generalise the linker flags used to export symbols by setting them on
a per-OS basis.
> many packages force -Wl,-export-dynamic which is not portable outside GNU ld
> and cause problems e.g. on Solaris. some of these packages use if
> conditionals either only for NetBSD or except SunOS, but the state is not
> coherent and it may complicate later when support for new OS is added to
> pkgsrc (e.g. ongoing work on HP-UX support).
>
> jlam proposed the following framework in discussion on tech-pkg:
>
> http://mail-index.netbsd.org/tech-pkg/2002/06/21/0009.html
>
> now, ${EXPORT_SYMBOLS_LDFLAGS} is used instead of directly defining
> -Wl,-export-dynamic which is set in appropriate defs.*.mk to reasonable
> values. packages should be converted to this framework by:
>
> 1) replacing LDFLAGS+= -Wl,-export-dynamic and LIBS+= -export-dynamic with:
>
> LDFLAGS+= ${EXPORT_SYMBOLS_LDFLAGS}
>
> 2) for use in patchfiles, add this variable to MAKE_ENV if needed:
>
> MAKE_ENV+= EXPORT_SYMBOLS_LDFLAGS=${EXPORT_SYMBOLS_LDFLAGS}
>
> 3) replace occurances of -Wl,-export-dynamic and -export-dynamic in patch
> files with:
>
> $(EXPORT_SYMBOLS_LDFLAGS)
- Applied OpenSSL ASN.1 patch
- New Certum CA root certificate and updated old roots
- Fixed problem with untrusted HTML content being inserted into
Directory listings (buffer overrun)
BINS 1.1.15
-----------
- New parameter linkInsteadOfCopy has been added, to create a link to
the image in the destination directory instead of copying it, when
it's possible.
Patch from Vincent Bernat.
- Correct a bug that crashed bins with Perl 5.8.0
Patch from Marty Leisner
- Include links for movie files (avi, mpeg and mov) in the navigation
bar of albums ("In this album" upper left box).
Patch from Vincent Cautaer.
- Scale method (to created scaled pictures and thumbnails) can now be
chose with the new scaleMethod parameter. It can be either scale or
sample. sample is faster, scale is better.
Idea from Mark W. Eichin.
- Don't perform rotation on files matching the regexp defined by the
new noRotation parameter (default to _Orig suffix). This can be used
in conjunction with scaleIfSameSize=0 and a scaled size of 100%x100%
to keep original pictures in your album.
Patch from Vincent Cautaer.
- Correct a bad behavior with some little pictures when scaled sizes
uses mixed pixels and percentages.
Patch from Vincent Cautaer.
- jpegtran can now be used with image names containing spaces.
Patch from Vincent Bernat.
- Define $verbose earlier to avoid warning.
Patch from Vincent Bernat.
- Chop local encoding to avoid carrier return.
Patch from Vincent Bernat.
- A sample album.xml file is provided in the doc directory. Take a
look at it to see how you can customize a album.
- New Feature: HTML::Template will combine HTML_TEMPLATE_ROOT
environment variable and path option if both are
available. (Jesse Erlbaum)
- New Feature: __counter__ variable now available when
loop_context_vars is set (Simran Gambhir)
- New Feature: The default attribute allows you to specify
defaults for <tmpl_var> tags.
- Bug Fix: fixed parser to reject <tmpl_var>s with no names.
(crazyinsomniac)
- Doc Fix: fixed documentation to correctly describe the
interaction of case_sensitive and loop_context_vars.
(Peter Claus Lamprecht)
- Doc Fix: updated mailing-list information to reflect move from
vm.com to sourceforge.net
* SECURITY: [CAN-2002-0661] Close a very significant security hole that
applies only to the Win32, OS2 and Netware platforms. Unix was not
affected, Cygwin may be affected. Certain URIs will bypass security
and allow users to invoke or access any file depending on the system
configuration. Without upgrading, a single .conf change will close
the vulnerability. Add the following directive in the global server
httpd.conf context before any other Alias or Redirect directives;
RedirectMatch 400 "\\\.\."
Reported by Auriemma Luigi <bugtest@sitoverde.com>.
[Brad Nicholes]
* SECURITY: Close a path-revealing exposure in multiview type
map negotiation (such as the default error documents) where the
module would report the full path of the typemapped .var file when
multiple documents or no documents could be served based on the mime
negotiation. Reported by Auriemma Luigi <bugtest@sitoverde.com>.
