Update to latest release 0.7.11. No changelog. Assume "more/better/faster".

(rodent)

Updated textproc/p5-HTML-FormatText-WithLinks-AndTables to 0.07

(rodent)

0.07    Fri 16 Dec 2016
  Strips \240 characters created by HTML::Formatter when it encounters a  

(rodent)

Updated editors/ed to 1.14.1

(wiz)

Updated ed to 1.14.1.

Changes in version 1.14:

Version 1.14 is the largest bug hunt ever attempted in GNU ed. Other
goals of version 1.14 are to complete the documentation and to remove
any gratuitous incompatibilities with the POSIX standard. Thanks to Ori
Avtalion for initiating all this with a couple bug reports. ;-)

Byte counts, informative messages, command error messages, and the '?'
and '!' prompts are now written to stdout instead of to stderr. The
standard error (stderr) is now used only for diagnostic messages.

The current address is now correctly set to the addressed line after an
empty insert command.

Fixed inconsistent behavior of the substitute command. It incorrectly
reported 'Invalid pattern delimiter' when the two last delimiters were
omitted after a null regular expression. Now it consistently reports
'Missing pattern delimiter' if the two last delimiters are omitted after
any regular expression (null or not).

's/a/%' has been fixed. It incorrectly replaced 'a' with '%' instead of
using the replacement from the last substitution.

An infinite loop, happening when EOF was found in the middle of a
replacement string, has been fixed.

Ed no longer accepts newlines in the replacement of a 's' command if it
is part of the command list of a global command, because in this case
the meaning of the newline becomes ambiguous. For the same reason, the
last delimiter can't be omitted if the 's' command is not the last
command in the command list.

The substitute command now correctly sets the current address to the
address of the last line on which a substitution occurred, and leaves it
unchanged if no substitution is performed.

A bug in the calculation of address offsets has been fixed. '3 ---- 2'
was calculated as address -2 instead of the correct address 1.

Address ranges with the first address omitted are now accepted.

The current address is now correctly set to the addressed line (or to
the new last line if at EOF) after an empty replacement text in the
change command.

Repeated print suffixes are now rejected. It has been documented that ed
allows any combination of non-repeated print suffixes and combines their
effects.

The substitute command now accepts suffixes in any order.

The 'repeat substitution' command now rejects multiple count suffixes.

The 'p' suffix of the 'repeat substitution' command now toggles all the
print suffixes of the last substitution.

End of file on standard input now behaves as a 'q' command.

The modified status is no longer cleared after writing the buffer to the
standard input of a shell command. (Reported by J駻�me Frgacic).

The descriptions of the 'a', 'c', 'e', 'g', 'i', 'j', 'k', 'm', 'q',
'r', 's', 'u' and 'w' commands in the manual have been fixed.

Most tests in the testsuite have been improved. Bug reporting has been
simplified; only the failed logs and results are kept in the test
directory, which can then be (tarred, compressed, and) attached to the
bug report.

(wiz)

Don't depend on rpcgen, just use the pre-generated headers.  Fixes build
on SmartOS.

(jperkin)

Added dependency on camlp4

(jaapb)

Updated misc/raspberrypi-userland to
734d76b0675685e9ec9148694f2cc00f58e5ebc0

(skrll)

Update to 734d76b0675685e9ec9148694f2cc00f58e5ebc0.

Various bug fixes

(skrll)

Updated devel/gperf to 3.1

(wiz)

Updated gperf to 3.1.

Add test target.

New in 3.1:
* The generated C code is now in ANSI-C by default. If you want to support
  pre-ANSI-C compilers, you need to provide the option --language=C on the
  command line or %language=C in the source file.
* The 'len' parameter of the hash function and of the lookup function is now
  of type 'size_t' instead of 'unsigned int'. This makes it safe to call these
  functions with strings of length > 4 GB, on 64-bit machines.
* Added option --constants-prefix.
* Added declaration %define constants-prefix.

(wiz)

Updated www/py-django-tastypie to 0.13.3

(rodent)

v0.13.3
Date: 2016-02-17
Bugfixes

    Permit changing existing value on a ToOneField to None. (Closes #1449)

v0.13.2
Date: 2016-02-14
Bugfixes

    Fix in Resource.save_related: related_obj can be empty in patch requests (introduced in #1378). (Fixes #1436)

    Fixed bug that prevented fitlering on related resources. apply_filters hook now used in obj_get. (Fixes #1435, Fixes #1443)

    Use build_filters in obj_get. (Fixes #1444)

    Updated DjangoAuthorization to disallow read unless a user has change permission. (#1407, PR #1409)

    Authorization classes now handle usernames containing spaces. Closes #966.

    Cleaned up old, unneeded code. (closes PR #1433)
            Reuse Django test Client.patch(). (@SeanHayes, closes #1442)
            Just a typo fix in the testing docs (by @bezidejni, closes #810)
            Removed references to patterns() (by @SeanHayes, closes #1437)
            Removed deprecated methods Resource.apply_authorization_limits and Authorization.apply_limits from code and documentation. (by @SeanHayes, closes #1383, #1045, #1284, #837)
            Updates docs/cookbook.rst to make sure it's clear which url to import. (by @yuvadm, closes #716)
            Updated docs/tutorial.rst. Without "null=True, blank=True" parameters in Slugfield, expecting "automatic slug generation" in save method is pointless. (by @orges, closes #753)
            Cleaned up Riak docs. (by @SeanHayes, closes #275)
            Include import statement for trailing_slash. (by @ljosa, closes #770)
            Fix docs: Meta.filtering is actually a dict. (by @georgedorn, closes #807)
            Fix load data command. (by @blite, closes #357, #358)

    Related schemas no longer raise error when not URL accessible. (Fixes PR #1439)

    Avoid modifying Field instances during request/response cycle. (closes #1415)

    Removing the Manager dependency in ToManyField.dehydrate(). (Closes #537)

v0.13.1
Date: 2016-01-25
Bugfixes

    Prevent muting non-tastypie's exceptions (#1297, PR #1404)
    Gracefully handle UnsupportFormat exception (#1154, PR #1417)
    Add related schema urls (#782, PR #1309)
    Repr value must be str in Py2 (#1421, PR #1422)
    Fixed assertHttpAccepted (PR #1416)

v0.13.0
Date: 2016-01-12

Dropped Django 1.5-1.6 support, added Django 1.9.
Bugfixes

    Various performance improvements (#1330, #1335, #1337, #1363)
    More descriptive error messages (#1201)
    Throttled requests now include Retry-After header. (#1204)
    In DecimalField.hydrate, catch decimal.InvalidOperation and raise ApiFieldError (#862)
    Add 'primary_key' Field To Schema (#1141)
    ContentTypes: Remove 'return' in __init__; remove redundant parentheses (#1090)
    Allow callable strings for ToOneField.attribute (#1193)
    Ensure Tastypie doesn't return extra data it received (#1169)
    In DecimalField.hydrate, catch decimal.InvalidOperation and raise ApiFieldError (#862)
    Fixed tastypie's losing received microseconds. (#1126)
    Data leakage fix (#1203)
    Ignore extra related data (#1336)
    Suppress Content-Type header on HTTP 204 (see #111) (#1054)
    Allow creation of related resources that have an 'items' related_name (supercedes #1000) (#1340)
    Serializers: remove unimplemented to_html/from_html (#1343)
    If GEOS is not installed then exclude geos related calls. (#1348)
    Fixed Resource.deserialize() to honor format parameter (#1354 #1356, #1358)
    Raise ValueError when trying to register a Resource class instead of a Resource instance. (#1361)
    Fix hydrating/saving of related resources. (#1363)
    Use Tastypie DateField for DateField on the model. (SHA: b248e7f)
    ApiFieldError on empty non-null field (#1208)
    Full schema (all schemas in a single request) (#1207)
    Added verbose_name to API schema. (#1370)
    Fixes Reverse One to One Relationships (Replaces #568) (#1378)
    Fixed "GIS importerror vs improperlyconfigured" (#1384)
    Fixed bug which occurs when detail_uri_name field has a default value (Issue #1323) (#1387)
    Fixed disabling cache using timeout=0, fixes #1213, #1212 (#1399)
    Removed Django 1.5-1.6 support, added 1.9 support. (#1400)
    stop using django.conf.urls.patterns (#1402)
    Fix for saving related items when resource_uri is provided but other unique data is not. (#1394) (#1410)

v0.12.2
Date: 2015-07-16

Dropped Python 2.6 support, added Django 1.8.
Bugfixes

    Dropped support for Python 2.6
    Added support for Django 1.8
    Fix stale data caused by prefetch_related cache (SHA: b78661d)

(rodent)

Updated textproc/py-phonenumbers to 8.0.0

(rodent)

What's new in 8.0.0

Merge to upstream commit 1eb06f31e1dd; relevant code changes:

    Removing the ability for .._for_region methods in shortnumberinfo.py to work on strings, as well of phone number objects. These have been marked deprecated for months. Any users of these methods should call phonenumbers.parse first to create a PhoneNumber object, and pass this in.
    Support semicolon as extension character while parsing phone numbers. This is not applicable when you are trying to find the phone numbers.

