summaryrefslogtreecommitdiff
path: root/www
AgeCommit message (Collapse)AuthorFilesLines
2013-05-12Reenable parallel builds in devel/webkitÃ_gtk with latest patchset for gmakerichard5-12/+24
Update GNUMakefile patch for 1.10.2 and suppress undefined _cplusplus warnings.
2013-05-11Fix www/lynx cross-build by setting BUILD_CC.riastradh1-1/+5
2013-05-10Partially back out change to PYTHON_FOR_BUILD_ONLY.riastradh1-2/+2
This broke packages that needed a target Python at build-time. Instead, change it from defined/undefined to yes/no/tool. Most cases of defined used `yes' anyway; fix the few stragglers do that instead. New case `tool' is for TOOL_DEPENDS rather than buildlink3.
2013-05-09Update to 1.3113wen2-6/+6
Upstream changes: 1.3113 08.05.2013 [ ENHANCEMENTS ] * GH #869: leave body parameters alone if deserialization failed (brianphillips). * GH #914: add link to melezhik's psgi chef cookbook. * GH #923: implement lazy session flushing. (David Golden) [ BUG FIXES ] * GH #920: fix pod for Dancer::Development. (ppisar) [ DOCUMENTATION ] * GH #915: add warning about behaviour of hooks with multiple packages loaded by load_app (racke). * GH #918: Fix headers syntax in Dancer::Response perldoc (Vyacheslav Matyukhin). 1.3112 10.04.2013 [ ENHANCEMENTS ] * GH #897 dancer script diagnostic more explicit if target directory does not exist or is not writable (reported by Andrew Grangaard). * GH #907: skip tests of deprecated features (mokko). [ BUG FIXES ] * GH #900: backport the security patch for Dancer::ModuleLoader from Dancer2 (mokko).
2013-05-09Allow building with libc++. Add some missing includes.joerg13-6/+229
2013-05-09Massive revbump after updating graphics/ilmbase, graphics/openexr, textproc/icu.adam21-35/+42
2013-05-08Update py-wtforms to 1.0.4. (Forgot to commit updated PLIST in previous.)kleink2-2/+16
Bump PKGREVISION.
2013-05-07Update py-wtforms to 1.0.4.kleink2-6/+6
Version 1.0.4 ------------- Released April 28, 2013 - Add widgets and field implementations for HTML5 specialty input types. - ext.appengine: Add NDB support. - Add translations: Korean, Traditional Chinese
2013-05-07Updated to version 1.5.0 - fixes CVE-2013-2028imil2-10/+9
2013-05-07Updated to 1.4.1 - fixes CVE-2013-2028imil2-7/+6
2013-05-06Update p5-HTTP-Body to 1.17.hiramatsu2-8/+7
Change from previous: --------------------- - Added patch of gbjk to support application/json.
2013-05-06const keys that need to be constructed is not likely to work withjoerg3-1/+40
compliant STL implementation.
2013-05-05Update to 3.20130504. From the changelog:schmonz2-6/+6
* Allow dots in directive parameter names. (tango) * Add missing plugin section, and deal with missing sections with a warning. * Detect plugins with a broken getsetup and warn. * map: Correct reversion introduced in version 3.20110225 that could generate invalid html. (smcv) * Makefile.PL: overwrite theme style.css instead of appending (Thanks, Mikko Rapeli) * meta: Fix anchors used to link to the page's license and copyright. Closes: #706437
2013-05-04Update to 1.20.5wen3-7/+14
Upstream changes: MediaWiki 1.20.5 [edit] This is a security and maintenance release of the MediaWiki 1.20 branch. Changes since 1.20.4 [edit] (bug 46590) Add hook AbortChangePassword to Special:ChangePassword (bug 47304) SECURITY: Check SVG xml encoding against whitelist Localisation updates from http://translatewiki.net. mwdocgen.php: Implement --version option. Remove svnstat stuff used in Doxygen generation (bug 43594) Correctly supress warnings that were missed after the upstream PHP change to E_STRICT being included in E_ALL. jshint: Allow global mw to be set in mediawiki.js
2013-05-04enabled file_userip external acl helper require more tweak.obache2-3/+5
related to PR pkg/47784
2013-05-03use vala020drochner1-2/+2
2013-05-02Update to 3.0.1wen3-13/+48
Add test target Upstream changes: 3.0.1 Apr 8, 2013 The interface of tornado.auth.FacebookGraphMixin is now consistent with its documentation and the rest of the module. The get_authenticated_user and facebook_request methods return a Future and the callback argument is optional. The tornado.testing.gen_test decorator will no longer be recognized as a (broken) test by nose. Work around a bug in Ubuntu 13.04 betas involving an incomplete backport of the ssl.match_hostname function. tornado.websocket.websocket_connect now fails cleanly when it attempts to connect to a non-websocket url. tornado.testing.LogTrapTestCase once again works with byte strings on Python 2. The request attribute of tornado.httpclient.HTTPResponse is now always an ~tornado.httpclient.HTTPRequest, never a _RequestProxy. Exceptions raised by the tornado.gen module now have better messages when tuples are used as callback keys. 3.0.0 Mar 29, 2013 Highlights The callback argument to many asynchronous methods is now optional, and these methods return a .Future. The tornado.gen module now understands Futures, and these methods can be used directly without a .gen.Task wrapper. New function .IOLoop.current returns the .IOLoop that is running on the current thread (as opposed to .IOLoop.instance, which returns a specific thread's (usually the main thread's) IOLoop. New class tornado.netutil.Resolver provides an asynchronous interface to DNS resolution. The default implementation is still blocking, but non-blocking implementations are available using one of three optional dependencies: ~tornado.netutil.ThreadedResolver using the concurrent.futures thread pool, tornado.platform.caresresolver.CaresResolver using the pycares library, or tornado.platform.twisted.TwistedResolver using twisted Tornado's logging is now less noisy, and it no longer goes directly to the root logger, allowing for finer-grained configuration. New class tornado.process.Subprocess wraps subprocess.Popen with .PipeIOStream access to the child's file descriptors. .IOLoop now has a static configure <.Configurable.configure> method like the one on .AsyncHTTPClient, which can be used to select an .IOLoop implementation other than the default. .IOLoop can now optionally use a monotonic clock if available (see below for more details). Backwards-incompatible changes Python 2.5 is no longer supported. Python 3 is now supported in a single codebase instead of using 2to3 The tornado.database module has been removed. It is now available as a separate package, torndb Functions that take an io_loop parameter now default to .IOLoop.current() instead of .IOLoop.instance(). Empty HTTP request arguments are no longer ignored. This applies to HTTPRequest.arguments and