Pullup ticket #5400 - requested by sevan
devel/glib2: build fix

Revisions pulled up:
- devel/glib2/Makefile                                          1.232

---
  Module Name:    pkgsrc
  Committed By:  jperkin
  Date:          Thu May  4 12:19:13 UTC 2017

  Modified Files:
          pkgsrc/devel/glib2: Makefile

  Log Message:
  Add broken python scripts to CHECK_WRKREF_SKIP too.

(bsiegert)

Pullup ticket #5396 - requested by sevan
lang/go: bugfix

Revisions pulled up:
- lang/go/Makefile                                              1.51
- lang/go/distinfo                                              1.47
- lang/go/patches/patch-src_runtime_mem__bsd.go                1.1
- lang/go/patches/patch-src_syscall_syscall__solaris.go        deleted

---
  Module Name:    pkgsrc
  Committed By:  fhajny
  Date:          Tue May  2 17:15:31 UTC 2017

  Modified Files:
          pkgsrc/lang/go: Makefile distinfo
  Added Files:
          pkgsrc/lang/go/patches: patch-src_runtime_mem__bsd.go
  Removed Files:
          pkgsrc/lang/go/patches: patch-src_syscall_syscall__solaris.go

  Log Message:
  * Remove patch adding syscall.Dup2() for SunOS, software should be using
  unix.Dup2() instead.
    https://github.com/joyent/pkgsrc/pull/492
  * Improve handling of low-memory situations on Illumos.
    https://github.com/joyent/pkgsrc/pull/493

(bsiegert)

Pullup ticket #5395 - requested by sevan
net/xymon: build fix

Revisions pulled up:
- net/xymon/Makefile                                            1.49

---
  Module Name:    pkgsrc
  Committed By:  spz
  Date:          Wed May  3 05:29:41 UTC 2017

  Modified Files:
          pkgsrc/net/xymon: Makefile

  Log Message:
  chmod the right files, the .sh are just an identical wrapper now

(bsiegert)

Pullup ticket #5394 - requested by sevan
textproc/mdoclint: bugfix

Revisions pulled up:
- textproc/mdoclint/files/mdoclint                              1.67

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Tue May  2 13:53:14 UTC 2017

  Modified Files:
          pkgsrc/textproc/mdoclint/files: mdoclint

  Log Message:
  Bug fix from Ingo Schwarze: also look for empty lines in unfilled blocks.

(bsiegert)

Pullup ticket #5393 - requested by sevan
net/tor: point update (ensure package remains functional)

Revisions pulled up:
- net/tor/Makefile                                              1.119
- net/tor/distinfo                                              1.80

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Tue May  2 11:16:02 UTC 2017

  Modified Files:
          pkgsrc/net/tor: Makefile distinfo

  Log Message:
  Updated tor to 0.3.0.6.

  Changes in version 0.3.0.6 - 2017-04-26
    Tor 0.3.0.6 is the first stable release of the Tor 0.3.0 series.

    With the 0.3.0 series, clients and relays now use Ed25519 keys to
    authenticate their link connections to relays, rather than the old
    RSA1024 keys that they used before. (Circuit crypto has been
    Curve25519-authenticated since 0.2.4.8-alpha.) We have also replaced
    the guard selection and replacement algorithm to behave more robustly
    in the presence of unreliable networks, and to resist guard-
    capture attacks.

    This series also includes numerous other small features and bugfixes,
    along with more groundwork for the upcoming hidden-services revamp.

    Per our stable release policy, we plan to support the Tor 0.3.0
    release series for at least the next nine months, or for three months
    after the first stable release of the 0.3.1 series: whichever is
    longer. If you need a release with long-term support, we recommend
    that you stay with the 0.2.9 series.

    Below are the changes since 0.2.9.10. For a list of only the changes
    since 0.3.0.5-rc, see the ChangeLog file.

    o Major features (directory authority, security):
      - The default for AuthDirPinKeys is now 1: directory authorities
        will reject relays where the RSA identity key matches a previously
        seen value, but the Ed25519 key has changed. Closes ticket 18319.

    o Major features (guard selection algorithm):
      - Tor's guard selection algorithm has been redesigned from the
        ground up, to better support unreliable networks and restrictive
        sets of entry nodes, and to better resist guard-capture attacks by
        hostile local networks. Implements proposal 271; closes
        ticket 19877.

    o Major features (next-generation hidden services):
      - Relays can now handle v3 ESTABLISH_INTRO cells as specified by
        prop224 aka "Next Generation Hidden Services". Service and clients
        don't use this functionality yet. Closes ticket 19043. Based on
        initial code by Alec Heifetz.
      - Relays now support the HSDir version 3 protocol, so that they can
        can store and serve v3 descriptors. This is part of the next-
        generation onion service work detailled in proposal 224. Closes
        ticket 17238.

    o Major features (protocol, ed25519 identity keys):
      - Clients now support including Ed25519 identity keys in the EXTEND2
        cells they generate. By default, this is controlled by a consensus
        parameter, currently disabled. You can turn this feature on for
        testing by setting ExtendByEd25519ID in your configuration. This
        might make your traffic appear different than the traffic
        generated by other users, however. Implements part of ticket
        15056; part of proposal 220.
      - Relays now understand requests to extend to other relays by their
        Ed25519 identity keys. When an Ed25519 identity key is included in
        an EXTEND2 cell, the relay will only extend the circuit if the
        other relay can prove ownership of that identity. Implements part
        of ticket 15056; part of proposal 220.
      - Relays now use Ed25519 to prove their Ed25519 identities and to
        one another, and to clients. This algorithm is faster and more
        secure than the RSA-based handshake we've been doing until now.
        Implements the second big part of proposal 220; Closes
        ticket 15055.

    o Major features (security):
      - Change the algorithm used to decide DNS TTLs on client and server
        side, to better resist DNS-based correlation attacks like the
        DefecTor attack of Greschbach, Pulls, Roberts, Winter, and
        Feamster. Now relays only return one of two possible DNS TTL
        values, and clients are willing to believe DNS TTL values up to 3
        hours long. Closes ticket 19769.

    o Major bugfixes (client, onion service, also in 0.2.9.9):
      - Fix a client-side onion service reachability bug, where multiple
        socks requests to an onion service (or a single slow request)
        could cause us to mistakenly mark some of the service's
        introduction points as failed, and we cache that failure so
        eventually we run out and can't reach the service. Also resolves a
        mysterious "Remote server sent bogus reason code 65021" log
        warning. The bug was introduced in ticket 17218, where we tried to
        remember the circuit end reason as a uint16_t, which mangled
        negative values. Partially fixes bug 21056 and fixes bug 20307;
        bugfix on 0.2.8.1-alpha.

    o Major bugfixes (crash, directory connections):
      - Fix a rare crash when sending a begin cell on a circuit whose
        linked directory connection had already been closed. Fixes bug
        21576; bugfix on 0.2.9.3-alpha. Reported by Alec Muffett.

    o Major bugfixes (directory authority):
      - During voting, when marking a relay as a probable sybil, do not
        clear its BadExit flag: sybils can still be bad in other ways
        too. (We still clear the other flags.) Fixes bug 21108; bugfix
        on 0.2.0.13-alpha.

    o Major bugfixes (DNS):
      - Fix a bug that prevented exit nodes from caching DNS records for
        more than 60 seconds. Fixes bug 19025; bugfix on 0.2.4.7-alpha.

    o Major bugfixes (IPv6 Exits):
      - Stop rejecting all IPv6 traffic on Exits whose exit policy rejects
        any IPv6 addresses. Instead, only reject a port over IPv6 if the
        exit policy rejects that port on more than an IPv6 /16 of
        addresses. This bug was made worse by 17027 in 0.2.8.1-alpha,
        which rejected a relay's own IPv6 address by default. Fixes bug
        21357; bugfix on commit 004f3f4e53 in 0.2.4.7-alpha.

