Feb 7, 2022
    * Fix build issue with latest perl - Thanks to Nicholas Clark
    * Update zstd to 1.5.1

(fcambus)

doc: Updated converters/p5-Sereal-Encoder to 4.023

(fcambus)

p5-Sereal-Encoder: update to 4.023.

4.023 Sun Feb 20, 2022
    * Make it possible to upgrade with passing tests when using
      Sereal::Decoder 4.015 - 4.019 on threaded debugging perls.

      IF YOU USE THREADED PERLS YOU ARE STRONGLY ADVISED TO UPDATE
      TO THIS VERSION OR LATER. *UPGRADE THE DECODER IMMEDIATELY.*

4.022 Sat Feb 19, 2022
4.021 Fri Feb 18, 2022
    * Early but incomplete versions of 4.023, skip these releases.

4.020 Thurs Feb 17, 2022
    * Fix "panic: free from wrong pool" errors on threaded debugging builds.
      This error is only visible on DEBUGGING perls however it exists
      regardless. If you are using a threaded build upgrade to this!
      Thanks to Andreas J. Koenig for finding the bug, and Nicholas Clark
      for suggesting valgrind to debug and fix it.

4.019 Mon Feb 7, 2022
    * Fix build issue with latest perl - Thanks to Nicholas Clark
    * Update zstd to 1.5.1

(fcambus)

doc: Updated converters/p5-Sereal-Decoder to 4.023

(fcambus)

p5-Sereal-Decoder: update to 4.023.

4.023 Sun Feb 20, 2022
    * Make it possible to upgrade with passing tests when using
      Sereal::Decoder 4.015 - 4.019 on threaded debugging perls.

      IF YOU USE THREADED PERLS YOU ARE STRONGLY ADVISED TO UPDATE
      TO THIS VERSION OR LATER. *UPGRADE THE DECODER IMMEDIATELY.*

4.022 Sat Feb 19, 2022
4.021 Fri Feb 18, 2022
    * Early but incomplete versions of 4.023, skip these releases.

4.020 Thurs Feb 17, 2022
    * Fix "panic: free from wrong pool" errors on threaded builds.
      This error is only visible on DEBUGGING perls however it exists
      regardless. If you are using a threaded build upgrade to this!
      Thanks to Andreas J. Koenig for finding the bug, and Nicholas Clark
      for suggesting valgrind to debug and fix it.

4.019 Mon Feb 7, 2022
    * Fix build issue with latest perl - Thanks to Nicholas Clark
    * Update zstd to 1.5.1

(fcambus)

doc: Updated lang/duktape to 2.7.0

(fcambus)

duktape: update to 2.7.

=========================
Duktape 2.7 release notes
=========================

Release overview
================

Main changes in this release (see RELEASES.rst for full details):

* Various fixes and portability improvements.

Upgrading from Duktape 2.6
==========================

No action (other than recompiling) should be needed for most users to upgrade
from Duktape v2.6.x.

(fcambus)

doc: Updated lang/libduktape to 2.7.0

(fcambus)

libduktape: update to 2.7.

=========================
Duktape 2.7 release notes
=========================

Release overview
================

Main changes in this release (see RELEASES.rst for full details):

* Various fixes and portability improvements.

Upgrading from Duktape 2.6
==========================

No action (other than recompiling) should be needed for most users to upgrade
from Duktape v2.6.x.

(fcambus)

net/unison2.51: Drop MAKE_OBS_SAFE=no

It builds for me repeatedly with MAKE_JOBS=20.

(If there are failures and this needs reenabling, please open a
high-quality bug report upstream and provide a link.)

(gdt)

doc: Updated devel/p5-FindBin-libs to 3.0.1

(schmonz)

Update to 3.0.1. From the changelog:

- Remove extraneous breakpoints

- Rewrite the search to use a saner, multi-stage
  process. Still uses abs_path to avoid duplicates
  working up the stack due to multi-level symlinks,
  skips things earlier in the process & is a bit
  easier to read.

- noignore is handled properly, as is ignore=

- taint extraction on $Bin uses m{^ (.+) /? }x
  to strip the trailing '/' in some RHEL versions
  of catpath.

(schmonz)

doc: Updated devel/goredo to 1.23.0

(schmonz)

Update to 1.23.0. From the changelog:

- "redo-ifchange"窶冱 "-f" option forces each target rebuilding.
  Comparing to "redo", it will parallelize the process.
- Inode窶冱 number is also stored as dependency information, just to
  prevent possible "ctime" collision of two files.
- Performance optimization: do not use target窶冱 temporary output file
  at all, if its hash equals to already existing target窶冱 one.  Just
  touch existing target file instead.

(schmonz)

chat/matrix-synapse: Bump matrix-common version

(js)

doc: Updated chat/py-matrix-common to 1.1.0

(js)

Update chat/py-matrix-common to 1.1.0

(js)

doc: Updated chat/matrix-synapse to 1.53.0

(js)

Update chat/matrix-synapse to 1.53.0

Synapse 1.53.0 (2022-02-22)
===========================

No significant changes.

