Commit graph

361709 commits

Author SHA1 Message Date
jperkin
9c51592bc2 *: Remove hardcoded -liconv / -lintl on SunOS.
This is now handled centrally via OPSYS_EXPLICIT_LIBDEPS support in libiconv
and gettext-lib.
2022-08-09 12:08:27 +00:00
pin
0cde9736f5 doc: Updated archivers/arqiver to 0.9.0nb3 2022-08-09 12:06:40 +00:00
pin
62fe7a9819 archivers/arqiver: switch build to cmake 2022-08-09 12:06:15 +00:00
pin
d5b660d581 doc: Updated editors/feathernotes to 1.0.0 2022-08-09 12:05:24 +00:00
pin
b1e0e1f01b editors/feathernotes: update to 1.0.0
pkgsrc changes:
-switch build to cmake.

upstream changes:
-Removed "Embed Image" from the toolbar to make it uncluttered.
2022-08-09 12:05:01 +00:00
jperkin
250581c6c7 ruby: Pull in libiconv. 2022-08-09 11:32:47 +00:00
jperkin
c8d7a85bde mk: Add OPSYS_EXPLICIT_LIBDEPS and enable on SunOS.
Most systems use GNU ld, which will happily pull in symbols required by a
program even if they are only available via implicit library dependencies.  The
SunOS linker is stricter, and if a program uses a symbol then the library that
defines that symbol must be an explicit dependency.

This mostly causes problems with libiconv and libintl, both of which Linux
bundles in its C library, so a lot of third-party software does not correctly
check for them.  Until now we've had to add many, many overrides, along with
variables such as BROKEN_GETTEXT_DETECTION which nowadays only has limited
effectiveness.

The situation appears to be getting worse, especially with software built with
meson, and so both libiconv and gettext-lib will now automatically add the
correct LDFLAGS if the OPSYS sets OPSYS_EXPLICIT_LIBDEPS=yes.

This isn't perfect.  For one it isn't really an OPSYS setting as you can try to
use GNU ld on SunOS, it just doesn't work very well.  It should also really be
done via the wrappers rather than exposing LDFLAGS, but we do not yet have an
approved patch for doing this.  However it does improve the current situation.
2022-08-09 11:31:14 +00:00
pin
81a55b0f86 doc: Updated shells/ksh93 to 1.0.1 2022-08-09 06:38:01 +00:00
pin
523a57ffa2 shells/ksh93: update to 1.0.1
Submitted by Paolo Vincenzo Olivo on pkgsrc-users.

## ksh 93u+m/1.0.1

This is an urgent bugfix release that removes an incorrect exec
optimization that was capable of terminating the execution of scripts
prematurely in certain corner cases. It is known to make the build
scripts of GNU binutils produce corrupted results if ksh is used as
/bin/sh. See #507 for more information.

No other breakage resulting from this bug is known yet, but other
breakage probably exists. Every 1.0.0 user should update to 1.0.1 ASAP.

## ksh 93u+m/1.0.0

Roughly a thousand bugs have been fixed, including many serious/critical
bugs. See the NEWS file for more information, and the git commit log for
complete documentation of every fix. Incompatible changes have been
minimised, but not at the expense of fixing bugs. For a list of
potentially incompatible changes, see src/cmd/ksh93/COMPATIBILITY.

Though there was a "no new features, bugfixes only" policy, some new
features were found necessary, either to fix serious design flaws or to
complete functionality that was evidently intended, but not finished.
Below is a summary of these new features.

New command line editor features:

- The forward-delete and End keys are now handled as expected in the
  emacs and vi built-in line editors.

- In the vi and emacs line editors, repeat counts can now also be used for
  arrow keys and the forward-delete key, e.g., <ESC> 7 <left-arrow> works.

- Various keys on extended PC keyboards are now handled as expected in the
  emacs and vi built-in line editors.

New shell language features:

- Pathname expansion (a.k.a. globbing) now never matches the special names
  '.' (current directory) and '..' (parent directory). This change makes a
  pattern like .* useful; it now matches all hidden files (dotfiles) in the
  current directory, without the harmful inclusion of '.' and '..'.

- Tilde expansion can now be extended or modified by defining a .sh.tilde.get
  or .sh.tilde.set discipline function. See the manual for details.

- The &>file redirection shorthand (for >file 2>&1) is now available for all
  scripts and interactive sessions and not only for profile/login scripts.

