Commit graph

11303 commits

Author SHA1 Message Date
adam
57283e30b3 npm: updated to 6.13.1
v6.13.1:
fix(fund): support funding string shorthand
should not publish tap-snapshot folder
Add preliminary WSL support for npm and npx
print quick audit report for human output

v6.13.0:
add fund command
delete ps1 files on package removal
update supported node list to remove v6.0, v6.1, v9.0 - v9.2

v6.12.1:
add node v13 as a supported version
Fix regression in lockfile repair for sub-deps
resolve circular dependency in pack.js

v6.12.0:
Now npm ci runs prepare scripts for git dependencies, and respects the --no-optional argument. Warnings for engine mismatches are printed again. Various other fixes and cleanups.
2019-11-24 20:21:23 +00:00
adam
15544184b0 nodejs8: updated to 8.16.2
Version 8.16.2 'Carbon' (LTS):

Notable changes
deps: upgrade openssl sources to 1.0.2s


Version 8.16.1 'Carbon' (LTS):

Notable changes
This is a security release.

Node.js, as well as many other implementations of HTTP/2, have been found
vulnerable to Denial of Service attacks.
See https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md
for more information.

Vulnerabilities fixed:

CVE-2019-9511 “Data Dribble”: The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both, potentially leading to a denial of service.
CVE-2019-9512 “Ping Flood”: The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both, potentially leading to a denial of service.
CVE-2019-9513 “Resource Loop”: The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU, potentially leading to a denial of service.
CVE-2019-9514 “Reset Flood”: The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both, potentially leading to a denial of service.
CVE-2019-9515 “Settings Flood”: The attacker sends a stream of SETTINGS frames to the peer. Since the RFC requires that the peer reply with one acknowledgement per SETTINGS frame, an empty SETTINGS frame is almost equivalent in behavior to a ping. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both, potentially leading to a denial of service.
CVE-2019-9516 “0-Length Headers Leak”: The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory, potentially leading to a denial of service.
CVE-2019-9517 “Internal Data Buffering”: The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window closed so the peer cannot actually write (many of) the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the servers queue the responses, this can consume excess memory, CPU, or both, potentially leading to a denial of service.
CVE-2019-9518 “Empty Frames Flood”: The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONTINUATION and/or PUSH_PROMISE. The peer spends time processing each frame disproportionate to attack bandwidth. This can consume excess CPU, potentially leading to a denial of service.


Version 8.16.0 'Carbon' (LTS):

Notable Changes
n-api:
add API for asynchronous functions
mark thread-safe function as stable
2019-11-24 15:52:13 +00:00
adam
89d7e0a79d nodejs: updated to 10.17.0
Version 10.17.0 'Dubnium' (LTS):

Notable changes
crypto:
- add support for chacha20-poly1305 for AEAD
- increase maxmem range from 32 to 53 bits
deps:
- update npm to 6.11.3
- upgrade openssl sources to 1.1.1d
dns: remove dns.promises experimental warning
fs: remove experimental warning for fs.promises
http: makes response.writeHead return the response
http2: makes response.writeHead return the response
n-api:
- make func argument of napi_create_threadsafe_function optional
- mark version 5 N-APIs as stable
- implement date object
process: add --unhandled-rejections flag
stream:
- implement Readable.from async iterator utility
- make Symbol.asyncIterator support stable
2019-11-24 15:49:31 +00:00
nia
27ef14c49e python/tool.mk: Create linux-style python[2/3] wrappers automatically 2019-11-24 11:41:15 +00:00
adam
b731279ce6 ocaml: fix installation on Darwin + minor cleanups 2019-11-24 09:23:13 +00:00
gdt
7486b53e46 lang/perl5: Fix compiler check via pkglint
AUTOFIX: Makefile:267: Replacing "${PKGSRC_COMPILER} == \"xlc\"" with "${PKGSRC_COMPILER:Mxlc}".
2019-11-24 01:08:21 +00:00
gutteridge
d701639f2d erlang-doc: fix PLIST for 22.1 version bump 2019-11-23 22:57:19 +00:00
mef
bb72d7452a (lang/erlang-doc) regen distinfo for 22.1 2019-11-23 08:08:36 +00:00
mef
c2865d477a (lang/erlang-man) regen distinfo 2019-11-22 15:33:52 +00:00
taca
718266fd6f lang/php73: update to 7.3.12
Update php73 package to 7.3.12.