Synapse 1.53.0rc1 (2022-02-15)
==============================

Features
--------

- Add experimental support for sending to-device messages to application services, as specified by [MSC2409](https://github.com/matrix-org/matrix-doc/pull/2409). ([\#11215](https://github.com/matrix-org/synapse/issues/11215), [\#11966](https://github.com/matrix-org/synapse/issues/11966))
- Remove account data (including client config, push rules and ignored users) upon user deactivation. ([\#11655](https://github.com/matrix-org/synapse/issues/11655))
- Experimental support for [MSC3666](https://github.com/matrix-org/matrix-doc/pull/3666): including bundled aggregations in server side search results. ([\#11837](https://github.com/matrix-org/synapse/issues/11837))
- Enable cache time-based expiry by default. The `expiry_time` config flag has been superseded by `expire_caches` and `cache_entry_ttl`. ([\#11849](https://github.com/matrix-org/synapse/issues/11849))
- Add a callback to allow modules to allow or forbid a 3PID (email address, phone number) from being associated to a local account. ([\#11854](https://github.com/matrix-org/synapse/issues/11854))
- Stabilize support and remove unstable endpoints for [MSC3231](https://github.com/matrix-org/matrix-doc/pull/3231). Clients must switch to the stable identifier and endpoint. See the [upgrade notes](https://matrix-org.github.io/synapse/develop/upgrade#stablisation-of-msc3231) for more information. ([\#11867](https://github.com/matrix-org/synapse/issues/11867))
- Allow modules to retrieve the current instance's server name and worker name. ([\#11868](https://github.com/matrix-org/synapse/issues/11868))
- Use a dedicated configurable rate limiter for 3PID invites. ([\#11892](https://github.com/matrix-org/synapse/issues/11892))
- Support the stable API endpoint for [MSC3283](https://github.com/matrix-org/matrix-doc/pull/3283): new settings in `/capabilities` endpoint. ([\#11933](https://github.com/matrix-org/synapse/issues/11933), [\#11989](https://github.com/matrix-org/synapse/issues/11989))
- Support the `dir` parameter on the `/relations` endpoint, per [MSC3715](https://github.com/matrix-org/matrix-doc/pull/3715). ([\#11941](https://github.com/matrix-org/synapse/issues/11941))
- Experimental implementation of [MSC3706](https://github.com/matrix-org/matrix-doc/pull/3706): extensions to `/send_join` to support reduced response size. ([\#11967](https://github.com/matrix-org/synapse/issues/11967))

Bugfixes
--------

- Fix [MSC2716](https://github.com/matrix-org/matrix-doc/pull/2716) historical messages backfilling in random order on remote homeservers. ([\#11114](https://github.com/matrix-org/synapse/issues/11114))
- Fix a bug introduced in Synapse 1.51.0 where incoming federation transactions containing at least one EDU would be dropped if debug logging was enabled for `synapse.8631_debug`. ([\#11890](https://github.com/matrix-org/synapse/issues/11890))
- Fix a long-standing bug where some unknown endpoints would return HTML error pages instead of JSON `M_UNRECOGNIZED` errors. ([\#11930](https://github.com/matrix-org/synapse/issues/11930))
- Implement an allow list of content types for which we will attempt to preview a URL. This prevents Synapse from making useless longer-lived connections to streaming media servers. ([\#11936](https://github.com/matrix-org/synapse/issues/11936))
- Fix a long-standing bug where pagination tokens from `/sync` and `/messages` could not be provided to the `/relations` API. ([\#11952](https://github.com/matrix-org/synapse/issues/11952))
- Require that modules register their callbacks using keyword arguments. ([\#11975](https://github.com/matrix-org/synapse/issues/11975))
- Fix a long-standing bug where `M_WRONG_ROOM_KEYS_VERSION` errors would not include the specced `current_version` field. ([\#11988](https://github.com/matrix-org/synapse/issues/11988))

Improved Documentation
----------------------

- Fix typo in User Admin API: unpind -> unbind. ([\#11859](https://github.com/matrix-org/synapse/issues/11859))
- Document images returned by the User List Media Admin API can include those generated by URL previews. ([\#11862](https://github.com/matrix-org/synapse/issues/11862))
- Remove outdated MSC1711 FAQ document. ([\#11907](https://github.com/matrix-org/synapse/issues/11907))
- Correct the structured logging configuration example. Contributed by Brad Jones. ([\#11946](https://github.com/matrix-org/synapse/issues/11946))
- Add information on the Synapse release cycle. ([\#11954](https://github.com/matrix-org/synapse/issues/11954))
- Fix broken link in the README to the admin API for password reset. ([\#11955](https://github.com/matrix-org/synapse/issues/11955))

Deprecations and Removals
-------------------------

- Drop support for `webclient` listeners and configuring `web_client_location` to a non-HTTP(S) URL. Deprecated configurations are a configuration error. ([\#11895](https://github.com/matrix-org/synapse/issues/11895))
- Remove deprecated `user_may_create_room_with_invites` spam checker callback. See the [upgrade notes](https://matrix-org.github.io/synapse/latest/upgrade.html#removal-of-user_may_create_room_with_invites) for more information. ([\#11950](https://github.com/matrix-org/synapse/issues/11950))
- No longer build `.deb` packages for Ubuntu 21.04 Hirsute Hippo, which has now EOLed. ([\#11961](https://github.com/matrix-org/synapse/issues/11961))