What's new in 7.7.5

Merge to upstream commit e905483f87cf; relevant code changes:

    Removing all references to possible_number_pattern other than in the metadata itself.

What's new in 7.7.4

Merge to upstream commit fedbc7020703; code changes:

    GitHub project changes:
        Changed tag to vX.Y.Z from release-X.Y.Z; this may affect ports and derived projects.
    Metadata structure changes in XML file:
        Mobile and Fixed-Line blocks are no longer assumed to inherit missing data from the GeneralDesc, but are treated like every other phone number type. This means that for the non-geographical country codes, like +800, the example number has been moved from generalDesc to the relevant number types, and the code in getExampleNumberForNonGeoEntity has been changed to look at these sub-types for an example number. This also means that the "NA" and "-1" blocks present in the metadata to indicate that no mobile or fixed-line numbers appear for the entity have been removed. There should no longer be an exampleNumber at the generalDesc level, but it should be present at every PhoneNumberDesc with data.
    Code changes:
        Using new possibleLengthInfo to decide whether a short number is the right length or not. This could result in more specific results; whereas before, a number from length 3 to length 6 may have been deemed possible, now we may exclude a number of length 5.
        Add hash (#) as a diallable character. Numbers with # in them will no longer have formatting applied in format_n_original_format, and normalize_diallable_chars_only now retains the # symbol.
        example_number_for_non_geo_entity has been changed to look at the specific number types, not just the generalDesc, for the example numbers; this is a necessary change after the metadata structure change detailed above.

What's new in 7.7.3

Merge to upstream commit ad0ce0c94501; code changes:

    Fixed phonemetadata.py not to merge from a NumberFormat's unset bool national_prefix_optional_when_formatting.

What's new in 7.7.2

Merge to upstream commit 2d0d216f6032; code changes:

    Stop setting empty preferred_domestic_carrier_code, and if we are passed such a number then treat the empty field as if unset.

What's new in 7.7.1

Merge to upstream commit 8c37310deb49; code changes:

    Switching the internal implementation of is_possible_number and related functions to use the new possibleLengths metadata. This affects a lot of countries, making is_possible_number more restrictive as more precise data is available. It also affects parsing ambiguous and invalid numbers, as we decide whether to strip a possible national prefix (1) or country code based on the length of the number and whether it is possible before or after this.
    Formatting, naming and comment tweaks to follow style guide
    Removal of unneeded _can_be_geocoded method in the timezone.py file, using phonenumberutil.py instead

What's new in 7.7.0

Merge to upstream commit 1ec4d341c3cd; no code changes that affect the Python version so this is just a version bump to stay in sync with upstream.
What's new in 7.6.1

Merge to upstream commit 7cc500f588db; code changes:

    phonemetadata.py has two more fields to represent possible lengths of phone numbers. Changed buildmetadatafromxml.py to alter the way that metadata about possible-lengths information is consumed when constructing metadata to populate these. Discussion list email

What's new in 7.6.0

Merge to upstream commit ddf60b1c175e; code changes:

    Made is_number_geographical() public and added is_number_type_geographical(), and changed the geocoder to use this when checking whether to give a detailed answer or country-level only.

What's new in 7.5.0

Merge to upstream commit 3f83454ed62b; no code changes that affect the Python version so this is just a version bump to stay in sync with upstream.

(rodent)

Updated textproc/py-ftfy to 4.2.0

(rodent)

DEPENDS on devel/py-wcwidth and textproc/py-html5lib.

(rodent)

Version 4.3.0 (December 29, 2016)

ftfy has gotten by for four years without dependencies on other Python libraries, but now we can spare ourselves some code and some maintenance burden by delegating certain tasks to other libraries that already solve them well. This version now depends on the html5lib and wcwidth libraries.

Feature changes:

    The remove_control_chars fixer will now remove some non-ASCII control characters as well, such as deprecated Arabic control characters and byte-order marks. Bidirectional controls are still left as is.

    This should have no impact on well-formed text, while cleaning up many characters that the Unicode Consortium deems "not suitable for markup" (see Unicode Technical Report #20).

    The unescape_html fixer uses a more thorough list of HTML entities, which it imports from html5lib.

    ftfy.formatting now uses wcwidth to compute the width that a string will occupy in a text console.

Heuristic changes:

    Updated the data file of Unicode character categories to Unicode 9, as used in Python 3.6.0. (No matter what version of Python you're on, ftfy uses the same data.)

Pending deprecations:

    The remove_bom option will become deprecated in 5.0, because it has been superseded by remove_control_chars.

    ftfy 5.0 will remove the previously deprecated name fix_text_encoding. It was renamed to fix_encoding in 4.0.

    ftfy 5.0 will require Python 3.2 or later, as planned. Python 2 users, please specify ftfy < 5 in your dependencies if you haven't already.

Version 4.2.0 (September 28, 2016)

Heuristic changes:

    Math symbols next to currency symbols are no longer considered 'weird' by the heuristic. This fixes a false positive where text that involved the multiplication sign and British pounds or euros (as in '5×£35') could turn into Hebrew letters.

    A heuristic that used to be a bonus for certain punctuation now also gives a bonus to successfully decoding other common codepoints, such as the non-breaking space, the degree sign, and the byte order mark.

    In version 4.0, we tried to "future-proof" the categorization of emoji (as a kind of symbol) to include codepoints that would likely be assigned to emoji later. The future happened, and there are even more emoji than we expected. We have expanded the range to include those emoji, too.

    ftfy is still mostly based on information from Unicode 8 (as Python 3.5 is), but this expanded range should include the emoji from Unicode 9 and 10.

    Emoji are increasingly being modified by variation selectors and skin-tone modifiers. Those codepoints are now grouped with 'symbols' in ftfy, so they fit right in with emoji, instead of being considered 'marks' as their Unicode category would suggest.

    This enables fixing mojibake that involves iOS's new diverse emoji.

    An old heuristic that wasn't necessary anymore considered Latin text with high-numbered codepoints to be 'weird', but this is normal in languages such as Vietnamese and Azerbaijani. This does not seem to have caused any false positives, but it caused ftfy to be too reluctant to fix some cases of broken text in those languages.

    The heuristic has been changed, and all languages that use Latin letters should be on even footing now.

Version 4.1.1 (April 13, 2016)

    Bug fix: in the command-line interface, the -e option had no effect on Python 3 when using standard input. Now, it correctly lets you specify a different encoding for standard input.

Version 4.1.0 (February 25, 2016)

Heuristic changes:

    ftfy can now deal with "lossy" mojibake. If your text has been run through a strict Windows-1252 decoder, such as the one in Python, it may contain the replacement character � (U+FFFD) where there were bytes that are unassigned in Windows-1252.

    Although ftfy won't recover the lost information, it can now detect this situation, replace the entire lossy character with �, and decode the rest of the characters. Previous versions would be unable to fix any string that contained U+FFFD.

    As an example, text in curly quotes that gets corrupted “ like this â€� now gets fixed to be “ like this �.

    Updated the data file of Unicode character categories to Unicode 8.0, as used in Python 3.5.0. (No matter what version of Python you're on, ftfy uses the same data.)

    Heuristics now count characters such as ~ and ^ as punctuation instead of wacky math symbols, improving the detection of mojibake in some edge cases.

New features:

    A new module, ftfy.formatting, can be used to justify Unicode text in a monospaced terminal. It takes into account that each character can take up anywhere from 0 to 2 character cells.

    Internally, the utf-8-variants codec was simplified and optimized.

Version 4.0.0 (April 10, 2015)

Breaking changes:

    The default normalization form is now NFC, not NFKC. NFKC replaces a large number of characters with 'equivalent' characters, and some of these replacements are useful, but some are not desirable to do by default.

    The fix_text function has some new options that perform more targeted operations that are part of NFKC normalization, such as fix_character_width, without requiring hitting all your text with the huge mallet that is NFKC.
        If you were already using NFC normalization, or in general if you want to preserve the spacing of CJK text, you should be sure to set fix_character_width=False.

    The remove_unsafe_private_use parameter has been removed entirely, after two versions of deprecation. The function name fix_bad_encoding is also gone.

New features:

    Fixers for strange new forms of mojibake, including particularly clear cases of mixed UTF-8 and Windows-1252.

    New heuristics, so that ftfy can fix more stuff, while maintaining approximately zero false positives.

    The command-line tool trusts you to know what encoding your input is in, and assumes UTF-8 by default. You can still tell it to guess with the -g option.

    The command-line tool can be configured with options, and can be used as a pipe.

    Recognizes characters that are new in Unicode 7.0, as well as emoji from Unicode 8.0+ that may already be in use on iOS.

Deprecations:

    fix_text_encoding is being renamed again, for conciseness and consistency. It's now simply called fix_encoding. The name fix_text_encoding is available but emits a warning.

