powerpc bulk build report
bulk build on macppc-1.ports.openbsd.org started on Fri Dec 1 12:53:58 MST 2017 finished at Sun Dec 17 23:54:05 MST 2017 lasted 17D04h00m done with kern.version=OpenBSD 6.2-current (GENERIC.MP) #113: Fri Nov 24 11:34:06 MST 2017 built packages:8104 Dec 1:5275 Dec 2:568 Dec 3:461 Dec 4:623 Dec 5:237 Dec 6:3 Dec 7:300 Dec 8:280 Dec 9:356 Dec 10:474 Dec 11:491 Dec 12:488 Dec 13:520 Dec 14:46 Dec 15:324 Dec 16:669 Dec 17:1875 build failures: 31 http://build-failures.rhaalovely.net//powerpc/2017-12-01/audio/cmu-sphinxbase.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/converters/k2pdfopt.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/devel/xtensa-elf/gcc.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/editors/qscintilla.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/editors/scintilla.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/emulators/gr-lida.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/easyrpg.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/fifengine.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/hyperrogue.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/lugaru.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/tome4,-data.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/geo/geos.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/graphics/orthanc/server.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/graphics/slop.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/lang/guile2.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/lang/nqp.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/lang/swi-prolog.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/mail/kopano/core,-mapi.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/math/plplot,-c++.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/multimedia/gstreamer1/plugins-bad.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/net/knot.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/net/telegram-purple.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/security/encfs.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/sysutils/logstalgia.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/sysutils/smartmontools.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/telephony/asterisk,imap,-calendar.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/textproc/link-grammar,-main.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/www/phantomjs.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/www/xapian-omega.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/x11/gnome/libdazzle.log http://build-failures.rhaalovely.net//powerpc/2017-12-01/x11/gnome/totem-pl-parser.log recurrent failures failures/audio/cmu-sphinxbase.log failures/devel/xtensa-elf/gcc.log failures/geo/geos.log failures/graphics/orthanc/server.log failures/lang/guile2.log failures/net/knot.log new failures +++ ls-failures Sun Dec 17 23:54:30 2017 +failures/converters/k2pdfopt.log +failures/editors/qscintilla.log +failures/editors/scintilla.log +failures/emulators/gr-lida.log +failures/games/easyrpg.log +failures/games/fifengine.log +failures/games/hyperrogue.log +failures/games/lugaru.log +failures/games/tome4,-data.log +failures/graphics/slop.log +failures/lang/nqp.log +failures/lang/swi-prolog.log +failures/mail/kopano/core,-mapi.log +failures/math/plplot,-c++.log +failures/multimedia/gstreamer1/plugins-bad.log +failures/net/telegram-purple.log +failures/security/encfs.log +failures/sysutils/logstalgia.log +failures/sysutils/smartmontools.log +failures/telephony/asterisk,imap,-calendar.log +failures/textproc/link-grammar,-main.log +failures/www/phantomjs.log +failures/www/xapian-omega.log +failures/x11/gnome/libdazzle.log +failures/x11/gnome/totem-pl-parser.log resolved failures --- ../old/powerpc/last//ls-failuresThu Nov 30 14:42:33 2017 -failures/archivers/woff2.log -failures/databases/xapian-core.log -failures/devel/arm-none-eabi/gcc-linaro.log -failures/devel/jsonrpc-glib.log -failures/devel/template-glib.log -failures/games/cataclysm-dda.log -failures/graphics/gdcm.log -failures/lang/verilator.log -failures/math/p5-Math-Pari.log -failures/net/prosody.log -failures/security/pcsc-cyberjack.log -failures/security/py-cryptography.log -failures/sysutils/facter.log -failures/textproc/uncrustify.log Base libs: crypto.42.0 c.92.0 X libs:
UPDATE: security/keepassxc
Changelog: Prevent database corruption when locked [#1219] Fixes apply button not saving new entries [#1141] Switch to Consolas font on Windows for password edit [#1229] Multiple fixes to AppImage deployment [#1115, #1228] Fixes multiple memory leaks [#1213] Resize message close to 16x16 pixels [#1253] Comments? Ok? Index: Makefile === RCS file: /cvs/ports/security/keepassxc/Makefile,v retrieving revision 1.9 diff -u -p -u -p -r1.9 Makefile --- Makefile15 Dec 2017 07:59:30 - 1.9 +++ Makefile17 Dec 2017 19:19:20 - @@ -6,7 +6,7 @@ CATEGORIES =security GH_ACCOUNT = keepassxreboot GH_PROJECT = keepassxc -GH_TAGNAME = 2.2.3 +GH_TAGNAME = 2.2.4 HOMEPAGE = https://keepassxc.org Index: distinfo === RCS file: /cvs/ports/security/keepassxc/distinfo,v retrieving revision 1.5 diff -u -p -u -p -r1.5 distinfo --- distinfo15 Dec 2017 07:59:30 - 1.5 +++ distinfo17 Dec 2017 19:19:20 - @@ -1,2 +1,2 @@ -SHA256 (keepassxc-2.2.3.tar.gz) = XoLvo3StTcwpqeYN/3+kC+vvCWnthCrVfJUin9oNOSs= -SIZE (keepassxc-2.2.3.tar.gz) = 3886844 +SHA256 (keepassxc-2.2.4.tar.gz) = 6IRDntOtRh5CaiXwSS9fp4q4ugb7cYl3s4Z9jwmMzQo= +SIZE (keepassxc-2.2.4.tar.gz) = 3895421 Index: pkg/PLIST === RCS file: /cvs/ports/security/keepassxc/pkg/PLIST,v retrieving revision 1.5 diff -u -p -u -p -r1.5 PLIST --- pkg/PLIST 2 Nov 2017 23:34:23 - 1.5 +++ pkg/PLIST 17 Dec 2017 19:19:20 - @@ -3,7 +3,7 @@ @bin bin/keepassxc-cli lib/keepassxc/ lib/keepassxc/libkeepassx-autotype-xcb.so -share/applications/org.keepassxc.desktop +share/applications/org.keepassxc.KeePassXC.desktop share/icons/hicolor/128x128/apps/keepassxc-dark.png share/icons/hicolor/128x128/apps/keepassxc-locked.png share/icons/hicolor/128x128/apps/keepassxc-unlocked.png @@ -238,6 +238,7 @@ share/keepassxc/icons/database/C66_Money share/keepassxc/icons/database/C67_Certificate.png share/keepassxc/icons/database/C68_BlackBerry.png share/keepassxc/translations/ +share/keepassxc/translations/keepassx_ca.qm share/keepassxc/translations/keepassx_cs.qm share/keepassxc/translations/keepassx_da.qm share/keepassxc/translations/keepassx_de.qm @@ -268,7 +269,7 @@ share/keepassxc/translations/keepassx_zh share/keepassxc/wordlists/ share/keepassxc/wordlists/eff_large.wordlist share/metainfo/ -share/metainfo/org.keepassxc.appdata.xml +share/metainfo/org.keepassxc.KeePassXC.appdata.xml share/mime/packages/keepassxc.xml @exec %D/bin/update-mime-database %D/share/mime @unexec-delete %D/bin/update-mime-database %D/share/mime