    o Major bugfixes (parsing):
      - Fix an integer underflow bug when comparing malformed Tor
        versions. This bug could crash Tor when built with
        --enable-expensive-hardening, or on Tor 0.2.9.1-alpha through Tor
        0.2.9.8, which were built with -ftrapv by default. In other cases
        it was harmless. Part of TROVE-2017-001. Fixes bug 21278; bugfix
        on 0.0.8pre1. Found by OSS-Fuzz.
      - When parsing a malformed content-length field from an HTTP
        message, do not read off the end of the buffer. This bug was a
        potential remote denial-of-service attack against Tor clients and
        relays. A workaround was released in October 2016, to prevent this
        bug from crashing Tor. This is a fix for the underlying issue,
        which should no longer matter (if you applied the earlier patch).
        Fixes bug 20894; bugfix on 0.2.0.16-alpha. Bug found by fuzzing
        using AFL (http://lcamtuf.coredump.cx/afl/).

    o Major bugfixes (scheduler):
      - Actually compare circuit policies in ewma_cmp_cmux(). This bug
        caused the channel scheduler to behave more or less randomly,
        rather than preferring channels with higher-priority circuits.
        Fixes bug 20459; bugfix on 0.2.6.2-alpha.

    o Major bugfixes (security, also in 0.2.9.9):
      - Downgrade the "-ftrapv" option from "always on" to "only on when
        --enable-expensive-hardening is provided." This hardening option,
        like others, can turn survivable bugs into crashes--and having it
        on by default made a (relatively harmless) integer overflow bug
        into a denial-of-service bug. Fixes bug 21278 (TROVE-2017-001);
        bugfix on 0.2.9.1-alpha.

    o Minor feature (client):
      - Enable IPv6 traffic on the SocksPort by default. To disable this,
        a user will have to specify "NoIPv6Traffic". Closes ticket 21269.

    o Minor feature (fallback scripts):
      - Add a check_existing mode to updateFallbackDirs.py, which checks
        if fallbacks in the hard-coded list are working. Closes ticket
        20174. Patch by haxxpop.

    o Minor feature (protocol versioning):
      - Add new protocol version for proposal 224. HSIntro now advertises
        version "3-4" and HSDir version "1-2". Fixes ticket 20656.

    o Minor features (ciphersuite selection):
      - Allow relays to accept a wider range of ciphersuites, including
        chacha20-poly1305 and AES-CCM. Closes the other part of 15426.
      - Clients now advertise a list of ciphersuites closer to the ones
        preferred by Firefox. Closes part of ticket 15426.

    o Minor features (controller):
      - Add "GETINFO sr/current" and "GETINFO sr/previous" keys, to expose
        shared-random values to the controller. Closes ticket 19925.
      - When HSFETCH arguments cannot be parsed, say "Invalid argument"
        rather than "unrecognized." Closes ticket 20389; patch from
        Ivan Markin.

    o Minor features (controller, configuration):
      - Each of the *Port options, such as SocksPort, ORPort, ControlPort,
        and so on, now comes with a __*Port variant that will not be saved
        to the torrc file by the controller's SAVECONF command. This
        change allows TorBrowser to set up a single-use domain socket for
        each time it launches Tor. Closes ticket 20956.
      - The GETCONF command can now query options that may only be
        meaningful in context-sensitive lists. This allows the controller
        to query the mixed SocksPort/__SocksPort style options introduced
        in feature 20956. Implements ticket 21300.

    o Minor features (diagnostic, directory client):
      - Warn when we find an unexpected inconsistency in directory
        download status objects. Prevents some negative consequences of
        bug 20593.

    o Minor features (directory authorities):
      - Directory authorities now reject descriptors that claim to be
        malformed versions of Tor. Helps prevent exploitation of
        bug 21278.
      - Reject version numbers with components that exceed INT32_MAX.
        Otherwise 32-bit and 64-bit platforms would behave inconsistently.
        Fixes bug 21450; bugfix on 0.0.8pre1.

    o Minor features (directory authority):
      - Add a new authority-only AuthDirTestEd25519LinkKeys option (on by
        default) to control whether authorities should try to probe relays
        by their Ed25519 link keys. This option will go away in a few
        releases--unless we encounter major trouble in our ed25519 link
        protocol rollout, in which case it will serve as a safety option.

    o Minor features (directory cache):
      - Relays and bridges will now refuse to serve the consensus they
        have if they know it is too old for a client to use. Closes
        ticket 20511.

    o Minor features (ed25519 link handshake):
      - Advertise support for the ed25519 link handshake using the
        subprotocol-versions mechanism, so that clients can tell which
        relays can identity themselves by Ed25519 ID. Closes ticket 20552.

    o Minor features (entry guards):
      - Add UseEntryGuards to TEST_OPTIONS_DEFAULT_VALUES in order to not
        break regression tests.
      - Require UseEntryGuards when UseBridges is set, in order to make
        sure bridges aren't bypassed. Resolves ticket 20502.

    o Minor features (fallback directories):
      - Allow 3 fallback relays per operator, which is safe now that we
        are choosing 200 fallback relays. Closes ticket 20912.
      - Annotate updateFallbackDirs.py with the bandwidth and consensus
        weight for each candidate fallback. Closes ticket 20878.
      - Display the relay fingerprint when downloading consensuses from
        fallbacks. Closes ticket 20908.
      - Exclude relays affected by bug 20499 from the fallback list.
        Exclude relays from the fallback list if they are running versions
        known to be affected by bug 20499, or if in our tests they deliver
        a stale consensus (i.e. one that expired more than 24 hours ago).
        Closes ticket 20539.
      - Make it easier to change the output sort order of fallbacks.
        Closes ticket 20822.
      - Reduce the minimum fallback bandwidth to 1 MByte/s. Part of
        ticket 18828.
      - Require fallback directories to have the same address and port for
        7 days (now that we have enough relays with this stability).
        Relays whose OnionOO stability timer is reset on restart by bug
        18050 should upgrade to Tor 0.2.8.7 or later, which has a fix for
        this issue. Closes ticket 20880; maintains short-term fix
        in 0.2.8.2-alpha.
      - Require fallbacks to have flags for 90% of the time (weighted
        decaying average), rather than 95%. This allows at least 73% of
        clients to bootstrap in the first 5 seconds without contacting an
        authority. Part of ticket 18828.
      - Select 200 fallback directories for each release. Closes
        ticket 20881.

    o Minor features (fingerprinting resistence, authentication):
      - Extend the length of RSA keys used for TLS link authentication to
        2048 bits. (These weren't used for forward secrecy; for forward
        secrecy, we used P256.) Closes ticket 13752.

    o Minor features (geoip):
      - Update geoip and geoip6 to the April 4 2017 Maxmind GeoLite2
        Country database.

    o Minor features (geoip, also in 0.2.9.9):
      - Update geoip and geoip6 to the January 4 2017 Maxmind GeoLite2
        Country database.

    o Minor features (infrastructure):
      - Implement smartlist_add_strdup() function. Replaces the use of
        smartlist_add(sl, tor_strdup(str)). Closes ticket 20048.

    o Minor features (linting):
      - Enhance the changes file linter to warn on Tor versions that are
        prefixed with "tor-". Closes ticket 21096.

    o Minor features (logging):
      - In several places, describe unset ed25519 keys as "<unset>",
        rather than the scary "AAAAAAAA...AAA". Closes ticket 21037.

    o Minor features (portability, compilation):
      - Autoconf now checks to determine if OpenSSL structures are opaque,
        instead of explicitly checking for OpenSSL version numbers. Part
        of ticket 21359.
      - Support building with recent LibreSSL code that uses opaque
        structures. Closes ticket 21359.

    o Minor features (relay):
      - We now allow separation of exit and relay traffic to different
        source IP addresses, using the OutboundBindAddressExit and
        OutboundBindAddressOR options respectively. Closes ticket 17975.
        Written by Michael Sonntag.

    o Minor features (reliability, crash):
      - Try better to detect problems in buffers where they might grow (or
        think they have grown) over 2 GB in size. Diagnostic for
        bug 21369.