Pending deprecations:

    Python 2.6 support is largely coincidental.

    Python 2.7 support is on notice. If you use Python 2, be sure to pin a version of ftfy less than 5.0 in your requirements.

(rodent)

DEPENDS on devel/py-cython.

(rodent)

Updated www/ikiwiki to 3.20170111

(schmonz)

Update to 3.20170111. From the changelog:

* passwordauth: prevent authentication bypass via multiple name
  parameters (CVE-2017-0356, OVE-20170111-0001)
* passwordauth: avoid userinfo forgery via repeated email parameter
  (also in the scope of CVE-2017-0356)
* CGI, attachment, passwordauth: harden against repeated parameters
  (not believed to have been a vulnerability)
* remove: make it clearer that repeated page parameter is OK here
* t/passwordauth.t: new automated test for passwordauth

(schmonz)

Updated textproc/py-acora to 2.0

(rodent)

2.0 [2016-03-17]

    rewrite of the construction algorithm to speed it up and save memory

1.9 [2015-10-10]

    recompiled with Cython 0.23.4 for better compatibility with recent Python versions.

(rodent)

Updated x11/modular-xorg-xephyr to 1.19.1

(wiz)

Updated x11/modular-xorg-server to 1.19.1

(wiz)

Updated modular-xorg-server to 1.19.1.

First stable 1.19 release, including a few regression fixes. Thanks to
all who contributed!

Adam Jackson (3):
      Revert "damage: Make damageRegionProcessPending take a damage not a drawable"
      composite: Fix repaint of borders (v2)
      xserver 1.19.1

Ben Crocker (1):
      Fix a segfault that occurs if xorg.conf.d is absent:

Hans De Goede (1):
      glamor: Trust eglGetPlatformDisplayEXT if it exists

Hans de Goede (2):
      randr: rrCheckPixmapBounding: Do not substract crtc non 0 x,y from screen size
      randr: rrCheckPixmapBounding: do not shrink the screen_pixmap

Kai-Heng Feng (1):
      edid: Add quirk for ADA 1024x600 7" display.

Keith Packard (1):
      AttendClient of grab-pervious client must queue to saved_ready_clients [v2]

Michal Srb (1):
      xinerama: Swap the response in RRXineramaWriteMonitor

Michel Dänzer (1):
      present: Only call present_flip_notify if vblank->queued == FALSE

Mihail Konev (1):
      os,dix: Depend custom libs on libs, not objects

Olivier Fourdan (2):
      glamor: restore vfunc handlers on init failure
      xwayland: Fix use after free of cursors

Pekka Paalanen (1):
      test: fix distributing scripts

Peter Hutterer (2):
      Xi: when creating a new master device, update barries for all clients
      os: return 0 from check_timers if we touched any of them

Qiang Yu (2):
      xfree86: fix wrong usage of xf86optionListMerge
      randr: fix xserver crash when xrandr setprovideroutputsource

Rhys Kidd (1):
      test: Fix stray Makefile reference to removed os test

Rui Matos (1):
      xwayland: Don't send KeyRelease events on wl_keyboard::leave

(wiz)

Note update of BIND packages:

net/bind910 9.10.4pl5
net/bind99 9.9.9pl5

(taca)

Update bind99 to 9.9.9pl5 (BIND 9.9.9-P5), including security fixes.

--- 9.9.9-P5 released ---

4530. [bug] Change 4489 broke the handling of CNAME -> DNAME
in responses resulting in SERVFAIL being returned.
[RT #43779]

4528. [bug] Only set the flag bits for the i/o we are waiting
for on EPOLLERR or EPOLLHUP. [RT #43617]

4519. [port] win32: handle ERROR_MORE_DATA. [RT #43534]

4517. [security] Named could mishandle authority sections that were
missing RRSIGs triggering an assertion failure.
(CVE-2016-9444) [RT # 43632]

4510. [security] Named mishandled some responses where covering RRSIG
records are returned without the requested data
resulting in a assertion failure. (CVE-2016-9147)
[RT #43548]

4508. [security] Named incorrectly tried to cache TKEY records which
could trigger a assertion failure when there was
a class mismatch. (CVE-2016-9131) [RT #43522]

(taca)

Update bind910 to 9.10.4pl5 (BIND 9.10.4-P5), including security fixes.

--- 9.10.4-P5 released ---

4530. [bug] Change 4489 broke the handling of CNAME -> DNAME
in responses resulting in SERVFAIL being returned.
[RT #43779]

4528. [bug] Only set the flag bits for the i/o we are waiting
for on EPOLLERR or EPOLLHUP. [RT #43617]

4519. [port] win32: handle ERROR_MORE_DATA. [RT #43534]

4517. [security] Named could mishandle authority sections that were
missing RRSIGs triggering an assertion failure.
(CVE-2016-9444) [RT # 43632]

4510. [security] Named mishandled some responses where covering RRSIG
records are returned without the requested data
resulting in a assertion failure. (CVE-2016-9147)
[RT #43548]

4508. [security] Named incorrectly tried to cache TKEY records which
could trigger a assertion failure when there was
a class mismatch. (CVE-2016-9131) [RT #43522]

(taca)

Updated devel/py-rply to 0.7.4

(rodent)

Update to latest release, 0.7.4. Depends on devel/py-appdirs now and
installs requires.txt. Otherwise, no changelog found.

(rodent)

Updated devel/py-d2to1 to 0.2.12

(rodent)

Update to 0.2.12. Changes:

- Fixed a corner case where depending on the order of events when installing
  multiple packages (i.e. when installing packages with dependencies, some
  of which might also use d2to1) we would end up calling the incorrect
  Distribution class (the patched version from setuptools, where d2to1
  needs to get to the unpatched version from distutils for some cases).

- Upgraded bundled copy of the ``six`` module to the current version
  (1.9.0).  This fixes incompatibility between d2to1 and other packages
  that import different versions of ``six`` during their setup (the older
  version of ``six`` had a habit of fighting with other ``six`` instances
  over ``sys.modules``, which is fixed in newer versions).

- Upgraded to latest ``ez_setup.py`` so that the most up to date version
  of setuptools will be correctly bootstrapped in the rare cases that it
  is needed.

- Included some miscellaneous hacks to keep d2to1 working, nominally, with
  Python 2.5 despite the broad move away from Python 2.5 support in the
  Python community.  The d2to1 v0.2.x releases will be the last to continue
  Python 2.5 support, given that testing it has become more difficult (and
  the overhead is probably no longer worth it).

(rodent)

Updated net/SDL2_net to 2.0.1

(rodent)

2.0.1:
* Fixed returning all IP addresses from SDLNet_GetLocalAddresses() on Windows

(rodent)

Updated games/solarus to 1.5.1

(rodent)

Update to 1.5.1, the latest stable. Remove patch that was applied upstream.
Now depends on qt5-qt{tools,base}. From changes.txt:

Solarus 1.5.1 (2016-11-29)
__________________________

Engine changes
--------------

* Add Spanish translation of the launcher GUI (thanks Diarandor!).
* Fix registering quest to the launcher at quest install time (#948).
* Fix crash when a carried bomb explodes (#953).
* Fix crash when a scrolling teletransporter is incorrectly placed (#977).
* Fix crash when an entity has a wrong savegame variable type (#1008).
* Fix memory leak when creating lots of surfaces (#962).
* Fix cleanup of the quest files at exit.
* Fix error in sol.main.load_settings() when the file does not exist.
* Fix ground ignored after hero:unfreeze() or back to solid ground (#827).
* Fix entity:get_name() returning nil after the entity is removed (#954).
* Improve error messages of surface creations and conversions.
* Chests: set an initial value "entities/chest" to the sprite field.

Solarus launcher GUI changes
----------------------------

* Start the selected quest by pressing Return or double-clicking (#949).

Sample quest changes
--------------------

* The sample quest is now in a separate repository (#996).

