reduce-depends.awk: Avoid "delete array" statement for portability.

POSIX awk doesn't allow "delete array" to delete an entire array.
For portability, one must delete each element of the array.

(jlam)

Don't check payload files for library dependencies.

(joerg)

Needs pytest-runner.

(joerg)

Needs setuptools_scm.

(joerg)

reduce-depends.awk: Avoid gensub() for portability.

(jlam)

doc: Updated lang/php71 to 7.1.10

(taca)

lang/php71: update to 7.1.10

28 Sep 2017, PHP 7.1.10

- Core:
  . Fixed bug #75042 (run-tests.php issues with EXTENSION block). (John Boehr)

- BCMath:
  . Fixed bug #44995 (bcpowmod() fails if scale != 0). (cmb)
  . Fixed bug #46781 (BC math handles minus zero incorrectly). (cmb)
  . Fixed bug #54598 (bcpowmod() may return 1 if modulus is 1). (okano1220, cmb)
  . Fixed bug #75178 (bcpowmod() misbehaves for non-integer base or modulus). (cmb)

- CLI server:
  . Fixed bug #70470 (Built-in server truncates headers spanning over TCP
    packets). (bouk)

- CURL:
  . Fixed bug #75093 (OpenSSL support not detected). (Remi)

- GD:
  . Fixed bug #75124 (gdImageGrayScale() may produce colors). (cmb)
  . Fixed bug #75139 (libgd/gd_interpolation.c:1786: suspicious if ?). (cmb)

- Gettext:
  . Fixed bug #73730 (textdomain(null) throws in strict mode). (cmb)

- Intl:
  . Fixed bug #75090 (IntlGregorianCalendar doesn't have constants from parent
    class). (tpunt)
  . Fixed bug #75193 (segfault in collator_convert_object_to_string). (Remi)

- PDO_OCI:
  . Fixed bug #74631 (PDO_PCO with PHP-FPM: OCI environment initialized
    before PHP-FPM sets it up). (Ingmar Runge)

- SPL:
  . Fixed bug #75155 (AppendIterator::append() is broken when appending another
    AppendIterator). (Nikita)
  . Fixed bug #75173 (incorrect behavior of AppendIterator::append in foreach loop).
    (jhdxr)

- Standard:
  . Fixed bug #75152 (signed integer overflow in parse_iv). (Laruence)
  . Fixed bug #75097 (gethostname fails if your host name is 64 chars long). (Andrea)

(taca)

doc: Updated lang/php70 to 7.0.24

(taca)

lang/php70: update to 7.0.24.

28 Sep 2017 PHP 7.0.24

- Core:
  . Fixed bug #75042 (run-tests.php issues with EXTENSION block). (John Boehr)

- BCMath:
  . Fixed bug #44995 (bcpowmod() fails if scale != 0). (cmb)
  . Fixed bug #46781 (BC math handles minus zero incorrectly). (cmb)
  . Fixed bug #54598 (bcpowmod() may return 1 if modulus is 1). (okano1220, cmb)
  . Fixed bug #75178 (bcpowmod() misbehaves for non-integer base or modulus). (cmb)

- CLI server:
  . Fixed bug #70470 (Built-in server truncates headers spanning over TCP
    packets). (bouk)

- CURL:
  . Fixed bug #75093 (OpenSSL support not detected). (Remi)

- GD:
  . Fixed bug #75124 (gdImageGrayScale() may produce colors). (cmb)
  . Fixed bug #75139 (libgd/gd_interpolation.c:1786: suspicious if ?). (cmb)

- Gettext:
  . Fixed bug #73730 (textdomain(null) throws in strict mode). (cmb)

- Intl:
  . Fixed bug #75090 (IntlGregorianCalendar doesn't have constants from parent
    class). (tpunt)
  . Fixed bug #75193 (segfault in collator_convert_object_to_string). (Remi)

- PDO_OCI:
  . Fixed bug #74631 (PDO_PCO with PHP-FPM: OCI environment initialized
    before PHP-FPM sets it up). (Ingmar Runge)

- SPL:
  . Fixed bug #75173 (incorrect behavior of AppendIterator::append in foreach loop).
    (jhdxr)

- Standard:
  . Fixed bug #75097 (gethostname fails if your host name is 64 chars long). (Andrea)

(taca)

doc: Added finance/cpuminer version 2.5.0

(khorben)

Add cpuminer

(khorben)

Import cpuminer version 2.5.0

Multi-threaded CPU miner for Litecoin and Bitcoin, fork of Jeff Garzik's
reference cpuminer.

(khorben)

py-txgithub: Add upstream bug report.

(wiz)

doc: Updated textproc/xqilla to 2.3.3

(wiz)

xqilla: update to 2.3.3.

version 2.3.3 (2015.07.07):
* Fixed a localization bug parsing floating point numbers.
* Added Visual Studio 2012 projects.
* Added Visual Studio 2008 projects.
* Removed Visual Studio 2005 and 2003 projects.
* Modified to build against Xerces-C 3.1.3.

version 2.3.2 (2015.07.07):
* XQilla can now be built with Visual Studios 2013.

version 2.3.1 (2015.05.18):
* Modified to build against Xerces-C 3.1.2.
* Added Visual Studio 2010 projects.
* Fixed a bug that could cause incorrect query results when combining
  nested expressions and functions.
* Fixed a crash that could happen when XQilla is built with Visual
  Studio 2010 or higher.

