devel/ruby-libyajl2: missing update

I forgot to commit not only distinfo but also PLIST.

(taca)

ruby-libyajl2: Fix checksum.

(jperkin)

Updated math/ppl to 1.2

(wen)

Update to 1.2

Upstream changes:
NEWS for version 1.2  (released on February 11, 2016)
--------------------------------------------------------------------------

New and Changed Features
========================

o  Improved the efficiency of the conversion procedure for polyhedra
  by adding a quick adjacency check.

o  In the Java language interface, throw an exception when trying
  to build a disequality Constraint.

Bugfixes
========

o  Fixed a bug in the implementation of methods
    Pointset_Powerset<PSET>::relation_with(const Constraint&) const;
  and
    Pointset_Powerset<PSET>::relation_with(const Congruence&) const;
  whereby the computed result for relations strictly_intersects()
  and saturates() could have been wrong.

o  Fixed a bug in the implementation of dense rows.

o  Portability improved.

(wen)

doc: Updated x11/st-term to 0.8.2

(leot)

st-term: Update to 0.8.2

Changes:
0.8.2
-----
This release has mostly bugfixes.
For ports maintainers there are some small Makefile changes, which are
hopefully improvements.
Thanks go out to all patch contributors and testers.

(leot)

memtestplus: describe patch. nfc

(maya)

doc: Updated www/webkit-gtk to 2.22.6

(leot)

webkit-gtk: Update to 2.22.6

pkgsrc changes:
- Set USE_GCC_RUNTIME to depends on gcc6-libs when pkgsrc gcc is used
  (XXX: Not tested and not clear if currently mk/compiler/gcc.mk DTRT
    XXX: regarding (if not, that's probably why firefox/mozilla-common.mk
    XXX: abuses USE_PKGSRC_GCC_RUNTIME!))

Changes:
WebKitGTK+ 2.22.6
=================
- Make kinetic scrolling slow down smoothly when reaching the ends of
  pages, instead of abruptly, to better match the GTK+ behaviour.
- Fix Web inspector magnifier under Wayland.
- Fix garbled rendering of some websites (e.g. YouTube) while scrolling
  under X11.
- Fix several crashes, race conditions, and rendering issues.

(leot)

doc: Updated sysutils/memtestplus to 5.01nb6

(maya)

memtestplus: make room for headers
(Fixes linker issue,
ld: memtest_shared: not enough room for program headers)

Don't create multiple definitions.

Remove workarounds for old GCC/NetBSD.

boots in QEMU, but reboots (crashes) very quickly.

Bump PKGREVISION

(maya)

Updated textproc/p5-Encode to 3.00

(wen)

Update to 3.00

Upstream changes;
$Revision: 3.00 $ $Date: 2019/01/31 04:51:32 $
! Encode.pm
  VERSION bumped to 3.00 to make PAUSE happy

2.100 2019/01/31 04:26:40
!  Encode.xs MANIFEST
+  t/xml.t
  Pulled: Do not access SV* buffer if we have not called SvPV_force()
  https://github.com/dankogai/p5-encode/pull/137
! MANIFEST
  remove utf8messages.t which is already deleted from the repository.

(wen)

Updated devel/p5-Test-Kwalitee to 1.28

(wen)

Update to 1.28

Upstream changes:
1.28      2019-02-02 19:29:29Z
    - fix taint-mode tests to accomodate failures with Module::CPANTS::Analyse
      0.99 (insecure loading of a backend implementation)

(wen)

Updated devel/p5-Module-CPANTS-Analyse to 1.00

(wen)

Update to 1.00
Add missing DEPENDS

Upstream changes:
1.00 2019-02-03
  ** BACKWARD INCOMPATIBLE CHANGE **
  - Module::CPANTS::Kwalitee::Uses now uses a different prereq scanner
    (Perl::PrereqScanner::NotQuiteLite).
  - Added new kwalitee metrics:
    no_maniskip_error, no_missing_files_in_provides, no_files_to_be_skipped
  - Delayed plugin loading

(wen)

Added devel/p5-Perl-PrereqScanner-NotQuiteLite version 0.9904

(wen)

Add p5-Perl-PrereqScanner-NotQuiteLite

(wen)

Import Perl-PrereqScanner-NotQuiteLite-0.9904 as devel/p5-Perl-PrereqScanner-NotQuiteLite.

Perl::PrereqScanner::NotQuiteLite is yet another prerequisites scanner. It
passes almost all the scanning tests for Perl::PrereqScanner and
Module::ExtractUse (ie. except for a few dubious ones), and runs slightly faster
than PPI-based Perl::PrereqScanner. However, it doesn't run as fast as
Perl::PrereqScanner::Lite (which uses an XS lexer).

(wen)

Added devel/p5-Regexp-Trie version 0.02

(wen)

Add p5-Regexp-Trie

(wen)

Import Regexp-Trie-0.02 as devel/p5-Regexp-Trie.

Regexp::Trie is a faster but simpler version of Regexp::Assemble or
Regexp::Optimizer. It builds a trie-ized regexp as above.

This module is faster than Regexp::Assemble but you can only add literals.
a+b is treated as a\+b, not "more than one a's followed by b".

(wen)

Fix ERROR: [check-interpreter.mk]

+REPLACE_BASH=          trojans/csd-post.sh
+REPLACE_BASH+=        trojans/csd-wrapper.sh

(mef)

update to p5-biblatex-biber

(markd)

p5-biblatex-biber: update to 2.12

to match latest biblatex

(markd)

Updated devel/p5-Inline to 0.81

(wen)

Update to 0.81

Upstream changes:
0.81 Sun 03 Feb 2019 04:42:05 PM CET
- Regular release, see developer releases

0.80_03 Fri 01 Feb 2019 11:26:18 PM CET
- Fix @inc, add another exception for Inline::C (SISYPHUS++)

0.80_02 Fri Jun 22 22:21:11 MDT 2018
- Revert PR/61 - failed on travis

0.80_01 Fri Jun 22 21:39:49 MDT 2018
- PR/59 @pypt++ Travis test against Perl 5.22, 5.24, 5.26
- PR/60 @pypt++ Calculate MD5 hashes of UTF-8 source by encoding it first
- PR/61 @rurban++ Fix wrong -I in subcmd
- PR/66 @soren++ Fix failing tests on systems missing perldiag.pod
- PR/67 NERDVANA++ Relax the version requirement for installing modules

0.80 Fri Mar 13 20:03:52 PDT 2015
- Fix dependency problem in Inline::MakeMaker affecting parallel builds

(wen)

Updated devel/p5-glib2 to 1.329

(wen)

Update to 1.329

Upstream changes:
Overview of changes in Glib 1.329 (stable)
============================================

* Fix compilation and testing against glib < 2.28.0 (RT# 127831)
* ChangeLog.pre-git/README: Updated Git URIs

(wen)

Updated devel/p5-File-ChangeNotify to 0.31

(wen)

Update to 0.31

Upstream changes:
0.31  2019-01-09

- No changes from 0.30.

0.30  2018-10-08 (TRIAL RELEASE)

- Added an optional feature to track path attribute changes (permissions,
  ownership) as well as to provide the old vs new attributes and/or content in
  modify events. Both of these features are off by default since they can use
  a lot more CPU or memory, especially when using otherwise low-overhead
  kernel-based watchers.

(wen)

Updated databases/p5-DBD-ODBC to 1.60

(wen)

Update to 1.60

Upstream changes:
1.60 2018-10-31

  [BUG FIXES]

  Merged pull request 11 from audun which fixes some issues with the AutoCommit flag
  on commit and rollback.

  [MISCELLANEOUS]

  Merged pull request 10 from vadz which fixed typo (affecting license) in README.md.

(wen)

Updated databases/p5-Data-Table to 1.77

(wen)

Update to 1.77

Upstream changes:
1.77 Wed Jan 23 14:02:24 PST 2019
  No code change, add more examples under match_pattern_hash
  Suggested by James Volkman

(wen)

Updated www/drupal7 to 7.64

(wen)

Update to 7.64

Upstream changes:
Major changes since 7.63:

    Issue #3018637 by emilymoi, das-peter: [regression] Unset the 'host' header in drupal_http_request() during redirect
    Compatibility fixes for PHP 7.3 (#3020771)
    Compatibility fixes for MySQL 5.7 (#2981248)

All changes since 7.63:

    #1430934 by johnish@gmail.com, DamienMcKenna, Berdir, malcomio, Dane Powell, zerolab, er.pushpinderrana, akosipax, njbarrett, Fabianx, alesr, David_Rothstein, littledynamo, das-peter: Notice: Undefined index: display_field in file_field_widget_value() (line 582 of /module/file/file.field.inc)
    #1470656 by Damien Tournoud, joseph.olstad, Pol, Fabianx, catch: Registry rebuild should not parse the same file twice in the same request
    #3028364 by Pol, Fabianx: Update function _registry_update() and move module_implements() and _registry_check_code() calls out of the try/catch
    #3018637 by emilymoi, das-peter: [regression] Unset the 'host' header in drupal_http_request() during redirect
    #3026529 by alexpott: 7.x does not have Phar protection and Phar tests are failing on Drupal 7
    #2482549 by Pol, marcelovani, ndf, drupal@guusvandewal.nl, TR, jenlampton, kaidjohnson, ufku, MiSc, David_Rothstein, RobLoach, pablo.guerino, afoster, geerlingguy, SebCorbin, joelpittet, JohnAlbin: Fix up commit - convert short array styles to long.
    #3023066 by Pol, mfb: [PHP 7.3] Fix BootstrapMiscTestCase::testCheckMemoryLimit() notice
    #2482549 by Pol, marcelovani, ndf, drupal@guusvandewal.nl, jenlampton, ufku, kaidjohnson, MiSc, David_Rothstein, RobLoach, SebCorbin, geerlingguy, pablo.guerino, JohnAlbin, joelpittet, afoster: Ignore node_module folder in core to use Drupal with npm/grunt/nodejs
    #3020771 by Ayesh, Pol, sjerdo: [PHP 7.3] strpos explicit string needle warnings
    #2981248 by mfb, LFP6, msti: MySQL 5.7 incompatibility in system upgrade 7061

(wen)

Updated www/drupal8 to 8.6.9

(wen)

Update to 8.6.9
Remove the patch that included in upstream

Upstream changes:
8.6.7:
This is a hotfix release for a regression affecting some Drush installations that was introduced by the fix for SA-CORE-2019-002. No other fixes are included.

8.6.8:
Changes since 8.6.7

    #2975539 by mondrake, alexpott, marcoscano, desierto: Changing machine name of image style leads to WSOD when loading widgets that used the old name
    #2859315 by quietone, heddn, jhodgdon: SQL error from profile_fields when migrating d6 (or d7) to d8 without Profile module
    #2443165 by davidwbarratt, amateescu, HOG, kostyashupenko, yched, Berdir, andypost, alexpott, tstoeckler, xjm: Drupal\Core\Entity\EntityInterface\ContentEntityStorageBase::doCreate() assumes that the bundle is a string
    #2849074 by decafdennis, alexpott, zuuperman, AdamPS, sagesolutions, tucho, xjm: SiteConfigureForm overrides value from install profile
    #3007716 by Sam152, kevin.dutra, jhedstrom, larowlan: Security update introduces breaking changes to content moderation
    #2215857 by michielnugter, Lendude, gmercer, tim.plunkett, cferthorney, marabak, olli, ericmulder1980, TwoD, sanduhrs, stella, dww, nod_: Behaviors get attached to removed forms
    #3017812 by ibustos, joachim: Language selector is immune to hook_entity_field_access in entity forms
    #2900883 by larskhansen, GaëlG, kalyansamanta, Chi, tim.plunkett, Gábor Hojtsy, joachim: Wrong documentation of Drupal\Component\Plugin\Derivative\DeriverInterface::getDerivativeDefinitions()
    #3027595 by amateescu, pmelab: Incorrect blacklist condition in WorkspaceManager
    #2725259 by sardara, andrewmacpherson, claudiu.cristea, tedbow, alwaysworking, droplet, techmsi, kwoxer, xjm, alexpott, lauriii, catch, cilefen, Cottser: [regression] Table Drag handles no longer respond to up/down arrow keys
    Revert "Issue #2725259 by sardara, andrewmacpherson, claudiu.cristea, tedbow, alwaysworking, droplet, techmsi, kwoxer, xjm, alexpott, @catch, @cilefen, @Cottser, @lauriii: [regression] Table Drag handles no longer respond to up/down arrow keys"
    #2725259 by sardara, andrewmacpherson, claudiu.cristea, tedbow, alwaysworking, droplet, techmsi, kwoxer, xjm, alexpott, @catch, @cilefen, @Cottser, @lauriii: [regression] Table Drag handles no longer respond to up/down arrow keys
    #2937073 by tim.plunkett, Saviktor, tedbow: Improve robustness of FieldBlockTest
    #2973713 by quietone, Adita, etecjdo, apmsooner, mikeryan, gnuschichten, tstoeckler: cache_key source plugin configuration not documented
    #2949555 by quietone, ankitjain28may: Correct the documentation on method UserMigrationClassTest
    #3025685 by quietone: Add error msg to assertions in MigrateSourceTestBase
    #3026840 by izus: Fix plural typo in workspaces field
    #3024452 by kfritsche, hchonov, alexpott: DatabaseStorageExpirable:setWithExpireIfNotExists is not respecting expired
    #2999908 by penyaskito: View more link in recipe cards is not fully translated
    #3028819 by alwaysworking: Update username
    #2916021 by d.olaresko, wengerk, Chi, xjm, dawehner, idebr: Update "Running tests" section in core.api.php
    #2953995 by kjay, starshaped, rachel_norfolk, Vidushi Mehta, cferthorney, HAL 9000, Eli-T, markconroy, steveparks: Update the Umami Vegan Chocolate Brownie recipe
    #3028608 by danharper, Eli-T, markconroy, Not Real: Umami - favicon
    #2940027 by jmsosso: Add change record to @deprecated for AccountInterface
    #2995150 by msankhala, tim.plunkett: Command examples in core/tests/README.md are confusing and not executable
    #3024184 by seanB, andrewmacpherson, Kristen Pol: Make the tabbing order match the visual reading order in MediaLibraryWidget
    #2668416 by Krzysztof Domański, wheatpenny, Lendude, alexpott: Wrong assert in NodeTitleTest
    #2981870 by Lendude, alexpott: Duplicate BrokenSetUpTest for BrowserTestBase
    #2809513 by Lendude, brentgees: Convert AJAX part of \Drupal\responsive_image\Tests\ResponsiveImageFieldUiTest to JavascriptTestBase and the rest to BrowserTestBase
    #3027574 by tuutti: SqlContentEntityStorage no longer update entities with certain (id) fields
    #3026043 by Berdir: ConfigEntityBase::__sleep() serializes plugin instances if they were not previously initialized
    #3021395 by quietone, alexpott: MigrateDrupalTestBase::migrateContent(['translations') does not migrate translations
    Revert "Issue #3003238 by Sam152, amateescu, Berdir: EntityStorageException: Default revision can not be deleted in content_moderation_entity_revision_delete()"
    #2987418 by quietone, Kristen Pol: Rename MigrateUpgrade tests
    #3003238 by Sam152, amateescu, Berdir: EntityStorageException: Default revision can not be deleted in content_moderation_entity_revision_delete()
    #3026470 by alexpott, jrockowitz, Joseph Zhao: ArchiveTar is throwing fatal error
    Merged 8.6.7.
    Merged 8.6.6.
    #3015992 by Krzysztof Domański, alexpott, larowlan: Not affecting spacing in PhpTransliterationTest
    #2998769 by kiamlaluno, quietone, kkalaskar: @see directive used in the wrong place outputs the wrong HTML markup
    #3000677 by catch, Shane Birley, featherbelly, alexpott, larowlan: Fatal error after upgrade to 8.6x [due to regression in extension system]
    #2955457 by pfrenssen, Chewie, unrealauk, alexpott, Pol: ConfigFactory static cache gets polluted with data from config overrides
    #3020142 by mglaman, tim.plunkett: Test module no_transitions_css has invalid hook_page_attachments
    #3007973 by tim.plunkett, lukasss, xopoc, bnjmnm, stompersly: Layout builder prevents the rendering of extra fields (like Links) on pages not using Layout Builder
    #3024259 by Pol, alexpott: [PHP 7.3] Fix EnvironmentTest::providerTestCheckMemoryLimit() notice
    #3023747 by mikelutz, heddn: D6 profile migrations assume stubs, which fail
    #2978922 by brathbone, philipnorton42, msankhala, hardikpandya, alexpott, siliconmeadow: Improve batch_process() documentation
    #2845975 by quietone, Jo Fitzgerald, aleevas, maxocub, Gábor Hojtsy: Migrate Drupal 6 user profile field value option translations
    #2701829 by alexpott, andypost, Soul88, Graber, Eduardo Morales, dawehner, pingwin4eg, catch, Berdir, jibran, httang12: Extension objects should not implement \Serializable
    #2693727 by mikelutz, sanduhrs, CalebD, ajlib, Lendude, tstoeckler, catch: Limiting options for exposed Language filters causes errors and doesn't work for special languages

