Commit graph

873 commits

Author SHA1 Message Date
mef
6f39a4459e Update MASTER_SITES and HOMEPAGE (both were unknown sites). 2014-12-16 02:49:35 +00:00
wiz
e7e2a1a826 Update to 5.0.7:
5.0.7
This is version 5.0.7 of the shell.  This is a stable release.
There are minor new features as well as bug fixes since 5.0.6.

Note in particular there is a security fix to disallow evaluation
of the initial values of integer variables imported from the
environment (they are instead treated as literal numbers).  That
could allow local privilege escalation, under some specific and
atypical conditions where zsh is being invoked in privilege elevation
contexts when the environment has not been properly sanitized, such
as when zsh is invoked by sudo on systems where "env_reset" has
been disabled.

5.0.6
This is version 5.0.6 of the shell. This is a stable release.
There are minor new features as well as bug fixes since 5.0.5.
2014-12-12 08:27:47 +00:00
joerg
ed22163fe1 Correctly sanitize environment. 2014-11-27 13:38:15 +00:00
dholland
497b1d8630 Use -Wl,-R instead of just -R to avoid breaking the build on FreeBSD.
From Dennis Lindroos in PR 49375.
2014-11-23 00:43:57 +00:00
joerg
3fc5aabd4e Fix up patches, applying each change once is enough. 2014-11-11 15:40:37 +00:00
joerg
156f0631cc Regen 2014-11-11 15:39:37 +00:00
joerg
64de353cd1 Improve handling of memalign / posix_memalign to allow static linking on
NetBSD.
2014-11-10 18:02:53 +00:00
joerg
f0e6fa049f Rename memalign and posix_memalign similar to malloc/free to fix static
linkage. Reduce hackery in static-ast-ksh/Makefile.
2014-11-06 12:25:36 +00:00
ryoon
562b895d93 Update to 2.05.2.13
CHangelog:
Fix CVE-2014-6277 and CVE-2014-6278
2014-10-25 14:09:19 +00:00
wiz
cda18437be Remove pkgviews: don't set PKG_INSTALLATION_TYPES in Makefiles. 2014-10-09 14:05:50 +00:00
bsiegert
fa77d553e0 Security: Update mksh to 50d.
R50d is a required bugfix release:

- [Goodbox] Fix NULL pointer dereference on “unset x; nameref x”
- [tg] Fix severe regression in field splitting (LP#1378208)
- [tg] Add a warning about not using tainted user input (including from
  the environ(7)ment) in arithmetics, until Stéphane writes it up nicely

R50c is a security fix release:

- [tg] Know more rare signals when generating sys_signame[] replacement
- [tg] OpenBSD sync (mostly RCSID only)
- [tg] Document HISTSIZE limit; found by luigi_345 on IRC
- [zacts] Fix link to Debian .mkshrc
- [tg] Cease exporting $RANDOM (Debian #760857)
- [tg] Fix C99 compatibility
- [tg] Work around klibc bug causing a coredump (Debian #763842)
- [tg] Use issetugid(2) as additional check if we are FPRIVILEGED
- [tg] SECURITY: do not permit += from environment
- [tg] Fix more field splitting bugs reported by Stephane Chazelas and
  mikeserv; document current status wrt. ambiguous ones as testcases too
2014-10-07 18:51:02 +00:00
mef
c3cc338350 Update posh 0.12.2 to 0.12.3
(from debian/changelog)
posh (0.12.3) unstable; urgency=medium
  * Ten patches from Jonathan Nieder to adjust test suite.  closes: #603659.
 -- Clint Adams <clint@debian.org>  Sun, 09 Feb 2014 19:42:00 -0500