Internal Changes
----------------

- Enhance user registration test helpers to make them more useful for tests involving application services and devices. ([\#11615](https://github.com/matrix-org/synapse/issues/11615), [\#11616](https://github.com/matrix-org/synapse/issues/11616))
- Improve performance when fetching bundled aggregations for multiple events. ([\#11660](https://github.com/matrix-org/synapse/issues/11660), [\#11752](https://github.com/matrix-org/synapse/issues/11752))
- Fix type errors introduced by new annotations in the Prometheus Client library. ([\#11832](https://github.com/matrix-org/synapse/issues/11832))
- Add missing type hints to replication code. ([\#11856](https://github.com/matrix-org/synapse/issues/11856), [\#11938](https://github.com/matrix-org/synapse/issues/11938))
- Ensure that `opentracing` scopes are activated and closed at the right time. ([\#11869](https://github.com/matrix-org/synapse/issues/11869))
- Improve opentracing for incoming federation requests. ([\#11870](https://github.com/matrix-org/synapse/issues/11870))
- Improve internal docstrings in `synapse.util.caches`. ([\#11876](https://github.com/matrix-org/synapse/issues/11876))
- Do not needlessly clear the `get_users_in_room` and `get_users_in_room_with_profiles` caches when any room state changes. ([\#11878](https://github.com/matrix-org/synapse/issues/11878))
- Convert `ApplicationServiceTestCase` to use `simple_async_mock`. ([\#11880](https://github.com/matrix-org/synapse/issues/11880))
- Remove experimental changes to the default push rules which were introduced in Synapse 1.19.0 but never enabled. ([\#11884](https://github.com/matrix-org/synapse/issues/11884))
- Disable coverage calculation for olddeps build. ([\#11888](https://github.com/matrix-org/synapse/issues/11888))
- Preparation to support sending device list updates to application services. ([\#11905](https://github.com/matrix-org/synapse/issues/11905))
- Add a test that checks users receive their own device list updates down `/sync`. ([\#11909](https://github.com/matrix-org/synapse/issues/11909))
- Run Complement tests sequentially. ([\#11910](https://github.com/matrix-org/synapse/issues/11910))
- Various refactors to the application service notifier code. ([\#11911](https://github.com/matrix-org/synapse/issues/11911), [\#11912](https://github.com/matrix-org/synapse/issues/11912))
- Tests: replace mocked `Authenticator` with the real thing. ([\#11913](https://github.com/matrix-org/synapse/issues/11913))
- Various refactors to the typing notifications code. ([\#11914](https://github.com/matrix-org/synapse/issues/11914))
- Use the proper type for the `Content-Length` header in the `UploadResource`. ([\#11927](https://github.com/matrix-org/synapse/issues/11927))
- Remove an unnecessary ignoring of type hints due to fixes in upstream packages. ([\#11939](https://github.com/matrix-org/synapse/issues/11939))
- Add missing type hints. ([\#11953](https://github.com/matrix-org/synapse/issues/11953))
- Fix an import cycle in `synapse.event_auth`. ([\#11965](https://github.com/matrix-org/synapse/issues/11965))
- Unpin `frozendict` but exclude the known bad version 2.1.2. ([\#11969](https://github.com/matrix-org/synapse/issues/11969))
- Prepare for rename of default Complement branch. ([\#11971](https://github.com/matrix-org/synapse/issues/11971))
- Fetch Synapse's version using a helper from `matrix-common`. ([\#11979](https://github.com/matrix-org/synapse/issues/11979))

Synapse 1.52.0 (2022-02-08)
===========================

No significant changes since 1.52.0rc1.

Note that [Twisted 22.1.0](https://github.com/twisted/twisted/releases/tag/twisted-22.1.0)
has recently been released, which fixes a [security issue](https://github.com/twisted/twisted/security/advisories/GHSA-92x2-jw7w-xvvx)
within the Twisted library. We do not believe Synapse is affected by this vulnerability,
though we advise server administrators who installed Synapse via pip to upgrade Twisted
with `pip install --upgrade Twisted` as a matter of good practice. The Docker image
`matrixdotorg/synapse` and the Debian packages from `packages.matrix.org` are using the
updated library.

Synapse 1.52.0rc1 (2022-02-01)
==============================

Features
--------

- Remove account data (including client config, push rules and ignored users) upon user deactivation. ([\#11621](https://github.com/matrix-org/synapse/issues/11621), [\#11788](https://github.com/matrix-org/synapse/issues/11788), [\#11789](https://github.com/matrix-org/synapse/issues/11789))
- Add an admin API to reset connection timeouts for remote server. ([\#11639](https://github.com/matrix-org/synapse/issues/11639))
- Add an admin API to get a list of rooms that federate with a given remote homeserver. ([\#11658](https://github.com/matrix-org/synapse/issues/11658))
- Add a config flag to inhibit `M_USER_IN_USE` during registration. ([\#11743](https://github.com/matrix-org/synapse/issues/11743))
- Add a module callback to set username at registration. ([\#11790](https://github.com/matrix-org/synapse/issues/11790))
- Allow configuring a maximum file size as well as a list of allowed content types for avatars. ([\#11846](https://github.com/matrix-org/synapse/issues/11846))

