summaryrefslogtreecommitdiff
path: root/devel
AgeCommit message (Collapse)AuthorFilesLines
2016-04-03Pullup ticket #4952 - requested by bsiegertspz2-8/+8
devel/nss: security update Revisions pulled up: - devel/nss/Makefile 1.106 - devel/nss/distinfo 1.55 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: ryoon Date: Sat Feb 6 22:09:56 UTC 2016 Modified Files: pkgsrc/devel/nss: Makefile distinfo Log Message: Update to 3.22 Changelog: The NSS team has released Network Security Services (NSS) 3.22, which is a minor release. New functionality: * RSA-PSS signatures are now supported (bug 1215295) * Pseudorandom functions based on hashes other than SHA-1 are now supported * Enforce an External Policy on NSS from a config file (bug 1009429) New Functions: * PK11_SignWithMechanism - an extended version PK11_Sign() * PK11_VerifyWithMechanism - an extended version of PK11_Verify() * SSL_PeerSignedCertTimestamps - Get signed_certificate_timestamp TLS extension data * SSL_SetSignedCertTimestamps - Set signed_certificate_timestamp TLS extension data New Types: * ssl_signed_cert_timestamp_xtn is added to SSLExtensionType * Constants for several object IDs are added to SECOidTag New Macros: * SSL_ENABLE_SIGNED_CERT_TIMESTAMPS * NSS_USE_ALG_IN_SSL * NSS_USE_POLICY_IN_SSL * NSS_RSA_MIN_KEY_SIZE * NSS_DH_MIN_KEY_SIZE * NSS_DSA_MIN_KEY_SIZE * NSS_TLS_VERSION_MIN_POLICY * NSS_TLS_VERSION_MAX_POLICY * NSS_DTLS_VERSION_MIN_POLICY * NSS_DTLS_VERSION_MAX_POLICY * CKP_PKCS5_PBKD2_HMAC_SHA224 * CKP_PKCS5_PBKD2_HMAC_SHA256 * CKP_PKCS5_PBKD2_HMAC_SHA384 * CKP_PKCS5_PBKD2_HMAC_SHA512 * CKP_PKCS5_PBKD2_HMAC_GOSTR3411 - (not supported) * CKP_PKCS5_PBKD2_HMAC_SHA512_224 - (not supported) * CKP_PKCS5_PBKD2_HMAC_SHA512_256 - (not supported) table Changes: * NSS C++ tests are built by default, requiring a C++11 compiler. Set the NSS_DISABLE_GTESTS variable to 1 to disable building these tests. The HG tag is NSS_3_22_RTM. NSS 3.22 requires NSPR 4.11 or newer. To generate a diff of this commit: cvs rdiff -u -r1.105 -r1.106 pkgsrc/devel/nss/Makefile cvs rdiff -u -r1.54 -r1.55 pkgsrc/devel/nss/distinfo
2016-03-22Pullup ticket #4953 - requested by sevanbsiegert13-8/+519
devel/git-base: security fix Revisions pulled up: - devel/git-base/Makefile 1.22-1.23 - devel/git-base/PLIST 1.11-1.12 - devel/git-base/distinfo 1.42-1.46 - devel/git-base/patches/patch-builtin_pack-objects.c 1.1 - devel/git-base/patches/patch-builtin_rev-list.c 1.1 - devel/git-base/patches/patch-http-push.c 1.1 - devel/git-base/patches/patch-list-objects.c 1.1 - devel/git-base/patches/patch-list-objects.h 1.1 - devel/git-base/patches/patch-pack-bitmap-write.c 1.1 - devel/git-base/patches/patch-pack-bitmap.c 1.1 - devel/git-base/patches/patch-reachable.c 1.1 - devel/git-base/patches/patch-revision.c 1.1 - devel/git-base/patches/patch-revision.h 1.1 - devel/git/Makefile.version 1.36-1.39 --- Module Name: pkgsrc Committed By: adam Date: Fri Jan 8 17:37:20 UTC 2016 Modified Files: pkgsrc/devel/git: Makefile.version pkgsrc/devel/git-base: PLIST distinfo Log Message: Changes 2.7.0: UI, Workflows & Features * The appearance of "gitk", particularly on high DPI monitors, have been improved. "gitk" also comes with an undated translation for Swedish and Japanese. * "git remote" learned "get-url" subcommand to show the URL for a given remote name used for fetching and pushing. * There was no way to defeat a configured rebase.autostash variable from the command line, as "git rebase --no-autostash" was missing. * "git log --date=local" used to only show the normal (default) format in the local timezone. The command learned to take 'local' as an instruction to use the local timezone with other formats, * The refs used during a "git bisect" session is now per-worktree so that independent bisect sessions can be done in different worktrees created with "git worktree add". * Users who are too busy to type three extra keystrokes to ask for "git stash show -p" can now set stash.showPatch configuration variable to true to always see the actual patch, not just the list of paths affected with feel for the extent of damage via diffstat. * "quiltimport" allows to specify the series file by honoring the $QUILT_SERIES environment and also --series command line option. * The use of 'good/bad' in "git bisect" made it confusing to use when hunting for a state change that is not a regression (e.g. bugfix). The command learned 'old/new' and then allows the end user to say e.g. "bisect start --term-old=fast --term-new=slow" to find a performance regression. * "git interpret-trailers" can now run outside of a Git repository. * "git p4" learned to reencode the pathname it uses to communicate with the p4 depot with a new option. * Give progress meter to "git filter-branch". * Allow a later "!/abc/def" to override an earlier "/abc" that appears in the same .gitignore file to make it easier to express "everything in /abc directory is ignored, except for ...". * Teach "git p4" to send large blobs outside the repository by talking to Git LFS. * Prepare for Git on-disk repository representation to undergo backward incompatible changes by introducing a new repository format version "1", with an extension mechanism. * "git worktree" learned a "list" subcommand. * "git clone --dissociate" learned that it can be used even when "--reference" was not used at the same time. * "git blame" learnt to take "--first-parent" and "--reverse" at the same time when it makes sense. * "git checkout" did not follow the usual "--[no-]progress" convention and implemented only "--quiet" that is essentially a superset of "--no-progress". Extend the command to support the usual "--[no-]progress". * The semantics of transfer.hideRefs configuration variable have been extended to work better with the ref "namespace" feature that lets you throw unrelated bunches of repositories in a single physical repository and virtually serve them as separate ones. * send-email config variables whose values are pathnames now go through the ~username/ expansion. * bash completion learnt to TAB-complete recipient addresses given to send-email. * The credential-cache daemon can be told to ignore SIGHUP to work around issue when running Git from inside emacs. * "git push" learned new configuration for doing "--recurse-submodules" on each push. * "format-patch" has learned a new option to zero-out the commit object name on the mbox "From " line. --- Module Name: pkgsrc Committed By: adam Date: Sun Feb 7 10:27:23 UTC 2016 Modified Files: pkgsrc/devel/git: Makefile.version pkgsrc/devel/git-base: PLIST distinfo Log Message: Git v2.7.1 Release Notes ======================== Fixes since v2.7 ---------------- * An earlier change in 2.5.x-era broke users' hooks and aliases by exporting GIT_WORK_TREE to point at the root of the working tree, interfering when they tried to use a different working tree without setting GIT_WORK_TREE environment themselves. * The "exclude_list" structure has the usual "alloc, nr" pair of fields to be used by ALLOC_GROW(), but clear_exclude_list() forgot to reset 'alloc' to 0 when it cleared 'nr' to discard the managed array. * "git send-email" was confused by escaped quotes stored in the alias files saved by "mutt", which has been corrected. * A few unportable C construct have been spotted by clang compiler and have been fixed. * The documentation has been updated to hint the connection between the '--signoff' option and DCO. * "git reflog" incorrectly assumed that all objects that used to be at the tip of a ref must be commits, which caused it to segfault. * The ignore mechanism saw a few regressions around untracked file listing and sparse checkout selection areas in 2.7.0; the change that is responsible for the regression has been reverted. * Some codepaths used fopen(3) when opening a fixed path in $GIT_DIR (e.g. COMMIT_EDITMSG) that is meant to be left after the command is done. This however did not work well if the repository is set to be shared with core.sharedRepository and the umask of the previous user is tighter. They have been made to work better by calling unlink(2) and retrying after fopen(3) fails with EPERM. * Asking gitweb for a nonexistent commit left a warning in the server log. * "git rebase", unlike all other callers of "gc --auto", did not ignore the exit code from "gc --auto". * Many codepaths that run "gc --auto" before exiting kept packfiles mapped and left the file descriptors to them open, which was not friendly to systems that cannot remove files that are open. They now close the packs before doing so. * A recent optimization to filter-branch in v2.7.0 introduced a regression when --prune-empty filter is used, which has been corrected. * The description for SANITY prerequisite the test suite uses has been clarified both in the comment and in the implementation. * "git tag" started listing a tag "foo" as "tags/foo" when a branch named "foo" exists in the same repository; remove this unnecessary disambiguation, which is a regression introduced in v2.7.0. * The way "git svn" uses auth parameter was broken by Subversion 1.9.0 and later. * The "split" subcommand of "git subtree" (in contrib/) incorrectly skipped merges when it shouldn't, which was corrected. * A few options of "git diff" did not work well when the command was run from a subdirectory. * dirname() emulation has been added, as Msys2 lacks it. * The underlying machinery used by "ls-files -o" and other commands have been taught not to create empty submodule ref cache for a directory that is not a submodule. This removes a ton of wasted CPU cycles. * Drop a few old "todo" items by deciding that the change one of them suggests is not such a good idea, and doing the change the other one suggested to do. * Documentation for "git fetch --depth" has been updated for clarity. * The command line completion learned a handful of additional options and command specific syntax. Also includes a handful of documentation and test updates. --- Module Name: pkgsrc Committed By: adam Date: Mon Feb 29 10:50:55 UTC 2016 Modified Files: pkgsrc/devel/git: Makefile.version pkgsrc/devel/git-base: distinfo Log Message: Changes 2.7.2: * The low-level merge machinery has been taught to use CRLF line termination when inserting conflict markers to merged contents that are themselves CRLF line-terminated. * "git worktree" had a broken code that attempted to auto-fix possible inconsistency that results from end-users