syslog-ng: Add yacc to USE_TOOLS

(nia)

blosc: Assumes the compiler defaults to c99. Pass -std=c99 with USE_LANGUAGES.

(nia)

py-numpy: Assumes the compiler defaults to c99. Force -std=c99.

(nia)

icu: bump gcc requirement to gcc 4.9

to resolve an error observed in centos 7 builds

http://lists.busybox.net/pipermail/buildroot/2020-June/284800.html

(nia)

doc: Updated security/doas to 6.3p2

(pin)

security/doas: update to 6.3p2

6.3p2

This release introduces a new utility called vidoas (vi doas). This tool is a
shell script which creates a copy of the doas.conf file, allows the admin to
edit the file, and then checks its syntax for errors. If a problem is found,
vidoas reports which line the error was on and asks us to try editing the file
again. Once the new doas.conf file contains the proper syntax, it is installed
and overwrites the old doas.conf file.

This tool is designed to assist admins and avoid introducing errors to doas.conf
which might accidentally revoke admin access to the machine.

6.3p1
In this release, we work around a quirk of the GNU parameter parser which
required us to use double-dashes (--) after doas's parameters and before a
target command's parameters. In the past we used "doas -- pacman -Syu" and now
we can use simply "doas pacman -Syu".

This change affects only GNU/Linux systems, other platforms like FreeBSD,
NetBSD, etc already had this behaviour.

6.3
This release introduces a few minor changes:
-Added command line parameter (-S) which launches an interactive shell. This is
equivalent to "su -l" or "sudo -i".
-Updated documentation to include the new -S flag.
-Updated documentation to assist users in installing doas on some Linux
distributions, such as CentOS, that prevent PAM authentication from working by
default.

6.2p5
This release simply adds a new sample PAM configuration file for FreeBSD (and
compatible systems). The new sample configuration file is named
campat/pam.conf.freebsd.

(pin)

doc: Updated www/firefox78-l10n to 78.4.0

(nia)

firefox78-l10n: Sync with firefox78

(nia)

Pullup ticket #6335 - requested by taca
lang/php72: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.311
- lang/php72/distinfo                                          1.58

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Sun Oct  4 03:14:53 UTC 2020

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php72: distinfo

  Log Message:
  lang/php72: update to 7.2.34

  Update php72 package to 7.2.34.

  01 Oct 2020, PHP 7.2.34

  - Core:
    . Fixed bug #79699 (PHP parses encoded cookie names so malicious `__Host-`
      cookies can be sent). (CVE-2020-7070) (Stas)

  - OpenSSL:
    . Fixed bug #79601 (Wrong ciphertext/tag in AES-CCM encryption for a 12
      bytes IV). (CVE-2020-7069) (Jakub Zelenka)

  To generate a diff of this commit:
  cvs rdiff -u -r1.310 -r1.311 pkgsrc/lang/php/phpversion.mk
  cvs rdiff -u -r1.57 -r1.58 pkgsrc/lang/php72/distinfo

(spz)

Pullup ticket #6334 - requested by taca
lang/php74: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.310
- lang/php74/distinfo                                          1.13

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Sun Oct  4 03:12:46 UTC 2020

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php74: distinfo

  Log Message:
  lang/php74: update to 7.4.11

  Update php74 to 7.4.11.

  01 Oct 2020, PHP 7.4.11

  - Core:
    . Fixed bug #79699 (PHP parses encoded cookie names so malicious `__Host-`
      cookies can be sent). (CVE-2020-7070) (Stas)
    . Fixed bug #79979 (passing value to by-ref param via CUFA crashes). (cmb,
      Nikita)
    . Fixed bug #80037 (Typed property must not be accessed before initialization
      when __get() declared). (Nikita)
    . Fixed bug #80048 (Bug #69100 has not been fixed for Windows). (cmb)
    . Fixed bug #80049 (Memleak when coercing integers to string via variadic
      argument). (Nikita)

  - Calendar:
    . Fixed bug #80007 (Potential type confusion in unixtojd() parameter parsing).
      (Andy Postnikov)

  - COM:
    . Fixed bug #64130 (COM obj parameters passed by reference are not updated).
      (cmb)

  - OPcache:
    . Fixed bug #80002 (calc free space for new interned string is wrong).
      (t-matsuno)
    . Fixed bug #80046 (FREE for SWITCH_STRING optimized away). (Nikita)
    . Fixed bug #79825 (opcache.file_cache causes SIGSEGV when custom opcode
      handlers changed). (SammyK)

  - OpenSSL:
    . Fixed bug #79601 (Wrong ciphertext/tag in AES-CCM encryption for a 12
      bytes IV). (CVE-2020-7069) (Jakub Zelenka)

  - PDO:
    . Fixed bug #80027 (Terrible performance using $query->fetch on queries with
      many bind parameters (Matteo)

  - Standard:
    . Fixed bug #79986 (str_ireplace bug with diacritics characters). (cmb)
    . Fixed bug #80077 (getmxrr test bug). (Rainer Jung)
    . Fixed bug #72941 (Modifying bucket->data by-ref has no effect any longer).
      (cmb)
    . Fixed bug #80067 (Omitting the port in bindto setting errors). (cmb)

  To generate a diff of this commit:
  cvs rdiff -u -r1.309 -r1.310 pkgsrc/lang/php/phpversion.mk
  cvs rdiff -u -r1.12 -r1.13 pkgsrc/lang/php74/distinfo

(spz)

doc: Updated www/firefox78 to 78.4.0

(nia)

firefox78: Update to 78.4.0

Security Vulnerabilities fixed in Firefox ESR 78.4

#CVE-2020-15969: Use-after-free in usersctp
#CVE-2020-15683: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4

(nia)

doc: clean up mono* entries in TODO

(wiz)

doc: Updated lang/mono6 to 6.12.0.90

(wiz)

mono: update to 6.12.0.90.