- Arithmetic expressions in native ksh mode no longer interpret a number
  with a leading zero as octal in any context. Use 8#octalnumber instead
  (e.g. 8#400 == 256). Arithmetic expressions now also behave identically
  within and outside ((...)) and $((...)). If the POSIX mode is turned on,
  a leading zero now denotes an octal number in all arithmetic contexts.

New features in built-in commands:

- Usage error messages now show the --help/--man self-documentation options.

- Path-bound built-ins (such as /opt/ast/bin/cat) can now be executed by
  invoking the canonical path, so the following will now work as expected:
        $ /opt/ast/bin/cat --version
          version         cat (AT&T Research) 2012-05-31

- 'cd' now supports an -e option that, when combined with -P, verifies
  that $PWD is correct after changing directories; this helps detect
  access permission problems. See:
  https://www.austingroupbugs.net/view.php?id=253

- 'command -x' now looks for external commands only, skipping built-ins.
  In addition, its xargs-like functionality no longer freezes the shell on
  Linux and macOS, making it effectively a new feature on these systems.

- 'printf' now supports a -v option as in bash. This assigns formatted
  output directly to variables, which is very fast and will not strip
  final newline (\n) characters.

- 'redirect' now checks if all arguments are valid redirections before
  performing them. If an error occurs, it issues an error message instead
  of terminating the shell.

- 'return', when used to return from a function, can now return any
  status value in the 32-bit signed integer range, like on zsh. However,
  due to a traditional Unix kernel limitation, $? is still trimmed to its
  least significant 8 bits whenever a shell or subshell exits.

- 'suspend' now refuses to suspend a login shell, as there is probably no
  parent shell to return to and the login session would freeze.

- 'test'/'[' now supports all the same operators as [[ (including =~,
  \<, \>) except for the different 'and'/'or' operators. Note that
  'test'/'[' remains deprecated due to its unfixable pitfalls;
  [[ ... ]] is recommended instead.

- 'times' now gives high precision output in a POSIX compliant format.

- 'type'/'whence': Two bash-like flags were backported from ksh 93v-:
  - 'whence -P/type -P' is an alias to the existing -p flag.
  - 'whence -t/type -t' will print only the type of a command in a
    simple format that is designed to be easy to use for scripts.

- 'typeset' has a new '-g' flag that forces variables to be created or
  modified at the global scope regardless of context, as on bash 4.2+.

- 'typeset' now gives an informative error message if an incompatible
  combination of options is given.

- 'ulimit': Added three options inspired by bash:
  - 'ulimit -k' sets the maximum number of kqueues.
  - 'ulimit -P' sets the maximum number of pseudo-terminals.
  - 'ulimit -R' sets the maximum time in microseconds a real-time process
    can run before blocking.
  Note that not all operating systems support the limits set by these options.

- 'whence -v/-a' now reports the location of autoloadable functions.

New features in shell options:

- When the -b/--notify shell option is on and the vi or emacs/gmacs shell
  line editor is in use, 'Done' and similar notifications from completed
  background jobs are now inserted directly above the line you're typing,
  without affecting your command line display.

- A new --functrace long-form shell option causes the -x/--xtrace option's
  state and the DEBUG trap action to be inherited by function scopes instead
  of being reset to default. Changes made to them within a function scope
  still do not propagate back to the parent scope. Similarly, this option
  also causes the DEBUG trap action to be inherited by subshells.

- A new --globcasedetect shell option is added on operating systems where
  we can check for a case-insensitive file system (currently Linux, macOS,
  QNX 7.0+, and Windows/Cygwin). When this option is turned on, pathname
  expansion (globbing), as well as tab completion on interactive shells,
  automatically become case-insensitive depending on the file system.
  This is separately determined for each pathname component.

- Enhancement to -G/--globstar: symbolic links to directories are now
  followed if they match a normal (non-**) glob pattern. For example, if
  '/lnk' is a symlink to a directory, '/lnk/**' and '/l?k/**' now work as
  you would expect.

- The new --histreedit and --histverify options modify history expansion
  (--histexpand). If --histreedit is on and a history expansion fails, the
  command line is reloaded into the next prompt's edit buffer, allowing
  corrections. If --histverify is on, the results of a history expansion are
  not immediately executed but instead loaded into the next prompt's edit
  buffer, allowing further changes.