8.6.9:
Changes since 8.6.8:

    #2215857 followup by gaydamaka, timmillwood, alexpott, lauriii: Regression on Internet Explorer 11
    #3031128 by alexpott, TrevorBradley, indigoxela, catch, cilefen, larowlan, jibran: Update from 8.6.7 to 8.6.8 warnings - Drupal\Core\Extension\Extension has no unserializer
    Revert "Issue #2924201 by tim.plunkett, tedbow, larowlan, xjm, jibran, Kristen Pol: Resolve random failure in LayoutBuilderTest so that it can be added to HEAD"
    #2924201 by tim.plunkett, tedbow, larowlan, xjm, jibran, Kristen Pol: Resolve random failure in LayoutBuilderTest so that it can be added to HEAD

(wen)

Updated www/p5-HTML-Restrict to 2.5.0

(wen)

Update to 2.5.0
Update DEPENDS

Upstream changes:
v2.5.0    2019-02-08 22:18:11Z
        - Strip some control characters from links (GH#34) (Olaf Alders)
        - Enable empty_element_tags in HTML::Parser (GH#35) (Olaf Alders)

v2.4.1    2019-02-05 14:13:16Z
        - Bump version of Type::Tiny to 1.002001. (GH#33) (Olaf Alders).  Issue
          reported by Slaven Rezić (GH#32).

v2.4.0    2019-02-05 02:51:05Z
        - Process text until it returns the same value twice. (GH#31) (Olaf
          Alders).  Issue raised in (GH#29) by Juraj Major.
        - Add max_parser_loops attribute

(wen)

#5907

(spz)

Pullup ticket #5907 - requested by khorben
finance/bitcoin: security update

Revisions pulled up:
- finance/bitcoin/Makefile                                      1.9
- finance/bitcoin/distinfo                                      1.2

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: khorben
  Date: Mon Feb  4 22:06:22 UTC 2019

  Modified Files:
  pkgsrc/finance/bitcoin: Makefile distinfo

  Log Message:
  Update finance/bitcoin to version 0.16.3

  - From the release notes for version 0.16.2:

  Wallet
  * #13622 c04a4a5 Remove mapRequest tracking that just effects Qt
  display. (TheBlueMatt)
  * #12905 cfc6f74 [rpcwallet] Clamp walletpassphrase value at 100M
  seconds (sdaftuar)
  * #13437 ed82e71 wallet: Erase wtxOrderd wtx pointer on
  removeprunedfunds (MarcoFalke)

  RPC and other APIs
  * #13451 cbd2f70 rpc: expose CBlockIndex::nTx in getblock(header)
  (instagibbs)
  * #13507 f7401c8 RPC: Fix parameter count check for importpubkey
  (kristapsk)
  * #13452 6b9dc8c rpc: have verifytxoutproof check the number of txns
  in proof structure (instagibbs)
  * #12837 bf1f150 rpc: fix type mistmatch in listreceivedbyaddress
  (joemphilips)
  * #12743 657dfc5 Fix csBestBlock/cvBlockChange waiting in rpc/mining
  (sipa)

  GUI
  * #12432 f78e7f6 [qt] send: Clear All also resets coin control options
  (Sjors)
  * #12617 21dd512 gui: Show messages as text not html (laanwj)
  * #12793 cf6feb7 qt: Avoid reseting on resetguisettigs=0 (MarcoFalke)

  Build system
  * #13544 9fd3e00 depends: Update Qt download url (fanquake)
  * #12573 88d1a64 Fix compilation when compiler do not support
  __builtin_clz* (532479301)

  Tests and QA
  * #13061 170b309 Make tests pass after 2020 (bmwiedemann)
  * #13192 79c4fff [tests] Fixed intermittent failure in
  p2p_sendheaders.py (lmanners)
  * #13300 d9c5630 qa: Initialize lockstack to prevent null pointer
  deref (MarcoFalke)
  * #13545 e15e3a9 tests: Fix test case streams_serializedata_xor Remove
  Boost dependency. (practicalswift)
  * #13304 cbdabef qa: Fix wallet_listreceivedby race (MarcoFalke)

  Miscellaneous
  * #12887 2291774 Add newlines to end of log messages (jnewbery)
  * #12859 18b0c69 Bugfix: Include for std::unique_ptr (luke-jr)
  * #13131 ce8aa54 Add Windows shutdown handler (ken2812221)
  * #13652 20461fc rpc: Fix that CWallet::AbandonTransaction would leave
  the grandchildren, etc. active (Empact)

  - From the release notes for version 0.16.3:

  Consensus
  * #14249 696b936 Fix crash bug with duplicate inputs within a
  transaction (TheBlueMatt, sdaftuar)

  RPC and other APIs
  * #13547 212ef1f Make signrawtransaction* give an error when amount is
  needed but missing (ajtowns)

  Miscellaneous
  * #13655 1cdbea7 bitcoinconsensus: invalid flags error should be set
  to bitcoinconsensus_err (afk11)

  Documentation
  * #13844 11b9dbb correct the help output for -prune (hebasto)

  This also fixes a denial-of-service vulnerability (CVE-2018-17144). It i
  s
  exploitable by miners and has been discovered in Bitcoin Core versions
  0.14.0
  up to 0.16.2. It is recommended to upgrade any of the vulnerable
  versions to
  0.16.3 as soon as possible.

  XXX pull-up (security fix)

  To generate a diff of this commit:
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/finance/bitcoin/Makefile
  cvs rdiff -u -r1.1 -r1.2 pkgsrc/finance/bitcoin/distinfo

(spz)

oc: Updated databases/lbdb to 0.48.1

(tonio)

databases/lbdb: update to 0.48.1

Fix PR pkg/53953

(tonio)

#5905 #5906

(spz)

chat/psi: HOMEPAGE supports TLS

(nia)

doc: Updated chat/psi to 1.4

(nia)

chat/psi: Update to 1.4.

New in 1.4
- Fixed reconnection on Stream Management resume failure
- Fixed compatibility with Qt >= 5.10
- Improved media contents previews for WebKit version (YouTube and files)
- CMake-based build fixes

New in 1.3
- Fixed connection to Openfire server
- Fixed connections by IP (fixes socks file transfer as well)
- Fixed compilation with new version of Enchant
- Fixed broken file transfer after reconnection
- Minor UI fixes

New in 1.2
- Removed AIM and MSN icons.
- Fixed debug build on Visual Studio.
- Font and windows sizes adjusted for regular fullhd displays.
- Fixed crashes online account remove and contact delete from another resource.
- History DB and dialog improvements.
- Fixed crash on unrecognized dictionary encodings in hunspell checker.
- Added option to disable previews in webkit builds.
- Fixed Youtube links recognition.

New in 1.1
- Fixed a few crashes. Seems to be pretty stable now.
- Contact list was rewritten once again.
- Improved stream management (no more disconnects).
- Better support for HIDPI displays.
- More Psi+ patches merged.
- JDNS was replaced with QDnsLookup for Qt5 builds.
- CMake support.
- A lot of minor UI fixes.

New in 1.0
- Almost all Psi+ patches were merged (a lot of features).
- Plugins support is enabled by default.

(nia)

doc: Updated chat/ircd-hybrid to version 8.2.24

(fox)

ircd-hybrid: Update to 8.2.24

pkgsrc changes:
- No longer install a default ircd.conf file.  Upstream now only
  provides a reference ircd.conf file that needs to be adjusted.
  Document that in the MESSAGE.
- Remove INSTALL script.  All *.conf are no longer used, corresponding
  *.db living in ${VARBASE}/log/ircd-hybrid/lib are used instead
  ircd.motd is still honored and used but there is not a lot of point to
  continue to install it unconditionally without a configuration file.
- Remove `efnet', `halfops', `small-net' and `ziplinks' package options,
  corresponding configure arguments no longer available.
- No longer honor IRCD_HYBRID_SYSLOG_FACILITY, IRCD_HYBRID_NICLEN,
  IRCD_HYBRID_TOPICLEN, IRCD_HYBRID_MAXCONN and IRCD_HYBRID_SYSLOG_EVENTS,
  (syslog is no longer used and corresponding entry to set *LEN
  and *MAXCONN are now configurable via ircd.conf)
- Add LICENSE

Thanks to <spz> for suggestions!
Reviewed by <leot>.

Changes since 7.2.3:
-- Noteworthy changes in version 8.2.24 (2018-04-05)
o) Added "STATS s" to show configured pseudo {} blocks
o) Implemented channel mode 'N' which prevents users from changing their
  nick while in a channel with that mode set
o) Services clients are now shown with 'is a Network Service' in "WHOIS"

-- Noteworthy changes in version 8.2.23 (2018-03-26)
o) irc-operators are now able to see a user's resolved hostname in /whowas,
  and /whois even if the user has a fakehost/vhost
o) RPL_WELCOME now does use the rfc2812 style nick!user@host format
o) Removed rudimentary libgeoip support
o) Added --enable-efence switch to allow easy linking with the
  electric fence memory debugger library
o) "JOIN 0" is no longer supported
o) Fixed bug where ircd would not remove RPL_WHOISOPERATOR based svstags
  when deoppering
o) Fixed 'unknown closes' statistic in "STATS t" showing invalid values sometimes

-- Noteworthy changes in version 8.2.22 (2017-03-26)
o) Implemented channel mode 'L'. Channels with that mode set can make use of an
  extended ban list size specified with the new 'channel::max_bans_large'
  configuraton option. This mode can be set only by irc-operators or servers.
o) Implemented channel mode 'u' which hides bmask (+b/+e/+I) lists and mode changes
  to non-chanops everywhere
o) Fixed an issue with "TRACE" where remote servers would reply with RPL_TRACEUSER
  numerics containing UIDs
o) "STATS z" now shows simple memory stats of servers linked to the network
o) Added support for remote "ETRACE"

-- Noteworthy changes in version 8.2.21 (2016-11-27)
o) The 'general::default_floodtime' configuration option has been added
  along with the "SET FLOODTIME" command. These allow to fine-tune the
  message throttling better
o) Fixed an issue with /invite not showing the list of channels the
  sender is invited to

-- Noteworthy changes in version 8.2.20 (2016-11-05)
o) "INFO" now shows GnuTLS/OpenSSL library/header versions
o) Added 'channel::max_invites' configuration option. See doc/reference.conf
  for more information.
o) INVITE expirations have been implemented. Expire time can be adjusted with
  the 'channel::invite_expire_time' configuration directive
o) /whois notices to operators have been re-added. User mode +y is required
  to see them
o) The maximum line length for motd files has been increased to 320 bytes
  to support multibyte encodings better

-- Noteworthy changes in version 8.2.19 (2016-08-21)
o) Fixed a possible server name leak in "WHO" with server hiding enabled
o) "WHO" now allows opers to search by IP address
o) Admins no longer can see IP addresses in "STATS P" with
  'serverhide::hide_server_ips' enabled
o) User mode 'n' now shows nick name changes from remote clients, too

-- Noteworthy changes in version 8.2.18 (2016-06-22)
o) Fixed an assert when a client sends invalid LIST options
o) Fixed invalid memory stats of channel invites in "STATS z"

-- Noteworthy changes in version 8.2.17 (2016-04-21)
o) Fixed core on "REHASH CONF" with 'general::whowas_history_length'
  set to 0
o) Fixed possible core on "INVITE" with 'channel::max_channels' set to 0

-- Noteworthy changes in version 8.2.16 (2016-03-20)
o) Added 'general::whowas_history_length' configuration option which
  allows to define the maximum length of the WHOWAS nickname history
o) Services are now allowed to override 'general::min_nonwildcard',
  and 'general::min_nonwildcard_simple' settings
o) Minor updates to help files

-- Noteworthy changes in version 8.2.15 (2016-02-24)
o) Added proper support for Raspbian/ARM. Gracias to Beave/2600.net
  for providing a box for testing purposes.
o) Fixed an assert with empty user = "" directives in auth {} blocks
o) "STATS z" now shows allocated listeners
o) Fixed bug where 'can_flood' auth {} flags did not work on channels

-- Noteworthy changes in version 8.2.14 (2016-02-09)
o) Fixed server clustering
o) Major cleanups to the configuration subsystem
o) Improvements to libGeoIP support:
  - Works now with IPv6 addresses
  - Added 'libgeoip_database_options', 'libgeoip_ipv4_database_file',
    and 'libgeoip_ipv6_database_file' configuration directives to the
    serverinfo {} block
o) Further improvements to GnuTLS support