    o Minor features (testing):
      - During 'make test-network-all', if tor logs any warnings, ask
        chutney to output them. Requires a recent version of chutney with
        the 21572 patch. Implements 21570.

    o Minor bugfix (control protocol):
      - The reply to a "GETINFO config/names" request via the control
        protocol now spells the type "Dependent" correctly. This is a
        breaking change in the control protocol. (The field seems to be
        ignored by the most common known controllers.) Fixes bug 18146;
        bugfix on 0.1.1.4-alpha.
      - The GETINFO extra-info/digest/<digest> command was broken because
        of a wrong base16 decode return value check, introduced when
        refactoring that API. Fixes bug 22034; bugfix on 0.2.9.1-alpha.

    o Minor bugfix (logging):
      - Don't recommend the use of Tor2web in non-anonymous mode.
        Recommending Tor2web is a bad idea because the client loses all
        anonymity. Tor2web should only be used in specific cases by users
        who *know* and understand the issues. Fixes bug 21294; bugfix
        on 0.2.9.3-alpha.

    o Minor bugfixes (bug resilience):
      - Fix an unreachable size_t overflow in base64_decode(). Fixes bug
        19222; bugfix on 0.2.0.9-alpha. Found by Guido Vranken; fixed by
        Hans Jerry Illikainen.

    o Minor bugfixes (build):
      - Replace obsolete Autoconf macros with their modern equivalent and
        prevent similar issues in the future. Fixes bug 20990; bugfix
        on 0.1.0.1-rc.

    o Minor bugfixes (certificate expiration time):
      - Avoid using link certificates that don't become valid till some
        time in the future. Fixes bug 21420; bugfix on 0.2.4.11-alpha

    o Minor bugfixes (client):
      - Always recover from failures in extend_info_from_node(), in an
        attempt to prevent any recurrence of bug 21242. Fixes bug 21372;
        bugfix on 0.2.3.1-alpha.
      - When clients that use bridges start up with a cached consensus on
        disk, they were ignoring it and downloading a new one. Now they
        use the cached one. Fixes bug 20269; bugfix on 0.2.3.12-alpha.

    o Minor bugfixes (code correctness):
      - Repair a couple of (unreachable or harmless) cases of the risky
        comparison-by-subtraction pattern that caused bug 21278.

    o Minor bugfixes (config):
      - Don't assert on startup when trying to get the options list and
        LearnCircuitBuildTimeout is set to 0: we are currently parsing the
        options so of course they aren't ready yet. Fixes bug 21062;
        bugfix on 0.2.9.3-alpha.

    o Minor bugfixes (configuration):
      - Accept non-space whitespace characters after the severity level in
        the `Log` option. Fixes bug 19965; bugfix on 0.2.1.1-alpha.
      - Support "TByte" and "TBytes" units in options given in bytes.
        "TB", "terabyte(s)", "TBit(s)" and "terabit(s)" were already
        supported. Fixes bug 20622; bugfix on 0.2.0.14-alpha.

    o Minor bugfixes (configure, autoconf):
      - Rename the configure option --enable-expensive-hardening to
        --enable-fragile-hardening. Expensive hardening makes the tor
        daemon abort when some kinds of issues are detected. Thus, it
        makes tor more at risk of remote crashes but safer against RCE or
        heartbleed bug category. We now try to explain this issue in a
        message from the configure script. Fixes bug 21290; bugfix
        on 0.2.5.4-alpha.

    o Minor bugfixes (consensus weight):
      - Add new consensus method that initializes bw weights to 1 instead
        of 0. This prevents a zero weight from making it all the way to
        the end (happens in small testing networks) and causing an error.
        Fixes bug 14881; bugfix on 0.2.2.17-alpha.

    o Minor bugfixes (crash prevention):
      - Fix an (currently untriggerable, but potentially dangerous) crash
        bug when base32-encoding inputs whose sizes are not a multiple of
        5. Fixes bug 21894; bugfix on 0.2.9.1-alpha.

    o Minor bugfixes (dead code):
      - Remove a redundant check for PidFile changes at runtime in
        options_transition_allowed(): this check is already performed
        regardless of whether the sandbox is active. Fixes bug 21123;
        bugfix on 0.2.5.4-alpha.

    o Minor bugfixes (descriptors):
      - Correctly recognise downloaded full descriptors as valid, even
        when using microdescriptors as circuits. This affects clients with
        FetchUselessDescriptors set, and may affect directory authorities.
        Fixes bug 20839; bugfix on 0.2.3.2-alpha.

    o Minor bugfixes (directory mirrors):
      - Allow relays to use directory mirrors without a DirPort: these
        relays need to be contacted over their ORPorts using a begindir
        connection. Fixes one case of bug 20711; bugfix on 0.2.8.2-alpha.
      - Clarify the message logged when a remote relay is unexpectedly
        missing an ORPort or DirPort: users were confusing this with a
        local port. Fixes another case of bug 20711; bugfix
        on 0.2.8.2-alpha.

    o Minor bugfixes (directory system):
      - Bridges and relays now use microdescriptors (like clients do)
        rather than old-style router descriptors. Now bridges will blend
        in with clients in terms of the circuits they build. Fixes bug
        6769; bugfix on 0.2.3.2-alpha.
      - Download all consensus flavors, descriptors, and authority
        certificates when FetchUselessDescriptors is set, regardless of
        whether tor is a directory cache or not. Fixes bug 20667; bugfix
        on all recent tor versions.

    o Minor bugfixes (documentation):
      - Update the tor manual page to document every option that can not
        be changed while tor is running. Fixes bug 21122.

    o Minor bugfixes (ed25519 certificates):
      - Correctly interpret ed25519 certificates that would expire some
        time after 19 Jan 2038. Fixes bug 20027; bugfix on 0.2.7.2-alpha.

    o Minor bugfixes (fallback directories):
      - Avoid checking fallback candidates' DirPorts if they are down in
        OnionOO. When a relay operator has multiple relays, this
        prioritizes relays that are up over relays that are down. Fixes
        bug 20926; bugfix on 0.2.8.3-alpha.
      - Stop failing when OUTPUT_COMMENTS is True in updateFallbackDirs.py.
        Fixes bug 20877; bugfix on 0.2.8.3-alpha.
      - Stop failing when a relay has no uptime data in
        updateFallbackDirs.py. Fixes bug 20945; bugfix on 0.2.8.1-alpha.

    o Minor bugfixes (hidden service):
      - Clean up the code for expiring intro points with no associated
        circuits. It was causing, rarely, a service with some expiring
        introduction points to not open enough additional introduction
        points. Fixes part of bug 21302; bugfix on 0.2.7.2-alpha.
      - Resolve two possible underflows which could lead to creating and
        closing a lot of introduction point circuits in a non-stop loop.
        Fixes bug 21302; bugfix on 0.2.7.2-alpha.
      - Stop setting the torrc option HiddenServiceStatistics to "0" just
        because we're not a bridge or relay. Instead, we preserve whatever
        value the user set (or didn't set). Fixes bug 21150; bugfix
        on 0.2.6.2-alpha.

    o Minor bugfixes (hidden services):
      - Make hidden services check for failed intro point connections,
        even when they have exceeded their intro point creation limit.
        Fixes bug 21596; bugfix on 0.2.7.2-alpha. Reported by Alec Muffett.
      - Make hidden services with 8 to 10 introduction points check for
        failed circuits immediately after startup. Previously, they would
        wait for 5 minutes before performing their first checks. Fixes bug
        21594; bugfix on 0.2.3.9-alpha. Reported by Alec Muffett.
      - Stop ignoring misconfigured hidden services. Instead, refuse to
        start tor until the misconfigurations have been corrected. Fixes
        bug 20559; bugfix on multiple commits in 0.2.7.1-alpha
        and earlier.

    o Minor bugfixes (IPv6):
      - Make IPv6-using clients try harder to find an IPv6 directory
        server. Fixes bug 20999; bugfix on 0.2.8.2-alpha.
      - When IPv6 addresses have not been downloaded yet (microdesc
        consensus documents don't list relay IPv6 addresses), use hard-
        coded addresses for authorities, fallbacks, and configured
        bridges. Now IPv6-only clients can use microdescriptors. Fixes bug
        20996; bugfix on b167e82 from 19608 in 0.2.8.5-alpha.