21 Nov 2019, PHP 7.3.12

- Core:
  . Fixed bug #78658 (Memory corruption using Closure::bindTo). (Nikita)
  . Fixed bug #78656 (Parse errors classified as highest log-level). (Erik
    Lundin)
  . Fixed bug #78752 (Segfault if GC triggered while generator stack frame is
    being destroyed). (Nikita)
  . Fixed bug #78689 (Closure::fromCallable() doesn't handle
    [Closure, '__invoke']). (Nikita)

- COM:
  . Fixed bug #78694 (Appending to a variant array causes segfault). (cmb)

- Date:
  . Fixed bug #70153 (\DateInterval incorrectly unserialized). (Maksim Iakunin)
  . Fixed bug #78751 (Serialising DatePeriod converts DateTimeImmutable). (cmb)

- Iconv:
  . Fixed bug #78642 (Wrong libiconv version displayed). (gedas at martynas,
    cmb).

- OpCache:
  . Fixed bug #78654 (Incorrectly computed opcache checksum on files with
    non-ascii characters). (mhagstrand)
  . Fixed bug #78747 (OpCache corrupts custom extension result). (Nikita)

- OpenSSL:
  . Fixed bug #78775 (TLS issues from HTTP request affecting other encrypted
    connections). (Nikita)

- Reflection:
  . Fixed bug #78697 (ReflectionClass::ImplementsInterface - inaccurate error
    message with traits). (villfa)

- Sockets:
  . Fixed bug #78665 (Multicasting may leak memory). (cmb)
2019-11-22 05:34:51 +00:00
taca
01e064981c lang/php72: update to 7.2.25
Update php72 package to 7.2.25.


21 Nov 2019, PHP 7.2.25

- Core:
  . Fixed bug #78656 (Parse errors classified as highest log-level). (Erik
    Lundin)
  . Fixed bug #78752 (Segfault if GC triggered while generator stack frame is
    being destroyed). (Nikita)
  . Fixed bug #78689 (Closure::fromCallable() doesn't handle
    [Closure, '__invoke']). (Nikita)

- COM:
  . Fixed bug #78694 (Appending to a variant array causes segfault). (cmb)

- Date:
  . Fixed bug #70153 (\DateInterval incorrectly unserialized). (Maksim Iakunin)
  . Fixed bug #78751 (Serialising DatePeriod converts DateTimeImmutable). (cmb)

- Iconv:
  . Fixed bug #78642 (Wrong libiconv version displayed). (gedas at martynas,
    cmb).

- OpCache:
  . Fixed bug #78654 (Incorrectly computed opcache checksum on files with
    non-ascii characters). (mhagstrand)
  . Fixed bug #78747 (OpCache corrupts custom extension result). (Nikita)

- OpenSSL:
  . Fixed bug #78775 (TLS issues from HTTP request affecting other encrypted
    connections). (Nikita)

- Reflection:
  . Fixed bug #78697 (ReflectionClass::ImplementsInterface - inaccurate error
    message with traits). (villfa)

- Sockets:
  . Fixed bug #78665 (Multicasting may leak memory). (cmb)
2019-11-22 05:33:10 +00:00
minskim
f242f1f7ee lang/rust: Fix install_name on Darwin 2019-11-20 19:07:12 +00:00
he
f584cda2cf Bump bootstrap requirements to 1.38.0 for
Linux-*-i386
Linux-*-x86_64
FreeBSD-*-i386
FreeBSD-*-x86_64
NetBSD-*-powerpc
as 1.38 is required to build 1.39.
2019-11-20 09:53:13 +00:00
adam
389985de58 py-uncompyle6: updated to 3.5.1
3.5.1:
Pypy 3.3, 3.5, 3.6, and 3.6.9 support
Improve 3.0 decompilation
- no parse errors on stlib bytecode. However accurate translation in
- control-flow and and/or detection needs work
Remove extraneous iter() in "for" of list comprehension
"for" block without a POP_BLOCK and confusing JUMP_BACK for CONTINUE.
Fix unmarshal incompletness detected in Pypy 3.6
Miscellaneous bugs fixed
2019-11-20 09:30:21 +00:00
nia
79e25acf2c erlang: Update to 22.1.7
Potential Incompatibilities

    Mnesia: Transactions with sticky locks could with async_asym transactions be committed in the wrong order, since asym transactions are spawned on the remote nodes. To fix this bug the communication protocol between mnesia nodes had to be updated, thus mnesia will no longer be able to connect to nodes earlier than mnesia-4.14 ,first realeased in OTP-19.0.
    Stdlib: Debugging of time-outs in gen_statem has been improved. Starting a time-out is now logged in sys:log and sys:trace. Running time-outs are visible in server crash logs, and with sys:get_status. Due to this system events {start_timer, Action, State} and {insert_timout, Event, State} have been added, which may surprise tools that rely on the format of these events. New features: The EventContent of a running time-out can be updated with {TimeoutType, update, NewEventContent}. Running time-outs can be cancelled with {TimeoutType, cancel} which is more readable than using Time = infinity.{rel, Name, Vsn, RelApps, Opts}.

