powerpc bulk build report

[landry]

bulk build on macppc-1.ports.openbsd.org
started on  Fri Dec 1 12:53:58 MST 2017
finished at Sun Dec 17 23:54:05 MST 2017
lasted 17D04h00m
done with kern.version=OpenBSD 6.2-current (GENERIC.MP) #113: Fri Nov 24 
11:34:06 MST 2017

built packages:8104
Dec 1:5275
Dec 2:568
Dec 3:461
Dec 4:623
Dec 5:237
Dec 6:3
Dec 7:300
Dec 8:280
Dec 9:356
Dec 10:474
Dec 11:491
Dec 12:488
Dec 13:520
Dec 14:46
Dec 15:324
Dec 16:669
Dec 17:1875



build failures: 31
http://build-failures.rhaalovely.net//powerpc/2017-12-01/audio/cmu-sphinxbase.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/converters/k2pdfopt.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/devel/xtensa-elf/gcc.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/editors/qscintilla.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/editors/scintilla.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/emulators/gr-lida.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/easyrpg.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/fifengine.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/hyperrogue.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/lugaru.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/games/tome4,-data.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/geo/geos.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/graphics/orthanc/server.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/graphics/slop.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/lang/guile2.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/lang/nqp.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/lang/swi-prolog.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/mail/kopano/core,-mapi.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/math/plplot,-c++.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/multimedia/gstreamer1/plugins-bad.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/net/knot.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/net/telegram-purple.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/security/encfs.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/sysutils/logstalgia.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/sysutils/smartmontools.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/telephony/asterisk,imap,-calendar.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/textproc/link-grammar,-main.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/www/phantomjs.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/www/xapian-omega.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/x11/gnome/libdazzle.log
http://build-failures.rhaalovely.net//powerpc/2017-12-01/x11/gnome/totem-pl-parser.log

recurrent failures
 failures/audio/cmu-sphinxbase.log
 failures/devel/xtensa-elf/gcc.log
 failures/geo/geos.log
 failures/graphics/orthanc/server.log
 failures/lang/guile2.log
 failures/net/knot.log
new failures
+++ ls-failures Sun Dec 17 23:54:30 2017
+failures/converters/k2pdfopt.log
+failures/editors/qscintilla.log
+failures/editors/scintilla.log
+failures/emulators/gr-lida.log
+failures/games/easyrpg.log
+failures/games/fifengine.log
+failures/games/hyperrogue.log
+failures/games/lugaru.log
+failures/games/tome4,-data.log
+failures/graphics/slop.log
+failures/lang/nqp.log
+failures/lang/swi-prolog.log
+failures/mail/kopano/core,-mapi.log
+failures/math/plplot,-c++.log
+failures/multimedia/gstreamer1/plugins-bad.log
+failures/net/telegram-purple.log
+failures/security/encfs.log
+failures/sysutils/logstalgia.log
+failures/sysutils/smartmontools.log
+failures/telephony/asterisk,imap,-calendar.log
+failures/textproc/link-grammar,-main.log
+failures/www/phantomjs.log
+failures/www/xapian-omega.log
+failures/x11/gnome/libdazzle.log
+failures/x11/gnome/totem-pl-parser.log
resolved failures
--- ../old/powerpc/last//ls-failuresThu Nov 30 14:42:33 2017
-failures/archivers/woff2.log
-failures/databases/xapian-core.log
-failures/devel/arm-none-eabi/gcc-linaro.log
-failures/devel/jsonrpc-glib.log
-failures/devel/template-glib.log
-failures/games/cataclysm-dda.log
-failures/graphics/gdcm.log
-failures/lang/verilator.log
-failures/math/p5-Math-Pari.log
-failures/net/prosody.log
-failures/security/pcsc-cyberjack.log
-failures/security/py-cryptography.log
-failures/sysutils/facter.log
-failures/textproc/uncrustify.log
Base libs:
crypto.42.0 c.92.0

X libs:

UPDATE: security/keepassxc

[Rafael Sadowski]

Changelog:

 Prevent database corruption when locked [#1219]
 Fixes apply button not saving new entries [#1141]
 Switch to Consolas font on Windows for password edit [#1229]
 Multiple fixes to AppImage deployment [#1115, #1228]
 Fixes multiple memory leaks [#1213]
 Resize message close to 16x16 pixels [#1253]

Comments? Ok?


Index: Makefile
===
RCS file: /cvs/ports/security/keepassxc/Makefile,v
retrieving revision 1.9
diff -u -p -u -p -r1.9 Makefile
--- Makefile15 Dec 2017 07:59:30 -  1.9
+++ Makefile17 Dec 2017 19:19:20 -
@@ -6,7 +6,7 @@ CATEGORIES =security
 
 GH_ACCOUNT =   keepassxreboot
 GH_PROJECT =   keepassxc
-GH_TAGNAME =   2.2.3
+GH_TAGNAME =   2.2.4
 
