npm: updated to 6.14.10

6.14.10
DEPENDENCIES
fixes: addressing GHSL-2020-145

(adam)

hunspell: needs autopoint to build now

(wiz)

zstd: still not make-jobs safe

Add link to upstream bug report

(wiz)

doc: Updated multimedia/assimp to 5.0.1nb1

(gutteridge)

assimp: fix Darwin and FreeBSD builds

Make this package build a dependent library consistently on all pkgsrc
platforms, so we don't get PLIST mismatches.

(gutteridge)

unison-snapshot: Update to 2.51.4_rc1 via git hash

Upstream changes not published but a reliable source says it's
basically bugfixes and minor improvements.

This is believed to interoperate with 2.51.3.

(gdt)

xscreensaver: fix packaging when option opengl is disabled

There was a lingering reference to sphereeversion in a place that was
causing sphereeversion.xml to be installed even when that screensaver
wasn't built.

(gutteridge)

pulseaudio: remove ~ pattern from skip files now that it's default

(wiz)

libcups: remove ~ skip pattern now that it's default

(wiz)

regress/infra-unittests: use single quotes for string literals

(rillig)

check-portability: always skip files whose name ends with tilde

Suggested by wiz.

(rillig)

regress: add test for portability check in configure~ files

(rillig)

py-aiohttp: remove upper bound in dependency

(wiz)

doc: Updated graphics/tiff to 4.2.0

(wiz)

tiff: update to 4.2.0.

MAJOR CHANGES:

    Optional support for using libdeflate is added.
    Many of the tools now support a memory usage limit.

CHANGES IN LIBTIFF:

    A great many issues discovered by fuzzers (via oss-fuzz and other reports) have been addressed.
    EXIF 2.32 and GPS tags and functionality have been upgraded:
        Existing EXIF field definition of tags are upgraded to EXIF version 2.3.2
        EXIF-GPS structure, tags and access functions are added as special CustomDirectory (like it was done for EXIF).
        Reading error for FileSource and SceneType tags corrected.
    Make TIFFTAG_CFAPATTERN variable count.
    Cmake configuration fixes for big-endian targets.

    Added support for optional building against libdeflate for faster Zip/Deflate compression/decompression.

    We now have 2 kinds of builds with the Zip/Deflate codec:
        zlib only
        zlib + libdeflate

    Speed improvements in the 35%-50% range can be expected when libdeflate is used. Compression level up to 12 is now supported (capped to 9 when zlib is used). Still requires zlib for situations where libdeflate cannot be used (that is for scanline access, since libdeflate has no streaming mode)

    Pseudo-tag TIFFTAG_DEFLATE_SUBCODEC=DEFLATE_SUBCODEC_ZLIB/DEFLATE_SUBCODEC_LIBDEFLATE is added to control which subcodec (zlib or libdeflate) should be used (it defaults of course to libdeflate, when it is available). This is mostly aimed at being used on the writing side, to be able to reproduce output of previous libtiff versions at a binary level, in situations where this would be really needed. Or as a safety belt in case there would be unforeseen issues with using libdeflate. It can be used to know when libdeflate is available at runtime (DEFLATE_SUBCODEC_LIBDEFLATE will be the default value in that situation).

    Of course, deflate codestreams produced by libdeflate can be read by zlib, and vice-versa.

CHANGES IN THE TOOLS:

    A great many issues discovered by fuzzers (via oss-fuzz and other reports) have been addressed.
    ppm2tiff: support any bps value from 1 to 16.
    tiff2ps, tiff2rgba: A default memory limit is now enforced (256MiB) and a '-M' option is added to allow the user to adjust the limit.
    tiff2pdf, tiffcp: A default memory limit is now enforced (256MiB) and a '-m' option is added to allow the user to adjust the limit.
    tiffcrop: A default memory limit is now enforced (256MiB) and a '-k' option is added to allow the user to adjust the limit.
    tiff2pdf: fix "raw" copy of Deflate streams.
    tiff2pdf.c: properly calculate datasize when saving to JPEG YCbCr
    tiffcp: disable strip chopping when trying to convert to JBIG compression

(wiz)

doc: Updated print/poppler to 21.01.0

(wiz)

poppler*: update to 21.01.0

Release 21.01.0:
        core:
        * Faster routines for jpeg decoding
        * Fix reading signatures in encrypted files
        * Add white point correction when lcms is used
        * JBIG2Stream: Fix byte counting
        * Fix potential data loss if we try to fetch a non existing Ref after modifying the document
        * Specifically use DeviceGray instead of DefaultGray for softmasks
        * Fix various issues handling broken files

        utils:
        * pdftocairo: Setmode binary for windows
        * pdfsig: Add hability to digitally sign files
        * pdftoppm: add options to set DeviceGray/DeviceRGB/DeviceCMYK
        * pdftops: add options to set DeviceGray/DeviceRGB/DeviceCMYK
        * pdfimages: Account for rotation in PPI calculation

        qt5:
        * Add hability to digitally sign files

        qt6:
        * Add hability to digitally sign files

        build system:
        * Enable clang-tidy bugprone-signed-char-misuse

Release 20.12.1:
        core:
        * PSOutputDev: fixing regression in the rasterization code. Issue #1002
        * Add missing profile copy operation in GfxICCBasedColorSpace::copy()
        * Fix issue in broken files

        build system:
        * Use modern CMake linking for Qt and boost

Release 20.12.0:
        core:
        * Draw better circles for circle annotations
        * Fix annotation line width if no appearance stream or style are given
        * Tweak rendering of highlight annotations
        * Fix border rendering of some annotations
        * Fix rendering of some files. Issue #976 Issue #567
        * PSOutputDev: provide options to set the rasterization color space and ICC profile
        * PSOutputDev: for splashModeCMYK8 and language level >=2 activate overprint emulation
        * PSOutputDev: use the DeviceN8 bitmap for rasterization with CMYK-output + overprint
        * Use the font name without subset tag when querying for a system font
        * Splash: Fix wrong x adjustment during clipping
        * Splash: Fix blitImage in uncolored tiling patterns
        * timeToDateString: We forgot the ' after the minutes
        * Move psLevel to PSOutputDev creation
        * Fix several issues in broken files

        utils:
        * pdftops: provide options to set the rasterization color space and ICC profile
        * pdftops: for splashModeCMYK8 and language level >=2 activate overprint emulation

        cpp:
        * New fuzzers

        glib:
        * New fuzzers

        qt5:
        * New fuzzers

        build system:
        * gcc: Enable -fno-operator-names
        * Remove obsolete bool-to-binary macro
        * Remove obsolete version-check macro for pkgconfig
        * Remove .pc files for private back-ends
        * Remove redundant unit-test macro

(wiz)

Pullup tickets up to #6392

(bsiegert)

Pullup ticket #6392 - requested by taca
mail/dovecot2-pigeonhole: dependent update

Revisions pulled up:
- mail/dovecot2-pigeonhole/Makefile                            1.60
- mail/dovecot2-pigeonhole/distinfo                            1.45

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Mon Jan  4 14:58:26 UTC 2021

  Modified Files:
  pkgsrc/mail/dovecot2-pigeonhole: Makefile distinfo

  Log Message:
  mail/dovecot2-pigeonhole: update to 0.5.13

  Update dovecot2-pigeonhole package to 0.5.13.

  v0.5.13 2021-01-04  Aki Tuomi <aki.tuomi@open-xchange.com>

  - duplicate: The test was handled badly in a multiscript (sieve_before,
    sieve_after) scenario in which an earlier script in the sequence with
    a duplicate test succeeded, while a later script caused a runtime
    failure. In that case, the message is recorded for duplicate tracking,
    while the message may not actually have been delivered in the end.
  - editheader: Sieve interpreter entered infinite loop at startup when
    the "editheader" configuration listed an invalid header name. This
    problem can only be triggered by the administrator.
  - relational: The Sieve relational extension can cause a segfault at
    compile time. This is triggered by invalid script syntax. The segfault
    happens when this match type is the last argument of the test command.
    This situation is not possible in a valid script; positional arguments
    are normally present after that, which would prevent the segfault.
  - sieve: For some Sieve commands the provided mailbox name is not
    properly checked for UTF-8 validity, which can cause assert crashes at
    runtime when an invalid mailbox name is encountered. This can be
    caused by the user by writing a bad Sieve script involving the
    affected commands ("mailboxexists", "specialuse_exists").
    This can be triggered by the remote sender only when the user has
    written a Sieve script that passes message content to one of the
    affected commands.
  - sieve: Large sequences of 8-bit octets passed to certain Sieve
    commands that create or modify message headers that allow UTF-8 text
    (vacation, notify and addheader) can cause the delivery or IMAP
    process (when IMAPSieve is used) to enter a memory-consuming
    semi-infinite loop that ends when the process exceeds its memory
    limits. Logged in users can cause these hangs only for their own
    processes.