Highlights

Compiler:

    erlc can now automatically use a compile server to avoid starting an Erlang system for each file to be compiled in a multi-file project. See the documentation for how to enable it.

Standard libraries:

    SSL: Basic support for TLS 1.3 Client for experimental use. For more information see the Standards Compliance chapter of the User's Guide.
    crypto: The Message Authentication Codes (MAC) CMAC, HMAC and Poly1305 are unified into common functions in the New Crypto API. See the manual for CRYPTO. cipher_info/1 functions returns maps with information about the hash or cipher in the argument.
2019-11-18 20:46:01 +00:00
rillig
c8f51ea698 lang/quickjs: document possible cause for the test patch 2019-11-15 20:51:23 +00:00
wiz
7a496b6d18 python: add support for more-itertools to versioned_dependencies.mk 2019-11-15 14:05:54 +00:00
rillig
fbe81cbee5 lang/quickjs: disable failing tests 2019-11-14 21:42:13 +00:00
rillig
ca34e64388 lang: added quickjs version 2019-10-27 2019-11-14 21:20:48 +00:00
rillig
5f971f3def lang/quickjs: imported version 2019-10-27
QuickJS is a small and embeddable Javascript engine. It supports the
ES2020 specification including modules, asynchronous generators and
proxies. It optionally supports mathematical extensions such as big
integers (BigInt), big floating point numbers (BigFloat) and operator
overloading.
2019-11-14 21:20:04 +00:00
adam
ece7483a6c perl5: updated to 5.30.1
what is new for perl v5.30.1

Incompatible Changes
       There are no changes intentionally incompatible with 5.30.1.  If any
       exist, they are bugs, and we request that you submit a report.  See
       "Reporting Bugs" below.

Modules and Pragmata
   Updated Modules and Pragmata
       o   Module::CoreList has been upgraded from version 5.20190522 to
           5.20191110.

Documentation
   Changes to Existing Documentation
       We have attempted to update the documentation to reflect the changes
       listed in this document.  If you find any we have missed, send email to
       perlbug@perl.org <mailto:perlbug@perl.org>.

       Additionally, documentation has been updated to reference GitHub as the
       new canonical repository and to describe the new GitHub pull request
       workflow.

Configuration and Compilation
       o   The "ECHO" macro is now defined.  This is used in a "dtrace" rule
           that was originally changed for FreeBSD, and the FreeBSD make
           apparently predefines it.  The Solaris make does not predefine
           "ECHO" which broke this rule on Solaris.

Testing
       Tests were added and changed to reflect the other additions and changes
       in this release.

Platform Support
   Platform-Specific Notes
       Win32
           The locale tests could crash on Win32 due to a Windows bug, and
           separately due to the CRT throwing an exception if the locale name
           wasn't validly encoded in the current code page.

           For the second we now decode the locale name ourselves, and always
           decode it as UTF-8.

Selected Bug Fixes
       o   Setting $) now properly sets supplementary group ids, if you have
           the necessary privileges.

       o   "readline @foo" now evaluates @foo in scalar context.  Previously,
           it would be evaluated in list context, and since readline() pops
           only one argument from the stack, the stack could underflow, or be
           left with unexpected values on it.

       o   sv_gets() now recovers better if the target SV is modified by a
           signal handler.

       o   Matching a non-"SVf_UTF8" string against a regular expression
           containing Unicode literals could leak an SV on each match attempt.

       o   "sprintf("%.*a", -10000, $x)" would cause a buffer overflow due to
           mishandling of the negative precision value.

       o   "scalar()" on a reference could cause an erroneous assertion
           failure during compilation.
2019-11-14 09:56:56 +00:00
adam
aef9068410 rust: bump boostrap on Darwin to 1.38.0 2019-11-13 18:51:11 +00:00
jperkin
724b99766f rust: Revert back to the 1.38 bootstrap for SunOS. 2019-11-13 14:56:20 +00:00
ng0
2414307b7d guile22: Add module.mk for commonly shared operations. 2019-11-12 12:41:19 +00:00
ryoon
c976ef7bdb Regen distinfo and add more patch for RPATH to fix build 2019-11-12 12:06:04 +00:00
maya
317cc1d48a perl5: evaluating this regex to force utf8_heavy.pl to load no longer works,
use a unicode 'tr///' instead.