 HOMEPAGE = https://keepassxc.org
 
Index: distinfo
===
RCS file: /cvs/ports/security/keepassxc/distinfo,v
retrieving revision 1.5
diff -u -p -u -p -r1.5 distinfo
--- distinfo15 Dec 2017 07:59:30 -  1.5
+++ distinfo17 Dec 2017 19:19:20 -
@@ -1,2 +1,2 @@
-SHA256 (keepassxc-2.2.3.tar.gz) = XoLvo3StTcwpqeYN/3+kC+vvCWnthCrVfJUin9oNOSs=
-SIZE (keepassxc-2.2.3.tar.gz) = 3886844
+SHA256 (keepassxc-2.2.4.tar.gz) = 6IRDntOtRh5CaiXwSS9fp4q4ugb7cYl3s4Z9jwmMzQo=
+SIZE (keepassxc-2.2.4.tar.gz) = 3895421
Index: pkg/PLIST
===
RCS file: /cvs/ports/security/keepassxc/pkg/PLIST,v
retrieving revision 1.5
diff -u -p -u -p -r1.5 PLIST
--- pkg/PLIST   2 Nov 2017 23:34:23 -   1.5
+++ pkg/PLIST   17 Dec 2017 19:19:20 -
@@ -3,7 +3,7 @@
 @bin bin/keepassxc-cli
 lib/keepassxc/
 lib/keepassxc/libkeepassx-autotype-xcb.so
-share/applications/org.keepassxc.desktop
+share/applications/org.keepassxc.KeePassXC.desktop
 share/icons/hicolor/128x128/apps/keepassxc-dark.png
 share/icons/hicolor/128x128/apps/keepassxc-locked.png
 share/icons/hicolor/128x128/apps/keepassxc-unlocked.png
@@ -238,6 +238,7 @@ share/keepassxc/icons/database/C66_Money
 share/keepassxc/icons/database/C67_Certificate.png
 share/keepassxc/icons/database/C68_BlackBerry.png
 share/keepassxc/translations/
+share/keepassxc/translations/keepassx_ca.qm
 share/keepassxc/translations/keepassx_cs.qm
 share/keepassxc/translations/keepassx_da.qm
 share/keepassxc/translations/keepassx_de.qm
@@ -268,7 +269,7 @@ share/keepassxc/translations/keepassx_zh
 share/keepassxc/wordlists/
 share/keepassxc/wordlists/eff_large.wordlist
 share/metainfo/
-share/metainfo/org.keepassxc.appdata.xml
+share/metainfo/org.keepassxc.KeePassXC.appdata.xml
 share/mime/packages/keepassxc.xml
 @exec %D/bin/update-mime-database %D/share/mime
 @unexec-delete %D/bin/update-mime-database %D/share/mime

Re: [FIX] x11/dunst - pledge promises

[Thierry]

Hi Timo,

on 17 Dec 17 at 03:14:53 PM +, Timo Myyrä 
 wrote:

Hmm,
It indeed seems that the setting causing this is icon_position 
in the config
file. When its not off, the icons are enabled and the dlopen 
occurs.


What do you think about following patch, it adds prot_exec to 
pledge promises

when icon_position != off.

Timo

I made a few tests with icon_position={left,right,off} and so far 
so good.

Thank you for your time.

Regards,
Thierry

CVS: cvs.openbsd.org: ports

[Jeremy Evans]

CVSROOT:/cvs
Module name:ports
Changes by: jer...@cvs.openbsd.org  2017/12/17 20:07:47

Modified files:
devel/ruby-kgio: Makefile distinfo 

Log message:
Update to kgio 2.11.1

Re: [NEW] lang/spin

[Brian Callahan]

On 12/17/2017 6:46 PM, Ayaka Koshibe wrote:
> On Tue, Dec 12, 2017 at 5:32 AM, Brian Callahan  wrote:
>> On 12/12/17 03:13, Ori Bernstein wrote:
>>> On Sat, 9 Dec 2017 19:35:30 -0500, Brian Callahan 
>>> wrote:
>>>
 This is still looking for an ok for me to import (or free commits for
 you! just go ahead and import with my ok if you want).

 ~Brian
>>> I'm assuming that the 'just go ahead and import' isn't directed at me,
>>> since I've got no commit bit.
>>>
>> Correct. It's for hoping another developer looks at this.
>>
> I've also looked at/tested it, so I've imported it...thanks for the ok!
>
>
> Ayaka

Great, thanks for importing. One more item to take off the queue :)

~Brian

UPDATE: net/snort 2.9.11

[Lawrence Teo]

This updates Snort to 2.9.11, along with these changes/fixes:

* Change all HTTP URLs to HTTPS where appropriate.
* Make sure pkg/README uses the correct Snort rule URL for Snort 2.9.11.
* Remove note in pkg/README about registered users only being allowed to
  download the snort.org ruleset every 15 minutes; I don't think this is
  true anymore.
* Add daemon_timeout=120 to the rc script, since Snort can take a long
  time to start with the current rules.
* Update/regenerate patches.

Release notes and changelog at:

https://www.snort.org/downloads/snort/release_notes_2.9.11.txt
https://www.snort.org/downloads/snort/changelog_2.9.11.txt

Tested on amd64.

ok?



Index: Makefile
===
RCS file: /cvs/ports/net/snort/Makefile,v
retrieving revision 1.97
diff -u -p -r1.97 Makefile
--- Makefile23 Jan 2017 11:22:58 -  1.97
+++ Makefile17 Dec 2017 03:33:00 -
@@ -2,13 +2,12 @@
 
 COMMENT =  highly flexible sniffer/NIDS
 
-VERSION =  2.9.9.0
+VERSION =  2.9.11
 DISTNAME = snort-${VERSION}
-REVISION = 0
 
 CATEGORIES =   net security
 
-HOMEPAGE = http://www.snort.org/
+HOMEPAGE = https://www.snort.org/
 
 MAINTAINER =   Markus Lude 
 
@@ -38,7 +37,13 @@ PREPROC =decoder.rules preprocessor.ru
 DOCS = AUTHORS CREDITS README README.* *.pdf TODO USAGE \
WISHLIST
 
+# If VERSION is 1.2.3.4, set V to "1234".  If VERSION is 1.2.3, set V to 
"1230".
+# This is needed to generate a valid snort.org rule download URL in pkg/README.
 V =${VERSION:S/.//g}
+.if ${VERSION:N[0-9]*\.[0-9]*\.[0-9]*\.[0-9]*}
+V :=   ${V}0
+.endif
+
 SUBST_VARS +=  V
 