RequestHandler.get_argument[s] in WSGI and non-WSGI modes. On Python 3, tornado.escape.json_encode no longer accepts byte strings. On Python 3, the get_authenticated_user methods in tornado.auth now return character strings instead of byte strings. tornado.netutil.TCPServer has moved to its own module, tornado.tcpserver. The Tornado test suite now requires unittest2 when run on Python 2.6. tornado.options.options is no longer a subclass of dict; attribute-style access is now required. Detailed changes by module Multiple modules Tornado no longer logs to the root logger. Details on the new logging scheme can be found under the tornado.log module. Note that in some cases this will require that you add an explicit logging configuration in order to see any output (perhaps just calling logging.basicConfig()), although both .IOLoop.start() and tornado.options.parse_command_line will do this for you. On python 3.2+, methods that take an ssl_options argument (on .SSLIOStream, .TCPServer, and .HTTPServer) now accept either a dictionary of options or an ssl.SSLContext object. New optional dependency on concurrent.futures to provide better support for working with threads. concurrent.futures is in the standard library for Python 3.2+, and can be installed on older versions with pip install futures. tornado.autoreload tornado.autoreload is now more reliable when there are errors at import time. Calling tornado.autoreload.start (or creating an .Application with debug=True) twice on the same .IOLoop now does nothing (instead of creating multiple periodic callbacks). Starting autoreload on more than one .IOLoop in the same process now logs a warning. Scripts run by autoreload no longer inherit __future__ imports used by Tornado. tornado.auth On Python 3, the get_authenticated_user method family now returns character strings instead of byte strings. Asynchronous methods defined in tornado.auth now return a .Future, and their callback argument is optional. The Future interface is preferred as it offers better error handling (the previous interface just logged a warning and returned None). The tornado.auth mixin classes now define a method get_auth_http_client, which can be overridden to use a non-default .AsyncHTTPClient instance (e.g. to use a different .IOLoop) Subclasses of .OAuthMixin are encouraged to override .OAuthMixin._oauth_get_user_future instead of _oauth_get_user, although both methods are still supported. tornado.concurrent New module tornado.concurrent contains code to support working with concurrent.futures, or to emulate future-based interface when that module is not available. tornado.curl_httpclient Preliminary support for tornado.curl_httpclient on Python 3. The latest official release of pycurl only supports Python 2, but Ubuntu has a port available in 12.10 (apt-get install python3-pycurl). This port currently has bugs that prevent it from handling arbitrary binary data but it should work for textual (utf8) resources. Fix a crash with libcurl 7.29.0 if a curl object is created and closed without being used. tornado.escape On Python 3, ~tornado.escape.json_encode no longer accepts byte strings. This mirrors the behavior of the underlying json module. Python 2 behavior is unchanged but should be faster. tornado.gen New decorator @gen.coroutine is available as an alternative to @gen.engine. It automatically returns a .Future, and within the function instead of calling a callback you return a value with raise gen.Return(value) (or simply return value in Python 3.3). Generators may now yield .Future objects. Callbacks produced by .gen.Callback and .gen.Task are now automatically stack-context-wrapped, to minimize the risk of context leaks when used with asynchronous functions that don't do their own wrapping. Fixed a memory leak involving generators, .RequestHandler.flush, and clients closing connections while output is being written. Yielding a large list no longer has quadratic performance. tornado.httpclient .AsyncHTTPClient.fetch now returns a .Future and its callback argument is optional. When the future interface is used, any error will be raised automatically, as if .HTTPResponse.rethrow was called. .AsyncHTTPClient.configure and all .AsyncHTTPClient constructors now take a defaults keyword argument. This argument should be a dictionary, and its values will be used in place of corresponding attributes of ~tornado.httpclient.HTTPRequest that are not set. All unset attributes of tornado.httpclient.HTTPRequest are now None. The default values of some attributes (connect_timeout, request_timeout, follow_redirects, max_redirects, use_gzip, proxy_password, allow_nonstandard_methods, and validate_cert have been moved from ~tornado.httpclient.HTTPRequest to the client implementations. The max_clients argument to .AsyncHTTPClient is now a keyword-only argument. Keyword arguments to .AsyncHTTPClient.configure are no longer used when instantiating an implementation subclass directly. Secondary .AsyncHTTPClient callbacks (streaming_callback, header_callback, and prepare_curl_callback) now respect .StackContext. tornado.httpserver .HTTPServer no longer logs an error when it is unable to read a second request from an HTTP 1.1 keep-alive connection. .HTTPServer now takes a protocol keyword argument which can be set to https if the server is behind an SSL-decoding proxy that does not set any supported X-headers. tornado.httpserver.HTTPConnection now has a set_close_callback method that should be used instead of reaching into its stream attribute. Empty HTTP request arguments are no longer ignored. This applies to HTTPRequest.arguments and RequestHandler.get_argument[s] in WSGI and non-WSGI modes. tornado.ioloop New function .IOLoop.current returns the IOLoop that is running on the current thread (as opposed to .IOLoop.instance, which returns a specific thread's (usually the main thread's) IOLoop). New method .IOLoop.add_future to run a callback on the IOLoop when an asynchronous .Future finishes. .IOLoop now has a static configure <.Configurable.configure> method like the one on .AsyncHTTPClient, which can be used to select an .IOLoop implementation other than the default. The .IOLoop poller implementations (select, epoll, kqueue) are now available as distinct subclasses of .IOLoop. Instantiating .IOLoop will continue to automatically choose the best available implementation. The .IOLoop constructor has a new keyword argument time_func, which can be used to set the time function used when scheduling callbacks. This is most useful with the time.monotonic function, introduced