Bugfixes
--------

- Include the bundled aggregations in the `/sync` response, per [MSC2675](https://github.com/matrix-org/matrix-doc/pull/2675). ([\#11612](https://github.com/matrix-org/synapse/issues/11612))
- Fix a long-standing bug when previewing Reddit URLs which do not contain an image. ([\#11767](https://github.com/matrix-org/synapse/issues/11767))
- Fix a long-standing bug that media streams could cause long-lived connections when generating URL previews. ([\#11784](https://github.com/matrix-org/synapse/issues/11784))
- Include a `prev_content` field in state events sent to Application Services. Contributed by @totallynotvaishnav. ([\#11798](https://github.com/matrix-org/synapse/issues/11798))
- Fix a bug introduced in Synapse 0.33.3 causing requests to sometimes log strings such as `HTTPStatus.OK` instead of integer status codes. ([\#11827](https://github.com/matrix-org/synapse/issues/11827))

Improved Documentation
----------------------

- Update pypi installation docs to indicate that we now support Python 3.10. ([\#11820](https://github.com/matrix-org/synapse/issues/11820))
- Add missing steps to the contribution submission process in the documentation.  Contributed by @sequentialread. ([\#11821](https://github.com/matrix-org/synapse/issues/11821))
- Remove not needed old table of contents in documentation. ([\#11860](https://github.com/matrix-org/synapse/issues/11860))
- Consolidate the `access_token` information at the top of each relevant page in the Admin API documentation. ([\#11861](https://github.com/matrix-org/synapse/issues/11861))

Deprecations and Removals
-------------------------

- Drop support for Python 3.6, which is EOL. ([\#11683](https://github.com/matrix-org/synapse/issues/11683))
- Remove the `experimental_msc1849_support_enabled` flag as the features are now stable. ([\#11843](https://github.com/matrix-org/synapse/issues/11843))

Internal Changes
----------------

- Preparation for database schema simplifications: add `state_key` and `rejection_reason` columns to `events` table. ([\#11792](https://github.com/matrix-org/synapse/issues/11792))
- Add `FrozenEvent.get_state_key` and use it in a couple of places. ([\#11793](https://github.com/matrix-org/synapse/issues/11793))
- Preparation for database schema simplifications: stop reading from `event_reference_hashes`. ([\#11794](https://github.com/matrix-org/synapse/issues/11794))
- Drop unused table `public_room_list_stream`. ([\#11795](https://github.com/matrix-org/synapse/issues/11795))
- Preparation for reducing Postgres serialization errors: allow setting transaction isolation level. Contributed by Nick @ Beeper. ([\#11799](https://github.com/matrix-org/synapse/issues/11799), [\#11847](https://github.com/matrix-org/synapse/issues/11847))
- Docker: skip the initial amd64-only build and go straight to multiarch. ([\#11810](https://github.com/matrix-org/synapse/issues/11810))
- Run Complement on the Github Actions VM and not inside a Docker container. ([\#11811](https://github.com/matrix-org/synapse/issues/11811))
- Log module names at startup. ([\#11813](https://github.com/matrix-org/synapse/issues/11813))
- Improve type safety of bundled aggregations code. ([\#11815](https://github.com/matrix-org/synapse/issues/11815))
- Correct a type annotation in the event validation logic. ([\#11817](https://github.com/matrix-org/synapse/issues/11817), [\#11830](https://github.com/matrix-org/synapse/issues/11830))
- Minor updates and documentation for database schema delta files. ([\#11823](https://github.com/matrix-org/synapse/issues/11823))
- Workaround a type annotation problem in `prometheus_client` 0.13.0. ([\#11834](https://github.com/matrix-org/synapse/issues/11834))
- Minor performance improvement in room state lookup. ([\#11836](https://github.com/matrix-org/synapse/issues/11836))
- Fix some indentation inconsistencies in the sample config. ([\#11838](https://github.com/matrix-org/synapse/issues/11838))
- Add type hints to `tests/rest/admin`. ([\#11851](https://github.com/matrix-org/synapse/issues/11851))

(js)

postgresql11: Backport client MAKE_JOBS fix.

(jperkin)

librsvg: update comment

(tnn)

doc: Updated textproc/ugrep to 3.7.4

(fcambus)

ugrep: update to 3.7.4.

New --hexdump options to grep binary files and display binary matches in
hexadecimal with n hex lines before and after the match with --hexdump=Cn,
--hexdump=An for n lines after and --hexdump=Bn for n lines before.
Omitting n defaults to the entire matching line. Option -X is equivalent
to --hexdump=2C for 2 hex columns per line and entire matching line as
context. Includes user experience improvements, such as additional --help
information and --stats details.

We also made ugrep faster overall with performance improvements.

(fcambus)

ghc92: Fix build on SunOS.

Ensure _POSIX_PTHREAD_SEMANTICS is defined, for some reason the global defines
aren't being applied correctly to this file.

(jperkin)

x11/xnotify: Reset maintainer for stagnated project.

(pin)

x11/xdo: Reset maintainer for stagnated project.

(pin)

x11/unibar: Reset maintainer for stagnated project.

(pin)

textproc/stava: Reset maintainer for stagnated project.

(pin)

wm/sowm: Reset maintainer for stagnated project.

(pin)

textproc/sd: Reset maintainer for stagnated project.

(pin)

sysutils/refi: Reset maintainer for stagnated project.

(pin)

net/phetch: Reset maintainer for stagnated project.

(pin)

time/heliocron: Reset maintainer for stagnated project.

(pin)

sysutils/fff: Reset maintainer for stagnated project.

(pin)

textproc/diffr: Reset maintainer for stagnated project.

(pin)

misc/deckster: Reset maintainer for stagnated project.

(pin)

www/cratuity: Reset maintainer due to license change

(pin)

www/ddgr: Reset maintainer for stagnated project.

