chat/bitchx: fix SUBST pattern for replacing absolute path

(rillig)

cross/atasm: fix placeholder in manual page

(rillig)

mk/subst.mk: don't recommend {pre,do,post}-patch

These often lead to broken patches, unless the patches are generated very
cautiously. Because of this, pkglint already warns about this.

(rillig)

mk/subst.mk: warn about all noop patterns before erroring out

(rillig)

mk/subst.mk: omit ./ for sanely named files, quote filename patterns

(rillig)

doc: Updated security/wolfssl to 4.4.0

(fox)

security/wolfssl: Updates to v4.4.0

Changes since v4.3.0:

wolfSSL Release 4.4.0 (04/22/2020)

If you have questions about this release, feel free to contact us on our
info@ address.

Release 4.4.0 of wolfSSL embedded TLS has bug fixes and new features including:
New Feature Additions

  * Hexagon support.
  * DSP builds to offload ECC verify operations.
  * Certificate Manager callback support.
  * New APIs for running updates to ChaCha20/Poly1305 AEAD.
  * Support for use with Apache.
  * Add support for IBM s390x.
  * PKCS8 support for ED25519.
  * OpenVPN support.
  * Add P384 curve support to SP.
  * Add BIO and EVP API.
  * Add AES-OFB mode.
  * Add AES-CFB mode.
  * Add Curve448, X448, and Ed448.
  * Add Renesas Synergy S7G2 build and hardware acceleration.

Fixes

  * Fix for RSA public encrypt / private sign with RSA key sizes over 2048-bit.
  * Correct misspellings.
  * Secure renegotiation fix.
  * Fix memory leak when using ATECC and non-SECP256R1 curves for sign, verify,
    or shared secret.
  * Fix for K64 MMCAU with WOLFSSL_SMALL_STACK_CACHE.
  * Fix the RSA verify only build.
  * Fix in SP C implementation for small stack.
  * Fix using the auth key id extension is set, hash might not be present.
  * Fix when flattening certificate structure to include the subject alt names.
  * Fixes for building with ECC sign/verify only.
  * Fix for ECC and no cache resistance.
  * Fix memory leak in DSA.
  * Fix build on minGW.
  * Fix PemToDer() call in ProcessBuffer() to set more than ECC.
  * Fix for using RSA without SHA-512.
  * Add some close tags to the echoserver HTTP example output.
  * Miscellaneous fixes and updates for static analysis reports.
  * Fixes for time structure support.
  * Fixes for VxWorks support.
  * Fixes for Async crypto support.
  * Fix cache resist compile to work with SP C code.
  * Fixes for Curve25519 x64 asm.
  * Fix for SP x64 div.
  * Fix for DTLS edge case where CCS and Finished come out of order and the
    retransmit pool gets flushed.
  * Fix for infinite loop in SHA-1 with small inputs. Thanks to Peter W.
  * Fix for FIPS Hmac where wc_HmacInit() isn't used. wc_HmacSetKey() needs
    to initialize the Hmac structure. Type is set to NONE, and checked against
    NONE, not 0.
  * Fixes for SP RSA private operations.
  * Fixes for Xilinx SDK and Zynq UltraScale+ MPSoC
  * Fix leak when building with HAVE_AESGCM and NO_AES_DECRYPT. Thanks G.G.
  * Fixes for building ECC without ASN.
  * Fix for async TLSv1.3 issues.
  * Fix wc_KeyPemToDer() with PKCS1 and empty key.
  * Omit -fomit-frame-pointer from CFLAGS in configure.ac.