moving a worktree to different places without telling Git (the original repository needs to maintain backpointers to its worktrees, but "mv" run by end-users who are not familiar with that fact will obviously not adjust them), which actually made things worse when triggered. * "git push --force-with-lease" has been taught to report if the push needed to force (or fast-forwarded). * The emulated "yes" command used in our test scripts has been tweaked not to spend too much time generating unnecessary output that is not used, to help those who test on Windows where it would not stop until it fills the pipe buffer due to lack of SIGPIPE. * The vimdiff backend for "git mergetool" has been tweaked to arrange and number buffers in the order that would match the expectation of majority of people who read left to right, then top down and assign buffers 1 2 3 4 "mentally" to local base remote merge windows based on that order. * The documentation for "git clean" has been corrected; it mentioned that .git/modules/* are removed by giving two "-f", which has never been the case. * Paths that have been told the index about with "add -N" are not quite yet in the index, but a few commands behaved as if they already are in a harmful way. --- Module Name: pkgsrc Committed By: adam Date: Sat Mar 12 11:33:32 UTC 2016 Modified Files: pkgsrc/devel/git: Makefile.version pkgsrc/devel/git-base: Makefile distinfo Log Message: Changes 2.7.3: * Traditionally, the tests that try commands that work on the contents in the working tree were named with "worktree" in their filenames, but with the recent addition of "git worktree" subcommand, whose tests are also named similarly, it has become harder to tell them apart. The traditional tests have been renamed to use "work-tree" instead in an attempt to differentiate them. * Many codepaths forget to check return value from git_config_set(); the function is made to die() to make sure we do not proceed when setting a configuration variable failed. * Handling of errors while writing into our internal asynchronous process has been made more robust, which reduces flakiness in our tests. * "git show 'HEAD:Foo[BAR]Baz'" did not interpret the argument as a rev, i.e. the object named by the the pathname with wildcard characters in a tree object. * "git rev-parse --git-common-dir" used in the worktree feature misbehaved when run from a subdirectory. * The "v(iew)" subcommand of the interactive "git am -i" command was broken in 2.6.0 timeframe when the command was rewritten in C. * "git merge-tree" used to mishandle "both sides added" conflict with its own "create a fake ancestor file that has the common parts of what both sides have added and do a 3-way merge" logic; this has been updated to use the usual "3-way merge with an empty blob as the fake common ancestor file" approach used in the rest of the system. * The memory ownership rule of fill_textconv() API, which was a bit tricky, has been documented a bit better. * The documentation did not clearly state that the 'simple' mode is now the default for "git push" when push.default configuration is not set. * Recent versions of GNU grep are pickier when their input contains arbitrary binary data, which some of our tests uses. Rewrite the tests to sidestep the problem. * A helper function "git submodule" uses since v2.7.0 to list the modules that match the pathspec argument given to its subcommands (e.g. "submodule add <repo> <path>") has been fixed. * "git config section.var value" to set a value in per-repository configuration file failed when it was run outside any repository, but didn't say the reason correctly. * The code to read the pack data using the offsets stored in the pack idx file has been made more carefully check the validity of the data in the idx. --- Module Name: pkgsrc Committed By: sevan Date: Wed Mar 16 19:38:52 UTC 2016 Modified Files: pkgsrc/devel/git-base: Makefile distinfo Added Files: pkgsrc/devel/git-base/patches: patch-builtin_pack-objects.c patch-builtin_rev-list.c patch-http-push.c patch-list-objects.c patch-list-objects.h patch-pack-bitmap-write.c patch-pack-bitmap.c patch-reachable.c patch-revision.c patch-revision.h Log Message: Patch for CVE-2016-2324 Obtained via Debian Security Tracker https://security-tracker.debian.org/tracker/CVE-2016-2324 https://github.com/git/git/commit/9831e92bfa833ee9c0ce464bbc2f941ae6c2698d Bump pkgrev
2016-03-08Pullup ticket #4947 - requested by tacabsiegert3-15/+15
www/ruby-actionpack32: security fix Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.23 - devel/ruby-activemodel32/distinfo 1.23 - devel/ruby-activesupport32/distinfo 1.23 - devel/ruby-railties32/distinfo 1.23 - lang/ruby/rails.mk 1.54 - mail/ruby-actionmailer32/distinfo 1.23 - www/ruby-actionpack32/distinfo 1.23 - www/ruby-activeresource32/distinfo 1.23 - www/ruby-rails32/distinfo 1.23 --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:23:26 UTC 2016 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.22.2. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:24:32 UTC 2016 Modified Files: pkgsrc/devel/ruby-activesupport32: distinfo Log Message: Update ruby-activesupport32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:24:59 UTC 2016 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:25:33 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: distinfo Log Message: Update ruby-activerecord32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:26:08 UTC 2016 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:27:42 UTC 2016 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Update ruby-actionpack32 to 3.2.22.2. Fixes CVE-2016-2097 and CVE-2016-2098. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:28:40 UTC 2016 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:29:07 UTC 2016 Modified Files: pkgsrc/devel/ruby-railties32: distinfo Log Message: Update ruby-railties32 to 3.2.22.2. No chnage except version. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 5 05:29:26 UTC 2016 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.22.2. No chnage except version.
2016-02-10Pullup ticket #4915 - requested by tacabsiegert5-18/+18
devel/ruby-activemodel32: security fix devel/ruby-activesupport32: security fix devel/ruby-railties32: security fix mail/ruby-actionmailer32: security fix www/ruby-actionpack32: security fix www/ruby-activeresource32: security fix www/ruby-rails32: security fix Revisions pulled up: - databases/ruby-activerecord32/distinfo 1.22 - devel/ruby-activemodel32/distinfo 1.22 - devel/ruby-activesupport32/PLIST 1.2 - devel/ruby-activesupport32/distinfo 1.22 - devel/ruby-railties32/Makefile 1.11 - devel/ruby-railties32/distinfo 1.22 - lang/ruby/rails.mk 1.53 - mail/ruby-actionmailer32/distinfo 1.22 - www/ruby-actionpack32/distinfo 1.22 - www/ruby-activeresource32/distinfo 1.22 - www/ruby-rails32/distinfo 1.22 --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:42:36 UTC 2016 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: Start update of Ruby on Rails to 3.2.22.1. Also tweak _RAILS_{MAJOR,MINOR,TEENY} variable definition. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:43:56 UTC 2016 Modified Files: pkgsrc/devel/ruby-activesupport32: PLIST distinfo Log Message: Update ruby-activesupport32 to 3.2.22.1. * Add ActiveSupport::SecurityUtils module which is required for security fix of actionpack. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:45:10 UTC 2016 Modified Files: pkgsrc/devel/ruby-activemodel32: distinfo Log Message: Update ruby-activemodel32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:46:12 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: Makefile distinfo Log Message: Update ruby-activerecord32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:47:02 UTC 2016 Modified Files: pkgsrc/www/ruby-activeresource32: distinfo Log Message: Update ruby-activeresource32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:48:02 UTC 2016 Modified Files: pkgsrc/www/ruby-actionpack32: distinfo Log Message: Note update of ruby-actionpack32 to 3.2.22.1. * Use secure string comparisons for basic auth username / password. (CVE-2015-7576) * Stop caching mime types globally. (CVE-2016-0751) * Don't short-circuit reject_if proc. (CVE-2015-7577) * Allow :file to be outside rails root, but anything else must be inside the rails view directory. (CVE-2016-0752) --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:48:55 UTC 2016 Modified Files: pkgsrc/mail/ruby-actionmailer32: distinfo Log Message: Update ruby-actionmailer32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:49:57 UTC 2016 Modified Files: pkgsrc/devel/ruby-railties32: Makefile distinfo Log Message: Update ruby-railties32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:50:48 UTC 2016 Modified Files: pkgsrc/www/ruby-rails32: distinfo Log Message: Update ruby-rails32 to 3.2.22.1. * No change except version. --- Module Name: pkgsrc Committed By: taca Date: Mon Feb 1 13:46:12 UTC 2016 Modified Files: pkgsrc/databases/ruby-activerecord32: Makefile distinfo Log Message: Update ruby-activerecord32 to 3.2.22.1. * No change except version.
2016-01-18Pullup ticket #4898 - requested by tacabsiegert1-3/+7
devel/ruby-test-unit: build fix Revisions pulled up: - devel/ruby-test-unit/Makefile 1.22 --- Module Name: pkgsrc Committed By: taca Date: Fri Jan 1 16:14:46 UTC 2016 Modified Files: pkgsrc/devel/ruby-test-unit: Makefile Log Message: Do not depend on devel/ruby-power_assert with ruby23 since ruby23 bundled its own power_assert gem.
2016-01-18Pullup ticket #4897 - requested by tacabsiegert2-4/+10
devel/ruby-debugger-ruby_core_source: build fix Revisions pulled up: - devel/ruby-debugger-ruby_core_source/Makefile 1.6 - devel/ruby-debugger-ruby_core_source/PLIST 1.2 --- Module Name: pkgsrc Committed By: taca Date: Sun Dec 27 12:07:40 UTC 2015 Modified Files: pkgsrc/devel/ruby-debugger-ruby_core_source: Makefile PLIST Log Message: Force to support new Ruby 2.0 and drop ruby21 support. Bump PKGREVISION.
2016-01-18Pullup ticket #4896 - requested by tacabsiegert2-4/+4
devel/ruby-debugger: build fix devel/ruby-debugger-linecache: build fix Revisions pulled up: - devel/ruby-debugger-linecache/Makefile 1.3 - devel/ruby-debugger/Makefile 1.7 --- Module Name: pkgsrc Committed By: taca Date: Sun Dec 27 12:06:16 UTC 2015 Modified Files: pkgsrc/devel/ruby-debugger: Makefile pkgsrc/devel/ruby-debugger-linecache: Makefile Log Message: Drop ruby21 support.
