Need bison, build came tumbling down as the long stale copy in OS X Tiger was
called.

(sevan)

py-waitress: updated to 1.3.0

1.3.0:

Deprecations

- The send_bytes adjustment now defaults to 1 and is deprecated
  pending removal in a future release.

Features

- Add a new outbuf_high_watermark adjustment which is used to apply
  backpressure on the app_iter to avoid letting it spin faster than data
  can be written to the socket. This stabilizes responses that iterate quickly
  with a lot of data.

- Stop early and close the app_iter when attempting to write to a closed
  socket due to a client disconnect. This should notify a long-lived streaming
  response when a client hangs up.

- Adjust the flush to output SO_SNDBUF bytes instead of whatever was
  set in the send_bytes adjustment. send_bytes now only controls how
  much waitress will buffer internally before flushing to the kernel, whereas
  previously it used to also throttle how much data was sent to the kernel.
  This change enables a streaming app_iter containing small chunks to
  still be flushed efficiently.

Bugfixes

- Upon receiving a request that does not include HTTP/1.0 or HTTP/1.1 we will
  no longer set the version to the string value "None". See

- When a client closes a socket unexpectedly there was potential for memory
  leaks in which data was written to the buffers after they were closed,
  causing them to reopen.

- Fix the queue depth warnings to only show when all threads are busy.

- Trigger the app_iter to close as part of shutdown. This will only be
  noticeable for users of the internal server api. In more typical operations
  the server will die before benefiting from these changes.

- Fix a bug in which a streaming app_iter may never cleanup data that has
  already been sent. This would cause buffers in waitress to grow without
  bounds. These buffers now properly rotate and release their data.

- Fix a bug in which non-seekable subclasses of io.IOBase would trigger
  an exception when passed to the wsgi.file_wrapper callback.

(adam)

gpgme: updated to 1.13.1

Noteworthy changes in version 1.13.1:
* cpp: gpgme_set_global_flag is now wrapped.
* w32: Improved handling of unicode install paths.
* w32: The gpgme_io_spawn error message is now only shown once.
* Fixed a crash introduced in 1.13.0 when working with S/MIME.
* w32: Fixed format string errors introduced in 1.13.0 that could
  cause crashes.
* w32: Fixed an error in the new diagnostic gpgsm support introduced
  in 1.13.0 that caused crashes in low fd scenarios.
* python: Fixed a DecryptionError Exception.
* python: No longer raises BadSignatures from decrypt(verify=True).

(adam)

Updated textproc/py-jsonpickle, databases/py-sqlalchemy, databases/py-sqlalchemy-utils, devel/py-mako, databases/py-alembic, lang/py-parso

(adam)

py-parso: updated to 0.5.0

0.5.0:
- **Breaking Change** comp_for is now called sync_comp_for for all Python
  versions to be compatible with the Python 3.8 Grammar
- Added .pyi stubs for a lot of the parso API
- Small FileIO changes

(adam)

py-alembic: updated to 1.0.11

version: 1.0.11

SQLite server default reflection will ensure parenthesis are surrounding a
column default expression that is detected as being a non-constant
expression, such as a datetime() default, to accommodate for the
requirement that SQL expressions have to be parenthesized when being sent
as DDL.  Parenthesis are not added to constant expressions to allow for
maximum cross-compatibility with other dialects and existing test suites
(such as Alembic's), which necessarily entails scanning the expression to
eliminate for constant numeric and string values. The logic is added to the
two "reflection->DDL round trip" paths which are currently autogenerate and
batch migration.  Within autogenerate, the logic is on the rendering side,
whereas in batch the logic is installed as a column reflection hook.

Improved SQLite server default comparison to accommodate for a text()
construct that added parenthesis directly vs. a construct that relied
upon the SQLAlchemy SQLite dialect to render the parenthesis, as well
as improved support for various forms of constant expressions such as
values that are quoted vs. non-quoted.

Fixed bug where the "literal_binds" flag was not being set when
autogenerate would create a server default value, meaning server default
comparisons would fail for functions that contained literal values.

Added support for MySQL "DROP CHECK", which is added as of MySQL 8.0.16,
separate from MariaDB's "DROP CONSTRAINT" for CHECK constraints.  The MySQL
Alembic implementation now checks for "MariaDB" in server_version_info to
decide which one to use.

Fixed issue where MySQL databases need to use CHANGE COLUMN when altering a
server default of CURRENT_TIMESTAMP, NOW() and probably other functions
that are only usable with DATETIME/TIMESTAMP columns.  While MariaDB
supports both CHANGE and ALTER COLUMN in this case, MySQL databases only
support CHANGE.  So the new logic is that if the server default change is
against a DateTime-oriented column, the CHANGE format is used
unconditionally, as in the vast majority of cases the server default is to
be CURRENT_TIMESTAMP which may also be potentially bundled with an "ON
UPDATE CURRENT_TIMESTAMP" directive, which SQLAlchemy does not currently
support as a distinct field.  The fix addiionally improves the server
default comparison logic when the "ON UPDATE" clause is present and
there are parenthesis to be adjusted for as is the case on some MariaDB
versions.

Warnings emitted by Alembic now include a default stack level of 2, and in
some cases it's set to 3, in order to help warnings indicate more closely
where they are originating from.  Pull request courtesy Ash Berlin-Taylor.

Replaced the Python compatbility routines for getargspec() with a fully
vendored version based on getfullargspec() from Python 3.3.
Originally, Python was emitting deprecation warnings for this function in
Python 3.8 alphas.  While this change was reverted, it was observed that
Python 3 implementations for getfullargspec() are an order of magnitude
slower as of the 3.4 series where it was rewritten against Signature.
While Python plans to improve upon this situation, SQLAlchemy projects for
now are using a simple replacement to avoid any future issues.