-- Noteworthy changes in version 8.2.13 (2016-02-02)
o) Implemented support for GnuTLS. Currently ./configure's autodetection
  intentionally prefers OpenSSL over GnuTLS, so OpenSSL detection needs
  to be disabled explicitely by using the --disable-openssl switch.
o) Minimum supported GnuTLS version is 3.3.8 now
o) Minimum supported OpenSSL version is 1.0.1d now
o) Added support for remote REHASH: REHASH <server> <option>
o) Added 'rehash:remote' irc-operator privilege flag
o) Added 'rehash' type to shared {} blocks
o) Fixed minor memory leak with shared {} and cluster {} blocks

-- Noteworthy changes in version 8.2.12 (2016-01-05)
#######################################################################
o) IMPORTANT: Character case mapping is 'ascii' now. It is recommended
  to update all servers on the network to prevent possible channel
  desynchronizations and nick name collision kills
#######################################################################
o) Added channel mode +T which forbids NOTICEs to be sent to a channel
o) Fixed minor SVSTAG memory leak
o) Fixed broken PART message blocking mechanism
o) ircd now makes use of up to 8 name servers that are specified in
  /etc/resolv.conf
o) The -klinefile, -dlinefile, etc. switches didn't work at all
o) Fixed possible core on ident lookups if ircd is out of file descriptors
o) Far client exit notices (+F) now show IP addresses, too
o) Made idle time look nicer in "STATS v|p" by using a formatted time string
o) 'general::ts_warn_delta', and 'general::ts_max_delta' can be set to 0 now
o) Several code cleanups and optimizations. Improved documentation

-- Noteworthy changes in version 8.2.11 (2015-11-19)
o) Implemented IRCv3.2 invite-notify extension
o) Implemented IRCv3.2 chghost extension
o) Added channel::invite_delay_channel configuration option

-- Noteworthy changes in version 8.2.10 (2015-11-06)
#######################################################################
o) IMPORTANT: renamed 'serverhide::links_delay' configuration directive
  to 'serverhide::flatten_links_delay'
#######################################################################
o) Added 'serverhide::flatten_links_file' configuration option
o) Fixed bug where changing 'serverhide::flatten_links_delay' on runtime
  would not have any effect
o) mkpasswd (tools): fixed broken bcrypt support on *BSD in conjunction
  with the -s and -l switches. Dropped MD5, DES and Extended DES support.
o) Removed CHALLENGE in favor of ssl certificate fingerprint enabled
  operator {} blocks
o) RSA keys with less than 2048 bits are no longer supported; same applies
  to the DH param file
o) Added missing irc-operator privilege flags to /stats o. For a full list
  of flags see doc/reference.conf

-- Noteworthy changes in version 8.2.9 (2015-09-13)
########################################################################
o) IMPORTANT: database files and links.txt are now stored in /var/lib
  instead of /etc, so make sure to move your k/d/x-line database files
  to the new path before (re)starting the ircd
########################################################################
o) IMPORTANT: the splitmode logic has been removed along with the
  following channel {} block configuration directives:
  'default_split_user_count', 'default_split_server_count',
  'no_create_on_split', 'no_join_on_split'
########################################################################
o) Added 'xline_exempt' to auth {} block flags
o) 'serverinfo::sid' is now optional. A unique SID is now automatically
  generated based on the server's name and description
o) Various fixes to the mkpasswd tool
o) If supported by the compiler, ircd-hybrid now compiles with
  '-fstack-protector-strong' instead of '-fstack-protector'
o) Services can now add RESVs (SQLINEs) that have wildcards in it
o) Channel name RESVs are now sanity checked for too broad masks
o) 'class::connectfreq' now works properly with values lower than 300 seconds
o) Implemented IRCv3.1 account-notify extension
o) The 'general::oper_pass_resv' configuration directive has been deprecated
  in favor of the new 'join:resv', and 'nick:resv' irc-operator flags.
  See doc/reference.conf for more information.
o) Added 'resv', and 'unresv' irc-operator flags. Previously, all
  irc-operators were allowed to RESV and UNRESV, regardless of configured
  privileges.
o) Added 'close' to irc-operator flags
o) ircd is using ISO 8601 date and time notation in most places now

-- Noteworthy changes in version 8.2.8 (2015-05-10)
o) ircd now rejects remote k-line requests for user@host mask that don't
  have at least 'general::min_nonwildcard' non-wildcard characters in it
o) Configuration related server notices are now sent to admins only as
  they potentially could leak passwords and other sensitive data to irc
  operators that don't have administrator privileges
o) The GLINE/GUNGLINE commands have been removed. KLINE in conjunction
  with cluster {} and/or shared {} blocks is now the recommended
  way to add global user@host mask based server bans
o) Added dline_min_cidr, dline_min_cidr6, kline_min_cidr, and kline_min_cidr6
  configuration options to the general {} block
o) Fixed bug where a REHASH would clear all X-Lines and RESVs that have
  been set with the XLINE/RESV commands
o) Fixed broken temporary remote XLINEs
o) The 'general::havent_read_conf' configuration directive has been removed
o) Various code cleanups

-- Noteworthy changes in version 8.2.7 (2015-04-05)
o) Fixed a potential buffer overflow with the BMASK inter-server command
o) Fixed undefined behavior in the HELP command module which could
  lead to stack corruption
o) Removed useless help files for inter-server commands

-- Noteworthy changes in version 8.2.6 (2015-03-29)
o) INFO now shows configured values of 'max_watch' and 'stats_m_oper_only'
o) WHOWAS now shows IP addresses to irc operators
o) Fixed bug that would allow remote clients to bypass the hard
  limit of max WHOWAS entries to be returned
o) Code cleanups and performance improvements

-- Noteworthy changes in version 8.2.5 (2015-02-24)
o) Fixed core on Mac OSX 10.10 and possibly some other systems when parsing
  the ircd.conf with configured pseudo {} blocks

-- Noteworthy changes in version 8.2.4 (2015-02-17)
o) Added SVSTAG command which services may use to add tags to users which can
  be seen in /whois
o) Added 'oper::whois' configuration option which allows to override the default
  RPL_WHOISOPERATOR numeric string shown in /whois.
o) IRC operators may now use +O on a channel even if they are only a half-op
o) Fixed bug where TOPIC messages were not n!u@h prefixed in case of TBURST
  issued by services clients

-- Noteworthy changes in version 8.2.3 (2015-02-11)
########################################################################
o) IMPORTANT: the following ircd.conf configuration directives have been renamed:

  max_clients -> default_max_clients
  join_flood_count -> default_join_flood_count
  join_flood_time -> default_join_flood_time
########################################################################
o) Fixed bug where "/rehash" would always reset the "MAX", "JFLOODTIME", and
  "JFLOODCOUNT" values that have been changed from within IRC via the "/set"
  command
o) Added channel mode +C which prevents users from sending CTCPs to a channel
o) Fixes to the NOTICE/PRIVMSG anti-flood logic
o) Allow to disable the NOTICE/PRIVMSG anti-flood mechanism by setting the
  'general::default_floodcount' configuration option to 0
o) Updated some help files
o) Minor code cleanups and improvements
o) Operators may now see certificate fingerprints, user modes and hidden
  channels via WHOIS as well. This used to be admin only.

-- Noteworthy changes in version 8.2.2 (2015-01-20)
o) Implemented IRCv3.1 extended-join extension
o) Channel half-ops can now use INVITE as well
o) Fixed broken 'make install -jX'
o) m_opme.c has been added to modules/extra. Can be used on opless channels only.
o) Added 'opme' to irc-operator flags
o) Updated several help files
o) The 'general::hide_spoof_ips' configuration option has been deprecated
o) The 'general::true_no_oper_flood' configuration option has been deprecated.
  Operators still can have higher 'flood' limits with no_oper_flood = yes;
  hoewever, they are no longer allowed to bypass RecvQ limits.
o) Added 'general::stats_m_oper_only' configuration option
o) Remote client connection notices (user mode +F) now do show IP addresses, too

-- Noteworthy changes in version 8.2.1 (2014-10-21)
o) Fixed bug where "UNDLINE remote.server IP" did not work as expected
o) Servers are now allowed to add/remove K-/D-/X-lines and RESVs
o) Usermode +G now no longer allows to override +g
o) Due to potential weakness, TLS session caching and session tickets
  have been disabled
o) Minor improvements to TS6 implementation
o) WHOWAS now shows the name of the services account a user was logged in

-- Noteworthy changes in version 8.2.0 (2014-08-24)
o) Successful operator logins are now announced globally via GLOBOPS
o) Cleanups and improvements to the resolver code
o) Cleanups and improvements to the poll() I/O event notification support
o) A topic mask can now be specified within the LIST options
o) All users may now see channel modes in the /list reply
o) Fixed bug where "NOTICE +#somechan" did allow bypassing resv {} channels,
  or channels that are set +c (no control codes)
o) pseudo {} blocks also known as service aliases have been implemented.
  See doc/reference.conf for more information.
o) Removed 'general::services_name' configuration option. This is now no
  longer needed.

-- Noteworthy changes in version 8.2.0rc2 (2014-08-03)
o) Improved AWAY throttling to allow for better fine-tuning. See the
  newly added 'away_count' and 'away_time' configuration directives
  in the general {} block
o) Support for the select() I/O event notification has been dropped
o) Minor code cleanups and improvements

-- Noteworthy changes in version 8.2.0rc1 (2014-07-20)
o) Miscellaneous code cleanups and stabilization fixes
o) ./configure now requires OpenSSL 0.9.8o or above in order
  to enable TLS/SSL support

-- Noteworthy changes in version 8.2.0beta4 (2014-07-06)
#####################################################################
o) IMPORTANT: channel halfops are now an integral part of ircd-hybrid
  and can't be disabled anymore
#####################################################################
o) Many code cleanups and improvements
o) Added flood control for the INVITE command. See channel {} block in reference.conf
o) Changed flood control logic for the KNOCK command. See channel {} block in reference.conf
o) INVITE without any parameters now shows a list of channels a client is invited to
o) The OPERWALL command has been removed. Use GLOBOPS instead
o) Added 'max_channels' to class {} blocks
o) Added 'throttle_count' configuration option to the general {} block
o) Added 'ssl_message_digest_algorithm' configuration option to serverinfo {} block.
  See doc/reference.conf for more information.
o) Added support for Elliptic Curve Diffie-Hellman (ECDH). Also an elliptic curve can be
  specified via the 'serverinfo::ssl_dh_elliptic_curve' configuration option.
o) Removed 'ssl_server_method' and 'ssl_client_method' configuration options.
  ircd now only allows TLSv1, TLSv1.1 and TLSv1.2 protocols depending
  on the OpenSSL version. SSLv3 is no longer supported.

-- Noteworthy changes in version 8.2.0beta3 (2014-05-26)
o) Code cleanups/performance improvements

-- Noteworthy changes in version 8.2.0beta2 (2014-05-15)
#########################################################################
o) IMPORTANT: renamed 'general::warn_no_nline' configuration directive to
  'general::warn_no_connect_block'
#########################################################################
o) Fixed bug with WHOIS not showing a list of channel names as expected
o) Added usermode +q which hides idle and signon time in WHOIS
o) Added usermode +p which hides channel list in WHOIS

-- Noteworthy changes in version 8.2.0beta1 (2014-04-29)
o) TS6 is now mandatory. ircd is no longer backwards compatible with TS5
  and below.
o) SVSJOIN and SVSPART commands have been added
o) Major code cleanups and refactoring. Improved overall performance
o) INFO now also reports MPATH (path to main motd (Message of the Day) file)
  and SPATH (Path to server executable)
o) Updated several help files

-- Noteworthy changes in version 8.1.20 (2014-07-20)
o) Fixed XLINE not working as expected
o) Fixed build with LibreSSL which hasn't compression support
o) Miscellaneous stabilization and cosmetical fixes
o) EGD support has been dropped

-- Noteworthy changes in version 8.1.19 (2014-07-05)
o) Fixed EOB logic for remote servers
o) Fixed bug where opers that have the +g/+G/+R umodes set won't receive server
  notices for remote CONNECT/KLINE/DLINE/XLINE/RESV attempts
o) Sending messages to user@server to local targets is now no longer possible,
  as this was an easy way to bypass +R/+G/+g user modes.
o) Fixed splicode logic so SPLITNUM now works as expected
o) Fixed UNDLINE not to require the IP address to be prepended with *@

-- Noteworthy changes in version 8.1.18 (2014-06-09)
o) Fixed CAP issue for certain clients
o) Fixed bug where "STATS p" would show an invalid amount of irc-operators
  in case there are any +H opers
o) irc-operators may now no longer set a channel +O if they are only halfops (%)
o) Channel halfops (%) may now no longer (de)halfop other channel members
o) Channel halfops (%) may now no longer KICK other channel halfops
o) Make sure general::stats_e_disabled gets reset via /rehash
o) Fixed compile warnings; code cleanups
o) Fixed bug where the configuration parser wouldn't truncate the network name
  if general::network_name contains spaces

-- Noteworthy changes in version 8.1.17 (2014-05-01)
o) Fixed possible WATCH core
o) Fixed bug where the configuration parser wouldn't take time units
  into consideration for the join_flood_time and throttle_time
  configuration options
o) Minor /list optimization

-- Noteworthy changes in version 8.1.16 (2014-04-20)
o) Fixed undefined behaviour with crypt() returning NULL
  since glibc2.17 in certain cases
o) Admins may now see all channel members via "WHO #channel"
  regardless of channel mode +s
o) Fixed corrupted "STATS U" output

-- Noteworthy changes in version 8.1.15 (2014-03-29)
########################################################################
o) IMPORTANT: ircd binary is now again placed into bin/ instead of sbin/
########################################################################
o) mkpasswd in tools/ now defaults to MD5 instead of DES
o) USERS command has been removed
o) Fixed issue with SVSNICK where clients self-collided when changing
  just the case of the nick name, i.e. somenick -> SomeNicK
o) Minor code cleanups and cosmetical fixes

-- Noteworthy changes in version 8.1.14 (2014-02-25)
o) WHOWAS now honors serverhide::disable_remote_commands
o) Improved TS6 inter-server communication
o) Minor code cleanups and speed enhancements
o) Added 'unxline' oper flag
o) Added support for "userhost-in-names" client capability
o) ircd now allows private rsa keys larger than 2048 bits
o) Fixed bug where signals stopped from working after restarting
  the ircd via SIGINT
o) Fixed bug where certain irc clients could not reconnect via TLS/SSL
o) Fixed long-standing bug where +p channels have been shown
  in the /whois reply

-- Noteworthy changes in version 8.1.13 (2014-01-07)
o) Fixed EOB not working for remote servers (resulted in fake
  direction notices)
o) Fixed remote client connection notices for servers that are
  more than one hop away
o) Fixed bug where ircd didn't timeout SSL connections that
  haven't finished the SSL handshake
o) Fixed several bugs with server hiding
o) Updated/fixed help files
o) WHOIS no longer sends a notice to +y operators