Didn't find the changes for this one, sorry.

(wiz)

Pullup ticket #6333 - requested by taca
lang/php73: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.309
- lang/php73/distinfo                                          1.27

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Sun Oct  4 03:06:28 UTC 2020

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php73: distinfo

  Log Message:
  lang/php73: update to 7.3.23

  Update php73 package to 7.3.23.

  01 Oct 2020, PHP 7.3.23

  - Core:
    . Fixed bug #80048 (Bug #69100 has not been fixed for Windows). (cmb)
    . Fixed bug #80049 (Memleak when coercing integers to string via variadic
      argument). (Nikita)
    . Fixed bug #79699 (PHP parses encoded cookie names so malicious `__Host-`
      cookies can be sent). (CVE-2020-7070) (Stas)

  - Calendar:
    . Fixed bug #80007 (Potential type confusion in unixtojd() parameter parsing).
      (Andy Postnikov)

  - COM:
    . Fixed bug #64130 (COM obj parameters passed by reference are not updated).
      (cmb)

  - OPcache:
    . Fixed bug #80002 (calc free space for new interned string is wrong).
      (t-matsuno)
    . Fixed bug #79825 (opcache.file_cache causes SIGSEGV when custom opcode
      handlers changed). (SammyK)

  - OpenSSL:
    . Fixed bug #79601 (Wrong ciphertext/tag in AES-CCM encryption for a 12
      bytes IV). (CVE-2020-7069) (Jakub Zelenka)

  - PDO:
    . Fixed bug #80027 (Terrible performance using $query->fetch on queries with
      many bind parameters (Matteo)

  - Standard:
    . Fixed bug #79986 (str_ireplace bug with diacritics characters). (cmb)
    . Fixed bug #80077 (getmxrr test bug). (Rainer Jung)
    . Fixed bug #72941 (Modifying bucket->data by-ref has no effect any longer).
      (cmb)
    . Fixed bug #80067 (Omitting the port in bindto setting errors). (cmb)

  To generate a diff of this commit:
  cvs rdiff -u -r1.308 -r1.309 pkgsrc/lang/php/phpversion.mk
  cvs rdiff -u -r1.26 -r1.27 pkgsrc/lang/php73/distinfo

(spz)

doas: Use setusercontext(3)

Calling setusercontext(3) makes per-user temporary storage work (see
per_user_tmp in security(7) and rc.conf(5)).

May as well use our reallocarray(3) instead of the bundled compat code.

(kim)

#6346 + #6347

(spz)

Pullup ticket #6347 - requested by maya
pkgtools/x11-links: dependency-driven update

Revisions pulled up:
- pkgtools/x11-links/Makefile                                  1.203
- pkgtools/x11-links/buildlink3.mk                              1.94
- pkgtools/x11-links/files/xorg.freetype2                      1.28

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: maya
  Date: Wed Oct 21 15:18:30 UTC 2020

  Modified Files:
  pkgsrc/pkgtools/x11-links: Makefile buildlink3.mk
  pkgsrc/pkgtools/x11-links/files: xorg.freetype2

  Log Message:
  x11-links 1.32: updates for freetype 2.10.4

  To generate a diff of this commit:
  cvs rdiff -u -r1.202 -r1.203 pkgsrc/pkgtools/x11-links/Makefile
  cvs rdiff -u -r1.93 -r1.94 pkgsrc/pkgtools/x11-links/buildlink3.mk
  cvs rdiff -u -r1.27 -r1.28 pkgsrc/pkgtools/x11-links/files/xorg.freetype2

(spz)

Pullup ticket #6346 - requested by maya
graphics/freetype2: security update

Revisions pulled up:
- graphics/freetype2/Makefile                                  1.121
- graphics/freetype2/PLIST                                      1.29
- graphics/freetype2/distinfo                                  1.69

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: adam
  Date: Wed Oct 21 08:26:08 UTC 2020

  Modified Files:
  pkgsrc/graphics/freetype2: Makefile PLIST distinfo

  Log Message:
  freetype2: updated to 2.10.4

  FreeType 2.10.4

  This is an emergency release, fixing a severe vulnerability in embedded PNG bitmap handling (see here for more).

  All users should update immediately.

  FreeType 2.10.3

  This is a maintenance release, having better support for TrueType glyphs with overlapping contours. See the list of changes for more details.

  A warning for distribution maintainers: Version 2.10.3 and later may break the build of ghostscript, due to ghostscript's use of a withdrawn macro that wasn't intended for external usage.