 pre-configure:
Index: distinfo
===
RCS file: /cvs/ports/net/snort/distinfo,v
retrieving revision 1.36
diff -u -p -r1.36 distinfo
--- distinfo5 Jan 2017 03:08:04 -   1.36
+++ distinfo17 Dec 2017 03:33:00 -
@@ -1,2 +1,2 @@
-SHA256 (snort-2.9.9.0.tar.gz) = cbFHEl6WOQoS89VXlu1Qc993IGvTVj2E0+Wh8Z59elY=
-SIZE (snort-2.9.9.0.tar.gz) = 6364482
+SHA256 (snort-2.9.11.tar.gz) = I6RePqHhVaPYccaRoQ/iPyv8/k1qvA67zcKrH8zKFO4=
+SIZE (snort-2.9.11.tar.gz) = 6441674
Index: patches/patch-src_decode_h
===
RCS file: /cvs/ports/net/snort/patches/patch-src_decode_h,v
retrieving revision 1.10
diff -u -p -r1.10 patch-src_decode_h
--- patches/patch-src_decode_h  5 Jan 2017 03:08:04 -   1.10
+++ patches/patch-src_decode_h  17 Dec 2017 03:33:00 -
@@ -1,7 +1,8 @@
 $OpenBSD: patch-src_decode_h,v 1.10 2017/01/05 03:08:04 lteo Exp $
 src/decode.h.orig  Tue Jun  7 03:47:47 2016
-+++ src/decode.h   Sun Dec  4 00:36:43 2016
-@@ -834,9 +834,9 @@ typedef struct _SLLHdr {
+Index: src/decode.h
+--- src/decode.h.orig
 src/decode.h
+@@ -835,9 +835,9 @@ typedef struct _SLLHdr {
   * Pflog1_Hdr:  CVS = 1.3,  DLT_OLD_PFLOG = 17,  Length = 28
   * Pflog2_Hdr:  CVS = 1.8,  DLT_PFLOG = 117, Length = 48
   * Pflog3_Hdr:  CVS = 1.12, DLT_PFLOG = 117, Length = 64
Index: patches/patch-src_dynamic-plugins_sf_engine_Makefile_in
===
RCS file: 
/cvs/ports/net/snort/patches/patch-src_dynamic-plugins_sf_engine_Makefile_in,v
retrieving revision 1.10
diff -u -p -r1.10 patch-src_dynamic-plugins_sf_engine_Makefile_in
--- patches/patch-src_dynamic-plugins_sf_engine_Makefile_in 2 May 2016 
02:29:58 -   1.10
+++ patches/patch-src_dynamic-plugins_sf_engine_Makefile_in 17 Dec 2017 
03:33:00 -
@@ -1,7 +1,8 @@
 $OpenBSD: patch-src_dynamic-plugins_sf_engine_Makefile_in,v 1.10 2016/05/02 
02:29:58 lteo Exp $
 src/dynamic-plugins/sf_engine/Makefile.in.orig Fri Mar 18 15:11:29 2016
-+++ src/dynamic-plugins/sf_engine/Makefile.in  Fri Apr 29 11:02:26 2016
-@@ -376,7 +376,7 @@ top_srcdir = @top_srcdir@
+Index: src/dynamic-plugins/sf_engine/Makefile.in
+--- src/dynamic-plugins/sf_engine/Makefile.in.orig
 src/dynamic-plugins/sf_engine/Makefile.in
+@@ -388,7 +388,7 @@ top_srcdir = @top_srcdir@
  AUTOMAKE_OPTIONS = foreign no-dependencies
  dynamicengine_LTLIBRARIES = libsf_engine.la
  dynamicenginedir = $(libdir)/snort_dynamicengine
Index: patches/patch-src_dynamic-preprocessors_Makefile_in
===
RCS file: 
/cvs/ports/net/snort/patches/patch-src_dynamic-preprocessors_Makefile_in,v
retrieving revision 1.16
diff -u -p -r1.16 patch-src_dynamic-preprocessors_Makefile_in
--- patches/patch-src_dynamic-preprocessors_Makefile_in 2 May 2016 02:29:58 
-   1.16
+++ patches/patch-src_dynamic-preprocessors_Makefile_in 17 Dec 2017 03:33:00 
-
@@ -1,7 +1,8 @@
 $OpenBSD: patch-src_dynamic-preprocessors_Makefile_in,v 1.16 2016/05/02 
02:29:58 

patch rsync vulnerabilities (at least?) CVE-2017-17433

[Daniel Jakots]

Hi,

I saw a DSA for CVE-2017-17433 so I looked it up

> The recv_files function in receiver.c in the daemon in rsync 3.1.2,
> and 3.1.3-development before 2017-12-03, proceeds with certain file
> metadata updates before checking for a filename in the
> daemon_filter_list data structure, which allows remote attackers to
> bypass intended access restrictions.

https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-17433.html

I went then for the link patch
https://git.samba.org/?p=rsync.git;a=commit;h=3e06d40029cfdce9d0f73d87cfd4edaf54be9c51
but running make test before said
- overall results:
  30 passed
  9 skipped
and after
- overall results:
  27 passed
  3 failed
  9 skipped

I looked at the git history and saw some scary commits messages (like
"Enforce trailing \0 when receiving xattr name values") but I didn't
know what to backport. So I decided to look at what Debian did
https://sources.debian.org/src/rsync/3.1.2-2.1/debian/patches/

They backported that scary commit plus the commit said to fix the
CVE and the next commits on the same file, and that looks pretty
consistent to me.

Sadly, the result of 'make test' didn't change, so I also backported the
last commit which said it fixed the tests. Indeed it does.


Here's the diff. I think it should be rather straightforward (rsync
doesn't get updates every day) to apply on -stable and probably even on
-oldstable. Considering the importance of this package I think it would
be good to do it on the both. I'll look at them once current has been
dealt with.

Opinions from people who actually understand all these patches are
welcome. And ok too ;)

Cheers,
Daniel

Index: Makefile
===
RCS file: /cvs/ports/net/rsync/Makefile,v
retrieving revision 1.77
diff -u -p -r1.77 Makefile
--- Makefile6 Apr 2016 21:17:29 -   1.77
+++ Makefile18 Dec 2017 02:05:48 -
@@ -3,7 +3,7 @@
 COMMENT =  mirroring/synchronization over low bandwidth links
 
 DISTNAME = rsync-3.1.2
-REVISION = 0
+REVISION = 1
 CATEGORIES =   net
 HOMEPAGE = https://rsync.samba.org/
 