(adam)

py-mako: updated to 1.0.13

version: 1.0.13
Improved the line-number tracking for source lines inside of Python  <%
... %> blocks, such that text- and HTML-formatted exception traces such
as that of  :func:.html_error_template now report the correct source line
inside the block, rather than the first line of the block itself.
Exceptions in <%! ... %> blocks which get raised while loading the
module are still not reported correctly, as these are handled before the
Mako code is generated.

(adam)

py-sqlalchemy-utils: updated to 0.34.0

0.34.0:
- Removed array_agg compilation which was never a good idea and collided with the latest version of SA.
- Removed deprecation warnings

(adam)

py-sqlalchemy: updated to 1.3.5

1.3.5

orm

[orm] [bug]
Fixed a series of related bugs regarding joined table inheritance more than two levels deep, in conjunction with modification to primary key values, where those primary key columns are also linked together in a foreign key relationship as is typical for joined table inheritance. The intermediary table in a three-level inheritance hierachy will now get its UPDATE if only the primary key value has changed and passive_updates=False (e.g. foreign key constraints not being enforced), whereas before it would be skipped; similarly, with passive_updates=True (e.g. ON UPDATE CASCADE in effect), the third-level table will not receive an UPDATE statement as was the case earlier which would fail since CASCADE already modified it. In a related issue, a relationship linked to a three-level inheritance hierarchy on the primary key of an intermediary table of a joined-inheritance hierarchy will also correctly have its foreign key column updated when the parent object窶冱 primary key is modif
ied, even if that parent object is a subclass of the linked parent class, whereas before these classes would not be counted.

[orm] [bug]
Fixed bug where the Mapper.all_orm_descriptors accessor would return an entry for the Mapper itself under the declarative __mapper___ key, when this is not a descriptor. The .is_attribute flag that窶冱 present on all InspectionAttr objects is now consulted, which has also been modified to be True for an association proxy, as it was erroneously set to False for this object.

[orm] [bug]
Fixed regression in Query.join() where the aliased=True flag would not properly apply clause adaptation to filter criteria, if a previous join were made to the same entity. This is because the adapters were placed in the wrong order. The order has been reversed so that the adapter for the most recent aliased=True call takes precedence as was the case in 1.2 and earlier. This broke the 窶彳lementtree窶� examples among other things.

[orm] [bug] [py3k]
Replaced the Python compatbility routines for getfullargspec() with a fully vendored version from Python 3.3. Originally, Python was emitting deprecation warnings for this function in Python 3.8 alphas. While this change was reverted, it was observed that Python 3 implementations for getfullargspec() are an order of magnitude slower as of the 3.4 series where it was rewritten against Signature. While Python plans to improve upon this situation, SQLAlchemy projects for now are using a simple replacement to avoid any future issues.

[orm] [bug]
Reworked the attribute mechanics used by AliasedClass to no longer rely upon calling __getattribute__ on the MRO of the wrapped class, and to instead resolve the attribute normally on the wrapped class using getattr(), and then unwrap/adapt that. This allows a greater range of attribute styles on the mapped class including special __getattr__() schemes; but it also makes the code simpler and more resilient in general.

sql

[sql] [bug]
Fixed a series of quoting issues which all stemmed from the concept of the literal_column() construct, which when being 窶徘roxied窶� through a subquery to be referred towards by a label that matches its text, the label would not have quoting rules applied to it, even if the string in the Label were set up as a quoted_name construct. Not applying quoting to the text of the Label is a bug because this text is strictly a SQL identifier name and not a SQL expression, and the string should not have quotes embedded into it already unlike the literal_column() which it may be applied towards. The existing behavior of a non-labeled literal_column() being propagated as is on the outside of a subquery is maintained in order to help with manual quoting schemes, although it窶冱 not clear if valid SQL can be generated for such a construct in any case.

postgresql

[postgresql] [bug]
Fixed bug where PostgreSQL dialect could not correctly reflect an ENUM datatype that has no members, returning a list with None for the get_enums() call and raising a TypeError when reflecting a column which has such a datatype. The inspection now returns an empty list.

[postgresql] [usecase]
Added support for column sorting flags when reflecting indexes for PostgreSQL, including ASC, DESC, NULLSFIRST, NULLSLAST. Also adds this facility to the reflection system in general which can be applied to other dialects in future releases. Pull request courtesy Eli Collins.

mysql

[mysql] [bug]
Fixed bug where MySQL ON DUPLICATE KEY UPDATE would not accommodate setting a column to the value NULL.

(adam)

py-jsonpickle: updated to 1.2

Version 1.2:

* Simplified JSON representation for __reduce__ values.

* Improved Pandas support with new handlers for more Pandas data types.

* Prevent stack overflows caused by bugs in user-defined __getstate__
  functions which cause infinite recursion.

* Improved support for objects that contain dicts with Integer keys.
  Previously, jsonpickle could not restore objects that contained
  dicts with integer keys and provided getstate only.
  These objects are now handled robustly.

* Support for encoding binary data in base85_ instead of base64 has been
  added on Python 3. Base85 produces payloads about 10% smaller than base64,
  albeit at the cost of lower throughput.  For performance and backwards
  compatibility with Python 2 the pickler uses base64 by default, but it can
  be configured to use base85 with the new use_base85 argument.

* Dynamic SQLAlchemy tables in SQLAlchemy >= 1.3 are now supported.

(adam)

Updated net/grpc, net/py-grpcio, lang/python36

(adam)

python36: updated to 3.6.9

Python 3.6.9 final

Library

bpo-37437: Update vendorized expat version to 2.2.7.
macOS
bpo-34602: Avoid test suite failures on macOS by no longer calling resource.setrlimit to increase the process stack size limit at runtime. The runtime change is no longer needed since the interpreter is being built with a larger default stack size.