(pin)

editors/cesium:Reset maintainer for stagnated project.

(pin)

doc: Updated finance/rates to 0.7.0

(pin)

finance/rates: update to 0.7.0

-fix: update trimming logic

(pin)

notmuch: Fix PLIST for emacs.

(ryoon)

doc: Updated www/php-nextcloud to 23.0.2

(ryoon)

php-nextcloud: Update to 23.0.2

Changelog:
Version 23.0.2 February 16 2022

Changes

  * Check for disk_free_space (server#29798)
  * Avoid use of iconv to get rid of unicode (server#29965)
  * Don't query the bruteforce attempts when we just deleted them (server#
    30026)
  * Fix input for groups validation in new user form (server#30144)
  * Reload page instead of file list when getting 401 authentification error
    (server#30151)
  * Allow to delete non-migrated previews instead of moving them (server#30175)
  * Fix relation "user_id" already exists migration error (server#30176)
  * Check resource before closing in encryption wrapper (server#30180)
  * Use correct icon for dir-external-root (server#30187)
  * Properly format sharing datepicker locale (server#30190)
  * Update guzzlehttp/guzzle requirement from 6.5.2 to 6.5.5 in /build/
    integration (server#30212)
  * Update sabre/dav requirement from 4.2.1 to 4.2.3 in /build/integration
    (server#30213)
  * Bump dompurify from 2.3.3 to 2.3.4 (server#30214)
  * Bump core-js from 3.19.2 to 3.19.3 (server#30215)
  * Don't check the configvalue for lastLogin which is never null (server#
    30236)
  * Support LDAP dns longer than 255 characters (server#30238)
  * Only wildcard search if enumeration is allowed (server#30245)
  * Fix setting up 2FA when no providers are set up but backup codes (server#
    30252)
  * Carefully filter out non matching time ranges for CalDAV search (server#
    30267)
  * Use bigint for autoincremented column (server#30272)
  * Fix ShareLink Upload UI for Folders (server#30289)
  * Use proper translation source for direct editing (server#30301)
  * Ignore non-existing groups when notifying group shares (server#30306)
  * Fix share owner not being displayed in sharing tab (server#30315)
  * Update sabre/dav requirement from 4.2.3 to 4.3.0 in /build/integration
    (server#30325)
  * Enhance and complement OPcache setup checks (server#30339)
  * Fix potential unwarranted memberships in nested groups from LDAP (server#
    30343)
  * Fix overlapping in the help settings section (server#30344)
  * Remove iconv from dependencies and tests (server#30351)
  * Fix persistent tooltip in the "new folder" input of the file picker (server
    #30356)
  * Don't die with LockedException when removing/restoring multiple files from
    trash (server#30390)
  * Improve personal settings on mobile (server#30411)
  * Fix rendering app authors with homepage or email (server#30431)
  * Add missing index for propertypath only queries of DAV properties (server#
    30433)
  * Handle external share with invalid host (server#30443)
  * Make sure to get file model in template picker (server#30449)
  * Improve status modal (server#30455)
  * Allow using composer plugin with composer 2.2 (server#30462)
  * Fix uploading text position (server#30480)
  * Run migrations fully when reenabling an app (server#30486)
  * Fix passing on the parameter (server#30522)
  * Fix email verification (server#30525)
  * Update CRL after revocation of sharerenamer.crt (server#30528)
  * Handle LocalServerException when scanning external shares (server#30557)
  * Fix fail when keys/files folder already exists (server#30576)
  * Use npm ci when running JS tests (server#30580)
  * Fix: only use jquery once it is available (server#30592)
  * Avoid zero division in setup checks (server#30594)
  * Prevent loading images that would require too much memory. (server#30602)
  * Fix undefined/unset scope in account properties (server#30611)
  * Fix RequestURL check for cli commands (server#30619)
  * Reset job disabling timer on adding the job again (server#30621)
  * Set the file's mtime from the headers in bulk upload (server#30623)
  * Trigger "changeDirectory" event on URL change (server#30627)
  * Properly abort uploads (server#30636)
  * Fix idn emails not working in shares (server#30643)
  * Implement multibucket shift for ObjectStore (server#30659)
  * Fix wrong unified search link to folder (server#30662)
  * Fix primary key change in user_ldap migration (server#30663)
  * Improve accessibility settings on mobile (server#30671)
  * Fix file picker not respecting hidden files settings (server#30672)
  * Add version of disabled apps when available (server#30674)
  * Optimize FileSystemTags workflow for groupfolder (server#30684)
  * Fix users can't login external mount user entered credentials not set
    (server#30685)
  * Remove inefficient fed share scanner (server#30688)
  * New Files internal link GET param to avoid opening the file (server#30689)
  * UpdateEncryptedVersion: cleanup on target if cache already got renamed
    (server#30695)
  * Improve layout for the public download page (server#30698)
  * Fix loading of the text app in public shared links (server#30722)
  * Fix non-ascii characters present in the header (server#30728)
  * Hash job argument (server#30734)
  * Increase email main buttons width for non-english languages (server#30740)
  * Improve install process (server#30747)
  * Create block-merge-freeze.yml (server#30753)
  * Log bruteforce throttle and blocking (server#30759)
  * Always call flush() as getAllKeys() is broken (server#30773)
  * Add KerberosApacheAuth support to files_external (server#30782)