2016-01-17Pullup ticket #4878 - requested by bsiegertspz4-10/+12
devel/pcre2: security update Revisions pulled up: - devel/pcre2/Makefile 1.2 - devel/pcre2/PLIST 1.2 - devel/pcre2/buildlink3.mk 1.2 - devel/pcre2/distinfo 1.3 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: bsiegert Date: Tue Dec 29 14:40:20 UTC 2015 Modified Files: pkgsrc/devel/pcre2: Makefile PLIST buildlink3.mk distinfo Log Message: Update pcre2 to 10.20. Fix CVE-2015-8381. Version 10.20 30-June-2015 -------------------------- 1. Callouts with string arguments have been added. 2. Assertion code generator in JIT has been optimized. 3. The invalid pattern (?(?C) has a missing assertion condition at the end. The pcre2_compile() function read past the end of the input before diagnosing an error. This bug was discovered by the LLVM fuzzer. 4. Implemented pcre2_callout_enumerate(). 5. Fix JIT compilation of conditional blocks whose assertion is converted to (*FAIL). E.g: /(?(?!))/. 6. The pattern /(?(?!)^)/ caused references to random memory. This bug was discovered by the LLVM fuzzer. 7. The assertion (?!) is optimized to (*FAIL). This was not handled correctly when this assertion was used as a condition, for example (?(?!)a|b). In pcre2_match() it worked by luck; in pcre2_dfa_match() it gave an incorrect error about an unsupported item. 8. For some types of pattern, for example /Z*(|d*){216}/, the auto- possessification code could take exponential time to complete. A recursion depth limit of 1000 has been imposed to limit the resources used by this optimization. This infelicity was discovered by the LLVM fuzzer. 9. A pattern such as /(*UTF)[\S\V\H]/, which contains a negated special class such as \S in non-UCP mode, explicit wide characters (> 255) can be ignored because \S ensures they are all in the class. The code for doing this was interacting badly with the code for computing the amount of space needed to compile the pattern, leading to a buffer overflow. This bug was discovered by the LLVM fuzzer. 10. A pattern such as /((?2)+)((?1))/ which has mutual recursion nested inside other kinds of group caused stack overflow at compile time. This bug was discovered by the LLVM fuzzer. 11. A pattern such as /(?1)(?#?'){8}(a)/ which had a parenthesized comment between a subroutine call and its quantifier was incorrectly compiled, leading to buffer overflow or other errors. This bug was discovered by the LLVM fuzzer. 12. The illegal pattern /(?(?<E>.*!.*)?)/ was not being diagnosed as missing an assertion after (?(. The code was failing to check the character after (?(?< for the ! or = that would indicate a lookbehind assertion. This bug was discovered by the LLVM fuzzer. 13. A pattern such as /X((?2)()*+){2}+/ which has a possessive quantifier with a fixed maximum following a group that contains a subroutine reference was incorrectly compiled and could trigger buffer overflow. This bug was discovered by the LLVM fuzzer. 14. Negative relative recursive references such as (?-7) to non-existent subpatterns were not being diagnosed and could lead to unpredictable behaviour. This bug was discovered by the LLVM fuzzer. 15. The bug fixed in 14 was due to an integer variable that was unsigned when it should have been signed. Some other "int" variables, having been checked, have either been changed to uint32_t or commented as "must be signed". 16. A mutual recursion within a lookbehind assertion such as (?<=((?2))((?1))) caused a stack overflow instead of the diagnosis of a non-fixed length lookbehind assertion. This bug was discovered by the LLVM fuzzer. 17. The use of \K in a positive lookbehind assertion in a non-anchored pattern (e.g. /(?<=\Ka)/) could make pcre2grep loop. 18. There was a similar problem to 17 in pcre2test for global matches, though the code there did catch the loop. 19. If a greedy quantified \X was preceded by \C in UTF mode (e.g. \C\X*), and a subsequent item in the pattern caused a non-match, backtracking over the repeated \X did not stop, but carried on past the start of the subject, causing reference to random memory and/or a segfault. There were also some other cases where backtracking after \C could crash. This set of bugs was discovered by the LLVM fuzzer. 20. The function for finding the minimum length of a matching string could take a very long time if mutual recursion was present many times in a pattern, for example, /((?2){73}(?2))((?1))/. A better mutual recursion detection method has been implemented. This infelicity was discovered by the LLVM fuzzer. 21. Implemented PCRE2_NEVER_BACKSLASH_C. 22. The feature for string replication in pcre2test could read from freed memory if the replication required a buffer to be extended, and it was not working properly in 16-bit and 32-bit modes. This issue was discovered by a fuzzer: see http://lcamtuf.coredump.cx/afl/. 23. Added the PCRE2_ALT_CIRCUMFLEX option. 24. Adjust the treatment of \8 and \9 to be the same as the current Perl behaviour. 25. Static linking against the PCRE2 library using the pkg-config module was failing on missing pthread symbols. 26. If a group that contained a recursive back reference also contained a forward reference subroutine call followed by a non-forward-reference subroutine call, for example /.((?2)(?R)\1)()/, pcre2_compile() failed to compile correct code, leading to undefined behaviour or an internally detected error. This bug was discovered by the LLVM fuzzer. 27. Quantification of certain items (e.g. atomic back references) could cause incorrect code to be compiled when recursive forward references were involved. For example, in this pattern: /(?1)()((((((\1++))\x85)+)|))/. This bug was discovered by the LLVM fuzzer. 28. A repeated conditional group whose condition was a reference by name caused a buffer overflow if there was more than one group with the given name. This bug was discovered by the LLVM fuzzer. 29. A recursive back reference by name within a group that had the same name as another group caused a buffer overflow. For example: /(?J)(?'d'(?'d'\g{d}))/. This bug was discovered by the LLVM fuzzer. 30. A forward reference by name to a group whose number is the same as the current group, for example in this pattern: /(?|(\k'Pm')|(?'Pm'))/, caused a buffer overflow at compile time. This bug was discovered by the LLVM fuzzer. 31. Fix -fsanitize=undefined warnings for left shifts of 1 by 31 (it treats 1 as an int; fixed by writing it as 1u). 32. Fix pcre2grep compile when -std=c99 is used with gcc, though it still gives a warning for "fileno" unless -std=gnu99 us used. 33. A lookbehind assertion within a set of mutually recursive subpatterns could provoke a buffer overflow. This bug was discovered by the LLVM fuzzer. 34. Give an error for an empty subpattern name such as (?''). 35. Make pcre2test give an error if a pattern that follows #forbud_utf contains \P, \p, or \X. 36. The way named subpatterns are handled has been refactored. There is now a pre-pass over the regex which does nothing other than identify named subpatterns and count the total captures. This means that information about named patterns is known before the rest of the compile. In particular, it means that forward references can be checked as they are encountered. Previously, the code for handling forward references was contorted and led to several errors in computing the memory requirements for some patterns, leading to buffer overflows. 37. There was no check for integer overflow in subroutine calls such as (?123). 38. The table entry for \l in EBCDIC environments was incorrect, leading to its being treated as a literal 'l' instead of causing an error. 39. If a non-capturing group containing a conditional group that could match an empty string was repeated, it was not identified as matching an empty string itself. For example: /^(?:(?(1)x|)+)+$()/. 40. In an EBCDIC environment, pcretest was mishandling the escape sequences \a and \e in test subject lines. 41. In an EBCDIC environment, \a in a pattern was converted to the ASCII instead of the EBCDIC value. 42. The handling of \c in an EBCDIC environment has been revised so that it is now compatible with the specification in Perl's perlebcdic page. 43. Single character repetition in JIT has been improved. 20-30% speedup was achieved on certain patterns. 44. The EBCDIC character 0x41 is a non-breaking space, equivalent to 0xa0 in ASCII/Unicode. This has now been added to the list of characters that are recognized as white space in EBCDIC. 45. When PCRE2 was compiled without Unicode support, the use of \p and \P gave an error (correctly) when used outside a class, but did not give an error within a class. 46. \h within a class was incorrectly compiled in EBCDIC environments. 47. JIT should return with error when the compiled pattern requires more stack space than the maximum. 48. Fixed a memory leak in pcre2grep when a locale is set. To generate a diff of this commit: cvs rdiff -u -r1.1 -r1.2 pkgsrc/devel/pcre2/Makefile pkgsrc/devel/pcre2/PLIST \ pkgsrc/devel/pcre2/buildlink3.mk cvs rdiff -u -r1.2 -r1.3 pkgsrc/devel/pcre2/distinfo
2015-12-27Update to sparsehash-2.0.3: Allow building with more restrict C++joerg2-8/+10
compilers.
2015-12-26lang/mono2 -> lang/mono.dholland1-3/+3
The packages this depends on all use mono and not mono2. While this package may not build with later mono, it will *definitely* not build with mixed mono versions.
2015-12-26After extracting, delete generated file that was accidentally(?) shippeddholland1-1/+6
by upstream hardwired to i386. Might fix the clang build; but in any event should make the package work better on non-i386. PKGREVISION -> 1.
2015-12-26Fix build.dholland10-2/+113
2015-12-24Adjust makefile to not redirect a failing command's output to adholland2-4/+16
private log file, where it can only be seen with access to the build machine. (The command is failing in Joerg's build)
2015-12-22Account for files installed on OpenBSDsevan1-0/+10
Reviewed by wiz@
2015-12-21From upstream https://bz.mercurial-scm.org/show_bug.cgi?id=4943richard3-2/+37
# Files opened in a+ mode have inconsistent behavior on various # platforms. Windows requires that a file positioning call be made # when the file handle transitions between reads and writes. See # 3686fa2b8eee and the mixedfilemodewrapper in windows.py. On other # platforms, Python or the platform itself can be buggy. Some versions # of Solaris have been observed to not append at the end of the file # if the file was seeked to before the end. See issue4943 for more. # # We work around this issue by inserting a seek() before writing. # Note: This is likely not necessary on Python 3. bump PKGREVISION okay'd by wiz@
2015-12-19Restrict PHP_VERSIONS_ACCEPTED to 55 and 56.taca7-9/+21
2015-12-18Update to 38.5.0ryoon1-2/+2
Sync with firefox38-38.5.0
2015-12-18Changes 1.9.3:adam8-21/+19
This release fixes two security issues: CVE-2015-5259: Remotely triggerable heap overflow and out-of-bounds read caused by integer overflow in the svn:// protocol parser. http://subversion.apache.org/security/CVE-2015-5259-advisory.txt CVE-2015-5343: Remotely triggerable heap overflow and out-of-bounds read in mod_dav_svn caused by integer overflow when parsing skel-encoded request bodies. http://subversion.apache.org/security/CVE-2015-5343-advisory.txt
2015-12-17Update to Jenkins 1.642.asau3-219/+47