Improvements/Optimizations

  * Qt 5.12 and 5.13 support.
  * Added more digest types to Cryptocell RSA sign/verify.
  * Some memory usage improvements.
  * Speed improvements for mp_rand.
  * Improvements to CRL and OCSP support.
  * Refactor Poly1305 AEAD/MAC to reduce duplicate code.
  * Add blinding to RSA key gen.
  * Improvements to blinding.
  * Improvement and expansion of OpenSSL Compatibility Layer.
  * Improvements to ChaCha20.
  * Improvements to X.509 processing.
  * Improvements to ECC support.
  * Improvement in detecting 64-bit support.
  * Refactor to combine duplicate ECC parameter parsing code.
  * Improve keyFormat to be set by algId and let later key parsing produce fail.
  * Add test cases for 3072-bit and 4096-bit RSA keys.
  * Improve signature wrapper and DH test cases.
  * Improvements to the configure.ac script.
  * Added constant time RSA q modinv p.
  * Improve performance of SP Intel 64-bit asm.
  * Added a few more functions to the ABI list.
  * Improve TLS bidirectional shutdown behavior.
  * OpenSSH 8.1 support.
  * Improve performance of RSA/DH operations on x64.
  * Add support for PKCS7/CMS Enveloped data with fragmented encrypted content.
  * Example linker description for FIPS builds to enforce object ordering.
  * C# wrapper improvements. Added TLS client example and TLSv1.3 methods.
  * Allow setting MTU in DTLS.
  * Improve PKCS12 create for outputting encrypted bundles.
  * Constant time EC map to affine for private operations.
  * Improve performance of RSA public key ops with TFM.
  * Smaller table version of AES encrypt/decrypt.
  * Support IAR with position independent code (ROPI).
  * Improve speed of AArch64 assembly.
  * Support AES-CTR with AES-NI.
  * Support AES-CTR on esp32.
  * Add a no malloc option for small SP math.

This release of wolfSSL includes fixes for 2 security vulnerabilities.

  * For fast math, use a constant time modular inverse when mapping to affine
    when operation involves a private key - keygen, calc shared secret, sign.
    Thank you to Alejandro Cabrera Aldaya, Cesar Pereida Garc鱈a and
    Billy Bob Brumley from the Network and Information Security Group (NISEC)
    at Tampere University for the report.

  * Change constant time and cache resistant ECC mulmod. Ensure points being
    operated on change to make constant time. Thank you to Pietro Borrello at
    Sapienza University of Rome.

For additional vulnerability information visit the vulnerability page at
https://www.wolfssl.com/docs/security-vulnerabilities/

See INSTALL file for build instructions.
More info can be found on-line at https://wolfssl.com/wolfSSL/Docs.html

(fox)

mk/subst.mk: refactor main code

The indentation of the inner loop has been fixed.

The chmod is only run if the file has actually changed. In the other
case, the file would have been removed right after the chmod, which made
the chmod unnecessary.

For compatibility with ancient operating systems whose /bin/sh still does
not understand negated conditions (SunOS), these conditions have been
avoided and were written using && and || instead.

The inner loop has been flattened a bit, to compensate for the
indentation of the outer loop.

(rillig)

bootstrap/README: Note that SCO_SV has a user

(gdt)

doc: Updated textproc/bat to 0.14.0

(fox)

textproc/bat: Updates to 0.14.0

- Removes the obsolete patches for termios.

Changes since 0.13.0:

Features

  * Added a new --file-name <name>… option to overwrite the displayed filename(s)
    in the header. This is useful when piping input into bat. See #654 and #892 (@neuronull).
  * Added a new --generate-config-file option to create an initial configuration file
    at the right place. See #870 (@jmick414)

Bugfixes

  * Performance problems with C# source code have been fixed, see #677 (@keith-hall)
  * Performance problems with Makefiles have been fixed, see #750 (@keith-hall)
  * Fix bug when highlighting Ruby files with unindented heredocs, see #914 (@keith-hall)
  * A highlighting problem with Rust source code has been fixed, see #924 (@keith-hall)
  * Windows: short files that do not require paging are displayed and then lost, see #887
  * --highlight-line did not work correctly in combination with --tabs=0 and --wrap=never,
    see #937

Other

  * When saving/reading user-provided syntaxes or themes, bat will now maintain a
    metadata.yaml file which includes information about the bat version which was
    used to create the cached files. When loading cached files, we now print an error
    if they have been created with an incompatible version. See #882
  * Updated liquid dependency to 0.20, see #880 (@ignatenkobrain)

bat as a library

  * A completely new "high level" API has been added that is much more convenient
    to use. See the examples folder for the updated code. The older "low level"
    API is still available (basically everything that is not in the root bat
    module), but has been refactored quite a bit. It is recommended to only use
    the new "high level" API, if possible. This will be much easier to keep stable.
    Note that this should still be considered a "beta" release of bat-as-a-library.
    For more details and some screenshots of the example programs, see #936.