Re: [FIX] x11/dunst - pledge promises
Hi Timo, on 17 Dec 17 at 03:14:53 PM +, Timo Myyräwrote: Hmm, It indeed seems that the setting causing this is icon_position in the config file. When its not off, the icons are enabled and the dlopen occurs. What do you think about following patch, it adds prot_exec to pledge promises when icon_position != off. Timo I made a few tests with icon_position={left,right,off} and so far so good. Thank you for your time. Regards, Thierry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: jer...@cvs.openbsd.org 2017/12/17 20:07:47 Modified files: devel/ruby-kgio: Makefile distinfo Log message: Update to kgio 2.11.1
Re: [NEW] lang/spin
On 12/17/2017 6:46 PM, Ayaka Koshibe wrote: > On Tue, Dec 12, 2017 at 5:32 AM, Brian Callahanwrote: >> On 12/12/17 03:13, Ori Bernstein wrote: >>> On Sat, 9 Dec 2017 19:35:30 -0500, Brian Callahan >>> wrote: >>> This is still looking for an ok for me to import (or free commits for you! just go ahead and import with my ok if you want). ~Brian >>> I'm assuming that the 'just go ahead and import' isn't directed at me, >>> since I've got no commit bit. >>> >> Correct. It's for hoping another developer looks at this. >> > I've also looked at/tested it, so I've imported it...thanks for the ok! > > > Ayaka Great, thanks for importing. One more item to take off the queue :) ~Brian
UPDATE: net/snort 2.9.11
This updates Snort to 2.9.11, along with these changes/fixes: * Change all HTTP URLs to HTTPS where appropriate. * Make sure pkg/README uses the correct Snort rule URL for Snort 2.9.11. * Remove note in pkg/README about registered users only being allowed to download the snort.org ruleset every 15 minutes; I don't think this is true anymore. * Add daemon_timeout=120 to the rc script, since Snort can take a long time to start with the current rules. * Update/regenerate patches. Release notes and changelog at: https://www.snort.org/downloads/snort/release_notes_2.9.11.txt https://www.snort.org/downloads/snort/changelog_2.9.11.txt Tested on amd64. ok? Index: Makefile === RCS file: /cvs/ports/net/snort/Makefile,v retrieving revision 1.97 diff -u -p -r1.97 Makefile --- Makefile23 Jan 2017 11:22:58 - 1.97 +++ Makefile17 Dec 2017 03:33:00 - @@ -2,13 +2,12 @@ COMMENT = highly flexible sniffer/NIDS -VERSION = 2.9.9.0 +VERSION = 2.9.11 DISTNAME = snort-${VERSION} -REVISION = 0 CATEGORIES = net security -HOMEPAGE = http://www.snort.org/ +HOMEPAGE = https://www.snort.org/ MAINTAINER = Markus Lude@@ -38,7 +37,13 @@ PREPROC =decoder.rules preprocessor.ru DOCS = AUTHORS CREDITS README README.* *.pdf TODO USAGE \ WISHLIST +# If VERSION is 1.2.3.4, set V to "1234". If VERSION is 1.2.3, set V to "1230". +# This is needed to generate a valid snort.org rule download URL in pkg/README. V =${VERSION:S/.//g} +.if ${VERSION:N[0-9]*\.[0-9]*\.[0-9]*\.[0-9]*} +V := ${V}0 +.endif + SUBST_VARS += V pre-configure: Index: distinfo === RCS file: /cvs/ports/net/snort/distinfo,v retrieving revision 1.36 diff -u -p -r1.36 distinfo --- distinfo5 Jan 2017 03:08:04 - 1.36 +++ distinfo17 Dec 2017 03:33:00 - @@ -1,2 +1,2 @@ -SHA256 (snort-2.9.9.0.tar.gz) = cbFHEl6WOQoS89VXlu1Qc993IGvTVj2E0+Wh8Z59elY= -SIZE (snort-2.9.9.0.tar.gz) = 6364482 +SHA256 (snort-2.9.11.tar.gz) = I6RePqHhVaPYccaRoQ/iPyv8/k1qvA67zcKrH8zKFO4= +SIZE (snort-2.9.11.tar.gz) = 6441674 Index: patches/patch-src_decode_h === RCS file: /cvs/ports/net/snort/patches/patch-src_decode_h,v retrieving revision 1.10 diff -u -p -r1.10 patch-src_decode_h --- patches/patch-src_decode_h 5 Jan 2017 03:08:04 - 1.10 +++ patches/patch-src_decode_h 17 Dec 2017 03:33:00 - @@ -1,7 +1,8 @@ $OpenBSD: patch-src_decode_h,v 1.10 2017/01/05 03:08:04 lteo Exp $ src/decode.h.orig Tue Jun 7 03:47:47 2016 -+++ src/decode.h Sun Dec 4 00:36:43 2016 -@@ -834,9 +834,9 @@ typedef struct _SLLHdr { +Index: src/decode.h +--- src/decode.h.orig src/decode.h +@@ -835,9 +835,9 @@ typedef struct _SLLHdr { * Pflog1_Hdr: CVS = 1.3, DLT_OLD_PFLOG = 17, Length = 28 * Pflog2_Hdr: CVS = 1.8, DLT_PFLOG = 117, Length = 48 * Pflog3_Hdr: CVS = 1.12, DLT_PFLOG = 117, Length = 64 Index: patches/patch-src_dynamic-plugins_sf_engine_Makefile_in === RCS file: /cvs/ports/net/snort/patches/patch-src_dynamic-plugins_sf_engine_Makefile_in,v retrieving revision 1.10 diff -u -p -r1.10 patch-src_dynamic-plugins_sf_engine_Makefile_in --- patches/patch-src_dynamic-plugins_sf_engine_Makefile_in 2 May 2016 02:29:58 - 1.10 +++ patches/patch-src_dynamic-plugins_sf_engine_Makefile_in 17 Dec 2017 03:33:00 - @@ -1,7 +1,8 @@ $OpenBSD: patch-src_dynamic-plugins_sf_engine_Makefile_in,v 1.10 2016/05/02 02:29:58 lteo Exp $ src/dynamic-plugins/sf_engine/Makefile.in.orig Fri Mar 18 15:11:29 2016 -+++ src/dynamic-plugins/sf_engine/Makefile.in Fri Apr 29 11:02:26 2016 -@@ -376,7 +376,7 @@ top_srcdir = @top_srcdir@ +Index: src/dynamic-plugins/sf_engine/Makefile.in +--- src/dynamic-plugins/sf_engine/Makefile.in.orig src/dynamic-plugins/sf_engine/Makefile.in +@@ -388,7 +388,7 @@ top_srcdir = @top_srcdir@ AUTOMAKE_OPTIONS = foreign no-dependencies dynamicengine_LTLIBRARIES = libsf_engine.la dynamicenginedir = $(libdir)/snort_dynamicengine Index: patches/patch-src_dynamic-preprocessors_Makefile_in === RCS file: /cvs/ports/net/snort/patches/patch-src_dynamic-preprocessors_Makefile_in,v retrieving revision 1.16 diff -u -p -r1.16 patch-src_dynamic-preprocessors_Makefile_in --- patches/patch-src_dynamic-preprocessors_Makefile_in 2 May 2016 02:29:58 - 1.16 +++ patches/patch-src_dynamic-preprocessors_Makefile_in 17 Dec 2017 03:33:00 - @@ -1,7 +1,8 @@ $OpenBSD: patch-src_dynamic-preprocessors_Makefile_in,v 1.16 2016/05/02 02:29:58
patch rsync vulnerabilities (at least?) CVE-2017-17433