Python 3.6.9 release candidate 1

Security
bpo-35907: CVE-2019-9948: Avoid file reading by disallowing local-file:// and local_file:// URL schemes in URLopener().open() and URLopener().retrieve() of urllib.request.
bpo-36742: Fixes mishandling of pre-normalization characters in urlsplit().
bpo-30458: Address CVE-2019-9740 by disallowing URL paths with embedded whitespace or control characters through into the underlying http client request. Such potentially malicious header injection URLs now cause an http.client.InvalidURL exception to be raised.
bpo-36216: Changes urlsplit() to raise ValueError when the URL contains characters that decompose under IDNA encoding (NFKC-normalization) into characters that affect how the URL is parsed.
bpo-33529: Prevent fold function used in email header encoding from entering infinite loop when there are too many non-ASCII characters in a header.
bpo-35746: [CVE-2019-5010] Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco.
bpo-35121: Don窶冲 send cookies of domain A without Domain attribute to domain B when domain A is a suffix match of domain B while using a cookiejar with http.cookiejar.DefaultCookiePolicy policy. Patch by Karthikeyan Singaravelan.

Library
bpo-35643: Fixed a SyntaxWarning: invalid escape sequence in Modules/_sha3/cleanup.py. Patch by Mickaﾃｫl Schoentgen.
bpo-35121: Don窶冲 set cookie for a request when the request path is a prefix match of the cookie窶冱 path attribute but doesn窶冲 end with 窶�/窶�. Patch by Karthikeyan Singaravelan.

Documentation
bpo-35605: Fix documentation build for sphinx<1.6. Patch by Anthony Sottile.
bpo-35564: Explicitly set master_doc variable in conf.py for compliance with Sphinx 2.0

Tests
bpo-36816: Update Lib/test/selfsigned_pythontestdotnet.pem to match self-signed.pythontest.net窶冱 new TLS certificate.
bpo-35925: Skip specific nntplib and ssl networking tests when they would otherwise fail due to a modern OS or distro with a default OpenSSL policy of rejecting connections to servers with weak certificates or disabling TLS below TLSv1.2.
bpo-27313: Avoid test_ttk_guionly ComboboxTest failure with macOS Cocoa Tk.
bpo-32947: test_ssl fixes for TLS 1.3 and OpenSSL 1.1.1.

macOS
bpo-34602: Avoid failures setting macOS stack resource limit with resource.setrlimit. This reverts an earlier fix for bpo-18075 which forced a non-default stack size when building the interpreter executable on macOS.

(adam)

py-grpcio: updated to 1.22.0

Release v1.22.0

Python
Add Debug Example.
Add Python 3.8 test.
Clean up Python Channel.del logic.
Surface exception from metadata credentials plugin methods.
Add python deprecation notices.
Unsubscribe all connectivity callbacks on Channel.close.

(adam)

grpc: updated to 1.22.0

Release v1.22.0

Core
building upb as part of cmake build is not necessary (for v1.22.x).
Convert TraceFlags in the hot path to DebugTraceFlags.
Fix a bug where POST_RECV_MESSAGE was not being triggered.
Adjust the order of IOMgr timer initialization and comment of grpc_timer::heap_index.

C++
use bazel wrapper for "bazel" invocations in grpc workspace.
Add method to validate service config json.
Update comment on ssl hostname override.
Rename root certificate bundle in gRPC-C++ pod.

(adam)

Updated www/py-mod_wsgi, www/py-bottle, www/py-grappelli_safe, www/py-cherrypy

(adam)

py-cherrypy: updated to 18.1.2

v18.1.2
Restore a native WSGI-less HTTP server support.
Reduce log level for non-error events in win32.py

(adam)

py-grappelli_safe: updated to 0.5.2

0.5.2:
Bug fixes

(adam)

py-bottle: updated to 0.12.17

0.12.17:
Bug fixes.

(adam)

py-mod_wsgi: updated to 4.6.7

Version 4.6.7:

Bugs Fixed
Fix Windows build errors due to Python 3.7+ not providing empty function stubs for PyOS_AfterFork_Child() and PyOS_AfterFork_Parent().

Version 4.6.6:

Bugs Fixed
Fix compilation failures when using Python 3.8.

Features Changed
When running mod_wsgi-express it will do a search for the location of bash and sh when defining the shell to use for the generated apachectl. The shell used can be overridden using --shell-executable option. This is to get around issue with FreeBSD not having /bin/bash.

New Features
The Apache request ID is accessible in request events as request_id.
The per request data dictionary accessible using mod_wsgi.request_data() is now also accessible in events as request_data.

(adam)

Updated textproc/py-validators, lang/py-mypy

(adam)

py-mypy: updated to 0.711

0.711:
The following two issues in mypy 0.710 were fixed:
Revert typeshed (���Define functools.partial as overloaded function instead of its own class���). This caused too many false positive errors in real-world code.
Fix MYPYC_BLACKLIST on Windows. This broke running dmypy on Windows.

(adam)

py-validators: updated to 0.13.0

0.13.0:
- Added new validator: es_doi, es_nif, es_cif, es_nie

(adam)

doc: Updated games/quakespasm to 0.93.1

(nia)

quakespasm: Update to 0.93.1

pkgsrc changes:

Use more recent middleware (SDL2) and mp3 (mpg123) libraries

Changes in 0.93.1:

Fixed a fog regression which was introduced in 0.93.0.
Fixed a crash (buffer overflow) with invalid vis data.
Fixed buttons crushing players in 64-bit builds.
Change controller movement to use cubic easing by default; added "joy_exponent_move" cvar.
config.cfg is no longer written in case of a Sys_Error.
Fixed Opus encoded cd tracks not being recognized as ripped tracks.
Update the third-party libraries. Other fixes/cleanups.