  * Stripped out a lot of binary-only dependencies, see #895 and #899 (@dtolnay)

    This introduces a features = ["application"] which is enabled by default and pulls in
    everything required by bat the application. When depending on bat as a library, downstream
    Cargo.toml should disable this feature to cut out inapplicable heavy dependencies:

    [dependencies]
    bat = { version = "0.14", default-features = false }

    Other optional functionality has also been put behind features: paging and git support.

  * Allow using the library with older syntect, see #896 and #898 (@dtolnay)

New syntaxes

  * Rego, see #872 (@patrick-east)
  * Stylo, see #917

Thanks

Many thanks to @keith-hall for all the help with various Sublime syntax problems!

(fox)

regress/infra-unittests: ensure that subst.mk preserves the x bit

(rillig)

doc: Updated audio/fasttracker2 to 1.21

(fox)

audio/fasttracker2: Updates to v1.21

Changes since v1.20:

v1.21 - 22.04.2020
- macOS/Linux: The initial working directory would not get properly set when
  opening Disk Op.
- Bugfix: The custom directory paths in the config could contain unwanted junk
  at the end if the loaded config file was saved from real FT2.
- Bugfix: If you were skilled enough to beat the very last Nibbles level, your
  potential entry in the highscore table would show garbled level graphics.
- Show a warning if either of the Buttons/Desktop palette colors are so dark
  that you might have issues seeing the walls in Nibbles.
- "Space Pigs" palette replaced with a new (low contrast) "Dark mode" palette
- Some more small miscellaneous fixes not worth of a mention

(fox)

Updated print/py-weasyprint, textproc/py-pysrt

(adam)

py-pysrt: updated to 1.1.2

1.1.2:
Unknown changes

(adam)

regress/infra-unittests: add more tests for subst.mk

(rillig)

py-weasyprint: updated to 51

Version 51

Dependencies:
Pyphen 0.9.1+ is now needed

New features:
* Add support of element() and running()
* Add HTML element to Box class
* Support larger and smaller values for font-size

Bug fixes:
* Fix how fonts used for macOS tests are installed
* Fix various crashes due to line breaking bugs
* Fix typo in variable name
* Don窶冲 crash when string-set is set to none
* Keep font attributes when text lines are modified
* Don窶冲 let presentational hints add decorations on tables with no borders
* Don窶冲 crash on improper var() values
* Fix rendering of header and footer for empty tables
* Avoid quadratic time relative to tree depth when setting page names

(adam)

mk/subst.mk: prevent filename expansion using "set -f"

This avoids creating a temporary directory.

The "set -f" option is not used anywhere else in pkgsrc, even though it
has been available since 1985 in the 8th Edition of Research Unix. Even
AIX and IRIX have that option, so it seems a safe bet.

(rillig)

vice: Switch to ffmpeg4

(nia)

xvidcap: No it isn't.

(nia)

ffplay2: Follow HOMEPAGE redirect

(nia)

ffmpeg*: Follow HOMEPAGE redirect

(nia)

doc: Removed multimedia/kodi

(nia)

multimedia: Remove kodi - broken for a long time now

If anyone wants to attempt re-packaging a more recent version of
kodi I'd recommend starting over (also, happy to help and provide
advice).

(nia)

freerdp: Mark BROKEN

(nia)

doc: Updated audio/pianobar to 2020.04.05

(nia)

pianobar: Update to 2020.04.05

Release 2020.04.05

- Support writing audio to named pipe (audio_pipe)
- Add resampling (sample_rate)
- Fix station list not showing more than 95 stations

(nia)

album: Switch to ffmpeg4

(nia)

doc: Updated multimedia/ffmpegthumbnailer to 2.2.2

(nia)

ffmpegthumbnailer: Update to 2.2.2

FFmpegThumbnailer 2.2.2
- Removed unstable continuous thumbnail creation

FFmpegThumbnailer 2.2.1
- CMake improvements: required CMake version is now 3.5 or newer
- Fix anamorphic height (thanks to cmrd-senya)
- Fix libffmpegthumbnailer.pc to work with multilib systems (thanks to orbea)
- Fix rotation of 180属 rotated videos (thanks to munzli)
- Fix prefer_embedded_metadata in c api (thanks to aedis)
- Fix crash when setting a log callback using the c api
- Check for https as well when skipping stat call (thanks to HearstCorp)
- Support specifying the size as string using the c api
- Support raw rgb data as image type
- Print warnings on stderr instead of stdout
- Support for continuous thumbnail creation