version 2.3.0 (2011.09.09):
* Added support for XQuery 3.0 version declarations.
* Updated to support XQuery 3.0 higher order functions, including
  partial function application, function coercion, and function item
  SequenceType checking.
* Implemented XQuery 3.0 FLWOR clause ordering.
* Implemented XQuery 3.0 FLWOR count clause.
* Implemented XQuery 3.0 extended typeswitch syntax.
* Implemented XQuery 3.0 namespace test and constructor.
* Implemented XQuery 3.0 private functions.
* Updated to the latest W3C XQuery Full Text syntax.
* Implemented Unicode word bounding and sentence bounding for XQuery
  Full Text tokenization.
* Implemented XQuery Full Text case options.
* Implemented XQuery 1.0 second edition semantics for module import.
* Added the xqilla:explain() function to return the query plan of an
  expression.
* Added xqilla:words() and xqilla:sentences() to perform Unicode word
  and sentance boundary detection.
* Added xqilla:drop().
* Rewrote a number of the built-in XQuery functions in XQuery itself.
* Implemented constant time indexing into materialized sequences.
* Improved the efficiency of the tail call optimization code.
* Optimized boolean operators.
* Optimized DOMDocument::evaluate() calls.
* Fixed various bugs in static typing.
* Fixed various memory leaks in the DOM 3 API, and regular expressions.
* Fixed a bug that caused a crash when using huge integers.
* Modified to build against Xerces-C 3.1.1
* Added Visual Studio 2010 support.
* Build fix for AIX 5.3.
* Build fix for the clang++ compiler.
* Build fix for GCC 4.6.

(wiz)

doc: Updated audio/libopenmpt to 0.3.1

(wiz)

libopenmpt: update to 0.3.1.

libopenmpt 0.3.1 (2017-09-28)

Changelog since libopenmpt 0.2.6774-beta20.

libopenmpt 0.3.1

    [Bug] Windows: libopenmpt resource did not compile for release versions.

libopenmpt 0.3.0 (2017-09-27, not released)

    [New] New error handling functionality in the C API, which in particular allows distinguishing potentially transient out-of-memory errors from parse errors during module loading.
    [New] New API openmpt::module::get_selected_subsong() (C++) and openmpt_module_get_selected_subsong() (C).
    [New] Faster file header probing API openmpt::probe_file_header() and openmpt::probe_file_header_get_recommended_size (C++), and openmpt_probe_file_header(), openmpt_probe_file_header_without_filesize(), openmpt_probe_file_header_from_stream() and openmpt_probe_file_header_get_recommended_size() (C).
    [New] New API openmpt::could_open_probability() (C++) and openmpt_could_open_probability() (C). This fixes a spelling error in the old 0.2 API.
    [New] openmpt123: openmpt123 can now open M3U, M3U8, M3UEXT, M3U8EXT and PLSv2 playlists via the --playlist option.
    [New] openmpt123: openmpt123 now supports very fast file header probing via the --probe option.
    [New] Libopenmpt now supports building for Windows 10 Universal (Windows Store 8.2) APIs with MSVC, and also for the older Windows Runtime APIs with MinGW-w64.
    [New] New API header libopenmpt_ext.h which implements the libopenmpt extension APIs also for the C interface.
    [New] The Reverb effect (S99 in S3M/IT/MPTM, and X99 in XM) is now implemented in libopenmpt.

    [New] For Amiga modules, a new resampler based on the Amiga窶冱 sound characteristics has been added. It can be activated by passing the render.resampler.emulate_amiga ctl with a value of 1. Non-Amiga modules are not affected by this, and setting the ctl overrides the resampler choice specified by OPENMPT_MODULE_RENDER_INTERPOLATIONFILTER_LENGTH or openmpt::module::RENDER_INTERPOLATIONFILTER_LENGTH. Support for the MOD command E0x (Set LED Filter) is also available when the Amiga resampler is enabled.
    [Change] libopenmpt versioning changed and follows the more conventional major.minor.patch as well as the recommendations of the SemVer scheme now. In addition to the SemVer requirements, pre-1.0.0 versions will also honor API and ABI stability in libopenmpt (i.e. libopenmpt ignores SemVer Clause 4).
    [Change] The output directories of the MSVC build system were changed to bin/vs2015-shared/x86-64-win7/ (and similar) layout which allows building in the same tree with different compiler versions without overwriting other outputs.
    [Change] The emscripten build now exports libopenmpt as 窶詫ibopenmpt窶� instead of the default 窶弄odule窶�.
    [Change] Android: The build system changed. The various Android.mk files have been merged into a single one which can be controlled using command line options.
    [Change] The Makefile build system now passes std=c++11 to the compiler by default. Older compilers may still work if you pass STDCXX=c++0x to the make invocation.
    [Change] The Makefile option ANCIENT=1 is gone.

    [Change] The optional dependencies on libltdl or libdl are gone. They are no longer needed for any functionality.
    [Regression] Compiling client code using the C++ API now requires a compiler running in C++11 mode.
    [Regression] Support for GCC 4.1, 4.2, 4.3, 4.4, 4.5, 4.6, 4.7 has been removed.
    [Regression] Support for Clang 3.0, 3.1, 3.2, 3.3 has been removed.
    [Regression] Support for Emscripten versions older than 1.31.0 has been removed.
    [Regression] Support for Android NDK versions older than 11 has been removed.
    [Regression] Visual Studio 2008, 2010, 2012, 2013 support has been removed.
    [Regression] Dynamic run-time loading of libmpg123 is no longer supported. Libmpg123 must be linked at link-time now.
    [Regression] xmp-openmpt: xmp-openmpt now requires XMPlay 3.8 or later and compiling xmp-openmpt requires an appropriate XMPlay SDK with XMPIN_FACE >= 4.
    [Regression] Support for libmpg123 older than 1.13.0 has been removed.