    o Minor bugfixes (memory leak at exit):
      - Fix a small harmless memory leak at exit of the previously unused
        RSA->Ed identity cross-certificate. Fixes bug 17779; bugfix
        on 0.2.7.2-alpha.

    o Minor bugfixes (onion services):
      - Allow the number of introduction points to be as low as 0, rather
        than as low as 3. Fixes bug 21033; bugfix on 0.2.7.2-alpha.

    o Minor bugfixes (portability):
      - Use "OpenBSD" compiler macro instead of "OPENBSD" or "__OpenBSD__".
        It is supported by OpenBSD itself, and also by most OpenBSD
        variants (such as Bitrig). Fixes bug 20980; bugfix
        on 0.1.2.1-alpha.

    o Minor bugfixes (portability, also in 0.2.9.9):
      - Avoid crashing when Tor is built using headers that contain
        CLOCK_MONOTONIC_COARSE, but then tries to run on an older kernel
        without CLOCK_MONOTONIC_COARSE. Fixes bug 21035; bugfix
        on 0.2.9.1-alpha.
      - Fix Libevent detection on platforms without Libevent 1 headers
        installed. Fixes bug 21051; bugfix on 0.2.9.1-alpha.

    o Minor bugfixes (relay):
      - Avoid a double-marked-circuit warning that could happen when we
        receive DESTROY cells under heavy load. Fixes bug 20059; bugfix
        on 0.1.0.1-rc.
      - Honor DataDirectoryGroupReadable when tor is a relay. Previously,
        initializing the keys would reset the DataDirectory to 0700
        instead of 0750 even if DataDirectoryGroupReadable was set to 1.
        Fixes bug 19953; bugfix on 0.0.2pre16. Patch by "redfish".

    o Minor bugfixes (testing):
      - Fix Raspbian build issues related to missing socket errno in
        test_util.c. Fixes bug 21116; bugfix on 0.2.8.2. Patch by "hein".
      - Remove undefined behavior from the backtrace generator by removing
        its signal handler. Fixes bug 21026; bugfix on 0.2.5.2-alpha.
      - Use bash in src/test/test-network.sh. This ensures we reliably
        call chutney's newer tools/test-network.sh when available. Fixes
        bug 21562; bugfix on 0.2.9.1-alpha.

    o Minor bugfixes (tor-resolve):
      - The tor-resolve command line tool now rejects hostnames over 255
        characters in length. Previously, it would silently truncate them,
        which could lead to bugs. Fixes bug 21280; bugfix on 0.0.9pre5.
        Patch by "junglefowl".

    o Minor bugfixes (unit tests):
      - Allow the unit tests to pass even when DNS lookups of bogus
        addresses do not fail as expected. Fixes bug 20862 and 20863;
        bugfix on unit tests introduced in 0.2.8.1-alpha
        through 0.2.9.4-alpha.

    o Minor bugfixes (util):
      - When finishing writing a file to disk, if we were about to replace
        the file with the temporary file created before and we fail to
        replace it, remove the temporary file so it doesn't stay on disk.
        Fixes bug 20646; bugfix on 0.2.0.7-alpha. Patch by fk.

    o Minor bugfixes (Windows services):
      - Be sure to initialize the monotonic time subsystem before using
        it, even when running as an NT service. Fixes bug 21356; bugfix
        on 0.2.9.1-alpha.

    o Minor bugfixes (Windows):
      - Check for getpagesize before using it to mmap files. This fixes
        compilation in some MinGW environments. Fixes bug 20530; bugfix on
        0.1.2.1-alpha. Reported by "ice".

    o Code simplification and refactoring:
      - Abolish all global guard context in entrynodes.c; replace with new
        guard_selection_t structure as preparation for proposal 271.
        Closes ticket 19858.
      - Extract magic numbers in circuituse.c into defined variables.
      - Introduce rend_service_is_ephemeral() that tells if given onion
        service is ephemeral. Replace unclear NULL-checkings for service
        directory with this function. Closes ticket 20526.
      - Refactor circuit_is_available_for_use to remove unnecessary check.
      - Refactor circuit_predict_and_launch_new for readability and
        testability. Closes ticket 18873.
      - Refactor code to manipulate global_origin_circuit_list into
        separate functions. Closes ticket 20921.
      - Refactor large if statement in purpose_needs_anonymity to use
        switch statement instead. Closes part of ticket 20077.
      - Refactor the hashing API to return negative values for errors, as
        is done as throughout the codebase. Closes ticket 20717.
      - Remove data structures that were used to index or_connection
        objects by their RSA identity digests. These structures are fully
        redundant with the similar structures used in the
        channel abstraction.
      - Remove duplicate code in the channel_write_*cell() functions.
        Closes ticket 13827; patch from Pingl.
      - Remove redundant behavior of is_sensitive_dir_purpose, refactor to
        use only purpose_needs_anonymity. Closes part of ticket 20077.
      - The code to generate and parse EXTEND and EXTEND2 cells has been
        replaced with code automatically generated by the
        "trunnel" utility.

    o Documentation (formatting):
      - Clean up formatting of tor.1 man page and HTML doc, where <pre>
        blocks were incorrectly appearing. Closes ticket 20885.

    o Documentation (man page):
      - Clarify many options in tor.1 and add some min/max values for
        HiddenService options. Closes ticket 21058.

    o Documentation:
      - Change '1' to 'weight_scale' in consensus bw weights calculation
        comments, as that is reality. Closes ticket 20273. Patch
        from pastly.
      - Clarify that when ClientRejectInternalAddresses is enabled (which
        is the default), multicast DNS hostnames for machines on the local
        network (of the form *.local) are also rejected. Closes
        ticket 17070.
      - Correct the value for AuthDirGuardBWGuarantee in the manpage, from
        250 KBytes to 2 MBytes. Fixes bug 20435; bugfix on 0.2.5.6-alpha.
      - Include the "TBits" unit in Tor's man page. Fixes part of bug
        20622; bugfix on 0.2.5.1-alpha.
      - Small fixes to the fuzzing documentation. Closes ticket 21472.
      - Stop the man page from incorrectly stating that HiddenServiceDir
        must already exist. Fixes 20486.
      - Update the description of the directory server options in the
        manual page, to clarify that a relay no longer needs to set
        DirPort in order to be a directory cache. Closes ticket 21720.

    o Removed features:
      - The AuthDirMaxServersPerAuthAddr option no longer exists: The same
        limit for relays running on a single IP applies to authority IP
        addresses as well as to non-authority IP addresses. Closes
        ticket 20960.
      - The UseDirectoryGuards torrc option no longer exists: all users
        that use entry guards will also use directory guards. Related to
        proposal 271; implements part of ticket 20831.

    o Testing:
      - Add tests for networkstatus_compute_bw_weights_v10.
      - Add unit tests circuit_predict_and_launch_new.
      - Extract dummy_origin_circuit_new so it can be used by other
        test functions.
      - New unit tests for tor_htonll(). Closes ticket 19563. Patch
        from "overcaffeinated".
      - Perform the coding style checks when running the tests and fail
        when coding style violations are found. Closes ticket 5500.

(bsiegert)

Pullup ticket #5404 - requested by sevan
graphics/tiff: security fix

Revisions pulled up:
- graphics/tiff/Makefile                                        1.127-1.129
- graphics/tiff/distinfo                                        1.73-1.75
- graphics/tiff/patches/patch-libtiff_tif_dir.c                1.1
- graphics/tiff/patches/patch-libtiff_tif_dirread.c            1.2
- graphics/tiff/patches/patch-libtiff_tif_dirwrite.c            1.1
- graphics/tiff/patches/patch-tools_tiffcp.c                    1.2
- graphics/tiff/patches/patch-tools_tiffcrop.c                  1.1-1.2

---
  Module Name:    pkgsrc
  Committed By:  he
  Date:          Fri May  5 19:16:58 UTC 2017

  Modified Files:
          pkgsrc/graphics/tiff: Makefile
  Added Files:
          pkgsrc/graphics/tiff/patches: patch-tools_tiffcrop.c

  Log Message:
  Apply fix from upstream to fix CVE-2016-10092, ref.
  http://bugzilla.maptools.org/show_bug.cgi?id=2620 and
  https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a
  Bump PKGREVISION.