__________________________

Solarus 1.5.0 (2016-07-27)
__________________________

Engine changes
--------------

* Add a launcher GUI to ease chosing a quest and setting options (#693).
* Rename the solarus_run executable to solarus-run.
* Add version number and symbolic links when building the library.
* Add a -lua-console option to run Lua code from the standard input.
* Remove the -win-console option, the preferred way is now to use a GUI.
* Add a -turbo option to run at full speed.
* Add a -lag option to simulate slower systems for debugging.
* Print when the main loop starts and stops.
* Print the Lua version at startup (#692).
* Outputs are now prefixed by [Solarus] and the current simulated time.
* Musics: Add support of custom OGG looping (#643).
* Maps: allow more than 3 layers (#445).
* Improve the performance of loading big maps (#854).
* Improve the performance of custom entity collisions.
* Improve the performance of collisions by using a quadtree.
* Entities far from the camera are no longer suspended.
* The hero no longer automatically jumps when arriving on water (#530).
* Destinations can now set to update or not the starting location (#819).
* Teletransporters on the side of the map now work on all layers (#850).
* Streams can now have a speed of zero (#496).
* Fix crash when main.lua has a syntax error.
* Fix crash with missing directions in sprites controlled by the engine (#864).
* Fix sprite:on_animation_finished() and others not working sometimes (#799).
* Fix error in sprite:set_animation() when the direction is missing (#937).
* Fix straight movement precision.
* Fix freeze when loading a map with tiles outside the limits (#875).
* Fix crash when trying to use a non-saved item (#889).
* Fix sword tapping sound still played when the game is suspended (#797).
* Fix hero:set_invincible() not working without duration (#805).
* Fix lifted item walking animation only accepting 3 frames (#645).
* Fix enemy:set_attack_consequence_sprite() with thrown items (#834).
* Fix custom_entity:set_can_traverse() for doors (#716).
* Fix custom_entity:set_can_traverse_ground() for some grounds (#794).
* Fix custom entity collisions missed for entities that do not move (#671, #883).
* Fix custom_entity:get_modified_ground() returning nothing.
* Fix custom_entity:on_ground_below_changed() not called (#738).
* Fix missing notifications in custom_entity:set_origin() (#880).
* Fix creating an entity with the same name as another one just removed (#795).
* Fix parallax scrolling for dynamic tiles (#816).
* Fix crash when a diagonal tile is not square (#837).
* Fix crash when the teletransporter after stairs is missing.
* Fix non-blocking stream turns after going south (#648).
* Fix text_surface:set_rendering_mode() not working (#833).
* Fix possible freeze when changing the position of a path finding entity.
* Fix circle_movement:set_initial_angle() not working (#721).
* Fix straight movement setting speed to zero when reaching obstacles (#633).
* Fix support of joypads with multiple axes.
* Fix sol.input.get_mouse_coordinates() ignoring the zoom factor (#734).

Lua API changes
---------------

Changes that introduce incompatibilities:

* Fix missing collision detections and entity notifications.
* chest:on_empty() is replaced by chest:on_opened(treasure) (#483).
* Enemy ranks no longer exist, set_hurt_style() needs to be called (#449).
* Items with amount now have a default max amount of 1000 (#688).
* New ability "jump_over_water" in game:get/set_ability(), off by default (#530).
* Fix hero state name "freezed", renamed it to "frozen" (#813).
* Fix map:get_entities() not returning the hero (#670).
* Fix map:create_custom_entity() not erroring when width/height are missing.
* map:get_camera_position() is now deprecated, use camera:get_bounding_box().
* map:move_camera() is now deprecated, use a camera movement instead.
* map:draw_sprite() is now deprecated, use map:draw_visual() instead (#661).
* Fix entity:set_enabled(true) delayed while it blocks the hero (#817).
* Fix brandished treasure sprite and shop treasure sprite not animated (#790).
* circle_movement:get/set_initial_angle() now use degrees (#721).
* Add ability to hide mouse cursor (#891).

Changes that do not introduce incompatibilities:

* Add a function sol.main.get_solarus_version() (#767).
* Add a function sol.main.get_quest_format().
* Add a function sol.main.get_type() (#744).
* Add a method game:set_suspended() (#845).
* Add methods map:get_min_layer() and map:get_max_layer() (#445).
* Add a method map:get_entities_by_type() (#796).
* Add a method map:get_entities_in_rectangle() (#142).
* Add a method map:draw_visual() to draw any drawable object (#661).
* Add a method map:get_camera() (the camera is now a map entity).
* Add methods map:set_world() and map:set_floor() (#656).
* map:get_entities() can now be called without parameter to get all entities.
* map:get_entities*() functions now give entities sorted in Z order (#779).
* Add an event entity:on_movement_started().
* Add a method entity:get_max_bounding_box() considering sprite boxes (#754).
* entity:get_center_position() now also returns the layer.
* Add a method entity:get_facing_position().
* Add a method entity:get_facing_entity() (#877).
* Add a method entity:get_ground_position() (#830).
* Add a method entity:get_ground_below() (#830).
* entity:set_optimization_distance() is now only a hint for the engine.
* entity:test_obstacles() now also works without parameters.
* entity:overlaps() now has an optional collision mode parameter (#748).
* Add entity:get_sprite() to all entities, with an optional name value (#669).
* Add a method entity:get_sprites() (#851).
* Add methods entity:bring_sprite_to_front/back() (#809).
* enemy/custom_entity:create_sprite() now take an optional name value.
* hero:save_solid_ground() can now take a function parameter (#667).
* Add a method hero:start_attack() (#821).
* Add methods npc:is/set_traversable() (#712).
* Add methods chest:get/set_treasure() (#664).
* Add an event chest:on_opened() with treasure info parameters (#483).
* Add methods dynamic_tile:get_pattern_id() and get_modified_ground() (#755).
* Add methods destination:get/set_starting_location_mode() (#819).
* Add a method switch:is_walkable() (#729).
* Add a method switch:is_locked().
* Add a method sprite:get_num_frames() (#818).
* Add methods sprite:get_size() and sprite:get_origin() (#823).
* sprite:set_animation() now takes an optional callback parameter (#861).
* Add a method surface:get_opacity() (#722).
* Add methods surface/text_surface/sprite:get/set_blending_mode (#930).

Data files format changes
-------------------------

* New directory logos to put the logo and icons of your quest, used in the GUI.
* Quest properties: New properties describing the quest, used in the GUI (#838).
* Quest properties: the title_bar property no longer exists, use title instead.
* Maps: New properties min_layer and max_layer (#445).
* Maps: Enemies no longer have a rank property (#449).
* Maps: New property starting_location_mode on destinations (#819).
* Maps: width and height of custom entities are now mandatory as documented.
* Dialogs: Allow empty texts.

Sample quest changes
--------------------

* Lots of new sprites and sounds from Diarandor.

__________________________

Solarus 1.4.5 (2015-11-22)
__________________________

Bug fixes for the 1.4 release.

* Fix file name not shown when there is an error in dialogs file (#718).
* Fix saving special characters in data files (#719).
* Fix sol.main.load_file() returning a string instead of nil on error (#730).
* Fix performance issue when sprites have huge frame delays (#723).
* Fix collisions triggered for removed entities (#710).
* Fix hero disappearing if lifting animation has less than 5 frames (#682).
* Fix collisions with diagonal dynamic tiles larger than 8x8 (#486).
* Fix path finding movement not working with NPCs (#708).
* Fix stuck on non-traversable dynamic tiles covered by traversables (#769).
* Fix collision detection of custom entities that do not move.
* Fix pickables with special movement falling in holes too early.
* Fix blocking streams not working when the hero's speed is greater (#488).

__________________________

Solarus 1.4.4 (2015-08-19)
__________________________

Bug fixes for the 1.4 release.

* Fix pickables falling in holes even when hooked (#740).

__________________________

Solarus 1.4.3 (2015-08-12)
__________________________

Bug fixes for the 1.4 release.

* Fix a compilation error with Mac OS X.
* Fix crash at exit when a surface has a movement with callback (#699).
* Fix crash when removing a custom entity (#690).
* Fix crash when a sprite file is missing or has no animation (#700).
* Fix crash when trying to remove a sprite already removed (#705).
* Fix crash when a custom entity collision or traversable test errors.
* Fix crash when changing hero sprites sometimes.
* Fix crash when sound buffers are full.
* Fix crash in map:get_ground() with out of bounds coordinates.
* Fix Lua error message saying "number expected" instead of "string expected".
* Fix game:set_command_keyboard/joypad_binding refusing parameters.
* Fix map scrolling not working if quest size is not a multiple of 5 (#701).
* Fix camera:move() ignoring separators.
* Fix entities already destroyed when map:on_finished() is called (#691).
* Fix entity:bring_to_front()/back() ignoring the order of obstacles.
* Fix hero stuck on blocks.
* Fix hero going backwards on ice sometimes.
* Fix custom_entity:set_can_traverse_ground() giving opposite result (#668).
* Fix enemy:immobilize() having no effect when already immobilized.
* Fix dying animation of flying and swimming enemies.
* Fix the position of the shadow of pickables when they move.
* Fix pickables not reacting to their ground (#655).

(rodent)

Fix build under Mac OS X where "pax" doesn't seem to automatically
create the target directory. We therefore do that manually.