    [Regression] Un4seen unmo3 support has been removed.
    [Bug] C++ API: openmpt::exception did not define copy and move constructors or copy and move assignment operators in libopenmpt 0.2. The compiler-generated ones were not adequate though. libopenmpt 0.3 adds the appropriate special member functions. This adds the respective symbol names to the exported ABI, which, depending on the compiler, might or might not have been there in libopenmpt 0.2. The possibly resulting possible ODR violation only affects cases that did crash in the libopenmpt 0.2 API anyway due to memory double-free, and does not cause any further problems in practice for all known platforms and compilers.
    [Bug] The C API could crash instead of failing gracefully in out-of-memory situations.
    [Bug] The test suite could fail on MacOSX or FreeBSD in non-fatal ways when no locale was active.
    [Bug] libopenmpt_stream_callbacks_fd.h and libopenmpt_stream_callbacks_file.h were missing in Windows development packages.
    [Bug] libopenmpt on Windows did not properly guard against current working directory DLL injection attacks.
    [Bug] localtime() was used to determine the version of Schism Tracker used to save IT and S3M files. This function is not guaranteed to be thread-safe by the standard and is now no longer used.
    [Bug] Possible crashes with malformed IT, ITP, AMS, MDL, MED, MPTM, PSM and Startrekker files.
    [Bug] Possible hangs with malformed DBM, MPTM and PSM files.
    [Bug] Possible hangs with malformed files containing cyclic plugin routings.
    [Bug] Excessive loading times with malformed ITP / truncated AMS files.
    [Bug] Plugins did not work correctly when changing the sample rate between two render calls.
    [Bug] Possible NULL-pointer dereference read during obscure out-of-memory situations while handling exceptions in the C API.
    [Bug] libmodplug: libmodplug.pc was wrong.
    [Bug] Cross-compiling libopenmpt with autotools for Windows now properly sets -municode and -mconsole as well as all required Windows system libraries.
    [Bug] foo_openmpt: Interpolation filter and volume ramping settings were confused in previous versions. This version resets both to the defaults.

    [Bug] libmodplug: The CSoundFile::Read function in the emulated libmodplug C++ API returned the wrong value, causing qmmp (and possibly other software) to crash.
    Support for SoundTracker Pro II (STP) and Digital Tracker (DTM) modules.
    Increased accuracy of the sample position and sample rate to drift less when playing very long samples.
    Various playback improvements for IT and XM files.
    Channel frequency could wrap around after some excessive portamento / down in some formats since libopenmpt 0.2-beta17.
    Playback improvements for S3M files made with Impulse Tracker and Schism Tracker.
    ParamEq plugin emulation didn窶冲 do anything at full gain (+15dB).
    All standard DMO effects are now also emulated on non-Windows and non-MSVC systems.
    Added libopenmpt_stream_callbacks_buffer.h which adds openmpt_stream_callbacks support for in-memory buffers, possibly even only using a truncated prefix view into a bigger file which is useful for probing.
    Avoid enabling some ProTracker-specific quirks for MOD files most likely created with ScreamTracker 3.
    Tremolo effect only had half the intended strength in MOD files.
    Pattern loops ending on the last row a pattern were not executed correctly in S3M files.
    Work-around for reading MIDI macros and plugin settings in some malformed IT files written by old UNMO3 versions.
    Improve tracker detection in IT format.
    Playback fixes for 8-channel MED files
    Do not set note volume to 0 on out-of-range offset in XM files.
    Better import of some slide commands in SFX files.
    Sample 15 in 窶廚rew Generation窶� by Necros requires short loops at the beginning of the sample to not be ignored. Since we need to ignore them in some (non-ProTracker) modules, we heuristically disable the old loop sanitization behaviour based on the module channel count.
    Both normal and percentage offset in PLM files were handled as percentage offset.
    MT2 files with instruments that had both sample and plugin assignments were not read correctly.
    Some valid FAR files were rejected erroneously.
    Support for VBlank timing flag and comment field in PT36 files.
    Improved accuracy of vibrato command in DIGI / DBM files.
    STM: Add support for 窶弩UZAMOD!窶� magic bytes and allow some slightly malformed STM files to load which were previously rejected.
    Detect whether 窶徂idden窶� patterns in the order list of SoundTracker modules should be taken into account or not.
    Tighten heuristics for rejecting invalid 669, M15, MOD and ICE files and loosen them in other places to allow some valid MOD files to load.
    Improvements to seeking: Channel panning was not always updated from instruments / samples when seeking, and out-of-range global volume was not applied correctly in some formats.
    seek.sync_samples=1 did not apply PTM reverse offset effect and the volume slide part of combined volume slide + vibrato commands.
    If the order list was longer than 256 items and there was a pattern break effect without a position jump on the last pattern of the sequence, it did not jump to the correct restart order.
    Makefile has now explicit support for FreeBSD with no special option or configuration required.
    openmpt123: Improved section layout in man page.
    libmodplug: Added all missing C++ API symbols that are accessible via the public libmodplug header file.
    Autotools build system now has options --disable-openmpt123, --disable-tests and --disable-examples which may be desireable when cross-compiling.
    Windows binary packages now ship with libmpg123 included.

(wiz)

Updated www/seamonkey to 2.48nb3

(ryoon)

doc/TODO: add some entries

+ dbus-1.10.24, libfilezilla-0.11.0, openal-soft-1.18.2, openvpn-2.4.4,
  pangomm-2.41.4, physfs-3.0.0, png-1.6.34, py-gobject3-common-3.26.0,
  py-numpy-1.13.3, py-sqlparse-0.2.4, vim-8.0.1168, vim-share-8.0.1168,
  waf-2.0.1, x264-devel-20170930, xmltooling-2.6.0, xqilla-2.3.3.