(bsiegert)

Pullup ticket #6391 - requested by taca
mail/dovecot2: security fix

Revisions pulled up:
- mail/dovecot2-gssapi/Makefile                                1.7
- mail/dovecot2-sqlite/Makefile                                1.25
- mail/dovecot2/Makefile                                        1.106
- mail/dovecot2/Makefile.common                                1.42
- mail/dovecot2/PLIST                                          1.71
- mail/dovecot2/buildlink3.mk                                  1.36
- mail/dovecot2/distinfo                                        1.107
- mail/dovecot2/patches/patch-src_auth_mech-gssapi.c            deleted

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Mon Jan  4 14:57:19 UTC 2021

  Modified Files:
  pkgsrc/mail/dovecot2: Makefile Makefile.common PLIST buildlink3.mk
      distinfo
  pkgsrc/mail/dovecot2-gssapi: Makefile
  pkgsrc/mail/dovecot2-sqlite: Makefile
  Removed Files:
  pkgsrc/mail/dovecot2/patches: patch-src_auth_mech-gssapi.c

  Log Message:
  mail/dovecot2: update to 2.3.13

  Update mail/dovecot2 pacakge to 2.3.13, including security fixes.

  v2.3.13 2021-01-04 Aki Tuomi <aki.tuomi@open-xchange.com>

  * CVE-2020-24386: Specially crafted command can cause IMAP hibernate to
    allow logged in user to access other people's emails and filesystem
    information.
  * Metric filter and global event filter variable syntax changed to a
    SQL-like format. See https://doc.dovecot.org/configuration_manual/event_filter/
  * auth: Added new aliases for %{variables}. Usage of the old ones is
    possible, but discouraged.
  * auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth
    mechanism and related password schemes.
  * auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail.
  * auth: Removed postfix postmap socket
  + auth: Added new fields for auth server events. These fields are now
    also available for all auth events. See
    https://doc.dovecot.org/admin_manual/list_of_events/#authentication-server
    for details.
  + imap-hibernate: Added imap_client_hibernated, imap_client_unhibernated
    and imap_client_unhibernate_retried events. See
    https://doc.dovecot.org/admin_manual/list_of_events/ for details.
  + lib-index: Added new mail_index_recreated event. See
    https://doc.dovecot.org/admin_manual/list_of_events/#mail-index-recreated
  + lib-sql: Support TLS options for cassandra driver. This requires
    cpp-driver v2.15 (or later) to work reliably.
  + lib-storage: Missing $HasAttachment / $HasNoAttachment flags are now
    added to existing mails if mail_attachment_detection_option=add-flags
    and it can be done inexpensively.
  + login proxy: Added login_proxy_max_reconnects setting (default 3) to
    control how many reconnections are attempted.
  + login proxy: imap/pop3/submission/managesieve proxying now supports
    reconnection retrying on more than just connect() failure. Any error
    except a non-temporary authentication failure will result in reconnect
    attempts.
  - auth: Lua passdb/userdb leaks stack elements per call, eventually
    causing the stack to become too deep and crashing the auth or
    auth-worker process.
  - auth: SASL authentication PLAIN mechanism could be used to trigger
    read buffer overflow. However, this doesn't seem to be exploitable in
    any way.
  - auth: v2.3.11 regression: GSSAPI authentication fails because dovecot
    disallows NUL bytes for it.
  - dict: Process used too much CPU when iterating keys, because each key
    used a separate write() syscall.
  - doveadm-server: Crash could occur if logging was done outside command
    handling. For example http-client could have done debug logging
    afterwards, resulting in either segfault or
    Panic: file http-client.c: line 642 (http_client_context_close):
    assertion failed: (cctx->clients_list == NULL).
  - doveadm-server: v2.3.11 regression: Trying to connect to doveadm server
    process via starttls assert-crashed if there were no ssl=yes listeners:
    Panic: file master-service-ssl.c: line 22 (master_service_ssl_init):
    assertion failed: (service->ssl_ctx_initialized).
  - fts-solr: HTTP requests may have assert-crashed:
    Panic: file http-client-request.c: line 1232 (http_client_request_send_more):
    assertion failed: (req->payload_input != NULL)
  - imap: IMAP NOTIFY could crash with a segmentation fault due to a bad
    configuration that causes errors. Sending the error responses to the
    client can cause the segmentation fault. This can for example happen
    when several namespaces use the same mail storage location.
  - imap: IMAP NOTIFY used on a shared namespace that doesn't actually
    exist (e.g. public namespace for a nonexistent user) can crash with a panic:
    Panic: Leaked view for index /tmp/home/asdf/mdbox/dovecot.list.index: Opened in (null):0
  - imap: IMAP session can crash with QRESYNC extension if many changes
    are done before asking for expunged mails since last sync.
  - imap: Process might hang indefinitely if client disconnects after
    sending some long-running commands pipelined, for example FETCH+LOGOUT.
  - lib-compress: Mitigate crashes when configuring a not compiled in
    compression. Errors with compression configuration now distinguish
    between not supported and unknown.
  - lib-compression: Using xz/lzma compression in v2.3.11 could have
    written truncated output in some situations. This would result in
    "Broken pipe" read errors when trying to read it back.
  - lib-compression: zstd compression could have crashed in some situations:
    Panic: file ostream.c: line 287 (o_stream_sendv_int): assertion failed: (!stream->blocking)
  - lib-dict: dict client could have crashed in some rare situations when
    iterating keys.
  - lib-http: Fix several assert-crashes in HTTP client.
  - lib-index: v2.3.11 regression: When mails were expunged at the same
    time as lots of new content was being saved to the cache (e.g. cache
    file was lost and is being re-filled) a deadlock could occur with
    dovecot.index.cache / dovecot.index.log.
  - lib-index: v2.3.11 regression: dovecot.index.cache file was being
    purged (rewritten) too often when it had a field that hadn't been
    accessed for over 1 month, but less than 2 months. Every cache file
    change caused a purging in this situation.
  - lib-mail: MIME parts were not returned correctly by Dovecot MIME parser.
    Regression caused by fixing CVE-2020-12100.
  - lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE
    was written in a way that may have caused confusion for both IMAP
    clients and Dovecot itself when parsing it. The truncated part is now
    written out using application/octet-stream MIME type.
  - lib-mail: v2.3.11 regression: Mail delivery / parsing crashed when the
    10000th MIME part was message/rfc822 (or if parent was multipart/digest):
    Panic: file message-parser.c: line 167 (message_part_append):
    assertion failed: (ctx->total_parts_count <= ctx->max_total_mime_parts).
  - lib-oauth2: Dovecot incorrectly required oauth2 server introspection
    reply to contain username with invalid token.
  - lib-ssl-iostream, lib-dcrypt: Fix building with OpenSSL that has
    deprecated APIs disabled.
  - lib-storage: When mail's size is different from the cached one (in
    dovecot.index.cache or Maildir S=size in the filename), this is
    handled by logging "Cached message size smaller/larger than expected"
    error. However, in some situations this also ended up crashing with:
    Panic: file istream.c: line 315 (i_stream_read_memarea):
    assertion failed: (old_size <= _stream->pos - _stream->skip).
  - lib-storage: v2.3 regression: Copying/moving mails was taking much more
    memory than before. This was mainly visible when copying/moving
    thousands of mails in a single transaction.
  - lib-storage: v2.3.11 regression: Searching messages assert-crashed
    (without FTS): Panic: file message-parser.c: line 174 (message_part_finish):
    assertion failed: (ctx->nested_parts_count > 0).
  - lib: Dovecot v2.3 moved signal handlers around in ioloops,
    causing more CPU usage than in v2.2.
  - lib: Fixed JSON parsing: '\' escape sequence may have wrongly resulted
    in error if it happened to be at read boundary. Any NUL characters and
    '\u0000' will now result in parsing error instead of silently
    truncating the data.
  - lmtp, submission: Server may hang if SSL client connection disconnects
    during the delivery. If this happened repeated, it could have ended
    up reaching process_limit and preventing any further lmtp/submission
    deliveries.
  - lmtp: Proxy does not always properly log TLS connection problems as
    errors; in some cases, only a debug message is logged if enabled.
  - lmtp: The LMTP service can hang when commands are pipelined. This can
    particularly occur when one command in the middle of the pipeline fails.
    One example of this occurs for proxied LMTP transactions in which the
    final DATA or BDAT command is pipelined after a failing RCPT command.
  - login-proxy: The login_source_ips setting has no effect, and therefore
    the proxy source IPs are not cycled through as they should be.
  - master: Process was using 100% CPU in some situations when a broken
    service was being throttled.
  - pop3-login: POP3 login would fail with "Input buffer full" if the
    initial response for SASL was too long.
  - stats: Crash would occur when generating openmetrics data for metrics
    using aggregating functions.