Changes in 1.642 (2015/12/13) - Various kinds of settings could not be saved since 1.640. (issue 31954) Changes in 1.641 (2015/12/09) - Important security fixes (CVE-2015-7536, CVE-2015-7537, CVE-2015-7538, CVE-2015-7539) Changes in 1.640 (2015/12/07) - Added support of default values in the enum.jelly form element. (PR 1926) - Bytecode Compatibility Transformer computes the common super class without loading classes. Fixes the ClassCircularityError exception in Ruby Runtime Plugin. (issue 31019) - Extended Choice parameter definitions could not be saved since 1.637. (issue 31458) - Display expected CRON run times even if a warning occurs. (issue 29059) - Rework the online-node command implementation, no functional changes. (issue 31776) - Fix the footer behavior in particular cases. (issue 30304, issue 31395) - API changes: Deprecate subclassing of hudson.Plugin. (PR 1940) Changes in 1.639 (2015/11/29) - "Discard old builds" setting would be lost if resaving job configuration as of 1.637 without rechecking the box. (issue 31518) - "Form too large" errors from Jetty when submitting massive forms. (issue 20327) - Multiple workspace browser features broken on Windows masters since 1.634. (issue 31015) Changes in 1.638 (2015/11/11) - Important security fixes (CVE-2015-5317, CVE-2015-5318, CVE-2015-5319, CVE-2015-5320, CVE-2015-5324, CVE-2015-5321, CVE-2015-5322, CVE-2015-5323, CVE-2015-5325, CVE-2015-5326, CVE-2015-8103) Changes in 1.637 (2015/11/08) - Remove useless warnings about a JDK named null. (issue 31217) - New OptionalJobProperty class to simplify JobProperty creation. (pull 1888) Changes in 1.636 (2015/11/01) - Add "lastCompletedBuild" job permalink. (issue 26270) Changes in 1.635 (2015/10/25) - Make Node implement Saveable. (issue 31055) - Revert trigger optimizations made in 1.621 by PR 1617. (issue 30745) - Delegate CLI's delete-node command to the overridable Computer.doDoDelete() method. Fixes the issue in OpenStack and JClouds plugins. (issue 31098, regression in 1.618) - Prevent autocorrect of username on mobile devices in login forms. (PR 1531) - Describe the built-in JDK as "(System)". (issue 755) - Update JNA library to 4.2.1 in order to integrate fixes for linux-ppc64 and linux-arm platforms. (issue 15792) Changes in 1.634 (2015/10/18) - Fix order of builds in new builds history widget introduced in 1.633. (issue 30899) - Bytecode Compatibility Transformer would fail to transform some classes resulting in ClassNotFoundException. (issue 30820) - Prevent ClassCastException in AbstractBuild::reportError() if the build step is not Publisher. (issue 30730) - Trim job names during the rename operation (it is impossible to delete or rename jobs with trailing spaces). (issue 30502) - Add "graphBg" and "plothBg" background color options to plot URLs (PR 1769) - API changes: Add get method for causes of interruption in hudson.model.Executor (PR 1712) - Allow case insensitive file patterns in Artifacts Archiving. (issue 5253) - Prevent NullPointerException while estimating duration of Queue executable items. (issue 30456) - Fix the resolution of Windows symbolic links in SecretRewriter. (issue 30456) - Let a combobox display its drop-down when focused, so users can see candidates without entering a letter. (issue 26278) Changes in 1.633 (2015/10/11) - Added safari pinned tab icon. - Plugin Manager UI changes to prevent users from enabling/disabling/uninstalling plugins at the "wrong" time. (issue 23150) - bytecode-compatibility-transformer produces malformed bytecode. (issue 28781) - Properly handle RuntimeExceptions in run retention policy handler calls. (issue 29888) - Prevent NullPointerException in CLI if Jenkins cannot find the specified job or a job with the nearest name. (issue 30742) - Do not show REST API link for pages, which have no API handlers. (issue 29014) - JS alert preventing to leave a configuration page without changes. (issue 21720) - JS error triggered by collapsing build history widget. (issue 30569) - Build history pagination and search. (issue 26445) Changes in 1.632 (2015/10/05) - Optimize TagCloud size calculation. (issue 30705) - FlyWeightTasks tied to a label will not cause node provisioning and will be blocked forever. (issue 30084) - Prevent NullPointerException for disabled builds in ReverseBuildTrigger. (issue 29876) - ConsoleLogFilter wasn't truly global (issue 30777) - API changes: hudson.Util.isOverridden() now supports protected methods. (issue 30002) - Sidepanel controls with confirmation (lib/layout/task) did not assign the proper CSS style. (issue 30787) Changes in 1.631 (2015/09/27) - Add proper labels for plugin categories assigned to some plugins. (PR 1758) Changes in 1.630 (2015/09/20) - Make JenkinsRule useable on systems which don't support JNA (issue 29507) Changes in 1.629 (2015/09/15) - Old data monitor made Jenkins single-threaded for all saves. (issue 30139) Changes in 1.628 (2015/09/06) - Replaced all non java.util.logging logging libraries with slf4j interceptors. (PR 1816) - Document allBuilds subtree in remote API for jobs. (PR 1817) Changes in 1.627 (2015/08/30) - Race condition in triggers could cause various NullPointerExceptions. (issue 29790) - Archiving of large artifacts. Tar implementation cannot handle files having a size >8GB. (issue 10629) - Allow plugins to augment or replace the plugin manager UI. (PR 1788) Changes in 1.626 (2015/08/23) - RunIdMigrator fails to revert Matrix and Maven jobs. (issue 29989) - Fix error message "Failed to listen to incoming slave connection" after fixing port through init.groovy.d. (issue 29798) Changes in 1.625 (2015/08/17) - Fixed a deadlock between the old data monitor and authorization strategies. (issue 29936) - Allow rejecting configurations with errors in critical fields via REST / CLI. (issue 28440) - Do not display No changes if changelog is still being computed. (issue 2327) Changes in 1.624 (2015/08/09) - Allow more job types to use a custom "Build Now" text. (issue 26147) Changes in 1.623 (2015/08/02) - No notable changes in this release. Changes in 1.622 (2015/07/27) - Jenkins now support self-restart and daemonization in FreeBSD (PR 1770) - Node provisioner may fail to correctly indicate that provisioning was finished. (issue 29568) Changes in 1.621 (2015/07/19) - Sort by 'Free Disk Space' is incorrect. (issue 29286) - Label expression help is missing in recent Jenkins versions. (issue 29376) - Pre-emptively break memory cycles causing excessive live-set retention in remoting layer. (issue 28844) - Don't run trigger for disabled/copied projects. (PR 1617) Changes in 1.620 (2015/07/12) - Display system info even when slave is temporarily offline. (issue 29300) Changes in 1.619 (2015/07/05) - Update auto-installer metadata for newly installed plugins. (issue 27694) - Allow plugins to veto process killing. (issue 9104) Changes in 1.618 (2015/06/29) - Fix deadlock in hudson.model.Executor. (issue 28690) - Don't truncate /consoleText output after fixed number of lines. (issue 14899) - Allow delete-* CLI commands to operate on multiple arguments. (issue 28041) - Prevent NullPointerException in Executor/causeOfDeath page if there is no exception details. (issue 25734) - Fixed synchronization issue when setting JDK installations. (issue 28292) - Fix several loggers which are identifying as the wrong class. (PR 1651) - Revert fix for issue 17290 due to the regressions it caused. (issue 28601) - Fix deadlock between hudson.model.Queue and hudson.model.Computer. (issue 28840) - Fix jobs getting stuck in the Queue when there exists a cycle of upstream/downstream blocks between them. (issue 28926) - Always use earlier start time when merging two equivalent queue items. (issue 2180) Changes in 1.617 (2015/06/07) - Regression in build-history causing ball to not open console (issue 28704) - JNLP slaves did not pick up changes to environment variables. (issue 27739) - NullPointerException in AbstractProject constructor if Jenkins nodes has not been loaded yet (issue 28654) Changes in 1.616 (2015/05/31) - Job loading can be broken by NullPointerException in a build trigger (issue 27549) Changes in 1.615 (2015/05/25) - Improper calculation of queue length in UnlabeledLoadStatistics causing overheads in Cloud slave provisioning (issue 28446) - Category titles in Available Plugins list appear wrong in reverse sort order (issue 17290) - CronTab API: Timezone support for scheduling (issue 9283) - NullPointerException when trying to reset Jenkins admin address (issue 28419) - Reduce the thread overhead in NodeMonitorUpdater (PR 1714) - Build history overflows (issue 28425) - Build History badges don't wrap (issue 28455) Changes in 1.614 (2015/05/17) - ExtensionList even listener. (issue 28434) - NullPointerException computing load statistics under some conditions. (issue 28384) - Plugins using class loader masking did not work properly over the slave channel. (issue 27289) - DefaultJnlpSlaveReceiver now returns true when rejecting a takeover. (issue 27939) - Do not follow href after sending POST via l:task (issue 28437) Changes in 1.613 (2015/05/10) - Update bundled LDAP plugin in order to restore missing help files (issue 28233) - hudson.model.Run.getLog() throws IndexOutOfBoundsException when called with maxLines=0 (issue 27441) Changes in 1.612 (2015/05/03) - Jenkins now requires Java 7. (announcement, issue 28120) - Handle AbortException publisher status in the same way as deprecated false boolean status (issue 26964) - Ensures GlobalSettingsProvider does not swallow fatal exceptions (issue 26604) - add datestamp to node-offline message (issue 23917) - Larger minimum popup menu height. (issue 27067) - Descriptor.getId fix in 1.610 introduced regressions affecting at least the Performance and NodeJS plugins. (issue 28093 and issue 28110) - Under rare conditions Executor.getProgress() can throw a Division by zero exception. (issue 28115) - The Run from the command line option for launching a JNLP - slave should display the configured JVM options. (issue 28111) Changes in 1.611 (2015/04/26) - Descriptor.getId fix in 1.610 introduced a regression affecting at least the Copy Artifacts plugin. (issue 28011) - Search box did not work well inside folders. (issue 24433) - Revert changes in 1.610 made to resolve issue 10629. (issue 28012, issue 28013) - Advertise JNLP slave agents to the correct host name, even in the presence of a reverse proxy. (issue 27218) - Advertised TCP slave agent port number is made tweakable. - Correctly identify Channel listener onClose propagated exceptions (issue 28062) Changes in 1.610 (2015/04/19) - Since 1.598 overrides of Descriptor.getId were not correctly handled by form binding, breaking at least the CloudBees Templates plugin. (issue 26781) - Reverted in 1.611, reimplemented in 1.627. Archiving of large artifacts. Tar implementation cannot handle files having a size >8GB. (issue 10629) - The queue state was not updated between scheduling builds. (issue 27708, issue 27871) Changes in 1.609 (2015/04/12) - When concurrent builds are enabled, artifact retention policy may delete artifact being used by an actually running build. (issue 27836) - Documentation for $BUILD_ID did not reflect current reality (issue 26520) Changes in 1.608 (2015/04/05) - PeepholePermalink RunListenerImpl oncompleted should be triggered before downstream builds are triggered. (issue 20989) - NPE when /script used on offline slave. (issue 26751) - Make periodic workspace cleanup configurable through system properties. (issue 21322) - Do not offer to restart on /restart and /safeRestart if the configuration does not support it. (issue 27414) - Polling was skipped while quieting down, resulting in ignored commit notifications. This behavior was changed. (issue 26208) - Starting this version, native packages are produced from the new repository. File issues related to installers and packages in the packaging component. Changes in 1.607 (2015/03/30) - JSONP served with the wrong MIME type and rejected by Chrome. (issue 27607) - Security file pattern whitelist was broken for some plugins since 1.597. (issue 27055) - Lock an Executor without creating a Thread (issue 25938) - Hide flyweight master executor when ≥1 heavyweight executors running as subtasks (issue 26900) - Way to mark an Executable that should not block isReadyToRestart (issue 22941) - Refactor the Queue and Nodes to use a consistent locking strategy (issue 27565) Note that this change involved moving slave definitions outside the main config.xml file. If you downgrade after this, your slave settings will be lost. - Makes the Jenkins is loading screen not block on the extensions loading lock (issue 27563) - AdjunctManager: exception upon startup (issue 15355) - Removes race condition rendering the list of executors (issue 27564) - Tidy up the locks that were causing deadlocks with the once retention strategy in durable tasks (issue 27476) - Remove any requirement from Jenkins Core to lock on the Queue when rendering the Jenkins UI (issue 27566) - Prevent lazy loading operation when obtaining label information. (issue 26391) - Ensure that the LoadStatistics return a self-consistent result. (issue 21618) - Build reports to be running for 45 yr and counting. (issue 26777) Changes in 1.606 (2015/03/23) - Jenkins CLI doesn't handle arguments with equal signs (issue 21160) - master/slave communication ping reacts badly if a clock jumps. (issue 21251) - JNLP slaves can now connect to master through HTTP proxy. (issue 6167) - Fixes to several security vulnerabilities. (advisory) Changes in 1.605 (2015/03/16) - Integrate Stapler fix for queue item API always returning 404 Not Found since 