posh (0.12.2.1) unstable; urgency=medium
  * Bump to Standards-Version 3.9.5.
  * Add libperl4-corelibs-perl build-dep for getopts.pl.
    closes: #738412.
 -- Clint Adams <clint@debian.org>  Sun, 09 Feb 2014 12:49:30 -0500
2014-10-07 14:50:58 +00:00
wiz
448348a875 Another day, another bash patch. Welcome to 4.3.030.
Fixes CVE-2014-6278:
A combination of nested command substitutions and function importing
from the environment can cause bash to execute code appearing in
the environment variable value following the function definition.
2014-10-07 00:16:52 +00:00
wiz
5593caf150 Add another patch, welcome to 4.3.29. Not sure if this is hardening or
a vulnerability.
2014-10-03 09:46:23 +00:00
wiz
e808424565 Another day, another security fix: bash-4.3.028. 2014-10-01 21:23:51 +00:00
christos
71b89a51ab update to the latest upstream patch 2014-09-30 18:27:40 +00:00
wiz
8629cd65e0 Add another upstream security fix patch. Welcome to 4.3.027. 2014-09-29 12:08:12 +00:00
christos
f9598664fe bring bash2 up to speed since people don't seem to think it can be removed. 2014-09-27 03:00:06 +00:00
christos
3491b5d005 use the official version of the parse.y patch. 2014-09-27 02:50:26 +00:00
jmcneill
17565fd889 bump pkgrevision for previous 2014-09-25 21:32:33 +00:00
christos
c681fbb1a6 Disable function import by default, enabled only with -import-functions. 2014-09-25 20:28:32 +00:00
jperkin
4bc81078d5 Requires editline. 2014-09-25 19:21:03 +00:00
tron
602fdbeeb7 Add fix for CVE-2014-7169. 2014-09-25 14:02:34 +00:00
wiz
c8860cae85 Add all current upstream bash patches including 025, which fixes
a security issue. Version number bumped in the usual way.
2014-09-24 15:24:35 +00:00
bsiegert
b9b15ad635 Update mksh to R50b, prodded by tg.
Changelog:
R50b is a recommended bugfix release:

* [Ypnose] Fix operator description in the manpage
* [tg] Change all mention of “eglibc” to “glibc”, it is merged back
* [Colona] Fix rare infinite loop with invalid UTF-8 in the edit buffer
* [tg] Make more clear when a shell is interactive in the manpage
* [tg] Document that % is a symmetric remainder operation, and how to
  get a mathematical modulus from it, in the manpage
* [tg, Christopher Ferris, Elliott Hughes] Make the cat(1) builtin also
  interruptible in the write loop, not just in the read loop, and avoid
  it getting SIGPIPE in the smores function in dot.mkshrc by terminating
  cat upon user quit
* [tg] Make some comments match the code, after jaredy from obsd changed
  IFS split handling
* [tg] Fix some IFS-related mistakes in the manual page
* [tg] Document another issue as known-to-fail test IFS-subst-3
* [tg] Improve check.pl output in some cases
* [tg, Jb_boin] Relax overzealous nameref RHS checks

R50 is a recommended bugfix release:

* [tg] Fix initial IFS whitespace not being ignored when expanding
* [tg] MKSH_BINSHREDUCED no longer mistakenly enables brace expansion
* [tg] Explain more clearly Vi input mode limitations in the manpage
* [tg] Improve error reporting of the check.pl script (which needs a
  maintainer since I don’t speak any perl(1), really), for lewellyn
* [tg] Use $TMPDIR in test.sh for scratch space
* [tg, Polynomial-C] Check that the scratch space is not mounted noexec
* [pekster, jilles, tg] Use termcap(5) names, not terminfo(5) names, in
  tput(1) examples, for improved portability (e.g. to MidnightBSD)
* [tg] Avoid C99 Undefined Behaviour in mirtoconf LFS test (inspired by
  Debian #742780)
* [tg] Fix ${!foo} for when foo is unset
* [tg] Improve nameref error checking (LP#1277691)
* [tg] Fix readonly bypass found by Bert Münnich
* [Ryan Schmidt] Improved system reporting for Mac OS X
* [nDuff] Explain better [[ extglob handling in the manpage
* [tg] Remove arr=([index]=value) syntax due to regressions
* [tg] IFS-split arithmetic expansions as per POSIX 201x
* [OpenBSD] Add more detailed Authors section to manpage
* [tg] Fix set ±p issue for good: drop privs unless requested
* [tg] Improve signal handling and use a more canonical probing order
* [tg] Fix return values $? and ${PIPESTATUS[*]} interaction with set -o
  pipefail and COMSUBs
* [enh] Detect ENOEXEC ELF files and use a less confusing error message
* [tg] Update to Unicode 7.0.0
* [tg] Shut up valgrind in the $RANDOM code
* [tg] Use -fstack-protector-strong in favour of -fstack-protector-all
* [tg] Fix access-after-free crash spotted by Enjolras via IRC
2014-09-07 12:46:31 +00:00
ryoon
36ea1d3058 Remove CFLAGS+=-g. Accidentally added. 2014-07-18 20:08:24 +00:00
ryoon
6ae017543c Fix SCO OpenServer 5.0.7/3.2 build.
It has no S_ISSOCK.
2014-07-17 12:49:15 +00:00
wiz
b92b2df03c Add used-by lines. pkglint fixes. 2014-07-03 15:00:41 +00:00
wiz
337b84e2e5 Update to upgraded patch from upstream. Ride bump. 2014-06-25 12:19:09 +00:00
wiz
6fbab09982 Fix ulimit(1) for thread limits; patch from upstream.
Bump PKGREVISION.
2014-06-25 08:39:11 +00:00
wiz
3a19913200 Update comments, remove outdated chunks. 2014-06-25 08:38:37 +00:00
wiz
7eeb51b534 Bump for perl-5.20.0.
Do it for all packages that
* mention perl, or
* have a directory name starting with p5-*, or
* depend on a package starting with p5-
like last time, for 5.18, where this didn't lead to complaints.
Let me know if you have any this time.
2014-05-29 23:35:13 +00:00
rodent
544e810c9a Fix build for OpenBSD. 2014-05-25 03:59:17 +00:00
wiz
c1b44346cd Mark packages that are not ready for python-3.3 also not ready for 3.4,
until proven otherwise.
2014-05-09 07:36:53 +00:00
kim
76c0b335fb Fix NLS catalogue installation. Both building and installing
the catalogue files is handled by the upstream Makefile.