(tron)

Updated x11/gtk3 to 3.22.6

(prlw1)

Update gtk3 to 3.22.6

Overview of Changes in GTK+ 3.22.6
==================================

* Bugs fixed:
774534 776132 776187 776012 774784 776187 776306 775808 776524 776560
774534 input shape and opaque region not applied without begin_paint()/end_paint()
774784 Failed to get desktop session proxy is not an error!
775808 win32 maximized window is larger than the extended screen in dual monitor
776012 GtkFlowBox, GtkListBox: Don't emit signals etc. during destruction
776132 Mention the difference between gdk_window_create_similar_image_surface and...
776187 flowbox: Add gtk_flow_box_get_child_at_pos to gtk3
776306 flowbox: Sometimes emits child-activated during rubberband selection
776524 GtkAboutDialog: Fix formatting of example email address in html documentation
776560 icon-browser: window opens at very narrow size, only showing 1 column of icons
        Fix GL checks to work better on OpenGL ES 2.0
        Avoid a possible crash in ::activate-url handlers
        scrolledwindow: Fix func summary being cut off in bindings using doxygen

* Translation updates:
German
Russian

Overview of Changes in GTK+ 3.22.5
==================================

* gtk3-demo now has an example for using PangoTabArray to create a multi-column layout

* Bug fixes:
771242 opening menu for certain types of GtkComboBox causes Gdk-CRITICAL assertion...
774114 Window shadows are repainted even if only the contents of the window change
774265 No tilt for wintab devices
774379 gdk: mingw64 builds segfault during initialization of Huion H610PRO wintab
774686 GtkMenu does not unref all GtkCheckMenuItem it creates
774695 GtkProgressbar needs full and empty classes
774699 list iteration regression causes odd-indexed devices to be ignored during l...
774743 GtkNotebook does not unref all GtkBuiltinIcon it creates
774760 inspector: ensure controller is a GtkGesture
774790 GtkTextHandle does not unref all GtkAdjustment it references
774893 Application font sizes scaling gets clamped to 1.00 when starting GtkInspector
774915 Destroying the parent of a subsurface causes _gdk_window_destroy_hierarchy:...
774917 [wayland] child subsurfaces need to be placed relative to their parent
774939 GtkLabelAccessible: Initialize link before setting parent
775212 GtkScaleButton does not unref all GtkAdjustment it references
775316 gtk_drag_source_set_icon_pixbuf references the pixbuf received once too much
775319 gdk_window_get_toplevel() fails to return the toplevel of a child subsurface
775525 gtk_flow_box_get_child_at_index shouldn't crash with an invalid index

* Translation updates:
Hungarian
Italian
Kazakh
Russian
Swedish

(prlw1)

Updated textproc/py-html5lib to 0.999999999.

(kleink)

Update py-html5lib to 0.999999999.

This is the actual update to 0.999999999; the previous one was to
0.9999999 only.  Changes for the missed two versions can be looked up
there.)

(kleink)

Add libunistring to bl3.mk, it's linked into libgnutls{,xx}.so.

PR 51830

(wiz)

Remove PKGREVISION.

(rodent)

Remove -Werror from compilation flags.

PR 51821
PR 51829

(wiz)

Updated devel/gyp to 0.1pre20161117.940a15ee3f1c89f193cb4c19373b3f6e9ad15b95

(wiz)

Updated py-gyp to 0.1pre20161117.940a15ee3f1c89f193cb4c19373b3f6e9ad15b95.

Two years of development.

git log is here:
https://chromium.googlesource.com/external/gyp/+/master

No summary found.

(wiz)

Add test target.

Allow all python versions.

(wiz)

- phpmyadmin-4.6.5.2  [pkg/51741]
+ ruby-actionmailer-4.2.7.1, ruby-actionpack-4.2.7.1,
  ruby-activemodel-4.2.7.1, ruby-chef-12.17.44, ruby-chef-zero-5.1.1,
  ruby-jquery-rails-4.2.1, ruby-railties-4.2.7.1,
  ruby-selenium-webdriver-3.0.5, sudo-1.8.19p1.

Also remove duplicate samba-4.5.1 line.

(taca)

Fix build with textproc/libunistring budildlink

(ryoon)

DragonFly build fix, from Dragonfly ports via David Shao.

(wiz)

Restore .includes to fix dependent package builds

(ryoon)

Updated www/ikiwiki to 3.20170110

(schmonz)

Allow tin to build using termcap instead of curses.
Workaround for PR plg/51819.

(roy)

Update to 3.20170110. From the changelog:

[ Amitai Schleier ]
* wrappers: Correctly escape quotes in git_wrapper_background_command

[ Simon McVittie ]
* git: use an explicit function parameter for the directory to work
  in. Previously, we used global state that was not restored correctly
  on catching exceptions, causing an unintended log message
  "cannot chdir to .../ikiwiki-temp-working: No such file or directory"
  with versions >= 3.20161229 when an attempt to revert a change fails
  or is disallowed
* git: don't run "git rev-list ... -- -- ..." which would select the
  wrong commits if a file named literally "--" is present in the
  repository
* check_canchange: log "bad file name whatever", not literal string
  "bad file name %s"
* t/git-cgi.t: fix a race condition that made the test fail
  intermittently
* t/git-cgi.t: be more careful to provide a syntactically valid
  author/committer name and email, hopefully fixing this test on
  ci.debian.net
* templates, comments, passwordauth: use rel=nofollow microformat
  for dynamic URLs
* templates: use rel=nofollow microformat for comment authors
* news: use Debian security tracker instead of MITRE for security
  references. Thanks, anarcat
* Set package format to 3.0 (native)
* d/copyright: re-order to put more specific stanzas later, to get the
  intended interpretation
* d/source/lintian-overrides: override obsolete-url-in-packaging for
  OpenID Selector, which does not seem to have any more current URL
  (and in any case our version is a fork)
* docwiki.setup: exclude TourBusStop from offline documentation.
  It does not make much sense there.
* d/ikiwiki.lintian-overrides: override script-not-executable warnings
* d/ikiwiki.lintian-overrides: silence false positive spelling warning
  for Moin Moin
* d/ikiwiki.doc-base: register the documentation with doc-base
* d/control: set libmagickcore-6.q16-3-extra as preferred
  build-dependency, with virtual package libmagickcore-extra as an
  alternative, to help autopkgtest to do the right thing

(schmonz)

Add missing "@comment " to PLIST.Darwin

(minskim)

Note update of devel/libgit2 package to 0.25.1.

(taca)

Update libgit2 to 0.25.1, it includes security problem.

For full changes, please refer CHANGESLOG.md file.

* libgit2 v0.24.6 and libgit2 v0.25.1, January 9th, 2017

Includes two fixes, one performs extra sanitization for some edge cases in
the Git Smart Protocol which can lead to attempting to parse outside of the
buffer.

The second fix affects the certificate check callback. It provides a valid
parameter to indicate whether the native cryptographic library considered
the certificate to be correct. This parameter is always 1/true before these
releases leading to a possible MITM.

This does not affect you if you do not use the custom certificate callback
or if you do not take this value into account. This does affect you if you
use pygit2 or git2go regardless of whether you specify a certificate check
callback.

(taca)

Updated devel/py-tryton to 4.2.1 [rodent 2017-01-10]
Updated devel/py-trytond to 4.2.1 [rodent 2017-01-10]
Updated finance/py-trytond-commission to 4.2.1 [rodent 2017-01-10]
Updated finance/py-trytond-stock-supply-forecast to 4.2.1 [rodent 2017-01-10]
Updated geography/py-trytond-google-maps to 4.2.1 [rodent 2017-01-10]
Updated misc/py-trytond-party to 4.2.1 [rodent 2017-01-10]
Updated misc/py-trytond-product to 4.2.1 [rodent 2017-01-10]

(rodent)

Update Tryton to 4.2.1. No aggregated changelog, but this fixes some bugs
that I submitted upstream. Fix variable expansion in trytond's MESSAGE.

(rodent)

Updated devel/ruby-redmine to 3.3.2

(rodent)

Update Redmine to 3.3.2. This is a bugfix release.

taca@ was right. UPDATE_GEMSPEC is better than the patch, and can be used
now since it was moved from gem.mk to rubyversion.mk. With this new version, rdoc is added, because the application breaks without it. Also, selenium-webdriver was downgraded to 2.53.4. Duplicate entries removed from PLIST. Changes are:

    Defect #13622: "Clear" button in Spent Time Report tab also clears global filters
    Defect #14658: Wrong activity timezone on user page
    Defect #14817: Redmine loses filters after deleting a spent time
    Defect #22034: Locked users disappear from project settings
    Defect #23922: Time Entries context menu/bulk edit shows activities not available for the time entry's project
    Defect #24000: z-index children menu should be greater than content
    Defect #24092: bundler error: selenium-webdriver requires Ruby version >= 2.0.
    Defect #24156: Redmine might create many AnonymousUser and AnonymousGroup entries
    Defect #24274: Query totals and query buttons overlaps on small screens
    Defect #24297: Show action not allowed for time entries in closed projects
    Defect #24311: Project field disappears when target project disallows user to edit the project
    Defect #24348: acts_as_versioned use old style (Rails 2.x) of method call for #all
    Defect #24595: Unarchive link for a subproject of a closed project does not work
    Defect #24646: X-Sendfile is missing in response headers
    Defect #24693: Spent time on subtasks should also be reassigned when deleting an issue
    Defect #24718: Prevent from reassigning spent time to an issue that is going to be deleted
    Defect #24722: Error when trying to reassign spent time when deleting issues from different projects
    Patch #24003: Catalan Translation
    Patch #24004: Spanish & Spanish (PA) Translation
    Patch #24062: Allow only vertical reorderingin sortable lists
    Patch #24283: Validate length of string fields
    Patch #24296: Add tablename to siblings query to prevent AmbiguousColumn errors

(rodent)

Updated sysutils/syslog-ng to 3.9.1

(fhajny)

Reset PKGREVISION after package version update

(fhajny)

Update sysutils/syslog-ng to 3.9.1.