1.601. (issue 27256) Changes in 1.604 (2015/03/15) - Added a switch (-Dhudson.model.User.allowNonExistentUserToLogin=true) to let users login even when the record is not found in the backend security realm. (issue 22346) - Avoid deadlock when using build-monitor-plugin. (issue 27183) - As security hardening, mark "remember me" cookie as HTTP only (issue 27277) - Show displayName in build remote API. (issue 26723) Changes in 1.602 (2015/03/08) - Show Check Now button also on Available and Updates tabs of plugin manager. (PR 1593) Changes in 1.601 (2015/03/03) - Regression with environment variables in 1.600. (issue 27188) - Errors with concurrent matrix builds since 1.597. (issue 26739) - Errors in Dashboard View plugin since 1.597. (issue 26690) - Robustness improvement when setting up Archive Artifacts programmatically. (issue 25779) - Map Queue.Item.id onto Run (issue 27096) Changes in 1.600 (2015/02/28) - Fixes to multiple security vulnerabilities. - JDK auto-installer for Mac OSX - An error thrown in the wrong place in a publisher could result in a failure to release a workspace lock. (issue 26698) - Cache node environment to prevent unnecessary channel usage (issue 26755) - Build history text field wrap fails when containing markup (issue 26406) - Maven build step fail to launch mvn process when special chars are present in build variables. (issue 26684) Changes in 1.599 (2015/02/16) - Errors in some Maven builds since 1.598. (issue 26601) - Build format change migrator in 1.597 did not work on some Windows systems. (issue 26519) - Remote FilePath.chmod fails with ClassNotFoundException: javax.servlet.ServletException. (issue 26476) - Added SimpleBuildWrapper API. (issue 24673) - Animated ball in job's build history widget won't open Console Output. (issue 26365) - Show job name in Schedule Build column tool tip. (issue 25234) - Allow OldDataMonitor to discard promoted-build-plugin Promotions (issue 26718) Changes in 1.598 (2015/01/25) - FutureImpl does not cancel its start future. (issue 25514) - Flyweight tasks were under some conditions actually being run on heavyweight executors. (issue 10944) (issue 24519) - Folder loading broken when child item loading throws exception. (issue 22811) - Plugin icon images were broken when running Jenkins from a UNC path. (issue 26203) - Allow admin signup from /manage as well. (issue 26382) - Amend JAVA_HOME check to work with JDK 9. (issue 25601) - CLI list-jobs command should display raw name, not display name, where they differ. (issue 25338) - Show queue item parameters in tool tip. (issue 22311) - Better support functional tests from Gradle-based plugins. (issue 26331) - Allow users to delete builds even if they are supposed to be kept. (issue 26281) - Fixed side/main panel scrolling issues. (issue 26312, issue 26298, issue 26306) - Improve error reporting when channel closed during build. (issue 26411) - Fixed CodeMirror issue with height and re-enabled syntax highlighting in shell build step. (issue 25455, issue 23151) Changes in 1.597 (2015/01/19) - JENKINS_HOME layout change: builds are now keyed by build numbers and not timestamps. See Wiki for details and downgrade. (issue 24380) - Do not throw exception on /signup when not possible. (issue 11172) - Tool installer which downloads and unpacks archives should not fail the build if the tool already exists and the server returns an error code. (issue 26196) - Fingerprint compaction aggravated lazy-loading performance issues. (issue 19392) - Possible unreleased workspace lock if SCM polling fails during setup. (issue 26201) - Misleading description of the 'workspace' permission. (issue 20148) - Run parameters should show display name if set, rather than build numbers. (issue 25174) - Add range check for H(X-Y) syntax. (issue 25897) Changes in 1.596 (2015/01/04) - Build page was broken in Hungarian localization while building. (issue 26155) - Allow breaking label and node lists. (issue 25989) Changes in 1.595 (2014/12/21) - Spurious warnings in the log after deleting builds. (issue 25788) - Master labels disappear when system configuration is updated. (issue 23966) - Updated icon-set dependency to version 1.0.5. (issue 25499, issue 25498) Changes in 1.594 (2014/12/14) - After recent Java security updates, Jenkins would not gracefully recover from a deleted secrets/master.key. (issue 25937) - Restrict where this project can be run regressed in 1.589 when using the ClearCase plugin. (issue 25533) Changes in 1.593 (2014/12/07) - Dynamic Single/Multi line Build History layout. (issue 25381, issue 25393, issue 24687, issue 24589) Changes in 1.592 (2014/11/30) - Performance problems on large workspaces associated with validating file include patterns. (issue 25759) Changes in 1.591 (2014/11/25) - Always use forward slashes in path separators during in ZIP archives generated by Directory Browser (issue 22514) Changes in 1.590 (2014/11/16) - Basic Authentication in combination with Session is broken (issue 25144) - Some plugins broken since 1.584 if they expected certain events to be fired under a specific user ID. (issue 25400) - Fixed various real or potential resource leaks discovered by Coverity Scan (pull request 1434) - API changes: Expose AbstractProject.AbstractProjectDescriptor#validateLabelExpression for plugins. (pull request 1456) - API method to aggregate multiple FormValidations into one. (pull request 1458) - API method to get non-null Jenkins instance with internal validation (issue 23339) Changes in 1.589 (2014/11/09) - JNA error in WindowsInstallerLink.doDoInstall. (issue 25358) - Restore compatibility of label assignment for some plugins. (issue 25372) Changes in 1.588 (2014/11/02) - Unnecessarily slow startup time with a massive number of jobs. (issue 25473) - Custom workspace option did not work under some conditions. (issue 25221) Changes in 1.587 (2014/10/29) - Queue didn't always leave a trail for cancelled items properly (issue 25314) - JNA update for deprecated JNA-POSIX library. (issue 24527) - Introduced slave-to-master security mechanism to defend a master from slaves. (SECURITY-144) Changes in 1.586 (2014/10/26) - Bumping up JNA to 4.10. This is potentially a breaking change for plugins that depend on JNA 3.x (issue 24521) - Prevent empty file creation if file parameter is left empty. (issue 3539) - Servlet containers may refuse to let us set secure cookie flag. Deal with it gracefully. (issue 25019) - Existing FileParameters should be handled as different values to avoid merging of queued builds (issue 19017) Changes in 1.585 (2014/10/19) - Build health computed repeatedly for a single Weather column cell. (issue 25074) - Missing workspace page should use 404 status code. (issue 10450) - Fixed memory leak occurring on pages producing incremental output with a progress bar. (issue 25081) - Updated SSH Slaves plugin to 1.8. - Due to the reaction, default umask in debian package is set back to 022 (issue 25065) - Greater-than characters are not escaped in HTML outputs like e-mails (issue 16184) - Thread starvation from OldDataMonitor. (issue 24763) - Integer overflow in quiet-down timeout calculation (issue 24914) - Don't put session IDs in URLs even when cookies are disabled. (issue 22358) - Show keep build log reason in tool tips (pull request 1422) - Do not disable projects, which do not support such operation (like Matrix configurations) (issue 24340) - Improved the scalability of SSH slaves plugin caused by global lock in SecureRandom (issue 20108) - Incorporated a fix for "Poodle" (CVE-2014-3566) vulnerability in the HTTPS connector of "java -jar jenkins.war" (issue 25169) Changes in 1.584 (2014/10/12) - Diagnostic thread names are now available while requests are still in filters - When killing Windows processes, check its critical flag to avoid BSoD (issue 24453) - When a user could not see a view, but could delete/move/rename jobs contained in it, the view was not properly updated. (issue 22769) - Use POST for cancel quiet down link. (issue 23020, issue 23942) - Do not consider port in use error to be a successful start of Jenkins on Debian. (issue 24966) Changes in 1.583 (2014/10/01) - Fixes to multiple security vulnerabilities: SECURITY-87/CVE-2014-3661 (anonymous DoS attack through CLI handshake) SECURITY-110/CVE-2014-3662 (User name discovery) SECURITY-127&128/CVE-2014-3663 (privilege escalation in job configuration permission) SECURITY-131/CVE-2014-3664 (directory traversal attack) SECURITY-138/CVE-2014-3680 (Password exposure in DOM) SECURITY-143/CVE-2014-3681 (XSS vulnerability in Jenkins core) SECURITY-150/CVE-2014-3666 (remote code execution from CLI) SECURITY-155/CVE-2014-3667 (exposure of plugin code) SECURITY-159/CVE-2013-2186 (arbitrary file system write) SECURITY-149/CVE-2014-1869 (XSS vulnerabilities in ZeroClipboard) SECURITY-113/CVE-2014-3678 (XSS vulnerabilities in monitoring plugin) SECURITY-113/CVE-2014-3679 (hole in access control) Changes in 1.582 (2014/09/28) - Channel reader thread can end up consuming 100% CPU. (issue 23471) - CancelledKeyException can cause all JNLP slaves to disconnect (and the problem remains until restart). (issue 24050) - Consider dynamic label assignments for label load statistics. (issue 15576) - Use Windows line endings for batch file build steps. (issue 7478) - Reduced the logging clutter about the lack of @ExportedBean. (issue 24458) - Character encoding problem in form submission when file parameters are present. (issue 11543) - Improved error handling and "in-progress" UI feedback in JNLP slave to service installation. - Winstone 2.4: reverse proxy support in the logging, request header size limit control, and different private key password from keystore password. (issue 23665) - umask setting on Debian did not work. (pull 1397) - handle job move when buildDir is configured to a custom location. (issue 24825) Changes in 1.581 (2014/09/21) - Use slightly larger Jenkins head icon. (pull 1360) - Allow setting a system property to disable X-Frame-Options header. (issue 21881) - Explicitly set background color of various UI elements to white. (issue 24625) - Wrong Hebrew localization resulted in broken console output since 1.539. (issue 24614) Changes in 1.580 (2014/09/14) - Health reports saved to disk before 1.576 showed no weather icon since that version. (issue 24407) - Renaming jobs fails if parent dir of custom build records directory does not exist. (issue 19764) - Add editable descriptions for label atoms. (issue 6153) Changes in 1.579 (2014/09/06) - ConcurrentModificationException in RunListProgressiveRendering. (issue 21437) - StackOverflowError for some old SCMListeners. (issue 23522) - Job status page shows "Build has been executing for null on master" for flyweight tasks. (issue 20307) - File locking issue when running functional tests on Windows. (issue 21977) - Tolerate ?auto_refresh in reverse proxy check on /manage page. (issue 24014) - Debian package now sets umask to 027 by default for better default privacy. See /etc/default/jenkins to change this. (issue 24514) Changes in 1.578 (2014/08/31) - Added 'no-store' to the 'Cache-Control' header to avoid accidental information leak through local cache backup (issue 24337) - Deadlock in OldDataMonitor. (issue 24358) - Use absolute links for computer sidepanel items so they don't break as easily. (issue 23963) Changes in 1.577 (2014/08/24) - Failure to migrate legacy user records in 1.576 properly broke Jenkins, resulted in NullPointerExceptions. (issue 24317) - Jenkins did not correctly display icons contributed by plugins in 1.576. (issue 24316) - Moved JUnit reporting functionality to a plugin. (issue 23263) - Fixed ClassCastException on org.dom4j.DocumentFactory (issue 13709) - Jenkins now logs warnings when it fails to export objects to XML/JSON. This can result in a lot of log output in case of heavy API use. We recommend that API users use the ?tree parameter instead of ?depth. - Allow BuildStep to work with non-AbstractProject (issue 23713) - Improved class loading performance when using Groovy. (issue 24309) - Prevent NullPointerException from Executor.run. (issue 24110) - Make the lifetime of queue items cache configurable. (issue 19691) - Support --username/--password authentication for CLIMethod based CLI commands. (issue 23988) - Don't link to /safeRestart after update if Jenkins cannot restart itself. (issue 24032) - Properly consider busy executors when reducing a node's executor count. (issue 24095) Changes in 1.576 (2014/08/18) - Worked