Index: patches/patch-receiver_c
===
RCS file: patches/patch-receiver_c
diff -N patches/patch-receiver_c
--- /dev/null   1 Jan 1970 00:00:00 -
+++ patches/patch-receiver_c18 Dec 2017 02:05:48 -
@@ -0,0 +1,45 @@
+$OpenBSD$
+
+Backport from upstream
+3e06d40029cfdce9d0f73d87cfd4edaf54be9c51
+5509597decdbd7b91994210f700329d8a35e70a1
+f5e8a17e093065fb20fea00a29540fe2c7896441
+
+Index: receiver.c
+--- receiver.c.orig
 receiver.c
+@@ -583,6 +583,12 @@ int recv_files(int f_in, int f_out, char *local_name)
+   if (DEBUG_GTE(RECV, 1))
+   rprintf(FINFO, "recv_files(%s)\n", fname);
+ 
++  if (daemon_filter_list.head && (*fname != '.' || fname[1] != 
'\0')
++   && check_filter(_filter_list, FLOG, fname, 0) < 0) {
++  rprintf(FERROR, "attempt to hack rsync failed.\n");
++  exit_cleanup(RERR_PROTOCOL);
++  }
++
+ #ifdef SUPPORT_XATTRS
+   if (preserve_xattrs && iflags & ITEM_REPORT_XATTR && do_xfers
+&& !(want_xattr_optim && BITS_SET(iflags, 
ITEM_XNAME_FOLLOWS|ITEM_LOCAL_CHANGE)))
+@@ -651,12 +657,6 @@ int recv_files(int f_in, int f_out, char *local_name)
+ 
+   cleanup_got_literal = 0;
+ 
+-  if (daemon_filter_list.head
+-  && check_filter(_filter_list, FLOG, fname, 0) < 0) {
+-  rprintf(FERROR, "attempt to hack rsync failed.\n");
+-  exit_cleanup(RERR_PROTOCOL);
+-  }
+-
+   if (read_batch) {
+   int wanted = redoing
+  ? we_want_redo(ndx)
+@@ -728,7 +728,7 @@ int recv_files(int f_in, int f_out, char *local_name)
+   break;
+   }
+   if (!fnamecmp || (daemon_filter_list.head
+-&& check_filter(_filter_list, FLOG, fname, 0) 
< 0)) {
++&& check_filter(_filter_list, FLOG, fnamecmp, 
0) < 0)) {
+   fnamecmp = fname;
+   fnamecmp_type = FNAMECMP_FNAME;
+   }
Index: patches/patch-rsync_c
===
RCS file: patches/patch-rsync_c
diff -N patches/patch-rsync_c
--- /dev/null   1 Jan 1970 00:00:00 -
+++ patches/patch-rsync_c   18 Dec 2017 02:05:48 -
@@ -0,0 +1,28 @@
+$OpenBSD$
+
+Backport from upstream
+70aeb5fddd1b2f8e143276f8d5a085db16c593b9
+
+Index: rsync.c
+--- rsync.c.orig
 rsync.c
+@@ -49,6 +49,7 @@ extern int flist_eof;
+ extern int file_old_total;
+ extern int keep_dirlinks;
+ extern int make_backups;
++extern int sanitize_paths;
+ extern struct file_list *cur_flist, 

CVS: cvs.openbsd.org: ports

[Juan Francisco Cantero Hurtado]

CVSROOT:/cvs
Module name:ports
Changes by: juan...@cvs.openbsd.org 2017/12/17 18:46:18

Modified files:
lang/chicken   : Tag: OPENBSD_6_2 Makefile.inc 
lang/chicken/bootstrap: Tag: OPENBSD_6_2 distinfo 
lang/chicken/core: Tag: OPENBSD_6_2 distinfo 
Removed files:
lang/chicken/core/patches: Tag: OPENBSD_6_2 patch-srfi-4_scm 

Log message:
Update to chicken 4.13.0.

Includes security fixes: CVE-2017-6949, CVE-2017-9334, CVE-2017-11343.

https://code.call-cc.org/releases/4.13.0/NEWS

>From Timo Myyra (MAINTAINER).

CVS: cvs.openbsd.org: ports

[Juan Francisco Cantero Hurtado]

CVSROOT:/cvs
Module name:ports
Changes by: juan...@cvs.openbsd.org 2017/12/17 18:45:10

Modified files:
lang/chicken   : Makefile.inc 
lang/chicken/bootstrap: distinfo 
lang/chicken/core: distinfo 
Removed files:
lang/chicken/core/patches: patch-srfi-4_scm 

Log message:
Update to chicken 4.13.0.

Includes security fixes: CVE-2017-6949, CVE-2017-9334, CVE-2017-11343.

https://code.call-cc.org/releases/4.13.0/NEWS

>From Timo Myyra (MAINTAINER).

Re: [NEW] lang/spin

[Ayaka Koshibe]

On Tue, Dec 12, 2017 at 5:32 AM, Brian Callahan  wrote:
>
> On 12/12/17 03:13, Ori Bernstein wrote:
>>
>> On Sat, 9 Dec 2017 19:35:30 -0500, Brian Callahan 
>> wrote:
>>
>>> This is still looking for an ok for me to import (or free commits for
>>> you! just go ahead and import with my ok if you want).
>>>
>>> ~Brian
>>
>> I'm assuming that the 'just go ahead and import' isn't directed at me,
>> since I've got no commit bit.
>>
>
> Correct. It's for hoping another developer looks at this.
>

I've also looked at/tested it, so I've imported it...thanks for the ok!


Ayaka

CVS: cvs.openbsd.org: ports

[Ayaka Koshibe]

CVSROOT:/cvs
Module name:ports
Changes by: akosh...@cvs.openbsd.org2017/12/17 16:41:25

Modified files:
lang   : Makefile 

Log message:
Link lang/spin to build.

CVS: cvs.openbsd.org: ports

[Ayaka Koshibe]

CVSROOT:/cvs
Module name:ports
Changes by: akosh...@cvs.openbsd.org2017/12/17 16:38:19

Log message:
Import spin-6.4.7

Spin is a software verification tool for analyzing the consistency of
asynchronous systems. Examples of asynchronous systems include 
multi-threaded
programs, distributed systems, and communications protocols. Spin takes a
system model specified in Promela (the PROcess MEta LAnguage). It also takes
a specifciation of the requirements for logical correctness, and allows both
interactive and exhaustive simulations of the system for verifying these
properties.

