ghostscript-agpl.
Reverts revisions 1.255 and 1.254
----------------------------
revision 1.255
date: 2013/03/16 23:03:33; author: dholland; state: Exp; lines: +3 -3
print/ghostscript -> print/ghostscript-agpl
----------------------------
revision 1.254
date: 2013/03/16 21:47:14; author: dholland; state: Exp; lines: +13 -3
Choose ghostscript package for ghostscript tools based on whether
gnu-agpl-* is in ACCEPTABLE_LICENSES.
This is mostly the same as the old ghostscript type logic that was
removed in version 1.223.
All:
- Fixed a typo in include/schily/stat.h related to nanosecond
handling for NetBSD and OpenBSD
- New autoconf tests for sys/capability.h and cap_*() functions
from Linux -lcap
WARNING: If you do not see this:
checking for cap_get_proc in -lcap... yes
checking for cap_get_proc... yes
checking for cap_set_proc... yes
checking for cap_set_flag... yes
checking for cap_clear_flag... yes
your Linux installation is insecure in case you ever use the
command "setcap" to set up file capabilities for executable commands.
Note that cdrtools (as any other command) need to be capabylity aware
in order to avoid security leaks with enhanced privileges. In most
cases, privileges are only needed for a very limited set of operations.
If cdrtools (cdrecord, cdda2wav, readcd) are installed suid-root, the
functions to control privileges are in the basic set of supported
functions and thus there is no problem for any program to control it's
privileges - if they have been obtained via suid root, you are on a
secure system.
If you are however on an incomplete installation, that supports to
raise privileges via fcaps but that does not include developer support
for caps, the programs get the privileges without being able to know
about the additional privileges and thus keep them because they cannot
control them.
WARNING: If you are on a Linux system that includes support for
fcaps (this is seems to be true for all newer systems with
Linux >= 2.6.24) and there is no development support for capabilities
in the base system, you are on an inherently insecure system that allows
to compile and set up programs with enhanced privileges that cannot
control them.
In such a case, try to educate the security manager for the related
Linux distribution. Note that you may turn your private installation
into a secure installation by installing development support for libcap.
- The autofconf tests for broken Linux kernel headers now avoid to
warn for /usr/src/linux/include if this directory is missing.
- include/schily/priv.h now includes sys/capabilitiy.h if available.
Libscg:
- Trying to support suid-root-less installation of librscg users on Linux.
librscg now understands that a non-root program may be able to
create sockets for a privileged port.
Cdrecord:
- Trying to support suid-root-less installation of cdrecord on Linux.
NOTE: You need "file caps" support built into your Linux installation.
Call:
setcap cap_sys_resource,cap_dac_override,cap_sys_admin,cap_sys_nice,cap_net_bind_service,cap_ipc_lock,cap_sys_rawio+ep /opt/schily/bin/cdrecord
To set up the capabilities on Linux.
Cdda2wav (Maintained/enhanced by Jörg Schilling, originated by Heiko Eißfeldt heiko@hexco.de):
- Trying to support suid-root-less installation of cdda2wav on Linux.
NOTE: You need "file caps" support built into your Linux installation.
Call:
setcap cap_dac_override,cap_sys_admin,cap_sys_nice,cap_net_bind_service,cap_sys_rawio+ep /opt/schily/bin/cdda2wav
To set up the capabilities on Linux.
Readcd:
- Trying to support suid-root-less installation of readcd on Linux.
NOTE: You need "file caps" support built into your Linux installation.
Call:
setcap cap_dac_override,cap_sys_admin,cap_net_bind_service,cap_sys_rawio+ep /opt/schily/bin/readcd
To set up the capabilities on Linux.
Scgcheck:
- Link now against $(LIB_CAP) also as librscg needs it on Linux
Scgskeleton:
- Link now against $(LIB_CAP) also as librscg needs it on Linux
Btcflash:
- Link now against $(LIB_CAP) also as librscg needs it on Linux
Mkisofs (Maintained/enhanced by Jörg Schilling since 1997, originated by Eric Youngdale):
- -new-dir-mode now just superseeds the effect of -dir-mode on
directories that have been "invented" by mkisofs.
This is a more intuitive behavior.
- Link now against $(LIB_CAP) also as librscg needs it on Linux
Ispell dictionary for Kurdish.
The original word list used for this package was augmented using Scannell's web
crawling software and then hand-checked.
pkgsrc-wip in 2004 by Chris Pinnock (cjep@users.sourceforge.net) References
PR pkg/25023
This package provides the dictionaries and affix files for spellchecking
of Lithuanian texts.
The latest version of the affix tables and dictionaries can be found
at ftp://ftp.akl.lt/ispell-lt/ . The mailing list of the project is
available at https://lists.akl.lt/mailman/listinfo/ispell-lt . A
browsable web interface to the project CVS repository is available at
http://sraige.mif.vu.lt/cvs/ispell-lt/
The software is available under the provisions of a BSD-style license.