- A new --nobackslashctrl shell option disables the special escaping
  behaviour of the backslash character in the emacs and vi built-in editors.
  Particularly in the emacs editor, this makes it much easier to go back,
  insert a forgotten backslash into a command, and then continue editing
  without having your next arrow key replace your backslash with garbage.

- A new --posix shell option has been added to ksh 93u+m that makes the
  ksh language more compatible with other shells by following the POSIX
  standard more closely. See the manual page for details. It is enabled by
  default if ksh is invoked as sh, otherwise it is disabled by default.
2022-08-09 06:37:32 +00:00
pin
6c687c12d4 doc: Updated sysutils/felix to 1.1.0 2022-08-09 06:36:27 +00:00
pin
33d78d2ef6 sysutils/felix: update to 1.1.0
v1.1.0 (2022-08-08)
Changed
   -Use chafa instead of libsixel & viuer to preview image files. This greatly
    improves the performance and code maintainability, and as a consequence, the
    number of dependencies is reduced (137 -> 53).
   -With chafa, the hi-res image preview is supported in kitty or terminals
    that support sixel.
   -Files larger than 1GB are no longer previewed in order to improve the
    performance.
   -Remove profile.release to support older version of Rust.
   -Huge refactoring (layout.rs created).

Added
   -content-inspector to exclude binary files to be previewed.
2022-08-09 06:36:01 +00:00
adam
7672da0164 Updated www/py-werkzeug, www/py-flask 2022-08-09 05:43:48 +00:00
adam
dc520e05ab py-flask: updated to 2.2.2
Version 2.2.2
-------------
-   Update Werkzeug dependency to >= 2.2.2. This includes fixes related
    to the new faster router, header parsing, and the development
    server. :pr:`4754`
-   Fix the default value for ``app.env`` to be ``"production"``. This
    attribute remains deprecated. :issue:`4740`
2022-08-09 05:43:29 +00:00
adam
0e96985495 py-werkzeug: updated to 2.2.2
Version 2.2.2
-------------
-   Fix router to restore the 2.1 ``strict_slashes == False`` behaviour
    whereby leaf-requests match branch rules and vice
    versa. :pr:`2489`
-   Fix router to identify invalid rules rather than hang parsing them,
    and to correctly parse ``/`` within converter arguments. :pr:`2489`
-   Update subpackage imports in :mod:`werkzeug.routing` to use the
    ``import as`` syntax for explicitly re-exporting public attributes.
    :pr:`2493`
-   Parsing of some invalid header characters is more robust. :pr:`2494`
-   When starting the development server, a warning not to use it in a
    production deployment is always shown. :issue:`2480`
-   ``LocalProxy.__wrapped__`` is always set to the wrapped object when
    the proxy is unbound, fixing an issue in doctest that would cause it
    to fail. :issue:`2485`
-   Address one ``ResourceWarning`` related to the socket used by
    ``run_simple``. :issue:`2421`
2022-08-09 05:42:10 +00:00
charlotte
ae327eba64 Updated lang/janet 2022-08-09 01:49:26 +00:00
charlotte
8e5a289a91 janet: Update to 1.23.0
CHANGELOG:

Janet 1.23.0
------------

This release brings a number of new features that will make Janet useful in
even more domains, including mutexes and reader-writer locks to the ev module
to improve interactions with multi-threaded, native code, better named
arguments support, and an experimental FFI module. Also a number of
improvements and simplification to Janet's debugging capabilities have been
made, and exposed with the new debugger function.

- Add experimental ffi/ module for interfacing with dynamic libraries and raw
  function pointers. Only available on 64 bit linux, mac, and bsd systems.
- Allow using &named in function prototypes for named arguments. This is a more
  ergonomic variant of &keys that isn't as redundant, more self documenting,
  and allows extension to things like default arguments.
- Add delay macro for lazy evaluate-and-save thunks.
- Remove pthread.h from janet.h for easier includes.
- Add debugger - an easy to use debugger function that just takes a fiber.
- dofile will now start a debugger on errors if the environment it is passed
  has :debug set.
- Add debugger-on-status function, which can be passed to run-context to start
  a debugger on abnormal fiber signals.
- Allow running scripts with the -d flag to use the built-in debugger on errors
  and breakpoints.
- Add mutexes (locks) and reader-writer locks to ev module for thread
  coordination.
- Add parse-all as a generalization of the parse function.
- Add os/cpu-count to get the number of available processors on a machine


Janet 1.22.0
------------

- Prohibit negative size argument to table/new.
- Add module/value.
- Remove file/popen. Use os/spawn with the :pipe options instead.
- Fix bug in peg thru and to combinators.
- Fix printing issue in doc macro.
- Numerous updates to function docstrings
- Add defdyn aliases for various dynamic bindings used in core.
- Install janet.h symlink to make Janet native libraries and applications
  easier to build without jpm.