  To generate a diff of this commit:
  cvs rdiff -u -r1.120 -r1.121 pkgsrc/graphics/freetype2/Makefile
  cvs rdiff -u -r1.28 -r1.29 pkgsrc/graphics/freetype2/PLIST
  cvs rdiff -u -r1.68 -r1.69 pkgsrc/graphics/freetype2/distinfo

(spz)

doas: Pass PKG_SYSCONFDIR to make

(kim)

doc: Updated pkgtools/x11-links to 1.32

(maya)

x11-links 1.32: updates for freetype 2.10.4

(maya)

Updated databases/mysql57-client, databases/mysql57-server

(adam)

mysql57: updated to 5.7.32

Changes in MySQL 5.7.32 (2020-10-19, General Availability)

Functionality Added or Changed

Bugs Fixed

Functionality Added or Changed

LOCK TABLES privilege checking for views was improved.

Bugs Fixed

InnoDB: A query that updated the clustered index of an internal temporary table returned an incorrect result. The modified pages of the clustered index were not added to the flush list resulting in lost changes when the modified pages were evicted from the buffer pool.

References: This issue is a regression of:

InnoDB: An ALTER TABLE ... IMPORT TABLESPACE operation on a large encrypted and compressed table failed with a Page decompress failed after reading from disk error. The decryption operation did not use the encryption block size used during encryption. Also, the encryption process did not consider compressed length, while the decryption process decrypts data by compressed length only.

InnoDB: A failure occurred during a concurrent update operation. The failure was due to an invalid previous record value.

InnoDB: The function used to process the SHOW ENGINE INNODB MUTEX statement was insufficiently isolated from other threads adding new mutexes concurrently.

InnoDB: The buffer control block structure (buf_block_t) was freed while reducing the size of the buffer pool, causing an assertion failure. The fix for this bug also backports important aspects of the fix for

InnoDB: In session started with START TRANSACTION WITH CONSISTENT SNAPSHOT, a range query returned a truncated result. The end range flag was not reset at the beginning of the index read resulting in an aborted read and missing rows.

References: This issue is a regression of:

InnoDB: A full-text phrase search raised an assertion failure.

Thanks to TXSQL (Tencent MySQL) for the contribution.

References: This issue is a regression of:

InnoDB: A long running statistics calculation operation on a large table blocked other operations requiring access to the table's statistics, causing those operations to fail. A new statistics calculation mutex was introduced, which permits concurrent access table statistics.

Thanks to Kamil Holubicki for the contribution.

InnoDB: Two connections attempted to use the same transaction handler object resulting in a stalled query.

Replication: When a replication source server shuts down and restarts, its MEMORY tables become empty. To replicate this effect to replicas, the first time that the source uses a given MEMORY table after startup, it logs an event that notifies replicas that the table must be emptied by writing a statement to the binary log to that effect. Previously, this was a DELETE statement, but it is now a TRUNCATE TABLE statement. A replica server also writes this statement to its own binary log when it shuts down and restarts. The statement is always logged in statement format, even if the binary logging format is set to ROW, and it is written even if read_only or super_read_only mode is set on the server.

Replication: When the system variable session_track_gtids was set to OWN_GTID on a multithreaded replica, the replica窶冱 performance would degrade over time and begin to lag behind the master. The cause was the buildup of the GTIDs recorded by the replica窶冱 worker threads at each transaction commit, which increased the time taken by the worker threads to insert new ones. Session state tracking is now disabled for worker threads on a multithreaded replica. Thanks to Facebook for the contribution.

Certain cases of successful LDAP authentication could cause the server to hang.

In bootstrapping mode, certain multiple-statement transactions could cause unexpected server behavior.

Sensitive LDAP authentication plugin system variables now display as asterisks when retrieved in SQL statements.

After the fix for

References: This issue is a regression of:

Some INSERT statements were not handled correctly.

Certain prepared statements could cause an unexpected server exit.

mysqlpump object validation included objects in excluded databases.

LDAP authentication plugins enforced CA verification incorrectly, which could result in use of an incorrect CA.

ORDER BY queries were not executed correctly when sort_buffer_size and max_sort_length were set to values which caused the internal limit on the maximum number of keys allowed per sort buffer to be set to 0.

A large number of nested arguments in full-text search query caused an error.

When explicit_defaults_for_timestamp was disabled and a NULL was inserted into a generated column declared as TIMESTAMP NOT NULL, the server would attempt to convert the inserted value to CURRENT_TIMESTAMP. Such an insertion is now rejected with ER_BAD_NULL_ERROR.

An assertion could be raised when the SQL layer passed incorrect information to InnoDB about the type of operation to be performed on a temporary table.