Submission by Ori Bernstein 

OK bcallah@

Status:

Vendor Tag: akoshibe
Release Tags:   akoshibe_20171217

N ports/lang/spin/Makefile
N ports/lang/spin/distinfo
N ports/lang/spin/patches/patch-makefile
N ports/lang/spin/pkg/PLIST
N ports/lang/spin/pkg/DESCR

No conflicts created by this import

Re: [NEW] net/toot

[Daniel Jakots]

On Sat, 16 Dec 2017 08:17:41 -0700, Aaron Bieber 
wrote:

> On Fri, Dec 15, 2017 at 11:02:49PM +0100, Klemens Nanni wrote:
> > On Sun, Nov 19, 2017 at 09:24:42PM +0100, Klemens Nanni wrote:  
> > > On Sun, Nov 19, 2017 at 02:54:46PM +0100, Klemens Nanni wrote:
> > > Take three after some feedback now also using Python 3 to avoid
> > > new ports still depending on Python 2.
> > >
> > > The s,©,(C), patch for README.rst is now required as setup.py
> > > reads the readme file for its long description but chokes on it.
> > > I've already mailed the developer about it.  
> > Upstream released new 0.15.1 three days ago with minor bugfixes
> > including this diff.
> >  
> > > Feedback? Any takers?  
> > Bump.  
> 
> Looks good to me! I'd like to see an upstream'd PR to add OpenBSD to
> the install instructions :D - OK abieber@ if anyone wants to import
> (Edd?! - looks like you use this :D)

I had an ok from some times ago from jca@ so I imported it. Thanks for
the port, Klemens and sorry for the delay!

CVS: cvs.openbsd.org: ports

[Daniel Jakots]

CVSROOT:/cvs
Module name:ports
Changes by: d...@cvs.openbsd.org2017/12/17 14:04:35

Modified files:
net: Makefile 

Log message:
+ toot

CVS: cvs.openbsd.org: ports

[Daniel Jakots]

CVSROOT:/cvs
Module name:ports
Changes by: d...@cvs.openbsd.org2017/12/17 14:03:54

Log message:
Import toot-0.15.1, tweaks and ok jca@ and ok abierber@

From Klemens Nanni, thanks!

toot lets you read, post and manage accounts on Mastadon social networks. It
supports logging in through both your webbrowser and the console with 
optional
two factor authentication. Toots can be pasted directly via standard input.

Status:

Vendor Tag: danj
Release Tags:   danj_20171217

N ports/net/toot/Makefile
N ports/net/toot/distinfo
N ports/net/toot/patches/patch-Makefile
N ports/net/toot/pkg/DESCR
N ports/net/toot/pkg/PLIST

No conflicts created by this import

CVS: cvs.openbsd.org: ports

[Matthias Kilian]

CVSROOT:/cvs
Module name:ports
Changes by: k...@cvs.openbsd.org2017/12/17 13:36:04

Modified files:
devel/quirks   : Makefile 
devel/quirks/files: Quirks.pm 

Log message:
Register removal of hs-dataenc.

CVS: cvs.openbsd.org: ports

[Matthias Kilian]

CVSROOT:/cvs
Module name:ports
Changes by: k...@cvs.openbsd.org2017/12/17 13:32:19

Removed files:
devel/hs-dataenc: Makefile distinfo 
devel/hs-dataenc/patches: patch-dataenc_cabal 
devel/hs-dataenc/pkg: DESCR PLIST 

Log message:
Remove devel/hs-dataenc.

It's EOL, superseded by devel/hs-sandi, and no longer
used after the update of games/hedgewars by pascal@.

CVS: cvs.openbsd.org: ports

[Matthias Kilian]

CVSROOT:/cvs
Module name:ports
Changes by: k...@cvs.openbsd.org2017/12/17 13:31:14

Modified files:
devel  : Makefile 

Log message:
Unhook devel/hs-dataenc.

CVS: cvs.openbsd.org: ports

[Pascal Stumpf]

CVSROOT:/cvs
Module name:ports
Changes by: pas...@cvs.openbsd.org  2017/12/17 13:19:18

Modified files:
games/openmw   : Makefile 
Removed files:
games/openmw/patches: patch-apps_openmw_main_cpp 

Log message:
Drop patch, it is no longer needed.

Noticed by Juha Erkkila.

CVS: cvs.openbsd.org: ports

[Pascal Stumpf]

CVSROOT:/cvs
Module name:ports
Changes by: pas...@cvs.openbsd.org  2017/12/17 13:10:12

Modified files:
games/hedgewars: Makefile distinfo 
games/hedgewars/patches: patch-hedgewars_CMakeLists_txt 
 patch-misc_libphyslayer_CMakeLists_txt 
games/hedgewars/pkg: PLIST-main 
Removed files:
games/hedgewars/patches: patch-cmake_modules_checkModule_hs 
 patch-hedgewars_SDLh_pas 
 patch-hedgewars_avwrapper_CMakeLists_txt 

Log message:
Update to 0.9.23.

Reminded and tested by kili@ with GHC 8.2.2.

Re: UPDATE: misc/memcached

[Giovanni Bechis]

On Sun, Dec 17, 2017 at 01:24:30PM +0100, Jeremie Courreges-Anglas wrote:
> On Sun, Dec 17 2017, Giovanni Bechis  wrote:
> > Il 17 dicembre 2017 11:54:22 CET, Jeremie Courreges-Anglas 
> >  ha scritto:
> >>On Sat, Dec 16 2017, Giovanni Bechis  wrote:
> >>> On 12/15/17 17:51, Jeremie Courreges-Anglas wrote:
>  On Wed, Nov 22 2017, Giovanni Bechis  wrote:
> > Hi,
> > update to latest release, some bug fixes and pledge(2) support
> > committed upstream.
>  
>  I don't use this but the update looks fine ports-wise.  ok jca@ fwiw
>  
> > Pledge(2) support is enabled only if the daemon is not run with "-o
> >>no_drop_privileges" parameter;
> > do we want to go the way upstream goes or should we disable the
> >>possibility to disable pledge(2) ?
>  
>  I would not bother disabling this, but if you do make it obvious
> >>that
>  -o no_drop_privileges won't work.  If people use the option as
>  a workaround and slack off instead of reporting bugs, they're the
> >>ones
>  not benefiting from pledge(2), which is not a smart thing to do.
>  
> >>> what about this one ?
> >>
> >>I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have
> >>implemented this as a configure-time option which would be usable on
> >>other systems that provide sandboxing.  Words are cheap and I don't
> >>care
> >>enough to write a diff, so please go ahead with whatever suits you. ;)
> >
> > As done in other diffs, I would like to go with a diff as simple as 
> > possible for our tree, then push a proper autoconf diff to upstream for 
> > next release.
> 
> Cool!  But then you could make your patch even shorter: no need to add
> the #ifdef __OpenBSD__ goo. :)
> 
correct, what about that then ?
 Cheers
  Giovanni
Index: Makefile
===
RCS file: /var/cvs/ports/misc/memcached/Makefile,v
retrieving revision 1.39
diff -u -p -r1.39 Makefile
--- Makefile31 Oct 2017 07:39:25 -  1.39
+++ Makefile15 Dec 2017 23:28:28 -
@@ -2,7 +2,7 @@
 