[CAN-2002-0654] [William Rowe]
* SECURITY: Close a path-revealing exposure in cgi/cgid when we
fail to invoke a script. The modules would report "couldn't create
child process /path-to-script/script.pl" revealing the full path
of the script. Reported by Jim Race <jrace@qualys.com>.
[CAN-2002-0654] [Bill Stoddard]
* More bug fixes (see the CHANGES file)
* Improved application and layout performance
* Improved stability
* Improved Web site compatibility
* Improved CSS, DOM and HTML standards support
* Distinct window icons for the different Mozilla applications (artwork contributed by Grayrest).
* Mozilla can now trigger MS DUN when started without a connection.
* Fullscreen mode for Mozilla on Linux (press F11).
* Browser tabs now close left to right (they used to close right to left).
* The tab bar now has a button for creating new tabs.
* All Search entry points now use your default search engine.
* Download Manager has been enabled as the default download view (with many improvements)
* Autocomplete in the location bar has more intelligent completion.
* The Linux File Picker has improved filtering and a new directory button.
* File extensions more accurately handled in downloads and we save the correct files when saving complete Web pages
* Drag and drop support has been greatly improved.
* View selection source: Context clicking on a selection now lets you view the HTML source for the selected area.
* Page info displays more page info with improved General and Media tab content.
* New button in prefs for making Mozilla the system default browser on MS Windows
* MathML is now enabled for Mozilla on Macintosh (it was already available on Windows and Linux).
* Mozilla now takes advantage of Quartz rendering for users of Mac OS X 10.1.5
* Better Bi-Di Arabic and Hebrew support including improved layout of Arabic pages on Linux and other platforms without their own Arabic shaping support.
* We have new layout performance enhancements targeted at DHTML.
* Mozilla now has support for the display of XBM images.
* Image and plug-in blocking for Mail & News
* Mozilla allows you to view HTML mail messages as plain text.
* You can now quote the current message in a Mail compose window with Quote Original under the options menu.
* The JavaScript Debugger has gone through a major development cycle. It now sports a palette of nine views which can be rearranged within the main window or docked in separate floating windows. It is also possible to create user-defined views and commands directly with JavaScript. More details are available in the FAQ, newsgroup, or IRC channel.
* Chatzilla has improved tab completion and can now join channels with Japanese names.
buildlink2.mk files back into the main trunk. This provides sufficient
buildlink2 infrastructure to start merging other packages from the
buildlink2 branch that have already been converted to use the buildlink2
framework.
jaco at scrogneugneu.org.
Changes since 1.1.10 are:
- Some image files and directories can now be excluded by setting some
regexp to excludeFiles and excludeDirs new parameters. excludeDirs is
set to ^CVS$ in default config, and thus, CVS subdirs aren't processed
by bins now.
- HTML generation performances have been increased by using the
blind_cache parameter of HTML::Template.
Thanks to Mark Eichin for this one.
- Corrected a bug that wrongly set width and height of thumbnails and
prevented Internet Explorer (at least version 5) to display them.
- Changed the image template so that Internet Explorer can display the
title tooltip on the prev/next thumbnails (when thumbPrevNext is 1).
- bins now process .thm (THuMbnail) files. Accroding to Mark Eichin,
Canon cameras that do movies generate mvi*.thm files which are really
small JPEGs with exif data.
- It is now possible to use the <sizes> parameter in picture
description files to have different scaled images number and scaled
sizes for pictures in the same album (for example, one can have three
scaled pictures, small, medium and big, for most of the images of an
album, and a fourth one, huge, for big panoramas). Some other
parameters, such as titleOnThumbnail, defaultSize or
thumbnailBackground, can now also be used on a per image basis.
- A bug introduced in 1.1.10 version that caused scaleIfSameSize
parameter to be always 1 has been corrected.
Thanks to Mark Eichin for pointing out the problem
and to Dan (mcmahill @ mtl.mit.edu) and Kamil Iskra for the correction path.
- jpegtran can now be used even if it cannot handle the same file in
input and output (this is the case for the jpegtran shipped with most
GNU/Linux distribution, except Debian).
Patch from Kamil Iskra.
- Corrected encoding problem on creation date.
- Sorting order for directories and/or pictures can now be reversed,
using the -r command line option or the reverseOrder parameter.
Patch from Christian Hoenig for the -r option.
- A bug on automatic rotation of destination image when -o was used
has been corrected (width and height were inversed).
- French translation has been corrected.
- Some javascript code is now added in thumbnails pages to preload
thumbnails of the next page when current one is loaded, to speed up
the album browsing. This can be deactivated with the new
javaScriptPreloadImages parameter.