Changes in 0.93.0:

Raise default "joy_deadzone_trigger" cvar to 0.2.
Raise console buffer size to 1MB.
Raise MAX_STATIC_ENTITIES from 512 to 4096.
Raise MAX_STACK_DEPTH from 32 to 64.
Raise command buffer size from 8K to 256K to support large configs.
Remove MAX_EFRAGS and MAX_MAP_LEAFS limits.
Remove "Loadgame buffer overflow" limit, which could happen when loading DP or QSS saves.
Adjust "exceeds standard limit of" debug warnings to include the actual QS limit.
Change "game" command to now exec quake.rc.
Change "games" / "mods" commands to list all subdirectories.
Restore vid_refreshrate from fitzquake-0.85 for SDL2 builds.
Alpha-masked model support. (MF_HOLEY: 0x4000).
Invalid skin index now draws skin 0 (WinQuake behaviour) instead of blue checkerboard.
Change default screenshot format to png. The 'screenshot' command now supports optional format (tga, png or jpg) and quality (1-100) arguments.
Revert "always run" changes from 0.85.9 and move the QuakeSpasm customizations to a new "cl_alwaysrun" cvar: Set to 1 in order to scale forward/side/up speed by "cl_movespeedkey" (usually 2), and to make "speedkey" act as "slowkey".
Change the "always run" menu option to offer three choices:
    off (cl_alwaysrun 0, cl_forwardspeed 200, cl_backspeed 200)
    vanilla (cl_alwaysrun 0, cl_forwardspeed 400, cl_backspeed 400)
    quakespasm (cl_alwaysrun 1, cl_forwardspeed 200, cl_backspeed 200)
New "r_scale" cvar. Set to 2, 3, or 4 to render the view at 1/2, 1/3, or 1/4 resolution.
New "r_viewmodel_quake" cvar. Set to 1 for WinQuake gun position (from MarkV).
New "find" / "apropos" command, searches for commands/cvar names for the given substring (from Spike).
New "randmap" command for loading a random map.
New "gl_cshiftpercent_contents", "gl_cshiftpercent_damage", "gl_cshiftpercent_bonus", "gl_cshiftpercent_powerup" cvars for tuning the strength of specic view blends.
GL2 renderer: use a GLSL shader for world faces. Fixes reports of integrated+discrete GPU laptops having inconsistent fog rendering.
Fix macOS startup delay (avoid calling gethostbyname() for ".local" hostnames).
Fix memory corruption in PF_lightstyle with out of bounds lightstyles.
Fix crash in BoundPoly with polygons extending beyond +/-9999.
Fix QS window to stay on the current monitor when changing video modes (SDL2 only).
Fix possible freeze in SV_TouchLinks regardless of what QC does in the touch function.
Fix for maps with empty strings for vector keys (e.g. "origin"); don't read uninitialized memory.
Support for Open Watcom compiler.
Update the third-party libraries.

(nia)

doc: Updated games/tyrquake to 0.62

(nia)

tyrquake: Update to 0.62

Changes:

* Model animation/movement interpolation (r_lerpmodels, r_lerpmove cvars)
* SDL video/input/sound target, now default for MacOS instead of X11.
* sndio sound target for OpenBSD (thanks Tony Spets/Jacob Meuser)
* Support for BJP1/2/3 and FITZ(666) network/demo protocols
* Support for Darkplaces and RMQ style BSP2/2PSB file formats
* Work around buggy timers on some windows systems/drivers (thanks MH!)
* Removed vid_win dependency on SciTech MGL (thanks MH!)
* Netmasks can be used with qwsv's addip/removeip; e.g. "addip 192.168.0.0/24"
* Fixed remote screenshots from QWSV
* Improved build system including new OSX, Win64, SDL targets
* Lots more code sharing between NQ/QW
* Use non-power-of-two OpenGL textures when extension is available
* New cvar "m_freelook" to replace need for manual editing "+mlook" in config

(nia)

Updated graphics/py-Pillow, graphics/py-matplotlib

(adam)

py-matplotlib: updated to 3.1.1

v3.1.1:
The first bug-fix release of the 3.1 series
Locator.nonsingular return order API change
Lots of backports of various bug fixes.

(adam)

py-Pillow: updated to 6.1.0

6.1.0:
- Deprecate Image.__del__
- Tiff: Add support for JPEG quality
- Respect the PKG_CONFIG environment variable when building
- Use explicit memcpy() to avoid unaligned memory accesses
- Improve encoding of TIFF tags
- Update Py_UNICODE to Py_UCS4
- Consider I;16 pixel size when drawing
- Add TIFFTAG_SAMPLEFORMAT to blocklist
- Create GIF deltas from background colour of GIF frames if disposal mode is 2
- Added ImageSequence all_frames
- Use unsigned int to store TIFF IFD offsets
- Include CPPFLAGS when searching for libraries
- Updated TIFF tile descriptors to match current decoding functionality
- Added an `image.entropy()` method (second revision)
- Pass the correct types to PyArg_ParseTuple
- Fixed crash when loading non-font bytes
- Fix SPARC memory alignment issues in Pack/Unpack functions
- Added CMYK;16B and CMYK;16N unpackers
- Fixed bugs in calculating text size
- Add __main__.py to output basic format and support information
- Added variation font support
- Do not down-convert if image is LA when showing with PNG format
- Improve handling of PSD frames
- Improved ICO and ICNS loading
- Changed Preview application path so that it is no longer static
- Corrected ttb text positioning
- Handle unexpected ICO image sizes
- Fixed bits value for RGB;16N unpackers
- Travis CI: Add Fedora 30, remove Fedora 28
- Added reading of CMYK;16L TIFF images
- Fixed dimensions of 1-bit PDFs
- Fixed opening mmap image through Path on Windows
- Fixed ImageDraw arc gaps
- Expand GIF to include frames with extents outside the image size
- Fixed ImageTk getimage
- Fixed bug in decoding large images
- Fixed reading APP13 marker without Photoshop data
- Added option to include layered windows in ImageGrab.grab on Windows
- Detect libimagequant when installed by pacman on MingW
- Fixed raqm layout bug
- Fixed loading font with non-Unicode path on Windows
- Travis CI: Upgrade PyPy from 6.0.0 to 7.1.1
- Depends: Updated openjpeg to 2.3.1
- Fix numpy bool bug

(adam)

Need to define __DARWIN_UNIX03 to use unsetenv(3) which return integer.
Resolves build on Tiger
via https://trac.macports.org/ticket/56099

(sevan)

Avoid trying to disable warnings for array boundary checks on Darwin.
On legacy toolchains e.g Tiger, it results in a hard error as it's not recognised.