(bsiegert)

Pullup ticket #6390 - requested by wiz
security/p11-kit: security fix

Revisions pulled up:
- security/p11-kit/Makefile                                    1.18
- security/p11-kit/distinfo                                    1.13

---
  Module Name: pkgsrc
  Committed By: wiz
  Date: Mon Jan  4 11:43:48 UTC 2021

  Modified Files:
  pkgsrc/security/p11-kit: Makefile distinfo

  Log Message:
  p11-kit: update to 0.23.22.

  0.23.22 (stable)
    * Fix memory-safety issues that affect the RPC protocol
      (CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363), discovered
      and fixed by David Cook
    * anchor: Prefer persistent format when storing anchor [PR#329]
    * common: Fix infloop in p11_path_build [PR#326, PR#327]
    * proxy: C_CloseAllSessions: Make sure that calloc args are non-zero [PR#325]
    * common: Check for a NULL locale before freeing it [PR#321]
    * Build and test fixes [PR#313, PR#315, PR#317, PR#318, PR#319, PR#323, PR#330, PR#333, PR#334, PR#335, PR#338, PR#339]

(bsiegert)

Pullup ticket #6389 - requested by wiz
security/tor-browser-noscript: dependent update

Revisions pulled up:
- security/tor-browser-noscript/Makefile                        1.9
- security/tor-browser-noscript/distinfo                        1.9

---
  Module Name: pkgsrc
  Committed By: wiz
  Date: Sun Jan  3 19:02:52 UTC 2021

  Modified Files:
  pkgsrc/security/tor-browser-noscript: Makefile distinfo

  Log Message:
  tor-browser-noscript: update to 11.1.7.

  v 11.1.7
  ============================================================
  x Optimize serviceWorker tracking for heavy tabs usage
    (thanks vadimm and barbaz for investigation)
  x Force placeholder visibility on Youtube embeddings
  x Fixed popup opening being slowed down if options UI is
    opened (thanks Sirus for report)
  x Explicit failure for wrong settings importation formats
  x Updated TLDs

  v 11.1.7rc3
  ============================================================
  x Updated TLDs
  x Optimize serviceWorker tracking for heavy tabs usage
    (thanks vadimm and barbaz for investigation)
  x Force placeholder visibility on Youtube embeddings

  v 11.1.7rc2
  ============================================================
  x Fixed popup opening being slowed down if options UI is
    opened (thanks Sirus for report)

  v 11.1.7rc1
  ============================================================
  x Explicit failure for wrong settings importation formats

  v 11.1.6
  ============================================================
  x Better handling of concurrent prompts issues (thanks
    billarbor for reporting)
  x Remove z-index boosting from ancestors when placeholder is
    collapsed or replaced (issue #162)
  x Fixed permission keyboard shortcuts being triggered with
    modifiers like CTRL (thanks barbaz for report)
  x More accurate blockage reporting, with better filtering of
    page's own CSP effects
  x [UI] Fixed bug in CUSTOM sites filtering (thanks barbaz
    for reporting)
  x Fixed bug in automatic HTML events build-time updates
  x Updated HTML events
  x Updated TLDs
  x [L10n] Updated sv_SE
  x Better handling 0 width / 0 height media placeholders

  v 11.1.6rc6
  ============================================================
  x Better handling of concurrent prompts issues (thanks
    billarbor for reporting)

  v 11.1.6rc5
  ============================================================
  x Remove z-index boosting from ancestors when placeholder is
    collapsed or replaced (issue #162)

  v 11.1.6rc4
  ============================================================
  x Fixed permission keyboard shortcuts being triggered with
    modifiers like CTRL (thanks barbaz for report)

  v 11.1.6rc3
  ============================================================
  x More accurate blockage reporting, with better filtering of
    page's own CSP effects

  v 11.1.6rc2
  ============================================================
  x [UI] Fixed bug in CUSTOM sites filtering (thanks barbaz
    for reporting)
  x Fixed bug in automatic HTML events build-time updates
  x Updated HTML events
  x Updated TLDs

  v 11.1.6rc1
  ============================================================
  x Updated TLDs
  x [L10n] Updated sv_SE
  x Better handling 0 width / 0 height media placeholders

(bsiegert)

Pullup ticket #6388 - requested by wiz
security/tor-browser: security fix

Revisions pulled up:
- security/tor-browser/Makefile                                1.83
- security/tor-browser/distinfo                                1.34
- security/tor-browser/patches/patch-dom_webgpu_ipc_WebGPUParent.cpp 1.1

---
  Module Name: pkgsrc
  Committed By: wiz
  Date: Sun Jan  3 19:00:38 UTC 2021

  Modified Files:
  pkgsrc/security/tor-browser: Makefile distinfo
  Added Files:
  pkgsrc/security/tor-browser/patches:
      patch-dom_webgpu_ipc_WebGPUParent.cpp

  Log Message:
  tor-browser: update to 10.0.7.

  This release updates Firefox for desktops to 78.6.0esr and Firefox
  for Android to 84.1.0. This release includes important security
  updates to Firefox for Desktop, and similar important security
  updates to Firefox for Android.

  The full changelog since Desktop and Android Tor Browser 10.0.6 is:

      All Platforms
          Update HTTPS Everywhere to 2020.11.17
          Bug 40166: Disable security.certerrors.mitm.auto_enable_enterprise_roots
          Bug 40176: Update openssl to 1.1.1i
      Windows + OS X + Linux
          Update Firefox to 78.6.0esr
      Android
          Update Firefox to 84.1.0
          Update NoScript to 11.1.6
      Linux
          Bug 40226: Crash on Fedora Workstation Rawhide GNOME
      Build System
          All Platforms
              Bug 40139: Pick up rbm commit for bug 40008
              Bug 40161: Update Go compiler to 1.14.13
          Android
              Bug 40128: Allow updating Fenix allowed_addons.json
              Bug 40140: Create own Gradle project
              Bug 40155: Update toolchain for Fenix 84
              Bug 40156: Update Fenix and dependencies to 84.0.0-beta2
              Bug 40163: Avoid checking hash of .pom files
              Bug 40171: Include all uniffi-rs artifacts into application-services
              Bug 40184: Update Fenix and deps to 84.1.0

  10.0.6

  All Platforms

      Bug 40175: Update obfs4proxy's TLS certificate public key pinning

(bsiegert)

doc: Updated games/doomlegacy to 1.48.8

(micha)

games/doomlegacy: Update to 1.48.8

Doom Legacy Changelog

1.48.8 SVN1568 (2020-12-19)

FEATURES 1.48.8

  * Sky generation has gotten a Vanilla setting. Sky drawing (software
    draw) now puts a solid texture above and below the sky, and no
    longer tiles the sky. The OpenGL sky draw has separate sky draw
    behavior.
  * The mouse2 serial support has been expanded to handle PC mice,
    MouseSystems mice, and PS/2 mice, for SDL and Win32 ports. The PC
    and MS mice have been tested. If anyone has found a way to route a
    PS/2 mouse, possibly on USB, to a serial port input, please let us
    know.