Features

- Improve parsing performance in case of keep-timestamp(no)
- TLS based transports will publish the peer's certificate in a set of
  name-value pairs.
- Improve performance of the tcp() source, due to a bug, syslog-ng
  attempted to apply position tracking to messages coming over a TCP
  transport, which is used for file position tracking and causing
  performance degradation.
- Make it possible to configure the listen-backlog() for any stream based
  transports (unix-stream and tcp).
- Add a groupunset() rewrite rule that pairs up with groupset() but instead
  of setting values it unsets them.
- Add support for Elastic Shield and SearchGuard
- kv-parser() is now able to cope with unquoted values with an embedded
  space in them, it also trims whitespace from keys/values and is in
  general more reliable in extracting key-value pairs from arbitrary log
  messages.
- Improve performance for java based destinations.
- Add prefix() option to add-contextual-data()

Bugfixes

- Fix a potential crash in the file destination, in case it is a template
  based filename and time-reap() is elapsed.
- Fix a potential ACK problem within syslog-ng that can cause input windows
  to overflow queue sizes over time, effectively causing message drops that
  shouldn't occur.
- Fix a heap corruption bug in the DNS cache, in case the maximum number of
  DNS cache entries is reached.
- Fix timestamp for suppression messages.
- Fix add-contextual-data() to support CRLF line endings in its CSV input
  files.
- Fixed key() option parsing in riemann() destinations.
- Find libsystemd-journal related functions in both libsystemd-journal.so
  and libsystemd.so, as recent systemd versions bundled all systemd
  related libs into the same library.
- Fixed the build-time detection of system-wide installed librabbitmq,
  libmongoc and libcap.
- Fix the file source to repeatedly check for unexisting files, as a bug
  caused syslog-ng to stop after two attempts previously.
- The performance testing tool "loggen" crashed if it was used to generate
  messages on multiple threads over TLS. This was now fixed.
- Fix an issue in the syslog-parser() parser, so that timestamps parsed
  earlier in the log path are properly overwritten.
- Due to a compilation issue, tcp-keepalive-time(), tcp-keepalive-intvl() and
  tcp-keepalive-probes() were not working, now they are again.
- The --disable-shm-counters option is now passed to mongo-c-driver to work
  around a minor security issue.
- Fix compilation issues on FreeBSD.
- Add support to month names in all caps in syslog timestamps. At least one
  device seems to generate these.
- The options() option to java destination can now accept numbers and not
  just strings.
- Fix a memory leak in the java destination driver, that may affect java
  based destinations like ElasticSearch, Kafka & HDFS.

Other changes

- HDFS was updated to 2.7.3
- Elasticsearch was updated to 2.4.0
- Support was added for OpenSSL 1.1.x

(fhajny)

Updated security/gnutls to 3.5.8

(wiz)

Updated gnutls to 3.5.8.

* Version 3.5.8 (released 2016-01-09)

** libgnutls: Ensure that multiple calls to the gnutls_set_priority_*
  functions will not leave the verification profiles field to an
  undefined state. The last call will take precedence.

** libgnutls: Ensure that GNUTLS_E_DECRYPTION_FAIL will be returned
  by PKCS#8 decryption functions when an invalid key is provided. This
  addresses regression on decrypting certain PKCS#8 keys.

** libgnutls: Introduced option to override the default priority string
  used by the library. The intention is to allow support of system-wide
  priority strings (as set with --with-system-priority-file). The
  configure option is --with-default-priority-string.

** libgnutls: Require a valid IV size on all ciphers for PKCS#8 decryption.
  This prevents crashes when decrypting malformed PKCS#8 keys.

** libgnutls: Fix crash on the loading of malformed private keys with certain
  parameters set to zero.

** libgnutls: Fix double free in certificate information printing. If the PKIX
  extension proxy was set with a policy language set but no policy specified,
  that could lead to a double free.

** libgnutls: Addressed memory leaks in client and server side error paths
  (issues found using oss-fuzz project)

** libgnutls: Addressed memory leaks in X.509 certificate printing error paths
  (issues found using oss-fuzz project)

** libgnutls: Addressed memory leaks and an infinite loop in OpenPGP certificate
  parsing. Fixes by Alex Gaynor. (issues found using oss-fuzz project)

** libgnutls: Addressed invalid memory accesses in OpenPGP certificate parsing.
  (issues found using oss-fuzz project)

** API and ABI modifications:
No changes since last version.

* Version 3.5.7 (released 2016-12-8)

** libgnutls: Include CHACHA20-POLY1305 ciphersuites in the SECURE128
  and SECURE256 priority strings.

** libgnutls: Require libtasn1 4.9; this ensures gnutls will correctly
  operate with OIDs which have elements that exceed 2^32.

** libgnutls: The DN decoding functions output the traditional DN format
  rather than the strict RFC4514 compliant textual DN. This reverts the
  3.5.6 introduced change, and allows applications which depended on the
  previous format to continue to function. Introduced new functions which
  output the strict format by default, and can revert to the old one using
  a flag.

** libgnutls: Improved TPM key handling. Check authorization requirements
  prior to using a key and fix issue on loop for PIN input. Patches by
  James Bottomley.

** libgnutls: In all functions accepting UTF-8 passwords, ensure that
  passwords are normalized according to RFC7613. When invalid UTF-8
  passwords are detected, they are only tolerated for decryption.
  This introduces a libunistring dependency on GnuTLS. A version of
  libunistring is included in the library for the platforms that do
  not ship it; it can be used with the '--with-included-unistring'
  option to configure script.

** libgnutls: When setting a subject alternative name in a certificate
  which is in UTF-8 format, it will transparently be converted to IDNA form
  prior to storing.

** libgnutls: GNUTLS_CRT_PRINT_ONELINE flag on gnutls_x509_crt_print()
  will print the SHA256 key-ID instead of a certificate fingerprint.

** libgnutls: enhance the PKCS#7 verification capabilities. In the case
  signers that are not discoverable using the trust list or input, use
  the stored list as pool to generate a trusted chain to the signer.

** libgnutls: Improved MTU calculation precision for the CBC ciphersuites
  under DTLS.

** libgnutls: [added missing news entry since 3.5.0]
  No longer tolerate certificate key usage violations for
  TLS signature verification, and decryption. That is GnuTLS will fail
  to connect to servers which incorrectly use a restricted to signing certificate
  for decryption, or vice-versa. This reverts the lax behavior introduced
  in 3.1.0, due to several such broken servers being available. The %COMPAT
  priority keyword can be used to work-around connecting on these servers.

** certtool: When exporting a CRQ in DER format ensure no text data are
  intermixed. Patch by Dmitry Eremin-Solenikov.

** certtool: Include the SHA-256 variant of key ID in --certificate-info
  options.

** p11tool: Introduced the --initialize-pin and --initialize-so-pin
  options.

** API and ABI modifications:
gnutls_utf8_password_normalize: Added
gnutls_ocsp_resp_get_responder2: Added
gnutls_x509_crt_get_issuer_dn3: Added
gnutls_x509_crt_get_dn3: Added
gnutls_x509_rdn_get2: Added
gnutls_x509_dn_get_str2: Added
gnutls_x509_crl_get_issuer_dn3: Added
gnutls_x509_crq_get_dn3: Added

* Version 3.5.6 (released 2016-11-04)

** libgnutls: Enhanced the PKCS#7 parser to allow decoding old
  (pre-rfc5652) structures with arbitrary encapsulated content.

** libgnutls: Introduced a function group to set known DH parameters
  using groups from RFC7919.

** libgnutls: Added more strict RFC4514 textual DN encoding and decoding.
  Now the generated textual DN is in reverse order according to RFC4514,
  and functions which generate a DN from strings such gnutls_x509_crt_set_*dn()
  set the expected DN (reverse of the provided string).

** libgnutls: Introduced time and constraints checks in the end certificate
  in the gnutls_x509_crt_verify_data2() and gnutls_pkcs7_verify_direct()
  functions.

** libgnutls: Set limits on the maximum number of alerts handled. That is,
  applications using gnutls could be tricked into an busy loop if the
  peer sends continuously alert messages. Applications which set a maximum
  handshake time (via gnutls_handshake_set_timeout) will eventually recover
  but others may remain in a busy loops indefinitely. This is related but
  not identical to CVE-2016-8610, due to the difference in alert handling
  of the libraries (gnutls delegates that handling to applications).