Fixes PR pkg/48704 as well.
2014-04-04 12:00:37 +00:00
wiz
4103332619 Update to 4.3:
This is a terse description of the new features added to bash-4.3 since
the release of bash-4.2.  As always, the manual page (doc/bash.1) is
the place to look for complete descriptions.

1.  New Features in Bash

a.  The `helptopic' completion action now maps to all the help topics, not just
    the shell builtins.

b.  The `help' builtin no longer does prefix substring matching first, so
    `help read' does not match `readonly', but will do it if exact string
    matching fails.

c.  The shell can be compiled to not display a message about processes that
    terminate due to SIGTERM.

d.  Non-interactive shells now react to the setting of checkwinsize and set
    LINES and COLUMNS after a foreground job exits.

e.  There is a new shell option, `globasciiranges', which, when set to on,
    forces globbing range comparisons to use character ordering as if they
    were run in the C locale.

f.  There is a new shell option, `direxpand', which makes filename completion
    expand variables in directory names in the way bash-4.1 did.

g.  In Posix mode, the `command' builtin does not change whether or not a
    builtin it shadows is treated as an assignment builtin.

h.  The `return' and `exit' builtins accept negative exit status arguments.

i.  The word completion code checks whether or not a filename containing a
    shell variable expands to a directory name and appends `/' to the word
    as appropriate.  The same code expands shell variables in command names
    when performing command completion.

j.  In Posix mode, it is now an error to attempt to define a shell function
    with the same name as a Posix special builtin.

k.  When compiled for strict Posix conformance, history expansion is disabled
    by default.

l.  The history expansion character (!) does not cause history expansion when
    followed by the closing quote in a double-quoted string.

m.  `complete' and its siblings compgen/compopt now takes a new `-o noquote'
    option to inhibit quoting of the completions.

n.  Setting HISTSIZE to a value less than zero causes the history list to be
    unlimited (setting it 0 zero disables the history list).

o.  Setting HISTFILESIZE to a value less than zero causes the history file size
    to be unlimited (setting it to 0 causes the history file to be truncated
    to zero size).

p.  The `read' builtin now skips NUL bytes in the input.

q.  There is a new `bind -X' option to print all key sequences bound to Unix
    commands.

r.  When in Posix mode, `read' is interruptible by a trapped signal.  After
    running the trap handler, read returns 128+signal and throws away any
    partially-read input.

s.  The command completion code skips whitespace and assignment statements
    before looking for the command name word to be completed.

t.  The build process has a new mechanism for constructing separate help files
    that better reflects the current set of compilation options.

u.  The -nt and -ot options to test now work with files with nanosecond
    timestamp resolution.

v.  The shell saves the command history in any shell for which history is
    enabled and HISTFILE is set, not just interactive shells.

w.  The shell has `nameref' variables and new -n(/+n) options to declare and
    unset to use them, and a `test -R' option to test for them.

x.  The shell now allows assigning, referencing, and unsetting elements of
    indexed arrays using negative subscripts (a[-1]=2, echo ${a[-1]}) which
    count back from the last element of the array.