(sevan)

Fix building on NetBSD/arm by extracting the FSR from siginfo_t::si_trap
rathar than an mcontext field that NetBSD/arm doesn't have.

(thorpej)

doc: Added games/devilutionx version 0.4.0

(nia)

Add devilutionx-0.4.0 as games/devilutionx.

DevilutionX is a port of the classic action role-playing hack and slash
PC game "Diablo" for modern operating systems.

(nia)

subversion: more reliable fix for APR 1.7.0

From: Stefan Sperling <stsp@apache.org>
Date: Fri, 12 Apr 2019 09:27:33 +0000
Subject: [PATCH] Get rid of apr_int64_t format string check in swig py
configure.

This check relied on APR implementation details and broke with APR 1.7.0.
Rather than trying to guess a perfect format string to use, just use the
largest possible format and cast the argument accordingly.

Should fix build against APR 1.7.0 and later.

Suggested by: brane

* build/ac-macros/swig.m4: Remove code related to SVN_APR_INT64_T_PYCFMT.

* subversion/bindings/swig/python/libsvn_swig_py/swigutil_py.c
  (svn_swig_py_client_blame_receiver_func): Stop relying on the
  SVN_APR_INT64_T_PYCFMT constant from configure. Use "L" and
  acast to PY_LONG_LONG instead.

(markd)

doc: Updated net/youtube-dl to 20190702

(leot)

youtube-dl: Update to 20190702

Changes:
2019.07.02
----------
Core
+ [utils] Introduce random_user_agent and use as default User-Agent (#21546)

Extractors
+ [vevo] Add support for embed.vevo.com URLs (#21565)
+ [openload] Add support for oload.biz (#21574)
* [xiami] Update API base URL (#21575)
* [yourporn] Fix extraction (#21585)
+ [acast] Add support for URLs with episode id (#21444)
+ [dailymotion] Add support for DM.player embeds
* [soundcloud] Update client id

(leot)

blender: fix build with gcc-9

GCC 9 started implementing the OpenMP 4.0 and later behavior. When not using
default clause or when using default(shared), this makes no difference, but
if using default(none), previously the choice was not specify the const
qualified variables on the construct at all, or specify in firstprivate
clause. In GCC 9 as well as for OpenMP 4.0 compliance, those variables need
to be specified on constructs in which they are used, either in shared or
in firstprivate clause. Specifying them in firstprivate clause is one way to
achieve compatibility with both older GCC versions and GCC 9,
another option is to drop the default(none) clause.

This patch thus drops the default(none) clause.

See https://gcc.gnu.org/gcc-9/porting_to.html#ompdatasharing

patch from fedora.

(markd)

Explicitly disable postgresql support. We do not declare the
dependency, and configure picks it up outside LOCALBASE on 'rich' base
OS installations (read: Linuxen).

If anyone seriously wanted to use postgresql from XEmacs, it would
have to be made a proper option.

(hauke)

qt4-libs: fix build with gcc9
from https://aur.archlinux.org/packages/qt4/

(markd)

dosbox: Install a .desktop file and icons.

Bump PKGREVISION.

(nia)

cmatrix: Don't misspell "Nebuchadnezzar"

(nia)

Use https for xfce.org.

(nia)

Use https for php.net.

(nia)

Use https for php.net.

(nia)

Use https for pear.php.net.

(nia)

Use https for erlang.org

(nia)

Use https for github.

(nia)

dovecot2: update blk3 to follow gnutls disabling

Do not bump revision since binary cannot be altered

pkgsrc changes:
---------------
  * make blk3 conform to options.mk
  * move BUILD_DEFS (pkglint WARN--)
  * comment an explicit patch (pkglint ERROR--)

(triaxx)

dovecot2: remove gnutls option that is currently broken

Fix PR pkg/54337

(triaxx)

Need a compiler with C++11 support, configure script checks

(sevan)

vlc: reinstate hacks.mk, I'm not paying enough attention

(nia)

vlc: remove hacks.mk.

(nia)

doc: Updated multimedia/vlc to 3.0.7.1

(nia)

vlc: Update to 3.0.7.1

Based on work in pkgsrc-wip.

I've had the opportunity to test this in a NetBSD-8 bulk build - it seems
the package is now fixed. Hopefully.

The 3.0.x release series is considered for long-term support by upstream.
Notably for pkgsrc, this means it will be the last release series that
supports older compilers.

Note that VLC now depends on Qt5 instead of Qt4. Various config flags have
been tweaked (enabled/disabled) to match what other vendors (mainly FreeBSD)
are doing.  I have also added an alsa package option.

The full list of upstream changes is probably too long to list.

(nia)

Recursive revbump from gpsd-3.19

(gdt)

geography/gpsd: Update ABI in buildlink3.mk

3.19 was an ABI break, so force depending packages to use it.

(gdt)

nodejs: Work around getentropy issue on SunOS.

Noticed by Stefan Husch in joyent/pkgsrc#203.