  * Update sabre/dav requirement from 4.3.0 to 4.3.1 in /build/integration
    (server#30799)
  * Bump jquery-ui from 1.13.0 to 1.13.1 (server#30800)
  * Fix accessing undefined offsets (server#30811)
  * Fix psalm not running (server#30814)
  * 23.0.1 Final (server#30840)
  * Fix php:cs (server#30847)
  * Prevent merging on EOL branches (server#30872)
  * Fixes occ user:info when the user never logged in (server#30890)
  * Bump dompurify from 2.3.4 to 2.3.5 (server#30911)
  * Bump clipboard from 2.0.8 to 2.0.9 (server#30912)
  * Bump webpack-cli from 4.9.1 to 4.9.2 (server#30913)
  * Fix psalm warning related to registerEventListener (server#30915)
  * Update version.php (server#30975)
  * Fix duplicated UUID migration issue (server#31107)
  * Revert the 'broken' public page changes (server#31108)
  * Disable bulk upload by not advertising it (server#31171)
  * Create block-merge-freeze.yml (3rdparty#971)
  * Fix sorting of filters on php 8.0+ (activity#715)
  * Filter allowed type of member (circles#865)
  * Lighten select for single circle (circles#867)
  * Bypass moderator check on CFG_FRIEND (circles#873)
  * Better display of federated user (circles#876)
  * Strtolower on mail address (circles#882)
  * Only returns population on direct request from the front-end or occ command
    (circles#885)
  * Enforce password on new share (circles#887)
  * Ignore exception to group sync (circles#894)
  * Exception on null token (circles#896)
  * L10n: Improved grammar (circles#898)
  * Create block-merge-freeze.yml (circles#907)
  * Fix loosing memberships in low depth (circles#914)
  * Remove shares during circles destruction, clean orphan shares on cron
    (circles#918)
  * Paginate Circles through OCS query parameters (circles#919)
  * GetSingleId(): string; (circles#922)
  * Bump actions (files_pdfviewer#530)
  * Bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (files_pdfviewer#534)
  * Bump @nextcloud/webpack-vue-config from 4.1.0 to 4.1.4 (files_pdfviewer#
    535)
  * Create block-merge-freeze.yml (files_pdfviewer#544)
  * Updating lint-php.yml workflow from template (files_pdfviewer#549)
  * Create block-merge-freeze.yml (files_rightclick#131)
  * Create block-merge-freeze.yml (files_videoplayer#256)
  * Fix overlapping buttons (firstrunwizard#652)
  * Create block-merge-freeze.yml (firstrunwizard#661)
  * Create block-merge-freeze.yml (logreader#636)
  * Create block-merge-freeze.yml (nextcloud_announcements#92)
  * Create block-merge-freeze.yml (notifications#1137)
  * Create block-merge-freeze.yml (password_policy#315)
  * Bump autoprefixer from 10.3.6 to 10.3.7 (photos#1009)
  * Bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (photos#1010)
  * Bump postcss-loader from 6.2.0 to 6.2.1 (photos#1011)
  * Bump @nextcloud/event-bus from 2.1.0 to 2.1.1 (photos#1012)
  * Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (photos#1013)
  * Fix default previews (photos#951)
  * Fix Tags: Don't display tags without photos (photos#960)
  * Update workflows (photos#981)
  * Bump @nextcloud/webpack-vue-config from 4.1.0 to 4.1.4 (photos#985)
  * Bump url-parse from 1.5.3 to 1.5.4 (photos#986)
  * Bump vue-router from 3.5.2 to 3.5.3 (photos#987)
  * Bump qs from 6.10.1 to 6.10.3 (photos#988)
  * Bump camelcase from 6.2.0 to 6.2.1 (photos#989)
  * Create block-merge-freeze.yml (photos#998)
  * Fix label of account name and hide parts with subscription (privacy#676)
  * Create block-merge-freeze.yml (privacy#684)
  * Update workflows (privacy#690)
  * Create block-merge-freeze.yml (recommendations#470)
  * Update test.yml (recommendations#473)
  * Create block-merge-freeze.yml (serverinfo#352)
  * Create block-merge-freeze.yml (survey_client#123)
  * Update mark input/paste rules to tiptap v2 regular expressions (text#1976)
  * Don't show "Link file" button when using direct edition (text#1979)
  * Make sure translations are detected (text#1984)
  * Fix only the first item gets tasklist-ified issue (text#2005)
  * Fix: use stable23 branch for cypress tests (text#2023)
  * Fix autofocus on empty documents without a node (Fixes: #1974) (text#2035)
  * Add stylelint to github actions (text#2041)
  * Fix: cypress login with new session feature (text#2046)
  * Bump @nextcloud/event-bus from 2.1.0 to 2.1.1 (text#2078)
  * Bump @nextcloud/initial-state from 1.2.0 to 1.2.1 (text#2081)
  * Bump @nextcloud/webpack-vue-config from 4.1.0 to 4.1.4 (text#2084)
  * Bump @cypress/browserify-preprocessor from 3.0.1 to 3.0.2 (text#2085)
  * Bump prosemirror-markdown from 1.6.0 to 1.6.2 (text#2086)
  * Bump @nextcloud/eslint-config from 6.1.0 to 6.1.2 (text#2088)
  * Bump prosemirror-view from 1.23.5 to 1.23.6 (text#2100)
  * Fix closing the editor modal in public folder view (text#2105)
  * Fix: 2020 let heading menu overflow workspace (text#2109)
  * Create block-merge-freeze.yml (text#2115)
  * Disable fade-out because of accessbility reasons (viewer#1066)
  * Fix german (Sie) translations comming from nextcloud-vue (viewer#1089)
  * Add cypress summary for easier branch protection mgmt (viewer#1094)
  * Add engines support for cypress tests (viewer#1099)
  * Always check for `OCA.Files` before using it (Fixes: #1106) (viewer#1108)
  * Disable swiping on viewer video controls (viewer#1114)
  * Disable swiping on viewer audio controls (viewer#1122)
  * Create block-merge-freeze.yml (viewer#1133)
  * Update lint-php.yml (viewer#1138)

(ryoon)

security/passphrase: don't use RELRO for now.