---
  Module Name:    pkgsrc
  Committed By:  he
  Date:          Fri May  5 19:28:23 UTC 2017

  Modified Files:
          pkgsrc/graphics/tiff: distinfo

  Log Message:
  Forgot "make mps", this one belongs to the previous update, 4.0.7nb3.

---
  Module Name:    pkgsrc
  Committed By:  he
  Date:          Fri May  5 20:06:03 UTC 2017

  Modified Files:
          pkgsrc/graphics/tiff: Makefile distinfo
          pkgsrc/graphics/tiff/patches: patch-tools_tiffcp.c

  Log Message:
  Apply fix for CVE-2016-10093
  http://bugzilla.maptools.org/show_bug.cgi?id=2610
  https://github.com/vadz/libtiff/commit/787c0ee906430b772f33ca50b97b8b5ca070faec
  Bump PKGREVISION.

---
  Module Name:    pkgsrc
  Committed By:  sevan
  Date:          Fri May  5 20:14:05 UTC 2017

  Modified Files:
          pkgsrc/graphics/tiff: Makefile distinfo
          pkgsrc/graphics/tiff/patches: patch-libtiff_tif_dirread.c
              patch-tools_tiffcrop.c
  Added Files:
          pkgsrc/graphics/tiff/patches: patch-libtiff_tif_dir.c
              patch-libtiff_tif_dirwrite.c

  Log Message:
  CVE-2017-7596
  CVE-2017-7597
  CVE-2017-7599
  CVE-2017-7600
  https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490
  Dependency for applying advisory patch.
  +http://bugzilla.maptools.org/show_bug.cgi?id=2535
  +https://github.com/vadz/libtiff/commit/0abd094b6e5079c4d8be733829240491cb230f3d
  Bump rev.

(bsiegert)

Pullup ticket #5399 - requested by sevan
graphics/tiff: security fix

Revisions pulled up:
- graphics/tiff/Makefile                                        1.126
- graphics/tiff/distinfo                                        1.72
- graphics/tiff/patches/patch-libtiff_tif_dirread.c            1.1
- graphics/tiff/patches/patch-libtiff_tif_getimage.c            1.1
- graphics/tiff/patches/patch-libtiff_tif_jpeg.c                1.1
- graphics/tiff/patches/patch-libtiff_tif_ojpeg.c              1.1
- graphics/tiff/patches/patch-libtiff_tif_read.c                1.1
- graphics/tiff/patches/patch-libtiff_tif_unix.c                1.1
- graphics/tiff/patches/patch-libtiff_tif_win32.c              1.1
- graphics/tiff/patches/patch-libtiff_tiffio.h                  1.1
- graphics/tiff/patches/patch-tools_tiffcp.c                    1.1

---
  Module Name:    pkgsrc
  Committed By:  sevan
  Date:          Wed May  3 23:00:59 UTC 2017

  Modified Files:
          pkgsrc/graphics/tiff: Makefile distinfo
  Added Files:
          pkgsrc/graphics/tiff/patches: patch-libtiff_tif_dirread.c
              patch-libtiff_tif_getimage.c patch-libtiff_tif_jpeg.c
              patch-libtiff_tif_ojpeg.c patch-libtiff_tif_read.c
              patch-libtiff_tif_unix.c patch-libtiff_tif_win32.c
              patch-libtiff_tiffio.h patch-tools_tiffcp.c

  Log Message:
  Add security patches & bump rev.
  via FreeBSD bz #216658

  https://nvd.nist.gov/vuln/detail/CVE-2017-5225
  http://bugzilla.maptools.org/show_bug.cgi?id=2656
  http://bugzilla.maptools.org/show_bug.cgi?id=2657
  https://github.com/vadz/libtiff/commit/5c080298d59efa53264d7248bbe3a04660db6ef7

  https://nvd.nist.gov/vuln/detail/CVE-2017-7592
  http://bugzilla.maptools.org/show_bug.cgi?id=2658
  https://github.com/vadz/libtiff/commit/48780b4fcc42

  https://nvd.nist.gov/vuln/detail/CVE-2017-7593
  http://bugzilla.maptools.org/show_bug.cgi?id=2651
  https://github.com/vadz/libtiff/commit/d60332057b95

  https://nvd.nist.gov/vuln/detail/CVE-2017-7594
  http://bugzilla.maptools.org/show_bug.cgi?id=2659
  https://github.com/vadz/libtiff/commit/8283e4d1b7e5
  https://github.com/vadz/libtiff/commit/2ea32f7372b6

  https://nvd.nist.gov/vuln/detail/CVE-2017-7595
  https://github.com/vadz/libtiff/commit/47f2fb61a3a64667bce1a8398a8fcb1b348ff122

  https://nvd.nist.gov/vuln/detail/CVE-2017-7598
  https://github.com/vadz/libtiff/commit/3cfd62d77c2a7e147a05bd678524c345fa9c2bb8

  https://nvd.nist.gov/vuln/detail/CVE-2017-7601
  https://github.com/vadz/libtiff/commit/0a76a8c765c7b8327c59646284fa78c3c27e5490

  https://nvd.nist.gov/vuln/detail/CVE-2017-7602
  https://github.com/vadz/libtiff/commit/66e7bd59520996740e4df5495a830b42fae48bc4

(bsiegert)

Updated x11/mlterm to 3.8.1

(tsutsui)

Update mlterm to 3.8.1.

Changes noted in doc/en/ReleaseNote:

ver 3.8.1
* Support wayland including libvte compatible library.
  (Build mlterm with --with-gui=wayland option.) (see doc/en/README.wayland)
* Support "compose_dec_special_font" / --decsp option on framebuffer and wayland.
* "line_space" option accepts negative value.
* Add "underline_offset" / --ulpos option.
* Rename wskbd_repeat_1 and wskbd_repeat_N options to kbd_repeat_1 and kbd_repeat_N.
* Enable --enable-anti-alias option of configure script by default.
* Add --enable-fontconfig option which enables fontconfig on framebuffer and wayland
  to configure script. (This option is enabled by default.)
* Add "use_aafont" option which gets mlterm to apply ~/.mlterm/*aafont configurations
  with the use of fontconfig on framebuffer and wayland.
  (The default value is true on wayland, while false on framebuffer.)
* Search alternative glyphs in other fonts automatically on framebuffer and wayland.
  (This feature is enabled if mlterm-{fb|wl} is built with freetype and fontconfig.)
* libvte compatible library supports vte 0.46.0 API.
* Bug fixes:
  Fix detection failuer of mouse event devices on framebuffer/linux. (Thanks to @nyarla)
  (See http://the.nyarla.net/entry/2017/03/25/142516 for details.)
  Fix segfault in using many colors by SGR 38;2;r;g;b or 48;2;r;g;b sequence.

(tsutsui)

Updated mbone/rtptools to 1.21

(mef)

Updated mbone/rtptools to 1.21
------------------------------
1.21 (July 2016)
    Yann E. MORIN (yann.morin.1998@free.fr): Buildroot [1] is a build-system
    targetting embedded devices. It is able to build toolchains for various
    architectures, based on the traditional GNU compiler collection gcc, the GNU
    binutils and various C libraries, such as GNU libc (glibc), uClibc [2] [3] or
    musl [4].

    glibc is a feature-full C library, which has had support for Yellow Pages
    (and the rest of the SUN RPC stuff) for a long time. However, circa the 2.14
    release, glibc stopped installing the RPC headers [5], on the principle that
    providing the RPC implementation would be better served by a third-party
    package, namely ti-rpc [6]. That did not happen in time, so installing the
    RPC headers from glibc was re-instated circa 2.16.

    uClibc (no longer maintained, replaced by a fork, uClibc-ng) is a fully
    configurable C library for embedded systems. It entirely lacks a SUN RPC
    implementation altogether.

    musl is standards-conforming, lightweight C library. It also entirely lacks a
    SUN RPC implementation.