BUG FIXES 1.48.8

  * A savegame buffer overflow was fixed. An overflow prevention test
    had been misplaced. such that it could be avoided in some
    conditions. Fixes BUG 0667.
  * Cleaned out some of the accumulated cruft in sky drawing. Fixed sky
    tiling, and then made changes to prevent sky tiling.
  * Changed the software mode sky drawing to TM_picture format. This
    eliminates the line artifacts that were drawn above and below the
    sky, and restores the vertical alignment.
  * Limited the software sky drawing to the texture, so to not tile the
    sky draw. Created a skytop_flat for above the sky, and a ground_flat
    for below the sky. These are drawn when the viewed sky exceeds the
    bounds of the sky texture. For now, these flats are created as solid
    textures. Hardware draw has a separate sky draw behavior.
  * In the case of 200 or 240 sized sky textures (Heretic and Legacy
    substitutes), fixed the texture sky height so that the correct size
    TM_picture is created. Fixes BUG 0668.
  * Changed the freedoom wad names, avoiding doom wad names as that was
    conflicting with doom2 gamemode. Freedoom: "freedoom2.wad",
    "freedoom.wad", and "fdoom2.wad". Ultimate freedoom:
    "freedoom1.wad", "freedu.wad", "fdoomu.wad".
  * Fixed BUG 0670, Monsters mysteriously disappearing, moving large
    distances into the void space.
    This bug was introduced in the moonwalk patch (SVN 1540) by copying
    the opposite direction calculation code from PrBoom. This was done
    in an effort to reduce differences that might lead to bugs. It
    replaced a table lookup implementation. However, the PrBoom
    calculation must be guarded against the value DI_NODIR, which the
    table implementation could handle inherently. Without that
    protection, an olddir of DI_NODIR introduced a direction of 12 into
    the logic, which can only handle directions of 0..7, with NODIR=8.
    Several times a game that 12 value would survive long enough to get
    used, which would be expressed as a wild walk movement.
  * Improved the large blockmap handling to deal with more issues of
    blockmap overflow in the presence of zennode blockmap compression.
    It can now handle more maps of the Lost Civilization wad, although
    some other issues are still present.
  * The mouse2 support was found to be disabled and missing for the SDL
    port. It has been fixed, and expanded to handle PC mice,
    MouseSystems mice, and PS/2 mice, for SDL Linux, SDL Windows, and
    Win32 ports. Fixes BUG 0669.
  * Made LOGMESSAGES work again, which writes debugging logs. Release
    binaries do not have this code. If DoomLegacy is compiled with
    LOGMESSAGES enabled (doomdef.h file), a log.txt file will be
    produced. This is currently enabled when compiled with DEBUG.
  * Fixed the overlapped string copies detected by GCC 10.
    Fixes BUG 0671, Michael B辰uerle.
  * Reduced warnings when compiling with GCC 10. This was mostly due to
    signed char being used as an index, which may cause problems on some
    platforms. Fixes BUG 0671.

(micha)

Updated editors/py-jedi, devel/py-msgpack

(adam)

py-msgpack: updated to 1.0.2

1.0.2:
Bug fixes

(adam)

py-jedi: updated to 0.18.0

0.18.0
- Dropped Python 2 and Python 3.5
- Using ``pathlib.Path()`` as an output instead of ``str`` in most places:
  - ``Project.path``
  - ``Script.path``
  - ``Definition.module_path``
  - ``Refactoring.get_renames``
  - ``Refactoring.get_changed_files``
- Functions with ``@property`` now return ``property`` instead of ``function``
  in ``Name().type``
- Started using annotations
- Better support for the walrus operator
- Project attributes are now read accessible
- Removed all deprecations

(adam)

Add a MESSAGE on how to install u-boot-pine64

(js)

doc: Updated converters/utf8proc to 2.6.1nb1

(micha)

converters/utf8proc: Update ABI version

Bump PKGREVISION.

(micha)

doc: Updated news/tin to 2.4.5

(micha)

news/tin: Update to 2.4.5

Removed POSIX shell patch (merged upstream).
Removed libcanlock patches (now supported via pkg-config).

-- 2.4.5 release 20201224 "Glen Albyn" --

022) Dennis Preiser <dennis@d--p.de>
      BUG. 'B'ody and '/'article search with wildcard matching (wildcard=0)
          didn't work
      BUG. convert_tex2iso with UTF-8 as local charset did map "O to wrong
          char
      BUG. missing termination of conversion table for convert_tex2iso
      BUG. avoid possible endless loop in search_group
      BUG. tin_ltoa in some cases returned an error where it shouldn't
      BUG. 'T'ag all parts of multipart message didn't work with thread_arts
          4 (multipart) or 5 (percentage)
      BUG. hung on empty (lone '.') positive (220) response to ARTICLE command
      ADD. make {Group,Thread}TagParts 'T' toggle like 't'ag
      ADD. don't show mime parse error for missing end marker if not running
          in debug mode
      ADD. increase hash-table sizes
      ADD. speed up multipart threading
      ADD. multipart tagging ThreadTagParts 'T' to thread level
      ADD. reduce memory usage by struct reordering to avoid padding
      ADD. GNKSA_MISSING_REALNAME return code for filtering
      REM. redundant conde
      FIX. art.c, charset.c, group.c, hashstr.c, help.c, keymap.c, lang.c
          misc.c, page.c, refs.c, rfc2046.c, screen.c, search.c, string.c
          tags.c, thread.c, wildmat.c, extern.h, keymap.h, proto.h, tin.h
          tin.[15]

021) Thomas E. Dickey <dickey@invisible-island.net>
      ADD. update configure macros
      ADD. fallback to the bundled pcre if required
      ADD. prefer systemwide libcanlock over bundled one
      FIX. aclocal.m4, configure[.in], Makefile.[in], tin.h

020) Urs Janssen <urs@tin.org>
      ADD. config.guess, config.sub update
      ADD. document strip_re_regex, strip_was_regex and col_message in manpage
      ADD. configure check for fchmod(2) and fallback to chmod(2) if system
          lacks it (e.g. Interactive UNIX)
      ADD. speed up filter on Path:-header
      ADD. allow abortion of subject/author search in group level
      ADD. allow abortion of filtering
      ADD. raise default max length for numbers in prompts from 6 to 10 digits
      ADD. restrict multipart detection to messages with more than 1 part
      ADD. show an error message if append_mail() fails
      ADD. allow path for posted_articles_file
      ADD. document gnksa-parser return codes in tin(5)
      ADD. center_line() now does BiDi
      ADD. don't fail on GNKSA_MISSING_REALNAME when posting
      ADD. GNKSA_RANGLE_MISSING (104) error code to gnksa-filter
      BUG. when $TIN_INDEX_NEWSDIR was used INDEX_NEWSDIR was
          automatically appended to the string, but for the '-I' cmd.line it
          wasn't, now '-I' behaves exactly like $TIN_INDEX_NEWSDIR
      REM. redundant condition
      FIX. art.c, attrib.c, config.c, debug.c, filter.c, getline.c, inews.c
          init.c, lang.c, main.c, makecfg.c, memory.c, misc.c, newsrc.c
          nrctbl.c, options_menu.c, post.c, read.c, save.c, screen.c
          search.c, tags.c, thread.c, tmpfile.c, extern.h, proto.h, tin.h
          tin.[15], configure[.in], autoconf.h[in], config.guess, config.sub
          en_GB.po, keymap.sample