Fixes Bugzilla checksetup.pl, which uses Safe.

Thanks to many on #perl on freenode.
PR pkg/54625
Bump PKGREVISION
2019-11-11 21:32:12 +00:00
nia
0e3a573a91 llvm: Support RISCV target.
Bump PKGREVISION
2019-11-11 19:22:28 +00:00
jperkin
5679e5cc17 rust: Bump SunOS bootstrap to the latest.
Rust 1.37 doesn't appear to be new enough to build 1.39, Cargo bails on
parsing a lock file, so a number of platforms here will need to be updated.
2019-11-11 14:56:41 +00:00
he
d9e14a82c7 Undo insertion of tabs in rust source, as this would make the
test target fail.  Thanks jperkin!
Also, bump NetBSD/sparc64 bootstrap to 1.38.
2019-11-11 10:28:34 +00:00
he
193e701204 Update rust to version 1.39.0.
Pkgsrc changes:
 * Remove patch which no longer applies (but what about RPATH?)
 * Adapt a few patches to changed files upstream.

Upstream changes:

Version 1.39.0 (2019-11-07)
===========================

Language
--------
- [You can now create `async` functions and blocks with `async fn`,
  `async move {}`, and `async {}` respectively, and you can now call
  `.await` on async expressions.][63209]
- [You can now use certain attributes on function, closure, and function
  pointer parameters.][64010] These attributes include `cfg`, `cfg_attr`,
  `allow`, `warn`, `deny`, `forbid` as well as inert helper attributes used
  by procedural macro attributes applied to items. e.g.
  ```rust
  fn len(
      #[cfg(windows)] slice: &[u16],
      #[cfg(not(windows))] slice: &[u8],
  ) -> usize {
      slice.len()
  }
  ```
- [You can now take shared references to bind-by-move patterns in the
  `if` guards of `match` arms.][63118] e.g.
  ```rust
  fn main() {
      let array: Box<[u8; 4]> = Box::new([1, 2, 3, 4]);

      match array {
          nums
  //      ---- `nums` is bound by move.
              if nums.iter().sum::<u8>() == 10
  //                 ^------ `.iter()` implicitly takes a reference to `nums`.
          => {
              drop(nums);
  //          ----------- Legal as `nums` was bound by move and so we have ownership.
          }
          _ => unreachable!(),
      }
  }
  ```

Compiler
--------
- [Added tier 3\* support for the `i686-unknown-uefi` target.][64334]
- [Added tier 3 support for the `sparc64-unknown-openbsd` target.][63595]
- [rustc will now trim code snippets in diagnostics to fit in your terminal.]
  [63402] **Note** Cargo currently doesn't use this feature. Refer to
  [cargo#7315][cargo/7315] to track this feature's progress.
- [You can now pass `--show-output` argument to test binaries to print the
  output of successful tests.][62600]

\* Refer to Rust's [platform support page][forge-platform-support] for more
information on Rust's tiered platform support.

Libraries
---------
- [`Vec::new` and `String::new` are now `const` functions.][64028]
- [`LinkedList::new` is now a `const` function.][63684]
- [`str::len`, `[T]::len` and `str::as_bytes` are now `const` functions.][63770]
- [The `abs`, `wrapping_abs`, and `overflowing_abs` numeric functions are
  now `const`.][63786]

Stabilized APIs
---------------
- [`Pin::into_inner`]
- [`Instant::checked_duration_since`]
- [`Instant::saturating_duration_since`]

Cargo
-----
- [You can now publish git dependencies if supplied with a `version`.]
  [cargo/7237]
- [The `--all` flag has been renamed to `--workspace`.][cargo/7241] Using
  `--all` is now deprecated.