(jperkin)

Updated devel/libuv, ham/uhd

(adam)

uhd: updated to 3.14.1.0

003.014.001.000
N320: Terminate the DAC when not transmitting
E320: Add support for rev E
E320: Added .gitignore for FPGA build products
X300: Add DPDK support
X300: add capability to flash NI-2974 FPGA
X300: Broke two critical timing paths in FPGA
X300: fixed udp WSA buffer size assignment issue
E310: Fix DRAM_TEST target build
B200: Add bootloader for FX3 (fix for B2xx failing to enumerate)
TwinRX: Expose charge pump current for LO2
TwinRX: Add low spur mode for LO2
TwinRX: increase rev c lo1 charge pump default value
TwinRX: Fix tick rate
Device3: Constraint send/recv_frame_size based on down/upstream MTU
Device3: Fix MTU and default frame sizes
RFNoC: Search all nodes for tick rates
RFNoC: Change default address for the reg readbacks
uhd_image_builder: Let the OOT module point to folders not named "rfnoc"
uhd_image_builder: Add --auto-inst-src
MPMD: Fix spurious reclaim call after unclaim
MPMD: Release resources on destruction
MPM: Add SW/HW compat
liberio: Release context holder on destruction of last liberio xport
transport: fixed a pre-mature buffer reset
nirio: Fix typo in nirio_zero_copy
GPSD: fix API for 'gps_read'
AD9361: Fix return values for tune and set_clock_rate
DUC/DDC: Fix phase reset and accumulation
cores: Use NSDMI consistently in ?x_dsp_core_3000.*
Logging: fix deadlock issue on Windows machines
Logging: Fix ANSI colour codes
Utils: Add X300/X310 reset utility
Docs: Improved Windows-related build instructions
Docs: Add link to README for building custom filesystems for N3xx
sim: Fixing the port number in use for connection
tools: Fix for proj creation in ip_utils for tcl-based IP
tests: Fix mock_ctrl_iface for 32-bit MSVC

(adam)

libuv: updated to 1.30.1

Version 1.30.1
* doc: fix incorrect versionchanged
* test: allow UV_ECONNRESET in tcp_try_write_error
* unix: add uv_get_constrained_memory() cygwin stub
* build: fix android cmake build
* unix: squelch -Wcast-function-type warning
* build: fix compile error with uClibc

(adam)

bootstrap/bootstrap: allow the working directory to be a symlink

The working directory is only needed for bootstrapping pkgsrc, therefore
there aren't too many packages that can fail.

Loosening this check is needed for macOS, where /etc, /tmp and /var are
symlinks to /private, and using /tmp as the workdir for bootstrapping is
a sane choice.

(rillig)

doc: Updated graphics/ansilove to 4.0.1

(fcambus)

ansilove: Update to 4.0.1.

ChangeLog:

AnsiLove/C 4.0.1 (2019-06-25)

- Fix a few typos in README and ansilove.1
- Simplify display of default font when no font option is specified
- Drop the leading dot when saving input file extension
- Fix the check for readComments() return value

AnsiLove/C 4.0.0 (2019-01-16)

- Switch to using libansilove
- Add a new switch (-d) to toggle DOS aspect ratio
- Add initial support for PabloDraw 24-bit ANSI sequences
- Ansilove now generates only one output file when -r or -R options
  are used
- Display scale factor when -r or -R options are used
- Allow to specify the number of columns for ANSI and Tundra files
- Restrict maximum allowed number of columns to 4096
- Check asprintf() return value and error if allocation fails
- Bugfixes and improvements in the SAUCE parser
- Refactor font selection processing
- Refactor rendering mode processing
- Use OpenBSD style(9) for function prototypes and declaration
- Add missing headers and remove unnecessary ones
- Remove versionInfo(), simply print the header with version information
  when invoked with -v
- Remove showHelp(), show synopsis instead when invoked with -h
- Add a new example ANSi (Thanks Nail)
- Remove -e switch, examples are now listed in the man page instead
- Make synopsis() only display SYNOPSIS, as it should be.
- Add an EXAMPLES section in ansilove.1
- PC fonts for code pages other than cp437 are now named using the cpNNN
  scheme. Albeit not documented anymore, the previously used names will
  keep working

OK kamil@

(fcambus)

lincity: Fix linker errors and define LICENSE.

(nia)

doc: Updated geography/gpsd to 3.19

(gdt)

geography/gpsd: Update to 3.19

pkgsrc changes:
  patches were applied upstream

3.19: 2019-07-01
  Rearrange rawdata_t.  Bump the API because gps_data_t changed.
  Report sequence-ID fields in type 7 and 13 AIS messages.
  Preliminary support for SiRFstar V
  Improve error modeling.
  Update pseudo NMEA to v3.0, with fractional time.
  Improve cycle detection, mostly for NMEA.
  Move epe from gps_data_t to be near its friends in gps_fix_t.
  Preliminary u-blox 9 support.
  Add qErr in gps_data_t to store PPS quantization error.
  Add Android (AOSP) support
  Improved multi gnss and multi signal support.
  NMEA 4.10 multi gnss multi signal support.
  The arguments to "ubxtool -p P" have been expanded and changed.
  New options, -g, -x, -z, added to ubxtool for u-blox 9 support.

(gdt)

Use PKGVERSION_NOREV as GITHUB_RELEASE to easier update

(ryoon)

quakeforge: The existing workaround is causing duplicate symbol errors at
link-time so just cheat by using "static inline".

Also, don't hardcode the libGL version number, take advantage of symlinks
instead to make libGL load on NetBSD-current with native X.

Bump PKGREVISION.

I still can't really get this to run for more than a few seconds (except
qw-client, which I can't test ingame), it may be borked.

(nia)

Enable usbhid-dump

(ryoon)

Added sysutils/usbhid-dump version 1.4

(ryoon)

sysutils/usbhid-dump: import usbhid-dump-1.4

Usbhid-dump is a USB HID dumping utility based on libusb 1.0. It
dumps USB HID device report descriptors and reports themselves as
they are being sent, for all or specific device interfaces.