Janet 1.21.2
------------

- Fix patch release - (version info)


Janet 1.21.1
------------

- Patch release to fix some versioning issues in the previous 1.21.0 release.
  No new changes here.


Janet 1.21.0
------------

- C functions janet_dobytes and janet_dostring will now enter the event loop if
  it is enabled.
- Fix hashing regression - hash of negative 0 must be the same as positive 0
  since they are equal.
- The flycheck function no longer pollutes the module/cache
- Fix quasiquote bug in compiler
- Disallow use of cancel and resume on fibers scheduled or created with ev/go,
  as well as the root fiber.


Janet 1.20.0
------------

Add :missing-symbol hook to compile that will act as a catch-all macro for
undefined symbols.

- Add :redef dynamic binding that will allow users to redefine top-level
bindings with late binding. This is intended for development use.
- Fix a bug with reading from a stream returned by os/open on Windows and
Linux.
- Add :ppc64 as a detectable OS type.
- Add & more support for destructuring in the match macro.
- Add & more support for destructuring in all binding forms (def).


Janet 1.19.2
------------

- Fix bug with missing status lines in some stack traces.
- Update hash function to have better statistical properties.


Janet 1.19.1
------------

- Add an optional prefix parameter to debug/stacktrace to allow printing
  prettier error messages.
- Remove appveyor for CI pipeline
- Fixed a bug that prevented sending threaded abstracts over threaded channels.
- Fix bug in the map function with arity at least 3.


Janet 1.19.0
------------

- Add math/log-gamma to replace math/gamma, and change math/gamma to be the
  expected gamma function.
- Fix leaking file-descriptors in os/spawn and os/execute.
- Ctrl-C will now raise SIGINT.
- Allow quoted literals in the match macro to behave as expected in patterns.
- Fix windows net related bug for TCP servers.
- Allow evaluating ev streams with dofile.
- Fix ev related bug with operations on already closed file descriptors.
- Add struct and table agnostic getproto function.
- Add a number of functions related to structs.
- Add prototypes to structs. Structs can now inherit from other structs, just
  like tables.
- Create a struct with a prototype with struct/with-proto.
- Deadlocked channels will no longer exit early - instead they will hang, which
  is more intuitive.
2022-08-09 01:48:07 +00:00
wiz
3a1379f6a5 ocaml-labgltk3: add missing bl3.mk
Necessary in particular when all options are disabled
2022-08-08 19:09:05 +00:00
adam
290662ec7b tigervnc: set INSTALL_TARGET as CMake stripping does not work for automake targets 2022-08-08 16:47:34 +00:00
adam
cc625c8a6a Updated graphics/vulkan-headers 2022-08-08 16:43:53 +00:00
adam
de5f00db3c vulkan-headers: updated to 1.3.224
1.3.224:
Unknown changes
2022-08-08 16:42:27 +00:00
wiz
631234283a p5-HTML-Gumbo: add build dependency on p5-PkgConfig and pkg-config tool 2022-08-08 14:08:40 +00:00
nia
af88224584 xf86-input-ws: stable releases of NetBSD lack WSCONS_EVENT_HSCROLL
and WSCONS_EVENT_VSCROLL (PR pkg/56958)
2022-08-08 13:53:57 +00:00
adam
301fec8314 Updated graphics/libwebp 2022-08-08 13:46:30 +00:00
adam
80eccada9e libwebp: updated to 1.2.4
version 1.2.4
This is a binary compatible release.
* restore CMake libwebpmux target name for compatibility with 1.2.2
* fix lossless crunch mode encoding with WEBP_REDUCE_SIZE
2022-08-08 13:44:07 +00:00
pin
ed654b313a doc: Updated devel/difftastic to 0.32.0 2022-08-08 11:53:17 +00:00
pin
43c68562fc devel/difftastic: update to 0.32.0
0.32 (released 7th August 2022)
-Improved performance in many cases, particularly for files with a fairly flat
 structure.