(adam)

Updated net/py-smb, devel/py-iniconfig

(adam)

py-iniconfig: updated to 1.1.1

1.1.1
* fix version determination

1.1.0
- typing stubs
- ci fixes

(adam)

py-smb: updated to 1.2.5

pysmb-1.2.5
- Fix bug in filename encoding which leads to failure for file retrieval and upload operations
- Improve resetFileAttributes() method in SMBConnection class to allow the
  new attribute to be specified in the reset operation

(adam)

Updated textproc/py-humanize, net/py-zeroconf

(adam)

py-zeroconf: updated to 0.28.6

0.28.6
Loosened service name validation when receiving from the network this lets us handle some real world devices previously causing errors

(adam)

py-humanize: updated to 3.1.0

3.1.0

Added

Declare support for Python 3.9
testing/docs: Include doctests in testing
Allow custom "now" in naturaldelta and naturaltime

Fixed

Represent with a zero if the delta is too small

(adam)

doc: Updated games/doomlegacy to 1.48.6

(micha)

games/doomlegacy: Update to 1.48.6

Update pkgsrc patches and remove the ones that were merged upstream.

Doom Legacy Changelog

1.48.6 SVN1550 (2020-09-09)

FEATURES 1.48.6

  * DoomLegacy can read zip archives (Linux Only, enabled by compile option
    ZIPWAD). When an load file is a zip archive, all loadable files within the
    archive are loaded. When searching for a known file, zip archives of the
    same name (but with .zip) are also searched.
    This uses library libzip. When built with compile option ZIPWAD_OPTIONAL,
    DoomLegacy detects if the libzip library is present on the user machine.
    This allows DoomLegacy to run without the feature, when the user does not
    have libzip.
    A libzip before version 1.2 does not have a seek function. A compile
    option will provide our own zip_seek function, so libzip 1.0 can be used.
  * Recorded Demos now include both the Version and Revision numbers, so
    revision specific behaviors can be enabled. DoomLegacy 1.48.6 has modified
    its native demo format, which is revision specific. Older demo formats are
    still playable.
  * Recognize and handle DeePsea Tall patches. Enabled with compile option
    DEEPSEA_TALL_PATCH. Michael Bauerle submitted the orignial patch, derived
    from crispy doom.

BUG FIXES 1.48.6

  * DoomLegacy and PrBoom monster infighting does not have missile
    invulnerability between monsters of the same species. Some other ports
    (Boom, MBF, Eternity engine) do not have the infight test, so their
    monsters are always invulnerable to missiles from their own species.
    Added another item to the infight control to select the behavior.
    Implements "Full Infight" setting with missile damage (Legacy, PrBoom).
    Implements other infight settings without missile damage (Boom, MBF,
    Eternity).
    Fixes BUG 0664.

    Added MBF infight logic, thats stops monsters from firing on friends.
  * Legacy demo would fail to start due to blocking the textcmd that loads the
    map.

    The Legacy 1.48.4 demo was recorded with player 0 issuing the map textcmd.
    Player 0 was not in the game yet, and this was detected as a textcmd from
    a non-existant player, which got caught by new security code. For textcmd
    issued before player 0 is in the game, the demo needs to use SERVER_PID.
    Fixed demo read to redirect player 0 demo textcmd to SERVER_PID.

    DoomLegacy 1.48 has a single long combined textbuf, containing the textcmd
    from all players. Within the combined textbuf, there are individual
    textcmd marked with the player id. Individual textcmd are still limited to
    255 chars as in an ordinary textbuf. The DoomLegacy 1.48.6 demo format has
    been changed to store the entire combined textbuf buffer into the player 0
    slot.
    This is simpler for recording and playback, has the same effect, and
    allows SERVER_PID textcmd, which the previous demo format did not.

    The commands to create a player (and other server actions) are now issued
    by SERVER_PID, where in older demos they were issued by player 0, before
    player 0 existed. DoomLegacy 1.48 has better protection against malicious
    network traffic than previous versions, and checking textcmd validity is
    part of the security protection. This fixes demo playback to work with the
    security checking.

    Changed the SERVER_PID to 250 now, for future expansion of players.

    This fixes bug 0665.
  * Fixed the moonwalk bug, where monsters would sometimes walk backward. This
    was due to a bad translation of an everything-in-one-expression to more
    maintainable code.
  * Make an oof sound when hit a 2s line, just like when hit a 1s line.
    Adopted from PrBoom, a Killough enhancement.
  * Make optional, and disabled, some old development hacks.
    Option DEVPARM_LOADING:
    Loaded development wads from a special directory. This used switches
    -wart, -devgame (even older -shdev, -regdev, -comdev).
    Option WADFILE_RELOAD:
    If a filename started with a tilde "~", it was taken as an indication to
    reload the file on every lump access. This was to enable leaving doom
    running while changing wad files.
    Option LOADING_DISK_ICON:
    Not implemented in any port anyway.
  * The Full Graphics startup was fragile, requiring constant fixing. Video
    startup now changes directly to the config modes, which is faster and
    cleaner. Removed some antiquated code and interactions, adopting an
    interface that puts the main code in control.
  * Fixed the violet line, trees, and tall sprites of "Lost civilization" wad.
    This required being able to save the same texture as both a transparent
    patch texture, for drawing hanging vines, and as a picture format texture,
    for drawing tiled walls. This fixes Bug 0663.
  * The fast drawing of wall textures required them to be a power-of-2 in
    width, so they could be tiled. To handle the case where it is not a
    power-of-2 in width, it now uses a slower masked draw similar to that in
    PrBoom, which also handles a negative offset. This fixes the large tree in
    "Lost civilization".
  * Fixed some old code to use POSIX fcntl, which allows it to compile on
    SunOS. Patches submitted by Michael Bauerle. Fixes Bug 0666.