    TI-RPC is a stand-alone package. It may or may not be available (because the
    user may not need SUN RPC stuff on an embedded device, for example). Besides,
    it is not yet as feature-full as the implementation in glibc, though for all
    practical means, it is totally useable.

    So, there are cases where a SUN RPC implementation is not available.

    This patch makes it so that the use of Yellow Pages is conditional on the
    presence of a SUN RPC implementation, by checking at ./configure whether the
    required header is present, and disabling the corresponding code if the
    header is missing.

    At the same time, the legacy, long unsupported AM_C_PROTOTYPES directive is
    also removed, as it makes recent-ish autoconf fail.

(mef)

Updated graphics/flickrnet to 3.24.0

(mef)

Updated graphics/flickernet 3.17.0 to 3.24.0
--------------------------------------------
Version Downloads Last updated
                -------        ---------      ------------
FlickrNet API... 3.24.0 (this version) 585 Monday, February 6, 2017
FlickrNet API... 3.22.0 2,278 Friday, February 12, 2016
- Upload now uses substantially less memory, Issue #13
- Refactoring tests
- Add simple retry on Web Exception 502 Bad Gateway
  - a common error returned by Flickr API

FlickrNet API... 3.20.0 193         Tuesday, February 9, 2016
FlickrNet API... 3.19.0 510         Monday, February 1, 2016

(mef)

Reduce diff with pkgsrc-wip

No functional change

(kamil)

Mark c++11 requirement

(kamil)

Updated fonts/Hasklig to 1.1

(mef)

Updated fonts/Hasklig to 1.1
----------------------------
v1.1
  - New ligatures ->>, :::, >=>, <=<, <=>, <->
  - Switched to newer version of calt code by Nikita Prokopov. It
    "doesn窶冲 apply ligatures to long sequences of chars, e.g. !!!!,
    >>>>, etc"
  - Fixed ++ and +++ line inconsistency in heavy italic weights
v1.0
  - Updates to the latest version of SCP
  - Hasklig moves to a ligature substitution mechanism borrowed from
    the excellent Fira Code by Nikita Prokopov

(mef)

Updated fonts/Hack-ttf to 2.020

(mef)

Updated fonts/Hack-ttf to 2.020
-------------------------------
From: https://github.com/chrissimpkins/Hack/blob/master/CHANGELOG.md
Version 2.020
    divided the vertical stroke in the pipe glyph (U+007C), italic and bold italic sets
    modified U+007C hints in TrueType builds at 6, 7, 10, 11, 12, 13, 14 ppem italic set
    modified U+007C hints in TrueType builds at 6, 7, 10, 14 ppem bold italic set
    modified slant angle and stroke length (U+005C), italic and bold italic sets
    centered U+007C and U+005C, all sets
    modified zero (U+0030) oval fill hints in regular set
    added Powerline glyphs to the bold, italic, and bold italic sets
    U+2502 upper terminal to 1950, lower terminal to -530, all sets
    U+2503 upper terminal to 1950, lower terminal to -530, all sets
    U+250C lower terminal to -530, all sets
    ... (more too many lines ommitted) ...

(mef)

Drop local LLDB patches for MIUtilParse

This used to break standalone build. It has been fixed in upstream r280662
and r281317.

(kamil)

Reduce diff with pkgsrc-wip/libunwind

(kamil)

Update buildlink3.mk with reality in LLVM projects

(kamil)

Reduce diff with pkgsrc-wip/lldb-git

(kamil)

Reduce diff with pkgsrc-wip/clang-git

This also fixes linking with libstdc++ in clang and should make it usable.

(kamil)

Synchronize llvm/Makefile with pkgsrc-wip/llvm-git/Makefile

There shouldn't be functional change in produced binary package.

(kamil)

Note update of graphics/tiff to 4.0.7nb4.

(he)

CVE-2017-7596
CVE-2017-7597
CVE-2017-7599
CVE-2017-7600
https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490
Dependency for applying advisory patch.
+http://bugzilla.maptools.org/show_bug.cgi?id=2535
+https://github.com/vadz/libtiff/commit/0abd094b6e5079c4d8be733829240491cb230f3d
Bump rev.

(sevan)

Apply fix for CVE-2016-10093
http://bugzilla.maptools.org/show_bug.cgi?id=2610
https://github.com/vadz/libtiff/commit/787c0ee906430b772f33ca50b97b8b5ca070faec
Bump PKGREVISION.

(he)

Forgot "make mps", this one belongs to the previous update, 4.0.7nb3.

(he)

Note update of graphics/tiff to 4.0.7nb3.

(he)

Apply fix from upstream to fix CVE-2016-10092, ref.
http://bugzilla.maptools.org/show_bug.cgi?id=2620 and
https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a
Bump PKGREVISION.

(he)

Don't explicit disable tests. Merge two upstream patches for fixing
build and runtime errors in the test suite on NetBSD.

(joerg)

Move C++11 setting before the first inclusion of compiler.mk. Reuse the
results instead of multiply inclusions.

(joerg)

Links against libtermcap.

(jperkin)

The mysql client links against libcurses, ensure we pull in the bl3 so
that user preferences are respected.

(jperkin)

Added www/py-model_mommy version 1.3.2

(adam)

Model-mommy offers you a smart way to create fixtures for testing in Django.
With a simple and powerful API you can create many objects with a single line
of code.

(adam)

Add api SMF instance.  From Jorge Schrauwen in joyent/pkgsrc#490.

(jperkin)

Updated textproc/coccigrep to 1.16

(leot)

Update textproc/coccigrep to 1.16

pkgsrc changes:
- Switch MASTER_SITES to MASTER_SITE_GITHUB that also contains newer
  releases
- Delete PYTHON_VERSIONS_INCOMPATIBLE, now coccigrep is compatible
  also with Python 3.

Changes:
1.16
----
- Add support for Python 3.4

1.15
----
- Add Python 3 support

1.14
----
- Various bug fixes and improvements

(leot)

R: add some missing PLIST.Darwin entries

(maya)

php-intl: help CentOS6 builds by requiring a GCC that recognises -std=c++11

(maya)

splint: use the standard check for C99 before including a C99 header

If PR pkg/47405 was not fixed before (it probably was), this should
definitely do the trick.

(maya)

Updated databases/py-ldap to 2.4.38; databases/py-ldap3 to 2.2.3

(adam)

Changes 2.2.3:
abstraction layer query converts int values to string (thanks dgadmin)
CaseInsensitiveDictWithAlias doesn窶冲 raise an exception anymore if alias is set multiple times to the same key
friendly names in AttrDef are properly managed when performing commits in Writer cursors
no more errors when server returns an empty schema (thanks Glen)
range attributes in entries are properly recognized when auto_range is False
fixed random errors in auto_range searches (thanks James)
fixed checking of malformed schema
added configuration parameter IGNORE_MALFORMED_SCHEMA to not raise exception for servers that don窶冲 follow the LDAP RFCs (defaults to False)
test config moved to test/config.py
testcase_id generated randomly for each test
added ATTRIBUTES_EXCLUDED_FROM_OBJECT_DEF parmeter to exclude some attribute from automatic populate of ObjectDef in Abstract Layer (helpful for AD)
added IGNORED_MANDATORY_ATTRIBUTES_IN_OBJECT_DEF parmeter to exclude some attribute from mandatory attribute list in ObjectDef in Abstract Layer (helpful for AD)
fixed error when using implicit assigning in WritableEntry
added LDAPInvalidValueError Exception
in Python 3 byte filter are converted to unicode before parsing
RESPONSE_DN_ENCODING parameter renamed to ADDITIONAL_ENCODINGS
to_unicode(value, encoding=None, additional_encodings=False) now checks for additional encoodings in ADDITIONAL_ENCODINGS list if additional_encoding is set to True
Reusable strategy uses not lazy Restartable connections