(nia)

webkit-gtk/qt5-qtwebkit: Provide instructions on installing gst plugins

(nia)

ffmpeg2theora: Switch to ffmpeg4

(nia)

doc/CHANGES-2020: Removed ffmpeg010

(nia)

multimedia: Remove ffmpeg010

Obsolete, no remaining users in pkgsrc

(nia)

gst-plugins0.10-ffmpeg: Switch to internal ffmpeg copy.

This is the last remaining user of ffmpeg0 and it makes sense to only
build the features it wants to have.

(nia)

doc: Updated multimedia/ffmpeg2 to 2.8.15

(nia)

ffmpeg2: Very late update to 2.8.15

version 2.8.15:
- avcodec/dvdsub_parser: Allocate input padding
- avcodec/dvdsub_parser: Init output buf/size
- avcodec/imgconvert: fix possible null pointer dereference
- swresample/arm: rename labels to fix xcode build error
- avformat/utils: fix mixed declarations and code
- libwebpenc_animencoder: add missing braces to struct initialization
- avformat/movenc: Check input sample count
- avcodec/mjpegdec: Check for odd progressive RGB
- avformat/movenc: Check that frame_types other than EAC3_FRAME_TYPE_INDEPENDENT have a supported substream id
- avformat/mms: Add missing chunksize check
- avformat/pva: Check for EOF before retrying in read_part_of_packet()
- avcodec/indeo4: Check for end of bitstream in decode_mb_info()
- avcodec/shorten: Fix undefined addition in shorten_decode_frame()
- avcodec/jpeg2000dec: Fixes invalid shifts in jpeg2000_decode_packets_po_iteration()
- avcodec/jpeg2000dec: Check that there are enough bytes for all tiles
- avcodec/escape124: Fix spelling errors in comment
- avcodec/ra144: Fix integer overflow in ff_eval_refl()
- avcodec/cscd: Check output buffer size for lzo.
- avcodec/escape124: Check buf_size against num_superblocks
- avcodec/mjpegdec: Check for end of bitstream in ljpeg_decode_rgb_scan()
- avcodec/aacdec_fixed: Fix undefined integer overflow in apply_independent_coupling_fixed()
- avutil/common: Fix undefined behavior in av_clip_uintp2_c()
- fftools/ffmpeg: Fallback to duration if sample rate is unavailable
- avformat/mov: Only set pkt->duration to non negative values
- avcodec/h264_mc_template: Only prefetch motion if the list is used.
- avcodec/xwddec: Use ff_set_dimensions()
- avcodec/wavpack: Fix overflow in adding tail
- avcodec/shorten: Fix multiple integer overflows
- avcodec/shorten: Sanity check nmeans
- avcodec/mjpegdec: Fix integer overflow in ljpeg_decode_rgb_scan()
- avcodec/truemotion2: Fix overflow in tm2_apply_deltas()
- avcodec/opus_silk: Change silk_lsf2lpc() slightly toward silk/NLSF2A.c
- avcodec/amrwbdec: Fix division by 0 in find_hb_gain()
- avformat/mov: replace a value error by clipping into valid range in mov_read_stsc()
- avformat/mov: Break out early if chunk_count is 0 in mov_build_index()
- avcodec/fic: Avoid some magic numbers related to cursors
- avcodec/g2meet: ask for sample with overflowing RGB
- avcodec/aacdec_fixed: use 64bit to avoid overflow in rounding in apply_dependent_coupling_fixed()
- avcodec/mpeg4videoenc: Use 64 bit for times in mpeg4_encode_gop_header()
- avcodec/mlpdec: Only change noise_type if the related fields are valid
- indeo4: Decode all or nothing of a band header.
- avformat/mov: Only fail for STCO/STSC contradictions if both exist
- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD97iH0 / COMPOSE_DD137iL0
- avcodec/fic: Check available input space for cursor
- avcodec/g2meet: Check RGB upper limit