around "incompatible InnerClasses attribute" bug in IBM J9 VM (issue 22525) - Fixed a file descriptor leak with CLI connections. (issue 23248) - Fixed a regression that removed all users with uppercase letters in the user name since 1.566. (issue 23872) - Improving security of set-build-parameter and set-build-result CLI commands. (issue 24080) - Startup can be broken by deeply recursive causes in build records. (issue 24161) - Displaying unabridged test result trend on project index page defeated lazy loading. (issue 23945) - Added support for host:port format in X-Forwarded-Host header. (commit 19d8b80) - API to launch processes without printing the command line. (issue 23027) - Added option to increase impact of test failures on the weather report. (issue 24006) - Modernized sidebar <l:pane>s and making them work better with new layout. (issue 23810, issue 23829) - Add option to CLI to skip key authentication (e.g. when there's a password on the default key). (issue 23970) - Modernize tabBar and bigtable. Makes the project view look better. Same for Plugin Manager. (issue 24030) Changes in 1.575 (2014/08/10) - Move option to fingerprint artifacts to Archive the Artifacts, Advanced options. (commit f43a450) - Move option to keep dependencies (builds) from Fingerprint to Advanced Project Options. (commit a8756c6) - Improved validation of Build Record Root Directory setting. (issue 14538) - Indicate which node the workspace being viewed is on. (issue 23636) - Show full project name for projects in folders. (issue 22971) - UI redesign: Shrink the top bar, change logo, changed links in top bar. - Killing processes started by builds on Unix was broken as of 1.553. (issue 22641) - Should not stop a build from finishing just to compute JUnit result difference to a prior build which is still running. (issue 10234) - Do not show link to System Information page for offline slaves, make page more robust when offline. (issue 23041) - Fix link to SCM polling log from downstream job cause. (issue 18048) - Autocomplete logger names. (issue 23994) - UI redesign: Fix links in header bar when logged in. - Do not show changes for the build at the lower bound of the changes list. (issue 18902) - Restrict access to SCM trigger status page to administrators. (pull 1282) Changes in 1.574 (2014/07/27) - UI redesign: Use Helvetica as default font (issue 23840) - Synchronization issue during tool installation (issue 17667) - Use native encoding for filenames in downloaded ZIPs. (issue 20663) Changes in 1.573 (2014/07/20) - UI redesign: Changed element alignment, removed sidebar link underlines (pull 1314, pull 1316) - Word-break links in build logs to preserve page width (pull 1308) - Log rotation fails with "...looks to have already been deleted" (issue 22395) - Fixed unnecessary eager loading of build records in certain code path. (issue 18065) Changes in 1.572 (2014/07/13) - UI redesign: Changed header, made layout <div>-based and responsive (pull 1310) - Improved handling of X-Forwarded-* headers (issue 23294) - Do not offer automatic upgrade if war parent directory is not writable (issue 23683) Changes in 1.571 (2014/07/07) - IllegalArgumentException from AbstractProject.getEnvironment when trying to get environment variables from an offline slave. (issue 23517) - Overall.READ is sufficient to access /administrativeMonitor/hudsonHomeIsFull/ (SECURITY-134) - Master computer is not notified using ComputerListener (issue 23481) Changes in 1.570 (2014/06/29) - Add CLI commands to add jobs to and remove jobs from views (add-job-to-view, remove-job-from-view). (issue 23361) - UI improvements / refreshing. (issue 23492) - Failed to correctly resave a project configuration containing both a forward and a reverse build trigger. (issue 23191) - Long log output resulted in missing Console link in popup. (issue 14264) - HTTP error 405 when trying to restart ssh host. (issue 23094) - Move 'None' Source Code Management option to top position. (issue 23434) - Fixed NullPointerException when ArctifactArchiver is called for a build with the undefined status. (issue 23526) - Allow disabling use of default exclude patterns in ArctifactArchiver (.git, .svn, etc.). (issue 20086) - Fixed NullPointerException when "properties" element is missing in a job's configuration submission by JSON (issue 23437) Changes in 1.569 (2014/06/23) - Jenkins can now kill Win32 processes from Win64 JVMs. (issue 23410) - Allow custom security realm plugins to fire events to SecurityListeners. (issue 23417) - Recover gracefully if a build permalink has a non-numeric value. (issue 21631) - Fix form submission via the Enter key for Internet Explorer version 9. (issue 22373) - When Jenkins had a lot of jobs, submitting a view configuration change could overload the web server, even if few of the jobs were selected. (issue 20327) Changes in 1.568 (2014/06/15) - Fixed JNLP connection handling problem (issue 22932) - Fixed NullPointerException caused by the uninitialized ProcessStarter environment in build wrappers (issue 20559) - Support the range notation for pagination in API (issue 23228) - Incorrect redirect after deleting a folder. (issue 23375) - Incorrect links from Build History page inside a folder. (issue 19310) - API changes allowing new job types to use SCM plugins. (issue 23365) - API changes allowing to create nested launchers (DecoratedLauncher) (issue 19454) Changes in 1.567 (2014/06/09) - Fixed a reference counting bug in the remoting layer. - Avoid repeatedly reading symlinks from disk to resolve build permalinks. (issue 22822) - Show custom build display name in executors widget. (issue 10477) - CodeMirror support for shell steps broke initial configuration. (issue 23151) - Jenkins on Linux can not restart after plugin update when started without full path to java executable (issue 22818) - Fixed NullPointerException when a build triggering returns null cause (issue 20499) - Fixed NullPointerException on plugin installations when invalid update center is set (issue 20031) - Use DISABLED_ANIME icon while building a disabled project (issue 8358) - Process the items hierarchy when displaying the Show Poll Thread Count option (issue 22934) - Compressed output was turned on even before Access Denied errors were shown for disallowed Remote API requests, yielding a confusing error. (issue 17374) (issue 18116) - Properly close input streams in FileParameterValue (issue 22693) - Incorrect failure age in the JUnit test results (issue 18626) - Fixed deletion links for JVM Crash error logs (issue 22617) - Distinguish "nodes for label offline" from "no nodes for label" (issue 17114) - Add causes to queue item tool tip (issue 19250) - RPM: added JENKINS_HTTPS_KEYSTORE and JENKINS_HTTPS_KEYSTORE_PASSWORD options to Jenkins sysconfig file (issue 11673) - RPM: Do not install jenkins.repo file (issue 22690) - Don't advertise POSTing config.xml on master (issue 16264) - Handle null parameter values to avoid massive executor deaths (issue 15094) - Added an option to archive artifacts only when the build is successful (issue 22699) Changes in 1.566 (2014/06/01) - Configurable case sensitivity mode for user IDs. (issue 22247) - Extension point for project naming strategies did not work from actual plugins. (issue 23127) - Introduce directly modifiable views (issue 22967) - Jenkins cannot restart Windows service (issue 22685)
2015-12-17Fix build under GCC 4.5.3 (NetBSD 6)ryoon3-2/+22
2015-12-15Update py-ipython to 3.2.1markd4-757/+1046
IPython 3.2.1 IPython 3.2.1 is a small bugfix release, primarily for cross-site security fixes in the notebook. Users are strongly encouraged to upgrade immediately. There are also a few small unicode and nbconvert-related fixes. IPython 3.2 IPython 3.2 contains important security fixes. Users are strongly encouraged to upgrade immediately. Highlights: - Address cross-site scripting vulnerabilities CVE-2015-4706, CVE-2015-4707 - A security improvement that set the secure attribute to login cookie to prevent them to be sent over http - Revert the face color of matplotlib axes in the inline backend to not be transparent. - Enable mathjax safe mode by default - Fix XSS vulnerability in JSON error messages - Various widget-related fixes IPython 3.1 Released April 3, 2015 The first 3.x bugfix release, with 33 contributors and 344 commits. This primarily includes bugfixes to notebook layout and focus problems. Highlights: - Various focus jumping and scrolling fixes in the notebook. - Various message ordering and widget fixes in the notebook. - Images in markdown and output are confined to the notebook width. An .unconfined CSS class is added to disable this behavior per-image. The resize handle on output images is removed. - Improved ordering of tooltip content for Python functions, putting the signature at the top. - Fix UnicodeErrors when displaying some objects with unicode reprs on Python 2. - Set the kernel’s working directory to the notebook directory when running nbconvert --execute, so that behavior matches the live notebook. - Allow setting custom SSL options for the tornado server with NotebookApp.ssl_options, and protect against POODLE with default settings by disabling SSLv3. - Fix memory leak in the IPython.parallel Controller on Python 3. Release 3.0 Released February 27, 2015 This is a really big release. Over 150 contributors, and almost 6000 commits in a bit under a year. Support for languages other than Python is greatly improved, notebook UI has been significantly redesigned, and a lot of improvement has happened in the experimental interactive widgets. The message protocol and document format have both been updated, while maintaining better compatibility with previous versions than prior updates. The notebook webapp now enables editing of any text file, and even a web-based terminal (on Unix platforms). 3.x will be the last monolithic release of IPython, as the next release cycle will see the growing project split into its Python-specific and language-agnostic components. Language-agnostic projects (notebook, qtconsole, etc.) will move under the umbrella of the new Project Jupyter name, while Python-specific projects (interactive Python shell, Python kernel, IPython.parallel) will remain under IPython, and be split into a few smaller packages. To reflect this, IPython is in a bit of a transition state. The logo on the notebook is now the Jupyter logo. When installing kernels system-wide, they go in a jupyter directory. We are going to do our best to ease this transition for users and developers.
2015-12-14Fix default search path for pkgconfig files.wiz1-2/+3
Use pkgsrc default path, then operating system default path. Bump PKGREVISION.
2015-12-14c99 fixes SunOSwiedi1-1/+2
2015-12-13Update py-setuptools to 18.8.wiz2-7/+7
---- 18.8 ---- * Deprecated ``egg_info.get_pkg_info_revision``. * Issue #471: Don't rely on repr for an HTML attribute value in package_index. * Issue #419: Avoid errors in FileMetadata when the metadata directory is broken. * Issue #472: Remove deprecated use of 'U' in mode parameter when opening files.
2015-12-13Update waf to 1.8.17:wiz2-7/+7
NEW IN WAF 1.8.17 ----------------- * Added customizations that enable building whole projects from the build folder instead of the variant folder * Added a project generator for Xcode 6 #1648 * Force scanner functions to run after task failures #1660 * Improved the Intel Fortran compiler detection #1655 * Added processing of chmod attributes on subst and rule when provided #1650 * Enabled global_define in conf.check() tests * Enabled usage of home folder/tilde ~ in Configure.find_files * Added usage of options.enable_gccdeps when provided by user scripts * Enabled 'waf -v' to catch invalid string on hcode values in Python3 * Fixed the function names returned by the @conf and @run_once decorators * Let 'subst' change permissions for all its files with chmod (not just the first one) * Added quoting for space-containing-arguments in print_commands.py
2015-12-13Update libtar to 1.2.20. Use the Arch Linux distfile, as upstream hasbsiegert4-84/+15
mostly disappeared. Fixes the security issue at http://secunia.com/advisories/55188/.
2015-12-13Add pkg_alternatives support.taca2-1/+5
Bump PKGREVISION.
2015-12-13Add and enable ruby-octokit.taca1-1/+2
2015-12-13Add ruby-octokit, required by new ruby-jekyll-gist package.taca4-0/+95
Octokit Ruby toolkit for the GitHub API.
2015-12-13Update SOPE to 2.3.3 required by SOGo 2.3.3a.taca2-8/+7
Changes are not available.