y.  The {x}<word redirection feature now allows words like {array[ind]} and
    can use variables with special meanings to the shell (e.g., BASH_XTRACEFD).

z.  There is a new CHILD_MAX special shell variable; its value controls the
    number of exited child statues the shell remembers.

aa. There is a new configuration option (--enable-direxpand-default) that
    causes the `direxpand' shell option to be enabled by default.

bb. Bash does not do anything special to ensure that the file descriptor
    assigned to X in {x}<foo remains open after the block containing it
    completes.

cc. The `wait' builtin has a new `-n' option to wait for the next child to
    change status.

dd. The `printf' %(...)T format specifier now uses the current time if no
    argument is supplied.

ee. There is a new variable, BASH_COMPAT, that controls the current shell
    compatibility level.

ff. The `popd' builtin now treats additional arguments as errors.

gg. The brace expansion code now treats a failed sequence expansion as a
    simple string and will continue to expand brace terms in the remainder
    of the word.

hh. Shells started to run process substitutions now run any trap set on EXIT.

ii. The fc builtin now interprets -0 as the current command line.

jj. Completing directory names containing shell variables now adds a trailing
    slash if the expanded result is a directory.

kk. `cd' has a new `-@' option to browse a file's extended attributes on
    systems that support O_XATTR.

ll. The test/[/[[ `-v variable' binary operator now understands array
    references.

2.  New Features in Readline

a.  Readline is now more responsive to SIGHUP and other fatal signals when
    reading input from the terminal or performing word completion but no
    longer attempts to run any not-allowable functions from a signal handler
    context.

b.  There are new bindable commands to search the history for the string of
    characters between the beginning of the line and the point
    (history-substring-search-forward, history-substring-search-backward)

c.  Readline allows quoted strings as the values of variables when setting
    them with `set'.  As a side effect, trailing spaces and tabs are ignored
    when setting a string variable's value.

d.  The history library creates a backup of the history file when writing it
    and restores the backup on a write error.

e.  New application-settable variable: rl_filename_stat_hook: a function called
    with a filename before using it in a call to stat(2).  Bash uses it to
    expand shell variables so things like $HOME/Downloads have a slash
    appended.

f.  New bindable function `print-last-kbd-macro', prints the most-recently-
    defined keyboard macro in a reusable format.

g.  New user-settable variable `colored-stats', enables use of colored text
    to denote file types when displaying possible completions (colored analog
    of visible-stats).

h.  New user-settable variable `keyseq-timout', acts as an inter-character
    timeout when reading input or incremental search strings.

i.  New application-callable function: rl_clear_history. Clears the history list
    and frees all readline-associated private data.

j.  New user-settable variable, show-mode-in-prompt, adds a characters to the
    beginning of the prompt indicating the current editing mode.

k.  New application-settable variable: rl_input_available_hook; function to be
    called when readline detects there is data available on its input file
    descriptor.

l.  Readline calls an application-set event hook (rl_event_hook) after it gets
    a signal while reading input (read returns -1/EINTR but readline does not
    handle the signal immediately) to allow the application to handle or
    otherwise note it.

m.  If the user-settable variable `history-size' is set to a value less than
    0, the history list size is unlimited.

n.  New application-settable variable: rl_signal_event_hook; function that is
    called when readline is reading terminal input and read(2) is interrupted
    by a signal.  Currently not called for SIGHUP or SIGTERM.

o.  rl_change_environment: new application-settable variable that controls
    whether or not Readline modifies the environment (currently readline
    modifies only LINES and COLUMNS).
2014-03-12 10:08:46 +00:00
dholland
771653d307 whitespace 2014-03-01 03:26:12 +00:00
dholland
64b7145612 Use the HOMEPAGE for this version of rc, not the plan9 one.
(but keep the plan9 url for reference)
2014-03-01 03:24:43 +00:00
wiz
9dd5a94517 Remove doxygen build dependency. I don't see it used anywhere in a build,
and removing it doesn't change the list of installed files.
Bump PKGREVISION.