- avcodec/jpeg2000dec: Fix undefined shift in the jpeg2000_decode_packets_po_iteration() CPRL case
- avcodec/jpeg2000dec: Skip init for component in CPRL if nothing is to be done
- avcodec/g2meet: Change order of operations to avoid undefined behavior
- avcodec/flac_parser: Fix infinite loop
- avcodec/wavpack: Fix integer overflow in DEC_MED() / INC_MED()
- avcodec/error_resilience: Fix integer overflow in filter181()
- avcodec/h263dec: Check slice_ret in mspeg4 slice loop
- avcodec/elsdec: Fix memleaks
- avcodec/vc1_block: simplify ac_val computation
- avcodec/ffv1enc: Check that the crc + version combination is supported
- lavf/http.c: Free allocated client URLContext in case of error.
- avcodec/dsicinvideo: Fail if there is only a small fraction of the data available that comprises a full frame
- avcodec/dsicinvideo: Propagate errors from cin_decode_rle()
- avcodec/dfa: Check dimension against maximum
- avcodec/cinepak: Skip empty frames
- avcodec/cinepak: move some checks prior to frame allocation
- swresample/arm: remove unintentional relocation.
- doc/APIchanges: Fix typos in hashes
- avformat/utils: Check cur_dts in update_initial_timestamps() more
- avcodec/utils: Enforce minimum width also for VP5/6
- avcodec/truemotion2: Propagate out of bounds error from GET_TOK()
- avcodec/mjpegdec: Check input buffer size.
- lavc/libopusdec: Allow avcodec_open2 to call .close
- avcodec/movtextdec: Check style_start/end
- avcodec/aacsbr_fixed: Fix integer overflow in sbr_hf_assemble()
- swresample/swresample: Fix for seg fault in swr_convert_internal() -> sum2_float during dithering.
- avcodec/aacdec_fixed: Fix integer overflow in apply_independent_coupling_fixed()
- avcodec/cscd: Error out when LZ* decompression fails
- avcodec/imgconvert: Fix loss mask bug in avcodec_find_best_pix_fmt_of_list()
- avcodec/wmalosslessdec: Fix null pointer dereference in decode_frame()
- avcodec/tableprint_vlc: Fix build failure with --enable-hardcoded-tables
- avcodec/get_bits: Make sure the input bitstream with padding can be addressed
- avformat/mov: Check STSC and remove invalid entries
- avcodec/nuv: rtjpeg with dimensions less than 16 would result in no decoded pixels thus reject it
- avcodec/nuv: Check for minimum input size for uncomprssed and rtjpeg
- avcodec/wmalosslessdec: Reset num_saved_bits on error path
- avformat/mov: Fix integer overflows related to sample_duration
- avformat/oggparseogm: Check lb against psize
- avformat/oggparseogm: Fix undefined shift in ogm_packet()
- avformat/avidec: Fix integer overflow in cum_len check
- avformat/oggparsetheora: Do not adjust AV_NOPTS_VALUE
- avformat/utils: Fix integer overflow of fps_first/last_dts
- libavformat/oggparsevorbis: Fix memleak on multiple headers
- avcodec/bintext: sanity check dimensions
- avcodec/utvideodec: Check subsample factors
- avcodec/smc: Check input packet size
- avcodec/cavsdec: Check alpha/beta offset
- avcodec/diracdec: Fix integer overflow in mv computation
- avcodec/jpeg2000dwt: Fix integer overflows in sr_1d53()
- avcodec/diracdec: Use int64 in global mv to prevent overflow
- avformat/hvcc: zero initialize the nal buffers past the last written byte

(nia)

spek: Switch to ffmpeg4. Patch from FreeBSD Ports.

(nia)

doc/CHANGES-2020: Add successor lines

(nia)

doc: Removed multimedia/ffplay1

(nia)

doc: Removed multimedia/ffmpeg1

(nia)

multimedia: Remove ffmpeg1. Obsolete ffmpeg version.