in Python 3.3 and backported to older versions via the monotime module. Using a monotonic clock here avoids problems when the system clock is changed. New function .IOLoop.time returns the current time according to the IOLoop. To use the new monotonic clock functionality, all calls to .IOLoop.add_timeout must be either pass a datetime.timedelta or a time relative to .IOLoop.time, not time.time. (time.time will continue to work only as long as the IOLoop's time_func argument is not used). New convenience method .IOLoop.run_sync can be used to start an IOLoop just long enough to run a single coroutine. New method .IOLoop.add_callback_from_signal is safe to use in a signal handler (the regular .add_callback method may deadlock). .IOLoop now uses signal.set_wakeup_fd where available (Python 2.6+ on Unix) to avoid a race condition that could result in Python signal handlers being delayed. Method IOLoop.running() has been removed. .IOLoop has been refactored to better support subclassing. .IOLoop.add_callback and .add_callback_from_signal now take *args, **kwargs to pass along to the callback. tornado.iostream .IOStream.connect now has an optional server_hostname argument which will be used for SSL certificate validation when applicable. Additionally, when supported (on Python 3.2+), this hostname will be sent via SNI (and this is supported by tornado.simple_httpclient) Much of .IOStream has been refactored into a separate class .BaseIOStream. New class tornado.iostream.PipeIOStream provides the IOStream interface on pipe file descriptors. .IOStream now raises a new exception tornado.iostream.StreamClosedError when you attempt to read or write after the stream has been closed (by either side). .IOStream now simply closes the connection when it gets an ECONNRESET error, rather than logging it as an error. IOStream.error no longer picks up unrelated exceptions. .BaseIOStream.close now has an exc_info argument (similar to the one used in the logging module) that can be used to set the stream's error attribute when closing it. .BaseIOStream.read_until_close now works correctly when it is called while there is buffered data. Fixed a major performance regression when run on PyPy (introduced in Tornado 2.3). tornado.log New module containing .enable_pretty_logging and .LogFormatter, moved from the options module. .LogFormatter now handles non-ascii data in messages and tracebacks better. tornado.netutil New class tornado.netutil.Resolver provides an asynchronous interface to DNS resolution. The default implementation is still blocking, but non-blocking implementations are available using one of three optional dependencies: ~tornado.netutil.ThreadedResolver using the concurrent.futures thread pool, tornado.platform.caresresolver.CaresResolver using the pycares library, or tornado.platform.twisted.TwistedResolver using twisted New function tornado.netutil.is_valid_ip returns true if a given string is a valid IP (v4 or v6) address. tornado.netutil.bind_sockets has a new flags argument that can be used to pass additional flags to getaddrinfo. tornado.netutil.bind_sockets no longer sets AI_ADDRCONFIG; this will cause it to bind to both ipv4 and ipv6 more often than before. tornado.netutil.bind_sockets now works when Python was compiled with --disable-ipv6 but IPv6 DNS resolution is available on the system. tornado.netutil.TCPServer has moved to its own module, tornado.tcpserver. tornado.options The class underlying the functions in tornado.options is now public (tornado.options.OptionParser). This can be used to create multiple independent option sets, such as for subcommands. tornado.options.parse_config_file now configures logging automatically by default, in the same way that ~tornado.options.parse_command_line does. New function tornado.options.add_parse_callback schedules a callback to be run after the command line or config file has been parsed. The keyword argument final=False can be used on either parsing function to supress these callbacks. tornado.options.define now takes a callback argument. This callback will be run with the new value whenever the option is changed. This is especially useful for options that set other options, such as by reading from a config file. tornado.options.parse_command_line --help output now goes to stderr rather than stdout. tornado.options.options is no longer a subclass of dict; attribute-style access is now required. tornado.options.options (and .OptionParser instances generally) now have a .mockable() method that returns a wrapper object compatible with mock.patch <unittest.mock.patch>. Function tornado.options.enable_pretty_logging has been moved to the tornado.log module. tornado.platform.caresresolver New module containing an asynchronous implementation of the .Resolver interface, using the pycares library. tornado.platform.twisted New class tornado.platform.twisted.TwistedIOLoop allows Tornado code to be run on the Twisted reactor (as opposed to the existing .TornadoReactor, which bridges the gap in the other direction). New class tornado.platform.twisted.TwistedResolver is an asynchronous implementation of the .Resolver interface. tornado.process New class tornado.process.Subprocess wraps subprocess.Popen with .PipeIOStream access to the child's file descriptors. tornado.simple_httpclient SimpleAsyncHTTPClient now takes a resolver keyword argument (which may be passed to either the constructor or configure <.Configurable.configure>), to allow it to use the new non-blocking tornado.netutil.Resolver. When following redirects, SimpleAsyncHTTPClient now treats a 302 response code the same as a 303. This is contrary to the HTTP spec but consistent with all browsers and other major HTTP clients (including CurlAsyncHTTPClient). The behavior of header_callback with SimpleAsyncHTTPClient has changed and is now the same as that of CurlAsyncHTTPClient. The header callback now receives the first line of the response (e.g. HTTP/1.0 200 OK) and the final empty line. tornado.simple_httpclient now accepts responses with a 304 status code that include a Content-Length header. Fixed a bug in which SimpleAsyncHTTPClient callbacks were being run in the client's stack_context. tornado.stack_context .stack_context.wrap now runs the wrapped callback in a more consistent environment by recreating contexts even if they already exist on the stack. Fixed a bug in which stack contexts could leak from one callback chain to another. Yield statements inside a with statement can cause stack contexts to become inconsistent; an exception will