(micha)

bison: remove now unused readline dependency.

Bump PKGREVISION.

Noted by tnn.

(wiz)

emacs27: Skip cocoa-specific Emacs.pdmp file from WRKREF check, too.

(kleink)

doc: Updated devel/bison to 3.7.3

(wiz)

bison: update to 3.7.3.

* Noteworthy changes in release 3.7.3 (2020-10-13) [stable]

** Bug fixes

  Fix concurrent build issues.

  The bison executable is no longer linked uselessly against libreadline.

  Fix incorrect use of yytname in glr.cc.

(wiz)

doc: Updated textproc/oniguruma to 6.9.6rc4

(kim)

oniguruma: update to 6.9.6rc4

Changes since 6.9.6rc3:
- Revert fix for CVE-2020-26159, which was actually a false positive from
  Coverity checks (issue #221).

(kim)

Updated sysutils/xenkernel411 to 4.11.4nb3
Updated sysutils/xenkernel413 to 4.13.1nb3

(bouyer)

Add upstream security patches for XSA286, XSA345, XSA346, XSA347.
Bump PKGREVISION.

(bouyer)

Add upstream security patches for XSA286, XSA345, XSA346, XSA347.
Bump PKGREVISION.

(bouyer)

Updated devel/py-packaging, databases/py-sqlalchemy

(adam)

py-sqlalchemy: updated to 1.3.20

1.3.20

Released: October 12, 2020
orm

[orm] [bug]

An ArgumentError with more detail is now raised if the target parameter for Query.join() is set to an unmapped object. Prior to this change a less detailed AttributeError was raised. Pull request courtesy Ramon Williams.

[orm] [bug]

Fixed issue where using a loader option against a string attribute name that is not actually a mapped attribute, such as a plain Python descriptor, would raise an uninformative AttributeError; a descriptive error is now raised.

engine

[engine] [bug]

Fixed issue where a non-string object sent to SQLAlchemyError or a subclass, as occurs with some third party dialects, would fail to stringify correctly. Pull request courtesy Andrzej Bartosiﾅгki.

[engine] [bug]

Repaired a function-level import that was not using SQLAlchemy窶冱 standard late-import system within the sqlalchemy.exc module.

sql

[sql] [bug]

Fixed issue where the pickle.dumps() operation against Over construct would produce a recursion overflow.

[sql] [bug]

Fixed bug where an error was not raised in the case where a column() were added to more than one table() at a time. This raised correctly for the Column and Table objects. An ArgumentError is now raised when this occurs.

postgresql

[postgresql] [usecase]

The psycopg2 dialect now support PostgreSQL multiple host connections, by passing host/port combinations to the query string. Pull request courtesy Ramon Williams.

See also

Specfiying multiple fallback hosts

[postgresql] [bug]

Adjusted the Comparator.any() and Comparator.all() methods to implement a straight 窶廸OT窶� operation for negation, rather than negating the comparison operator.

[postgresql] [bug]

Fixed issue where the ENUM type would not consult the schema translate map when emitting a CREATE TYPE or DROP TYPE during the test to see if the type exists or not. Additionally, repaired an issue where if the same enum were encountered multiple times in a single DDL sequence, the 窶彡heck窶� query would run repeatedly rather than relying upon a cached value.

mysql

[mysql] [usecase]

Adjusted the MySQL dialect to correctly parenthesize functional index expressions as accepted by MySQL 8. Pull request courtesy Ramon Williams.

[mysql] [bug]

The 窶徭kip_locked窶� keyword used with with_for_update() will emit a warning when used on MariaDB backends, and will then be ignored. This is a deprecated behavior that will raise in SQLAlchemy 1.4, as an application that requests 窶徭kip locked窶� is looking for a non-blocking operation which is not available on those backends.

[mysql] [bug]

Fixed bug where an UPDATE statement against a JOIN using MySQL multi-table format would fail to include the table prefix for the target table if the statement had no WHERE clause, as only the WHERE clause were scanned to detect a 窶徇ulti table update窶� at that particular point. The target is now also scanned if it窶冱 a JOIN to get the leftmost table as the primary table and the additional entries as additional FROM entries.

[mysql] [change]

Add new MySQL reserved words: cube, lateral added in MySQL 8.0.1 and 8.0.14, respectively; this indicates that these terms will be quoted if used as table or column identifier names.

mssql

[mssql] [bug]

Fixed issue where a SQLAlchemy connection URI for Azure DW with authentication=ActiveDirectoryIntegrated (and no username+password) was not constructing the ODBC connection string in a way that was acceptable to the Azure DW instance.

misc

[bug] [pool]

Fixed issue where the following pool parameters were not being propagated to the new pool created when Engine.dispose() were called: pre_ping, use_lifo. Additionally the recycle and reset_on_return parameter is now propagated for the AssertionPool class.

[bug] [associationproxy] [ext]

An informative error is now raised when attempting to use an association proxy element as a plain column expression to be SELECTed from or used in a SQL function; this use case is not currently supported.