(nia)

freerdp: Switch to ffmpeg4. NB: doesn't build due to openssl changes

(nia)

cherokee: Switch to ffmpeg4. Note that the ffmpeg option was broken

(nia)

vic-devel: remove unsupported options that references old ffmpeg version

(nia)

libdlna: Switch to ffmpeg4

(nia)

dvd-slideshow: Switch to ffmpeg4

(nia)

doc: Removed multimedia/fuppes

(nia)

multimedia: Remove fuppes.

This is unmaintaned upstream and has many unsupported library dependencies.
It's also now seemingly unique to pkgsrc.

(nia)

doc: Removed multimedia/pspvc

(nia)

pspvc: Remove. Unmaintained upstream and now unique to pkgsrc.

Broken with supported ffmpegs. Standalone ffmpeg4 is good enough to
do what this does.

(nia)

doc: Removed x11/xvidcap-gtk2

(nia)

doc: Updated x11/xvidcap to 1.1.7

(nia)

xvidcap: Update to 1.1.7

Unknown changes. This is a very old release and the NEWS file is empty.

(nia)

Fix race condition with the creation of the obj directory.

(joerg)

bootstrap/README: Note lack of cwrappers on AIX

(gdt)

doc: Updated www/squid4 to 4.11

(mef)

(www/squid4) Updated to 4.10 (and clear pkglint one point in patch)

Changes to squid-4.11 (18 Apr 2020):

        - Bug 5036: capital 'L's in logs when daemon queue overflows
        - Bug 5022: Reconfigure kills Coordinator in SMP+ufs configurations
        - Bug 5016: systemd thinks Squid is ready before Squid listens
        - kerberos_ldap_group: fix encryption type for cross realm check
        - HTTP: Ignore malformed Host header in intercept and reverse proxy mode
        - Fix Digest authentication nonce handling
        - Supply ALE to request_header_add/reply_header_add
        - ... and some documentation updates
        - ... and some compile fixes

(mef)

bootstrap/README: List platforms in active use

Prompted by discussion of whether IRIX users exist on pkgsrc-users@,
list the pkgsrc platforms (foo, such that mk/platform/foo.mk exists)
according to whether they are actively maintained or not.

NB: This is merely informational, and not a deletion proposal.

(gdt)

doc: Removed multimedia/mkv2mp4

(nia)

mkv2mp4: Remove

This is now dead upstream, unique to pkgsrc, and standalone ffmpeg can do
approximately the same job.

(nia)

Properly added net/ocamlnet to CHANGES

(jaapb)

doc: Updated net/ocamlnet to 4.1.7

(jaapb)

Updated net/ocamlnet to version 4.1.7.

This adds support for OCaml 4.10.

(jaapb)

doc: Removed multimedia/libquicktime

(nia)

libquicktime: Remove - dead upstream, fails with newer ffmpeg, CVEs many

I was going to apply a chain of patches to help this build again with
a supported ffmpeg but then I realized that nothing in pkgsrc uses this.

ffmpeg itself should be a good enough replacement for some of the
tools this package provides.

(nia)

Allow NetBSD distribution tarball file extension to be defined with DISTRIB_EXT.
Default to tgz.
Bump to version 1.39

(sborrill)

Updated devel/abseil, net/libtorrent-rasterbar, net/qbittorrent

(adam)

qbittorrent: updated to 4.2.4

v4.2.4
- BUGFIX: Fix sub-sorting of Transfer list
- BUGFIX: Fix wrong logic that disables "prevent sleeping" timer
- BUGFIX: Set disk cache size for older libtorrent versions
- BUGFIX: Sort locale language list
- BUGFIX: Remove white outline around mascot.png
- BUGFIX: Various fixes in configuring the chosen network interface and not leaking the IP
- BUGFIX: Save "resume data" when torrent storage is moved
- BUGFIX: Avoid holding encoded resume data in memory
- BUGFIX: Fix date format for "Last seen complete"
- BUGFIX: Remove deprecated strict super seeding mode from advanced settings
- BUGFIX: Change default stop_tracker_timeout settings
- BUGFIX: Convert the Log widget to use custom View/Model
- BUGFIX: Change default upload slot choking limits
- BUGFIX: Don't uncheck Authentication checkbox when changing proxy type
- BUGFIX: Reduce ambiguity for selecting tray icons
- WEBUI: Fix unable to add multiple peers in WebUI
- WEBUI: Fix UPnP lease duration get/set
- SEARCH: Detect python3 executable on Windows