(adam)

Changes 2.4.38:

Lib/slapdtest.py
* SlapdObject now evaluates env var SLAPD for optionally pointing
  to OpenLDAP's slapd executable (e.g. with OpenLDAP LTB builds)
* added LDAPI support in slaptest.SlapdObject which is internally used
  in methods ldapadd() and ldapwhoami()
* added method slaptest.SlapdObject.ldapmodify()
* fixed enabling logger in slaptest
* directory name now contains port to be able to run several SlapdObject
  instances side-by-side (e.g. with replication)
* added authz-regexp mapping to rootdn for user running the test
* internally use SASL/EXTERNAL via LDAPI to bind
* SlapdObject.server_id used as serverID in slapd.conf for MMR
* Removed method SlapdObject.started() because SlapdTestCase.setUpClass()
  will be used to add initial entries

Tests/
* ReconnectLDAPObject is also tested by sub-classing test class

(adam)

Updated devel/pkgconf to 1.3.5

(mef)

Updated devel/pkgconf 1.0.1 to 1.3.5
------------------------------------
Changes from 1.3.4 to 1.3.5:
----------------------------
* Bug fixes:
  - fix --variable output for compatibility some broken configure scripts when they
    request the same variable from multiple packages

Changes from 1.3.3 to 1.3.4:
----------------------------
* Bug fixes:
  - fix a quoting issue exposed by the Go testsuite

Changes from 1.3.2 to 1.3.3:
----------------------------
* Bug fixes:
  - back out disabling the dependency resolver for single-package queries, it caused
    too many regressions.

* Enhancements:
  - allow explicitly disabling the dependency resolver via new environment variable,
    PKG_CONFIG_MINIMUM_TRAVERSE_DEPTH=1.  while pkgconf could already do this using
    --minimum-traverse-depth=1, other pkg-config implementations do not have this
    option, so adding an environment variable allows to make better use of this
    feature (other implementations won't error due to unknown option this way)

Changes from 1.3.1 to 1.3.2:
----------------------------
* Bug fixes:
  - rewrite handling of --modversion, --print-variables and --variable to not require
    the dependency resolver
  - ensure we disable the dependency resolver in all cases where it is a single-package
    query (1.3.1 did not go far enough)

Changes from 1.3.0 to 1.3.1:
----------------------------
* Features:
  - implement --short-errors

* Bug fixes:
  - only consider a single package at a time with --print-requires, --print-requires-private,
    --print-provides, --modversion, --print-variable and --print-variables

* Enhancements:
  - synchronized latest freedesktop.org changes to pkg.m4
  - improve error reporting with legacy --atleast-version and similar flags.

Changes from 1.2.0 to 1.3.0:
----------------------------
* Features:
  - pkgconf --debug now provides a facility for tracing most relevant libpkgconf operations
  - libpkgconf: add warn and trace handlers for warnings
  - replace realpath() with faster, lighter weight path normalization function (#112)
  - pkgconf CLI now emulates pkg-config quoting rules precisely, while allowing direct access
    to the actual fragments via libpkgconf

* Bug fixes:
  - pkg: properly separate static and virtual packages so they are not inappropriately
    optimized out of the dependency graph (#108)
  - argvsplit: do not consider ' and " to have similar rules to escape sequences (#111)
  - pkg: strip trailing whitespace when parsing .pc files

* Enhancements:
  - argvsplit basically rewritten from scratch
  - many code fixes spotted by coverity
  - add PKG_CONFIG_DONT_RELOCATE_PATHS and --dont-relocate-paths environment variables to
    disable path relocation feature if needed
  - remove extra whitespace that was present for compatibility with older pkg-config releases (#113)

Changes from 1.1.0 to 1.2.0:
----------------------------
* Features:
  - new --path option lists the .pc files which provided the requested dependencies
  - new path relocation API: pkgconf_path_relocate(), which wraps functions such as
    realpath() and cygwin_conv_path().
  - new --with-path option adds a path to the search list
  - new --define-prefix and --dont-define-prefix features enable automatic prefix
    detection for relocatable SDKs.  this is mostly useful on windows.

* Bug fixes:
  - fragments: fix even more edge cases involving token concatenation
  - path lists: don't attempt to collect path inodes if the filter is disabled
  - path lists: explicitly avoid uninitialised data for the path inode cache
  - client: properly handle --keep-system-cflags and --keep-system-libs

* Enhancements:
  - windows: build libpkgconf as a DLL
  - fragments: only munge fragments if sysroot_dir is actually set
  - overall API: resolver flags have been moved to being a client-object setting
    instead of used for every function invocation

Changes from 1.0.1 to 1.1.0:
----------------------------
* Features:
  - new Provides system allows alternate .pc files to provide a dependency
  - stable library API (with documentation): http://pkgconf.readthedocs.io/

* Enhancements:
  - make it possible to programmatically declare dependencies instead of just using the parser
  - testsuite migrated to run under kyua
  - provide a libpkgconf.pc file for consumers to use
  - pkgconf client: new --pure flag to enable dependency graph optimization in --static mode
  - significant .pc parser speedups using bsearch(3).
  - handle -idirafter in the same way as -isystem CFLAGS
  - learn toolchain "system" paths from GCC environment variables, if present
  - filter duplicate PKG_CONFIG_PATH (and other) entries by inode

* Bug fixes:
  - fragments: fix another edge case involving empty tokens being concatenated onto previous tokens (#99)
  - libpkgconf: remove dependencies on config.h in public headers

(mef)

Updated devel/pkg-config to 0.29.2

(mef)

Updated devel/pkg-config to 0.29.2
----------------------------------
pkg-config 0.29.2
=================

- Improved pkg-config's recursive package list expansion performance.
  Thanks to Matthew Hanna for the fix.
- Handle an empty prefix setting correctly when --define-prefix is used.
  (#97453)
- Lazily load pc files instead of reading all available pc files during
  initialization. Thanks to Marco Diego Aur辿lio Mesquita for the fix.
  (#98215)
- Check the CPATH environment variable when determining system include
  paths like GCC does. Document the system search path behavior. Thanks
  to v4hn for the fix. (#99224)
- Make PKG_CHECK_MODULES show the module list rather than the variable
  prefix in configure output. Thanks to Russ Albery for the fix.
  (#98334)
- Fix bundled glib build with GCC 6. (#98334)
- Handle -isystem and -idirafter when PKG_CONFIG_SYSROOT_DIR is set.
  (#97337)
- Check the INCLUDE environment variable when determining system include
  paths on Windows builds when --msvc-syntax is used. (#94729)

(mef)

Updated devel/p5-Test-Deep to 1.127

(mef)

Updated devel/p5-Test-Deep to 1.127
-----------------------------------
1.127    2017-05-04
        - no code changes from previous release

1.126_001 2017-04-17
        - do not eagerly convert simple scalars into tests in the all, any, and
          none tests; this was breaking LeafWrapper application

(mef)

Updated ham/fldigi to 4.0.3

(mef)

Updated ham/fldigi 3.23.21 to 4.0.3
---------------------------
=Version 4.0.3=
2017-04-30  David Freese  <iam_w1hkj@w1hkj.com>
c9b9bb9: OS X Wizard
a8a6e09: cw decoder
7e552c4: CW wait

=Version 4.0.2=
2017-04-14  keith bellairs  <keith@bellairs.org>
7432793: Lotw Match

2017-04-13  David Freese  <iam_w1hkj@w1hkj.com>
ed5850e: flrigi bw synch
9723972: Clang 8.1.0
97024a9: Sound card
1549193: Revert "wefax"
c85b75e: IFKP image processing
ef39743: Macro Save
4396c43: CW end-of-transmit
2f1d709: Font Initialization
a1d4122: OS X socket connect
835d823: Winkeyer exit process