[bug] [tests]

Fixed incompatibilities in the test suite when running against Pytest 6.x.

(adam)

py-packaging: updated to 20.4

20.4:

Canonicalize version before comparing specifiers.
Change type hint for canonicalize_name to return packaging.utils.NormalizedName. This enables the use of static typing tools (like mypy) to detect mixing of normalized and un-normalized names.

20.3:

Fix changelog for 20.2.

20.2:

Fix a bug that caused a 32-bit OS that runs on a 64-bit ARM CPU (e.g. ARM-v8, aarch64), to report the wrong bitness.

20.1:

Fix a bug caused by reuse of an exhausted iterator.

20.0:

Add type hints
Add proper trove classifiers for PyPy support
Scale back depending on ctypes for manylinux support detection
Use sys.implementation.name where appropriate for packaging.tags
Expand upon the API provded by packaging.tags: interpreter_name(), mac_platforms(), compatible_tags(), cpython_tags(), generic_tags()
Officially support Python 3.8
Add major, minor, and micro aliases to packaging.version.Version
Properly mark packaging has being fully typed by adding a py.typed file

(adam)

doc: Updated net/fehqlibs to 0.9.16

(schmonz)

Update to 16 (as 0.9.16). From the changelog:

- 19961114 change: dns_ip() now recognizes [1.2.3.4] and [f80::a]. tnx DS.
- scan_long() included for mess822x support.
- constmap() added from qmail.
- Changed ipv4/6-localhost and ipv4/6-loopback to
  ip4/6-localhost and ip4/6-loopback.

(schmonz)

Updated devel/py-importlib-resources, devel/py-importlib-metadata

(adam)

py-importlib-metadata: updated to 2.0.0

v2.0.0

importlib_metadata no longer presents a __version__ attribute. Consumers wishing to resolve the version of the package should query it directly with importlib_metadata.version('importlib-metadata').

(adam)

py-importlib-resources: updated to 3.0.0

v3.0.0

Package no longer exposes importlib_resources.__version__. Users that wish to inspect the version of importlib_resources should instead invoke .version('importlib_resources') from importlib-metadata ( stdlib or backport) directly. This change eliminates the dependency on importlib_metadata.
Package now always includes its data.
Declare hidden imports for PyInstaller.

v2.0.1

Select pathlib and contextlib imports based on Python version and avoid pulling in deprecated [pathlib](https://pypi.org/project/pathlib).

v2.0.0

Loaders are no longer expected to implement the abc.TraversableResources interface, but are instead expected to return TraversableResources from their get_resource_reader method.

(adam)

Updated graphics/freetype2, print/ghostscript-agpl

(adam)

ghostscript-agpl: updated to 9.53.3

9.53.3:
A crash (or silent, erroneous exit) on 64 bit Windows and other LLP64 type environments.
What appears to be a compiler optimiser bug in 64 bit Windows builds with Visual Studio 2019
A crash related to management of ICC profile objects
A crash on SPARC hardware due to an alignment mismatch in the bitmap cache
A parameter type mismatch that would cause Ghostcript to error out during initialisation, which affected 64 big, big endian architectures.
An expected side effect of another change that prevented multithreaded rendering and background rendering from working correctly.

(adam)

freetype2: updated to 2.10.4

FreeType 2.10.4

This is an emergency release, fixing a severe vulnerability in embedded PNG bitmap handling (see here for more).

All users should update immediately.

FreeType 2.10.3

This is a maintenance release, having better support for TrueType glyphs with overlapping contours. See the list of changes for more details.

A warning for distribution maintainers: Version 2.10.3 and later may break the build of ghostscript, due to ghostscript's use of a withdrawn macro that wasn't intended for external usage.

(adam)

Updated devel/py-pep517, archivers/py-zipp, print/py-reportlab, textproc/py-rst2pdf

(adam)

py-rst2pdf: updated to 0.98

0.98

Added: We can now create coverage reports using tox -e coverage.
Changed: Update Pygments styles
Changed: Update Pillow dependency in requirements.txt.
Changed: Use content-based comparison in tests.
Fixed: Elements with that that don't have an rst2pdf element (e.g. subtitles, inline references) no longer cause a crash,
Fixed: SVGlib is really optional now!
Fixed: The README, LICENSE and CHANGES files are now packaged with the release tarball.
Removed: Support for pdfrw has been removed and hence support for rendering SVGs using Inkscape has also been removed.

(adam)

py-reportlab: updated to 3.5.53

RELEASE 3.5.53  02/10/2020
---------------------------
* Fix bug that allowed type 0 postscript commands to persist

RELEASE 3.5.52  01/10/2020
---------------------------
* add support for DataMatrix barcode

RELEASE 3.5.51  24/09/2020
---------------------------
* fix malloc(0) issue in \_rl_accel.c \_fp_str thanks to Hans-Peter Jansen <hpj@urpla.net> @ openSUSE

RELEASE 3.5.50  18/09/2020
---------------------------
* Add BM ExtGState option (suggestion by tjj021 @ github
* Fix memory leak in \_renderPM.c

RELEASE 3.5.49  02/09/2020
---------------------------
* ViewerPreferencesPDFDictionary add /Duplex as possibility
* Doctemplate add support for all ViewerPreferencesPDFDictionary keys
* fix bugs in USPS_4State; Barcode inherits from Flowable and object.