-Difftastic now treats the path /dev/null as an empty file, even if that path
 doesn't exist on the current machine. This fixes a crash when using difftastic
 with git on Windows.
2022-08-08 11:52:54 +00:00
schmonz
f05b7686ce doc: Updated devel/py-approvaltests to 5.4.1 2022-08-08 11:42:17 +00:00
schmonz
89b3828556 Update to 5.4.1. From the changelog:
Refactoring setup infrastructure: there should be no visible effects
from this release.
2022-08-08 11:42:09 +00:00
wiz
7e2b5e78cb wxGTK32: fix packaging when using configure
Also, add missing unused dependency that configure checks for,
but CMake doesn't.
2022-08-08 10:39:46 +00:00
wiz
58396c5292 *** empty log message *** 2022-08-08 10:29:45 +00:00
wiz
3adbb32d41 gnucash: make p5-Finance-Quote optional
Default stays on; it is used if it's installed, but if not, just
stock quote fetching is disabled.
2022-08-08 10:29:33 +00:00
wiz
4e6297c652 p5-Finance-Quote: update COMMENT 2022-08-08 10:11:57 +00:00
wiz
f3c32a01ba p5-Finance-Quote: simplify DESCR 2022-08-08 10:10:45 +00:00
fox
f0d5c1e5bd doc: Updated sysutils/py-Glances to 3.2.7 2022-08-08 09:28:39 +00:00
fox
75cbf623e4 sysutils/py-Glances: Update to 3.2.7
Changes since 3.2.6.4:

===============
Version 3.2.7
===============

Enhancements:

    * Config to disable all plugins by default (or enable an exclusive list) #2089
    * Keybind(s) for modifying nice level #2081
    * [WEBUI] Reorganize help screen #2037
    * Add a Json stdout option #2060
    * Improve error message when export error occures
    * Improve error message when MQTT error occures
    * Change the way core are displayed
    * Remove unused key in the process list
    * Refactor top menu of the curse interface
    * Improve Irix display for the load plugin

Bug corrected:

    * In the sensor plugin thresholds in the configuration file should overwrite system ones #2058
    * Drive names truncated in Web UI #2055
    * Correct issue with CPU label

Documentation and CI:

    * Improve makefile help #2078
    * Add quote to the update command line (already ok for the installation). Related to #2073
    * Make Glances (almost) compliant with REUSE #2042
    * Update README for Debian package users
    * Update documentation for Docker
    * Update docs for new shortcut
    * Disable Pyright on the Git actions pipeline
    * Refactor comments
    * Except datutil import error
    * Another dep issue solved in the Alpine Docker + issue in the outdated method

Contributors for this version:

    * Nicolargo
    * Sylvain MOUQUET
    * FastThenLeft
    * Jiajie Chen
    * dbrennand
    * ewuerger
2022-08-08 09:28:06 +00:00
fox
94c6547607 doc: Updated audio/fasttracker2 to 1.56 2022-08-08 09:00:28 +00:00
fox
bddcf66f4b audio/fasttracker2: Update to 1.56
Changes since v1.55

v1.56 - 11.07.2022
- Fixed some possible issues with fullscreen in Linux (still buggy)
- Fixed some issues with restoring the window size and image stretch mode when
  loading or resetting the config when the program is running.
- Bugfix: Focus was lost when drag-n-dropping a file onto the tracker,
  which meant that the first following mouse click was ignored.
- Windows/macOS: Updated SDL from 2.0.20 to 2.0.22
2022-08-08 08:58:42 +00:00
fox
1f9e37d764 doc: Updated chat/ircd-hybrid to 8.2.41 2022-08-08 08:20:56 +00:00
fox
f58b26a3ee chat/ircd-hybrid: Update to 8.2.41
Changes since 8.2.40:

-- Noteworthy changes in version 8.2.41 (2022-07-15)
  * Fixed issue where WHO didn't work on channel names with two or more
    consequent asterisk characters
  * IRCv3 WHOX has been implemented. See doc/who.txt for more information
    about the new WHO options and features.
  * Clients that are connected via TLS are now flagged with the letter S in
    the who reply
2022-08-08 08:17:18 +00:00
fox
49ca991c75 doc: Updated security/wolfssl to 5.4.0 2022-08-08 08:15:36 +00:00
fox
985e0981a7 security/wolfssl: Update to v5.4.0
Changes since v5.3.0:

wolfSSL Release 5.4.0 (July 11, 2022)

Note:
** Future releases of wolfSSL will turn off TLS 1.1 by default
** Release 5.4.0 made SP math the default math implementation. To make an
   equivalent build as –disable-fastmath from previous versions of wolfSSL, now
   requires using the configure option –enable-heapmath instead.