2015-12-13Bump PKGREVISION forszptvlfn6-12/+12
hs-primitive-0.6.1.0 || hs-vector-0.11.0.0 || hs-mwc-random-0.13.3.2 || hs-vector-algorithms-0.7.0.1
2015-12-13Update to 0.7.0.1szptvlfn4-12/+14
Changes from http://hub.darcs.net/dolio/vector-algorithms/changes TAG 0.7.0.1 dolio August 13, 2015 Version bump dolio August 13, 2015 Bump upper bound on vector bgamari August 11, 2015 Updated base bound due to unsafeShiftR Pointed out by Adam Bergmark dolio May 05, 2015 TAG 0.7 dolio May 05, 2015 Updated copyrights in license file dolio May 05, 2015 Copyright updates dolio April 27, 2015 Moved the gallop searches to the search module Also added versions that don't take bounds dolio April 27, 2015 Finished explaining the timsort algorithm dolio April 27, 2015 Improved intro and heap documentation. dolio April 26, 2015 Made an argument stricter in the timsort searches dolio April 26, 2015 Added an option to build with llvm dolio April 23, 2015 Implemented insertion in the heap module. dolio April 21, 2015 Fixed a comment in AmericanFlag caused by a replace dolio April 19, 2015 Added dump-simpl flag to benchmark build dolio April 19, 2015 Resolved version bump conflict dolio April 19, 2015 TAG 0.6.0.4 dolio April 01, 2015 Allow building with primitive 0.6 dolio April 01, 2015 Fix maintainance of invariant for length of runs Timsort maintains a list of sorted segments (called ?runs?) in an list called ?runLen?. To ensure that a small array suffices for this, timsort imposes an invariant on the lengths of runs: each run must be shorter than the preceding run in ?runs? and the sum of the lengths of two consecutive runs must be lower than the length of the run preceding the two runs. In effect, the (reverted) sequence of run lengths grows at least as fast as the fibonacci sequence. The operation that adds a new run to the list of runs (and merges runs, if necessary) makes sure that the new list ?runLen? satisfies runLen [n-2] > runLen [n-1] + runLen [n] runLen [n-1] > runLen [n] It has recently been discovered that this doesn't suffice to maintain the invariant for all triples of consecutive runs: http://envisage-project.eu/proving-android-java-and-python-sorting-algorithm-is-broken-and-how-to-fix-it/ This patch fixes this problem. Correctness of the new implementation has been checked with QuickCheck: https://gist.github.com/timjb/cca12b004a0c782ca622 timjb February 26, 2015 Added a cabal flag to dump core dolio February 10, 2015 cabal updates: added copyright and bumped the upcoming version dolio February 10, 2015 Implement timsort Differences from timsort.txt: Galloping is used only once, when an element is chosen 7 times from the same run; this threshold is not updated according to how successful galloping is. timjb February 08, 2015
2015-12-13Update to 0.11.0.0szptvlfn4-18/+23
changelog: Changes in version 0.11.0.0 * Define `Applicative` instances for `Data.Vector.Fusion.Util.{Box,Id}` * Define non-bottom `fail` for `instance Monad Vector` * New generalized stream fusion framework * Various safety fixes - Various overflows due to vector size have been eliminated - Memory is initialized on creation of unboxed vectors * Changes to SPEC usage to allow building under more conditions Changes in version 0.10.12.3 * Allow building with `primtive-0.6`
2015-12-13Update to 0.6.1.0szptvlfn3-10/+13
changelog.md: ## Changes in version 0.6.1.0 * Use more appropriate types in internal memset functions, which prevents overflows/segfaults on 64-bit systems. * Fixed a warning on GHC 7.10 * Worked around a -dcore-lint bug in GHC 7.6/7.7 ## Changes in version 0.6 * Split PrimMonad into two classes to allow automatic lifting of primitive operations into monad transformers. The `internal` operation has moved to the `PrimBase` class. * Fixed the test suite on older GHCs
2015-12-13Update ruby-gnome2 to 3.0.7.tsutsui4-5/+11
Upstream changes: --- Ruby-GNOME2 3.0.7 http://ruby-gnome2.osdn.jp/hiki.cgi?News_20151006_1 It is a bug fix release of 3.0.6. Changes Ruby/GLib2 * Fixes + Fixed a bug that `xxx_yyy` enum name isn't accepted. [ruby-gnome2-devel-en][Reported by Detlef Reichl] + Fixed a bug that internal Ruby API is used. [ruby-gnome2-devel-en] [Reported by Detlef Reichl] Ruby/GTK3 * Improvements + Added backward compatibility API to Gtk::TreeView#insert_column. [ruby-gnome2-devel-en][Reported by Detlef Reichl] Thanks * Detlef Reichl --- Ruby-GNOME2 3.0.6 http://ruby-gnome2.osdn.jp/hiki.cgi?News_20151004_1 It is a bug fix release of 3.0.5. Changes Ruby/GLib2 * Improvements + Supported GLib.format_size on 32bit. [GitHub#565][Reported by Mamoru TASAKA] + Supported GLib.format_size_for_display on 32bit. [GitHub#565][Reported by Mamoru TASAKA] + Added GLib::Version.or_later??. [GitHub#570][Patch by cedlemo] Ruby/GObjectIntrospection * Improvements + Added GObjectIntrospection::Version.or_later?. [GitHub#572][Patch by cedlemo] + Supported GSList for filename. [ruby-gnome2-devel-en][Reported by Stefan Salewski] Ruby/GIO2 * Improvements + Added Gio::Version.or_later?. [GitHub#571][Patch by cedlemo] + Made Gio::APplicationCommandLine#attributes Rubyish. Ruby/Pango * Improvements + Added Pango::Version.or_later??. [GitHub#576][Patch by cedlemo] Ruby/GTK2 * Improvements + Added Gtk::Version.or_later??. [GitHub#574][Patch by cedlemo] Ruby/GTK3 * Improvements + Supported Gtk::CellLayout#set_cell_data_func. [ruby-gnome2-devel-en] [Reported by Stefan Salewski] + Supported Gtk::Container#add with child properties. [ruby-gnome2-devel-en][Reported by Stefan Salewski] + Added Gtk::StockItem#[]? for backward compatibility. [ruby-gnome2-devel-en][Reported by Stefan Salewski] + Added Gtk::IconSize::IconSize for backward compatibility. [ruby-gnome2-devel-en][Reported by Stefan Salewski] + Supported marking cell renderers in Gtk::CellLayout for GC. [ruby-gnome2-devel-en][Reported by Stefan Salewski] + Supported nil for Gtk::TreeIter#set_value. + Supported marking columns in Gtk::TreeView for GC. [ruby-gnome2-devel-en][Reported by Stefan Salewski] + Updated tutorial samples. [GitHub#567][GitHub#568][GitHub#587][Patch by cedlemo] + Supported marking records in Gtk::TreeModel for GC. [ruby-gnome2-devel-en][Reported by Stefan Salewski] + Started updating gtk-demo with Gtk::Application?. [GitHub#583][GitHub# 586][GitHub#588][Patch by cedlemo] + Supported option style API by Gtk::Builder#add. + Supported :object_ids by Gtk::Builder#add. [GitHub#585][Patch by cedlemo] + Added backward compatible API to Gtk.show_uri. Ruby/GStreamer * Improvements + Added Gst::Version.or_later??. [GitHub#573][Patch by cedlemo] Ruby/Poppler * Improvements + Added Poppler::Version.or_later??. [GitHub#577][Patch by cedlemo] Ruby/RSVG2 * Improvements + Added RSVG::Version.or_later??. [GitHub#578][Patch by cedlemo] Ruby/VTE3 * Improvements + Stopped to run tests for old VTE with new VTE. [GitHub#566][Reported by Mamoru TASAKA] Ruby/WebKitGTK * Improvements + Added WebKitGtk::Version.or_later??. Thanks * Stefan Salewski * Mamoru TASAKA * cedlemo --- Ruby-GNOME2 3.0.5 http://sourceforge.net/projects/ruby-gnome2/files/ruby-gnome2/ruby-gnome2-3.0.5/ It is a bug fix release for mikutter. Changes Ruby/GTK2 * Fixes + Fixed a bug that g_object_ref_sink() isn't called for instance of type_registered class. [http://dev.mikutter.hachune.net/issues/771#note-3] [Reported by toshi_a] Thanks * toshi_a --- Ruby-GNOME2 3.0.4 http://ruby-gnome2.osdn.jp/hiki.cgi?News_20150922_1 Posted by kou on 2015-09-22 (Tue) 05:40:57 It is a build fix release for 32bit Windows. Changes All * Improvements + Supported auto native package installation on Arch Linux. [GitHub#553] [GitHub#563] [Patch by lilole] Ruby/GObjctIntrospection * Fixes + 32bit Windows: Fixed strut field accessors access wrong address. Ruby/ATK * Improvements + Added Atk::Version.or_later? [GitHub#552] [Patch by cedlemo] Ruby/GdkPixbuf2 * Improvements + Added Gdk::Pixbuf::Version.or_later??. [GitHub#561] [Patch by cedlemo] Ruby/GDK3 * Improvements + Supported GTK+ 3.17.9. [GitHub#558] [Reported by Mamoru TASAKA] Ruby/GTK3 * Improvements + Updated examples. [GitHub#550] [Patch by cedlemo] Ruby/ClutterGstreamer * Improvements + Added ClutterGst.load_version. + Added ClutterGst.load_version=. + Added ClutterGst::Version.or_later??. [GitHub#556] [Patch by cedlemo] Thanks * cedlemo * lilole * Mamoru TASAKA --- Ruby-GNOME2 3.0.3 http://ruby-gnome2.osdn.jp/hiki.cgi?News_20150913_1 It is a compatibility improvement release of 3.0.2. Changes All * Improvements + Removed test-unit-notify gem from development dependencies. [GitHub# 547] [Patch by cedlemo] Ruby/GObjectIntrospection * Improvements + Supported GObjectIntrospection::Repository.prepend_search_path. + Supported GObjectIntrospection::Repository.search_path. + Windows: Supported requiring library after one GObjectIntrospection::Loader#load. [GitHub#546] [Reported by Abby Archer] Ruby/GTK3 * Improvements + Supported Gtk::IconSize.lookup. [GitHub#544] [Reported by Masafumi Yokoyama] + Supported size name as argument of Gtk::Widget#render_icon_pixbuf. [GitHub#544] [Reported by Masafumi Yokoyama] + Supported Gio::Icon in Gtk::IconTheme#lookup_icon. [GitHub#544] [Reported by Masafumi Yokoyama] + Supported Gtk::TreeModel#iter_parent. + Supported Gtk::TreeIter#parent. + Updated examples. [GitHub#548] [Patch by cedlemo] * Fixes + Fixed a bug that Gtk::Widget.bind_template_child is required. [GitHub# 549] [Reported by cedlemo] + Fixed a bug that default x_option and y_option values of Gtk::Table# attach is wrong. [GitHub#546] [Reported by Abby Archer] + Windows: Fixed a bug that Ruby/RSVG2 isn't required automatically. [GitHub#546] [Reported by Abby Archer] Thanks * Masafumi Yokoyama * cedlemo * Abby Archer --- Ruby-GNOME2 3.0.2 http://ruby-gnome2.osdn.jp/hiki.cgi?News_20150913_1 It is a compatibility improvement release of 3.0.1. Changes Ruby/GObjectIntrospection * Improvements + Supported void pointer. [GitHub#540] [Reported by Abby Archer] + Added GObjectIntrospection::Loader.instantiate_gobject_pointer. Ruby/GDK3 * Improvements + Supported Gdk::Window#user_data. [GitHub#540] [Reported by Abby Archer] + compatibility: Cairo::Context#set_source_rgba accepts nil as alpha value. [GitHub#540] [Reported by Abby Archer] + compatibility: Added fallback feature for deprecated Gdk::EventScroll::Direction. + Windows: Added hicolor-icon-theme as fallback theme. Ruby/GTK3 * Improvements + compatibility: Gtk::Window#icon= accepts icon file name. [GitHub#540] [Reported by Abby Archer] + compatibility: Gtk::Dialog#add_button accepts Symbol as response ID. [GitHub#540] [Reported by Abby Archer] + Deprecated Gtk::ColorSelectionDialog. + compatibility: Added fallback feature for deprecated Gtk::TextTag::WrapMode. + compatibility: Added fallback feature for deprecated Gtk::TextBuffer# insert(iter, target, *tags) usage. + compatibility: Added fallback feature for deprecated Gtk::ButtonBox::Style. + compatibility: Added fallback feature for deprecated Gtk::MessageDialog::ButtonsType. + compatibility: Supported creating an empty image by Gtk::Image.new. + compatibility: Added fallback feature for deprecated Gtk::ImageMenuItem.new usage. + Supported Gtk::TreeIter#next!. + Supported Gtk::TreeModel#get_value. + compatibility: Added fallback feature for deprecated Gtk::Alignment::Align. + compatibility: Added fallback feature for deprecated Gtk::Widget# get_size_request. + compatibility: Added fallback feature for deprecated Gtk::Table.new. + compatibility: Added fallback feature for deprecated Gtk::Table# column_spaces. + compatibility: Added fallback feature for deprecated Gtk::Table# column_spaces=. + compatibility: Added fallback feature for deprecated Gtk::Table#attach. + compatibility: Added fallback feature for deprecated Gtk::ToggleButton.new. + Windows: Added missing Ruby/RSVG2 dependency. + compatibility: Added fallback feature for deprecated Gtk::Container# each_forall. + Supported nil as size for Gtk::Image.new. + compatibility: Added fallback feature for deprecated Gtk::Image.new (pixbuf). + compatibility: Added fallback feature for deprecated Gtk::Toolbar::Style. + Supported Rubyish Gtk::CheckMenuItem.new. * Fixes + Fixed samples. [GitHub#536][GitHub#541] [Patch by cedlemo] [GitHub#540] [Reported by Abby Archer] + Fixed a bug that Gtk::Calendar#date returns 0-11 range month value. Ruby/RSVG2 * Improvements + Windows: Added missing Ruby/Pango dependency. + Windows: Updated loaders.cache for gdk-pixbuf automatically. Ruby/GStreamer * Improvements + compatibility: Gst::TypeFindFactory#extensions always returns Array. Thanks * cedlemo * Abby Archer --- Ruby-GNOME2 3.0.1 http://ruby-gnome2.osdn.jp/hiki.cgi?News_20150911_1 It is a bug fix release of 3.0.0. Changes Ruby/GLib2 * Fixes + Windows: Fixed a bug that large number flag value isn't usable. [GitHub #538] [Reported by Abby Archer] Ruby/GTK3 * Improvements + Updated tutorials. [GitHub#534][GitHub#537] [Patch by cedlemo] Ruby/VTE3 * Improvements + Added Vte::Version.or_later??. [GitHub#535] [Patch by cedlemo] Thanks * cedlemo * Abby Archer --- Ruby-GNOME2 3.0.0 http://ruby-gnome2.osdn.jp/hiki.cgi?News_20150910_1 It is a GTK+ 3.16 support release. To GTK+ 3.16 support, many people helped us. Especially, cedlemo did great works. Very thanks all!!! Changes All * Improvements + Added install instruction for GitHub master branch. [GitHub#425][Patch by Hiroyuki Sato] Ruby/GLib2 * Improvements + Added new APIs: o RVAL2GOBJGLIST o RVAL2GOBJGSLIST o rbg_rval2glist o rbg_rval2gslist o RVAL2CSTR_PTR o rbg_name_to_nick o rbgobj_class_init_func o rbgobj_register_type + Changed RVAL2CSTR to return NULL terminated string. If you want to get raw string that may not be terminated by NULL, use RVAL2CSTR_PTR. + Supported Symbol as flag value. + Added windows_platform? + Supported GLib::Value.new? without value. + Supported array of flag value as GLib::Flags.new input. + Supported name, nick and GLib::Enum as GLib::Enum.new input. + Migrated to Markdown for README markup. [GitHub#484][Patch by prpr_man] + Supported GVariantType. + Supported GVariant. + Supported GBinding. [GitHub#524][Reported by cedlemo] * Fixes + Fixed a bug that GLib.format_size doesn't work 32bit over integer value. [GitHub#413][Reported by eumario] Ruby/GObjectIntrospection * Improvements + Supported non GObject struct as return value. [GitHub#286][Reported by Christopher L. Ramsey] + Supported list_XXX method name. + Supported freeing GList<GObjet *>. + Supported array of struct as input argument. + Supported auto native package install on CentOS 7. + Supported can_XXX? predicate. + Supported the number of array as input argument. [Suggested by John Cupitt] + Supported array of GValue as input argument. + Supported array as return value. + Supported GClosure as input argument. + Supported GSList<GObject *> as input argument. + Supported GSList<GObject *> as output argument. [GitHub#324][Reported by cedlemo] + Supported union as input argument. + Supported array of guint8 as input argument. + Supported array of gint32 as input argument. + Supported class methods defined in XXXClass. + Supported GList<GBoxed *> as output argument. [GitHub#389][Reported by eumario] + Supported GList<GInterface *> as return value. [GitHub#501][Reported by Christopher L. Ramsey] + Supported GVariant as return value. [GitHub#502][Reported by kitone] * Fixes + Fixed a bug that GList<GObjet *> return type method always returns nil. + Fixed a bug that not predicate is treated as predicate. + Fixed a bug that self is different. Ruby/GIO2 * Improvements + Supported GAsyncReadyCallback. [GitHub#302][Reported by Christopher L. Ramsey] + Added ActionMap#add_actions. Ruby/Pango * Improvements + Added Pango::Language#sample_string. Ruby/GDK3 * Improvements + Added backward compatibility APIs. [GitHub#284][Reported by Christopher L. Ramsey] + Added constants in Gdk::Selection. [GitHub#254][Patch by Masafumi Yokoyama] + Added missing deprecations. [GitHub#291][Reported by Michel Boaventura] + Added RGBA.parse. [GitHub#295][Reported by carlosjhr64] + Supported Gdk::Rectangle. [GitHub#319][Reported by cedlemo] + Supported Gdk::Screen#get_setting. [GitHub#376][Reported by cedlemo] + Added Gdk::Screen#get_monitor. * Fixes + Fixed a bug that GDK_KEY_XXX raises an error. [ruby-gnome2-devel-en] [Reported by Detlef Reichl] Ruby/GTK3 * Improvements + Migrated to GObject Introspection based bindings from hand writing bindings. Now, all the latest API in GTK+ are supported. [Hiroshi Hatake][Detlef Reichl][cedlemo][John Cupitt] [Masafumi Yokoyama] [eumario][PeterWAWood][Daiki Ueno] + Updated samples. [Patch by cedlemo] Ruby/GtkSourceView3 * Improvements + Migrated to GObject Introspection based bindings from hand writing bindings. Now, all the latest API in GtkSourceView are supported. Ruby/VTE3 * Improvements + Migrated to GObject Introspection based bindings from hand writing bindings. Now, all the latest API in VTE are supported. [cedlemo] Ruby/GStreamer * Fixes + Fixed native package name on CentOS and Fedora. + Fixed shebang. [GitHub#507][Patch by Dmitry Marakasov] Ruby/RSVG2 * Improvements + Added :file_name, :data and :flags option to RSVG::Handle.new. + Updated a sample. [GitHub#518][Patch by Robert A. Heiler]. * Fixes + Fixed a memory leak of RSVG::Handle.new_from_data and RSVG::Handle.new_from_file. [GitHub#318][Reported by Kagetsuki] Ruby/Clutter * Improvements + Added Clutter::Version.or_later?. Ruby/WebKit2GTK * Improvements + Added. Thanks * Hiroshi Hatake * Christopher L. Ramsey * Masafumi Yokoyama * cedlemo * Detlef Reichl * Kagetsuki * eumario * PeterWAWood * Hiroyuki Sato * Daiki Ueno * prpr_mann * Dmitry Marakasov ---
2015-12-13Update to 0.24:wiz2-10/+8
0.24 2015-12-11 05:20:09Z - fix prereq errors in 0.23 0.23 2015-12-11 04:04:35Z - fix syntax of example code (Rudolf Leermakers, PR#22) - 'perl' removed from prerequisite recommendations, to avoid tripping up CPAN clients (Graham Knop) - Sub::Util is used preferentially to Sub::Name in most cases (Graham Knop, PR#27)
2015-12-12Update ruby-tins to 1.8.1.taca3-10/+8
* 2015-12-03 Release 1.8.1 - Remove some backports already existant in the newer supported rubies.
2015-12-12Update ruby-simplecov to 0.11.1.taca3-8/+9
0.11.1 2015-12-01 ([changes](https://github.com/colszowka/simplecov/compare/v0.11.0...v0.11.1)) ================= ## Enhancements ## Bugfixes * Fixed regression in `MultiFormatter.[]` with multiple arguments. See [#431](https://github.com/colszowka/simplecov/pull/431) (thanks @dillondrobena)
2015-12-12Update ruby-mixlib-shellout to 2.2.5.taca2-7/+7
Release 2.2.5 * tschuy: convert environment hash keys to strings
2015-12-12Update ruby-flexmock to 2.0.3.taca2-9/+7
* Fixed infinite recursive call for rspec check * fix strict mocks of BasicObject * minitest: do filter assertion backtraces * auto-mock #kind_of? as well as #class on strict mocks
2015-12-12Fix ALTERNATIVES.taca2-3/+4
Bump PKGREVISION.
2015-12-11needs flexwiedi1-2/+2
2015-12-11help configure find opensslwiedi1-1/+2
2015-12-11initscr is supposed to return NULL on error. Some versions of ncurses atjoerg2-1/+31
least like to play nanny and error out internally, but catch those errors explicitly. Stops segfault when using NetBSD curses with invalid TERM settings.
2015-12-11Switch back to ncurses on NetBSD to fix ccmake.wiz1-3/+4
Addresses PR 50490 by Brad Harder. Bump PKGREVISION.
2015-12-11Update {,py-}tlsh to 3.4.4.wiz3-13/+9
Specify Tlsh::getHash() as a const method
2015-12-11Fix ALTERNATIVES file. Bump PKGREVISION.wiz1-2/+3
2015-12-11Fix ALTERNATIVES file. Bump PKGREVISION.wiz1-2/+4
2015-12-11pkg-conf-0.9.12.20151211 (manually created): use dotted version number.wiz2-8/+8
Fixes lilypond build.
2015-12-10Add xulrunner38ryoon1-1/+2