- Generated HTML code is now cleaned up to reduce the size of pages
and thus, speed up browsing. This reduces the size of HTML BINS files
by about 30%. This uses the HTML::Clean(3) library (new
dependency). This can be deactivated with the new compactHTML
parameter.
- Use of the jpegtran program is now deactivated in default config
(some versions fail to perform rotation correctly). A new parameter
rotateWithJpegtran has been added. Set it to 1 in binsrc to continue
to use jpegtran.
- Added some non breakable spaces in HTML code.
- Strip . (dots) in small size names when creating file names (this
caused problem with italian i18n). You may have to delete all your
generated HTML files before running bins on a old italian album to
clean it up.
- Some minor bugs have been corrected.
- French translation has been corrected.
o allow -X mode to work for "/"
o work on systems without MADV_SEQUENTIAL
o make a local cut-down copy of "queue.h" (fixes linux & solaris
support at the very least)
o portability fixes for pre-ipv6 socket api systems (eg, solaris 7)
o portability fixes for missing _PATH_DEFPATH, LOG_FTP and __progname
o better documentation on virtual host support
Restore perl-5.004 and perl-5.005 compatibility.
Direct support for some new schemes urn:, urn:isbn:,
urn:oid:, rtsp:, and rtspu:. The rtsp support was
contributed by Matt Selsky <selsky@columbia.edu>.
The host for URI::file was not unescaped.
* Added basic --verify mode, to check whether the remote copy of a
site using safe mode has been modified outside sitecopy's control.
* Added Norwegian Nynorsk translation, nn.po (Karl Ove Hufthammer
<huftis@bigfoot.com>)
* Added 'http tolerant' option, to skip OPTIONS check in WebDAV mode.
And many fixes & updates.
that has some support for tables and frames, builds against openmotif, and
is also IPv6 capable! The name stands for "mbone" Mosaic, but that part
probably doesn't even work (yet).
[For real this time -- previous try misspelled the name of the directory.]
* escape blanks and other non-7bit graphic characters in startfile and similar
addresses to guard against interpreting the address as multiple lines
during a GET, etc (report by Ulf Harnhammar <ulfh@Update.UU.SE>) -TD
Bug Fixes:
Discard POST/PUT requests that have negative content-lengths. Make the
CanonicaliseHost() function robust to bad IP addresses. Fix some memory leaks,
free some unfreed memory. Don't give socket error using '-f' option. Fix
compilation on Cygwin. Fix IPv6 compilation on Solaris 9. Bug fix for v2.7c
Cookie change. Don't replace '//' in a URL path with '/'.
- Recognises Netscape 7 browser. Also better diagnosis of Windows
operating systems for Netscape and Mozilla browsers.
- New version of IIS How-To.
- Later UNCOMPRESS commands now correctly override earlier ones.
- SEARCHCHARCONVERT can now be turned on for multibyte character sets,
though it's not recommended.
- French report descriptions files.
- New versions of Polish and alternative Swedish language files.
- East Timor country code is now .tl.
Rearrange several bits of the rrdtool build mechanism so that we're not
cheating quite as much. The end result is that rrdtool now compiles on
both ELF and a.out.
Closes pkg/14606 from Tim Preston <tim at flibble dot org>
M. Bishop (wwwoffle's author/maintainer). With this, if IPv6-mapped IPv6
addresses are enabled, attempting to bind the wildcard address for both
protocols is not a fatal error.
partially revert Makefile, v1.32, so platforms without openssl-0.9.6e
in base will be able to find libssl.so.300 and libcrypto.so.300 for
binaries linked against libwwwwwl.so. Bump pkgrevision to reflect the
change in dependencies on platforms without openssl-0.9.6e in base.
changes since bozohttpd 5.12:
o support .mp3 files (type audio/mpeg)
o use stat() to find out if something is a directory, for -X mode
changes since bozohttpd 5.11:
o constification
o fixes & enhancements for directory index mode (-X)
squidGuard is a combined filter, redirector and access controller plugin
for Squid. It can be used to:
* limit the web access for some users to a list of accepted/well known web
servers and/or URLs only.
* block access to some listed or blacklisted web servers and/or URLs
for some users.
* block access to URLs matching a list of regular expressions or words
for some users.
* enforce the use of domainnames/prohibit the use of IP address in URLs.
* redirect blocked URLs to an "intelligent" CGI based info page.
* redirect unregistered user to a registration form.