** libgnutls: Reverted the change which made the gnutls_certificate_set_*key*
  functions return an index (introduced in 3.5.5), to avoid affecting programs
  which explicitly check success of the function as equality to zero. In order
  for these functions to return an index an explicit call to gnutls_certificate_set_flags
  with the GNUTLS_CERTIFICATE_API_V2 flag is now required.

** libgnutls: Reverted the behavior of sending a status request extension even
  without a response (introduced in 3.5.5). That is, we no longer reply to a
  client's hello with a status request, with a status request extension. Although
  that behavior is legal, it creates incompatibility issues with releases in
  the gnutls 3.3.x branch.

** libgnutls: Delayed the initialization of the random generator at
  the first call of gnutls_rnd(). This allows applications to load
  on systems which getrandom() would block, without blocking until
  real random data are needed.

** certtool: --get-dh-params will output parameters from the RFC7919
  groups.

** p11tool: improvements in --initialize option.

** API and ABI modifications:
GNUTLS_CERTIFICATE_API_V2: Added
GNUTLS_NO_TICKETS: Added
gnutls_pkcs7_get_embedded_data_oid: Added
gnutls_anon_set_server_known_dh_params: Added
gnutls_certificate_set_known_dh_params: Added
gnutls_psk_set_server_known_dh_params: Added
gnutls_x509_crt_check_key_purpose: Added

* Version 3.5.5 (released 2016-10-09)

** libgnutls: enhanced gnutls_certificate_set_ocsp_status_request_file()
  to allow importing multiple OCSP request files, one for each chain
  provided.

** libgnutls: The gnutls_certificate_set_key* functions return an
  index of the added chain. That index can be used either with
  gnutls_certificate_set_ocsp_status_request_file(), or with
  gnutls_certificate_get_crt_raw() and friends.

** libgnutls: Added SHA*, AES-GCM, AES-CCM and AES-CBC optimized implementations
  for the aarch64 architecture. Uses Andy Polyakov's assembly code.

** libgnutls: Ensure proper cleanups on gnutls_certificate_set_*key()
  failures due to key mismatch. This prevents leaks or double freeing
  on such failures.

** libgnutls: Increased the maximum size of the handshake message hash.
  This will allow the library to cope better with larger packets, as
  the ones offered by current TLS 1.3 drafts.

** libgnutls: Allow to use client certificates despite them containing
  disallowed algorithms for a session. That allows for example a client
  to use DSA-SHA1 due to his old DSA certificate, without requiring him
  to enable DSA-SHA1 (and thus make it acceptable for the server's certificate).

** libgnutls: Reverted AESNI code on x86 to earlier version as the
  latest version was creating position depending code. Added checks
  in the CI to detect position depending code early.

** guile: Update code to the I/O port API of Guile >= 2.1.4
  This makes sure the GnuTLS bindings will work with the forthcoming 2.2
  stable series of Guile, of which 2.1 is a preview.

** API and ABI modifications:
gnutls_certificate_set_ocsp_status_request_function2: Added
gnutls_session_ext_register: Added
gnutls_session_supplemental_register: Added
GNUTLS_E_PK_INVALID_PUBKEY: Added
GNUTLS_E_PK_INVALID_PRIVKEY: Added

(wiz)

Updated security/libtasn1 to 4.9

(wiz)

Updated libtasn1 to 4.9.

* Noteworthy changes in release 4.9 (released 2016-07-25) [stable]
- Fixes to OID encoding of OIDs which have elements which exceed 2^32

(wiz)

Updated textproc/py-tinycss to 0.4.

(kleink)

Update py-tinycss to 0.4.

Version 0.4
-----------

Released on 2016-09-23.

* Add an __eq__ operator to Token object.
* Support Fonts 3.

(kleink)

Test for existing $prefix and $pkgdbdir and bail out early if they exist,
rather than failing with exotic errors later.

(jperkin)

Use die()

(jperkin)

Updated net/syncthing to 0.14.19

(wiz)

Updated syncthing to 0.14.19.

This is a regularly scheduled bugfix and improvement release recommended for all users.

Resolved issues:

    #3846: Changing bandwidth rate limits now takes effect immediately without restart.
    #3859: The event log (-audit) can now be directed to stderr for piping into another program.
    #3584: A panic on folder listing at startup has been fixed.
    #3857: On Windows, we now make sure to never descend into directory symlinks.
    #3819: When a folder is deleted, the .stfolder marker is also removed. The ignore file and .stversions directory are retained, if present.
    #3839: Several scenarios where a device would get stuck with "not a directory" errors are now handled again.
    #3861: Third party copyrights in the about box are now more up to date.

Also:

Hashing performance has been improved again, after it was inadvertently reduced in v0.4.17.

(wiz)

Rename one patch, add another to fix at least two problems preventing
this to build for NetBSD/powerpc:
* need a cast in one place (in the renamed patch)
* an overcautious assert() is incompatible with top/down VM layout in NetBSD
This still doesn't work on NetBSD/powerpc, though, and I ran out of time.
The build produces a mono-boehm.core file the first time through the build
(for some reason not the subsequent attempts, sigh!), and I have problems
reconstructing the CLI to run the mono-boehm executable under gdb, and the
core file says it got a segv in opendir() which must be nonsensical.

(he)

Updated databases/apache-cassandra2 to 2.1.16

(fhajny)

Update databases/apache-cassandra2 to 2.1.16.

2.1.16
- Avoid infinitely looping result set when paging SELECT queries with
  an IN clause with duplicate keys by treating the IN values as a set
  instead of a list
- Add system property to set the max number of native transport requests
  in queue
- Include column family parameter when -st and -et are provided
- Fix queries with empty ByteBuffer values in clustering column
  restrictions
- Disable passing control to post-flush after flush failure to prevent
  data loss
- Allow STCS-in-L0 compactions to reduce scope with LCS
- cannot use cql since upgrading python to 2.7.11+
- Fix filtering on clustering columns when 2i is used
- Improve digest calculation in the presence of overlapping tombstones

2.1.15
- Account for partition deletions in tombstone histogram
- Avoid stalling paxos when the paxos state expires
- Remove finished incoming streaming connections from MessagingService
- Don't try to get sstables for non-repairing column families
- Prevent select statements with clustering key > 64k
- Avoid marking too many sstables as repaired
- Fix clock skew corrupting other nodes with paxos
- Remove distinction between non-existing static columns and existing
  but null in LWTs
- Support mlockall on IBM POWER arch
- Cache local ranges when calculating repair neighbors
- Allow LWT operation on static column with only partition keys
- Create interval tree over canonical sstables to avoid missing sstables
  during streaming
- cqlsh COPY FROM: shutdown parent cluster after forking, to avoid
  corrupting SSL connections
- Updated cqlsh Python driver to fix DESCRIBE problem for legacy tables
- cqlsh: apply current keyspace to source command
- Backport CASSANDRA-11578
- Clear out parent repair session if repair coordinator dies
- Set default streaming_socket_timeout_in_ms to 24 hours
- Do not consider local node a valid source during replace
- Avoid holding SSTableReaders for duration of incremental repair
- Add message dropped tasks to nodetool netstats
- Don't compute expensive MaxPurgeableTimestamp until we've verified
  there's an expired tombstone
- Fix paging on DISTINCT queries repeats result when first row in
  partition changes
- Add option to disable use of severity in DynamicEndpointSnitch
- cqlsh COPY FROM fails for null values with non-prepared statements
- Make cython optional in pylib/setup.py
- Change order of directory searching for cassandra.in.sh to favor local
  one
- cqlsh COPY FROM fails with []{} chars in UDT/tuple fields/values
- clqsh: COPY FROM throws TypeError with Cython extensions enabled
- cqlsh: COPY FROM ignores NULL values in conversion
- Validate levels when building LeveledScanner to avoid overlaps with
  orphaned sstables

2.1.14
- Start L0 STCS-compactions even if there is a L0 -> L1 compaction going
- (cqlsh) Fix potential COPY deadlock when parent process is terminating
  child processes
- Replace sstables on DataTracker before marking them as non-compacting
  during anti-compaction
- Checking if an unlogged batch is local is inefficient
- Fix paging for COMPACT tables without clustering columns
- Fix out-of-space error treatment in memtable flushing
- Backport CASSANDRA-10859
- COPY FROM fails when importing blob
- Backport CASSANDRA-10679
- Don't do defragmentation if reading from repaired sstables
- Fix streaming_socket_timeout_in_ms not enforced
- Avoid dropping message too quickly due to missing unit conversion
- COPY FROM on large datasets: fix progress report and debug performance
- InvalidateKeys should have a weak ref to key cache
- Don't remove FailureDetector history on removeEndpoint
- Only notify if repair status changed
- Add partition key to TombstoneOverwhelmingException error message
- Use logback setting for 'cassandra -v' command
- Fix sstableloader to unthrottle streaming by default
- Fix incorrect warning in 'nodetool status'
- Properly release sstable ref when doing offline scrub
- Improve nodetool status performance for large cluster
- Make it clear what DTCS timestamp_resolution is used for
- Gossiper#isEnabled is not thread safe
- Avoid major compaction mixing repaired and unrepaired sstables in DTCS
- test_bulk_round_trip_blogposts is failing occasionally
- Add a -j parameter to scrub/cleanup/upgradesstables to state how
  many threads to use