Release 5.4.0 of wolfSSL embedded TLS has bug fixes and new features including:

Vulnerabilities

* [High] Potential for DTLS DoS attack. In wolfSSL versions before 5.4.0 the
  return-routability check is wrongly skipped in a specific edge case. The check
  on the return-routability is there for stopping attacks that either consume
  excessive resources on the server, or try to use the server as an amplifier
  sending an excessive amount of messages to a victim IP. If using DTLS 1.0/1.2
  on the server side users should update to avoid the potential DoS
  attack. CVE-2022-34293
* [Medium] Ciphertext side channel attack on ECC and DH operations. Users on
  systems where rogue agents can monitor memory use should update the version of
  wolfSSL and change private ECC keys. Thanks to Sen Deng from Southern
  University of Science and Technology (SUSTech) for the report.
* [Medium] Public disclosure of a side channel vulnerability that has been fixed
  since wolfSSL version 5.1.0. When running on AMD there is the potential to
  leak private key information with ECDSA operations due to a ciphertext side
  channel attack. Users on AMD doing ECDSA operations with wolfSSL versions less
  than 5.1.0 should update their wolfSSL version used. Thanks to professor
  Yinqian Zhang from Southern University of Science and Technology (SUSTech),
  his Ph.D. student Mengyuan Li from The Ohio State University, and his M.S
  students Sen Deng and Yining Tang from SUStech along with other collaborators;
  Luca Wilke, Jan Wichelmann and Professor Thomas Eisenbarth from the University
  of Lubeck, Professor Shuai Wang from Hong Kong University of Science and
  Technology, Professor Radu Teodorescu from The Ohio State University, Huibo
  Wang, Kang Li and Yueqiang Cheng from Baidu Security and Shoumeng Yang from
  Ant Financial Services Group.
CVE-2020-12966
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1013
CVE-2021-46744
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1033


New Feature Additions

DTLS 1.3

* Support for using the new DTLSv1.3 protocol was added
* Enhancements to bundled examples for an event driven server with DTLS 1.3 was
  added

Ports

* Update for the version of VxWorks supported, adding in support for version 6.x
* Support for new DPP and EAP-TEAP/EAP-FAST in wpa_supplicant
* Update for TSIP version support, adding support for version 1.15 for RX65N and
  RX72N
* Improved TSIP build to handle having the options WOLFSSL_AEAD_ONLY defined or
  NO_AES_CBC defined
* Added support for offloading TLS1.3 operations to Renesas RX boards with TSIP

Misc.

* Constant time improvements due to development of new constant time tests
* Initial translation of API headers to Japanese and expansion of Japanese help
  message support in example applications
* Add support for some FPKI (Federal PKI) certificate cases, UUID, FASC-N, PIV
  extension for use with smart cards
* Add support for parsing additional CSR attributes such as unstructured name
  and content type
* Add support for Linux getrandom() when defining the macro WOLFSSL_GETRANDOM
* Add TLS 1.2 ciphersuite ECDHE_PSK_WITH_AES_128_GCM_SHA256 from RFC 8442
* Expand CAAM support with QNX to include i.MX8 boards and add AES-CTR support
* Enhanced glitching protection by hardening the TLS encrypt operations

Math and Performance

SP Math Additions

* Support for ARMv3, ARMv6 and ARMv7a
    - Changes and improvements to get SP building for armv7-a
    - Updated assembly for moving large immediate values on ARMv6
    - Support for architectures with no ldrd/strd and clz
* Reworked generation using common asm ruby code for 32bit ARM
* Enable wolfSSL SP math all by default (sp_int.c)
* Update SP math all to not use sp_int_word when SQR_MUL_ASM is available