RELEASE 3.5.48  18/08/2020
---------------------------
* bug fix for balanced column special case unsplittable half column

RELEASE 3.5.47    7/08/2020
---------------------------
* try to limit table style cell ranges

RELEASE 3.5.46  22/07/2020
---------------------------
* fix style-data mismatch in LinePlot found by Anshika Sahay

RELEASE 3.5.45  10/07/2020
---------------------------
* fix some documentation bugs reported by Lele Gaifax
* fix error in BarChart axes joining reported by Faisal.Fareed

RELEASE 3.5.44  26/06/2020
---------------------------
* ensure qr bar colour is passed (contrib by Lele Gaifax)
* fix img layout bug (reported by Lele Gaifax)

RELEASE 3.5.43  03/06/2020
---------------------------
* small change to improve strokeDashArray handling to allow [phase, [values]] and allow stroke-dashoffset
* Hatching class which inherits from shapes.Path
* add support for soft hyphens u'\xad'
* apply a pr from KENLYST @ bitbucket (gfe.py)

(adam)

py-zipp: updated to 3.3.1

v3.3.1
bpo-42043: Add tests capturing subclassing requirements.

(adam)

py-pep517: updated to 0.9.1

0.9
- Deprecated the higher level API which handles creating an environment and
  installing build dependencies. This was not very complete, and the `PyPA build
  project <https://github.com/pypa/build>`_ is designed for this use case.
- New ``python_executable`` parameter for :class:`.Pep517HookCaller` to run hooks
  with a different Python interpreter.
- Fix for locating the script to run in the subprocess in some scenarios.
- Fix example in README to get ``build-backend`` correctly.
- Created `documentation on Read the Docs
  <https://pep517.readthedocs.io/en/latest/index.html>`__
- Various minor improvements to testing.

(adam)

spidermonkey52: revamp PowerPC build fix

Swap my original fix for the newer and better means of linking against
devel/libatomic introduced by maya@ and he@.

(gutteridge)

mozjs68: fix minimum Rust version setting

The wrong variable was used (s/RUST_TYPE/RUST_REQ/).

(gutteridge)

librespot: add options for other audio backends. Leave default as portaudio.

(tnn)

ncspot: turn xcb off by default. Terminal apps should not need X11.

(tnn)

doc: Updated sysutils/backuppc to 4.4.0

(tnn)

backuppc: update to 4.4.0

This release contains several new features and some bug fixes.
New features include:
- any full/filled backup can be marked for keeping, which prevents any
  expiry or deletion
- any backup can be annotated with a comment (eg, "prior to upgrade of xyz")
- added metrics CGI that replaces RSS and adds Prometheus support
- tar XferMethod now supports xattrs and acls
- rsync XferMethod now correctly supports xattrs on directories and symlinks
- nightly pool scanning now verifies the md5 digests of a configurable
  fraction of pool files
- code runs through perltidy so format is now uniform

(tnn)

Set MYSQL_VERSION from within mysql.buildlink3.mk simialrly
to what pgsql.buildlink3.mk does for PostgreSQL.

And while here, document PGSQL_VERSION as variable set by
pgsql.buildlink3.mk

(otis)

firefox{,-l10n}

(maya)

firefox{,-l10n}: Update to 82.0

New:

With this release, Firefox introduces a number of improvements that make watching videos more delightful:

    the Picture-In-Picture button has a new look and position, making it easier for you to find and use the feature.
    Picture-In-Picture now has a keyboard shortcut for Mac users (Option + Command + Shift + Right bracket) that works before you start playing the video.
    For Windows users, Firefox now uses DirectComposition for hardware decoded video, which will improve CPU and GPU usage during video playback, improving battery life.

Firefox is faster than ever with improved performance on both page loads and start up time:

    Websites that use flexbox-based layouts load 20% faster than before;
    Restoring a session is 17% quicker, meaning you can more quickly pick up where you left off;
    For Windows users, opening new windows got quicker by 10%.

You can now explore new articles when you save a webpage to Pocket from the Firefox toolbar.

WebRender continues to roll out to more Firefox users on Windows.

Fixed:

Screen reader features which report paragraphs now correctly report paragraphs in Firefox instead of lines.

Various security fixes.

(maya)

mk/compiler/gfortran.mk: bump default from gcc9 to gcc10 on current aarch64

lang/gcc8 has patches for NetBSD/aarch64 and lang/gcc10 has support mostly
upstreamed. Nobody seems interested in fixing gcc9, but the pkgsrc
logic defaults to it when the system compiler is GCC 9 which leads to
broken fortran packages. Let's just skip forward to gcc10.

(tnn)

librespot: convert to CARGO_FEATURES

(tnn)

cargo.mk: move CARGO_FEATURES from lang/ncspot to here

It seems to be a generally useful feature. If a package supports
optional cargo dependencies then you may now (instead of messing with
CARGO_ARGS directly) set in your Makefile for example:

CARGO_NO_DEFAULT_FEATURES= YES
CARGO_FEATURES+= dbus pulseaudio

(tnn)

ncspot: use PKG_OPTIONS framework

In particular allow building w/o dbus and wide curses but also add
options for the various supported audio backends while here (untested).