-- Noteworthy changes in version 8.1.12 (2013-12-22)
o) RPL_WHOISMODES now uses the 379 numeric
o) Serial number is now shown on start up
o) Fixed possible channel mode desynch with services
o) Fixed TS6 support with LOCOPS
o) Minor code cleanups
o) Fixed file descriptor leak with empty help files
o) Fixed issue with WEBIRC where hostnames were
  not validated

-- Noteworthy changes in version 8.1.11 (2013-12-06)
o) Administrators may now see channel modes in /LIST
o) Fixed compile error on BSD systems when building with kqueue()

-- Noteworthy changes in version 8.1.10 (2013-11-25)
o) Fixed bug with kqueue() where it occasionally dropped updates
o) Changed WHOIS to show a client's certificate fingerprint
  to administrators only
o) The WHO reply now shows whether or not a nickname has
  been registered with NickServ. ('r' status flag)
o) Fixed some flaws with server hiding
o) Fixed bug where "STATS P" would leak ip addresses to remotely connected
  administrators, even if serverhide::hide_server_ips was set to 'yes'
o) Services coders: added SVSKILL

-- Noteworthy changes in version 8.1.9 (2013-11-08)
o) Added usermode +W. Users connected via a webirc gateway get this
  mode set by servers.
o) /WHOIS now shows if a client is connected via a webirc
  gateway
o) Administrators may now see +s channels a user is in with /WHOIS.
  Secret channels are prepended with a tilde in the /WHOIS
  reply.
o) Administrators are now able to see all the user modes a user has
  set via /whois

-- Noteworthy changes in version 8.1.8 (2013-10-25)
o) Fixed bug that would lead to a desynchronized nick database
  throughout the entire network if using services enforced
  nick names (SVSNICK)
o) Cleaned up/modernized build system
o) Add -fstack-protector to CFLAGS if available. Basically checks for
  buffer overflows/stack-smashing attacks
o) When using anope 1.9/2.0 services, /WHOIS now shows the account name
  of a registered/identified client (numeric 330)
o) Administrators can now see +s channels in /LIST

-- Noteworthy changes in version 8.1.7 (2013-08-18)
o) Fixed issue with channel mode +n having no functionality at all
o) Fixed SSL certificate fingerprint validation for outgoing server connects
o) Updated several documentation files

-- Noteworthy changes in version 8.1.6 (2013-08-02)
o) Fixed possible core with empty motd files

-- Noteworthy changes in version 8.1.5 (2013-07-16)
o) Fixed bug that would prevent servers from linking together
  if connect::aftype isn't set

-- Noteworthy changes in version 8.1.4 (2013-07-05)
o) Added 'xline' and 'resv' logging types. See doc/reference.conf
  for more information
o) Fixed bug where remote /STATS requests were not rate limited
o) Fixed core with empty auth::spoof entries
o) Increased oper/auth/connect password length limit from 20 to 128
o) Minor fixes to nickflood control code

-- Noteworthy changes in version 8.1.3 (2013-06-23)
o) Fixed possible core on "STATS z"
o) Revised doc/reference.conf
o) Fixed broken --disable-libgeoip switch

-- Noteworthy changes in version 8.1.2 (2013-06-20)
o) Added general::cycle_on_host_change configuration option
o) Added general::stats_u_oper_only configuration option
o) Added support for SHA-256 ssl certificate fingerprint based operator{}
  and connect{} blocks.
  In conjunction with Anope 1.9/2.0 IRC-services, clients are now also able
  to automatically identify for their nick with ssl certificate
  fingerprints
o) Added operator::ssl_connection_required configuration option. See
  doc/reference.conf for more information
o) Added usermode +S (client is connected via SSL/TLS). Allows services
  to keep track of what users are connected via SSL, and allows to see
  ssl-status of remote clients in a /whois
o) Fixed a server name leak with server hiding enabled. Reported by
  Adam <adam@anope.org>

-- Noteworthy changes in version 8.1.1 (2013-06-06)
########################################################################
o) IMPORTANT: moved disable_remote_command configuration directive from
  general{} block to serverhide{} block
########################################################################
o) Minor code cleanups/performance improvements
o) Fixed bug where opers could see LOCOPS messages even if they don't have
  the +l mode set
o) Fixed bug where non-SSL clients could join +S channels on non-SSL servers
o) Implemented motd{} configuration blocks. See doc/reference.conf for more
  information
o) "STATS T" shows configured MOTD files

-- Noteworthy changes in version 8.1.0 (2013-05-23)
o) Minor code cleanups/performance improvements

-- Noteworthy changes in version 8.1.0rc1 (2013-05-19)
o) Fixed broken spoofs

-- Noteworthy changes in version 8.1.0beta5 (2013-05-15)
o) Removed 'remote', and 'global_kill' oper flags, and added 'connect',
  'squit', and 'kill' flags for better fine-tuning instead. Whether or
  not a specific action is allowed on a remote server can be controlled
  by appending the ':remote' flag. For example: 'kill' allows only local
  clients to be killed, whereas 'kill:remote' allows to issue a KILL for
  remote clients
o) Added 'locops' and 'wallops' to irc-operator flags
o) Improve/cleanup HELP system

-- Noteworthy changes in version 8.1.0beta4 (2013-05-09)
o) Implemented channel mode +M. Clients that haven't identified their
  name with NickServ may not speak in a channel that has this mode set
o) Fixed weird idletimes shown in /trace
o) Added 'nononreg' (+R) to general::oper_umodes
o) Added user mode +F (can see remote client connect/exit notices)

-- Noteworthy changes in version 8.1.0beta3 (2013-05-05)
o) PCRE support has been dropped
o) "STATS o" now shows how many times an oper{} block has been used.
  Similar to STATS x|q"
o) Implemented channel mode +c. Known from other ircds, this mode basically
  prevents users from sending messages including control codes to a channel
  that has this mode set
o) Fixed bug where bans were not checked against non-channel members when
  sending messages to a channel
o) Removed channel::quiet_on_ban configuration option. This feature is
  now enabled by default

-- Noteworthy changes in version 8.1.0beta2 (2013-04-28)
o) Fixed broken compile with libGeoIP disabled
o) Code cleanups; working towards stabilization and improved performance
o) Removed operflag 'nick_changes'. Operators can now set +n at will
o) Fixed shared{} blocks not working as expected
o) Fixed spoofs not working as expected

-- Noteworthy changes in version 8.1.0beta1 (2013-04-25)
########################################################################
o) IMPORTANT: name/channel entries can't be stacked any longer within
  a single resv{} block. Each entry now requires its own resv{} block.
  Read doc/reference.conf for more details
#######################################################################
o) Added resv::exempt configuration option. Exempt can be either a
  ISO 3166 alpha-2 two letter country code, or a nick!user@host mask.
  CIDR is supported
o) Removed channel::restrict_channels configuration option
o) Preliminary libGeoIP support. Currently only used for exempt entries
  in resv{} blocks
o) Improved WEBIRC authentication; added 'webirc' to auth::flags.
  A "webirc." spoof is now no longer required
o) Implemented new memory pool allocator which basically is based upon Tor's
  mempool allocator for Tor cells
o) Major code cleanups
o) Implemented new binary database storage for X-,D-,K-,G-Lines and RESVs.
  Temporary bans are now stored as well and will persist after a reboot
o) Channel based resv{} blocks may now contain wildcards
o) NICK/JOIN now shows the actual reason of reserved nick-/channelnames
o) contrib/ and its content has been removed from the tree
o) Added serverhide::hide_services configuration option
o) Added 'nononreg' (+R) to oper::umodes and general::oper_only_modes
o) Added support for "away-notify" client capability

-- Noteworthy changes in version 8.0.9 (2013-05-16)
o) Fixed bug where ircd would sometimes drop a services link because
  of a missing argument to the SVSMODE command
o) Fixed weird idletimes shown in /trace

-- Noteworthy changes in version 8.0.8 (2013-04-28)
o) "STATS s" now shows configured services{} blocks as well
o) Fixed compile warnings, minor code cleanups and optimizations
o) Increased nickname history length to 32768
o) Unidentified/unregistered nicks may not speak in +R channels

-- Noteworthy changes in version 8.0.7 (2013-04-12)
o) Services may now set a channel topic without joining the channel first
o) Fixed bug where /whois would send empty sockhost information on TS5
  servers
o) Remote server connection and split notices now go to new usermode +e.
  These previously used usermode +x.
o) Services may now change the host of a specific user
  via "SVSMODE <timestamp> <target> +x <hostname>"

-- Noteworthy changes in version 8.0.6 (2013-01-28)
o) Fix bug where idle time sometimes is 0 even if the client didn't
  send any private message
o) Fixed possible core in try_parse_v4_netmask()

-- Noteworthy changes in version 8.0.5 (2013-01-24)
########################################################################
o) IMPORTANT: nick and topic lengths are now configurable via ircd.conf.
  A max_nick_length, as well as a max_topic_length configuration option
  can now be found in the serverinfo{} block
########################################################################
o) Fixed build on GNU/Hurd as reported by Dominic Hargreaves
o) Fixed log files not getting reopened after /rehash
o) Improved logging of configuration file issues
o) ircd.pid has been accidentally saved in /var instead of /var/run
o) Linux RT signal support for notification of socket events has been dropped
o) Fixed "STATS Y|y" sometimes sending weird sendq/recvq values
o) INFO now also shows configured values of 'disable_fake_channels',
  and 'stats_e_disabled'
o) m_webirc.c is now officially supported, and has been moved from contrib/
  to modules/
o) /whois, /stats p, and /trace may now show fake idle times depending on
  how the new class::min_idle and class::max_idle configuration directives
  have been configured. This feature basically works in the same
  way as it does in csircd
o) The configuration parser now does support 'year' and 'month' units

-- Noteworthy changes in version 8.0.4 (2013-01-02)
o) Fixed possible core on USERHOST/ISON with optimization enabled
o) Fixed bug where can_flood sometimes didn't work as expected

-- Noteworthy changes in version 8.0.3 (2012-12-24)
o) Fixed core on UNDLINE
o) XLINE/KLINE/RESV/DLINE/SQUIT and KILL now have the same default reason
  if a reason hasn't been specified

-- Noteworthy changes in version 8.0.2 (2012-12-20)
o) Minor updates to the build system
o) Fixed broken --enable-assert configure switch
o) Fixed bug where timed events stopped from working if the system's
  clock is running backwards
o) STATS q|Q now shows how many times a resv{} block has been matched
o) Fixed contributed WEBIRC module
o) IRC operators may now again see server generated nick rejection notices

-- Noteworthy changes in version 8.0.1 (2012-11-04)
o) Fixed broken CIDR support for CHALLENGE based irc operator logins
o) Fixed class limits not properly applying to oper{} blocks
o) Fixed possible TBURST desynchronization with services
o) Fixed TBURST sending server's name to clients if it's a hidden server

-- Noteworthy changes in version 8.0.0 (2012-10-18)
o) Fixed an off-by-one with spoofs. Spoofs are now also checked for
  invalid characters
o) Removed general::use_whois_actually configuration directive. This is
  now enabled by default
o) Minor SQUIT handling fixes
o) Fixed bancache not being updated on CHGHOST/CHGIDENT

-- Noteworthy changes in version 8.0.0rc1 (2012-09-28)
o) Removed general::client_flood configuration option and added the
  new 'recvq' configuration directive to class{} blocks.
  The max size of a receive queue can be seen in "STATS Y"
  for each class
o) Allow the '[' and ']' characters in server description

-- Noteworthy changes in version 8.0.0beta3 (2012-08-24)
o) Fixed wrong syntax in several language files
o) Removed &localchannels
o) PRIVMSG to opers@some.server is no longer supported
o) Fixed bug that could lead to topic desynchronization
o) Removed serverhide::disable_hidden configuration option
o) Dropped ircd-hybrid-6 GLINE compatibility mode
o) Removed use_invex, use_except and use_knock configuration options.
  These features are now enabled by default

-- Noteworthy changes in version 8.0.0beta2 (2012-07-21)
o) channel::disable_fake_channels now also disables ascii 29 (mIRC italic)
  when set to yes
o) Added channel::max_chans_per_oper configuration directive. The old way
  was to let operators join three times the amount of max_chans_per_user
o) Replaced MODLOAD, MODUNLOAD, MODRELOAD, MODLIST and MODRESTART commands
  with the new MODULE command which can be fed with the LOAD, UNLOAD, RELOAD
  and LIST parameters.
  MODRESTART has been entirely removed. Use "MODULE RELOAD *" to reload
  all modules
o) Added back server notice when a client tries to obtain a reserved nick name
o) Removed OMOTD module
o) Added 'set' to operator privilege flags. Gives access to the "SET" command
o) Improved TS6 support
o) Channel keys/passwords are now case sensitive

-- Noteworthy changes in version 8.0.0beta1 (2012-05-28)
o) Implemented full services support, including but not limited to the
  following changes:
  - Added SVSNICK, and SVSMODE command handlers
  - Added service stamps to NICK/UID messages
  - Added SVS to server capabilities (CAPAB). SVS capable servers can
    deal with extended NICK/UID messages that contain service IDs/stamps.
  - Changed rejected client notices to go to new usermode +j.  These
    previously used usermode +r.
  - Added usermode +r (registered nick) and channelmode +r (registered channel)
  - Added usermode +R (only registered clients may send a private message)
  - Added channelmode +R (only registered clients may join that channel)
  - Various services shortcuts have been added (/NS, /CS, /NICKSERV, /CHANSERV, etc.)
  - Added services{} block to ircd.conf
  - Added services_name directive to general{} block
  - Added GLOBOPS mainly for services compatibility, but can be used by operators, too
o) Removed RKLINE and RXLINE commands. Regular expression based bans should
  only be added via ircd.conf
o) Added 'globops', 'restart', 'dline', 'undline' and 'module' operator
  privilege flags. Read doc/reference.conf for further explanation of what
  these flags control
o) Removed Idle-time klines
o) Cleaned up modules API. Old modules won't work anymore
o) Removed general::burst_away configuration directive. AWAY bursts are now
  controlled via connect::flags explicitly
o) Introduced new logging subsystem including log rotation based on
  file sizes. Log timestamp format is ISO8601 now
o) Added support for remote D-lines
o) Added usermode +H which is basically a replacement for the hidden_admin and
  hidden_oper operator flags. With usermode +H, irc operator status can now
  be hidden even on remote servers
o) Added CIDR support for operator{} blocks
o) Removed the servlink program. ircd-hybrid can now make use of
  SSL/TLS for inter-server communication.
  NOTE: compressed server links are of course still available, but a SSL/TLS
  connection is required, as compression is now handled via OpenSSL
o) Removed 'ssl_server_protocol' configuration directive and
  added 'ssl_client_method' and 'ssl_server_method' instead.
  Both of these options can now be changed at runtime
o) Oper login IDs are no longer limited to NICKLEN*2
o) Removed channel::burst_topicwho configuration option. Topicsetters are
  now sent by default
o) "STATS Y|y" now reports CIDR limits as well
o) Added m_webirc.c to contrib/
o) Overall code cleanup and speed improvements

-- ircd-hybrid-7.3.2 Release Notes
o) Added new m_webirc.c to contrib/
o) Added need_tls to auth::flags. Rejects clients that are not connected
  via TLS/SSL
o) Fixed compile warning with gcc 4.6
o) Minor fixes to m_cap module
o) Added CIDR support for operator{} blocks

-- ircd-hybrid-7.3.1 Release Notes
o) Fixed ERR_ACCEPTEXIST numeric string. Now gives proper
  nick!user@host mask output
o) Update RPL_ISUPPORT. CHANMODES now reflects new +OS channelmodes
o) Fixed random core triggered by exiting servers
o) Fixed invalid user and invisible count in /lusers which sometimes can
  occur if a server sends redundant usermodes within a NICK message

-- ircd-hybrid-7.3.0 Release Notes
o) Added Bulgarian language file provided by Borislav Borisov
o) Server hostmasking has been removed due to TS6 requirements
o) Fixed broken IPv6 detection
o) Minor code optimizations. Reduced memory consumption
o) User IDs are now shown in client connection notices
o) Increased maximum temporary kline time to 360 days
o) Added back STATS/TRACE/MOTD/ADMIN request notices. Removed
  spy_*_notice modules accordingly.
o) Channelmode +O; channel can be joined by ircops only.
o) Channelmode +S; only clients with a secure connection (ssl/tls)
  can join this channel.