(adam)

libtorrent-rasterbar: updated to 1.2.6

1.2.6:
fix peer timeout logic
simplify proxy handling. A proxy now overrides listen_interfaces
fix issues when configured to use a non-default choking algorithm
fix issue in reading resume data
revert NXDOMAIN change from 1.2.4
don't open any listen sockets if listen_interfaces is empty or misconfigured
fix bug in auto disk cache size logic
fix issue with outgoing_interfaces setting, where bind() would be called twice
add build option to disable share-mode
support validation of HTTPS trackers
deprecate strict super seeding mode
make UPnP port-mapping lease duration configurable
deprecate the bittyrant choking algorithm
add build option to disable streaming

(adam)

abseil: updated to 20200225.2

20200225.2:
This release fixes the list of dependencies of absl::Cord in the CMake build.

(adam)

Updated databases/prometheus, www/py-WebTest

(adam)

ffmpeg*: Explain more practical concerns with linking against fdk-aac.

(nia)

py-WebTest: updated to 2.0.34

2.0.34:
- Fix the test ``length == 0`` in ``check_content_type``.
- Treat ``<input type="search">`` like ``<input type="text">``.
- Handle query parameters for the ``head`` method.

(adam)

prometheus: updated to 2.17.2

2.17.2:
[BUGFIX] Federation: Register federation metrics
[BUGFIX] PromQL: Fix panic in parser error handling
[BUGFIX] Rules: Fix reloads hanging when deleting a rule group that is being evaluated
[BUGFIX] TSDB: Fix a memory leak when prometheus starts with an empty TSDB WAL
[BUGFIX] TSDB: Make isolation more robust to panics in web handlers

(adam)

ffmpeg*: Sync default options with ffmpeg4

(nia)

py-astroid: relax wrapt version requirement

(adam)

doc: Updated lang/mozjs60 to 60.8.0nb4

(wiz)

mozjs60: restore patch to distinfo

Bump PKGREVISION.

(wiz)

dnsdist: Always use the pkgsrc editline layout.

(jperkin)

Updated devel/blosc, devel/colordiff

(adam)

colordiff: updated to 1.0.19

Changes between 1.0.18 and 1.0.19

Add 'difffile' color option, allowing more git-like coloring (separate color for header of each changed file).
Improved portability of Makefile.
Provide support for 24-bit colour strings.

(adam)

blosc: updated to 1.18.1

Changes from 1.17.1 to 1.18.1
- Fixed the copy of the leftovers of a chunk when its size is not a
  multiple of the typesize.  Although this is a very unusual situation,
  it can certainly happen (e.g.
  https://github.com/Blosc/python-blosc/issues/220).

(adam)

doc: Updated devel/meson to 0.54.0nb1

(triaxx)

meson: disable FreeBSD specific condition

pkgsrc changes:
---------------
  * Add a patch that reverts https://github.com/mesonbuild/meson/commit/aba8792.
    This commit introduced a condition to match FreeBSD path norm for
    pkg-config files. This condition is incompatible with the pkgsrc conventions.
  * Bump revision.

(triaxx)

Updated devel/py-autopep8, security/py-asyncssh

(adam)

py-asyncssh: updated to 2.2.1

Release 2.2.1:

Added optional timeout parameter to SSHClientProcess.wait() and SSHClientConnection.run() methods.
Created subclasses for SFTPError exceptions, allowing applications to more easily have distinct exception handling for different errors.
Fixed an issue in SFTP parallel I/O related to handling low-level connection failures. Thanks go to Mikhail Terekhov for reporting this issue.
Fixed an issue with SFTP file copy where a local file could sometimes be left open if an attempt to close a remote file failed.
Fixed an issue in the handling of boolean return values when SSHServer.server_requested() returns a coroutine. Thanks go to Tom van Neerijnen for contributing this fix.
Fixed an issue with passing tuples to the SFTP copy functions. Thanks go to Marc Gagn辿 for reporting this and doing the initial analysis.