The full text of the license is available in the COPYING file.
The project has been sponsored by the Information Society Development
Committee of the Government of Republic of Lithuania.
Moved textproc/ispell-base to textproc/ispell
Moved textproc/ispell-british to ispell-en_GB
Moved textproc/ispell-catalan to textproc/ispell-ca
Updated textproc/ispell-emacs to 3.6nb4
Moved textproc/ispell-francais to ispell-fr
Moved textproc/ispell-gaeilge to ispell-ga
Moved textproc/ispell-german to ispell-de
Moved textproc/ispell-polski to ispell-pl
Moved textproc/ispell-romanian to ispell-ro
Moved textproc/ispell-russian to ispell-ru
Moved textproc/ispell-russian-io to ispell-ru-io
Moved textproc/ispell-slovak to ispell-sk
Moved textproc/ispell-spanish to ispell-es
Moved textproc/ispell-svenska to ispell-sv
1) Shorter package name;
2) Be consistent with kde3-l18n-*, kde4-l10n-*, hunspell-*, aspell-*,
lang-* PKG_OPTIONS;
3) Simplify modifications to PKGNAME in some Makefiles;
4) Accordance with international language naming standards;
and rename the ispell-base package to ispell, to be consistent with aspell
and hunspell. Bump PKGREVISION where necessary.
Increase the default timeout for running the NetBSD test
suite from 2 hours to 3 hours.
Add support for installing the new "debug" set, and add a new
man page section on using anita for debugging NetBSD.
Organize the BUGS section of the man page into sections,
and add links to four more qemu 1.x regressions.
Add Kuya support, based on patch from Julio Merino.
New command line option "--version".
Support booting i386 and amd64 from boot-com.iso instead
of the boot floppies, attaching a second virtual CD-ROM drive
for the install sets. Enable with "--boot-from cdrom".
Fix the Anita 1.2 backwards compatibility Release class.
Also, satisfy the qemu dependency using emulators/qemu0 rather
than emulators/qemu because the latter does not work on NetBSD 5.
- again change protocol codes passed to OSX, as they're not only
reserved codes, but also case-sensitive. Use the ones an OSX user
reports work properly. Thanks: Tim Gray.
Add portability fix for example from upstream, instead of not building it
(thanks, Jean-Paul Saman <jpsaman@videolan.org>).
No change to binary package, so no PKGREVISION bump.
thread stacks.
<martin> base pixman only enables sse2 for amd64
<martin> I only tested and found it crash like that, so I did not enable it
<martin> for i386 in base
This is a workaround - there should be some better solution.
this version yet.
Changes between 1.0.0 and 1.1.0:
--------------------------------
* Remove deprecated APIs and bump library version.
* Corrected use of dvbpsi_ValidPSISection() to not use b_syntax_indicator as check,
the function tries to always check the CRC32 of the given PSI section. Take care
to only use the function for PSI sections that have a CRC32 field. Use the function
dvbpsi_has_CRC32() for this purpose.
* Remove workaround for checking CRC32 in TOT PSI table.
* Add function dvbpsi_CalculateCRC32() to calculate a CRC32 on the payload.
* Fix offset for description parsing in tables;
- CAT
- BAT
- TOT
- NIT
* New descriptor:
- 0x54 content descriptor
* EIT: add NVOD event detection.
Collection.
Paris Traceroute is a new version of the well-known network diagnosis and
measurement tool.
traceroute fails in the presence of routers that employ load balancing on
packet header fields. The failures lead to the discovery of inaccurate and
incomplete paths, that may mislead operators during problem diagnosis and
result in erroneous internet maps.
Paris traceroute, by controling packet header contents, obtains a more precise
picture of the actual routes that packets follow.
Upstream changes:
1.59 2013-04-20
- This release is based on version 2013c of the Olson database. This release
includes contemporary changes for Palestine and Paraguay. It also includes a
number of historical changes.
Makefile
* xmlto is just required to docbook_docs, move dependency to `doc' option.
* remove buildlinking to gobject-introspection, it is alrady in option.mk
conditionally.
* gdk_pixbuf2 is really requied by this package, drop specification of `build'
dependency.
* exactly specify required glib2 version.
* from NEWS, libnotify>=7.0 use GBus instead of dbus-glib, so drop dependency
on dbus and dbus-glib.
* change dependency on gtk3 to `build', it is just required to test build.
buildlink3.mk
* change ABI_DEPENDS to reasonable version.
* drop `doc' and `introspection' option condition handling , it will not affect
to packages usind this file or should be handled packages by themselves.
* drop buildlinking to dbus and dbus-glib and add to gdk-pixbuf2, same reason
as Makefile.
options.mk
* gtk-doc documents are already in release taball, so dtk-doc is not required
to build, reuse as docbook-docs to match PLIST.doc condition.
* exactly specify required gobject introspection version.
Bump PKGREVISION.