019) Matt Anton <tin@lv223.org>
      ADD. updated french translation
      FIX. fr.po

018) Toomas Soome <tsoome@me.com>
      ADD. updated estonian translation
      FIX. et.po

(micha)

doc: note update of dovecot2* packages

mail/dovecot2 2.3.13
mail/dovecot2-gssapi 2.3.13
mail/dovecot2-ldap 2.3.13
mail/dovecot2-mysql 2.3.13
mail/dovecot2-pgsql 2.3.13
mail/dovecot2-sqlite 2.3.13
mail/dovecot2-pigeonhole 0.5.13

(taca)

mail/dovecot2-pigeonhole: update to 0.5.13

Update dovecot2-pigeonhole package to 0.5.13.

v0.5.13 2021-01-04  Aki Tuomi <aki.tuomi@open-xchange.com>

- duplicate: The test was handled badly in a multiscript (sieve_before,
  sieve_after) scenario in which an earlier script in the sequence with
  a duplicate test succeeded, while a later script caused a runtime
  failure. In that case, the message is recorded for duplicate tracking,
  while the message may not actually have been delivered in the end.
- editheader: Sieve interpreter entered infinite loop at startup when
  the "editheader" configuration listed an invalid header name. This
  problem can only be triggered by the administrator.
- relational: The Sieve relational extension can cause a segfault at
  compile time. This is triggered by invalid script syntax. The segfault
  happens when this match type is the last argument of the test command.
  This situation is not possible in a valid script; positional arguments
  are normally present after that, which would prevent the segfault.
- sieve: For some Sieve commands the provided mailbox name is not
  properly checked for UTF-8 validity, which can cause assert crashes at
  runtime when an invalid mailbox name is encountered. This can be
  caused by the user by writing a bad Sieve script involving the
  affected commands ("mailboxexists", "specialuse_exists").
  This can be triggered by the remote sender only when the user has
  written a Sieve script that passes message content to one of the
  affected commands.
- sieve: Large sequences of 8-bit octets passed to certain Sieve
  commands that create or modify message headers that allow UTF-8 text
  (vacation, notify and addheader) can cause the delivery or IMAP
  process (when IMAPSieve is used) to enter a memory-consuming
  semi-infinite loop that ends when the process exceeds its memory
  limits. Logged in users can cause these hangs only for their own
  processes.

(taca)

mail/dovecot2: update to 2.3.13

Update mail/dovecot2 pacakge to 2.3.13, including security fixes.

v2.3.13 2021-01-04 Aki Tuomi <aki.tuomi@open-xchange.com>

* CVE-2020-24386: Specially crafted command can cause IMAP hibernate to
  allow logged in user to access other people's emails and filesystem
  information.
* Metric filter and global event filter variable syntax changed to a
  SQL-like format. See https://doc.dovecot.org/configuration_manual/event_filter/
* auth: Added new aliases for %{variables}. Usage of the old ones is
  possible, but discouraged.
* auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth
  mechanism and related password schemes.
* auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail.
* auth: Removed postfix postmap socket
+ auth: Added new fields for auth server events. These fields are now
  also available for all auth events. See
  https://doc.dovecot.org/admin_manual/list_of_events/#authentication-server
  for details.
+ imap-hibernate: Added imap_client_hibernated, imap_client_unhibernated
  and imap_client_unhibernate_retried events. See
  https://doc.dovecot.org/admin_manual/list_of_events/ for details.
+ lib-index: Added new mail_index_recreated event. See
  https://doc.dovecot.org/admin_manual/list_of_events/#mail-index-recreated
+ lib-sql: Support TLS options for cassandra driver. This requires
  cpp-driver v2.15 (or later) to work reliably.
+ lib-storage: Missing $HasAttachment / $HasNoAttachment flags are now
  added to existing mails if mail_attachment_detection_option=add-flags
  and it can be done inexpensively.
+ login proxy: Added login_proxy_max_reconnects setting (default 3) to
  control how many reconnections are attempted.
+ login proxy: imap/pop3/submission/managesieve proxying now supports
  reconnection retrying on more than just connect() failure. Any error
  except a non-temporary authentication failure will result in reconnect
  attempts.
- auth: Lua passdb/userdb leaks stack elements per call, eventually
  causing the stack to become too deep and crashing the auth or
  auth-worker process.
- auth: SASL authentication PLAIN mechanism could be used to trigger
  read buffer overflow. However, this doesn't seem to be exploitable in
  any way.
- auth: v2.3.11 regression: GSSAPI authentication fails because dovecot
  disallows NUL bytes for it.
- dict: Process used too much CPU when iterating keys, because each key
  used a separate write() syscall.
- doveadm-server: Crash could occur if logging was done outside command
  handling. For example http-client could have done debug logging
  afterwards, resulting in either segfault or
  Panic: file http-client.c: line 642 (http_client_context_close):
  assertion failed: (cctx->clients_list == NULL).
- doveadm-server: v2.3.11 regression: Trying to connect to doveadm server
  process via starttls assert-crashed if there were no ssl=yes listeners:
  Panic: file master-service-ssl.c: line 22 (master_service_ssl_init):
  assertion failed: (service->ssl_ctx_initialized).
- fts-solr: HTTP requests may have assert-crashed:
  Panic: file http-client-request.c: line 1232 (http_client_request_send_more):
  assertion failed: (req->payload_input != NULL)
- imap: IMAP NOTIFY could crash with a segmentation fault due to a bad
  configuration that causes errors. Sending the error responses to the
  client can cause the segmentation fault. This can for example happen
  when several namespaces use the same mail storage location.
- imap: IMAP NOTIFY used on a shared namespace that doesn't actually
  exist (e.g. public namespace for a nonexistent user) can crash with a panic:
  Panic: Leaked view for index /tmp/home/asdf/mdbox/dovecot.list.index: Opened in (null):0
- imap: IMAP session can crash with QRESYNC extension if many changes
  are done before asking for expunged mails since last sync.
- imap: Process might hang indefinitely if client disconnects after
  sending some long-running commands pipelined, for example FETCH+LOGOUT.
- lib-compress: Mitigate crashes when configuring a not compiled in
  compression. Errors with compression configuration now distinguish
  between not supported and unknown.
- lib-compression: Using xz/lzma compression in v2.3.11 could have
  written truncated output in some situations. This would result in
  "Broken pipe" read errors when trying to read it back.
- lib-compression: zstd compression could have crashed in some situations:
  Panic: file ostream.c: line 287 (o_stream_sendv_int): assertion failed: (!stream->blocking)
- lib-dict: dict client could have crashed in some rare situations when
  iterating keys.
- lib-http: Fix several assert-crashes in HTTP client.
- lib-index: v2.3.11 regression: When mails were expunged at the same
  time as lots of new content was being saved to the cache (e.g. cache
  file was lost and is being re-filled) a deadlock could occur with
  dovecot.index.cache / dovecot.index.log.
- lib-index: v2.3.11 regression: dovecot.index.cache file was being
  purged (rewritten) too often when it had a field that hadn't been
  accessed for over 1 month, but less than 2 months. Every cache file
  change caused a purging in this situation.
- lib-mail: MIME parts were not returned correctly by Dovecot MIME parser.
  Regression caused by fixing CVE-2020-12100.
- lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE
  was written in a way that may have caused confusion for both IMAP
  clients and Dovecot itself when parsing it. The truncated part is now
  written out using application/octet-stream MIME type.
- lib-mail: v2.3.11 regression: Mail delivery / parsing crashed when the
  10000th MIME part was message/rfc822 (or if parent was multipart/digest):
  Panic: file message-parser.c: line 167 (message_part_append):
  assertion failed: (ctx->total_parts_count <= ctx->max_total_mime_parts).
- lib-oauth2: Dovecot incorrectly required oauth2 server introspection
  reply to contain username with invalid token.
- lib-ssl-iostream, lib-dcrypt: Fix building with OpenSSL that has
  deprecated APIs disabled.
- lib-storage: When mail's size is different from the cached one (in
  dovecot.index.cache or Maildir S=size in the filename), this is
  handled by logging "Cached message size smaller/larger than expected"
  error. However, in some situations this also ended up crashing with:
  Panic: file istream.c: line 315 (i_stream_read_memarea):
  assertion failed: (old_size <= _stream->pos - _stream->skip).
- lib-storage: v2.3 regression: Copying/moving mails was taking much more
  memory than before. This was mainly visible when copying/moving
  thousands of mails in a single transaction.
- lib-storage: v2.3.11 regression: Searching messages assert-crashed
  (without FTS): Panic: file message-parser.c: line 174 (message_part_finish):
  assertion failed: (ctx->nested_parts_count > 0).
- lib: Dovecot v2.3 moved signal handlers around in ioloops,
  causing more CPU usage than in v2.2.
- lib: Fixed JSON parsing: '\' escape sequence may have wrongly resulted
  in error if it happened to be at read boundary. Any NUL characters and
  '\u0000' will now result in parsing error instead of silently
  truncating the data.
- lmtp, submission: Server may hang if SSL client connection disconnects
  during the delivery. If this happened repeated, it could have ended
  up reaching process_limit and preventing any further lmtp/submission
  deliveries.
- lmtp: Proxy does not always properly log TLS connection problems as
  errors; in some cases, only a debug message is logged if enabled.
- lmtp: The LMTP service can hang when commands are pipelined. This can
  particularly occur when one command in the middle of the pipeline fails.
  One example of this occurs for proxied LMTP transactions in which the
  final DATA or BDAT command is pipelined after a failing RCPT command.
- login-proxy: The login_source_ips setting has no effect, and therefore
  the proxy source IPs are not cycled through as they should be.
- master: Process was using 100% CPU in some situations when a broken
  service was being throttled.
- pop3-login: POP3 login would fail with "Input buffer full" if the
  initial response for SASL was too long.
- stats: Crash would occur when generating openmetrics data for metrics
  using aggregating functions.