(ryoon)

Updated lang/chicken5 to 5.1.0

(ryoon)

Update to 5.1.0

Changelog:
5.1.0

- Core libraries
  - Symbols ending or starting with a colon are now always pipe-quoted
    when written by `write` to ensure they can be read back with a
    different keyword-style setting.
  - Read-write invariance of special symbols starting with #! other
    than #!key, #!rest or #!optional is now preserved (#1572).
  - When using (set-file-position!) on a port, its EOF status will now
    be reset.
  - In (chicken file posix), the values of perm/irgrp, perm/iwgrp,
    perm/ixgrp, perm/iroth, perm/iwoth and perm/ixoth are now correctly
    defined (they were all for "usr"; #1602, thanks to Eric Hoffman).
  - In (chicken file posix), `file-truncate` now accepts also accepts
    port objects, for consistency with other file procedures.
    All such procedures from (chicken file posix) now have the correct
    types in types.db (fixes #1609, thanks to Robert Jensen).
  - Add the system-config-directory and system-cache-directory procedures
    in the chicken.platform module. These procedures follow the XDG
    specification and also give sensible results on Windows.
  - Fix get-environment from (chicken process-context) to raise an
    error when passed #f instead of segfaulting.
  - Qualified symbols (##foo#bar style) are no longer encoded by a
    byte prefix inside the symbol name.  This ensures read-write
    invariance of symbols which start with a low-byte character
    (fixes #1077, except for keywords, which start with NUL bytes).
  - Fix a missing export (list->s64vector) in SRFI-4.

- Runtime system
  - Keywords are now distinct types; they are not a subtype of symbols.
  - Use arc4random on FreeBSD (thanks to Tobias Kortkamp and gahr)
  - Removed the unused, undocumented (and incorrect!) C functions
    C_delete_symbol_table and C_set_symbol_table.
  - Continuations which discard additional values beyond the first no
    longer accept multiple values via direct invocation after being
    captured through `call/cc`, only via `values` (revert of #1390,
    due to #1601)
  - SRFI-4 vector predicates, reference, set and length procedures
    should now be faster in tight loops as they're inlineable (#757).
  - Keywords are now interned in a separate keyword table, not in the
    standard symbol table.  This brings full read-write invariance
    for symbols (they can now also start with NUL bytes).  Keywords
    no longer have plists.  Fixes #1576.
  - Increased the "binary compatibility version" to 11.

- Compiler
  - Restored optimized implementations of =, +, -, /, * and quotient in
    fixnum-arithmetic mode (fixes #1604 mostly; thanks to "chickendan").
  - Added an optimization pass for reducing the amount of boxing of
    intermediate floating point values, enabled by the "-lfa2" compiler
    option.
  - The "lfa2" pass is now enabled at optimization levels 2 or higher.

- Module system
  - When you try to import the module you are currently defining into
    itself, an error will be raised. This prevents an infinite loop in
    the compiler when later trying to import that same module (fixes
    #1506, thanks to Kristian Lein-Mathisen).

- Foreign function interface
  - Improved hygiene in FFI macro expansions, which means you don't
    have to import "scheme" or "(chicken base)" for them to work.

- Type system
  - It is now possible to quote free variables in type declarations,
    which acts as shorthand for `forall' (thanks to "megane")

- Tools
  - csi now uses (system-config-directory) to find csirc and falls back to
    $HOME/.csirc when needed.
  - chicken-install now uses (system-config-directory) to find a user
    defined setup.defaults file ; it also uses (system-cache-directory)
    for its egg cache directory when the CHICKEN_EGG_CACHE environment
    variable is not defined.

- Egg specifications
  - Allows "cond-expand" and "error" forms in egg specification files.
  - Add "c-object" and "object" properties to link separately compiled
    C objects into CHICKEN code.

(ryoon)

Record the first batch of 2019Q2 pullups

(bsiegert)

Update HOMEPAGE

(ryoon)

Pullup ticket #5986 - requested by nia
news/newsbeuter: build fix

Revisions pulled up:
- news/newsbeuter/Makefile                                      1.23
- news/newsbeuter/distinfo                                      1.3
- news/newsbeuter/patches/patch-src_feedhq__api.cpp            1.1
- news/newsbeuter/patches/patch-src_oldreader__api.cpp          1.1
- news/newsbeuter/patches/patch-src_ttrss__api.cpp              1.1

---
  Module Name: pkgsrc
  Committed By: nia
  Date: Tue Jul  2 07:37:54 UTC 2019

  Modified Files:
  pkgsrc/news/newsbeuter: Makefile distinfo
  Added Files:
  pkgsrc/news/newsbeuter/patches: patch-src_feedhq__api.cpp
      patch-src_oldreader__api.cpp patch-src_ttrss__api.cpp

  Log Message:
  newsbeuter: Fix build with new json-c.

  https://github.com/json-c/json-c/issues/304

  XXX pullup?