Misc
----
- [You can now pass `-Clinker` to rustdoc to control the linker used
  for compiling doctests.][63834]

Compatibility Notes
-------------------
- [Code that was previously accepted by the old borrow checker, but rejected by
  the NLL borrow checker is now a hard error in Rust 2018.][63565] This was
  previously a warning, and will also become a hard error in the Rust 2015
  edition in the 1.40.0 release.
- [`rustdoc` now requires `rustc` to be installed and in the same directory to
  run tests.][63827] This should improve performance when running a large
  amount of doctests.
- [The `try!` macro will now issue a deprecation warning.][62672] It is
  recommended to use the `?` operator instead.
- [`asinh(-0.0)` now correctly returns `-0.0`.][63698] Previously this
  returned `0.0`.

[62600]: https://github.com/rust-lang/rust/pull/62600/
[62672]: https://github.com/rust-lang/rust/pull/62672/
[63118]: https://github.com/rust-lang/rust/pull/63118/
[63209]: https://github.com/rust-lang/rust/pull/63209/
[63402]: https://github.com/rust-lang/rust/pull/63402/
[63565]: https://github.com/rust-lang/rust/pull/63565/
[63595]: https://github.com/rust-lang/rust/pull/63595/
[63684]: https://github.com/rust-lang/rust/pull/63684/
[63698]: https://github.com/rust-lang/rust/pull/63698/
[63770]: https://github.com/rust-lang/rust/pull/63770/
[63786]: https://github.com/rust-lang/rust/pull/63786/
[63827]: https://github.com/rust-lang/rust/pull/63827/
[63834]: https://github.com/rust-lang/rust/pull/63834/
[63927]: https://github.com/rust-lang/rust/pull/63927/
[63933]: https://github.com/rust-lang/rust/pull/63933/
[63934]: https://github.com/rust-lang/rust/pull/63934/
[63938]: https://github.com/rust-lang/rust/pull/63938/
[63940]: https://github.com/rust-lang/rust/pull/63940/
[63941]: https://github.com/rust-lang/rust/pull/63941/
[63945]: https://github.com/rust-lang/rust/pull/63945/
[64010]: https://github.com/rust-lang/rust/pull/64010/
[64028]: https://github.com/rust-lang/rust/pull/64028/
[64334]: https://github.com/rust-lang/rust/pull/64334/
[cargo/7237]: https://github.com/rust-lang/cargo/pull/7237/
[cargo/7241]: https://github.com/rust-lang/cargo/pull/7241/
[cargo/7315]: https://github.com/rust-lang/cargo/pull/7315/
[`Pin::into_inner`]: https://doc.rust-lang.org/std/pin/struct.Pin.html#method.into_inner
[`Instant::checked_duration_since`]: https://doc.rust-lang.org/std/time/struct.Instant.html#method.checked_duration_since
[`Instant::saturating_duration_since`]: https://doc.rust-lang.org/std/time/struct.Instant.html#method.saturating_duration_since
2019-11-11 09:09:11 +00:00
maya
1cdccf2765 guile22: restore logic for different PLIST for Darwin.
(Dropping FreeBSD version rather than blindly guessing which number it is,
if it's different we might hear a report of it.)

Fixes report by Louis Guillaume on tech-pkg.
2019-11-10 17:49:21 +00:00
he
335950688a Re-work the configuration patches a bit.
Verified to build on NetBSD/{macppc,i386,amd64}.
The NetBSD/arm build fails because I can't get lang/clisp to work for it.
Bump PKGREVISION.
2019-11-10 16:58:31 +00:00
nia
3a05540c0e spidermonkey52: Requires gcc 4.8 or higher 2019-11-10 14:17:38 +00:00
he
154e453d11 Update the patch to src/runtime/Config.x86-netbsd so that this
builds again on NetBSD/i386.  Build fix so no revbump.
2019-11-08 14:42:28 +00:00
he
e5fa527527 Fix typo in patch, ref. message on pkgsrc-users@.
Build fix, so no revision bump.
2019-11-08 09:53:43 +00:00
wiz
6c3901931d openjdk11: move MAKE_JOBS_SAFE=no to NetBSD section
Requested by jperkin
2019-11-06 23:04:31 +00:00
wiz
31e9335351 openjdk11: set MAKE_JOBS_SAFE=no as a workaround for PR 54619 2019-11-06 22:55:54 +00:00
wiz
839a07641d vala: this now requires glib2 2.48 2019-11-06 14:14:09 +00:00
wiz
2744b891f4 vala: update to 0.46.3.
Vala 0.46.3
===========
 * Various improvements and bug fixes:
  - codegen:
    + Accept children after generating type specific declarations
    + Preserve full access to delegate variables and its target/destroy cvalues
    + Initialize delegate temp-var which is assigned by property getter
    + Silence warning about copying if delegate doesn't carry its target
    + Use gtype-boxed API for structs with "g_boxed_free" attribute [#863]
  - ccode: Implicitly register declaration for added CCodeFunction
  - vala: Fix compatible/disposable check between structs and their subtypes
  - vala: Don't issue a warning for non-public struct fields in bindings
  - girparser: Add required copy/free attributes for gtype-boxed structs
    and regenerate GIR-based bindings to pick up copy/free attributes [#863]
  - docs: Mention requirement of autoconf-archive as build-dependency
  - vapi: Perform syntax and semantic check for all bindings on "make check"