-- ircd-hybrid-7.3-rc1 Release Notes
o) Major 64-bit cleanups and portability fixes.
o) Fixed bug where unregistered clients were not able to complete registration
  process with /quote PONG <ping_cookie> in case the client was assigned a
  zero value ping-cookie. This may only happen with general::ping_cookie
  being enabled.
o) "STATS z" now shows the actual amount of memory consumption being
  used by channel bans/excepts/invites.
o) Fixed archaic bug where bursting servers with missconfigured NICKLEN were
  able to desync the network's nickname database.
o) The PCRE library has been removed from the ircd sources. ./configure will
  now automatically detect an already installed version of the PCRE library.
o) Various resolver improvements and fixes
o) Implemented GUNGLINE (global ungline)
o) Completely rewrote build system. We're now using automake and libtool
o) Added support for SHA-256/512 encrypted passwords to mkpasswd. Whether
  passwords hashed using these algorithms will work depends on the system's
  crypt() implementation. For example, SHA-256/512 is available in glibc since
  version 2.7.
o) Added ssl_server_protocol configuration option to servinfo{}.
  Valid flags are 'sslv3' and 'tlsv1'
o) Added new 'server' option to listener::flags. Listener with that flag
  set may only accept server connections.
o) Fixed occasional core when placing RESVs on channel names
o) Fixed topic desynchronization which sometimes may
  happen during netbursts
o) WATCH support implemented. Known from other irc-daemons, such
  as Dreamforge and Bahamut. The general::max_watch configuration directive
  has been added in order to allow run-time configuration of how many
  watch entries a single client may have on its watchlist.
o) Fixed bug which would cause invalid invisible counts on oper-up in case
  operator::umodes and/or general::oper_umodes contains 'invisible'
o) Removed broken LazyLinks
o) Removed --disable-gline-voting configure option
o) Minor code optimizations and cleanups
o) ACCEPT now supports nick!user@host masks
o) Unregistered clients are no longer allowed to request the server's motd
o) general::dot_in_ip6_addr configuration option is obsolete and no longer exists
o) Dropped support for old style 'operflag = yes|no;' format

(fox)

revbump go dependents after lang/go111 and lang/go110 updates

(spz)

Pullup ticket #5906 - requested by bsiegert
lang/go111: security update

Revisions pulled up:
- lang/go/version.mk                                            1.54
- lang/go111/distinfo                                          1.5

-------------------------------------------------------------------
  Module Name:    pkgsrc
  Committed By:  bsiegert
  Date:          Thu Jan 24 09:26:21 UTC 2019

  Modified Files:
          pkgsrc/lang/go: version.mk
          pkgsrc/lang/go111: distinfo

  Log Message:
  Update go111 to 1.11.5 (security).

  This release addresses a recently supported security issue. This DoS
  vulnerability in the crypto/elliptic implementations of the P-521 and P-384
  elliptic curves may let an attacker craft inputs that consume excessive
  amounts of CPU.

  These inputs might be delivered via TLS handshakes, X.509 certificates, JWT
  tokens, ECDH shares or ECDSA signatures. In some cases, if an ECDH private
  key is reused more than once, the attack can also lead to key recovery.

  The issue is CVE-2019-6486 and Go issue golang.org/issue/29903.
  See the Go issue for more details.

  To generate a diff of this commit:
  cvs rdiff -u -r1.53 -r1.54 pkgsrc/lang/go/version.mk
  cvs rdiff -u -r1.4 -r1.5 pkgsrc/lang/go111/distinfo

(spz)

Pullup ticket #5905 - requested by bsiegert
lang/go110: security update

Revisions pulled up:
- lang/go/version.mk                                            1.55
- lang/go110/distinfo                                          1.4

-------------------------------------------------------------------
  Module Name:    pkgsrc
  Committed By:  bsiegert
  Date:          Thu Jan 24 09:33:08 UTC 2019

  Modified Files:
          pkgsrc/lang/go: version.mk
          pkgsrc/lang/go110: distinfo

  Log Message:
  Update go110 to 1.10.8 (security).

  This release addresses a recently supported security issue. This DoS
  vulnerability in the crypto/elliptic implementations of the P-521 and P-384
  elliptic curves may let an attacker craft inputs that consume excessive
  amounts of CPU.

  These inputs might be delivered via TLS handshakes, X.509 certificates, JWT
  tokens, ECDH shares or ECDSA signatures. In some cases, if an ECDH private
  key is reused more than once, the attack can also lead to key recovery.

  The issue is CVE-2019-6486 and Go issue golang.org/issue/29903.
  See the Go issue for more details.

  To generate a diff of this commit:
  cvs rdiff -u -r1.54 -r1.55 pkgsrc/lang/go/version.mk
  cvs rdiff -u -r1.3 -r1.4 pkgsrc/lang/go110/distinfo

(spz)

Updated textproc/py-openpyxl, textproc/py-natsort

(adam)

py-natsort: updated to 6.0.0

6.0.0:
Drop support for Python 2.6 and 3.3
Remove deprecated APIs (kwargs number_type, signed, exp, as_path, py3_safe; enums ns.TYPESAFE, ns.DIGIT, ns.VERSION; functions versorted, index_versorted)
Remove pipenv as a dependency for building
Simply Travis-CI configuration
Fix README rendering in PyPI

(adam)

py-openpyxl: updated to 2.6.0

2.6.0:
Bugfixes
* Exception on tables with names containing spaces.
* Cannot save files with existing images.

2.6.-b1:
Bugfixes
* Cannot use read-only mode with stream
* Hyperlinks always set on A1
* Internal row counter not initialised when reading files
* Exception raised on out of bounds date

2.6-a1:
Major changes
Implement robust for merged cells so that these can be formatted the way Excel does without confusion. Thanks to Magnus Schieder.

Minor changes
Add support for worksheet scenarios
Add read support for chartsheets
Add method for moving ranges of cells on a worksheet
Last version to support Python 2.7

Deprecations
Type inference and coercion for cell values

(adam)

doc: Updated net/youtube-dl to 20190208

(leot)

youtube-dl: Update to 20190208

Changes:
version 2019.02.08

Core
* [utils] Improve JSON-LD regular expression (#18058)
* [YoutubeDL] Fallback to ie_key of matching extractor while making
  download archive id when no explicit ie_key is provided (#19022)

Extractors
+ [malltv] Add support for mall.tv (#18058, #17856)
+ [spankbang:playlist] Add support for playlists (#19145)
* [spankbang] Extend URL regular expression
* [trutv] Fix extraction (#17336)
* [toutv] Fix authentication (#16398, #18700)
* [pornhub] Fix tags and categories extraction (#13720, #19135)
* [pornhd] Fix formats extraction
+ [pornhd] Extract like count (#19123, #19125)
* [radiocanada] Switch to the new media requests (#19115)
+ [teachable] Add support for courses.workitdaily.com (#18871)
- [vporn] Remove extractor (#16276)
+ [soundcloud:pagedplaylist] Add ie and title to entries (#19022, #19086)
+ [drtuber] Extract duration (#19078)
* [soundcloud] Fix paged playlists extraction, add support for albums and update client id
* [soundcloud] Update client id
* [drtv] Improve preference (#19079)
+ [openload] Add support for openload.pw and oload.pw (#18930)
+ [openload] Add support for oload.info (#19073)
* [crackle] Authorize media detail request (#16931)

version 2019.01.30.1

Core
* [postprocessor/ffmpeg] Fix avconv processing broken in #19025 (#19067)

version 2019.01.30

Core
* [postprocessor/ffmpeg] Do not copy Apple TV chapter tracks while embedding
  subtitles (#19024, #19042)
* [postprocessor/ffmpeg] Disable "Last message repeated" messages (#19025)

Extractors
* [yourporn] Fix extraction and extract duration (#18815, #18852, #19061)
* [drtv] Improve extraction (#19039)
    + Add support for EncryptedUri videos
    + Extract more metadata
    * Fix subtitles extraction
+ [fox] Add support for locked videos using cookies (#19060)
* [fox] Fix extraction for free videos (#19060)
+ [zattoo] Add support for tv.salt.ch (#19059)

(leot)

doc: Updated mail/getmail to 5.9

(schmonz)

Update to 5.9. From the changelog:

- documentation-only update; add note with workaround for Gmail SSL
  connections with OpenSSL 1.1.1 and later.
- update copyright dates.

(schmonz)

doc: Updated net/dhcpcd to 7.1.1

(roy)

Import dhcpcd-7.1.1 with the following changes:

* IPv4LL: Fixed build with this disabled
* IPv4LL: Remember last address between carrier resets
* BSD: Fixed initial link infos reported as LINK_STATE_UNKNOWN
* FreeBSD: Avoid panicing kernel for IPv6 prefix routes

(roy)

doc: Updated www/ikiwiki to 3.20190207

(schmonz)

Update to 3.20190207. From the changelog:

* graph: Add an optional "file" parameter
* emailauth: When email can't be sent, show the error message
* osm: Don't raise errors if tags don't have attached icons
* cgi: Avoid C compiler warnings for waitpid() on NetBSD
* Hide popup template content from documentation (Closes: #898836)
* meta: Make [[!meta date]] show an error if dates are invalid or
  Date::Parse can't be loaded
* inline: Cope with non-ASCII `rootpage` parameter.
  Thanks, Feng Shu
* table: Cope with non-ASCII content in CSV format tables.
  Thanks, Feng Shu
* trail: Allow unescaped punctuation in `pagenames` parameter
* comments: Hide "add comment" link from print stylesheet.
  Thanks, Antoine Beaupr辿
* recentchangesdiff, relativedate, toggle:
  Import JavaScript at the end of the page content, not the beginning,
  so that the browser can render content as soon as possible.
  Thanks, Antoine Beaupr辿
* inline: Add basic test coverage for [[!inline rootpage]]
* table: Add basic test coverage
* po: Add enough test coverage to reproduce Debian #911356
* comments: Improve test coverage
* tests: Exercise Unicode more
* aggregate: Fix aggregation of posts without a title.
  Thanks, Alexandre Oliva
* poll: Added postlink and posttrail options for better multi-page polls.
* Fix permalink to comments.

(schmonz)

doc: Updated chat/eggdrop to 1.8.4

(nia)

eggdrop: Update to 1.8.4.

The major changes in the release include:

    Lots of work on the compile process for less-commonly seen systems (SunOS, DragonFly, etc), and making Eggdrop more compiler-friendly in general
    Added and enhanced SSL/TLS warnings to make troubleshooting easier
    Raised the ban expiration limit from 1 year to 5 years, and added a new %y field to +ban
    Lots of work on TLS bot links
    Improved/clarified botnet TLS documentation- go read it!
    Made TLS fingerprints persistent across a botnet after relinking
    Sterilized a LOT of small, lingering bugs.

(nia)

doc: Updated chat/atheme to 7.2.9

(nia)

chat/atheme: Update to 7.2.9

Atheme Services 7.2.9 Release Notes
===================================

This is a security release fixing use after free that could potentially be abused
by an attacker already having the privilege to use SASL impersonation to cause a
denial of service. Users of 7.2.8 should update to version 7.2.9; older releases
are not affected.

Atheme Services 7.2.8 Release Notes
===================================

This is a security release fixing a memory leak that could potentially be abused
by attackers to cause a denial of service. Users of Atheme 7.2.7 should update to
version 7.2.8; older releases are not affected.