(wiz)

Use mozilla-common.mk from firefox52. Bump PKGREVISION

(ryoon)

xmltooling: mark as BROKEN

xerces-c needs C++11, but xmltooling does not support this yet

(wiz)

doc: Updated databases/p5-DBICx-Sugar to 0.0200

(wiz)

p5-DBICx-Sugar: update to 0.0200.

Update DEPENDS and test dependencies.

-------------------------------------------
version 0.0200 at 2017-09-29 01:03:32 +0000
-------------------------------------------

  Change: b0ceabb33df843b11871a21209e5fd4bf1831fb9
  Author: Naveed Massjouni <naveed@vt.edu>
  Date : 2017-09-28 21:02:24 +0000

    v0.0200

  Change: 86a1ec89187cdd64286444448e5a3cab788859b8
  Author: Naveed Massjouni <naveedm9@gmail.com>
  Date : 2017-03-02 10:25:46 +0000

    Merge pull request #5 from PerlDancer/sawyer/feature/reentrant-schema

    Make schema() possibly reentrant

  Change: d319f5adbd6accadde265a294176b3454fc950a0
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-16 00:52:33 +0000

    Add test for feature

  Change: 2e6d0056b2342debce14ecfd41f362e2ef9eff81
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-16 00:52:33 +0000

    Add support for schema configuration in schema() call:

    What troubles me is that this module is not reentrant. You will
    always get the same schema object and you can only configure it once.
    Configuring it once is great, but having to argue with the code over
    at which point to do it is annoying.

    (Example: Issue #12 in Dancer2-Plugin-DBIC.)

    This now allows the schema() function to also receive parameters to
    use instead of the default configuration. It tries todo it in a
    non-intrusive way for the code with minimal code changes and without
    altering anything outside this function (like the global
    configuration).

  Change: 21a44eb576168081e0ec5793671b26b586347e2d
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-16 00:52:33 +0000

    Retrieve the options before fetching the schema:

    The previous logic would try to look up the schema and return it, and
    if it didn't exist, it would fetch the options and try to create one.
    This makes sense.

    However, this also means that if we want to create a schema without
    rummaging in the cache, you will have to check whether to even check
    the cache.

    Instead, we simply retrieve the relevant information for creation
    before deciding what to do. Then we could either create a new one
    with this configuration or return one.

  Change: b406d522942e8596affe45f47b679d44d22e1f5a
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-16 00:52:33 +0000

    Refactor: Move creation of schemas outside schema():

    The schema() function is in charge of finding the right plugin, but
    also creates them. Ths makes it difficult to have logic that allows
    creating without saving or retrieval. We just split the creation into
    its own function.

    I also added comments to make it a bit clearer.

  Change: bc90045822e7d3fc0f4e8f0d10a45044bcba9773
  Author: Naveed Massjouni <naveedm9@gmail.com>
  Date : 2017-02-13 10:04:52 +0000

    Merge pull request #4 from PerlDancer/sawyer/fixes

    Various fixes and cleanups

  Change: bcee651ab7580e899ad906be872c4874f333d156
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-13 10:56:10 +0000

    Revert "Cleanup: Explicitly use DBIx::Class::Schema::Loader:"

    This reverts commit 4f80a6f9ef3c994ffda9991d7fe7839307b6abbf.

  Change: 9e527d272a25e4be0a64454d8b258211f171211e
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-10 11:12:43 +0000

    Do not add DBIx::Class::Schema::Loader as hard prereq:

    Currently DBIx::Class::Schema::Loader is loaded optionally, but
    reported as a hard dependency. (See previous commit.)

    This makes it recommended, but optional.

  Change: 4f80a6f9ef3c994ffda9991d7fe7839307b6abbf
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-10 11:12:39 +0000

    Cleanup: Explicitly use DBIx::Class::Schema::Loader:

    In Dancer2-Plugin-DBIC, DBIx::Class::Schema::Loader is mentioned as a
    requirement. It's a lazy optional one. It's also hard to spot because
    it's being loaded as a string using Module::Load.

    Instead, this makes it a bit clearer by using 'require' directly.

    It would be better to make this an optional requirement instead of a
    default one.

  Change: 1b545771aec22a89989c284f950526270ae272b5
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-10 10:58:09 +0000

    Cleanup: Replace die() with croak():

    croak() is used in some places but not everywhere, so might as well
    report from the caller everywhere.

  Change: c6f2031977572bcfd4352e131eb274cbc0be14d0
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-10 10:56:38 +0000

    Cleanup: Simply conditions code

  Change: d9042c990068eb816b21396573704012d66c2ead
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-10 10:56:20 +0000

    Cleanup: Fix extra or missing semicolons

  Change: 30166bce0c49ca7e979c9bbd82b582850805df7d
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-10 10:56:20 +0000

    Add provides metadata:

    The following plugin will add the provides metadata to the
    distribution, which is considered a best practice.

  Change: 35e6040f94c561ab29811fe1db8164f03492d87f
  Author: Sawyer X <xsawyerx@cpan.org>
  Date : 2017-02-10 10:56:20 +0000

    Provide META.json file in distribution:

    The following plugin adds the META.json file. This is considered the
    more modern META data format.

(wiz)

doc: Updated net/p5-Net-IPv6Addr to 0.9

(wiz)

p5-Net-IPv6Addr: update to 0.9.

0.9 2017-09-30      Ben Bullock <bkb@cpan.org>

* in_network / in_network_of_size bug fix

0.8 2017-09-30      Ben Bullock <bkb@cpan.org>

* Export some functions
* Documentation corrected

(wiz)

doc: Updated devel/p5-Git-Repository to 1.321

(wiz)

p5-Git-Repository: update to 1.321.

1.321 2017-10-01 BOOK
    - Various small improvements to the Tutorial (with help from Ron Savage)
    - Minor code changes (with help from E. Choroba)
    - Minor fix to eg/build-git

(wiz)

reduce-depends.awk: Reduce "pkg>1" and "pkg<2" into "pkg>1<2".