 * Bindings:
  - avahi-client: Fix "use of possibly unassigned parameter" warnings
  - glib-2.0: Set default_value attribute for GLib.pointer
  - gnutls: Fix "use of possibly unassigned parameter" warnings
  - tokyocabinet: Fix deprecation warnings
  - xcb: Fix "missing return statement at end of subroutine body" errors

Vala 0.46.2
===========
 * Various improvements and bug fixes:
  - vala:
    + Report dedicated error message for params-array parameter mismatch
    + Output "params" qualifier of parameters
    + Allow to override virtual interface implementations [#852]
    + Perform stricter compatibility check for delegates
  - codegen: Directly use "memmove()" while g_memmove() is deprecated
  - valadoc: Explicitly pass --pkg libgvc
  - tests: Add more tests to increase coverage

 * Bindings:
  - gio-unix-2.0: Fix DesktopAppInfo.get_string(), UnixFDMessage.steal_fds()
  - glib-2.0: DateTime.from_iso8601() can take a null TimeZone
  - gobject-2.0: Some cherry-picking from GIR generated binding
  - gstreamer: Update from 1.17.0+ git master
  - gtk4: Update to 3.96.0+bcea9652
  - gtk4: Constructors of Gtk.MediaFile needs to be static functions
  - sqlite3: Fix use of possibly unassigned parameter `errmsg'

Vala 0.46.1
===========
 * Regression and bug fixes:
  - vala: Run FlowAnalyzer on all given source-files [#843]
  - valadoc: Explicitly pass --pkg libvala@PACKAGE_SUFFIX@ as for doclets/tests

 * Bindings:
  - gio-unix-2.0: Add UnixMountEntry.get_root_path() since 2.60
  - gstreamer: Update from 1.17.0+ git master
  - gtk4: Update to 3.96.0+97231ca2
  - gtk+-3.0: Ownership mismatch of ColorButton.rgba property-accessor [#844]
  - vapi: Update GIR-based bindings

Vala 0.46.0
===========
 * Highlights:
  - Add boolean CodeContext.keep_going and corresponding compiler option

 * Various improvements and bug fixes:
  - vala:
    + Move find_parent_type_symbol/get_this_type() to SemanticAnalyzer
    + Exclude nullable simple-type structs from gobject-property support
    + Reject unary operations on nullable integer/floating/boolean type [#772]
  - codegen:
    + Don't append unreachable clean-up section of Block [#838]
    + Don't cause double-free due append_local_free() in uncaught-errors [#838]
    + Don't unconditionally add/return internal "result" variable [#838]
  - codewriter: Write "weak" modifier for properties
  - girparser: Improve evalution of instance-parameter information [#836]
    (Regenerate GIR-based bindings to pick up out/ref instance-parameters)
  - girparser/gidlparser: "value_owned = true" by default for property types
  - libvaladoc: Don't traverse into close circles with parent [#829]
  - genie: Creation methods should not be static

 * Bindings:
  - glib-2.0: Fix MutexLocker binding
  - glib-2.0: Add missing "DestroysInstance" attributes to Mutex/Locker API
  - glib-2.0: Use 'GStatBuf' as ctype for 'Stat'
  - glib-2.0: Add new symbols from 2.62
  - gio-2.0: Drop metadata for NativeSocketAddress
  - gstreamer: Update from 1.17.0+ git master
  - gtk4: Regenerate to pick up DestroyInstance attributes
  - json-glib-1.0: Change abstract methods of Serializable to virtual [#840]
  - libsoup-2.4: soup_auth_new is not a constructor but a factory method [#791]
  - vapi: Update GIR-based bindings

Vala 0.45.91
============
 * Various improvements and bug fixes:
  - vala: Init formal_target_type of built ArrayCreationExpression from
    InitializerList [#835]
  - vala: Add missing closing brace/bracket in to_string() of
    ArrayCreationExpression and InitializerList