* redirect popular downloads like Netscape, MSIE etc. to local copies.
* redirect banners to an empty GIF.
* have different access rules based on time of day, day of the week, date etc.
* have different rules for different user groups.
* and much more..
Changes in release 0.21.3:
* Fix segfault if using proxy server with SSL session and server
certificate verification fails.
* Fix leak of proxy hostname once per session (if a proxy is used).
* Add --with-libs configure argument; e.g. --with-libs=/usr/local picks
up any support libraries in /usr/local/{lib,include}
Changes in release 0.21.2:
* Fix 'make install' for VPATH builds.
* Use $(mandir) for installing man pages (Rodney Dawes).
* Follow some simple (yet illegal) relativeURI redirects.
* Always build ne_compress.obj in Win32 build (Branko Èibej).
* Fix decompression logic bug (Justin Erenkrantz <jerenkrantz@apache.org>)
(could give a decompress failure for particular responses)
* Fix ne_proppatch() to submit lock tokens for available locks.
* More optimisation of ne_sock_readline.
Changes in release 0.21.1:
* Don't include default SSL port in Host request header, which can
help interoperability with misbehaving servers (thanks to Rodney Dawes
<dobey@ximian.com>).
* Don't give a "truncated response" error from ne_decompress_destroy if
the acceptance function returns non-zero.
* Fix for Win32 build (Sander Striker <striker@apache.org>).
* Fix for cookie name/value being free()d (thanks to Dan Mullen).
* Optimisation of ne_sock_readline.
Changes in release 0.21.0:
* Socket layer implements read buffering; efficiency and performance
improvement. Based on work by Jeff Johnson <jbj@redhat.com>
* Cleanup of socket interface:
- renamed everything, s/sock_/ne_sock_/, s/SOCK_/NE_SOCK_/
- removed unused and inappropriate interfaces.
- renaming done by Olof Oberg <mill@pedgr571.sn.umu.se>
- see src/ChangeLog for the gory details.
* Fix typoed 'ne_destroy_fn' typedef (Olof Oberg).
* Support OpenSSL/ENGINE branch.
* Bogus ne_utf8_encode/decode functions removed.
* ne_base64() moved to ne_string.[ch].
* ne_token drops 'quotes' parameter; ne_qtoken added.
* ne_buffer_create_sized renamed to ne_buffer_ncreate.
* ne_xml_get_attr takes extra arguments and can resolve namespaces.
* ne_accept_response function type takes const ne_status pointer.
* Drop support for automatically following redirects:
- ne_redirect_register just takes a session pointer
- ne_redirect_location returns an ne_uri pointer
* configure changes: --with-ssl and --with-socks no longer take a directory
argument. To use SOCKS or SSL libraries/headers in non-system locations,
use ./configure CPPFLAGS=-I/... LDFLAGS=-L/...
* Reference documentation included for most of ne_alloc.h and ne_string.h,
and parts of ne_session.h and ne_request.h.
- see installed man pages, HTML documentation.
Changes in release 0.20.0:
* Major changes to DAV lock handling interface (ne_locks.h):
- struct ne_lock uses a full URI structure to identify locked resource
- ne_lock() requires that owner/token fields are malloc-allocated (or NULL)
on entry
- introduce a "lock store" type, ne_lock_store, to replace the lock session;
accessor functions all renamed to ne_lockstore_*.
- ne_lock_iterate replaced with a first/next "cursor"-style interface
- If: headers use an absoluteURI (RFC2518 compliance fix).
- fix for handling shared locks on DAV servers which return many active locks
in the LOCK response (thanks to Keith Wannamaker)
* Moved URI/path manipulation functions under ne_* namespace (ne_uri.h):
- path handling functions renamed to ne_path_*
- URI structure handling to ne_uri_*; struct uri becomes ne_uri.
- ne_uri_parse doesn't take a 'defaults' parameter any more
- if URI port is unspecified, ne_uri_parse sets port to 0 not -1.
- added ne_uri_unparse and ne_uri_defaultport functions.
* New 'ne_fill_server_uri' function to initialize a URI structure with
the server details for a given session (useful with locks interface).
* ne_decompress_{reader,destroy} are defined as passthrough-functions
if zlib support is not enabled.
* API change: ne_ssl_provide_fn returns void not int.
* Added NE_SSL_FAILMASK for verify failure sanity check.
* Removed return codes NE_SERVERAUTH and and NE_AUTHPROXY; correct
documentation, NE_PROXYAUTH is given for proxy auth failure.
