Given how the port evolved USE_GNOME=gconf2 was never set anyway,
just remove it entirely, and add the configure argument to ensure
it will never come back even by accident
gconf2 is a legacy from gnome2 and one of its last components,
it is slowly being decomission, drop option and unecessary dependency
on gconf where possible
Major changes between sudo 1.9.11 and 1.9.10:
* Fixed a crash in the Python module with Python 3.9.10 on some
systems. Additionally, "make check" now passes for Python 3.9.10.
* Error messages sent via email now include more details, including
the file name and the line number and column of the error.
Multiple errors are sent in a single message. Previously, only
the first error was included.
* Fixed logging of parse errors in JSON format. Previously,
the JSON logger would not write entries unless the command and
runuser were set. These may not be known at the time a parse
error is encountered.
* Fixed a potential crash parsing sudoers lines larger than twice
the value of LINE_MAX on systems that lack the getdelim() function.
* The tests run by "make check" now unset the LANGUAGE environment
variable. Otherwise, localization strings will not match if
LANGUAGE is set to a non-English locale. Bug #1025.
* The "starttime" test now passed when run under Debian faketime.
Bug #1026.
* The Kerberos authentication module now honors the custom password
prompt if one has been specified.
* The embedded copy of zlib has been updated to version 1.2.12.
* Updated the version of libtool used by sudo to version 2.4.7.
* Sudo now defines _TIME_BITS to 64 on systems that define __TIMESIZE
in the header files (currently only GNU libc). This is required
to allow the use of 64-bit time values on some 32-bit systems.
* Sudo's "intercept" and "log_subcmds" options no longer force the
command to run in its own pseudo-terminal. It is now also
possible to intercept the system(3) function.
* Fixed a bug in sudo_logsrvd when run in store-first relay mode
where the commit point messages sent by the server were incorrect
if the command was suspended or received a window size change
event.
* Fixed a potential crash in sudo_logsrvd when the "tls_dhparams"
configuration setting was used.
* The "intercept" and "log_subcmds" functionality can now use
ptrace(2) on Linux systems that support seccomp(2) filtering.
This has the advantage of working for both static and dynamic
binaries and can work with sudo's SELinux RBAC mode. The following
architectures are currently supported: i386, x86_64, aarch64,
arm, mips (log_subcmds only), powerpc, riscv, and s390x. The
default is to use ptrace(2) where possible; the new "intercept_type"
sudoers setting can be used to explicitly set the type.
* New Georgian translation from translationproject.org.
* Fixed creating packages on CentOS Stream.
* Fixed a bug in the intercept and log_subcmds support where
the execve(2) wrapper was using the current environment instead
of the passed environment pointer. Bug #1030.
* Added AppArmor integration for Linux. A sudoers rule can now
specify an APPARMOR_PROFILE option to run a command confined by
the named AppArmor profile.
* Fixed parsing of the "server_log" setting in sudo_logsrvd.conf.
Non-paths were being treated as paths and an actual path was
treated as an error.
PR: 264515
Approved by: garga (maintainer)
General Purpose Data Serializer implemented as a very small C++ library,
providing (de)serialization of C++ classes, via backends, such as XML.
PR: 264530
Sponsored by: SkunkWerks, GmbH
This release has EDE support, for extended EDNS error reporting,
it fixes unsupported ZONEMD algorithms to load, and has more bug fixes.
The EDE errors can be turned on by `ede: yes`, it is default disabled.
Validation errors and other errors are then reported. If you also want
stale answers for expired responses to have an error code, the option
`ede-serve-expired: yes` can be used.
On request, the port now also has dnscrypt support default enabled.
PR: 264538
xlockmore already uses feetype (freetype2) this option was to use
the long ago deprecated freetype1 library thought the gltt (which
is also abandonned)
This follows similar commit b7cbb62f6a in `x11-toolkits/wxgtk30'
to allow widget-heavy graphical software, e.g. various CADs, offer
more fluent, responsive, and overall better user experience.
https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V14.md#14.19.3
This update is based on a patch from Dani I. <i.dani@outlook.com> that
was originally attached to the PR.
This update addresses CVE-2021-44531/44532/44533, CVE-2022-0778, and
CVE-2022-21824.
Notable port additions:
- COREPACK option [1]
- test target
- python 3.10 build support
- patch for failing test due to FreeBSD OpenSSL adding "-freebsd" to
version string
[1] Corepack is an experimental tool to help with managing versions of
your package managers. It exposes binary proxies for each supported
package manager that, when called, will identify whatever package
manager is configured for the current project, transparently install it
if needed, and finally run it without requiring explicit user
interactions.
PR: 263090
Approved by: bhughes (maintainer, timeout)
Differential Revision: https://reviews.freebsd.org/D35192
Drop web monitor setup: Ganglia and Nagios are abandoned,
other tools are complicated. Let user choose and manually install.
Integrate cluster-upgrade into menu system
Add support for custom delays to cluster-ipmi-power-on
A few minor fixes and enhancements