=Version 4.0.1=
f40e79d: Socket connect

=Version 4.0.0=
7efc9b2: OS X 10.12 build
ffd6f09: STATION_CALLSIGN
f0f3763: Free BSD mods
b163605: Logbook mods
167f064: ru-po-update
5354812: Default Tx Audio
fac5963: remove sprintf
a9db866: Documentation update
b522581: n3fjp logger search
c565b03: fopen -> fl_fopen
abd9554: 48 bar macro
5f5776c: CW decoder
9c0f906: DX cluster
016799a: Logbook support
b4e227b: WinKeyer
1fe26c1: fsq ifkp s/n computation
d576fd8: fltk version update
2a1a8c3: Macro Date Time Formats

2017-02-24  Keith Bellairs  <keith@bellairs.org>
627eb31: lotw addition

2017-02-23  David Freese  <iam_w1hkj@w1hkj.com>
0507110: THOR/IFKP Image transfers

2017-02-23  Giuseppe Ciaccio  <giuseppe.ciaccio@unige.it>
95b51b6: OSS bug fix

2017-02-21  David Freese  <iam_w1hkj@w1hkj.com>
f462dd7: ifkp s/n update
376f7f5: PSKMAIL PTT fault protection
bcec5aa: Logbook File Handling
cbdea29: n3fjp contest update
fccb4eb: fsq s/n update
1786a5e: README update
67bc122: Russian UTF-8 translation
9decf04: Tooltips

2017-01-30  Jae Stutzman  <k5jae@stutzman.net>
fef4e93: Hamlib/RigCAT/XMLRPC Interface

(pkgsrc changes)
- Drop patch, upstream fixed it (slightly different from ours)
    our patch        if ( ptr2          && (unsigned)(ptr2 - ptr) <= p)
    upstream        if ((ptr2 != NULL) && (unsigned)(ptr2 - ptr) <= p)
- +.include "ham/flxmlrpc/buildlink3.mk"

(mef)

Added ham/flxmlrpc version 0.1.4

(mef)

Import flxmlrpc-0.1.4 as ham/flxmlrpc.

This is flxmlrpc, an implementation of the XmlRpc protocol
written in C++, based upon XmlRpc++0.7 and modified to provide additional XmlRpc
Variable types.  It is used in fldigi, flrig, flnet, flmsg, flarq, flamp, fllog;
a suite of programs written for amateur radio emergency communications.

flxmlrpc is designed to make it easy to incorporate xmlrpc client and server
support into C++ applications. Or use both client and server objects in your
application for easy peer-to-peer support.

(mef)

Add missing BUILD_DEPENDS.

(wiz)

Updated textproc/py-lxml to 3.7.3

(adam)

Changes 3.7.3:
Bugs fixed
* GH-218 was ineffective in Python 3.
* GH-222: lxml.html.submit_form() failed in Python 3.

(adam)

Updated devel/py-prompt_toolkit to 1.0.14; time/py-dateutil to 2.6.0; devel/py-jupyter_client to 5.0.1; devel/py-ipykernel to 4.6.1

(adam)

Changes 4.6.1:
- Fix eventloop-integration bug preventing Qt windows/widgets from displaying with ipykernel 4.6.0 and IPython ≥ 5.2.
- Avoid deprecation warnings about naive datetimes when working with jupyter_client ≥ 5.0.

(adam)

Python 2.7 requires py-scandir

(adam)

PLIST fix for Python < 3.6

(adam)

Fix PLIST for Python 2.x

(adam)

Changes 5.0.1:
- Update internal protocol version number to 5.1,
  which should have been done in 5.0.0.

(adam)

Version 2.6.0:

* Added PEP-495-compatible methods to address ambiguous and imaginary dates in
time zones in a backwards-compatible way. Ambiguous dates and times can now
be safely represented by all dateutil time zones.

* Added new methods for working with ambiguous and imaginary dates to the tz
module. datetime_ambiguous() determines if a datetime is ambiguous for a given
zone and datetime_exists() determines if a datetime exists in a given zone.
This works for all fold-aware datetimes, not just those provided by dateutil.

* Fixed an issue where dst() in Portugal in 1996 was returning the wrong value
in tz.tzfile objects

* Fixed an issue where zoneinfo.ZoneInfoFile errors were not being properly
deep-copied.

* Refactored tzwin and tzrange as a subclass of a common class, tzrangebase, as
there was substantial overlapping functionality. As part of this change,
tzrange and tzstr now expose a transitions() function, which returns the
DST on and off transitions for a given year.

* Deprecated zoneinfo.gettz() due to confusion with tz.gettz(), in favor of
get() method of zoneinfo.ZoneInfoFile objects.

* For non-character, non-stream arguments, parser.parse now raises TypeError
instead of AttributeError.

* Fixed an issue where tzfile objects were not properly handling dst() and
tzname() when attached to datetime.time objects.

* /usr/share/lib/zoneinfo was added to TZPATHS for compatibility with Solaris
systems.

* tzoffset and tzrange objects now accept either a number of seconds or a
datetime.timedelta() object wherever previously only a number of seconds was
allowed.

* datetime.timedelta objects can now be added to relativedelta objects.

* Refactored relativedelta.weekday and rrule.weekday into a common base class
to reduce code duplication.

(adam)

Changes 1.0.14:
Fixes:
- Handle arguments in the $EDITOR and $VISUAL env variable.
- Added missing explicit loops for Futures in asyncio_posix eventloop.
- Fallback to default terminal size if reported as 0.
- Don't save undo state when receiving CPRResponse.
- Set VMIN terminal flag to 1 when entering raw mode.
  (Fixes a bug on Solaris.)
- Fix `previous_key_sequences`.

(adam)

Updated textproc/py-jsonschema to 2.6.0; textproc/py-jinja2 to 2.9.6; fonts/fontforge to 20161004. Added graphics/libspiro version 0.5.20150702

(adam)

This release introduces a new icon set, new functionality for custom icon selection graphics, support for GlyphOrderAndAliasDB files, and support for Unicode 9.0.

It also fixes a number of small bugs relating to certain bitmap typefaces, stroke expansion, handling of CID ranges, and the user interface.

There are two tags and package sets. 20161004 is the original release, and 20161005 adds support for Ubuntu 16.04 and 16.10.

(adam)

Spiro is the creation of Raph Levien. It simplifies the drawing of beautiful
curves.

Using bezier splines an artist can easily draw curves with the same slope on
either side of an on-curve point. Spiros, on the other hand, are based on
clothoid splines which make it easy to maintain constant curvature as well as
constant slope. Such curves will simply look nicer.

Raph Levien's spiro splines only use on-curve points and so are easier to use
and more intuitive to the artist.

This library will take an array of spiro control points and convert them into
a series of bezier splines which can then be used in the myriad of ways the
world has come to use beziers.

(adam)

Add GCC_VERSION_SUFFIX, which can be used i.e. on SuSE systems to select
between different compiler versions.

(joerg)

Simplify PATH handling. Use full pkgsrc path for cwrappers, but skip the
cwrapper directory itself.

(joerg)

Unconditionally use standard headers, nothing defines the guards.

(joerg)

Version 2.9.6
Fixed custom context behavior in fast resolve mode

(adam)

v2.6.0
Support for Python 2.6 has been dropped.
Improve a few error messages for uniqueItems and additionalProperties
Fix an issue with ErrorTree's handling of multiple errors

(adam)

Note GCC7PKGREVISION bump.

(maya)

gcc7: unbreak non-linux after GCC r243219.
GCC target/80600. Thanks joerg.
Fix wip package reference, thanks Kai-Uwe Eckhardt.

Bump PKGREVISION

(maya)

Updated lang/nodejs to 7.10.0

(fhajny)

Update lang/nodejs to 7.10.0.

- crypto: add randomFill and randomFillSync
- meta: Added new collaborators
  - add lucamaraschi to collaborators
  - add DavidCai1993 to collaborators
  - add jkrems to collaborators
  - add AnnaMag to collaborators
- process: fix crash when Promise rejection is a Symbol
- url: make WHATWG URL more spec compliant
- v8:
  - fix stack overflow in recursive method
  - fix build errors with g++ 7

(fhajny)