(taca)

doc: Added wm/mcwm version 20130209.2

(nia)

Add wm/mcwm.

mcwm is a minimalist window manager for the X Window System written from
scratch in C directly on top of XCB. It is a traditional floating window
manager with a lot of features but without the bloat.

In mcwm all functions, including move and resize, are available from the
keyboard but a pointing device can be used for move, resize and raise/lower.

(nia)

hunspell: Fix locally modified errors in pre-configure stage

(ryoon)

doc: Updated print/cups-filters to 1.28.6

(prlw1)

Update cups-filters to 1.28.6

NEWS - OpenPrinting CUPS Filters v1.28.6 - 2020-12-02
-----------------------------------------------------

CHANGES IN V1.28.6

- libcupsfilters: In generated PPDs add a grayscale mode if
  there are only color printing modes (from OpenPrinting
  CUPS).
- libcupsfilters: In generated PPDs add an "OutputBin" option
  also if it has only one choice (OpenPrinting CUPS pull
  request #18).
- libcupsfilters: Generated PPDs could have an "Unknown"
  default InputSlot (OpenPrinting CUPS issue #44).
- cups-browsed: Removed unneeded IPP attribute additions
  preventing the created local queues from preserving a
  location or description the user assigns to them (Issue
  #323).
- cups-browsed: Removed all calls of the resolve_uri() function
  of libcupsfilters, as these are not actually needed and in case
  the supplied DNS-SD-based URI is not resolvable, the function
  gets stuck for ~5 seconds.
- cups-browsed: Fixed several memory leaks, mainly from the
  code to merge printer IPP attributes for clusters (Pull
  request #322).
- cups-browsed: Silenced compiler warning.
- foomatic-rip: Fix infinite loop and input from file on raw
  printing (Pull request #318).
- foomatic-rip: Remove temporary file created during pdf-to-ps
  conversion (Pull request #313).

(prlw1)

doc: Updated print/cups to 2.3.3op1

(prlw1)

Update cups to v2.3.3op1

Change to the OpenPrinting fork of apple/cups, e.g., that fork already contains

- dnssd patch patch-config-scripts_cups-dnssd.m4
- freebsd patch patch-cups_getifaddrs-internal.h
- libtool patch patch-af

https://github.com/apple/cups/issues/4947 was fixed in both.

Changes in CUPS v2.3.3op1
-------------------------

- The automated test suite can now be activated using `make test` for
  consistency with other projects and CI environments - the old `make check`
  continues to work as well, and the previous test server behavior can be
  accessed by running `make testserver`.
- ippeveprinter now supports multiple icons and strings files.
- ippeveprinter now uses the system's FQDN with Avahi.
- ippeveprinter now supports Get-Printer-Attributes on "/".
- ippeveprinter now uses a deterministic "printer-uuid" value.
- ippeveprinter now uses system sounds on macOS for Identify-Printer.
- Updated ippfind to look for files in "~/Desktop" on Windows.
- Updated ippfind to honor `SKIP-XXX` directives with `PAUSE`.
- Updated IPP Everywhere support to work around printers that only advertise
  color raster support but really also support grayscale (Issue #1)
- ipptool now supports DNS-SD URIs like `ipps://My%20Printer._ipps._tcp.local`
  (Issue #5)
- The scheduler now allows root backends to have world read permissions but not
  world execute permissions (Issue #21)
- Failures to bind IPv6 listener sockets no longer cause errors if IPv6 is
  disabled on the host (Issue #25)
- The SNMP backend now supports the HP and Ricoh vendor MIBs (Issue #28)
- The scheduler no longer includes a timestamp in files it writes (Issue #29)
- The systemd service names are now "cups.service" and "cups-lpd.service"
  (Issue #30, Issue #31)
- The scheduler no longer adds the local hostname to the ServerAlias list
  (Issue #32)
- Added `LogFileGroup` directive in "cups-files.conf" to control the group
  owner of log files (Issue #34)
- Added `--with-max-log-size` configure option (Issue #35)
- Added `--enable-sync-on-close` configure option (Issue #37)
- Added `--with-error-policy` configure option (Issue #38)
- IPP Everywhere PPDs could have an "unknown" default InputSlot (Issue #44)
- The `httpAddrListen` function now uses a listen backlog of 128.
- Added USB quirks (Apple issue #5789, #5823, #5831)
- Fixed IPP Everywhere v1.1 conformance issues in ippeveprinter.
- Fixed DNS-SD name collision support in ippeveprinter.
- Fixed compiler and code analyzer warnings.
- Fixed TLS support on Windows.
- Fixed ippfind sub-type searches with Avahi.
- Fixed the default hostname used by ippeveprinter on macOS.
- Fixed resolution of local IPP-USB printers with Avahi.
- Fixed coverity issues (Issue #2)
- Fixed `httpAddrConnect` issues (Issue #3)
- Fixed web interface device URI issue (Issue #4)
- Fixed lp/lpr "printer/class not found" error reporting (Issue #6)
- Fixed xinetd support for LPD clients (Issue #7)
- Fixed libtool build issue (Issue #11)
- Fixed a memory leak in the scheduler (Issue #12)
- Fixed a potential integer overflow in the PPD hashing code (Issue #13)
- Fixed output-bin and print-quality handling issues (Issue #18)
- Fixed PPD options getting mapped to odd IPP values like "tray---4" (Issue #23)
- Fixed remote access to the cupsd.conf and log files (Issue #24)
- Fixed the automated test suite when running in certain build/CI environments
  (Issue #25)
- Fixed a logging regression caused by a previous change for Apple issue #5604
  (Issue #25)
- Fixed fax phone number handling with GNOME (Issue #40)
- Fixed potential rounding error in rastertopwg filter (Issue #41)
- Fixed the "uri-security-supported" value from the scheduler (Issue #42)
- Fixed IPP backend crash bug with "printer-alert" values (Issue #43)
- Removed old Solaris inetconv(1m) reference in cups-lpd man page (Issue #46)
- Fixed default options that incorrectly use the "custom" prefix (Issue #48)
- Fixed a memory leak when resolving DNS-SD URIs (Issue #49)
- Fixed systemd status reporting by adopting the notify interface (Issue #51)
- Fixed crash in rastertopwg (Apple issue #5773)
- Fixed cupsManualCopies values in IPP Everywhere PPDs (Apple issue #5807)

(prlw1)

libcups: skip backup file when checking portability

(wiz)

doc: Updated graphics/openexr to 2.5.4

(wiz)

doc: Updated graphics/ilmbase to 2.5.4

(wiz)

openexr, ilmbase: update to 2.5.4

Patch release with various bug/sanitizer/security fixes, primarily
related to reading corrupted input files.