now be raised when this case is detected. tornado.template Errors while rendering templates no longer log the generated code, since the enhanced stack traces (from version 2.1) should make this unnecessary. The {% apply %} directive now works properly with functions that return both unicode strings and byte strings (previously only byte strings were supported). Code in templates is no longer affected by Tornado's __future__ imports (which previously included absolute_import and division). tornado.testing New function tornado.testing.bind_unused_port both chooses a port and binds a socket to it, so there is no risk of another process using the same port. get_unused_port is now deprecated. New decorator tornado.testing.gen_test can be used to allow for yielding tornado.gen objects in tests, as an alternative to the stop and wait methods of .AsyncTestCase. tornado.testing.AsyncTestCase and friends now extend unittest2.TestCase when it is available (and continue to use the standard unittest module when unittest2 is not available) tornado.testing.ExpectLog can be used as a finer-grained alternative to tornado.testing.LogTrapTestCase The command-line interface to tornado.testing.main now supports additional arguments from the underlying unittest module: verbose, quiet, failfast, catch, buffer. The deprecated --autoreload option of tornado.testing.main has been removed. Use python -m tornado.autoreload as a prefix command instead. The --httpclient option of tornado.testing.main has been moved to tornado.test.runtests so as not to pollute the application option namespace. The tornado.options module's new callback support now makes it easy to add options from a wrapper script instead of putting all possible options in tornado.testing.main. .AsyncHTTPTestCase no longer calls .AsyncHTTPClient.close for tests that use the singleton .IOLoop.instance. .LogTrapTestCase no longer fails when run in unknown logging configurations. This allows tests to be run under nose, which does its own log buffering (.LogTrapTestCase doesn't do anything useful in this case, but at least it doesn't break things any more). tornado.util tornado.util.b (which was only intended for internal use) is gone. tornado.web .RequestHandler.set_header now overwrites previous header values case-insensitively. tornado.web.RequestHandler has new attributes path_args and path_kwargs, which contain the positional and keyword arguments that are passed to the get/post/etc method. These attributes are set before those methods are called, so they are available during prepare() tornado.web.ErrorHandler no longer requires XSRF tokens on POST requests, so posts to an unknown url will always return 404 instead of complaining about XSRF tokens. Several methods related to HTTP status codes now take a reason keyword argument to specify an alternate "reason" string (i.e. the "Not Found" in "HTTP/1.1 404 Not Found"). It is now possible to set status codes other than those defined in the spec, as long as a reason string is given. The Date HTTP header is now set by default on all responses. Etag/If-None-Match requests now work with .StaticFileHandler. .StaticFileHandler no longer sets Cache-Control: public unnecessarily. When gzip is enabled in a tornado.web.Application, appropriate Vary: Accept-Encoding headers are now sent. It is no longer necessary to pass all handlers for a host in a single .Application.add_handlers call. Now the request will be matched against the handlers for any host_pattern that includes the request's Host header. tornado.websocket Client-side WebSocket support is now available: tornado.websocket.websocket_connect .WebSocketHandler has new methods ~.WebSocketHandler.ping and ~.WebSocketHandler.on_pong to send pings to the browser (not supported on the draft76 protocol)
2013-05-02Update to 1.0024wen2-6/+6
Upstream changes: 1.0024 2013-05-01 10:05:56 PDT [IMPROVEMENTS] - Fix warnings for Plack::App::WrapCGI (frioux) - Ignore emacs lock file from restarter (maio) - Add documentation for environment variable in Auth::Basic - Some Metadata cleanup and Travis CI
2013-04-29Be explicit about using the local copy_if, it is part of C++11 and nowjoerg2-1/+20
the look up is ambigious.
2013-04-29Fix options.mk, from Edgar Fuss in PR 47784.dholland1-2/+2
2013-04-27Update "squid3" package to version 3.3.4. Changes since 3.3.3:tron3-17/+12
- Bug 3831: basic_ncsa_auth Blowfish and SHA support - Bug 3816: SSL_get_certificate call inside Ssl::verifySslCertificate crashes - Bug 3794: MacOS: workaround compiler errors and case-insensitivity - Bug 3781: Proxy Authentication not sent to cache_peer - Bug 3720 pt1: SourceLayout: shuffle fd_table definition into fde.h - Bug 3720 pt2: Add missing include in /dev/poll I/O module - Bug 3674: Improve compiler detection, better support warnings-as-errors on clang - Add support for TPROXY on BSD - Fix SSL Bump bypass for intercepted traffic - Fix memory leaks in ConnStateData pinning - Fix external_acl.cc "inBackground" assertion on queue overloads - CacheMgr: fix missing column separator in helper stats - OpenBSD: libpthreads requires OpenBSD 5.2 or later - ... and lots of documentation updates - ... and all changes from squid 3.2.10 This update might fix PR pkg/42568.
2013-04-27www/aws-demos: ldap fixmarino4-8/+11
Oops, I thought the previous build passed. It was missing a directory creation and it needs to specifically pull in ldap and ssl buildlinks for those options, as well as update the link parameters. Ride on the revbump from a few minutes ago.
2013-04-27www/aws-demos: Several fixesmarino2-20/+36
1) Removed backup master site which is going away 2) Fixed ldap linkage problem 3) Removed two demos that don't build 4) Added three demos conditional on ssl/ldap (ssl demos was always built before but would have failed if aws wasn't built with ssl)
2013-04-27www/aws: Fix ldap and multijob supportmarino5-11/+33
1) Remove backup master site which will disappear 2) Fixed ldap linkage issue (for aws-demos too) 3) Added multijob support
2013-04-27Changes 7.1.1:adam7-86/+29
New features: - Add windows 8 detection - Add support of %time5 for iso date times. - Fix problems with Perl 5.14
2013-04-27Update to 0.6ryoon3-15/+9
* Convert MASTER_SITES to http site from https site. Changelog: 0.6 (2013-01-28) ---------------- * Added ``required`` attribute to ``Meta`` to be able to specify which settings are required to be set. * Moved to Travis for the tests: http://travis-ci.org/jezdez/django-appconf * Stopped support for Django 1.2.X. * Introduced support for Python >= 3.2.