Atheme Services 7.2.7 Release Notes
===================================

Since late February 2016, Atheme is being brought back to development (managed and
maintained by a few of the fork maintainers). Atheme 7.2.7 is the first release
since that change. It includes various fixes, some backported from the forks.

security
--------

- [CVE-2014-9773](https://www.cvedetails.com/cve/CVE-2014-9773/): Remote attackers could modify the behavior of the Anope FLAGS compatibility code by registering the keyword nicks LIST, CLEAR, or MODIFY. Reported by ToBeFree.
- [CVE-2016-4478](https://www.cvedetails.com/cve/CVE-2016-4478/): Buffer overflow in XMLRPC code. Reported by hc.

nickserv
--------
- Make `VHOST` set cloak assigner and timestamp the same way HostServ does
- Make `INFO` call the `user_info_noexist` hook for queries that don't match an account
- Make `REGAIN` log you in if successful.
- Allow implementing custom filters for `LIST`
- nickserv/multimark: new module which allows multiple MARK entries per nickname.
- wallops when vhosting a marked account
- nickserv/vhost: update usercloak metadata on vhost removal
- nickserv/{enforce,ghost}: respect frozen accounts
- nickserv/set_accountname: disallow change if RESTRICTed
- nickserv/set_pubkey: new module (keeping backwards compatibility with old syntax)
- nickserv/set_nopassword: new module
- nickserv/{reset,set,send}pass: various fixes
- nickserv/regain: the target user's bannedness shouldn't matter
- nickserv: Verify that the nick being regained is valid.
- nickserv/enforce: prevent regaining reserved nicks
- nickserv/cert: Add CLEAR command
- nickserv/set_email: relax verification requirements so that typo'd email addresses can be fixed (closes #441)
- nickserv/list: new criterion VACATION
- nickserv/info: show "Channels" line if the source user also is the target

chanserv
--------
- Add a `$server:` exttarget accepting server masks
- Add `PUBACL` flag which allows the channel access to be public.
- Don't allow `DEOP` or `KICK` of a services bot.
- Don't try to expand extbans in various commands.
- Allow users with +O or +V flags to op/voice themselves, since they can regain op/voice
  by cycling the channel anyway.
- chanserv/clear_akicks: new module providing a `CLEAR AKICKS` command.
- Always move on to the next nick in case of an error in /cs op etc.
- Tell the user who they failed to op/voice if they don't have enough privs
- +e added to chanserv{} templates and founder_flags
- chanserv: remove set_founder
- chanserv: use myentity_allow_foundership() to control whether or not an entity can take +F (ref #427)
- chanserv/set_*: announce changes via verbose()
- chanserv/flags: make Anope FLAGS compatibility an option (addresses CVE-2014-9773)
- fix an issue where activating a channel in the moderation queue would op the wrong person
- chanserv: move libathemecore component of bouncing mode changes on secure channels to chanserv (closes #449)
- chanserv/clone: do not clone HOLD, and ANTIFLOOD AKILL flags
- MC_SECURE: do not deop services
- help: mention INFO instead of RECOVER

gameserv
--------
- gameserv/dice: make the maximum roll count configurable.

groupserv
---------
- Hook into `sasl_may_impersonate` to support group-membership checks
- groupserv/set_groupname: new module allowing renaming a groupserv group
- Added group_register and group_drop hooks (addresses #428)
- groupserv: Rewrite flags parser to use ga_flags
- groupserv: Fix incorrect behaviour for flags +*
- groupserv: Fix inconsistencies with FLAGS
- groupserv/main: allow groups to take +F (ref #427)
- Add unverified user check

helpserv
--------
- helpserv/ticket: optionally accept a close reason and send a memo to an offline user
- helpserv/ticket: mention possibility of using close reason in the help file, and log it

operserv
--------
- operserv/rwatch: allow creation of RWATCH rules which k-line if 'K' is a modifier on the
  provided regexp.
- some commands now use kline_add instead of kline_sts to allow easier management of automated klines

saslserv
--------
- Add support for SASL authorization identities
- Add a `sasl_may_impersonate` hook
- The DH-AES and DH-BLOWFISH mechanisms were removed in their entirety.
- Add support for IRCv3.2-draft SASL mechanism list caching, implemented by InspIRCd 2.2.
- saslserv/ecdsa-nist256p-challenge: add backwards compatibility for old pubkey syntax
- saslserv: call bad_password on SASL authentication failure
- saslserv: use message source to get the source server
- saslserv: try to include source host in SASL failure message
- SASL: Log mechanism used by authenticated clients

alis
----
- Add a `list ... -showsecret` flag (chan:auspex) to list secret channels

perl api
--------
- Export SaslServ's `sasl_may_impersonate` hook
- Forward compatibility for hooks

ircd protocol
-------------
- Add user flag for tracking external services clients
- inspircd: Hopefully fix ignored account names when linking to the network
- inspircd: Various improvements to InspIRCd 2.0 support
- inspircd: Remove InspIRCd 1.2 and 2.1beta support
- inspircd: Add support for rejoindelay property in InspIRCd 2.2
- inspircd: Change the opertype used from 'Services' to 'Service'
- ircnet: Implement oper-wallops, using individual notices
- ngircd: Enable +qaohv support
- ngircd: Ignore non-# channels for now
- ngircd: Implement oper-wallops, using individual notices
- unreal: Request MLOCK messages when linking to the network
- sporksircd: Nuke obsolete module
- clean up the mix of spaces & tabs
- convert ircd_t to C99 struct syntax
- unreal: fix checking of +f syntax
- ts6-generic: add DLINE/UNDLINE implementation
- ts6-generic: add support for sending mechlists
- unreal: Add support for unreal 4 in a separate module
- hybrid: remove obsolete module
- undernet: remove obsolete module
- ShadowIRCd: remove obsolete module
- inspircd: add ZLINE/UNZLINE implementation
- inspircd: use DELLINE for XLine removal
- inspircd: properly recognize CSTATUS_IMMUNE (+Y)
- inspircd: Only set hideoper mode on oper pseudoclients
- charybdis: Support chm_nonotice.so (Block channel notices) extension
- charybdis: Support cmode +M in charybdis and make it oper-only
- charybdis: Setting CMODE_IMMUNE as .oimmune_mode
- inspircd: Fix atoi logic error preventing maximum rejoindelay value

other
-----
- various: Fix quite a few resource leaks and possible null derefs
- crypto/pbkdf2: Detect malformed (truncated) hashes
- contrib/cap_sasl.pl: Import various fixes from freenode's v1.5
- contrib/cap_sasl.pl: Implement SASL EXTERNAL, ECDSA-NIST256P-CHALLENGE
- contrib/cap_sasl.pl: Fix crash if irssi has ICB or SILC plugins loaded
- contrib/cap_sasl.pl: Fix crash if disconnected while waiting for SASL reply
- transport/jsonrpc: new module implementing JSONRPC transport
- contrib/cap_sasl.pl: various other improvements
- time_format: show the timezone
- exttarget: explicitly disallow foundership for exttargets (closes #427)
- help: various updates to reflect changes
- help: clarify some behavior
- [database] Make services respect an external umask when saving
- transport/xmlrpc: Do not copy more bytes than were allocated (addresses CVE-2016-4478)
- add a user_can_login(si, mu) hook
- Add an option to strip build date for reproducible builds
- botserv/set_saycaller: (optionally) give caller-nick
- chanfix/fix: stay in log channel after fixes
- various: code style fixes, fix some memory leaks and some warnings
- i18n: mark more strings as translatable
- atheme.conf example: updated to reflect changes
- proxyscan/dnsbl: Improve the module and fix multiple crashes
- i18n: update po/POTFILES.in

crypto
------
- argon2d:  New module implementing algorithm that won the Password
            Hashing Competition (2015).
- pbkdf2v2: Newer module implementing PBKDF2-HMAC digest scheme
            with backward compatibility and limited forward compatibility

libathemecore
-------------

- add dline/undline core interface
- user_is_channel_banned(): respect +e if applicable
- user_is_channel_banned(): check for voice/op/etc.
- do not allow entities under restriction to take +F at all (closes #439)
- fix issue where pretty_mask would return host!*@*
- chanacs_user_flags(): do not grant effective flags other than +b to unverified users (closes #416).
- flags: update_chanacs_flags(): do not assume that a protocol module is loaded.
- try_kick(): add support for inspircd-style per-user kick immunity the right way
- entity: add new entity validator for taking +F (ref #427)
- logger: use ISO 8601 in log files

hostserv
--------

- hostserv: Remove group-specific offered vhosts when group dropped
- Add DROP command
- hostserv/request: Ignore request if requested vhost already set

Atheme Services 7.1 Release Notes
=================================
In addition to assorted bugfixes in various subsystems from 7.0, the
following changes have been introduced in 7.1.

ircd protocol
-------------
- ngircd: New protocol module.
- nefarious: Add Nefarious 2 SASL support.
- nefarious: Send account timestamp in svslogin.
- elemental-ircd: New protocol module.
- dreamforge: Remove protocol module.
- inspircd: Add support for server-side MLOCK and TOPICLOCK enforcement
- inspircd: Add support for matching extbans modifying matching logic
- inspircd: Add +H to channel modes
- inspircd: Add +X and +w to list-like mode list
- ircd-seven: Support charybdis extension cmodes on ircd-seven as well.
- ts6-generic: Add support for serverinfo::hidden
- unreal: Add support for extbans.
- unreal: Add cmode +P for permanent channel.

buildsys
--------
- MacOS 10.5 required for OS X builds.
- V=1 option to make for verbose output.
- Allow parallel building, i.e. with -j option.
- Dependencies tracked on a per-sourceunit basis
- Allow --disable-rpath to modify buildsys param LDFLAGS_RPATH
- Install default email templates
- Add --with(out)-libmowgli to force use of internal mowgli

chanserv
--------
- antiflood: New module to react to channel flooding
- quiet: Channel statuses are removed from the target user to ensure
  that the quiet takes effect.
- quiet: Allow unquieting improper masks on the quiet list.
- quiet: Notify target user when anything changes about them.
- quiet: Honor protected mode like with kick/kickban.
- quiet: Support IRCDs with quiet extbans like UnrealIRCd and InspIRCd.
- flags: New exempt flag +e, split from +r. Databases should be upgraded
  automatically.
- flags: Require FORCE argument and chan:auspex to oper override.
- flags: Allow users with +f and +o (+v) to set +-O (+-V) on self.
- access: Do not allow changing +F via ROLE command.
- Support multiple users as arguments for owner, op, halfop, voice,
  and quiet.

nickserv
--------
- sendpass: Accept grouped nicks.
- register: Allow any number of emailexempts.
- Do net send 'spam' notice if chanserv does not exist.
- Add confirmation for badmail:del
- listemail: Match on canonical addresses too
- info: Show setpass to services admins with user:auspex
- info_lastquit: New module to show last quit message in INFO
- resetpass: Allow specifying any grouped nickname.
- drop: Request confirmation when dropping an account.
- access: Allow TLDs
- Log sendpass sender and time
- Show entity ID in 'ACC' and 'INFO' commands.

groupserv
---------
- Restrict +f from +F-ing themselves
- Prevent +f-F from removing founders
- Prevent removing last founder of a group
- Make sure +F always have +f
- Notify users when they are invited to a group.

sasl
----
- Add ecdsa-nist256p-challenge mechanism
- Add dh-aes scheme, intended to replace dh-blowfish.
- Disable reload capability on all modules.

perl api
--------
- Add function to return entity ID
- Allow sending wallops
- Allow setting vhosts
- Allow transferring and dropping channels
- Change myuser_find to myuser_find_ext to allow lookups by UID.
- Add config.xs to retrieve config values from the Perl API
- Add functions to channel.xs to register a channel and to retrieve a
  limit, key, and ts.
- Allow channelregistration.xs to get/set flags and get used time
- Add registration and last seen time in account.xs

email
-----
- Put the network name in the subject field of outgoing emails.
- Add a module canonicalizing gmail addresses.
- Use canonical email addresses when checking for registration limits.

libathemecore
-------------
- Allow different send and receive passwords for uplinks
- Respect founder_flags config setting during channel succession
- Denote default crypt provider in version output.
- Include reason with kline expiration messages.
- Allow customization of the address for email from services.
- Add option to kline user@host instead of *@host
- Add qrcode API

botserv
-------
- Blacklist '/' from various fields.
- Monkeypatch notice() to rewrite source from chanserv to botserv.

crypto
------
- Rename 'fallback' crypt provider to 'plaintext'
- Allow crypto modules to be loaded and the database to be updated to
  the preferred crypto scheme on the fly.
- pbkdf2: New module implementing PBKDF2-HMAC digest scheme.

misc
----
- xmlrpc: Add metadata accessor
- security/cmdperm: New module which dynamically infers virtual
  permissions, such as command:chanserv:register
- alis: Strip mIRC color/control codes from topics.
- operserv/clones: Add option to give a few warning kills before applying
  a k-line
- Codebase is stringref clean (GitHub issue #60)
- memoserv/delete: Only accept numeric indexes.
- chanfix: Allow admins with chan:admin to register regardless of
  chanfix score.
- memoserv: Make inbox size customizable.
- Add dragon, a new, modular, ircd link performance benchmarking toolkit.
- Flood k-lines use IP address where available instead of hostname.
- Add !snotices and !wallops logging targets.
- Record vHost assigner and timestamp, and display in NS INFO output.
- Contrib modules have their own git repo.
- Add a git .mailmap
- gameserv/dice: Ensure loop paramaters are integers limited to 1000

atheme.conf
-----------
Be sure to check atheme.conf.example for more information on what each
of these settings does.
- Add 'registeremail' setting to serverinfo{}, specifying address that
  services emails should originate from.
- Add 'hidden' setting to serverinfo{}, specifying that the services server
  should be hidden in /links output (limited to some ircds).
- Split 'password' setting in uplink{} into 'send_password' and
  'receive_password' (optional).
- Move 'maxnicks' setting from serverinfo{} to nickserv{}
- Move 'maxchans' setting from serverinfo{} to chanserv{}
- Add 'antiflood_enforce_method' to chanserv{} for chanserv/antiflood
- Add 'maxmemos' setting to memoserv{}
- Add !snotices and !wallops logfiles
- Add 'permissive_mode' setting to general{}, specifying manner of
  command denials.
- Add 'kline_with_ident' and 'kline_verified_ident' to general{}
- Add 'binddn' and 'bindauth' conf items to ldap{}
- Document "user" operclass.