(wiz)

wget: remove patch for perl-5.18

(wiz)

doc: Updated net/wget to 1.21

(wiz)

wget: update to 1.21.

* Changes in Wget 1.21

** Improve the number of translated strings

** Remove all uses of alloca
  In some places the length of untrusted strings has been used, e.g.
  strings from the command line or from remote.

** Fix buffer overflows in progress bar code in some locales

** Fix two null pointer accesses

** Amend cookie file header to be recognized by the 'file' command

** Post Handshake Authentication for OpenSSL

** Require gettext version 0.19.3+

** Add configure flags --enable-fsanitize-ubsan, --enable-fsanitize-asan
  and --enable-fsanitize-msan for gcc and clang

** Make several smaller fixes, enhance fuzzing, enhance building

(wiz)

doc: Updated x11/xscreensaver-demo to 5.45

(wiz)

xscreensaver-demo: update to 5.45.

Changes:
Same as for xscreensaver, but mostly
* glade -> gtkbuilder.

(wiz)

doc: Updated x11/xscreensaver to 5.45

(wiz)

xscreensaver: update to 5.45.

5.45 * New hacks, `covid19', `headroom', `sphereeversion' and `beats'.
* Shader updates to `hypertorus'.
* No more image-loading pause in `glslideshow'.
* BSOD supports GNOME.
* Image loaders support SVG.
* macOS: Fixed text loading on 10.15.
* X11: `xscreensaver-systemd' now allows video players to request that
  the screen not blank.
* X11: -log implies -verbose -no-capture-stderr.
* X11: Glade -> GtkBuilder.
* Android: These hacks work now: `carousel', `juggler3d', `molecule',
          `photopile', `polyominoes'.
* Various bug fixes.

5.44.1 * macOS: fixed some signing problems in the DMG.

(wiz)

doc: Updated converters/utf8proc to 2.6.1

(wiz)

utf8proc: update to 2.6.1.

## Version 2.6.1 ##

2020-12-15

- Bugfix in `utf8proc_grapheme_break_stateful` for `NULL` state argument, which
  also broke `utf8proc_grapheme_break`.

(wiz)

doc: Updated textproc/ugrep to 3.1.1

(wiz)

ugrep: update to 3.1.1.

3.1.1

New --bool option to specify a Boolean search query pattern (with
Google search syntax or fzf-like when used with -F to search strings
instead of regex subpatterns); new --and and --not options; updated
--format to support -v.

(wiz)

doc: Updated audio/strawberry to 0.8.5

(wiz)

strawberry: update to 0.8.5.

0.8.5:

  Bugfixes:
    * Fix return type of SmartPlaylistQueryWizardPlugin::type().
    * Fix comparison between QChar and integer to use QChar::unicode().
    * Fix return type of qHash with Qt 6 to use size_t instead of uint.
    * Fix tag edit dialog save process sometimes stuck.
    * Fix repeat and shuffle buttons greyed out when a dynamic playlist is open.
    * Fix CUE parser handling of values with empty quotes.
    * Fix broken year and disc collection groupings with CUE songs.
    * Fix HTML escaping showing up in OSD notifications when using custom text.

  Enhancements:
    * Add Swedish translation.
    * Made Qt X11Extras and WinExtras modules optional.
    * Save and restore geometry in edit tag dialog.
    * Add command line option to play a playlist based on name.
    * Change double-click behaviour in cover manager to open fullsize cover.

(wiz)

doc: Updated devel/spdlog to 1.8.2

(wiz)

spdlog: update to 1.8.2.

    Bump fmt to version 7.1.3
    Download automatically googlebenchmark for bench tests (#1709) Thanks @kitattyor.
    Add CPack debian package settings (#1712) and fix typo in comment (#1711). Thanks @ChristofKaufmann.
    Perfect forwarding fmt arguments (#1726). Thanks @dkavolis.
    Fix dup_filter_sink to log current log call's level, instead of the filtered log call's level (#1710). Thanks @Tridacnid for reporting.
    Ability to get size of messages queue of async thread pool (#1735) Thanks @o2gy84.
    Add missing include (#1742). Thanks @jwittbrodt.
    Updated bin_to_hex example in the readme (#1744). Thanks @ArnaudBienner.
    Fix async periodic flush test (#1749). Thanks @bluescarni.

(wiz)

doc: Updated devel/readline to 8.1

(wiz)

readline: update to 8.1.

New Features in Readline

a. If a second consecutive completion attempt produces matches where the first
  did not, treat it as a new completion attempt and insert a match as
  appropriate.

b. Bracketed paste mode works in more places: incremental search strings, vi
  overstrike mode, character search, and reading numeric arguments.

c. Readline automatically switches to horizontal scrolling if the terminal has
  only one line.

d. Unbinding all key sequences bound to a particular readline function now
  descends into keymaps for multi-key sequences.

e. rl-clear-display: new bindable command that clears the screen and, if
  possible, the scrollback buffer (bound to emacs mode M-C-l by default).

f. New active mark and face feature: when enabled, it will highlight the text
  inserted by a bracketed paste (the `active region') and the text found by
  incremental and non-incremental history searches. This is tied to bracketed
  paste and can be disabled by turning off bracketed paste.

g. Readline sets the mark in several additional commands.

h. Bracketed paste mode is enabled by default. There is a configure-time
  option (--enable-bracketed-paste-default) to set the default to on or off.

i. Readline tries to take advantage of the more regular structure of UTF-8
  characters to identify the beginning and end of characters when moving
  through the line buffer.

j. The bindable operate-and-get-next command (and its default bindings) are
  now part of readline instead of a bash-specific addition.

k. The signal cleanup code now blocks SIGINT while processing after a SIGINT.

(wiz)

doc: Updated devel/py-packaging to 20.8

(wiz)

py-packaging: update to 20.8.

20.8 - 2020-12-11
~~~~~~~~~~~~~~~~~

* Revert back to setuptools for compatibility purposes for some Linux distros (:issue:`363`)
* Do not insert an underscore in wheel tags when the interpreter version number
  is more than 2 digits (:issue:`372`)

20.7 - 2020-11-28
~~~~~~~~~~~~~~~~~

No unreleased changes.

20.6 - 2020-11-28
~~~~~~~~~~~~~~~~~

.. note:: This release was subsequently yanked, and these changes were included in 20.7.

* Fix flit configuration, to include LICENSE files (:issue:`357`)
* Make `intel` a recognized CPU architecture for the `universal` macOS platform tag (:issue:`361`)
* Add some missing type hints to `packaging.requirements` (issue:`350`)

20.5 - 2020-11-27
~~~~~~~~~~~~~~~~~

* Officially support Python 3.9 (:issue:`343`)
* Deprecate the ``LegacyVersion`` and ``LegacySpecifier`` classes (:issue:`321`)
* Handle ``OSError`` on non-dynamic executables when attempting to resolve
  the glibc version string.