SP Math Fixes

* Fixes for constant time with div function
* Fix casting warnings for Windows builds and assembly changes to support
  XMM6-15 being non-volatile
* Fix for div_word when not using div function
* Fixes for user settings with SP ASM and ED/Curve25519 small
* Additional Wycheproof tests ran and fixes
* Fix for SP math ECC non-blocking to always check `hashLen`
* Fix for SP math handling edge case with submod

Improvements and Optimizations

Compatibility Layer

* Provide access to "Finished" messages outside of compatibility layer builds
* Remove unneeded FIPS guard on wolfSSL_EVP_PKEY_derive
* Fix control command issues with AES-GCM, control command EVP_CTRL_GCM_IV_GEN
* Add support for importing private only EC key to a WOLFSSL_EVP_PKEY struct
* Add support for more extensions to wolfSSL_X509_print_ex
* Update for internal to DER (i2d) AIPs to move the buffer pointer when passed
  in and the operation is successful
* Return subject and issuer X509_NAME object even when not set

Ports

* Renesas RA6M4 example update and fixes
* Support multi-threaded use cases with Renesas SCE protected mode and TSIP
* Add a global variable for heap-hint for use with TSIP
* Changes to support v5.3.0 cube pack for STM32
* Use the correct mutex type for embOS
* ESP-IDF build cleanup and enhancements, adding in note regarding ESP-IDF
  Version
* Support for SEGGER embOS and emNET
* Fix to handle WOLFSSL_DTLS macro in Micrium build

Build Options

* Support for verify only and no-PSS builds updated
* Add the enable options wolfssh (mapped to the existing –enable-ssh)
* Remove WOLFSSL_ALT_NAMES restriction on notBefore/notAfter use in Cert struct
* Move several more definitions outside the BUILDING_WOLFSSL gate with linux
  kernel module build
* Modify --enable-openssh to not enable non-FIPS algos for FIPS builds
* Remove the Python wrappers from wolfSSL source (use pip install instead of
  using wolfSSL with Python and our separate Python repository)
* Add --enable-openldap option to configure.ac for building the OpenLDAP port
* Resolve DTLS build to handle not having –enable-hrrcookie when not needed
* Add an --enable-strongswan option to configure.ac for building the Strongswan
  port
* Improve defaults for 64-bit BSDs in configure
* Crypto only build can now be used openssl extra
* Update ASN template build to properly handle WOLFSSL_CERT_EXT and
  HAVE_OID_ENCODING
* Allow using 3DES and MD5 with FIPS 140-3, as they fall outside of the FIPS
  boundary
* Add the build option --enable-dh=const which replaces setting the macro
  WOLFSSL_DH_CONST and now conditionally link to -lm as needed
* Add the macro WOLFSSL_HOSTNAME_VERIFY_ALT_NAME_ONLY which is used to verify
  hostname/ip address using alternate name (SAN) only and does not use the
  common name
* WOLFSSL_DTLS_NO_HVR_ON_RESUME macro added (off by default to favor more
  security). If defined, a DTLS server will not do a cookie exchange on
  successful client resumption: the resumption will be faster (one RTT less) and
  will consume less bandwidth (one ClientHello and one HelloVerifyRequest
  less). On the other hand, if a valid SessionID is collected, forged
  clientHello messages will consume resources on the server.
* Misc.
* Refactoring of some internal TLS functions to reduce the memory usage
* Make old less secure TimingPadVerify implementation available
* Add support for aligned data with clang LLVM
* Remove subject/issuer email from the list of alt. Email names in the
  DecodedCerts struct
* Zeroizing of pre-master secret buffer in TLS 1.3
* Update to allow TLS 1.3 application server to send session ticket
* Improve the sniffer asynchronous test case to support multiple concurrent
  streams
* Clean up wolfSSL_clear() and add more logging
* Update to not error out on bad CRL next date if using NO_VERIFY when parsing
* Add an example C# PSK client
* Add ESP-IDF WOLFSSL_ESP8266 setting for ESP8266 devices
* Support longer sigalg list for post quantum use cases and inter-op with OQS's
  OpenSSL fork
* Improve AES-GCM word implementation of GMULT to be constant time
* Additional sanity check with Ed25519/Ed448, now defaults to assume public key
  is not trusted
* Support PSK ciphersuites in benchmark apps
* FIPS in core hash using SHA2-256 and SHA2-384
* Add ability to store issuer name components when parsing a certificate
* Make the critical extension flags in DecodedCert always available
* Updates to the default values for basic constraint with X509’s
* Support using RSA OAEP with no malloc and add additional sanity checks
* Leverage async code paths to support WANT_WRITE while sending packet fragments
* New azsphere example for continuous integration testing
* Update RSA key generation function to handle pairwise consistency tests with
  static memory pools used
* Resolve build time warning by passing in and checking output length with
  internal SetCurve function
* Support DTLS bidirectional shutdown in the examples
* Improve DTLS version negotiation and downgrade capability