2013-04-26Changes 2.4.1:adam3-26/+136
* USE_I18N=False fixed * some frontend css stuff fixed * check_copy_relations fixed for abstract classes * non public frontend languages fixed Changes 2.4.0: * Compatibility with Django 1.4 and 1.5 (1.3 support dropped) * Support for Python 2.5 dropped * CMS_MAX_PAGE_PUBLISH_REVERSIONS has been added * Reversion integration has changed to limit DB size * CMS_LANGUAGE setting has changed * CMS_HIDE_UNTRANSLATED setting removed * CMS_LANGUAGE_FALLBACK setting removed * CMS_LANGUAGE_CONF setting removed * CMS_SITE_LANGUAGES setting removed * CMS_FRONTEND_LANGUAGES setting removed * MultilingualMiddleware has been removed * CMS_FLAT_URLS has been removed * CMS_MODERATOR has been removed and replaced with simple publisher. * PlaceholderAdmin has now language tabs and has support for django-hvad * Added `cms.middleware.language.LanguageCookieMiddleware` * Added CMS_RAW_ID_USERS
2013-04-25Update to 7.0.39ryoon2-6/+6
Changelog: There have been multiple improvements in the bytes to/from characters conversion process. The core conversion process has been refactored to use the NIO APIs. This has resulted in a number of improvements including invalid UTF-8 byte sequences at the end of a series of bytes now trigger a conversion error rather than being silently swallowed. Errors detected in request URIs will be replaced with the replacement character (allowing the application to respond to the invalid URI as it wishes) and errors in request bodies will trigger an IOException. The use of the JVM provided UTF-8 decoder has been replaced by a better UTF-8 decoder derived from Apache Harmony. This improved decoder has earlier detection of error conditions and more closely follows the Unicode specification regarding the use of replacement characters. The annotation scanning process now provides more information if the scan fails due to broken class dependencies. There is now enough information to identify the class(es) at fault. The JAR scanning process that supports annotation scanning has also seen multiple improvements and fixes including the exclusion by default of the Bootstrap class path from the scan. Upgraded a number of Tomcat's dependencies including Commons Daemon to 1.0.14, Commons IO to 2.4 and Commons FileUpload to r1458500. A new dependency on Commons Codec was added to replace Tomcat's internal Base64 encoder/decoder.
2013-04-25Updated the naxsi WAF module to 0.50. Forms multipart parsing improved.imil3-7/+8
2013-04-25Updated nginx stable to 1.4.0. Notable improvements regarding latest stableimil2-6/+6
version are: . SPDY protocol support . WebSocket connections . OCSP Stapling . gunzip module . flood prevention through rejection codes Full changelog: Changes with nginx 1.4.0 24 Apr 2013 *) Bugfix: nginx could not be built with the ngx_http_perl_module if the --with-openssl option was used; the bug had appeared in 1.3.16. *) Bugfix: in a request body handling in the ngx_http_perl_module; the bug had appeared in 1.3.9. Changes with nginx 1.3.16 16 Apr 2013 *) Bugfix: a segmentation fault might occur in a worker process if subrequests were used; the bug had appeared in 1.3.9. *) Bugfix: the "tcp_nodelay" directive caused an error if a WebSocket connection was proxied into a unix domain socket. *) Bugfix: the $upstream_response_length variable has an incorrect value "0" if buffering was not used. Thanks to Piotr Sikora. *) Bugfix: in the eventport and /dev/poll methods. Changes with nginx 1.3.15 26 Mar 2013 *) Change: opening and closing a connection without sending any data in it is no longer logged to access_log with error code 400. *) Feature: the ngx_http_spdy_module. Thanks to Automattic for sponsoring this work. *) Feature: the "limit_req_status" and "limit_conn_status" directives. Thanks to Nick Marden. *) Feature: the "image_filter_interlace" directive. Thanks to Ian Babrou. *) Feature: $connections_waiting variable in the ngx_http_stub_status_module. *) Feature: the mail proxy module now supports IPv6 backends. *) Bugfix: request body might be transmitted incorrectly when retrying a request to the next upstream server; the bug had appeared in 1.3.9. Thanks to Piotr Sikora. *) Bugfix: in the "client_body_in_file_only" directive; the bug had appeared in 1.3.9. *) Bugfix: responses might hang if subrequests were used and a DNS error happened during subrequest processing. Thanks to Lanshun Zhou. *) Bugfix: in backend usage accounting. Changes with nginx 1.3.14 05 Mar 2013 *) Feature: $connections_active, $connections_reading, and $connections_writing variables in the ngx_http_stub_status_module. *) Feature: support of WebSocket connections in the ngx_http_uwsgi_module and ngx_http_scgi_module. *) Bugfix: in virtual servers handling with SNI. *) Bugfix: new sessions were not always stored if the "ssl_session_cache shared" directive was used and there was no free space in shared memory. Thanks to Piotr Sikora. *) Bugfix: multiple X-Forwarded-For headers were handled incorrectly. Thanks to Neal Poole for sponsoring this work. *) Bugfix: in the ngx_http_mp4_module. Thanks to Gernot Vormayr. Changes with nginx 1.3.13 19 Feb 2013 *) Change: a compiler with name "cc" is now used by default. *) Feature: support for proxying of WebSocket connections. Thanks to Apcera and CloudBees for sponsoring this work. *) Feature: the "auth_basic_user_file" directive supports "{SHA}" password encryption method. Thanks to Louis Opter. Changes with nginx 1.3.12 05 Feb 2013 *) Feature: variables support in the "proxy_bind", "fastcgi_bind", "memcached_bind", "scgi_bind", and "uwsgi_bind" directives. *) Feature: the $pipe, $request_length, $time_iso8601, and $time_local variables can now be used not only in the "log_format" directive. Thanks to Kiril Kalchev. *) Feature: IPv6 support in the ngx_http_geoip_module. Thanks to Gregor Kali¨nik. *) Bugfix: in the "proxy_method" directive. *) Bugfix: a segmentation fault might occur in a worker process if resolver was used with the poll method. *) Bugfix: nginx might hog CPU during SSL handshake with a backend if the select, poll, or /dev/poll methods were used. *) Bugfix: the "[crit] SSL_write() failed (SSL:)" error. *) Bugfix: in the "client_body_in_file_only" directive; the bug had appeared in 1.3.9. *) Bugfix: in the "fastcgi_keep_conn" directive. Changes with nginx 1.3.11 10 Jan 2013 *) Bugfix: a segmentation fault might occur if logging was used; the bug had appeared in 1.3.10. *) Bugfix: the "proxy_pass" directive did not work with IP addresses without port specified; the bug had appeared in 1.3.10. *) Bugfix: a segmentation fault occurred on start or during reconfiguration if the "keepalive" directive was specified more than once in a single upstream block. *) Bugfix: parameter "default" of the "geo" directive did not set default value for IPv6 addresses. Changes with nginx 1.3.10 25 Dec 2012 *) Change: domain names specified in configuration file are now resolved to IPv6 addresses as well as IPv4 ones. *) Change: now if the "include" directive with mask is used on Unix systems, included files are sorted in alphabetical order. *) Change: the "add_header" directive adds headers to 201 responses. *) Feature: the "geo" directive now supports IPv6 addresses in CIDR notation. *) Feature: the "flush" and "gzip" parameters of the "access_log" directive. *) Feature: variables support in the "auth_basic" directive. *) Bugfix: nginx could not be built with the ngx_http_perl_module in some cases. *) Bugfix: a segmentation fault might occur in a worker process if the ngx_http_xslt_module was used. *) Bugfix: nginx could not be built on MacOSX in some cases. Thanks to Piotr Sikora. *) Bugfix: the "limit_rate" directive with high rates might result in truncated responses on 32-bit platforms. Thanks to Alexey Antropov. *) Bugfix: a segmentation fault might occur in a worker process if the "if" directive was used. Thanks to Piotr Sikora. *) Bugfix: a "100 Continue" response was issued with "413 Request Entity Too Large" responses. *) Bugfix: the "image_filter", "image_filter_jpeg_quality" and "image_filter_sharpen" directives might be inherited incorrectly. Thanks to Ian Babrou. *) Bugfix: "crypt_r() failed" errors might appear if the "auth_basic" directive was used on Linux. *) Bugfix: in backup servers handling. Thanks to Thomas Chen. *) Bugfix: proxied HEAD requests might return incorrect response if the "gzip" directive was used. Changes with nginx 1.3.9 27 Nov 2012 *) Feature: support for chunked transfer encoding while reading client request body. *) Feature: the $request_time and $msec variables can now be used not only in the "log_format" directive. *) Bugfix: cache manager and cache loader processes might not be able to start if more than 512 listen sockets were used. *) Bugfix: in the ngx_http_dav_module. Changes with nginx 1.3.8 30 Oct 2012 *) Feature: the "optional_no_ca" parameter of the "ssl_verify_client" directive. Thanks to Mike Kazantsev and Eric O'Connor. *) Feature: the $bytes_sent, $connection, and $connection_requests variables can now be used not only in the "log_format" directive. Thanks to Benjamin Grössing. *) Feature: the "auto" parameter of the "worker_processes" directive. *) Bugfix: "cache file ... has md5 collision" alert. *) Bugfix: in the ngx_http_gunzip_filter_module. *) Bugfix: in the "ssl_stapling" directive. Changes with nginx 1.3.7 02 Oct 2012 *) Feature: OCSP stapling support. Thanks to Comodo, DigiCert and GlobalSign for sponsoring this work. *) Feature: the "ssl_trusted_certificate" directive. *) Feature: resolver now randomly rotates addresses returned from cache. Thanks to Anton Jouline. *) Bugfix: OpenSSL 0.9.7 compatibility. Changes with nginx 1.3.6 12 Sep 2012 *) Feature: the ngx_http_gunzip_filter_module. *) Feature: the "memcached_gzip_flag" directive. *) Feature: the "always" parameter of the "gzip_static" directive. *) Bugfix: in the "limit_req" directive; the bug had appeared in 1.1.14. Thanks to Charles Chen. *) Bugfix: nginx could not be built by gcc 4.7 with -O2 optimization if the --with-ipv6 option was used. Changes with nginx 1.3.5 21 Aug 2012 *) Change: the ngx_http_mp4_module module no longer skips tracks in formats other than H.264 and AAC. *) Bugfix: a segmentation fault might occur in a worker process if the "map" directive was used with variables as values. *) Bugfix: a segmentation fault might occur in a worker process if the "geo" directive was used with the "ranges" parameter but without the "default" parameter; the bug had appeared in 0.8.43. Thanks to Zhen Chen and Weibin Yao. *) Bugfix: in the -p command-line parameter handling. *) Bugfix: in the mail proxy server. *) Bugfix: of minor potential bugs. Thanks to Coverity. *) Bugfix: nginx/Windows could not be built with Visual Studio 2005 Express. Thanks to HAYASHI Kentaro. Changes with nginx 1.3.4 31 Jul 2012 *) Change: the "ipv6only" parameter is now turned on by default for listening IPv6 sockets. *) Feature: the Clang compiler support. *) Bugfix: extra listening sockets might be created. Thanks to Roman Odaisky. *) Bugfix: nginx/Windows might hog CPU if a worker process failed to start. Thanks to Ricardo Villalobos Guevara. *) Bugfix: the "proxy_pass_header", "fastcgi_pass_header", "scgi_pass_header", "uwsgi_pass_header", "proxy_hide_header", "fastcgi_hide_header", "scgi_hide_header", and "uwsgi_hide_header" directives might be inherited incorrectly. Changes with nginx 1.3.3 10 Jul 2012 *) Feature: entity tags support and the "etag" directive. *) Bugfix: trailing dot in a source value was not ignored if the "map" directive was used with the "hostnames" parameter. *) Bugfix: incorrect location might be used to process a request if a URI was changed via a "rewrite" directive before an internal redirect to a named location. Changes with nginx 1.3.2 26 Jun 2012 *) Change: the "single" parameter of the "keepalive" directive is now ignored. *) Change: SSL compression is now disabled when using all versions of OpenSSL, including ones prior to 1.0.0. *) Feature: it is now possible to use the "ip_hash" directive to balance IPv6 clients. *) Feature: the $status variable can now be used not only in the "log_format" directive. *) Bugfix: a segmentation fault might occur in a worker process on shutdown if the "resolver" directive was used. *) Bugfix: a segmentation fault might occur in a worker process if the ngx_http_mp4_module was used. *) Bugfix: in the ngx_http_mp4_module. *) Bugfix: a segmentation fault might occur in a worker process if conflicting wildcard server names were used. *) Bugfix: nginx might be terminated abnormally on a SIGBUS signal on ARM platform. *) Bugfix: an alert "sendmsg() failed (9: Bad file number)" on HP-UX while reconfiguration. Changes with nginx 1.3.1 05 Jun 2012 *) Security: now nginx/Windows ignores trailing dot in URI path component, and does not allow URIs with ":$" in it. Thanks to Vladimir Kochetkov, Positive Research Center. *) Feature: the "proxy_pass", "fastcgi_pass", "scgi_pass", "uwsgi_pass" directives, and the "server" directive inside the "upstream" block, now support IPv6 addresses. *) Feature: the "resolver" directive now supports IPv6 addresses and an optional port specification. *) Feature: the "least_conn" directive inside the "upstream" block. *) Feature: it is now possible to specify a weight for servers while using the "ip_hash" directive. *) Bugfix: a segmentation fault might occur in a worker process if the "image_filter" directive was used; the bug had appeared in 1.3.0. *) Bugfix: nginx could not be built with ngx_cpp_test_module; the bug had appeared in 1.1.12. *) Bugfix: access to variables from SSI and embedded perl module might not work after reconfiguration. Thanks to Yichun Zhang. *) Bugfix: in the ngx_http_xslt_filter_module. Thanks to Kuramoto Eiji. *) Bugfix: memory leak if $geoip_org variable was used. Thanks to Denis F. Latypoff. *) Bugfix: in the "proxy_cookie_domain" and "proxy_cookie_path" directives. Changes with nginx 1.3.0 15 May 2012 *) Feature: the "debug_connection" directive now supports IPv6 addresses and the "unix:" parameter. *) Feature: the "set_real_ip_from" directive and the "proxy" parameter of the "geo" directive now support IPv6 addresses. *) Feature: the "real_ip_recursive", "geoip_proxy", and "geoip_proxy_recursive" directives. *) Feature: the "proxy_recursive" parameter of the "geo" directive. *) Bugfix: a segmentation fault might occur in a worker process if the "resolver" directive was used. *) Bugfix: a segmentation fault might occur in a worker process if the "fastcgi_pass", "scgi_pass", or "uwsgi_pass" directives were used and backend returned incorrect response. *) Bugfix: a segmentation fault might occur in a worker process if the "rewrite" directive was used and new request arguments in a replacement used variables. *) Bugfix: nginx might hog CPU if the open file resource limit was reached. *) Bugfix: nginx might loop infinitely over backends if the "proxy_next_upstream" directive with the "http_404" parameter was used and there were backup servers specified in an upstream block. *) Bugfix: adding the "down" parameter of the "server" directive might cause unneeded client redistribution among backend servers if the "ip_hash" directive was used. *) Bugfix: socket leak. Thanks to Yichun Zhang. *) Bugfix: in the ngx_http_fastcgi_module.
2013-04-25webkit-gtk and webkit-gtk3 need to include x11/libXdamage/buildlink3.mk insbd2-2/+4
their buildlink3.mk files.
2013-04-23Correct the EXEC and ICON names written in the desktop file.markd1-4/+5
Bump PKGREVISION
2013-04-21Add p5-Plack-Middleware-Test-StashWarningsryoon1-1/+2
2013-04-21Import p5-Plack-Middleware-Test-StashWarnings-0.07 as ↵ryoon3-0/+29
www/p5-Plack-Middleware-Test-StashWarnings. Plack::Middleware::Test::StashWarnings is a Plack middleware component to record warnings generated by your application so that you can test them to make sure your application complains about the right things.
2013-04-21Add p5-HTML-Quotedryoon1-1/+2
2013-04-21Import p5-HTML-Quoted-0.03 as www/p5-HTML-Quoted.ryoon3-0/+25
Parses and extracts quotation structure out of a HTML message. Purpose and returned structures are very similar to Text::Quoted.
2013-04-21Add p5-HTML-Mason-PSGIHandlerryoon1-1/+2
2013-04-21Import p5-HTML-Mason-PSGIHandler-0.52 as www/p5-HTML-Mason-PSGIHandler.ryoon3-0/+29
This package is PSGI handler for HTML::Mason.
2013-04-21Add p5-Apache-LogFormat-Compilerryoon1-1/+2
2013-04-21Import p5-Apache-LogFormat-Compiler-0.12 as www/p5-Apache-LogFormat-Compiler.ryoon3-0/+28
Apache::LogFormat::Compiler compiles a log format string to perl-code.