(nikita)

doc: Updated graphics/py-Pillow to 9.0.1

(wiz)

py-Pillow: update to 9.0.1.

9.0.1 (2022-02-03)
------------------

- In show_file, use os.remove to remove temporary images. CVE-2022-24303 #6010
- Restrict builtins within lambdas for ImageMath.eval. CVE-2022-22817 #6009

9.0.0 (2022-01-02)
------------------

- Restrict builtins for ImageMath.eval(). CVE-2022-22817 #5923
- Ensure JpegImagePlugin stops at the end of a truncated file #5921
- Fixed ImagePath.Path array handling. CVE-2022-22815, CVE-2022-22816 #5920
- Remove consecutive duplicate tiles that only differ by their offset #5919
- Improved I;16 operations on big endian #5901
- Limit quantized palette to number of colors #5879
- Fixed palette index for zeroed color in FASTOCTREE quantize #5869
- When saving RGBA to GIF, make use of first transparent palette entry #5859
- Pass SAMPLEFORMAT to libtiff #5848
- Added rounding when converting P and PA #5824
- Improved putdata() documentation and data handling #5910
- Exclude carriage return in PDF regex to help prevent ReDoS #5912
- Fixed freeing pointer in ImageDraw.Outline.transform #5909
- Added ImageShow support for xdg-open #5897
- Support 16-bit grayscale ImageQt conversion #5856
- Convert subsequent GIF frames to RGB or RGBA #5857
- Do not prematurely return in ImageFile when saving to stdout #5665
- Added support for top right and bottom right TGA orientations #5829
- Corrected ICNS file length in header #5845
- Block tile TIFF tags when saving #5839
- Added line width argument to polygon #5694
- Do not redeclare class each time when converting to NumPy #5844
- Only prevent repeated polygon pixels when drawing with transparency #5835
- Add support for pickling TrueType fonts #5826
- Only prefer command line tools SDK on macOS over default MacOSX SDK #5828
- Drop support for soon-EOL Python 3.6 #5768
- Fix compilation on 64-bit Termux #5793
- Use title for display in ImageShow #5788
- Remove support for FreeType 2.7 and older #5777
- Fix for PyQt6 #5775
- Removed deprecated PILLOW_VERSION, Image.show command parameter, Image._showxv and ImageFile.raise_ioerror #5776

(wiz)

net/unison2.51: Adjust comment about versions

The next version will be 2.52.0, and this will interoperate with 2.51.
That is expected to continue indefinitely.  There is no reason to have
multiple versions again, so say that the next update will move to the
unversioned name.

(gdt)

net/unison2.51: Align with unison-snapshot ocaml.mk usage

This should resolve MKPIE issues on i386, but is otherwise not a
functional change.

(gdt)

doc: Updated devel/fossil to 2.18

(js)

Update devel/fossil to 2.18

Changes for version 2.18 (2022-02-23)

  *  Added support for [./ssl-server.md|SSL/TLS server mode] for commands
    like "[/help?cmd=server|fossil server]" and "[/help?cmd=http|fossil http]"
  *  The new [/help?cmd=cherry-pick|cherry-pick command] is an alias for
    [/help?cmd=merge|merge --cherrypick].
  *  Add new setting "[/help?cmd=large-file-size|large-file-size]".  If the size
    of any file in a commit exceeds this size, a warning is issued.
  *  Query parameter "year=YYYY" is now accepted by [/help?cmd=/timeline|/timeline].
  *  The [/help?cmd=tar|tar] and [/help?cmd=zip|zip commands] no longer
    sterilize the manifest file.
  *  Futher improvement to diff alignment in cases that involve both
    edits and indentation changes.
  *  [/doc/trunk/www/chat.md|Chat] improvements:<ul>
    <li>  [/help?cmd=/chat|The /chat page] input options have been reworked
          again for better cross-browser portability.
    <li>  When sending a [/help?cmd=/chat|/chat] message fails, it is no longer
          immediately lost and sending may optionally be retried.
    <li>  [/help?cmd=/chat|/chat] can now optionally embed attachments of certain
          types directly into message bodies via an iframe.
    <li>  Add the "--as FILENAME" option to the "[/help?cmd=chat|fossil chat send]"
          command.
    <li>  Added the "[/help?cmd=chat|fossil chat pull]" command, available to
          administrators only, for backing up the chat conversation.
    </ul>
  *  Promote the test-detach command into the [/help?cmd=detach|detach command].
  *  For "[/help?cmd=pull|fossil pull]" with the --from-parent-project option,
    if no URL is specified then use the last URL from the most recent prior
    "fossil pull --from-parent-project".
  *  Add options --project-name and --project-desc to the
    "[/help?cmd=init|fossil init]" command.
  *  The [/help?cmd=/ext|/ext page] generates the SERVER_SOFTWARE environment
    variable for clients.
  *  Fix the REQUEST_URI [/doc/trunk/www/aboutcgi.wiki#cgivar|CGI variable] such
    that it includes the query string.  This is how most other systems understand
    REQUEST_URI.
  *  Added the --transport-command option to [/help?cmd=sync|fossil sync]
    and similar.