Hi, I saw a DSA for CVE-2017-17433 so I looked it up > The recv_files function in receiver.c in the daemon in rsync 3.1.2, > and 3.1.3-development before 2017-12-03, proceeds with certain file > metadata updates before checking for a filename in the > daemon_filter_list data structure, which allows remote attackers to > bypass intended access restrictions. https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-17433.html I went then for the link patch https://git.samba.org/?p=rsync.git;a=commit;h=3e06d40029cfdce9d0f73d87cfd4edaf54be9c51 but running make test before said - overall results: 30 passed 9 skipped and after - overall results: 27 passed 3 failed 9 skipped I looked at the git history and saw some scary commits messages (like "Enforce trailing \0 when receiving xattr name values") but I didn't know what to backport. So I decided to look at what Debian did https://sources.debian.org/src/rsync/3.1.2-2.1/debian/patches/ They backported that scary commit plus the commit said to fix the CVE and the next commits on the same file, and that looks pretty consistent to me. Sadly, the result of 'make test' didn't change, so I also backported the last commit which said it fixed the tests. Indeed it does. Here's the diff. I think it should be rather straightforward (rsync doesn't get updates every day) to apply on -stable and probably even on -oldstable. Considering the importance of this package I think it would be good to do it on the both. I'll look at them once current has been dealt with. Opinions from people who actually understand all these patches are welcome. And ok too ;) Cheers, Daniel Index: Makefile === RCS file: /cvs/ports/net/rsync/Makefile,v retrieving revision 1.77 diff -u -p -r1.77 Makefile --- Makefile6 Apr 2016 21:17:29 - 1.77 +++ Makefile18 Dec 2017 02:05:48 - @@ -3,7 +3,7 @@ COMMENT = mirroring/synchronization over low bandwidth links DISTNAME = rsync-3.1.2 -REVISION = 0 +REVISION = 1 CATEGORIES = net HOMEPAGE = https://rsync.samba.org/ Index: patches/patch-receiver_c === RCS file: patches/patch-receiver_c diff -N patches/patch-receiver_c --- /dev/null 1 Jan 1970 00:00:00 - +++ patches/patch-receiver_c18 Dec 2017 02:05:48 - @@ -0,0 +1,45 @@ +$OpenBSD$ + +Backport from upstream +3e06d40029cfdce9d0f73d87cfd4edaf54be9c51 +5509597decdbd7b91994210f700329d8a35e70a1 +f5e8a17e093065fb20fea00a29540fe2c7896441 + +Index: receiver.c +--- receiver.c.orig receiver.c +@@ -583,6 +583,12 @@ int recv_files(int f_in, int f_out, char *local_name) + if (DEBUG_GTE(RECV, 1)) + rprintf(FINFO, "recv_files(%s)\n", fname); + ++ if (daemon_filter_list.head && (*fname != '.' || fname[1] != '\0') ++ && check_filter(_filter_list, FLOG, fname, 0) < 0) { ++ rprintf(FERROR, "attempt to hack rsync failed.\n"); ++ exit_cleanup(RERR_PROTOCOL); ++ } ++ + #ifdef SUPPORT_XATTRS + if (preserve_xattrs && iflags & ITEM_REPORT_XATTR && do_xfers +&& !(want_xattr_optim && BITS_SET(iflags, ITEM_XNAME_FOLLOWS|ITEM_LOCAL_CHANGE))) +@@ -651,12 +657,6 @@ int recv_files(int f_in, int f_out, char *local_name) + + cleanup_got_literal = 0; + +- if (daemon_filter_list.head +- && check_filter(_filter_list, FLOG, fname, 0) < 0) { +- rprintf(FERROR, "attempt to hack rsync failed.\n"); +- exit_cleanup(RERR_PROTOCOL); +- } +- + if (read_batch) { + int wanted = redoing + ? we_want_redo(ndx) +@@ -728,7 +728,7 @@ int recv_files(int f_in, int f_out, char *local_name) + break; + } + if (!fnamecmp || (daemon_filter_list.head +-&& check_filter(_filter_list, FLOG, fname, 0) < 0)) { ++&& check_filter(_filter_list, FLOG, fnamecmp, 0) < 0)) { + fnamecmp = fname; + fnamecmp_type = FNAMECMP_FNAME; + } Index: patches/patch-rsync_c === RCS file: patches/patch-rsync_c diff -N patches/patch-rsync_c --- /dev/null 1 Jan 1970 00:00:00 - +++ patches/patch-rsync_c 18 Dec 2017 02:05:48 - @@ -0,0 +1,28 @@ +$OpenBSD$ + +Backport from upstream +70aeb5fddd1b2f8e143276f8d5a085db16c593b9 + +Index: rsync.c +--- rsync.c.orig rsync.c +@@ -49,6 +49,7 @@ extern int flist_eof; + extern int file_old_total; + extern int keep_dirlinks; + extern int make_backups; ++extern int sanitize_paths; + extern struct file_list *cur_flist,
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: juan...@cvs.openbsd.org 2017/12/17 18:46:18 Modified files: lang/chicken : Tag: OPENBSD_6_2 Makefile.inc lang/chicken/bootstrap: Tag: OPENBSD_6_2 distinfo lang/chicken/core: Tag: OPENBSD_6_2 distinfo Removed files: lang/chicken/core/patches: Tag: OPENBSD_6_2 patch-srfi-4_scm Log message: Update to chicken 4.13.0. Includes security fixes: CVE-2017-6949, CVE-2017-9334, CVE-2017-11343. https://code.call-cc.org/releases/4.13.0/NEWS >From Timo Myyra (MAINTAINER).
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: juan...@cvs.openbsd.org 2017/12/17 18:45:10 Modified files: lang/chicken : Makefile.inc lang/chicken/bootstrap: distinfo lang/chicken/core: distinfo Removed files: lang/chicken/core/patches: patch-srfi-4_scm Log message: Update to chicken 4.13.0. Includes security fixes: CVE-2017-6949, CVE-2017-9334, CVE-2017-11343. https://code.call-cc.org/releases/4.13.0/NEWS >From Timo Myyra (MAINTAINER).
Re: [NEW] lang/spin
On Tue, Dec 12, 2017 at 5:32 AM, Brian Callahanwrote: > > On 12/12/17 03:13, Ori Bernstein wrote: >> >> On Sat, 9 Dec 2017 19:35:30 -0500, Brian Callahan >> wrote: >> >>> This is still looking for an ok for me to import (or free commits for >>> you! just go ahead and import with my ok if you want). >>> >>> ~Brian >> >> I'm assuming that the 'just go ahead and import' isn't directed at me, >> since I've got no commit bit. >> > > Correct. It's for hoping another developer looks at this. > I've also looked at/tested it, so I've imported it...thanks for the ok! Ayaka
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: akosh...@cvs.openbsd.org2017/12/17 16:41:25 Modified files: lang : Makefile Log message: Link lang/spin to build.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: akosh...@cvs.openbsd.org2017/12/17 16:38:19 Log message: Import spin-6.4.7 Spin is a software verification tool for analyzing the consistency of asynchronous systems. Examples of asynchronous systems include multi-threaded programs, distributed systems, and communications protocols. Spin takes a system model specified in Promela (the PROcess MEta LAnguage). It also takes a specifciation of the requirements for logical correctness, and allows both interactive and exhaustive simulations of the system for verifying these properties. Submission by Ori BernsteinOK bcallah@ Status: Vendor Tag: akoshibe Release Tags: akoshibe_20171217 N ports/lang/spin/Makefile N ports/lang/spin/distinfo N ports/lang/spin/patches/patch-makefile N ports/lang/spin/pkg/PLIST N ports/lang/spin/pkg/DESCR No conflicts created by this import
Re: [NEW] net/toot
On Sat, 16 Dec 2017 08:17:41 -0700, Aaron Bieberwrote: > On Fri, Dec 15, 2017 at 11:02:49PM +0100, Klemens Nanni wrote: > > On Sun, Nov 19, 2017 at 09:24:42PM +0100, Klemens Nanni wrote: > > > On Sun, Nov 19, 2017 at 02:54:46PM +0100, Klemens Nanni wrote: > > > Take three after some feedback now also using Python 3 to avoid > > > new ports still depending on Python 2. > > > > > > The s,©,(C), patch for README.rst is now required as setup.py > > > reads the readme file for its long description but chokes on it. > > > I've already mailed the developer about it. > > Upstream released new 0.15.1 three days ago with minor bugfixes > > including this diff. > > > > > Feedback? Any takers? > > Bump. > > Looks good to me! I'd like to see an upstream'd PR to add OpenBSD to > the install instructions :D - OK abieber@ if anyone wants to import > (Edd?! - looks like you use this :D) I had an ok from some times ago from jca@ so I imported it. Thanks for the port, Klemens and sorry for the delay!