(bsiegert)

Remove keepassxc

(ryoon)

Updated security/keepassxc to 2.4.3

(ryoon)

Update to 2.4.3

* Add security/libsodium as dependency

Changelog:
2.4.3 (2019-06-12)
=========================

- Fix library loading issues in the Snap and macOS releases [#3247]
- Fix various keyboard navigation issues [#3248]
- Fix main window toggling regression when clicking the tray icon on KDE [#3258]
- Add documentation for keyboard shortcuts to source code distribution [#3215]

2.4.2 (2019-05-31)
=========================

- Improve resilience against memory attacks - overwrite memory before free [#3020]
- Prevent infinite save loop when location is unavailable [#3026]
- Attempt to fix quitting application when shutdown or logout issued [#3199]
- Support merging database custom data [#3002]
- Fix opening URL's with non-http schemes [#3153]
- Fix data loss due to not reading all database attachments if duplicates exist [#3180]
- Fix entry context menu disabling when using keyboard navigation [#3199]
- Fix behaviors when canceling an entry edit [#3199]
- Fix processing of tray icon click and doubleclick [#3112]
- Update group in preview widget when focused [#3199]
- Prefer DuckDuckGo service over direct icon download (increases resolution) [#2996]
- Remove apply button in application settings [#3019]
- Use winqtdeploy on Windows to correct deployment issues [#3025]
- Don't mark entry edit as modified when attribute selection changes [#3041]
- Use console code page CP_UTF8 on Windows if supported [#3050]
- Snap: Fix locking database with session lock [#3046]
- Snap: Fix theming across Linux distributions [#3057]
- Snap: Use SNAP_USER_COMMON and SNAP_USER_DATA directories [#3131]
- KeeShare: Automatically enable WITH_XC_KEESHARE_SECURE if quazip is found [#3088]
- macOS: Fix toolbar text when in dark mode [#2998]
- macOS: Lock database on switching user [#3097]
- macOS: Fix global Auto-Type when the database is locked [#3138]
- Browser: Close popups when database is locked [#3093]
- Browser: Add tests [#3016]
- Browser: Don't create default group if custom group is enabled [#3127]

(ryoon)

battleball: Specify c++03, this breaks with newer compiler defaults.

(nia)

Updated misc/libreoffice to 6.2.4.2nb2

(ryoon)

Sync internal harfbuzz with fonts/harfbuzz-2.5.3. Bump PKGREVISION

(ryoon)

Pullup ticket #5985 - requested by nia
emulators/dosbox: security fix

Revisions pulled up:
- emulators/dosbox/Makefile                                    1.47
- emulators/dosbox/distinfo                                    1.26

---
  Module Name: pkgsrc
  Committed By: nia
  Date: Tue Jul  2 05:19:11 UTC 2019

  Modified Files:
  pkgsrc/emulators/dosbox: Makefile distinfo

  Log Message:
  dosbox: Update to 0.74.3

  0.74-3
  A security release for DOSBox 0.74:
  - Fixed that a very long line inside a bat file would overflow the parsing
    buffer (CVE-2019-7165 by Alexandre Bartel)
  - Added a basic permission system so that a program running inside DOSBox
    can't access the contents of /proc (e.g. /proc/self/mem) when / or /proc
    were (to be) mounted (CVE-2019-12594 by Alexandre Bartel)
  - Several other fixes for out of bounds access and buffer overflows.
  - Some fixes to the OpenGL rendering.

(bsiegert)

doc: Updated games/armagetronad-server to 0.2.8.3.4

(nia)

doc: Updated games/armagetronad to 0.2.8.3.4

(nia)

Updated fonts/harfbuzz to 2.5.3

(ryoon)

games/armegatron*: Update to 0.2.8.3.4

"This release is a compiler compatibility release only; we noticed
0.2.8.3.3 had severe problems with gcc 6, all our fault."

(nia)

Update to 2.5.3

Changelog:
Overview of changes leading to 2.5.3
Wednesday, June 26, 2019
====================================
- Fix UCD script data for Unicode 10+ scripts.  This was broken since 2.5.0.
- More optimizations for HB_TINY.

Overview of changes leading to 2.5.2
Thursday, June 20, 2019
====================================
- More hb-config.hh facilities to shrink library size, namely when built as
  HB_TINY.
- New documentation of custom configurations in CONFIG.md.
- Fix build on gcc 4.8.  That's supported again.
- Universal Shaping Engine improvements thanks to David Corbett.
- API Changes: Undeprecate some horizontal-kerning API and re-enable in hb-ft,
  such that Type1 fonts will continue kerning.

Overview of changes leading to 2.5.1
Friday, May 31, 2019
====================================
- Fix build with various versions of Visual Studio.
- Improved documentation, thanks to Nathan Willis.
- Bugfix in subsetting glyf table.
- Improved scripts for cross-compiling for Windows using mingw.
- Rename HB_MATH_GLYPH_PART_FLAG_EXTENDER to HB_OT_MATH_GLYPH_PART_FLAG_EXTENDER.
  A deprecated macro is added for backwards-compatibility.

Overview of changes leading to 2.5.0
Friday, May 24, 2019
====================================
- This release does not include much functional changes, but includes major internal
  code-base changes.  We now require C++11.  Support for gcc 4.8 and earlier has been
  dropped.
- New hb-config.hh facility for compiling smaller library for embedded and web usecases.
- New Unicode Character Databse implementation that is half the size of previously-used
  UCDN.
- Subsetter improvements.
- Improved documentation, thanks to Nathan Willis.
- Misc shaping fixes.

(ryoon)

Restrict lirc to Linux platform

Pointed by leot@, thank you.

(ryoon)

doc: Updated www/php-glpi to 9.4.3

(hauke)

Update to GLPI v9.4.3, with security and bug fixes.

- (security) Prevent execution of XSS on rich text,
- (security) Prevent xss attack on user picture,
- Fix performance issues when using entities,
- New "Prevent take into account" action on tickets business rules,
- New "Status" criterion on tickets business rules,
- Change and problem tasks can now be marked as private,

The full changelog is available under
<https://github.com/glpi-project/glpi/milestone/36?closed=1>

(hauke)

Updated www/py-google-api-python-client, devel/py-cython, net/py-zmq

(adam)

py-zmq: updated to 18.0.2

18.0.2
- Compatibility with Python 3.8 prerelease by regenerating Cython sources
  with Cython 0.29.10.
- Fix language_level=2 in Cython sources, for compatibility with Cython 0.30
- Show missing path for ENOENT errors on ipc connections.

(adam)