Also promote libxcb to full dependency because it failed with
"ld: cannot find -lxcb" when disabling dbus.

(tnn)

gcc10: add some missing configure bits for aarch64*-*-netbsd*

(tnn)

net/syncthing: typo

(gdt)

net/syncthing: Further shrink protocol break comment

(gdt)

net/syncthing: Tone down fear of protocol breaks

While the protocol break issue used to be huge, it's been ok for a few
years and likely that upstream now feels obligated to avoid protocol
breaks.

Adjust the text to say that only updates with protocol breaks need
approval.

(gdt)

(security/py-certbot-*) regen distinfo

(mef)

emacs27: add missing file for Darwin cocoa build

Reported by Michael-John Turner on tech-pkg.

(wiz)

doc: Updated www/logswan to 2.1.8

(fcambus)

logswan: update to 2.1.8.

Logswan 2.1.8 (2020-10-19)

- Make displayUsage() static
- Removing some leading whitespace characters
- Constify methods and protocols names array
- Constify countries and continents names and ID arrays
- Enable FORTIFY_SOURCE level 2
- Call memset() to set all entry_data struct fields to zero

(fcambus)

doc: Updated converters/bdf2sfd to 1.1.5

(fcambus)

bdf2sfd: update to 1.1.5.

bdf2sfd 1.1.5 (2020-10-20)

- Enable FORTIFY_SOURCE level 2
- Check strdup() return value and error out on failed allocations

(fcambus)

clisp: Remove iconv warning avoidance.

This breaks the build on Darwin when using pkgsrc libiconv.

(jperkin)

bsnes: Check standard defines from <sys/endian.h>

Should let this build on NetBSD/aarch64.

(nia)

nhc98: Fails on aarch64 due to a lack of -m32

(nia)

libva-driver-vdpau: Skip if there's no VDPAU support

(nia)

intel-vaapi-driver: Only for x86

(nia)

g95: Not for aarch64

(nia)

go14: Not for aarch64

(nia)

mame: Install the correct executable name

(nia)

doc: Updated sysutils/onefetch to 2.5.0

(pin)

sysutils/onefetch: update to 2.5.0

v2.5.0
Summary: Lots of code refactoring and ASCII re-touching.

Bug Fixes:
-Identify author by email @yoichi
-Fix #180 @o2sh
-Fix layout with sixel image backend @yoichi

New features:
-Show number of Tags and Branches @reime005

Misc:
-Reduce size of Lua, Clojure, Jupyter-Notebooks, Tex, Zig ASCII logo @maash3r
-Reduce size of Swift, Objective-C ASCII logo @atluft
-Reduce size of Php @rootEnginear
-Reduce size of Nim @tianlangwu
-Better CI/CD @spenserblack
-New Go and Rust ASCII logo @nguyenquannnn
-Enable image backends on macOS @yoichi

(pin)

Add NetBSD/aarch64eb support.

Patch provided by ryo@.
No objections when proposed on tech-pkg@.

(rin)

Updated lang/nodejs, databases/prometheus

(adam)

prometheus: updated to 2.22.0

2.22.0

As announced in the 2.21.0 release notes, the experimental gRPC API v2 has been
removed.

[CHANGE] web: Remove APIv2.
[ENHANCEMENT] React UI: Implement missing TSDB head stats section.
[ENHANCEMENT] UI: Add Collapse all button to targets page.
[ENHANCEMENT] UI: Clarify alert state toggle via checkbox icon.
[ENHANCEMENT] Add rule_group_last_evaluation_samples and prometheus_tsdb_data_replay_duration_seconds metrics.
[ENHANCEMENT] Gracefully handle unknown WAL record types.
[ENHANCEMENT] Issue a warning for 64 bit systems running 32 bit binaries.
[BUGFIX] Adjust scrape timestamps to align them to the intended schedule, effectively reducing block size. Workaround for a regression in go1.14+.
[BUGFIX] promtool: Ensure alert rules are marked as restored in unit tests.
[BUGFIX] Eureka: Fix service discovery when compiled in 32-bit.
[BUGFIX] Don't do literal regex matching optimisation when case insensitive.
[BUGFIX] Fix classic UI sometimes running queries for instant query when in range query mode.

(adam)

nodejs: updated to 14.14.0

Version 14.14.0 (Current)

Notable Changes

- crypto: update certdata to NSS 3.56
- doc: add aduh95 to collaborators
- (SEMVER-MINOR) fs: add rm method
- (SEMVER-MINOR) http: allow passing array of key/val into writeHead
- (SEMVER-MINOR) src: expose v8::Isolate setup callbacks

(adam)

exiv2: extend list of platforms where GCC does not support -fcf-protection

(tnn)

libunwind: Remove patch .orig file, fix install.

(jperkin)

syncthing: Remove go1.14 requirement

(nia)

p5-DateTime-TimeZone: fix dependency

devel/p5-namespace-autoclean is a runtime dependency, not a tool or
test dependency. Ride previous update; this would have already been
broken before my commit.

(gutteridge)