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: d...@cvs.openbsd.org2017/12/17 14:04:35 Modified files: net: Makefile Log message: + toot
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: d...@cvs.openbsd.org2017/12/17 14:03:54 Log message: Import toot-0.15.1, tweaks and ok jca@ and ok abierber@ From Klemens Nanni, thanks! toot lets you read, post and manage accounts on Mastadon social networks. It supports logging in through both your webbrowser and the console with optional two factor authentication. Toots can be pasted directly via standard input. Status: Vendor Tag: danj Release Tags: danj_20171217 N ports/net/toot/Makefile N ports/net/toot/distinfo N ports/net/toot/patches/patch-Makefile N ports/net/toot/pkg/DESCR N ports/net/toot/pkg/PLIST No conflicts created by this import
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: k...@cvs.openbsd.org2017/12/17 13:36:04 Modified files: devel/quirks : Makefile devel/quirks/files: Quirks.pm Log message: Register removal of hs-dataenc.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: k...@cvs.openbsd.org2017/12/17 13:32:19 Removed files: devel/hs-dataenc: Makefile distinfo devel/hs-dataenc/patches: patch-dataenc_cabal devel/hs-dataenc/pkg: DESCR PLIST Log message: Remove devel/hs-dataenc. It's EOL, superseded by devel/hs-sandi, and no longer used after the update of games/hedgewars by pascal@.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: k...@cvs.openbsd.org2017/12/17 13:31:14 Modified files: devel : Makefile Log message: Unhook devel/hs-dataenc.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: pas...@cvs.openbsd.org 2017/12/17 13:19:18 Modified files: games/openmw : Makefile Removed files: games/openmw/patches: patch-apps_openmw_main_cpp Log message: Drop patch, it is no longer needed. Noticed by Juha Erkkila.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: pas...@cvs.openbsd.org 2017/12/17 13:10:12 Modified files: games/hedgewars: Makefile distinfo games/hedgewars/patches: patch-hedgewars_CMakeLists_txt patch-misc_libphyslayer_CMakeLists_txt games/hedgewars/pkg: PLIST-main Removed files: games/hedgewars/patches: patch-cmake_modules_checkModule_hs patch-hedgewars_SDLh_pas patch-hedgewars_avwrapper_CMakeLists_txt Log message: Update to 0.9.23. Reminded and tested by kili@ with GHC 8.2.2.
Re: UPDATE: misc/memcached
On Sun, Dec 17, 2017 at 01:24:30PM +0100, Jeremie Courreges-Anglas wrote: > On Sun, Dec 17 2017, Giovanni Bechiswrote: > > Il 17 dicembre 2017 11:54:22 CET, Jeremie Courreges-Anglas > > ha scritto: > >>On Sat, Dec 16 2017, Giovanni Bechis wrote: > >>> On 12/15/17 17:51, Jeremie Courreges-Anglas wrote: > On Wed, Nov 22 2017, Giovanni Bechis wrote: > > Hi, > > update to latest release, some bug fixes and pledge(2) support > > committed upstream. > > I don't use this but the update looks fine ports-wise. ok jca@ fwiw > > > Pledge(2) support is enabled only if the daemon is not run with "-o > >>no_drop_privileges" parameter; > > do we want to go the way upstream goes or should we disable the > >>possibility to disable pledge(2) ? > > I would not bother disabling this, but if you do make it obvious > >>that > -o no_drop_privileges won't work. If people use the option as > a workaround and slack off instead of reporting bugs, they're the > >>ones > not benefiting from pledge(2), which is not a smart thing to do. > > >>> what about this one ? > >> > >>I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have > >>implemented this as a configure-time option which would be usable on > >>other systems that provide sandboxing. Words are cheap and I don't > >>care > >>enough to write a diff, so please go ahead with whatever suits you. ;) > > > > As done in other diffs, I would like to go with a diff as simple as > > possible for our tree, then push a proper autoconf diff to upstream for > > next release. > > Cool! But then you could make your patch even shorter: no need to add > the #ifdef __OpenBSD__ goo. :) > correct, what about that then ? Cheers Giovanni Index: Makefile === RCS file: /var/cvs/ports/misc/memcached/Makefile,v retrieving revision 1.39 diff -u -p -r1.39 Makefile --- Makefile31 Oct 2017 07:39:25 - 1.39 +++ Makefile15 Dec 2017 23:28:28 - @@ -2,7 +2,7 @@ COMMENT= distributed memory object caching system -DISTNAME= memcached-1.5.2 +DISTNAME= memcached-1.5.3 CATEGORIES=misc HOMEPAGE= https://www.memcached.org/ Index: distinfo === RCS file: /var/cvs/ports/misc/memcached/distinfo,v retrieving revision 1.25 diff -u -p -r1.25 distinfo --- distinfo31 Oct 2017 07:39:25 - 1.25 +++ distinfo15 Dec 2017 23:28:30 - @@ -1,2 +1,2 @@ -SHA256 (memcached-1.5.2.tar.gz) = mskxE7210DfnnGEnc4ZWSsLl4x1J5ZTxHlVOTBSbckU= -SIZE (memcached-1.5.2.tar.gz) = 407715 +SHA256 (memcached-1.5.3.tar.gz) = JYzD3bdhNoVGWs/QIV+CciCju90Wf9LAgGMhBbLS884= +SIZE (memcached-1.5.3.tar.gz) = 409131 Index: patches/patch-configure === RCS file: /var/cvs/ports/misc/memcached/patches/patch-configure,v retrieving revision 1.10 diff -u -p -r1.10 patch-configure --- patches/patch-configure 31 Oct 2017 07:39:25 - 1.10 +++ patches/patch-configure 15 Dec 2017 23:30:49 - @@ -2,7 +2,7 @@ $OpenBSD: patch-configure,v 1.10 2017/10 Index: configure --- configure.orig +++ configure -@@ -6517,7 +6517,7 @@ $as_echo "#define _GNU_SOURCE 1" >>confdefs.h +@@ -6551,7 +6551,7 @@ $as_echo "#define _GNU_SOURCE 1" >>confdefs.h elif test "$GCC" = "yes" then GCC_VERSION=`$CC -dumpversion` Index: patches/patch-memcached_c === RCS file: /var/cvs/ports/misc/memcached/patches/patch-memcached_c,v retrieving revision 1.14 diff -u -p -r1.14 patch-memcached_c --- patches/patch-memcached_c 31 Oct 2017 07:39:25 - 1.14 +++ patches/patch-memcached_c 17 Dec 2017 19:31:41 - @@ -1,31 +1,15 @@ -$OpenBSD: patch-memcached_c,v 1.14 2017/10/31 07:39:25 giovanni Exp $ +$OpenBSD$ + Index: memcached.c --- memcached.c.orig +++ memcached.c -@@ -23,6 +23,7 @@ - #include - #include - #include -+#include - - /* some POSIX systems need the following definition - * to get mlockall flags out of sys/mman.h. */ -@@ -6861,6 +6862,18 @@ int main (int argc, char **argv) { - - if (pid_file != NULL) { - save_pid(pid_file); -+} -+ -+if (settings.socketpath != NULL) { -+ if (pledge("stdio unix", NULL) == -1) { -+ fprintf(stderr, "%s: pledge: %s\n", argv[0], strerror(errno)); -+ exit(1); -+ } +@@ -6927,6 +6927,9 @@ int main (int argc, char **argv) { + /* Drop privileges no longer needed */ + if (settings.drop_privileges) { + drop_privileges(); +} else { -+ if (pledge("stdio inet", NULL) == -1) { -+ fprintf(stderr, "%s: pledge: %s\n", argv[0], strerror(errno)); -+ exit(1); -+ } ++fprintf(stderr, "no_drop_privileges
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2017/12/17 11:04:24 Modified files: www: Makefile devel : Makefile Log message: +py-autobahn, py-txaio