 * Bindings:
  - cairo: Add 1.16 symbols
  - linux: Add more Input and update UserspaceInput bindings [#830]
  - sqlite3: Bind sqlite3_expanded_sql() and sqlite3_normalised_sql()

Vala 0.45.90
============
 * Various improvements and bug fixes:
  - vala:
    + Support static methods in error-domains [#829]
    + Fix mixup of target_glib_major/minor in set_target_glib_version() [#825]
    + Implicit GValue cast requires GOBJECT profile
    + NoAccessorMethod checks require GOBJECT profile
    + 'construct' is not supported in POSIX profile
  - codegen:
    + Use G_TYPE_CHECK_INSTANCE_CAST for comparisons with interfaces
    + Append line-break after G_DEFINE_AUTOPTR_CLEANUP_FUNC
    + Move private type-struct to type-definition section
    + Include required type-definition when casting from generic pointer [#828]
  - girparser: Handle "function-macro" by skipping them [gi#159]
  - valadoc: Install icons and doclets to API dependent folders

 * Bindings:
  - glib-2.0: Add new symbols and deprecations from 2.62
  - glib-2.0: Add MappedFile.from_fd constructor [#824]
  - gstreamer: Update from 1.17.0+ git master
  - posix: Fix return-value of mknod() and c-include for tcgetsid()
  - posix: Add *at() calls and related constants [#823]
  - webkit2gtk-4.0: Fix WebContext.initialize_notification_permissions()
  - x11: Fix return type of XInternAtoms and XGetAtomNames bindings
  - vapi: Update GIR-based bindings

Vala 0.45.3
===========
 * Various improvements and bug fixes:
  - vala: Add Symbol.is_extern and use/set is accordingly (#745)
  - codegen:
    + Don't write declaration of extern symbols with given header (#745)
    + Real structs are allowed by simple generics and passed as reference (#819)
    + Assign GValue result of function calls to temp-var on copy_value (#819)
  - build: Pass -no-undefined when linking libvalaccodegen (#820)

 * Bindings:
  - glib-2.0: Add binding for g_strv_equal() (since 2.60)
  - glib-2.0: Bind strcmp0 as GLib.CompareFunc<string?> (#810)
  - glib-2.0: Fix RecMutexLocker binding
  - glib-2.0: Add new symbols from 2.62
  - gstreamer: Update from 1.17.0+ git master
  - gtk4: Update to 3.96.0+b05d1676
  - xtst: Fix signature of XTest.fake_relative_motion_event()
  - vapi: Update GIR-based bindings

Vala 0.45.2
===========
 * Various improvements and bug fixes:
  - Only warn about imcompatible type of external construct property [#803]
  - codegen: Use array_length of collection variable instead of expression
  - girparser: Skip 'attribute' elements
  - girwriter: Report error on secondary top-level namespace [#805]
  - genie: Drop unused "writeonly" token
  - genie: Make 'self' match its TokenType name
  - tests: Null-terminate arrays for compatibility test of uint8 / uchar [#809]

 * Bindings:
  - gmodule-2.0: Build from GIR
  - glib-2.0: Add Unicode 12.0 symbols
  - gstreamer: Update from 1.17.0+ git master
  - gtk+-3.0: Update to 3.24.9~18177388
  - gtk4: Update to 3.96.0+8cfdd6c5
  - webkit2gtk-4.0: Update to 2.25.1
  - vapi: Update GIR-based bindings

Vala 0.45.1
===========
 * Highlights:
  - Require and target GLib >= 2.48 [#671]
  - Add support for --target-glib=auto [#761]
  - Report error for public creation methods of abstract classes [#766]
  - Report error for yield statements without async context
  - Write "Source" attribute in fast-vapi mode
  - No-accessor struct properties in GLib.Object class must be owned
  - Support GObject properties with nullable GType-based struct type [#792]
  - Always use G_TYPE_CHECK_INSTANCE_TYPE for external symbols
  - valadoc: Drop obsolete "Driver" API

 * Various improvements and bug fixes:
  - parser: Multiple corrections for source-location of code-nodes
  - build: Pass some useful G_LOG_DOMAIN definitions
  - girwriter: Mention that this file is generated and not meant to be modified
  - girwriter: Properly resolve GLib.TypeInterface instead of hardcoding it
  - girwriter: Multiple improvements and fixes for e.g. GType classes
  - girparser: Add support for string "ctype" metadata [#793]
  - codegen: Move GObject property validity checks to SemanticAnalyzer
  - When freeing local variables don't stop at "switch" on "continue" [#799]
  - compiler: Add OptionFlags.NO_ARG to deprecated "--thread" option