Enhance the reduce-depends.awk script to reduce a larger set of
dependencies into a single dependency.  The patterns representing
intervals of version numbers (can be open-ended) are of the form:

pkg>lower
pkg>=lower
pkg<upper
pkg<=upper
pkg>lower<upper
pkg>lower<=upper
pkg>=lower<upper
pkg>=lower<=upper

These patterns are now condensed into a single dependency of the
same form.  For example, given the following patterns:

pkg>=1.0
pkg>2.0
pkg<3.0
pkg<=4.0
pkg>=2.5<3.5

the reduced pattern becomes:

pkg>=2.5<3.0

Add the test script used to help with refactoring and adding the
new feature to the script.

This is a mostly complete rewrite of the script; change the
license to the standard 2-clause BSD license used by TNF.

(jlam)

doc: Updated www/py-meinheld to 0.6.1nb1

(wiz)

py-meinheld: make py-gunicorn a build dependency.

It is needed for the tests, but joerg says it's optional at runtime.

Bump PKGREVISION.

(wiz)

Redo Python 3.x support.

(joerg)

audacious-plugins: Add libsamplerate bl3.mk

Fixes build without Jack.
From PR 52575 by John D. Baker.

(wiz)

meta-pkgs/ruby-redmine-*: Restrict ruby's version

Restrict ruby-redmine depending pacakges to ruby22 only.

(taca)

Updated net/py-zeep

(adam)

py-zeep: update to 2.4.0

2.4.0:
Add support for tornado async transport via gen.coroutine
Check if soap:address is defined in the service port instead of raising an exception
Update packaging (stop using find_packages())
Properly handle None values when rendering complex types
Fix generating signature for empty wsdl messages
Support passing strings to xsd:Time objects

(adam)

Updated security/py-asn1

(adam)

py-asn1: update to 0.3.6

Revision 0.3.6:
* End-of-octets encoding optimized at ASN.1 encoders
* The __getitem__/__setitem__ behavior of Set/Sequence and SetOf/SequenceOf objects aligned with the canonical Mapping and Sequence protocols in part
* Fixed crash in ASN.1 encoder when encoding an explicitly tagged component of a Sequence

(adam)

Updated devel/py-cached-property

(adam)

py-cached-property: removed unused comment

(adam)

py-cached-property: update to 1.3.1

1.3.1:
Validate for Python 3.6

1.3.0:
Drop some non-ASCII characters from HISTORY.rst
Added official support for Python 3.5
Removed confusingly placed lock from example
Corrected invalidation cache documentation
Updated to latest Travis-CI environment

(adam)

Updated www/py-w3lib, lang/py-cxfreeze, graphics/gdk-pixbuf2, textproc/py-rebulk, textproc/py-guessit, x11/gtk3

(adam)

gtk3: update to 3.22.1

3.22.21:

* Bugs fixed:
738893 ComboBox in appears-as-list mode: Finishing scroll with mouse causes...
786613 Adwaita: provide a generic sidebar icon and label styling
787172 EmojiChooser: Improve selection of section buttons
787279 EmojiChooser: Hovered emoji become impossible to see in HighContrast...
787280 HighContrast: Fix regression in vertical separator in titlebar headerbar
787410 entry: fix memory leak

* Translation updates

(adam)

py-guessit: update to 2.1.4

2.1.4:
Fix broken match function when using rebulk>=0.9.0.

2.1.3:
Add nzb as new container possible value
Add EAC3 as new audio_codec possible value
Add FullHD as new other possible value
Added python 3.6 support
Dropped python 2.6 support
Make container values consistent and always lowercase
Fix 窶鍍ype movie being ignored for movies that starts with numbers
Fix invalid language detection due the common words audio, true and unknown
Fix episode type detection when series name contains year followed by SEE pattern

(adam)

py-rebulk: update to 0.9.0

0.9.0:
Bug fixes.

(adam)

gdk-pixbuf2: update to 2.36.10

2.36.10:
* build: meson build improvements
* build: win32 build fixes
* tests: show error before failing
* Translation updates

(adam)

eric4: Changed buildlink3.mk to DEPENDS

(adam)

py-pylint: removed buildlink3.mk

(adam)

py-rope: removed buildlink3.mk

(adam)

py-cxfreeze: update to 5.0.2

Version 5.0.2:
Correct handling of import in child thread
Correct handling of ���dis��� module with Python 3.5.1
Correct handling of ���multiprocess.process��� module
Correct attempt to assign variable to an empty list
Improved README
Add hook for pythonnet package
Add hook for sqlite3 and improve win32file hook
Add FAQ entry

(adam)

py-w3lib: update to 1.18.0

1.18.0:
- Include additional assets used for distribution packages in the source tarball
- Consider ``[`` and ``]`` as safe characters in path and query components
  of URLs, i.e. they are not escaped anymore
- Disable codecov project coverage check

(adam)

Updated pkgtools/plist-utils

(adam)

plist-utils: update to 20170813

20170813:
Deal with ${PYSITELIB}.

(adam)

Updated devel/py-cffi, devel/py-hypothesis

(adam)

Updated devel/py-cffi, devel/py-hypothesis

(adam)

py-hypothesis: update to 3.31.1

3.31.1:

This release improves the handling of deadlines so that they act better with the shrinking process. This fixes :issue:`892`.

This involves two changes:

1. The deadline is raised during the initial generation and shrinking, and then lowered to the set value for final replay. This restricts our attention to examples which exceed the deadline by a more significant margin, which increases their reliability.

2. When despite the above a test still becomes flaky because it is significantly faster on rerun than it was on its first run, the error message is now more explicit about the nature of this problem, and includes both the initial test run time and the new test run time.