Atheme Services 7.0 Release Notes
=================================
All bugfixes from the 6.0 branch of Atheme are also in 7.0.

dbverify
--------
- New utility.  Performs extensive and complicated consistency checks
  on your OpenSEX object store.  It can find things like:
  - corrupt AKICK entries (AKICKs with other flags/metadata that shouldn't be there);
  - duplicate channel ACL entries;
  - entity ID collisions
  It can find other stuff too, and will be expanded upon in the future.
  Think of it like a `fsck(1)` for your object store.

ircd protocol
-------------
- bahamut: add experimental support for bahamut-2.0 NICKIPSTR
  capability.
- charybdis: Add support for locking of modes provided by
  extensions modules.
- unreal: Add support for changets.
- inspircd: Add support for locking the +H channel mode.
- ithildin, bircd, plexus and ptlink protocol modules removed.
- inspircd: Users are now warned when they attempt to link on a client
  port instead of a server port.
- unreal: Add SASL support.
- unreal: Implement full support for mlocking +f.

chanfix
-------
- New service. Similar to EFNet's chanfix service.

chanserv
--------
- sync: New module based on cs_sync from contrib. Adds autosync on
  ACL change (and the ability to turn it off).
- channel entrymsgs are now displayed in INFO.
- akick: Support added for timed AKICKs.
- ban, quiet and akick: Atheme now fills in the parts of a hostmask
  that are missing with these commands.
- access: Various cleanups.
- cs_access_alias: New contrib module. Allows level-style pseudo
  access lists.
- clone: New module allowing you to clone a channel's access list,
  flags and metadata to a new channel.
- cs_badwords: New contrib module. Allows channel staff to specify a
  badwords list for a channel and what action to take when a user
  says one of the words in the channel.
- moderate: New module allowing operators with PRIV_CHAN_ADMIN to moderate
  channel registrations.  This is especially useful in combination with
  chanfix.  It is also useful in maintaining a standard of content correctness
  for specialized chat systems.

exttarget
---------
- exttarget/main: a new framework has been added which extends the
  entity subsystem further, allowing for entities to be dynamically
  constructed with the purpose of matching against any kind of user
  or account attribute in channel access lists.  these targets can
  take optional parameters.
- exttarget/oper: $oper extended target added.  this target allows you
  to match against all opers on the network in channel access lists.
- exttarget/registered: $registered extended target added.  this target
  matches anyone who is logged into services.
- exttarget/channel: $channel extended target added.  this target allows
  you to match anyone who is on a channel.

groupserv
---------
- all groupserv commands are now modules. Your atheme.conf will need
  to be updated for this change if you use groupserv.
- add join_flags config option and SET JOINFLAGS command. These allow
  changing the group flags a new user will get upon JOINing the group.
- add the +b (ban) flag. This prevents accounts matching it from JOINing
  the group.
- fflags: New command. Allows services operators to force a flags change
  on a group they they do not have access to.
- list: Allow refining the list with a pattern.
- listchans: New command. Allows group members with the +c flag to see all
  channels that group has access in.
- honor user:regnolimit permission in relation to the maximum number of groups
  a user may register. (SRV-125)

gameserv
--------
- many refactorings
- calc: new command. Allows doing basic math with GameServ.
- gs_roulette: New contrib module. A game of Russian Roulette.
- lottery: New module that randomly chooses one user out of the channel
  members.
- happyfarm: New (skeleton) module that's a game like FarmVille! But on IRC!

hostserv
--------
- added a new host_request hook to catch and do other things with host requests.
- reject: Add a optional reason parameter that will be memoed to the user with the
  rejection notice.

memoserv
--------
- ms_fsend: new contrib module. Allows sopers to override a target user being
  set NOMEMO or having the source user on ignore.

nickserv
--------
- restrict: New module that allows services opers to stop users from using
  commands that can be abused (hostserv/request, hostserv/take,
  groupserv/register, etc)
- emailexempts: New config option. Lets you specify email addresses that have
  no limit to the number of accounts they can have registered.
- when logging into a new account, users are informed that they will be logged
  out of their old account.
- when doing RELEASE or REGAIN against a user logged into an account, log
  them out of the account.
- old Atheme-1.x-style external logout implemented. Allows logging another user
  logged into your account out remotely.
- listgroups: New module that shows you which groups you have access in.
- nevergroup: New module that prevents anyone giving you access to a group.
- badmail: New module which allows setting email addresses (or glob patterns)
  which are not allowed to register accounts on-the-fly.
- nickserv now allows passwords longer than 32 characters if the database is
  being hashed.
- subscribe: Removed as it had many flaws and no one used it.
- ns_cleannick: new contrib module. Forces a nick change on a user if their nick is
  'lame' using case normalisation.

operserv
--------
- emailexempts and autokline exempts are now shown in INFO.
- modreload now rehashes the config if the module requires it and reloads modules
  that depend on the specified module.
- clones: Many cleanups.
- clones: Added an option to variable increase the clone limit if a users' clones
  are identified.
- soper: Allow adding a new SOPER with a password (optional, of course).
- set: Adds the ability to temporarily modify some config options on-the-fly.
- info: Add a new hooks so modules that add config options can also add lines to
  the operserv/info output.
- os_modeall: New contrib module. Allows setting a given mode on all channels.
- os_joinmon: New contrib module. Facilitates monitoring certain users and when
  a monitored user joins a channel, that information will be sent to the services
  log channel.
- os_resolve: New contrib module for testing the asynchronous DNS resolver.
- the RWATCH database is now serialized as opensex entities.
- specs: add support for groupserv-related permissions and clarify meanings of
  the various 'auspex' privileges. (SRV-125)

proxyscan
---------
- New service. Currently implements only a DNSBL scanning module.

rpgserv
-------
- New service. For finding and joining RP games on an IRC network.

scripting
---------
- Support for scripting Atheme in Perl added. Perl scripts are loaded with
  OperServ MODLOAD just like modules. Still in alpha. Add the --with-perl configure
  switch to enable it. POD-style documentation for the perl API is in doc/perl/.

statserv
--------
- New service. For querying for statistics about the network.

xmlrpc
------
- moved to transport/xmlrpc . Your atheme.conf will need to be updated for this
  change if you use xmlrpc.
- bad_password() is now called on invalid XMLRPC logins.

code
----
- libmowgli-2 is now required instead of libmowgli.
- a bit of the signal code and linker code was converted to use the mowgli
  implementations.
- charybdis' asynchronous DNS resolver added.
- mowgli.global_storage can now be used to make a module's data persistent on
  module reload. It is currently only used in GroupServ.
- many assertions added in various places throughout the code.
- added a new AC_AUTHENTICATED pseudo-priv to replace many identical checks if
  a user is logged in throughout the code.
- irc parse/uplink state has been made modular.
- atheme core has been changed to build as a library.
- all the old SNOOP channel code has been removed. SNOOP has been deprecated since
  5.1 and gone since 5.2.
- MODULE_USE_SYMBOL() was removed in favour of MODULE_TRY_REQUEST_SYMBOL().
- most service-specific (config file) code split out from the core.
- configuration-defined usernames are now truncated at USERLEN (10 characters).
- UID generation split out from the core.
- module_load can now be hooked into. This is particularly useful for scripting
  modules.
- entities now have unique IDs.  unique IDs may be referenced in all XMLRPC and
  IRC commands.
- strlcpy()/strlcat() have been replaced with mowgli implementations.
- atheme.string has been replaced with mowgli.string.
- add new hook_channel_acl_req_t structure for channel_acl_change hook, which is
  intended to describe ACL changes more effectively.
- call shutdown(2) on sockets being closed to help some TCP stacks be more aggressive
  when closing sockets.
- use mowgli_eventloop_pollable instead of old eventloop code.
- Windows is now supported.

other
-----
- ensure buffers passed to strftime() are large enough to fit the entire string.
  strftime() is not really required to behave in any specific way in the event of
  buffer overflow.
- ircd_announceserv: New contrib service. This allows users to request network
  announcements (which sopers must approve before they're sent).
- an access {} config block was added allowing rewriting of command privs.
  If specified, the user must match the original priv and the rewritten priv.
- allow Atheme datadir to be specified on the command-line when starting.
- many improvements to the LDAP authentication module.
- general::immune_level config option added. This allows customising the operlevel
  that gets kick immunity privileges.
- DNS Blacklist scanning module added. This module will scan connecting users
  against a list of DNS blacklists and take action if the users' IP is in one
  of the blacklists. This module is mainly managed through operserv.
- allow SASL authentication for any nick linked to the account, not just the
  accountname.

Atheme Services 6.0 Release Notes
=================================
All bugfixes from the 5.2 branch of Atheme are also in 6.0.

ircd protocol
-------------
- inspircd: Support for owner, halfops and admin are now dynamically
  enabled by what modes exist instead of being enabled by what modules
  you have loaded in inspircd.
- support for InspIRCd 1.1, OfficeIRC and UltimateIRCd 3 has been removed.

opensex
-------
- opensex is now the required database format. All flatfile will do is
  convert your flatfile database to opensex and exit.
- converted many modules that use external databases to using opensex.

chanserv
--------
- new module: chanserv/access.  this adds role-based channel acl via the
  ACCESS and ROLE commands.
- new module: chanserv/successor_acl.  this adds a +S channel acl flag which
  will weight a user as a successor.
- modules may now override the succession process using the new
  channel_pick_successor hook.
- chanserv/list: Enhance by adding many possible criteria to match channels
  against.
- new set_prefix module. This module allows channels to define a channel-specific
  fantasy prefix. The channel-specific prefix is displayed in the INFO for the
  channel. This is particularly useful if the channel uses an external bot that
  conflicts with the services default fantasy prefix.
- new clear_flags module. This allows founders to remove all entries from the
  channel access list except other founders.

groupserv
---------
- new service that allows users to form groups of accounts and apply the
  same ACL entries to them, send memos to them and other features.

helpserv
--------
- new service that allows users to request oper help in different ways.
  Currently either via a ticket system or by "pinging" the opers with a
  request for help.

hostserv
--------
- allow activating or rejecting all waiting vhosts by using '*' instead of
  a nick.
infoserv
--------
- oper-only message support. You can now give messages an importance where
  they will only be sent to opers upon oper-up.
- in infoserv message subjects, underscores will now be replaced with spaces
  so you can have multi-word subjects.
- allow customizing the number of infoserv messages shown to users on connect.

nickserv
--------
- new contrib module, ns_waitreg that allows you to specify how long a user must
  be connected before they can register a nick.
- new regnolimit module. Allows opers to set users as able to be exempt from channel
  registration limits. (how many channels may be registered to one account)
- nickserv/list: Enhance by adding many possible criteria to match users against.

operserv
--------
- new readonly module. This allows changing the readonly state at runtime.

xmlrpc
------
- the legacy xmlrpc/account, xmlrpc/channel and xmlrpc/memo modules have been
  removed. These have been deprecated for over 4 years and you should be
  using xmlrpc/main and atheme.command for all your xmlrpc uses.
- the xmlrpc core has been rewritten a little bit to use mowgli's patricia tree
  code.  this should bring a performance improvement over the hashtable code it
  was using.
- xmlrpc has been completely moved out of core
- a new command, atheme.privset has been added to get the soper privs of a user.

code
----
- default values in config options are now supported. This is particularly
  useful in modules and cleans up the config code a bit.
- many bugfixes and compile warning fixes.
- the flags code has been cleaned up to assume that there is only one flags
  table.
- the flags code is now extendable by modules.
- mychan_pick_candidate() is now in the public API.
- the core now lives in an ipv6 world.  it's 2010 - if your operating system
  doesn't support ipv6 - you suck.
- ctcp handling has been rewritten.
- new easter egg.
- the shrike hash function (shash()) has been removed as there was no longer
  anything using it.
- the "symbolmatrix" code was removed because we went with a different solution
  instead long ago.
- myuser_t is now a child of myentity_t which describes an entity that can have
  channel membership.
- list_t/node_t have been removed in preference of mowgli.list.
- balloc has been removed in preference of mowgli.heap.

other
-----
- added an anope 1.9.2 flatfile DB to OpenSEX DB conversion script.
- mail sending has been changed, likely causing serverinfo::mta scripts to
  break. The command is now passed "-t" rather than the email address and
  the shell is no longer used.
- the SDK hg revision of modules in now shown in MODINSPECT.

Atheme Services 5.2 Release Notes
=================================
Note: We are looking for additional developers to help with maintenance of
Services.  After almost 7 years of development, many of the programmers have
moved on.

ircd protocol
-------------
- inspircd: track channelmodes +D (delayjoin) and +d (delaymsg).

chanserv
--------
- split out SET into seperate modules for each SET command. chanserv/set
  is now a "meta-module" that depends on all the set_* modules.

hostserv
--------
- added OFFER module that allows opers to offer vhosts to users.
- made the request system (specifically the ACTIVATE command) not send
  a memo to the user.

infoserv
--------
- new service. infoserv allows opers to send notices to users when they
  connect or at the time of running the command (like Global).

nickserv
--------
- split out SET into seperate modules for each SET command. nickserv/set
  is now a "meta-module" that depends on all the set_* modules.
- added cracklib module that checks users' passwords on REGISTER and lets
  them know if the password is secure or not. You can have it just warn
  the user or disallow them from registering with a configuration option.
- added ns_generatehash contrib module to generate a password hash for
  a soper if you have crypto enabled.
- removed ns_ratelimitreg contrib modules as its functionality is now in
  core.

operserv
--------
- added expiry time to clone exempt

code
----
- replace the atheme-services build system with the ACBS used by many other
  Atheme projects.
- rework the colour and special character stripping for xmlrpc.
- remove snoop(). any modules still using snoop() will fail to compile on
  atheme 5.2. please replace it in your code with logcommand() or slog().

other
-----
- ircservtoatheme: generally make a bit more robust.
- added ratelimiting support to hostserv/request, chanserv/register and
  nickserv/register.
- add a new database format called opensex.  This is available in 5.2 as a
  "technology preview" and will be mandatory in 6.0.

Atheme Services 5.1.1 Release Notes
===================================

ircd protocol
-------------
- TS6: Rework MLOCK a bit to make it more robust and support more modes.

operserv
--------
- add os_helpme contrib module. Thist module marks a user as a network helper.
  This will only work on ircd's with the helpop (usually +h) user mode.

other
-----
- add extends directive to operclasses so one operclass can inherit privledges
  from another. See the example config for details. Note, you can have two
  operclasses with the same privledges, so extending is not forced.

Atheme Services 5.1 Release Notes
=================================
### [MERGED] indicates items merged to the 5.0 branch

ircd protocol
-------------
- inspircd: common code has been merged into inspircd-aux, this will continue
  in the next version with inspircd 1.1 support.
- inspircd: several unsupported module configurations are now programatically
  marked as such.
- inspircd: permanent channels are now tracked in 1.2 and later. (SRV-29)
- inspircd: add support for receiving SVSNICK (nick collisions)
- inspircd: add support for m_ojoin
- TS6: add support for MLOCK
- shadowircd: updated module to shadowircd6
- hyperion: removed
- Added support for ithildin1. This is still a bit experimental.
- ircnet: support added for server hostmasking.

botserv
-------
- add missing helpfiles
- botserv bots now quit instead of splitting when terminating/restarting
  services (SRV-12)

chanserv
--------
- FLAGS: allow +F* as well as +*F

hostserv
--------
- add missing helpfiles

nickserv
--------
- add support for CERTFP (CERT command)

operserv
--------
- reject jupes with names containing wildcards.
- add os_trace contrib module. This module looks up users by various criteria
  and lets you perform actions on them.
- add os_akillnicklist contrib module. Automatically AKILLs a list of clients,
  given their operating parameters.
- change CLEARCHAN GLINE action to AKILL to be more consistent with the rest
  of Atheme. GLINE still exists as an alias to AKILL.

saslserv
--------
- add AUTHCOOKIE SASL method which allows for integration with Iris

code
----
- add taint subsystem which allows developers to programatically define
  unsupportable conditions.
- constify *line_sts() protocol module functions.
- track deaf umode and set it on services clients if fantasy is disabled.
- allow #else in helpfiles
- startup flag -r (read-only) added.
- enable large file support.
- Add 'force_language' to sourceinfo_t, which forces the locale
  to be reset to the language specified by the sourceinfo structure.
  Useful for forcing XMLRPC responses to be in English.
- force dependency calculation before most targets to fix -j problems; there
  is a new target build-nodeps to skip this for subsequent builds (like the
  old behaviour of build).

other
-----
- logging system entirely reworked.  snoop() is deprecated and will be
  removed in the next version.
- add general::exempts config block, for masks that will never be
  automatically klined.
- add configurable command aliases to the services blocks
- helpfiles added for all contrib modules.
- make the wumpus contrib module compile and work again.
- anope_convert: support newer 1.8.x Anope versions and made anope_convert
  a bit more robust in handling encrypted passwords.