 COMMENT=   distributed memory object caching system
 
-DISTNAME=  memcached-1.5.2
+DISTNAME=  memcached-1.5.3
 CATEGORIES=misc
 
 HOMEPAGE=  https://www.memcached.org/
Index: distinfo
===
RCS file: /var/cvs/ports/misc/memcached/distinfo,v
retrieving revision 1.25
diff -u -p -r1.25 distinfo
--- distinfo31 Oct 2017 07:39:25 -  1.25
+++ distinfo15 Dec 2017 23:28:30 -
@@ -1,2 +1,2 @@
-SHA256 (memcached-1.5.2.tar.gz) = mskxE7210DfnnGEnc4ZWSsLl4x1J5ZTxHlVOTBSbckU=
-SIZE (memcached-1.5.2.tar.gz) = 407715
+SHA256 (memcached-1.5.3.tar.gz) = JYzD3bdhNoVGWs/QIV+CciCju90Wf9LAgGMhBbLS884=
+SIZE (memcached-1.5.3.tar.gz) = 409131
Index: patches/patch-configure
===
RCS file: /var/cvs/ports/misc/memcached/patches/patch-configure,v
retrieving revision 1.10
diff -u -p -r1.10 patch-configure
--- patches/patch-configure 31 Oct 2017 07:39:25 -  1.10
+++ patches/patch-configure 15 Dec 2017 23:30:49 -
@@ -2,7 +2,7 @@ $OpenBSD: patch-configure,v 1.10 2017/10
 Index: configure
 --- configure.orig
 +++ configure
-@@ -6517,7 +6517,7 @@ $as_echo "#define _GNU_SOURCE 1" >>confdefs.h
+@@ -6551,7 +6551,7 @@ $as_echo "#define _GNU_SOURCE 1" >>confdefs.h
  elif test "$GCC" = "yes"
  then
GCC_VERSION=`$CC -dumpversion`
Index: patches/patch-memcached_c
===
RCS file: /var/cvs/ports/misc/memcached/patches/patch-memcached_c,v
retrieving revision 1.14
diff -u -p -r1.14 patch-memcached_c
--- patches/patch-memcached_c   31 Oct 2017 07:39:25 -  1.14
+++ patches/patch-memcached_c   17 Dec 2017 19:31:41 -
@@ -1,31 +1,15 @@
-$OpenBSD: patch-memcached_c,v 1.14 2017/10/31 07:39:25 giovanni Exp $
+$OpenBSD$
+
 Index: memcached.c
 --- memcached.c.orig
 +++ memcached.c
-@@ -23,6 +23,7 @@
- #include 
- #include 
- #include 
-+#include 
- 
- /* some POSIX systems need the following definition
-  * to get mlockall flags out of sys/mman.h.  */
-@@ -6861,6 +6862,18 @@ int main (int argc, char **argv) {
- 
- if (pid_file != NULL) {
- save_pid(pid_file);
-+}
-+
-+if (settings.socketpath != NULL) {
-+   if (pledge("stdio unix", NULL) == -1) {
-+  fprintf(stderr, "%s: pledge: %s\n", argv[0], strerror(errno));
-+  exit(1);
-+   }
+@@ -6927,6 +6927,9 @@ int main (int argc, char **argv) {
+ /* Drop privileges no longer needed */
+ if (settings.drop_privileges) {
+ drop_privileges();
 +} else {
-+   if (pledge("stdio inet", NULL) == -1) {
-+  fprintf(stderr, "%s: pledge: %s\n", argv[0], strerror(errno));
-+  exit(1);
-+   }
++fprintf(stderr, "no_drop_privileges 

CVS: cvs.openbsd.org: ports

[Landry Breuil]

CVSROOT:/cvs
Module name:ports
Changes by: lan...@cvs.openbsd.org  2017/12/17 11:04:24

Modified files:
www: Makefile 
devel  : Makefile 

Log message:
+py-autobahn, py-txaio

CVS: cvs.openbsd.org: ports

[Landry Breuil]

CVSROOT:/cvs
Module name:ports
Changes by: lan...@cvs.openbsd.org  2017/12/17 11:03:22

Log message:
Import py-autobahn 17.10.1.

Autobahn|Python is a subproject of Autobahn and provides open-source
implementations of the WebSocket Protocol and the Web Application
Messaging Protocol (WAMP) for Python 2 and 3, and running on Twisted
and asyncio.

You can use Autobahn|Python to create clients and servers in Python
speaking just plain WebSocket or WAMP.

WebSocket allows bidirectional real-time messaging on the Web and
beyond, while WAMP adds real-time application communication on top of
WebSocket.

WAMP provides asynchronous Remote Procedure Calls and Publish &
Subscribe for applications in one protocol running over WebSocket.
WAMP is a routed protocol, so you need a WAMP Router to connect your
Autobahn|Python based clients. We provide Crossbar.io, but there are
other options as well.

needed by buildbot 0.9. A python3 flavor might be added later on..

ok sthen@

Status:

Vendor Tag: landry
Release Tags:   landry_20171217

N ports/www/py-autobahn/Makefile
N ports/www/py-autobahn/distinfo
N ports/www/py-autobahn/pkg/PLIST
N ports/www/py-autobahn/pkg/DESCR

No conflicts created by this import

CVS: cvs.openbsd.org: ports

[Landry Breuil]

CVSROOT:/cvs
Module name:ports
Changes by: lan...@cvs.openbsd.org  2017/12/17 10:58:52

Log message:
Import py-txaio 2.8.2.

txaio is a helper library for writing code that runs unmodified on both
Twisted and asyncio / Trollius.

This is like six, but for wrapping over differences between Twisted and
asyncio so one can write code that runs unmodified on both (aka source
code compatibility). In other words: your users can choose if they want
asyncio or Twisted as a dependency.