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2017/12/17 11:03:22 Log message: Import py-autobahn 17.10.1. Autobahn|Python is a subproject of Autobahn and provides open-source implementations of the WebSocket Protocol and the Web Application Messaging Protocol (WAMP) for Python 2 and 3, and running on Twisted and asyncio. You can use Autobahn|Python to create clients and servers in Python speaking just plain WebSocket or WAMP. WebSocket allows bidirectional real-time messaging on the Web and beyond, while WAMP adds real-time application communication on top of WebSocket. WAMP provides asynchronous Remote Procedure Calls and Publish & Subscribe for applications in one protocol running over WebSocket. WAMP is a routed protocol, so you need a WAMP Router to connect your Autobahn|Python based clients. We provide Crossbar.io, but there are other options as well. needed by buildbot 0.9. A python3 flavor might be added later on.. ok sthen@ Status: Vendor Tag: landry Release Tags: landry_20171217 N ports/www/py-autobahn/Makefile N ports/www/py-autobahn/distinfo N ports/www/py-autobahn/pkg/PLIST N ports/www/py-autobahn/pkg/DESCR No conflicts created by this import
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: lan...@cvs.openbsd.org 2017/12/17 10:58:52 Log message: Import py-txaio 2.8.2. txaio is a helper library for writing code that runs unmodified on both Twisted and asyncio / Trollius. This is like six, but for wrapping over differences between Twisted and asyncio so one can write code that runs unmodified on both (aka source code compatibility). In other words: your users can choose if they want asyncio or Twisted as a dependency. Note that, with this approach, user code runs under the native event loop of either Twisted or asyncio. This is different from attaching either oneâs event loop to the other using some event loop adapter. needed by buildbot 0.9. ok sthen@ Status: Vendor Tag: landry Release Tags: landry_20171217 N ports/devel/py-txaio/Makefile N ports/devel/py-txaio/distinfo N ports/devel/py-txaio/pkg/PLIST N ports/devel/py-txaio/pkg/DESCR No conflicts created by this import
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bcal...@cvs.openbsd.org 2017/12/17 09:58:14 Log message: Import games/qqwing, a Sudoku puzzle generator and solver. Submission by Victor Kukshievok zhuk@ Status: Vendor Tag: bcallah Release Tags: bcallah_20171217 N ports/games/qqwing/Makefile N ports/games/qqwing/distinfo N ports/games/qqwing/pkg/DESCR N ports/games/qqwing/pkg/PLIST No conflicts created by this import
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bcal...@cvs.openbsd.org 2017/12/17 09:58:37 Modified files: games : Makefile Log message: +qqwing
Re: [NEW] games/qqwing
On 12/17/17 11:25, Victor Kukshiev wrote: 2017-12-17 19:18 GMT+03:00 Brian Callahan>: I'd like to swap them on commit, because it promotes consistent style and then it's just done and no one will come by and ask questions later. But I do have a question for Victor: you said this depends on gnome-sudoku, but I don't see anything referencing gnome-sudoku in your port or in the ports tree? ~Brian Gnome-sudoku is depending on qqwin. I is writing Gnome-sudoku port also. sorry to my english) OK. Thanks for the clarification. ~Brian
Re: [NEW] games/qqwing
2017-12-17 19:18 GMT+03:00 Brian Callahan: > I'd like to swap them on commit, because it promotes consistent style and > then it's just done and no one will come by and ask questions later. > > But I do have a question for Victor: you said this depends on > gnome-sudoku, but I don't see anything referencing gnome-sudoku in your > port or in the ports tree? > > ~Brian > Gnome-sudoku is depending on qqwin. I is writing Gnome-sudoku port also. sorry to my english)
Re: [NEW] games/qqwing
On 12/17/17 11:08, Vadim Zhukov wrote: 2017-12-17 18:54 GMT+03:00 Victor Kukshiev: 2017-12-17 18:43 GMT+03:00 Vadim Zhukov : Please run "portcheck -N" in port directory first, and walk through its replies. Done. I fixed it. OK? Now it's more or less good. The only nit left is WANTLIB coming after MASTER_SITES, but personally I don't care in such simple port either. Okay for anyone willing to commit. I'd like to swap them on commit, because it promotes consistent style and then it's just done and no one will come by and ask questions later. But I do have a question for Victor: you said this depends on gnome-sudoku, but I don't see anything referencing gnome-sudoku in your port or in the ports tree? ~Brian
Re: [NEW] games/qqwing
2017-12-17 18:54 GMT+03:00 Victor Kukshiev: > 2017-12-17 18:43 GMT+03:00 Vadim Zhukov : >> >> Please run "portcheck -N" in port directory first, and walk through its >> replies. > > Done. I fixed it. OK? Now it's more or less good. The only nit left is WANTLIB coming after MASTER_SITES, but personally I don't care in such simple port either. Okay for anyone willing to commit. -- WBR, Vadim Zhukov
Re: [NEW] games/qqwing
Done. I fixed it. OK? 2017-12-17 18:43 GMT+03:00 Vadim Zhukov: > Please run "portcheck -N" in port directory first, and walk through its > replies. > > -- > WBR, > Vadim Zhukov > qqwing.tar.gz Description: GNU Zip compressed data
Re: [NEW] games/qqwing
2017-12-17 18:26 GMT+03:00 Victor Kukshiev: > Hello! > QQwing is software for generating and solving Sudoku puzzles. > This package depends on gnome-sudoku. > OK? Please run "portcheck -N" in port directory first, and walk through its replies. -- WBR, Vadim Zhukov
[NEW] games/qqwing
Hello! QQwing is software for generating and solving Sudoku puzzles. This package depends on gnome-sudoku. OK? qqwing.tar.gz Description: GNU Zip compressed data
Re: [FIX] x11/dunst - pledge promises
"T.Lux"writes: > On 15 October 2017 at 16:26 GMT, Sebastien Marie wrote: > >> On Sun, Oct 15, 2017 at 11:56:31AM -0400, T.Lux wrote: >>> On 15 October 2017 at 05:19 GMT, Sebastien Marie wrote: >>> >>> > 2) recompile the port with debugging symbol, and extract the > >>> backtrace >>> > of the failure with gdb ? >>> > >>> > $ cd /usr/ports/x11/dunst >>> > $ make FETCH_PACKAGES=yes CFLAGS=-g >>> > $ gdb /usr/ports/pobj/dunst-1.2.0/dunst-1.2.0/dunst >>> > (gdb) run >>> > ... >>> > Program received signal SIGABRT, Aborted. >>> > (gdb) backtrace >>> Attached file (within .tar.gz): gdb_dunst.txt >> >> inlined backtrace for lazy readers. >> >> Starting program: /usr/ports/pobj/dunst-1.2.0/dunst-1.2.0/dunst >> [New process 11913] >> >> Program received signal SIGABRT, Aborted. >> _dl___syscall () at -:1 >> 1-: No such file or directory. >> in - >> Current language: auto; currently asm >> #0 _dl___syscall () at -:1 >> #1 0x050ef1a00d38 in _dl_tryload_shlib ( >> libname=0x50ef1c14b50 >> "/usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so", >> type=Variable "type" is not available. >> ) at syscall.h:67 >> #2 0x050ef1a08d70 in _dl_load_shlib (libname=Variable "libname" >> is not available. >> ) at /usr/src/libexec/ld.so/library_subr.c:421 >> #3 0x050ef1a094f7 in dlopen (libname=0x50ee660f500 >> "/usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so", >> flags=Variable "flags" is not available. >> ) at /usr/src/libexec/ld.so/dlfcn.c:83 >> #4 0x050f65b4c9a2 in g_module_open ( >> file_name=0x50f3de7f580 >> "/usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so", >> flags=Variable "flags" is not available. >> ) at gmodule-dl.c:97 >> #5 0x050eaedeb8db in _gdk_pixbuf_load_module () from >> /usr/local/lib/libgdk_pixbuf-2.0.so.3200.1 >> #6 0x050eaedec83f in gdk_pixbuf_new_from_file () from >> /usr/local/lib/libgdk_pixbuf-2.0.so.3200.1 >> #7 0x050ca6b0d1ba in get_pixbuf_from_file >> (icon_path=0x50f3de7eb80 >> "/usr/local/share/icons/Moka/16x16/status//info.png") >> at src/x11/x.c:310 >> #8 0x050ca6b0ce31 in get_pixbuf_from_path >> (icon_path=0x50f844bc980 "info") at src/x11/x.c:349 >> #9 0x050ca6b0c7f6 in r_init_shared (c=0x50f65466000, >> n=0x50f2ccf8100) at src/x11/x.c:414 >> #10 0x050ca6b0c488 in r_create_layout_from_notification >> (c=0x50f65466000, n=0x50f2ccf8100) at src/x11/x.c:482 >> #11 0x050ca6b0a011 in r_create_layouts (c=0x50f65466000) at >> src/x11/x.c:534 >> #12 0x050ca6b09c15 in x_win_draw () at src/x11/x.c:653 >> #13 0x050ca6b02849 in run (data=0x0) at src/dunst.c:242 >> #14 0x050ca6b02dfd in dunst_main (argc=1, argv=0x7f7e8388) >> at src/dunst.c:378 >> #15 0x050ca6b0dcf2 in main (argc=1, argv=0x7f7e8388) at >> main.c:5 >> The program is running. Exit anyway? (y or n) >> >>> OK, my inexperienced analysis is that I'm using icons in my dunstrc >>> which >>> uses: >>> (a) >>> /usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so >>> to load png icons. the latter call mmap(2) with protection >>> "PROT_EXEC" >>> to load icons which failed since pledge(2) was already requested >>> without "prot_exec" promise. >> >> libgdk_pixbuf-2.0.so tries to load dynamic library with dlopen() on >> first need. but it is already too late for pledge. >> >>> I would guess that adding the line below into your dunstrc would >>> reproduce this problem. >>> >>> icon_folders = /usr/local/share/icons/gnome/16x16/status/ >>> >>> correct? >> >> unsure. I still couldn't reproduce. it should be part of the >> problem. >> but I don't really know how to use this port :) >> >> A bindly try is to pledge(2) really late... in fact it is at end of >> the >> run() function, just before the sleep, so: >> - the program will call pledge(2) at each loop (not a problem >> per se) >> - the first loop is unpledged (but as initialization occurs in >> the >> first loop...) >> >> else we should isolate exactly what trigger dlopen() in the config >> file, >> and run unpledged in this case. > > > > Your diff fix my problem, thank you for that! As to why you cannot > reproduce it with the addition of the icon_folders directive in your > configuration file is quite strange. > I've attached the configuration file I am using, just in case... just > launch it with dunst -config /path/to/config/file > > Regards, > Thierry Hmm, It indeed seems that the setting causing this is icon_position in the config file. When its not off, the icons are enabled and the dlopen occurs. What do you think about following patch, it adds prot_exec to pledge promises when icon_position != off. Timo Index: Makefile === RCS file: /cvs/ports/x11/dunst/Makefile,v retrieving revision 1.3 diff -u -p -r1.3 Makefile --- Makefile31 Aug 2017 20:57:00 - 1.3 +++ Makefile17 Dec 2017 15:13:56 - @@ -5,12 +5,13 @@ COMMENT=
Re: NEW: x11/grantlee-qt5
2017-11-04 13:22 GMT+03:00 Rafael Sadowski: > Hi All, > > Grantlee-qt5 is the Qt5 variant of x11/grantlee and is needed for > upcoming KDE application. @conflict grantlee-<5.1.0 marker is set in PLIST. > > All tests are green on amd64: > > 100% tests passed, 0 tests failed out of 12 > > DESCR: > Grantlee is a set of Free Software libraries written using the Qt framework. > > The goal of Grantlee Templates is to make it easier for application developers > to separate the structure of documents from the data they contain, opening the > door for theming and advanced generation of other text such as code. > > > Ok? Comments? Not okay. This way you'll break building KF5 and KDE4 components simultaneously. We need to de-conflict KDE4 and KF5 versions of Grantlee. I'd prefer to modify KDE4 version as it's the one that should go earlier, but it's up to you... Interesting would be to check if we could actually make both Grantlee versions use same headers... :) But more likely we'll need, e.g., to move Grantlee headers under ${PREFIX}/include/kde4. -- WBR, Vadim Zhukov
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: z...@cvs.openbsd.org2017/12/17 07:02:02 Modified files: infrastructure/bin: portcheck Log message: Do not warn about missing dependency on x11/dbus,-suid for x11/dbus,-suid.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: rob...@cvs.openbsd.org 2017/12/17 06:16:28 Modified files: www/chromium : Makefile www/chromium/patches: patch-content_common_user_agent_cc Log message: Add an i686 string as well on i386 now that chromium is re-enabled on i386 builds
Re: UPDATE: misc/memcached
On Sun, Dec 17 2017, Giovanni Bechiswrote: > Il 17 dicembre 2017 11:54:22 CET, Jeremie Courreges-Anglas > ha scritto: >>On Sat, Dec 16 2017, Giovanni Bechis wrote: >>> On 12/15/17 17:51, Jeremie Courreges-Anglas wrote: On Wed, Nov 22 2017, Giovanni Bechis wrote: > Hi, > update to latest release, some bug fixes and pledge(2) support > committed upstream. I don't use this but the update looks fine ports-wise. ok jca@ fwiw > Pledge(2) support is enabled only if the daemon is not run with "-o >>no_drop_privileges" parameter; > do we want to go the way upstream goes or should we disable the >>possibility to disable pledge(2) ? I would not bother disabling this, but if you do make it obvious >>that -o no_drop_privileges won't work. If people use the option as a workaround and slack off instead of reporting bugs, they're the >>ones not benefiting from pledge(2), which is not a smart thing to do. >>> what about this one ? >> >>I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have >>implemented this as a configure-time option which would be usable on >>other systems that provide sandboxing. Words are cheap and I don't >>care >>enough to write a diff, so please go ahead with whatever suits you. ;) > > As done in other diffs, I would like to go with a diff as simple as possible > for our tree, then push a proper autoconf diff to upstream for next release. Cool! But then you could make your patch even shorter: no need to add the #ifdef __OpenBSD__ goo. :) -- jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE signature.asc Description: PGP signature
Re: games/hedgewars update?