(adam)

py-autopep8: updated to 1.5.2

version 1.5.2
new features
* support parallel jobs for diff option
changes
* enable exclude option when specify directly file args
fix bugs
* related code E702
* related code W503/W504

(adam)

Updated security/py-cryptography, security/py-cryptography_vectors, textproc/py-readme_renderer, finance/py-stripe

(adam)

py-stripe: updated to 2.46.0

2.46.0:
Add support for `billing_portal` namespace and `Session` resource and APIs

(adam)

py-readme_renderer: updated to 26.0

26.0:
* Fix regression with image width/height attributes

25.0:
* Support Python 3.7 and 3.8
* Drop support for Python 3.4
* Require Pygments>=2.5.1

(adam)

py-cryptography py-cryptography_vectors: updated to 2.9.2

2.9.2:
* Updated the macOS wheel to fix an issue where it would not run on macOS
  versions older than 10.15.

(adam)

qtermwidget: amend the build fix patching

Also fix macOS builds (upstream has done the same), and note the PR I
submitted for the NetBSD fix (which I should have sent months ago).

(gutteridge)

Comment that PHP_VERSIONS_ACCEPTED=56 is for php-mysql

(dsainty)

www/go-minify: use ${RM} instead of rm.

(nikita)

Updated devel/py-xdis, lang/py-uncompyle6

(adam)

py-uncompyle6: updated to 3.6.6

3.6.6: 2020-4-20 Love in the time of Cholera

The main reason for this release is an incompatablity bump in xdis which handles 3.7 SipHash better.

Go over "yield" as an expression precidence
Some small alignment with code in decompyle3 for "or" and "and" was done

(adam)

py-xdis: updated to 4.4.0

4.4.0:
Incompatibility: load_module() and load_module_from_file_object() now return a couple more parameters: is_pypy, and the sip_hash value when that is available. The timestamp and file_size returned on these functions is now None when they aren't available. Previously timestamp had been 0.

--asm option fixes
Show sip hash in 3.7+ when that is used
Handle PEP 552 bytecode-file variations more properly
Detect more intermediate Python versions in load_code_from_file_object()
3.8+ posonlyargcount in assembly... rename Kw-only field to Keyword-only
Add 3.5 canonic bytecode version Marshal dumps()
convert from byte() to str() in dumps() when needed in 3.x
to_native() convert to bytes from string when needed in 3.x.
clean up loading code by using float version values rather than magic values

(adam)

Updated www/py-httplib2, net/py-responses

(adam)

py-responses: updated to 0.10.14

Responses 0.10.14
Version bump to align tags with setup.py

Responses 0.10.13
Improved README examples.
Improved handling of unicode bodies. The inferred content-type for unicode bodies is now text/plain; charset=utf-8.
Streamlined querysting matching code.

(adam)

py-httplib2: updated to 0.17.3

0.17.3
* IronPython2.7: relative import iri2uri fixes ImportError

(adam)

libgeotiff: Remove old comment

(gdt)

rvault: Reset PKGREVISION after update

(wiz)

rvault: update to v0.3.

(rmind)

weechat: Use SUBST framework to adjust hardcoded pkg-config python checks

The previous ${LN} incantation missed possible python3-embed.pc file
(present in python38) ending up in a not-working python support.

Do not adjust file under ${BUILDLINK_DIR} and use the SUBST framework
to adjust all python3 pkg-config invocations.

(leot)

Pullup ticket #6165 - requested by taca
lang/ruby27-base: security fix

Revisions pulled up:
- lang/ruby/rubyversion.mk                                      1.219
- lang/ruby27-base/PLIST                                        1.2
- lang/ruby27-base/distinfo                                    1.2

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Wed Apr  1 15:23:15 UTC 2020

  Modified Files:
  pkgsrc/lang/ruby: rubyversion.mk
  pkgsrc/lang/ruby27-base: PLIST distinfo

  Log Message:
  lang/ruby27-base: update to 2.7.1

  Update ruby27-base (and ruby27) to 2.7.1.

  2.7.1 (2020-03-31)

  This release includes security fixes. Please check the topics below for
  details.

  * CVE-2020-16255: Unsafe Object Creation Vulnerability in JSON (Additional
    fix)
  * CVE-2020-10933: Heap exposure vulnerability in the socket library

(bsiegert)