(js)

doc: Updated security/cyrus-sasl to 2.1.28

(wiz)

cyrus-sasl: update to 2.1.28

New in 2.1.28

    build:
        configure - Restore LIBS after checking gss_inquire_sec_context_by_oid
        makemd5.c - Fix potential out of bound writes
        fix build with 窶電isable-shared 窶兎nable-static
        Dozens of fixes for Windows specific builds
        Fix cross platform builds with SPNEGO
        Do not try to build broken java subtree
        Fix build error with 窶兎nable-auth-sasldb
    common:
        plugin_common.c:
            Ensure size is always checked if called repeatedly (#617)
    documentation:
        Fixed generation of saslauthd(8) man page
        Fixed installation of saslauthd(8) and testsaslauthd(8) man pages (#373)
        Updates for additional SCRAM mechanisms
        Fix sasl_decode64 and sasl_encode64 man pages
        Tons of fixes for Sphinx
    include:
        sasl.h:
            Allow up to 16 bits for security flags
    lib:
        checkpw.c:
            Skip one call to strcat
            Disable auxprop-hashed (#374)
        client.c:
            Use proper length for fully qualified domain names
        common.c:
            CVE-2019-19906 Fix off by one error (#587)
        external.c:
            fix EXTERNAL with non-terminated input (#689)
        saslutil.c:
            fix index_64 to be a signed char (#619)
    plugins:
        gssapi.c:
            Emit debug log only in case of errors
        ntlm.c:
            Fail compile if MD4 is not available (#632)
        sql.c:
            Finish reading residual return data (#639)
            CVE-2022-24407 Escape password for SQL insert/update commands.
    sasldb:
        db_gdbm.c:
            fix gdbm_errno overlay from gdbm_close
    DIGEST-MD5 plugin:
        Prevent double free of RC4 context
        Use OpenSSL RC4 implementation if available
    SCRAM plugin:
        Return BADAUTH on incorrect password (#545)
        Add -224, -384, -512 (#552)
        Remove SCRAM_HASH_SIZE
        Add function to return SCRAM auth method name
        Allocate enough memory in scam_setpass()
        Add function to sort SCRAM methods by hash strength
        Update windows build for newer SCRAM options
    saslauthd:
        auth_httpform.c:
            Avoid signed overflow with non-ascii characters (#576)
        auth_krb5.c:
            support setting an explicit auth_krb5 server name
            support setting an explicit servername with Heimdal
            unify the MIT and Heimdal auth_krb5 implementations
            Remove call to krbtf
        auth_rimap.c:
            provide native memmem implementation if missing
        lak.c:
            Allow LDAP_OPT_X_TLS_REQUIRE_CERT to be 0 (no certificate verification)
        lak.h:
            Increase supported DN length to 4096 (#626)

(wiz)

weechat: Use correct RUBY_LIBRARIES variable.

Fixes build on Darwin/arm64 where RUBY_LDFLAGS contains '-arch arm64' which
was being mangled to '-arch -larm64'.

(jperkin)

py-clickclick: bump PKGREVISION for PLIST change

(wiz)

py-clickclick: remove entry_points.txt

It was empty, and it seems a newer setuptools (?) recognizes this
and doesn't install it any longer.

(wiz)

lang/ghc90: Use ${_PKGSRC_MKPIE} instead of ${_OPSYS_SUPPORTS_MKPIE}

It's the variable that indicates if MKPIE is requested and feasible on the
platform. In fact I originally wrote a condition mentioning
${_PKGSRC_MKPIE}, but it somehow got lost while I was refactoring the code.

(pho)

lang/ghc92: Use ${_PKGSRC_MKPIE} instead of ${_OPSYS_SUPPORTS_MKPIE}

It's the variable that indicates if MKPIE is requested and feasible on the
platform. In fact I originally wrote a condition mentioning
${_PKGSRC_MKPIE}, but it somehow got lost while I was refactoring the code.

(pho)

expat: regen distinfo for current checksum algorithms

(gutteridge)

lang/Makefile: + spago

(pho)

doc: Added lang/spago version 0.20.7

(pho)

lang/spago: import spago-0.20.7

PureScript package manager and build tool powered by Dhall and
package-sets.

(pho)

devel/Makefile: + hs-with-utf8

(pho)

doc: Added devel/hs-with-utf8 version 1.0.2.3

(pho)

devel/hs-with-utf8: import hs-with-utf8-1.0.2.3

This minimalistic library helps you navigate the world of text encodings
avoiding invalid argument (invalid byte sequence) and invalid argument
(invalid character) in runtime.

(pho)

devel/Makefile: + hs-th-env

(pho)

doc: Added devel/hs-th-env version 0.1.0.3

(pho)

devel/hs-th-env: import hs-th-env-0.1.0.3

TH splice that expands to an environment variable value. Can be used to
embed build-time parameters in your application.

(pho)