Hi Pascal, On Sat, Dec 16, 2017 at 12:12:03PM +0100, Pascal Stumpf wrote: > Index: Makefile > === > RCS file: /cvs/ports/games/hedgewars/Makefile,v > retrieving revision 1.15 > diff -u -p -r1.15 Makefile > --- Makefile 26 Jul 2017 22:45:21 - 1.15 > +++ Makefile 16 Dec 2017 11:11:38 - > @@ -7,8 +7,7 @@ MULTI_PACKAGES = -main -server > > SHARED_LIBS += physlayer 0.0 # 0.0 > > -R = 0.9.22 > -REVISION = 8 > +R = 0.9.23 > V = $R > DISTNAME = hedgewars-src-$V > PKGNAME-main = hedgewars-$V [...] Thank you for the update!. Also builds fine with what I've in my tree (ghc-8.2.2 and a couple of changed/updated hs-ports). ok kili@
Re: UPDATE: misc/memcached
Il 17 dicembre 2017 11:54:22 CET, Jeremie Courreges-Anglasha scritto: >On Sat, Dec 16 2017, Giovanni Bechis wrote: >> On 12/15/17 17:51, Jeremie Courreges-Anglas wrote: >>> On Wed, Nov 22 2017, Giovanni Bechis wrote: Hi, update to latest release, some bug fixes and pledge(2) support committed upstream. >>> >>> I don't use this but the update looks fine ports-wise. ok jca@ fwiw >>> Pledge(2) support is enabled only if the daemon is not run with "-o >no_drop_privileges" parameter; do we want to go the way upstream goes or should we disable the >possibility to disable pledge(2) ? >>> >>> I would not bother disabling this, but if you do make it obvious >that >>> -o no_drop_privileges won't work. If people use the option as >>> a workaround and slack off instead of reporting bugs, they're the >ones >>> not benefiting from pledge(2), which is not a smart thing to do. >>> >> what about this one ? > >I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have >implemented this as a configure-time option which would be usable on >other systems that provide sandboxing. Words are cheap and I don't >care >enough to write a diff, so please go ahead with whatever suits you. ;) As done in other diffs, I would like to go with a diff as simple as possible for our tree, then push a proper autoconf diff to upstream for next release. Giovanni
Re: UPDATE: powerdns 4.1.0
updated diff after input from jca and rsadowski - added quirks for ldap removal - reduced wantlib - removed PLIST-ldap OK? diff --git devel/quirks/files/Quirks.pm devel/quirks/files/Quirks.pm index 6a75e9ddae5..5460ffbf5f9 100644 --- devel/quirks/files/Quirks.pm +++ devel/quirks/files/Quirks.pm @@ -1216,6 +1216,7 @@ my $obsolete_reason = { 'aimsniff' => 6, 'pork' => 6, 'ntimed' => 3, + 'powerdns-ldap' => 6, }; # reasons for obsolete packages diff --git net/powerdns/Makefile net/powerdns/Makefile index c96c9a9b108..11a08254528 100644 --- net/powerdns/Makefile +++ net/powerdns/Makefile @@ -5,25 +5,19 @@ BROKEN-hppa = undefined reference to '__sync_fetch_and_add_4' COMMENT-main= modular authoritative nameserver (with database support) COMMENT-mysql= MySQL database access module for PowerDNS COMMENT-pgsql= PGSQL database access module for PowerDNS -COMMENT-ldap= LDAP module for PowerDNS -V= 4.0.4 +V= 4.1.0 DISTNAME= pdns-${V} EXTRACT_SUFX = .tar.bz2 PKGNAME= powerdns-${V} PKGNAME-main= powerdns-${V} PKGNAME-mysql= powerdns-mysql-${V} PKGNAME-pgsql= powerdns-pgsql-${V} -PKGNAME-ldap= powerdns-ldap-${V} CATEGORIES=net -HOMEPAGE= http://www.powerdns.com/ +HOMEPAGE= https://www.powerdns.com/ MAINTAINER=Florian Obser-REVISION-ldap= 0 -REVISION-main= 0 -REVISION-mysql=0 -REVISION-pgsql=0 -MULTI_PACKAGES=-main -mysql -pgsql -ldap +MULTI_PACKAGES=-main -mysql -pgsql # GPLv2 PERMIT_PACKAGE_CDROM= Yes @@ -31,22 +25,19 @@ PERMIT_PACKAGE_CDROM= Yes COMPILER = base-clang ports-gcc WANTLIB += m pthread ${COMPILER_LIBCXX} -#WANTLIB += ${MODGCC4_CPPWANTLIB} WANTLIB-main += ${WANTLIB} -WANTLIB-main += boost_program_options-mt boost_serialization-mt -WANTLIB-main += bz2 c crypto gmp sqlite3 z +WANTLIB-main += boost_program_options-mt c crypto sqlite3 -MASTER_SITES= http://downloads.powerdns.com/releases/ +MASTER_SITES= https://downloads.powerdns.com/releases/ NO_TEST= Yes LIB_DEPENDS-main= ${LIB_DEPENDS} \ databases/sqlite3 \ - devel/boost \ - devel/gmp + devel/boost -PSEUDO_FLAVORS+= no_mysql no_pgsql no_ldap +PSEUDO_FLAVORS+= no_mysql no_pgsql FLAVOR?= BACKENDS= gsqlite3 @@ -60,7 +51,9 @@ CONFIGURE_ARGS+= --disable-shared \ --with-dynmodules="${BACKENDS}" \ --without-lua \ --disable-hardening \ - --without-protobuf + --without-protobuf \ + --enable-tools +CONFIGURE_ARGS+= --without-ldap CONFIGURE_ENV+=CPPFLAGS="-I${LOCALBASE}/include" \ LDFLAGS="-L${LOCALBASE}/lib" @@ -93,17 +86,6 @@ LIB_DEPENDS-pgsql= ${LIB_DEPENDS} \ RUN_DEPENDS-pgsql= ${FULLPKGNAME-main}:net/powerdns WANTLIB-pgsql= crypto pq>=2 ssl ${WANTLIB} -# LDAP -.if ${BUILD_PACKAGES:M-ldap} -BACKENDS+= ldap -.else -CONFIGURE_ARGS+= --without-ldap -.endif -LIB_DEPENDS-ldap= ${LIB_DEPENDS} \ - databases/openldap -RUN_DEPENDS-ldap= ${FULLPKGNAME-main}:net/powerdns -WANTLIB-ldap+= ${WANTLIB} crypto lber-2.4 ldap_r-2.4 sasl2 ssl - EXAMPLE_DIR= ${PREFIX}/share/examples/pdns/ post-install: rm -f ${PREFIX}/lib/pdns/*.la diff --git net/powerdns/distinfo net/powerdns/distinfo index 0b14f5ac821..7ba47e175d1 100644 --- net/powerdns/distinfo +++ net/powerdns/distinfo @@ -1,2 +1,2 @@ -SHA256 (pdns-4.0.4.tar.bz2) = 2XSrid5pR3x/WBoyM7xzHqy7Q9R5KR5HKyxTHIO212M= -SIZE (pdns-4.0.4.tar.bz2) = 1320327 +SHA256 (pdns-4.1.0.tar.bz2) = 25GTsPAlXCTfv8Mez/i9OeIf7AX/dSblrqljq8UX8PM= +SIZE (pdns-4.1.0.tar.bz2) = 1116905 diff --git net/powerdns/patches/patch-ext_json11_json11_cpp net/powerdns/patches/patch-ext_json11_json11_cpp deleted file mode 100644 index caf69e13d07..000 --- net/powerdns/patches/patch-ext_json11_json11_cpp +++ /dev/null @@ -1,42 +0,0 @@ -$OpenBSD: patch-ext_json11_json11_cpp,v 1.1 2017/05/27 06:21:43 espie Exp $ -nullptrs are non-comparable. -patch from freebsd - -Index: ext/json11/json11.cpp ext/json11/json11.cpp.orig -+++ ext/json11/json11.cpp -@@ -37,11 +37,21 @@ using std::make_shared; - using std::initializer_list; - using std::move; - -+/* Helper for representing null - just a do-nothing struct, plus comparison -+ * operators so the helpers in JsonValue work. We can't use nullptr_t because -+ * it may not be orderable. -+*/ -+ -+struct NullStruct { -+bool operator==(NullStruct) const { return true; } -+bool
net/knot: new maintainer?