In addition, this release also clarifies the documentation of the deadline setting slightly to be more explicit about where it applies.

(adam)

py-cffi: update to 1.11.0

v1.11
Support the modern standard types char16_t and char32_t. These work like wchar_t: they represent one unicode character, or when used as charN_t * or charN_t[] they represent a unicode string. The difference with wchar_t is that they have a known, fixed size. They should work at all places that used to work with wchar_t (please report an issue if I missed something). Note that with set_source(), you need to make sure that these types are actually defined by the C source you provide (if used in cdef()).

Support the C99 types float _Complex and double _Complex. Note that libffi doesn窶冲 support them, which means that in the ABI mode you still cannot call C functions that take complex numbers directly as arguments or return type.

Fixed a rare race condition when creating multiple FFI instances from multiple threads. (Note that you aren窶冲 meant to create many FFI instances: in inline mode, you should write ffi = cffi.FFI() at module level just after import cffi; and in out-of-line mode you don窶冲 instantiate FFI explicitly at all.)

Windows: using callbacks can be messy because the CFFI internal error messages show up to stderr窶巴ut stderr goes nowhere in many applications. This makes it particularly hard to get started with the embedding mode. (Once you get started, you can at least use @ffi.def_extern(onerror=...) and send the error logs where it makes sense for your application, or record them in log files, and so on.) So what is new in CFFI is that now, on Windows CFFI will try to open a non-modal MessageBox (in addition to sending raw messages to stderr). The MessageBox is only visible if the process stays alive: typically, console applications that crash close immediately, but that is also the situation where stderr should be visible anyway.

Progress on support for callbacks in NetBSD.

Functions returning booleans would in some case still return 0 or 1 instead of False or True. Fixed.

ffi.gc() now takes an optional third parameter, which gives an estimate of the size (in bytes) of the object. So far, this is only used by PyPy, to make the next GC occur more quickly (issue 320). In the future, this might have an effect on CPython too (provided the CPython issue 31105 is addressed).

Add a note to the documentation: the ABI mode gives function objects that are slower to call than the API mode does. For some reason it is often thought to be faster. It is not!

(adam)

py-meinheld: fix build on NetBSD.

Add missing dependency on gunicorn.

(wiz)

Updated graphics/py-fits, security/gnupg2

(adam)

py-txgithub: fix PLIST for python-3.x

Two files are not valid for python-3.x. Arguably this should be disabled
for python-3.x completely.

Fix pkglint warning in DESCR.

(wiz)

py-lz4: fix packaging

Clean up pkglint warnings while here.

(wiz)

gnupg2: update to 2.2.1

version 2.2.1:
* gpg: Fix formatting of the user id in batch mode key generation
  if only "name-email" is given.
* gpgv: Fix annoying "not suitable for" warnings.
* wks: Convey only the newest user id to the provider.  This is the
  case if different names are used with the same addr-spec.
* wks: Create a complying user id for provider policy mailbox-only.
* wks: Add workaround for posteo.de.
* scd: Fix the use of large ECC keys with an OpenPGP card.
* dirmngr: Use system provided root certificates if no specific HKP
  certificates are configured.  If build with GNUTLS, this was
  already the case.

(adam)

doc: Updated cad/gtkwave to 3.3.85

(mef)

Updated cad/gtkwave to 3.3.85

3.3.85  06sep17 Fix integer type in GHW loader so integer value changes are
                not stored as a string. This then allows bitwise manipulations
                of integers.

(mef)

doc: Updated ham/fldigi to 4.0.10

(mef)

Updated ham/fldigi to 4.0.10

=Version 4.0.10=
2017-09-25  David Freese  <w1hkj@bellsouth.net>

        949ed87: WX HamQth bug fix
        0142116: win7 mingw build fixes
        6ed0b70: wefax ui mods
        c1c7ebf: wefax_map
        1707691: auto start

=Version 4.0.9=
        26a1f8c: doc update
        cc95f0a: clock_gettime
        5d4008a: spectrum display
        6021e18: Test Signal Dialog
        ccd3a2e: dxcluster fonts
        08aa8f7: smod
        6c05fe9: Spot buffer
        deb4392: Winkeyer clones
        ee3d420: PSK s/n imd

(pkgsrc changes)
- Drop  SUBST_MESSAGE.perl=    Replacing Perl PATH for scripts/fldigi-shell,
  which no longer exists

(mef)

Updated www/firefox52-l10n to 52.4.0

(ryoon)

Update to 52.4.0

* Sync with firefox52-52.4.0

(ryoon)

Updated www/firefox52 to 52.4.0

(ryoon)

Update to 52.4.0

* Remove an unnecessary patch

Changelog:
Fixed
    Various security fixes
    Various stability and regression fixes

Security fixes:
#CVE-2017-7793: Use-after-free with Fetch API

Reporter
    Abhishek Arya
Impact
    high

Description

A use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, resulting in a potentially exploitable crash.
References

    Bug 1371889

#CVE-2017-7818: Use-after-free during ARIA array manipulation

Reporter
    Nils
Impact
    high

Description

A use-after-free vulnerability can occur when manipulating arrays of Accessible Rich Internet Applications (ARIA) elements within containers through the DOM. This results in a potentially exploitable crash.
References

    Bug 1363723

#CVE-2017-7819: Use-after-free while resizing images in design mode

Reporter
    Nils
Impact
    high

Description

A use-after-free vulnerability can occur in design mode when image objects are resized if objects referenced during the resizing have been freed from memory. This results in a potentially exploitable crash.
References