* Require zlib >= 1.1.4 to avoid possible vulnerability in earlier versions.
See http://www.gzip.org/zlib/advisory-2002-03-11.txt for more details.
(version check can be skipped by passing --with-force-zlib to configure)
* New 'ne_ssl_readable_dname' function to create a human-readable string
from an X509 distinguished name.
* Fix support for newer versions of libxml2 (thanks to Jon Trowbridge
<trow@gnu.org>).
* Fix corruption of reason_phrase in status object returned by
ne_propset_status.
* More lenient handling of whitespace in response headers.
* ne_content_type_handler will give a charset of "ISO-8859-1" if no charset
parameter is specified for a text/* media type (as per RFC2616).
* Miscellaneous cleanups and fixes (Jeff Johnson <jbj@redhat.com>).
Changes in release 0.19.4:
* Support bundled build of expat 1.95.x (Branko Èibej).
Update submitted by Joel Wilsson <joelw@unix.se> in PR 17812.
PTHREAD_OPTS. This allows us to ignore the "require" inherited from the
glib/buildlink.mk file, which was originally causing "require native" to
be used for mozilla and was causing build problems on platforms without
native pthreads.
comes from devel/glib/buildlink. devel/glib requires a pthread library but
www/mozilla optionally wants a native pthread library. Checking for
PTHREAD_TYPE != "native" will work, but we may want to consider expanding
the capabilities of pthread.buildlink.mk to cover this scenario.
size and in the correct format, it is not re-encoded (losing quality)
anymore but just copied.
Problem noted by Jeff McMahill. Andrew Brown and Jaromir Dolecek helped
me with perl.
Bump PKGREVISION.
Give Apache a user and group by default, not only with suexec.
The variables for this have changed from APACHE_SUEXEC_USER and
APACHE_SUEXEC_GROUP to APACHE_USER and APACHE_GROUP.
Mention 'Apache' in COMMENT.
Use variables for the version number instead of copying it around.
Bump PKGREVISION.
For apache{,6}:
Change paths to /var/httpd instead of /var/spool/httpd.
Honour STRIPFLAG.
Add --without-confadjust as configure argument.
Enable the 'define' module.
For apache:
Enable proxy module on NOPIC platforms.
Some of these changes are based on pkg/17469 by Greg A. Woods, some on
comments by Johnny Lam.
Reviewed by Johnny Lam.
Changes since 5.10:
o more man page fixes from Thomas Klausner
o de-K&R C-ification
o fix Date: header for daemon mode
o fix core dump when asking for /cgi-bin/ when CGI isn't configured
o use a valid Server: header
hard coding /etc/bins.
install a default binsrc as an example which can be copied to
${PKG_SYSCONFDIR}/bins/binsrc and/or ~/.bins/binsrc
bump PKGREVISION to bins-1.1.10nb1
"file" is in "path"'s allocation. This fixes a bug where the server task
would randomly try to acces a file as a directory, and fail. Bump
PKGREVISION, as this was a fairly serious bug.
* Fix diffs between tags
* Fix duplicate accesskeys and id's in the "front" page
* Fix typo in JavaScript download window parameter
* Include query string in JavaScript download links in order to unbreak
downloads from non-default CVS roots
* Don't display @ForbiddenFiles in directory listings; also make sure their
logs are not accessible via direct URLs
* Fix dir sort order breakage when there are rogue files in the repository
dir and the sort order is not by file name
* Add -f; avoid reading ~/.cvsrc
Bug Fixes:
Install two DLLs for the Win32 version. Don't crash for HTTP servers that send
headers prefixed with whitespace. Make the "edit selected entry" option work.
Don't write uncompressed data to the cache with a header saying it is
compressed. Be more lenient in detecting spiders that cannot make requests.
The wwwoffle-tools programs now handle dir names as if they had http:// in
front. Disallow wwwoffle requests for protocols that WWWOFFLE does not
handle. Use the command line config filename in error messages. Fix to allow
compilation on SGI IRIX. Handle XHTML style tags when modifying HTML. Updated
setuid/setgid code. Some memory leaks removed and potential crashes removed
due to using lint).
New Features:
Split up Set-Cookie headers since browsers can't handle them.
Don't request deflated data since WWWOFFLE and servers don't agree on format.
Added a form on the monitor options page to stop monitoring a URL.
The confirm-requests option now asks for confirmation for page reloads.
Documentation:
Update FAQ to reference privoxy as well as JunkBuster.
Describe how to modify htdig templates to work with WWWOFFLE.