Requested by Zbigniew Baniewski <zb@islandsoft.pl>.
2014-02-07 21:29:09 +00:00
bsiegert
c12b74a0dc Update mksh to R49.
R49 is a recommended bugfix release:

- [tg] dot.mkshrc: fix two issues with the cd wrapper
- [tg] Unbreak set +p (wider issue still to be addressed)
- [Steffen Daode Nurpmeso] Use WCONTINUED with waitpid(2)
- [millert] Add proper suspend builtin handling tty(4) and setpgrp(2)
- [tg] Sanitise and slightly optimise control character handling
- [tg] Add O_BINARY to all open(2) calls for OS/2 kLIBC support
- [tg] Generate option strings for shell, set, ulimit at compile time
- [Steffen Daode Nurpmeso] Drop ISTRIP termios(4) mode
- [tg] Mention negative history numbers, octals in the manpage
- [tg] Make check.pl work with Perl < 5.6.1 again
- [tg] Detect getsid(2) and skip the oksh suspend builtin otherwise
- [tg] Document that set -o noclobber is unsafe for tempfiles
- [tg] Update to Unicode 6.3.0
- [RT] Restore some portability
- [tg] Fix parsing positional argument variable names
- [tg] Sprinkle a few __attribute__((__pure__)); fix warnings
- [tg] Fix build on OSX: always use our wcwidth code; only use our strlcpy(3)
  code if the OE doesn’t provide one (prompted by jonthn on IRC)
- [tg] Optimise sh -c to exec even in MKSH_SMALL
- [tg] Use new BAFH for hashing
2014-01-26 08:57:32 +00:00
wiz
430e13e39a Remove REPLACE_* section for non-existing file.
Mark as not for python-3.x.
2014-01-23 17:34:26 +00:00
chopps
a8aa4d1b81 increment the pkgrevision as we've fixed a bug 2014-01-11 18:18:46 +00:00
chopps
2768736399 Patch in fix from readline git repo for upcoming readline 6.3. This fixes
the vi-mode cc, dd, yy commands so that they actually cut/yank the text
from the input text.
2014-01-11 18:07:06 +00:00
adam
41e677f366 Revbump after updating tcl/tk. 2014-01-11 14:42:00 +00:00
jperkin
8cd101b9ed Mark NOT_FOR_PLATFORM for SunOS 5.10 and newer, no OS static libraries. 2014-01-09 12:24:41 +00:00
jperkin
f7e4b28189 Avoid linking statically on SunOS. 2014-01-09 11:46:46 +00:00
ryoon
5ddc6b149e Update to 5.0.5
* Fix build on Debian GNU/kFreeBSD 7.3
* Update MASTER_SITES

Changelog:
This is version 5.0.5 of the shell.  This is a stable release.
There are minor new features as well as bug fixes since 5.0.2.
5.0.3 and 5.0.4 were short-lived releases with most of the features of
5.0.5 that were replaced owing to significant bugs.

Incompatibilities between 5.0.2 and 5.0.5
-----------------------------------------

The "zshaddhistory" hook mechanism documented in the zshmisc manual page
has been upgraded so that a hook returning status 2 causes a history
line to be saved on the internal history list but not written to the
history file.  Previously any non-zero status return would cause
the line not to be saved on the history at all.  It is recommended
to use status 1 for this (indeed most shell users would naturally do
so).
2014-01-08 16:30:01 +00:00
obache
9b57b4605a Fix/Update DEPENDS paterns for perl CORE modules, with some trivial fixes.
Bump PKGREVISION for runtime dependency pattern changed packages.
2013-12-09 14:17:41 +00:00
jperkin
bd44a1c59e Fix build with texinfo 5.x 2013-10-31 13:08:37 +00:00
gls
a290002f0e Update shells/lshell to 0.19.6
Upstream changes:
-----------------

=== v0.9.16   14/08/2013 ===
    * Added support to login script. Thank you Laurent Debacker for the patch.
    * Fixed auto-complete failing with "-"
    * Fixed bug where forbidden commands still execute if strict=1
    * Fixed auto-completion complete of forbidden paths
    * Fixed wrong parsing &, | or ; characters
    * Added urandom function definition for python 2.3 compat
    * Corrected env variable expansion
    * Add support for cd command in aliases
    * Split lshellmodule in multiple files under the lshell directory
    * Fixed check_secure function to ignore quoted text
    * Fixed multiple spaces escaping forbidden filtering
    * Fixed log file permissions 644 -> 600
    * Added possibility to override config file option via command-line
    * Enabled job control when executing command
    * Code cleanup

=== v0.9.15.2 08/05/2012 ===
    * Corrected mismatch in aliaskey variable.
2013-10-21 19:38:15 +00:00