    Bug 1380292

#CVE-2017-7824: Buffer overflow when drawing and validating elements with ANGLE

Reporter
    Omair, Andre Weissflog
Impact
    high

Description

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash.
References

    Bug 1398381

#CVE-2017-7805: Use-after-free in TLS 1.2 generating handshake hashes

Reporter
    Martin Thomson
Impact
    high

Description

During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space available in the current buffer, causing the allocation of a new buffer. This leaves a pointer pointing to the old, freed buffer, resulting in a use-after-free when handshake hashes are then calculated afterwards. This can result in a potentially exploitable crash.
References

    Bug 1377618

#CVE-2017-7814: Blob and data URLs bypass phishing and malware protection warnings

Reporter
    Fran巽ois Marier
Impact
    moderate

Description

File downloads encoded with blob: and data: URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise be detected as suspicious.
References

    Bug 1376036

#CVE-2017-7825: OS X fonts render some Tibetan and Arabic unicode characters as spaces

Reporter
    Khalil Zhani
Impact
    moderate

Description

Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks.
Note: This attack only affects OS X operating systems. Other operating systems are unaffected.
References

    Bug 1393624
    Bug 1390980

#CVE-2017-7823: CSP sandbox directive did not create a unique origin

Reporter
    Jun Kokatsu
Impact
    moderate

Description

The content security policy (CSP) sandbox directive did not create a unique origin for the document, causing it to behave as if the allow-same-origin keyword were always specified. This could allow a Cross-Site Scripting (XSS) attack to be launched from unsafe content.
References

    Bug 1396320

#CVE-2017-7810: Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4

Reporter
    Mozilla developers and community
Impact
    critical

Description

Mozilla developers and community members Christoph Diehl, Jan de Mooij, Jason Kratzer, Randell Jesup, Tom Ritter, Tyson Smith, and Sebastian Hengst reported memory safety bugs present in Firefox 55 and Firefox ESR 52.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.
References

    Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4

(ryoon)

py-fits: update to 3.4

3.4:
This release removes support for Python 2.5, as well as Python 3.0 - 3.2.
Supported Python versions are now Python 2.6, 2.7, and 3.3+.  This
release incorporates new features and bug fixes made in the
``astropy.io.fits`` module in Astropy, which is originally based on PyFITS
and supersedes the stand-alone PyFITS module.

This will likely be the last stand-alone release of PyFITS that does not
depend on Astropy.  There are a few reasons for this:

1) Development resources for PyFITS are limited, and better focused on
  newer projects.

2) Astropy incorporates all features of PyFITS, and has many new features
  from which future development of the FITS reader/writer can benefit, such
  as a better table interface, units, and datetime types.  Since the most
  beneficial future development in ``astropy.io.fits`` depends on other
  parts of Astropy there is less motivation to maintain an independent FITS
  module.

This release contains most changes to the ``astropy.io.fits`` module that
have been made since the last release of PyFITS (v3.3), except for changes
that depend explicitly on other parts of Astropy.  This brings PyFITS mostly
to parity with the version of ``astropy.io.fits`` that will be in Astropy
v1.1.2.

(adam)

Fix syntax error.

(joerg)

Updated security/py-kerberos, devel/py-pylint, devel/py-cython

(adam)

py-cython: update to 0.27

0.27:

Features added
* Extension module initialisation follows
  `PEP 489 <https://www.python.org/dev/peps/pep-0489/>`_ in CPython 3.5+, which
  resolves several differences with regard to normal Python modules.  This makes
  the global names ``__file__`` and ``__path__`` correctly available to module
  level code and improves the support for module-level relative imports.
* Asynchronous generators (`PEP 525 <https://www.python.org/dev/peps/pep-0525/>`_)
  and asynchronous comprehensions (`PEP 530 <https://www.python.org/dev/peps/pep-0530/>`_)
  have been implemented.  Note that async generators require finalisation support
  in order to allow for asynchronous operations during cleanup, which is only
  available in CPython 3.6+.  All other functionality has been backported as usual.
* Variable annotations are now parsed according to
  `PEP 526 <https://www.python.org/dev/peps/pep-0526/>`_.  Cython types (e.g.
  ``cython.int``) are evaluated as C type declarations and everything else as Python
  types.  This can be disabled with the directive ``annotation_typing=False``.
  Note that most complex PEP-484 style annotations are currently ignored.  This will
  change in future releases.
* Extension types (also in pure Python mode) can implement the normal special methods
  ``__eq__``, ``__lt__`` etc. for comparisons instead of the low-level ``__richcmp__``
  method.
* New decorator ``@cython.exceptval(x=None, check=False)`` that makes the signature
  declarations ``except x``, ``except? x`` and ``except *`` available to pure Python
  code.  Original patch by Antonio Cuni.
* Signature annotations are now included in the signature docstring generated by
  the ``embedsignature`` directive.
* The gdb support for Python code (``libpython.py``) was updated to the latest
  version in CPython 3.7 (git rev 5fe59f8).
* The compiler tries to find a usable exception return value for cdef functions
  with ``except *`` if the returned type allows it.  Note that this feature is subject
  to safety limitations, so it is still better to provide an explicit declaration.
* C functions can be assigned to function pointers with a compatible exception
  declaration, not only with exact matches.  A side-effect is that certain compatible
  signature overrides are now allowed and some more mismatches of exception signatures
  are now detected and rejected as errors that were not detected before.
* The IPython/Jupyter magic integration has a new option ``%%cython --pgo`` for profile
  guided optimisation. It compiles the cell with PGO settings for the C compiler,
  executes it to generate a runtime profile, and then compiles it again using that
  profile for C compiler optimisation.  Currently only tested with gcc.
* ``len(memoryview)`` can be used in nogil sections to get the size of the
  first dimension of a memory view (``shape[0]``).
* C++ classes can now contain (properly refcounted) Python objects.
* NumPy dtype subarrays are now accessible through the C-API.
* Resolves several issues with PyPy and uses faster async slots in PyPy3.