2.1.13
- Fix isJoined return true only after becoming cluster member
  (CASANDRA-11007)
- Fix bad gossip generation seen in long-running clusters
- Avoid NPE when incremental repair fails
- Unmark sstables compacting once they are done in
  cleanup/scrub/upgradesstables
- Revert CASSANDRA-10012 and add more logging
- Allow simultaneous bootstrapping with strict consistency when no
  vnodes are used
- Log a message when major compaction does not result in a single file
- (cqlsh) fix cqlsh_copy_tests when vnodes are disabled
- (cqlsh) fix formatting bytearray values
- (cqlsh) Add request timeout option to cqlsh
- Avoid AssertionError while submitting hint with LWT
- If CompactionMetadata is not in stats file, use index summary instead
- Retry sending gossip syn multiple times during shadow round
- Fix pending range calculation during moves
- Sane default (200Mbps) for inter-DC streaming througput
- Match cassandra-loader options in COPY FROM
- Fix binding to any address in CqlBulkRecordWriter
- Fix the way we replace sstables after anticompaction
- cqlsh fails to decode utf-8 characters for text typed columns
- Log error when stream session fails
- Fix bugs in commit log archiving startup behavior
- (cqlsh) further optimise COPY FROM
- Allow CREATE TABLE WITH ID
- Make Stress compiles within eclipse
- Cassandra Daemon should print JVM arguments
- Allow cancellation of index summary redistribution
- sstableloader will fail if there are collections in the schema tables
- Disable reloading of GossipingPropertyFileSnitch
- Fix Stress profile parsing on Windows

2.1.12
- Fix incremental repair hang when replica is down
- Avoid writing range tombstones after END_OF_ROW marker
- Optimize the way we check if a token is repaired in anticompaction
- Add proper error handling to stream receiver
- Warn or fail when changing cluster topology live
- Status command in debian/ubuntu init script doesn't work
- Some DROP ... IF EXISTS incorrectly result in exceptions on
  non-existing KS
- DeletionTime.compareTo wrong in rare cases
- Force encoding when computing statement ids
- Properly reject counters as map keys
- Fix the sstable-needs-cleanup check
- (cqlsh) Print column names before COPY operation
- Add Native-Transport-Requests back to tpstats
- Make paging logic consistent between searcher impls
- Fix CompressedInputStream for proper cleanup
- (cqlsh) Support counters in COPY commands
- Try next replica if not possible to connect to primary replica on
  ColumnFamilyRecordReader
- Limit window size in DTCS
- sstableloader does not use MAX_HEAP_SIZE env parameter
- (cqlsh) Improve COPY TO performance and error handling
- Don't remove level info when running upgradesstables
- Create compression chunk for sending file only
- Make buffered read size configurable
- Forbid compact clustering column type changes in ALTER TABLE
- Reject incremental repair with subrange repair
- Add a nodetool command to refresh size_estimates
- Shutdown compaction in drain to prevent leak
- Invalidate cache after stream receive task is completed
- Reject counter writes in CQLSSTableWriter
- Remove superfluous COUNTER_MUTATION stage mapping
- Improve json2sstable error reporting on nonexistent columns
- (cqlsh) fix COPY using wrong variable name for time_format
- Do not run SizeEstimatesRecorder if a node is not a member of the ring
- Improve handling of dead nodes in gossip
- Fix logback-tools.xml incorrectly configured for outputing to
  System.err
- Fix streaming to catch exception so retry not fail
- Add validation method to PerRowSecondaryIndex
- Support encrypted and plain traffic on the same port
- Do STCS in DTCS windows
- Don't try to get ancestors from half-renamed sstables
- Avoid repetition of JVM_OPTS in debian package
- Fix potential NPE from handling result of SIM.highestSelectivityIndex
- Fix paging issues with partitions containing only static columns data
- Fix conditions on static columns
- AssertionError: attempted to delete non-existing file CommitLog
- Merge range tombstones during compaction
- (cqlsh) Distinguish negative and positive infinity in output
- (cqlsh) allow custom time_format for COPY TO
- Don't allow startup if the node's rack has changed
- Fix sorting for queries with an IN condition on partition key columns

(fhajny)

Note update of editors/vim-share

(morr)

Update to newest snapshot.

Changes:
8.0.0087  channel callback may get job info after it was deleted
8.0.0088  when a test fails in Setup/Teardown problem is not reported
8.0.0089  various problems with GTK 3.22.2
8.0.0090  cursor moved after last character when using 'breakindent'
8.0.0091  test_help_complete sometimes fails in MS-Windows console
8.0.0092  C indent does not support nested namespaces that C++ 17 has
8.0.0093  not using multiprocess build feature
8.0.0094  if vimrun.exe not found error message is not properly encoded
8.0.0095  problems with GTK 3.22.2 fixed in 3.22.4
8.0.0096  when the input or output is not a tty Vim appears to hang
8.0.0097  if channel callback takes a lot of time Vim is unresponsive
8.0.0098  (after 8.0.0097) can't build on MS-Windows
8.0.0099  popup menu appears above the cursor too often
8.0.0100  file name options may contain non-filename characters
8.0.0101  some options are not strictly checked
8.0.0102  (after 8.0.0101) cannot set 'dictionary' to a path
8.0.0103  may not process channel readahead
8.0.0104  value of 'thesaurus' option not checked properly
8.0.0105  can't tell difference between reading empty line or nothing
8.0.0106  (after 8.0.0100) cannot use a semicolon in 'backupext'
8.0.0107  when reading channel output in timer messages may be missing
8.0.0108  (after 8.0.0107) the channel "drop" option is not tested
8.0.0109  still checking if memcmp() exists, should be everywhere now
8.0.0110  drop command doesn't use existing window
8.0.0111  the :history command is not tested
8.0.0112  tests 92 and 93 are old style
8.0.0113  MS-Windows: dialog for saving changes on the wrong monitor
8.0.0114  coding style not optimal
8.0.0115  when building with Cygwin libwinpthread isn't found
8.0.0116  using CTRl-] in English help language from 'helplang' is used
8.0.0117  parallel make fails
8.0.0118  "make proto" adds extra function prototype
8.0.0119  no test for using CTRL-R on the command line
8.0.0120  channel test is still flaky on OS X
8.0.0121  setting 'cursorline' changes the curswant column
8.0.0122  channel test is still flaky on OS X
8.0.0123  modern Sun compilers define "__sun" instead of "sun"
8.0.0124  internal error for assert_inrange(1, 1)
8.0.0125  not enough testing for entering Ex commands
8.0.0126  display problem with 'foldcolumn' and a wide character
8.0.0127  cancelling completion still formats text
8.0.0128  (after 8.0.0126) display test fails on MS-Windows
8.0.0129  parallel make still doesn't work
8.0.0130  configure uses "ushort" while the Vim code doesn't
8.0.0131  not enough test coverage for syntax commands
8.0.0132  (after 8.0.0131) test fails because of using :finish
8.0.0133  "2;'(" causes ml_get errors in an empty buffer
8.0.0134  null pointer access reported by UBsan
8.0.0135  relative address does not work with closed fold
8.0.0136  when changing indent the wrong fold is opened
8.0.0137  when 'maxfuncdepth' set above 200 nesting is limited to 200
8.0.0138  (after 8.0.0137) small build fails
8.0.0139  (after 8.0.0135) warning for unused argument
8.0.0140  pasting inserted text in Visual mode does not work properly
8.0.0141  (after 8.0.0137) nested function test fails on AppVeyor
8.0.0142  normal colors are wrong with 'termguicolors'
8.0.0143  line number of current buffer in getbufinfo() is wrong
8.0.0144  when using MSVC the GvimExt directory is cleaned twice
8.0.0145  running tests on MS-Windows is noisy
8.0.0146  termguicolors uses wrong colors on MS-Windows with ConEmu
8.0.0147  searchpair() fails when 'magic' is off
8.0.0148  wrong indent in C preprocessor with line continuation
8.0.0149  :earlier does not work after reading the undo file
8.0.0150  completion for :filter does not skip the pattern
8.0.0151  passing buffer content to system() is clumsy
8.0.0152  stray channellog created when running tests
8.0.0153  (after 8.0.0151) system() test fails on MS-Windows
8.0.0154  (after 8.0.0151) system() test fails on OS/X
8.0.0155  ubsan complains about NULL pointer
8.0.0156  not enough test coverage for float functions
8.0.0157  no completion for :syntax spell and :syntax sync
8.0.0158  (after 8.0.0156) float function test fails on MS-Windows
8.0.0159  crash on startup when updating tabline
8.0.0160  EMSG() is sometimes used where it should be IEMSG()
8.0.0161  (after 8.0.0159) can't build with small features

(morr)