2013-04-21Update to 1.0023ryoon2-6/+7
Changelog: 1.0023 2013-04-08 11:13:11 PDT [IMPROVEMENTS] - Use Apache::LogFormat::Compiler in AccessLog (kazeburo)
2013-04-21Update to 0.18ryoon2-7/+6
Changelog: 0.18 - change threshold for combining headers and body from 1024 bytes to 8192 0.17_01 - reduce rt_sig* syscalls (kazeburo) 0.16 - Set REMOTE_PORT environment variable (kazeburo) 0.15 - unbundle Plack::Standalone::Server::Prefork::Server::Starter (see `perldoc Starlet` to find out how to boot Starlet using Server::Starter)
2013-04-21Update to 0.05ryoon2-7/+6
Changelog: 0.05 Mon Oct 22 2012 Resources: Preserve the media attribute when inlining CSS Resources: Avoid uninitialized warnings by checking the attributes we expect
2013-04-21Update to 0.15ryoon2-7/+6
Changelog: 0.15 Fri Oct 19 15:09:17 PDT 2012 - Repackage with the latest Module::Install
2013-04-21Update to 1.44ryoon2-7/+6
Changelog: 1.44 Sat Jun 30 20:32:04 CDT 2012 ------------------------------------ There is no new functionality in this release. [FIXES] Fixed test failures on Win32. Thanks, Jerry Gay. 1.42 Thu May 31 11:35:26 CDT 2012 ------------------------------------ If you want to use the autolint functionality, you'll have to have HTML::Lint 2.20. [FIXES] Custom lint objects don't get reset before they get used, making autolint with a custom lint object practically useless. https://github.com/petdance/test-www-mechanize/issues/25 1.40 Fri Apr 13 15:14:39 CDT 2012 ------------------------------------ [ENHANCEMENTS] Added a $mech->autolint() method so you can turn autolinting on and off in mid-program. Thanks, Mike O'Regan. New functions $mech->scrape_text_by_id() and $mech->scrape_text_by_attr() let you extract text from your pages. Convenience function $mech->scraped_id_is() makes it easy to scrape and compare in one function. <h1 id="pagetitle">My Awesome Page!</h1> # Verify that HTML is there with: $mech->scraped_id_is( 'pagetitle', 'My Awesome Page!' ); [FIXES] $mech->has_tag() now handles nested tags more sensibly. This fixes Google Code ticket #1. [INTERNALS] Explicitly requires Test::Simple 0.94 or higher. Brought over t/TestServer.pm from WWW::Mechanize which fixes a number of problems.
2013-04-21Update to 6.05ryoon2-7/+6
Changelog: _______________________________________________________________________________ 2013-03-11 Release 6.05 Karen Etheridge (3): Derive message from status code if it was not provided Merge pull request #33 from tomhukins/fix-readme fix typo in comment Ville Skyttä (3): Spelling fixes. Spelling fix. Merge pull request #34 from berekuk/fix-github-path Gisle Aas (3): Update repo URL With Net::HTTP 6.04 we don't need our own can_read() and sysread override $ENV{HTTP_PROXY} might override our test setup [RT#81381] Vyacheslav Matyukhin (1): fix github url in perldoc Slaven Rezic (1): * Pod is utf-8 Peter Rabbitson (1): Match required perl in Makefile.PL Tom Hukins (1): Fix Github URLs
2013-04-21DEPENDS on devel/p5-Class-ISA.hiramatsu1-2/+3
Increment PKGREVISION.
2013-04-21Upgrade to 3.0.3mspo3-58/+7
Multiple crasher bugs in streaming and the regular expression code have been fixed Better handling of timeouts Minor performance optimisations The ban lurker now works correctly again ESI and compression would sometimes deliver garbled data, this has been fixed
2013-04-20Update to 5.0.5ryoon4-62/+77
* Fix MESSAGE based on wen@'s patch Remove duplicated arguments, fix MySQL version. Changelog: Version 5.0.5 April 19th 2013 Fix navigation hover effect Fix database migration Add a warning in the logfile when doing a migration Fix renaming of shared files Improved quota calculation Fix free space calculation Several layout fixes Better save mode check Cleanup database after user deletion Fix touch for creating new files Several trash bin fixes Update MediaElement.js Fix double address book problem Fix layout problem triggered by impress Several smaller fixes Security: XSS in flashmediaelement.swf (oC-SA-2013-017) Security: Authentication bypass in Contacts (oC-SA-2013-018) Version 5.0.4 April 11th 2013 Fix file renames Improved compatibility with PostgreSQL Fixed upgrade for PostgreSQL users Improved LDAP compatibility Fix the upgrade hint Make upgrade more robust fix maintainance mode Smaller CSS fixes Fix internet check for proxy users Manually disable files_archive app to fix upgrade Fix touch() for local storage Fix versioning check to allow installation of 3rd party apps Fix default quota Several contacts fixes Several calendar fixes Fixed ampache support in media player Improve mail function in antivirus app Fix setting of user quotas Fix deleted files size calculation Fix “You do not have write permissions here” warning Fix asynchronous loading of users Fix notice from the nullbyte check XSS vulnerability in jPlayer (oC-SA-2013-014) PostgreSQL: Insecure database password generator (oC-SA-2013-015) Windows: Local file disclosure (oC-SA-2013-016) Version 5.0.3 April 3th 2013 Correctly handle .part files Improve PostgreSQL support Fix database upgrading from old versions Improved app styles Version 5.0.2 April 2th 2013 Fix versioning string Fix compatibility with older MySQL versions Version 5.0.1 April 2th 2013 Fixed classnames and improved autoloaded to improve compatibility with older PHP versions Show a warning if an insecure PHP version is used Filesizes are displayed correctly Fixed groups in usermanagement Several Internet Explorer fixes Use display-names in more places Fix upgrading of cache Fix navigation scrollbar for lots of apps Fixed ETag handling to prevent wrong conflict files Fix public link handling Better indexes to improve performance Several Windows server fixes Fix renames of shared files Fix PostgreSQL compatibility Improve error reporting for app installation Improved compatibility with Novell eDirectory Several LDAP fixes Improved sorting in usermanagement Improved background jobs Several CardDAV contacts fixes Several mediaplayer fixes Fixes for text editor Several lucene search fixes Several smaller fixes Contacts: SQL Injection (oC-SA-2013-012) Multiple XSS vulnerabilities (oC-SA-2013-011)
2013-04-19Added SPDY option, only affects nginx-develimil1-1/+2