Bugs fixed
* Extension types that were cimported from other Cython modules could disagree
  about the order of fused cdef methods in their call table.  This could lead
  to wrong methods being called and potentially also crashes.  The fix required
  changes to the ordering of fused methods in the call table, which may break
  existing compiled modules that call fused cdef methods across module boundaries,
  if these methods were implemented in a different order than they were declared
  in the corresponding .pxd file.
* The exception state handling in generators and coroutines could lead to
  exceptions in the caller being lost if an exception was raised and handled
  inside of the coroutine when yielding.
* Loops over ``range(enum)`` were not converted into C for-loops.  Note that it
  is still recommended to use an explicit cast to a C integer type in this case.
* Error positions of names (e.g. variables) were incorrectly reported after the
  name and not at the beginning of the name.
* Compile time ``DEF`` assignments were evaluated even when they occur inside of
  falsy ``IF`` blocks.
* Disabling the line tracing from a trace function could fail.
* Several issues with the Pythran integration were resolved.
* abs(signed int) now returns a signed rather than unsigned int.
* Reading ``frame.f_locals`` of a Cython function (e.g. from a debugger or profiler
  could modify the module globals.
* Buffer type mismatches in the NumPy buffer support could leak a reference to the
  buffer owner.
* Using the "is_f_contig" and "is_c_contig" memoryview methods together could leave
  one of them undeclared.
* Compilation failed if the for-in-range loop target was not a variable but a more
  complex expression, e.g. an item assignment.
* Compile time evaluations of (partially) constant f-strings could show incorrect
  results.
* Escape sequences in raw f-strings (``fr'...'``) were resolved instead of passing
  them through as expected.
* Some ref-counting issues in buffer error handling have been resolved.

Other changes
* Type declarations in signature annotations are now parsed according to
  `PEP 484 <https://www.python.org/dev/peps/pep-0484/>`_
  typing.  Only Cython types (e.g. ``cython.int``) and Python builtin types are
  currently considered as type declarations.  Everything else is ignored, but this
  will change in a future Cython release.
* The directive ``annotation_typing`` is now ``True`` by default, which enables
  parsing type declarations from annotations.
* This release no longer supports Python 3.2.

(adam)

py-pylint: update to 1.7.4

1.7.4:
Bug fixes.

(adam)

py-kerberos: update to 1.2.5

1.2.5:
Bug fixes.

(adam)

Updated www/py-uwsgitop, textproc/py-pytoml

(adam)

py-pytoml: update to 0.1.14

0.1.14: Unknown changes

(adam)

py-uwsgitop: update to 0.10

0.10: Unknown changes

(adam)

doc: Updated finance/gnucash to 2.6.18.1

(wiz)

gnucash: update to 2.6.18.1.

2.6.18 - 24 September 2017

The following bugs are fixed:
    Bug 644898 - Calendar of upcoming SXes has various display issues
    Bug 647805 - Interdependent report options fail to change state after
                  using apply for a limited number of times.
    Bug 771246 - Set Invoice/Bill items date correctly from imported CSV.
    Bug 784284 - unifying "Clear the entry." tooltip on Loan Repayment
                  Calculator
    Bug 787479 - Persian currency symbol is doubled.

Other repairs not marked as bugs in git:
      Added Catalan Accounts for the New Account Assistant
      Fixed errors from loading init.py.
      Run the python bindings tests in a CMake build.
      Implement dist, distcheck, and uninstall targets for CMake build.

Updated Translations: Farsi, German, Japanese, Latvian, Serbian, Spanish

(wiz)

py-pisa: use pypi site instead of dead one

(wiz)

p5-DBI: follow redirect

(wiz)

or1ksim: comment out dead sites

(wiz)

opencv-contrib-face: Update HOMEPAGE

(wiz)

neverball: follow redirect

(wiz)

libusb-compat: update HOMEPAGE

(wiz)

KeePass: follow redirect

(wiz)

gramps: follow redirect.

(wiz)

editors/Makefile: remove ibus-el

(wiz)

editors/Makefile: remove emacs2{2,3,4}*
CVs: ----------------------------------------------------------------------

(wiz)

py-buildbot: Only depend on py-scandir when using python 27 or 34.

The package is restricted to those two versions.

(wiz)

Updated www/firefox-l10n to 56.0

(ryoon)

Update to 56.0

* Sync with firefox-56.0

(ryoon)

Updated www/firefox to 56.0

(ryoon)

Update to 56.0

New
    Launched Firefox Screenshots, a feature that lets users take, save, and share screenshots without leaving the browser

    Added support for address form autofill (en-US only)

    Updated Preferences
        Added search tool so users can find a specific setting quickly
        Reorganized preferences so users can more easily scan settings
        Rewrote descriptions so users can better understand choices and how they affect browsing
        Revised data collection choices so they align with updated Privacy Notice and data collection strategy

    Media opened in a background tab will not play until the tab is selected

    Improved Send Tabs feature of Sync for iOS and Android, and Send Tabs can be discovered even by users without a Firefox Account

Changed
    Replaced character encoding converters with a new Encoding Standard-compliant implementation written in Rust

    Added hardware acceleration for AES-GCM

    Updated the Safe Browsing protocol to version 4

    Reduced update download file size by approximately 20 percent

    Improved security for verifying update downloads

Developer
    Added Layout Panel to CSS Grid DevTools

(ryoon)

Removed devel/cargo successor lang/rust

(ryoon)

Remove cargo

(ryoon)

Remove devel/cargo bacause Cargo is now included in lang/rust

(ryoon)

Updated lang/rust to 1.20.0

(ryoon)