Atheme Services 5.0.1 Release Notes
===================================

botserv
-------
- When kicking users from an otherwise empty channel, set INHABIT, so that
  the bot leaves the channel after a short delay.

code
----
- Remove legacy .disp field from core services structures.

Atheme Services 5.0 Release Notes
=================================
### [MERGED] indicates items merged to the 4.0 branch

ircd protocol
-------------
- inspircd12: fix UID parsing and rejoining services after kicks. **[MERGED]**
- TS6: allow nicer topic setting using charybdis 3.2's ETB.
- hyperion: fix a bug that could cause the hostnames of services clients
  to be overwritten. **[MERGED]**
- plexus: port to ts6-generic, add UF_IMMUNE for +N, add support for
  permanent channels.
- hybrid: fix a crash.
- unreal: use SVSKILL for kills from NickServ. This reduces excessive server
  notices.

nickserv
--------
- Matching a nickname access list entry no longer resets last used time.
- Allow authentication via an LDAP server.
- Add some missing help files.
- Start the enforce timer on /ns set enforce on.
- Add a per-account language setting. This currently does not work very well.
- Prepend "(restored) " to marks restored from previously deleted accounts.
- Change VHOST syntax, adding an ON/OFF keyword and requiring a FORCE keyword
  to set a vhost on a marked account. The old syntax still works for vhosts
  containing a dot, colon or slash.
- Add ns_listlogins contrib module. This allows logged in users to see real
  hosts of their other logins.

chanserv
--------
- Set owner/protect on the founder of a new channel, if appropriate.
- Do not set protect status if the user already has owner.
- Rework successor selection for channels to respect flags more. **[MERGED]**
- Allow users with +V to voice themselves.

botserv
-------
- New service. This allows users to have a "bot" join their channel instead
  of ChanServ.

hostserv
--------
- New service. This adds per-nick vhosts and a request system to what
  /ns vhost provides. As long as per-nick vhosts are not used it interoperates
  with /ns vhost.

alis
----
- Add -maxmatches option which xmlrpc and chan:auspex may set to higher than
  the default.

oper
----
- Fix a possible crash with /os greplog. **[MERGED]**
- Add SGLINE system for bans by realname (TS6 xline).
- Services ignores no longer apply to users with general:admin privilege.
- Add /os listklinechan to the os_klinechan contrib module.
- Add os_kill contrib module. This allows opers to kill users while hiding
  their identity. (This was added earlier, but not linked to the build.)
- Add SQLINE system to disallow nick and channel names (TS6 resv).
- Fix possible crash with /os noop.
- RWATCH now also watches nick changes.

xmlrpc
------
- Remove 4K limitation on length of xmlrpc command output. **[MERGED]**

code
----
- Remove select() support and code to allow multiple "socket engines".
  poll() is sufficient.
- Rework the network connection code to be cleaner and more flexible.
- Close all connection_t fds in child processes.
- Allow using sourceinfo_t.v with IRC sources.
- Some tweaks to the build system.
- Add type checking to the hook system. See src/hooktypes.in. It may be
  necessary to specify --enable-warnings to configure to enable the checks.

other
-----
- Try to detect MacOS X crypt(3) breakage in crypto/posix and generate a DES
  based hash.
- Allow the user_add hook to remove the user from the network safely.
- Add user_nickchange hook for nick changes, which is also allowed to remove
  the user from the network.

Atheme Services 4.0 Release Notes
=================================
[MERGED] indicates items merged to the 3.1 branch

ircd protocol
-------------
- Add support for ShadowIRCd 5 **[MERGED]**. This replaces the support for
  older versions of ShadowIRCd.
- hyperion: improve detection of overwritten I:line spoofs.
- hyperion: Add support for UF_IMMUNE.
- general: Do not enforce AKICKs against users marked UF_IMMUNE; it is
  impossible to ban them effectively.
- inspircd12: various fixes and updates.
- ratbox: make akills work with ircd-ratbox 3.x.
- ratbox: add support for ratbox services shortcuts (ENCAP RSMSG,
  m_rsshortcut.so)
- nefarious: allow /ns vhost (FAKEHOST).
- nefarious: let services joining channels op themselves, avoiding HACK(4)
  notices
- ircd-seven: new protocol module
- Limit the send queue to the ircd to a configurable value, default 1MB.
  Large networks may need to increase this.
- Limit IRC command output to 2000 lines. XMLRPC is unaffected.
- Add tracking for the "server admin" umode in some ircds.
- ptlink: add support for forced nick changes (SVSNICK), fix nickTS.
- Remove some obsolete protocol modules: aurora, sorcery, shadowircd.
  If you do still use one of these, please contact us.
- Add support for P10 account creation times.
- Add support for P10 user IPv6 addresses.

nickserv
--------
- Snoop on freeze on/off.
- Add nickserv/vacation module, allowing to temporarily extend expiry times.
- Make register help text depend on whether email verification is used.
- Refer users to their email if they try to identify again while unverified.
  **[MERGED]**
- In FUNGROUP, allow dropping account names, by specifying a new account name.
- Add optional nickserv/listownmail to allow users to see accounts with
  their email.
- When refusing a login due to maxlogins, tell the user what the logged in
  nicks are.
- Show FREEZE status (but not setter, time or reason) to normal users.
- Show taxonomy (property, metadata) in INFO.
- Show recognized (access list) a bit better in INFO.
- Ignore access lists for frozen accounts. **[MERGED]**
- Add ns_fenforce contrib module. This allows admins to toggle enforce on any
  nickname.
- When a user is recognized but not identified, still tell them to identify,
  but with a shorter message.
- Make nickserv/enforce timings more accurate.

chanserv
--------
- Allow multiple spaces before fantasy commands when ChanServ is addressed
  by nickname.
- QUIET/UNQUIET now notify the target user or channel.
- Show the current successor in /cs info (for +A users and opers).
- FFLAGS now overrides the NEVEROP setting on the target account.
- Set owner/protect if appropriate after xOP ADD.
- Show taxonomy (property, metadata) in INFO.
- Add chanserv/set_limitflags, allows limiting +f's power.

alis
----
- Fix handling of key and limit options.
- Allow alis list on a single +s channel the user is on.

memoserv
--------
- Add DELETE OLD to delete all read memos.

gameserv
--------
- Do not add chanserv commands if fantasy is disabled.
- Allow ROLL, WOD and DF with a channel name to send the results to that
  channel without requiring fantasy commands. This must be specifically
  enabled on a per-channel basis using the new ChanServ command SET GAMESERV
  (module chanserv/set_gameserv).

oper
----
- Allow searching for AKILLs matching a given mask or id in AKILL LIST.
- Allow running an operserv-only services instance, which picks up login
  names from the main instance (currently only for hyperion, TS6 and P10
  ircds).
- Add optional PCRE support. Configure --with-pcre to enable it and add
  the p flag to use it (e.g. /os rmatch /\d\d\d/p). The regex wrapper has
  been changed slightly to make this possible.
- Report other nicks of deleted accounts to snoop and log file.
- Add operserv/greplog module (from freenode modules) to allow searching
  through recent logs from IRC.
- Automatically rehash after loading modules that need a rehash.

xmlrpc
------
- Fix atheme.memo.ignore.list and atheme.memo.ignore.clear to require only
  two arguments (third wasn't ever in use). **[MERGED]**

code
----
- Change kline_delete() to take a kline_t pointer instead of a user and host.
- Allow modules to influence the expiry process.
- Fix a minor memory leak on /os REHASH.
- Fix null pointer dereference with some invalid config files.
- Move the metadata entries to object_t.
- Change some protocol module functions to take object pointers instead of
  names and add some const keywords.
- Modules can now request other modules be loaded. This has been used to
  move some generic TS6 and P10 stuff into common modules.
- Rename CMODE_OP and the like to CSTATUS_*, emphasizing that they are
  separate from simple modes.
- Use C99 booleans (<stdbool.h>, bool, true, false).

other
-----
- Allow arbitrary line lengths in flatfile database loader.
- Synchronized with libmowgli 0.7 framework.
- Remove automatic module loading for modules/ directory; this behaviour
  has been deprecated since version 0.3.
- Fix ircservices conversion for ircservices 5.1.
- Improve flood detection.
- Fix a bug with /os identify introducing enforcers.
- Fix a bug that could cause normal users to be seen as enforcers.
- Allow any service's nick/user/host/realname to be set in the configuration
  file, and update them on a rehash. The service creation code works quite a
  bit differently to make this possible.
- Fix running on MacOS X 10.5.
- Fix compilation sometimes using system include files in place of our own.
- Change the default for gettext (NLS) to disabled in the setup script.
- Add a check against loading incompatible modules. Formerly, trying to load
  incompatible modules often caused a crash.
- Rework the configuration file parser to detect more errors and make it
  easier to add configuration options.
- Add +a to the example configuration's SOP to fit expectations better.
- Update anope_convert for anope 1.8 enc_md5/enc_sha1 passwords.
- Wake up the process less often if it is idling.
- Install an example services MOTD automatically.

Atheme Services 3.1 Release Notes
=================================
### [MERGED] indicates items merged to the 3.0 branch

ircd protocol
-------------
- Fix a crash that could happen with ircd bugs or nick collisions with
  services. **[MERGED]**
- Fix host changes in hyperion. **[MERGED]**
- Do not check the server's password in the hyperion protocol module.
- Do not allow spoofs ending in a slash in the hyperion protocol module.
- Allow nickname enforcers which are clients.
- Fix ping replies in P10.
- Add support for InspIRCd 1.2.
- Some ircds dislike colons in kline reasons, so don't use them for flood
  klines.
- When restoring an akill, send it to all servers on all protocols.
  Formerly, on some protocols it was only sent to the server the banned
  user was on.
- Add ircd-aurora protocol module. ircd-aurora is a patched version of
  charybdis with +qah channel statuses.
- For ircds that do not indicate host change to clients, send a 396 numeric
  instead of a notice from the service. This is easier to parse for clients.

nickserv
--------
- Comment out nickserv/subscribe from the example configuration, because
  it is experimental at this time. **[MERGED]**
- Fix a possible crash in nickserv release (nickserv/enforce module). **[MERGED]**
- Fix RETURN only accepting relatively short email addresses.
- Allow disabling the possibly slow maxusers (accounts/email) check by
  putting 0.
- Show /ns vhost in /ns info. Appears to user self and user:auspex opers.
- Adjust times so nicks cannot appear created before their account or used
  after their account was last seen.
- Add user_verify_register hook, called when a registration is verified.
  This is after a successful VERIFY if email verification is enabled, after
  a successful REGISTER if not.
- Make gen_vhostonreg contrib module only grant vhost once it's verified,
  and also set vhosts on users without vhost as they identify.
- Add clearer log messages for duplicate accounts/nicks/channels in atheme.db.
- Make INFO default to the user's nick (owned nicks) or current account (no
  owned nicks).
- Also introduce an enforcer when FNCing a user via the RELEASE command.
- Allow ignoring enforce on nicks unused for too long (nickserv::enforce_expire
  config option). This does not affect held accounts.
- Add nick_can_register hook and use it to block GROUP on guest nicks also.
  This hook is called on both REGISTER and GROUP (if nickname ownership is
  enabled).
- In SENDPASS, require the new keyword FORCE to override marks and the new
  keyword CLEAR to clear keys that were previously sent but not yet used.
  If these keywords are needed, the oper will be warned.
- Do not allow SENDPASS on unverified accounts.
- Make the enforce delay settable in the config file.
- Make holdnick enforcer time variable, 30s the first time then 1h.
- Add ns_ajoin contrib module to allow services-side autojoin.
- Show a pending email address change in INFO, to user self and user:auspex
  opers.
- Add ns_forbid contrib module. This registers, enforces, holds and freezes
  a nickname.
- Split DROP into DROP (users) and FDROP (admins).
- Send all failed password attempts for SOPER accounts to the snoop channel.
- Make the text in INFO for unverified accounts more conspicuous.

chanserv
--------
- Fix removing non-applicable flags (e.g. +hH) from host channel access.
  **[MERGED]**
- Fix ChanServ not deopping in some cases with guard on and changets off.
  **[MERGED]**
- Fix some ugly output in chanserv/unban_self. **[MERGED]**
- Respect NOOP flag in cs_sync contrib module.
- Allow calling RECOVER via xmlrpc.
- Add channel_can_register hook to allow modules to block channel registrations.
- Add SET QUIETCHG (nickserv setting) which suppresses notices from OP,
  VOICE, and the like by other users.
- Add cs_updown contrib module. This provides UP and DOWN commands that add
  and remove all modes a user is entitled to.
- Change SET STAFFONLY to SET RESTRICTED. This kicks all users except those
  with chan:joinstaffonly priv or any access (except +b) on the channel.
  Also make it handle +i channels more effectively.
- Allow admins to change oper only modes in mlocks even without +s flag.
- Snoop changes to oper only modes in mlocks.
- Split DROP into DROP (users) and FDROP (admins).
- Add a confirmation step against accidental drops to DROP. This only
  applies to commands via IRC.

alis
----
- Move ALIS from contrib to modules. The new atheme.conf line is
  loadmodule "modules/alis/main";

memoserv
--------

gameserv
--------

oper
----
- Fix a possible crash in /stats B. **[MERGED]**
- Fix slight damage to news items when reloading in contrib/os_logonnews.
  **[MERGED]**
- Allow GLOBAL to be used from non-IRC.
- Add CLONES DURATION to allow changing the duration of the network bans
  set by the clones module.
- Add os_klinechan contrib module. This allows setting channels to kline
  any users joining them.

xmlrpc
------
- Some improvements to buffer and character set handling.

code
----
- Disable object_t refcount.
- Fix various format string types, add many const keywords, hide a few
  structs that should be private.

other
-----
- Improve performance with large databases by changing the mowgli_heap
  memory allocator. **[partially MERGED]**
- Improve performance by changing the dictionary to a patricia algorithm.
- Decrease memory usage for large networks.
- Add LOCALEDIR to Makefile.in files, necessary for gettext. **[MERGED]**
- Some improvements to the hybserv/theia conversion tool.
- Some improvements to the ircservices conversion tool.
- Change maximum nick length from 30 to 31.
- Remove redundant expire_check and db_save in several places. This makes
  restart, shutdown and rehash faster without threatening data integrity.
- Add Russian help files from Kein/darkwire. Using these currently requires
  manual copy/rename operations.
- Add Russian translation from Kein/darkwire and fix the build system so it
  is automatically installed if gettext is enabled.
- Allow for crypt() in libc as well as libcrypt (MacOS X).
- Fix nested includes in the configuration file.
- Add child process tracking.
- Make some help files depend on what modules are loaded.
- Fix a bug that caused certain timed events to be executed too late.

(nia)