General Fixes

* Fixes for STM32 Hash/PKA, add some missing mutex frees, and add an additional
  benchmark
* Fix missing return checks in KSDK ED25519 code
* Fix compilation warnings from IAR
* Fixes for STM32U5/H7 hash/crypto support
* Fix for using track memory feature with FreeRTOS
* Fixup XSTR processing for MICRIUM
* Update Zephyr fs.h path
* DTLS fixes with WANT_WRITE simulations
* Fixes for BER use with PKCS7 to have additional sanity checks and guards on
  edge cases
* Fix to handle exceptional edge case with TFM mp_exptmod_ex
* Fix for stack and heap measurements of a 32-bit build
* Fix to allow enabling AES key wrap (direct) with KCAPI
* Fix --enable-openssh FIPS detection syntax in configure.ac
* Fix to move wolfSSL_ERR_clear_error outside gate for OPENSSL_EXTRA
* Remove MCAPI project's dependency on zlib version
* Only use __builtin_offset on supported GCC versions (4+)
* Fix for c89 builds with using WOLF_C89
* Fix 64bit postfix for constants building with powerpc
* Fixed async Sniffer with TLS v1.3, async removal of `WC_HW_WAIT_E` and
  sanitize leak
* Fix for QAT ECC to gate use of HW based on marker
* Fix the supported version extension to always check minDowngrade
* Fix for TLS v1.1 length sanity check for large messages
* Fixes for loading a long DER/ASN.1 certificate chain
* Fix to expose the RSA public DER export functions with certgen
* Fixes for building with small version of SHA3
* Fix configure with WOLFSSL_WPAS_SMALL
* Fix to free PKCS7 recipient list in error cases
* Sanity check to confirm ssl->hsHashes is not NULL before attempting to
  dereference it
* Clear the leftover byte count in Aes struct when setting IV
2022-08-08 08:03:46 +00:00
adam
ea6b4da611 Updated devel/py-setuptools, textproc/py-tomlkit 2022-08-08 07:24:08 +00:00
adam
82c0fc1d67 py-tomlkit: updated to 0.11.2
0.11.2

Fixed
- Fix adding float to an integer value.
- Keep the end-of-array style when adding items to or removing items from an array.
- Fix a bug of redundant table header shown when removing children from a super table.
2022-08-08 07:23:51 +00:00
adam
375eed59c5 py-setuptools: updated to 63.4.2
v63.4.2
-------
Misc
* Bump vendored version of :pypi:`pyparsing` to 3.0.9.
* Add warning for potential ``install_requires`` and ``extras_require``
  misconfiguration in ``setup.cfg``
* Modified ``pyproject.toml`` validation exception handling to
  make relevant debugging information easier to spot.
2022-08-08 07:21:14 +00:00
tron
1d17199178 Note update of the "mutt" package to version 2.2.7 2022-08-08 06:50:04 +00:00
tron
1494a1a5f9 mutt: Update to version 2.2.7
This is a bug-fix release, fixing a $edit_headers bug on MacOS, along with
several other small issues.  It also changes $query_command to be stricter
when parsing results, and adds '%s' expando support to $pager.
2022-08-08 06:49:52 +00:00
pin
79c3161aef doc: Updated audio/termusic to 0.7.2 2022-08-08 06:04:33 +00:00
pin
ed9a93e94c audio/termusic: update to 0.7.2
[v0.7.2]
Released on: August 06, 2022.
    New: Add album and genre in tag editor.
    Fix: Running sync database in background, to speed up start of program.
    Fix: Import cpal to supress warning from alsa.
2022-08-08 06:04:10 +00:00
gutteridge
d8528b79ce trufflehog: adjust grammar in DESCR 2022-08-08 01:59:33 +00:00
gutteridge
baf06c3217 doc/pkgsrc.*: regen 2022-08-08 01:56:37 +00:00