 * Bindings:
  - Remove vte, vte-2.90 bindings [#584]
  - Rename graphene-1.0 to graphene-gobject-1.0
  - glib-2.0: Don't annotate dedicated GLib.assert_*() functions with [Assert]
    [#769]
  - clutter-1.0: Bind Margin, PaintVolume, Point, Rect and Size as struct [#795]
  - cogl-1.0: Fix out-params in Cogl.get_modelview_matrix/projection_matrix/
    bitmasks [#794]
  - gstreamer: Update from 1.17.0+ git master
  - gtk4: Update to 3.96.0+322507f2
  - vapi: Update GIR-based bindings
2019-11-06 14:13:45 +00:00
adam
2cb4fd362d py-six: updated to 1.13.0
1.13.0
- Add `six.moves.dbm_ndbm`.
- Add `six.moves.collections_abc`, which aliases the `collections`
  module on Python 2-3.2 and the `collections.abc` on Python 3.3 and greater.
- Re-add distutils fallback in `setup.py`.
- On Python 3.7, `with_metaclass` supports classes using PEP
  560 features.
2019-11-06 09:28:21 +00:00
jperkin
28e667659e openjdk8: More SunOS/gcc patching required. 2019-11-05 22:30:15 +00:00
rillig
c18ce611ff mk: make BROKEN a list of lines, like PKG_FAIL_REASON
Packages defined the variable BROKEN inconsistently. Some added quotes,
like they are required in PKG_FAIL_REASON, some omitted them.

Now all packages behave the same, and pkglint will flag future mistakes.
2019-11-04 17:47:29 +00:00
rillig
8c6aee8563 lang: align variable assignments
pkglint -Wall -F --only aligned --only indent -r

No manual corrections.
2019-11-03 19:03:56 +00:00
rillig
ca98c4d7ad lang/erlang: write _VERSIONS variable in a single line
In the previous version, pkglint would want to indent the continuation
line with a tab. To prevent this, the variable assignment is now printed
in its canonical format.

Just like humans, pkglint does not read the "do not edit" notice at the
top of the file. Maybe it should.
2019-11-03 18:11:51 +00:00
kamil
cfcac6d0b1 lld: Cherry-pick NetBSD LLD pending patch from review
[LLD] Add NetBSD support as a new flavor of LLD (nb.lld)
https://reviews.llvm.org/D69755
2019-11-03 11:55:53 +00:00
tnn
a0f4716092 openjdk11: update to 11.0.5 GA and delete patches accepted by upstream 2019-11-03 00:37:28 +00:00
tnn
1e6d14e99d openjdk8: update to 8u232 GA
Bug fix and security update. Resolves in particular the following CVEs:
- S8213429, CVE-2019-2933: Windows file handling redux
- S8218573, CVE-2019-2945: Better socket support
- S8220302, CVE-2019-2949: Better Kerberos ccache handling
- S8221858, CVE-2019-2958: Build Better Processes
- S8222684, CVE-2019-2964: Better support for patterns
- S8222690, CVE-2019-2962: Better Glyph Images
- S8223505, CVE-2019-2973: Better pattern compilation
- S8223518, CVE-2019-2975: Unexpected exception in jjs
- S8223892, CVE-2019-2978: Improved handling of jar files
- S8224532, CVE-2019-2981: Better Path supports
- S8224915, CVE-2019-2983: Better serial attributes
- S8225286, CVE-2019-2987: Better rendering of native glyphs
- S8225292, CVE-2019-2988: Better Graphics2D drawing
- S8225298, CVE-2019-2989: Improve TLS connection support
- S8225597, CVE-2019-2992: Enhance font glyph mapping
- S8226765, CVE-2019-2999: Commentary on Javadoc comments
- S8228825, CVE-2019-2894: Enhance ECDSA operations
2019-11-02 21:31:14 +00:00
rillig
3e20ff9b0d lang/clisp: fix build failure on macOS 2019-11-02 17:02:56 +00:00
rillig
d2713097cc lang/clisp: fix pkglint warnings and notes 2019-11-02 10:20:42 +00:00
gutteridge
f43653b461 ghc7: refine NetBSD 9.x build fix for sandboxed pbulk 2019-11-01 06:10:23 +00:00