Hi, I have just updated net/knot to its latest release, after very basic testing since I don't use it. If someone wants to (co-)maintain this and make sure the software works fine on OpenBSD, that would be great. The obvious alternative would be to ditch the port if I don't feel like updating it next time, so please speak up if you care. ;) -- jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: j...@cvs.openbsd.org2017/12/17 04:08:16 Modified files: net/knot : Makefile Log message: Remove Pierre from MAINTAINER (ENOTIME)
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: j...@cvs.openbsd.org2017/12/17 04:05:42 Modified files: net/knot : Makefile distinfo net/knot/pkg : PLIST Removed files: net/knot/patches: patch-src_libknot_lookup_h Log message: Major update to knot-2.6.3 Upstream ChangeLog: https://gitlab.labs.nic.cz/knot/knot-dns/raw/v2.6.3/NEWS
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2017/12/17 04:00:09 Modified files: productivity/gnucash: Makefile distinfo productivity/gnucash/pkg: PLIST Log message: Update to gnucash-2.6.19.
Re: UPDATE: misc/memcached
On Sat, Dec 16 2017, Giovanni Bechiswrote: > On 12/15/17 17:51, Jeremie Courreges-Anglas wrote: >> On Wed, Nov 22 2017, Giovanni Bechis wrote: >>> Hi, >>> update to latest release, some bug fixes and pledge(2) support >>> committed upstream. >> >> I don't use this but the update looks fine ports-wise. ok jca@ fwiw >> >>> Pledge(2) support is enabled only if the daemon is not run with "-o >>> no_drop_privileges" parameter; >>> do we want to go the way upstream goes or should we disable the possibility >>> to disable pledge(2) ? >> >> I would not bother disabling this, but if you do make it obvious that >> -o no_drop_privileges won't work. If people use the option as >> a workaround and slack off instead of reporting bugs, they're the ones >> not benefiting from pledge(2), which is not a smart thing to do. >> > what about this one ? I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have implemented this as a configure-time option which would be usable on other systems that provide sandboxing. Words are cheap and I don't care enough to write a diff, so please go ahead with whatever suits you. ;) -- jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2017/12/17 03:53:17 Modified files: multimedia/gstreamer1/core: Makefile multimedia/gstreamer1/core/pkg: PLIST Log message: The PTP helper does not do anything on OpenBSD and is installed suid root. It's a useless and scary utility for us, so drop the setuit bit. from tobiasu
Re: gstreamer1/core: no suid root gst-ptp-helper please
On Sat, Dec 16, 2017 at 06:37:40PM +, Tobias Ulmer wrote: > Hi Antoine, > > I noticed gstreamer1 core installs gst-ptp-helper setuid root. > > https://cgit.freedesktop.org/gstreamer/gstreamer/tree/libs/gst/helpers/gst-ptp-helper.c > > That's a rather large and scary program for a feature (Precision Time > Protocol multicast multimedia shenanigans) with about zero users on > OpenBSD. > > I doubt it does anything useful in its current state: > > gst-ptp-helper.c:305:2: warning: "Implement something to list all > network interfaces" [-W#warnings] > gst-ptp-helper.c:421:2: warning: "Implement something to get MAC > addresses of network interfaces" [-W#warnings] > > You don't even want to see all the high quality libs it links against.. > > Supposedly it's at least dropping privileges, but on a hunch compiling with > -save-temps holds this: > ... > static void > drop_privileges (void) > { > # 564 "gst-ptp-helper.c" > } > ... > > Not sure whether to laugh or cry. > > What I'm trying to say, can we nuke this crap from orbit, pretty please? Thanks. I'll take care of it asap. > > Index: Makefile > === > RCS file: /home/vcs/cvs/openbsd/ports/multimedia/gstreamer1/core/Makefile,v > retrieving revision 1.43 > diff -u -p -r1.43 Makefile > --- Makefile 8 Dec 2017 14:38:36 - 1.43 > +++ Makefile 16 Dec 2017 18:26:58 - > @@ -4,6 +4,7 @@ COMMENT= framework for streaming media > > DISTNAME=gstreamer-${V} > PKGNAME= ${GST_PKGNAME_PREFIX}-${V} > +REVISION=0 > > SHARED_LIBS += gstreamer-1.03.3 # 1204.0 > SHARED_LIBS += gstbase-1.0 3.3 # 1204.0 > @@ -28,5 +29,8 @@ CONFIGURE_ENV +=ac_cv_lib_gmp___gmpz_in > > # require (at least) gtk+ > CONFIGURE_ARGS +=--disable-examples > + > +# make PTP helper 'suid' at your own peril > +CONFIGURE_ARGS +=--with-ptp-helper-permissions=none > > .include > Index: pkg/PLIST > === > RCS file: /home/vcs/cvs/openbsd/ports/multimedia/gstreamer1/core/pkg/PLIST,v > retrieving revision 1.14 > diff -u -p -r1.14 PLIST > --- pkg/PLIST 20 Jun 2017 11:48:53 - 1.14 > +++ pkg/PLIST 16 Dec 2017 18:26:58 - > @@ -155,9 +155,7 @@ lib/pkgconfig/gstreamer-net-${API}.pc > libexec/gstreamer-${API}/ > @bin libexec/gstreamer-${API}/gst-completion-helper > @bin libexec/gstreamer-${API}/gst-plugin-scanner > -@mode 4555 > @bin libexec/gstreamer-${API}/gst-ptp-helper > -@mode > @man man/man1/gst-inspect-${API}.1 > @man man/man1/gst-launch-${API}.1 > @man man/man1/gst-stats-${API}.1 -- Antoine
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2017/12/17 03:44:27 Modified files: emulators/qemu : Makefile Log message: x11/xkbcommon gets picked up by configure if present, so add a LDEP on it.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2017/12/17 03:36:32 Modified files: net/py-boto3 : Makefile distinfo Log message: Update to py-boto3-1.5.1.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ki...@cvs.openbsd.org 2017/12/17 03:31:10 Removed files: games/bzflag/patches: patch-src_bzfs_VotingArbiter_h Log message: patch no longer needed
Re: [new] buildbot 0.9 dependencies
On Sat, Dec 16, 2017 at 03:21:27PM -0500, Daniel Jakots wrote: > On Sat, 16 Dec 2017 13:51:03 +0100, Landry Breuil> wrote: > > > py-trollius > > don't we already have it as devel/py-trollius? Right. perfect, one less thing to worry about :)