(wiz)

doc: Updated devel/py-hypothesis to 5.46.0

(wiz)

py-hypothesis: update to 5.46.0.

5.46.0 - 2021-01-04

This release upgrades from_type(), to infer strategies for
type-annotated arguments even if they have defaults when it otherwise
falls back to builds() (issue #2708).

5.45.0 - 2021-01-04

This release adds the hypothesis[codemods] extra, which you can
use to check for and automatically fix issues such as use of
deprecated Hypothesis APIs (issue #2705).

5.44.0 - 2021-01-03

This patch fixes from_type() with the typing_extensions Literal
backport on Python 3.6.

5.43.9 - 2021-01-02

This patch fixes issue #2722, where certain orderings of
register_type_strategy(), ForwardRef, and from_type() could trigger
an internal error.

5.43.8 - 2021-01-02

This patch makes some strategies for collections with a uniqueness
constraint much more efficient, including
dictionaries(keys=sampled_from(...), values=..) and
lists(tuples(sampled_from(...), ...), unique_by=lambda x: x[0]).
(related to issue #2036)

5.43.7 - 2021-01-02

This patch extends our faster special case for sampled_from()
elements in unique lists() to account for chains of .map(...) and
.filter(...) calls (issue #2036).

5.43.6 - 2021-01-02

This patch improves the type annotations on assume() and
@reproduce_failure().

5.43.5 - 2021-01-01

This patch updates our copyright headers to include 2021. Happy
new year!

5.43.4 - 2020-12-24

This change fixes a documentation error in the database setting.

The previous documentation suggested that callers could specify a
database path string, or the special string ":memory:", but this
setting has never actually allowed string arguments.

Permitted values are None, and instances of ExampleDatabase.

5.43.3 - 2020-12-11

This patch fixes issue #2696, an internal error triggered when the
@example decorator was used and the verbosity setting was quiet.

5.43.2 - 2020-12-10

This patch improves the error message from the data_frames() strategy
when both the rows and columns arguments are given, but there is
a missing entry in rows and the corresponding column has no fill
value (issue #2678).

5.43.1 - 2020-12-10

This patch improves the error message if builds() is passed an Enum
which cannot be called without arguments, to suggest using
sampled_from() (issue #2693).

5.43.0 - 2020-12-09

This release adds new timezones() and timezone_keys() strategies
(issue #2630) based on the new zoneinfo module in Python 3.9.

pip install hypothesis[zoneinfo] will ensure that you have the
appropriate backports installed if you need them.

(wiz)

doc: Updated converters/py-chardet to 4.0.0

(wiz)

py-chardet: update to 4.0.0.

This will be the last release of chardet to support Python 2.7.
chardet 5.0 will only support 3.6+

Major Changes

This release is multiple years in the making, and provides some
quality of life improvements to chardet. The primary user-facing
changes are:

    Single-byte charset probers now use nested dictionaries under
    the hood, so they are usually a little faster than before. (See
    #121 for details)

    The CharsetGroupProber class now properly short-circuits when
    one of the probers in the group is considered a definite match.
    This lead to a substantial speedup.

    There is now a chardet.detect_all function that returns a list
    of possible encodings for the input with associated confidences.

    We have dropped support for Python 2.6, 3.4, and 3.5 as they
    are all past end-of-life.

The changes in this release have also laid the groundwork for
retraining the models to make them more accurate, and to support
some more encodings/languages (see #99 for progress). This is our
main focus for chardet 5.0 (beyond dropping Python 2 support).

(wiz)

doc: Updated sysutils/py-borgbackup to 1.1.15

(wiz)

py-borgbackup: update to 1.1.15.

Version 1.1.15 (2020-12-25)
---------------------------

Compatibility notes:

- 1.1.15 drops python 3.4 support, minimum requirement is 3.5 now.

Fixes:

- extract:

  - improve exception handling when setting xattrs, #5092.
  - emit a warning message giving the path, xattr key and error message.
  - continue trying to restore other xattrs and bsdflags of the same file
    after an exception with xattr-setting happened.
- export-tar:

  - set tar format to GNU_FORMAT explicitly, #5274
  - fix memory leak with ssh: remote repository, #5568
  - fix potential memory leak with ssh: remote repository with partial extraction
- create: fix --dry-run and --stats coexistence, #5415
- use --timestamp for {utcnow} and {now} if given, #5189

New features:

- create: implement --stdin-mode, --stdin-user and --stdin-group, #5333
- allow appending the files cache filename with BORG_FILES_CACHE_SUFFIX env var

Other changes:

- drop python 3.4 support, minimum requirement is 3.5 now.
- enable using libxxhash instead of bundled xxh64 code
- update llfuse requirements (1.3.8)
- set cython language_level in some files to fix warnings
- allow EIO with warning when trying to hardlink
- PropDict: fail early if internal_dict is not a dict
- update shell completions
- tests / CI

  - add a test for the hashindex corruption bug, #5531 #4829
  - fix spurious failure in test_cache_files, #5438
  - added a github ci workflow
  - reduce testing on travis, no macOS, no py3x-dev, #5467
  - travis: use newer dists, native py on dist
- vagrant:

  - remove jessie and trusty boxes, #5348 #5383
  - pyinstaller 4.0, build on py379
  - binary build on stretch64, #5348
  - remove easy_install based pip installation
- docs:

  - clarify '--one-file-system' for btrfs, #5391
  - add example for excluding content using the --pattern cmd line arg
  - complement the documentation for pattern files and exclude files, #5524
  - made ansible playbook more generic, use package instead of pacman. also
    change state from "latest" to "present".
  - complete documentation on append-only remote repos, #5497
  - internals: rather talk about target size than statistics, #5336
  - new compression algorithm policy, #1633 #5505
  - faq: add a hint on sleeping computer, #5301
  - note requirements for full disk access on macOS Catalina, #5303
  - fix/improve description of borg upgrade hardlink usage, #5518
- modernize 1.1 code:

  - drop code/workarounds only needed to support Python 3.4
  - remove workaround for pre-release py37 argparse bug
  - removed some outdated comments/docstrings
  - requirements: remove some restrictions, lock on current versions

(wiz)

doc: Updated textproc/pugixml to 1.11.4

(wiz)

pugixml: update to 1.11.4.

1.11.4

This patch reintroduces pugixml target for CMake when find_package
is used, which was accidentally removed from v1.11.  It's recommended
that pugixml::pugixml target is used instead, but this patch restores
pugixml target for existing applications / libraries that depend
on it.

The previous patch, v1.11.3, did not handle repeated attempts to
call find_package; this patch fixes that particular corner case.

1.11.3

The previous patch, v1.11.2, was not compatible with CMake 3.10;
this patch restores compatibility with earlier CMake versions when
using imported targets.

1.11.2

The previous patch, v1.11.1, was only compatible with CMake 3.18
and up; this patch restores compatibility with earlier CMake versions
when using imported targets.

(wiz)

doc: Updated security/p11-kit to 0.23.22

(wiz)

p11-kit: update to 0.23.22.

0.23.22 (stable)
* Fix memory-safety issues that affect the RPC protocol
  (CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363), discovered
  and fixed by David Cook
* anchor: Prefer persistent format when storing anchor [PR#329]
* common: Fix infloop in p11_path_build [PR#326, PR#327]
* proxy: C_CloseAllSessions: Make sure that calloc args are non-zero [PR#325]
* common: Check for a NULL locale before freeing it [PR#321]
* Build and test fixes [PR#313, PR#315, PR#317, PR#318, PR#319, PR#323, PR#330, PR#333, PR#334, PR#335, PR#338, PR#339]

(wiz)

doc: Updated lang/mono6 to 6.12.0.107

(wiz)

mono: update to 6.12.0.107.

Bugfix release.

(wiz)

doc: Updated geography/osm-gps-map to 1.1.0

(ryoon)