Note that, with this approach, user code runs under the native event
loop of either Twisted or asyncio. This is different from attaching
either one’s event loop to the other using some event loop adapter.

needed by buildbot 0.9.

ok sthen@

Status:

Vendor Tag: landry
Release Tags:   landry_20171217

N ports/devel/py-txaio/Makefile
N ports/devel/py-txaio/distinfo
N ports/devel/py-txaio/pkg/PLIST
N ports/devel/py-txaio/pkg/DESCR

No conflicts created by this import

CVS: cvs.openbsd.org: ports

[Brian Callahan]

CVSROOT:/cvs
Module name:ports
Changes by: bcal...@cvs.openbsd.org 2017/12/17 09:58:14

Log message:
Import games/qqwing, a Sudoku puzzle generator and solver.
Submission by Victor Kukshiev 
ok zhuk@

Status:

Vendor Tag: bcallah
Release Tags:   bcallah_20171217

N ports/games/qqwing/Makefile
N ports/games/qqwing/distinfo
N ports/games/qqwing/pkg/DESCR
N ports/games/qqwing/pkg/PLIST

No conflicts created by this import

CVS: cvs.openbsd.org: ports

[Brian Callahan]

CVSROOT:/cvs
Module name:ports
Changes by: bcal...@cvs.openbsd.org 2017/12/17 09:58:37

Modified files:
games  : Makefile 

Log message:
+qqwing

Re: [NEW] games/qqwing

[Brian Callahan]

On 12/17/17 11:25, Victor Kukshiev wrote:



2017-12-17 19:18 GMT+03:00 Brian Callahan >:


I'd like to swap them on commit, because it promotes consistent
style and then it's just done and no one will come by and ask
questions later.

But I do have a question for Victor: you said this depends on
gnome-sudoku, but I don't see anything referencing gnome-sudoku in
your port or in the ports tree?

~Brian

Gnome-sudoku is depending on qqwin. I is writing Gnome-sudoku port also.
sorry to my english)


OK. Thanks for the clarification.

~Brian

Re: [NEW] games/qqwing

[Victor Kukshiev]

2017-12-17 19:18 GMT+03:00 Brian Callahan :

> I'd like to swap them on commit, because it promotes consistent style and
> then it's just done and no one will come by and ask questions later.
>
> But I do have a question for Victor: you said this depends on
> gnome-sudoku, but I don't see anything referencing gnome-sudoku in your
> port or in the ports tree?
>
> ~Brian
>
Gnome-sudoku is depending on qqwin. I is writing Gnome-sudoku port also.
sorry to my english)

Re: [NEW] games/qqwing

[Brian Callahan]

On 12/17/17 11:08, Vadim Zhukov wrote:

2017-12-17 18:54 GMT+03:00 Victor Kukshiev :

2017-12-17 18:43 GMT+03:00 Vadim Zhukov :

Please run "portcheck -N" in port directory first, and walk through its
replies.

Done. I fixed it. OK?

Now it's more or less good. The only nit left is WANTLIB coming after
MASTER_SITES, but personally I don't care in such simple port either.

Okay for anyone willing to commit.



I'd like to swap them on commit, because it promotes consistent style 
and then it's just done and no one will come by and ask questions later.


But I do have a question for Victor: you said this depends on 
gnome-sudoku, but I don't see anything referencing gnome-sudoku in your 
port or in the ports tree?


~Brian

Re: [NEW] games/qqwing

[Vadim Zhukov]

2017-12-17 18:54 GMT+03:00 Victor Kukshiev :
> 2017-12-17 18:43 GMT+03:00 Vadim Zhukov :
>>
>> Please run "portcheck -N" in port directory first, and walk through its
>> replies.
>
> Done. I fixed it. OK?

Now it's more or less good. The only nit left is WANTLIB coming after
MASTER_SITES, but personally I don't care in such simple port either.

Okay for anyone willing to commit.

--
  WBR,
  Vadim Zhukov

Re: [NEW] games/qqwing

[Victor Kukshiev]

Done. I fixed it. OK?

2017-12-17 18:43 GMT+03:00 Vadim Zhukov :

> Please run "portcheck -N" in port directory first, and walk through its
> replies.
>
> --
>   WBR,
>   Vadim Zhukov
>


qqwing.tar.gz
Description: GNU Zip compressed data

Re: [NEW] games/qqwing

[Vadim Zhukov]

2017-12-17 18:26 GMT+03:00 Victor Kukshiev :
> Hello!
> QQwing is software for generating and solving Sudoku puzzles.
> This package depends on gnome-sudoku.
> OK?

Please run "portcheck -N" in port directory first, and walk through its replies.

--
  WBR,
  Vadim Zhukov

[NEW] games/qqwing

[Victor Kukshiev]

Hello!
QQwing is software for generating and solving Sudoku puzzles.
This package depends on gnome-sudoku.
OK?


qqwing.tar.gz
Description: GNU Zip compressed data

Re: [FIX] x11/dunst - pledge promises

[Timo Myyrä]

"T.Lux"  writes:

> On 15 October 2017 at 16:26 GMT, Sebastien Marie wrote:
>
>> On Sun, Oct 15, 2017 at 11:56:31AM -0400, T.Lux wrote:
>>> On 15 October 2017 at 05:19 GMT, Sebastien Marie wrote:
>>>
>>> > 2) recompile the port with debugging symbol, and extract the >
>>> backtrace
>>> > of the failure with gdb ?
>>> >
>>> > $ cd /usr/ports/x11/dunst
>>> > $ make FETCH_PACKAGES=yes CFLAGS=-g
>>> > $ gdb /usr/ports/pobj/dunst-1.2.0/dunst-1.2.0/dunst
>>> > (gdb) run
>>> > ...
>>> > Program received signal SIGABRT, Aborted.
>>> > (gdb) backtrace
>>> Attached file (within .tar.gz): gdb_dunst.txt
>>
>> inlined backtrace for lazy readers.
>>
>> Starting program: /usr/ports/pobj/dunst-1.2.0/dunst-1.2.0/dunst
>> [New process 11913]
>>
>> Program received signal SIGABRT, Aborted.
>> _dl___syscall () at -:1
>> 1-: No such file or directory.
>>  in -
>> Current language:  auto; currently asm
>> #0  _dl___syscall () at -:1
>> #1  0x050ef1a00d38 in _dl_tryload_shlib (
>> libname=0x50ef1c14b50
>> "/usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so",
>> type=Variable "type" is not available.
>> ) at syscall.h:67
>> #2  0x050ef1a08d70 in _dl_load_shlib (libname=Variable "libname"
>> is not available.
>> ) at /usr/src/libexec/ld.so/library_subr.c:421
>> #3  0x050ef1a094f7 in dlopen (libname=0x50ee660f500
>> "/usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so",
>> flags=Variable "flags" is not available.
>> ) at /usr/src/libexec/ld.so/dlfcn.c:83
>> #4  0x050f65b4c9a2 in g_module_open (
>> file_name=0x50f3de7f580
>> "/usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so",
>> flags=Variable "flags" is not available.
>> ) at gmodule-dl.c:97
>> #5  0x050eaedeb8db in _gdk_pixbuf_load_module () from
>> /usr/local/lib/libgdk_pixbuf-2.0.so.3200.1
>> #6  0x050eaedec83f in gdk_pixbuf_new_from_file () from
>> /usr/local/lib/libgdk_pixbuf-2.0.so.3200.1
>> #7  0x050ca6b0d1ba in get_pixbuf_from_file
>> (icon_path=0x50f3de7eb80
>> "/usr/local/share/icons/Moka/16x16/status//info.png")
>> at src/x11/x.c:310
>> #8  0x050ca6b0ce31 in get_pixbuf_from_path
>> (icon_path=0x50f844bc980 "info") at src/x11/x.c:349
>> #9  0x050ca6b0c7f6 in r_init_shared (c=0x50f65466000,
>> n=0x50f2ccf8100) at src/x11/x.c:414
>> #10 0x050ca6b0c488 in r_create_layout_from_notification
>> (c=0x50f65466000, n=0x50f2ccf8100) at src/x11/x.c:482
>> #11 0x050ca6b0a011 in r_create_layouts (c=0x50f65466000) at
>> src/x11/x.c:534
>> #12 0x050ca6b09c15 in x_win_draw () at src/x11/x.c:653
>> #13 0x050ca6b02849 in run (data=0x0) at src/dunst.c:242
>> #14 0x050ca6b02dfd in dunst_main (argc=1, argv=0x7f7e8388)
>> at src/dunst.c:378
>> #15 0x050ca6b0dcf2 in main (argc=1, argv=0x7f7e8388) at
>> main.c:5
>> The program is running.  Exit anyway? (y or n)
>>
>>> OK, my inexperienced analysis is that I'm using icons in my dunstrc
>>> which
>>> uses:
>>> (a)
>>> /usr/local/lib/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-png.so
>>> to load png icons. the latter call mmap(2) with protection
>>> "PROT_EXEC"
>>> to load icons which failed since pledge(2) was already requested
>>> without "prot_exec" promise.
>>
>> libgdk_pixbuf-2.0.so tries to load dynamic library with dlopen() on
>> first need. but it is already too late for pledge.
>>
>>> I would guess that adding the line below into your dunstrc would
>>> reproduce this problem.
>>>
>>>  icon_folders = /usr/local/share/icons/gnome/16x16/status/
>>>
>>> correct?
>>
>> unsure. I still couldn't reproduce. it should be part of the
>> problem.
>> but I don't really know how to use this port :)
>>
>> A bindly try is to pledge(2) really late... in fact it is at end of
>> the
>> run() function, just before the sleep, so:
>>   - the program will call pledge(2) at each loop (not a problem
>> per se)
>>   - the first loop is unpledged (but as initialization occurs in
>> the
>> first loop...)
>>
>> else we should isolate exactly what trigger dlopen() in the config
>> file,
>> and run unpledged in this case.
>
>
>
> Your diff fix my problem, thank you for that! As to why you cannot
> reproduce it with the addition of the icon_folders directive in your
> configuration file is quite strange.
> I've attached the configuration file I am using, just in case... just
> launch it with dunst -config /path/to/config/file
>
> Regards,
> Thierry

Hmm,
It indeed seems that the setting causing this is icon_position in the config
file. When its not off, the icons are enabled and the dlopen occurs.

What do you think about following patch, it adds prot_exec to pledge promises
when icon_position != off.

Timo

Index: Makefile
===
RCS file: /cvs/ports/x11/dunst/Makefile,v
retrieving revision 1.3
diff -u -p -r1.3 Makefile
--- Makefile31 Aug 2017 20:57:00 -  1.3
+++ Makefile17 Dec 2017 15:13:56 -
@@ -5,12 +5,13 @@ COMMENT=  

Re: NEW: x11/grantlee-qt5

[Vadim Zhukov]

2017-11-04 13:22 GMT+03:00 Rafael Sadowski :
> Hi All,
>
> Grantlee-qt5 is the Qt5 variant of x11/grantlee and is needed for
> upcoming KDE application. @conflict grantlee-<5.1.0 marker is set in PLIST.
>
> All tests are green on amd64:
>
> 100% tests passed, 0 tests failed out of 12
>
> DESCR:
> Grantlee is a set of Free Software libraries written using the Qt framework.
>
> The goal of Grantlee Templates is to make it easier for application developers
> to separate the structure of documents from the data they contain, opening the
> door for theming and advanced generation of other text such as code.
>
>
> Ok? Comments?

Not okay. This way you'll break building KF5 and KDE4 components
simultaneously. We need to de-conflict KDE4 and KF5 versions of
Grantlee. I'd prefer to modify KDE4 version as it's the one that
should go earlier, but it's up to you...

Interesting would be to check if we could actually make both Grantlee
versions use same headers... :) But more likely we'll need, e.g., to
move Grantlee headers under ${PREFIX}/include/kde4.

--
  WBR,
  Vadim Zhukov

CVS: cvs.openbsd.org: ports

[Vadim Zhukov]

CVSROOT:/cvs
Module name:ports
Changes by: z...@cvs.openbsd.org2017/12/17 07:02:02

Modified files:
infrastructure/bin: portcheck 

Log message:
Do not warn about missing dependency on x11/dbus,-suid for x11/dbus,-suid.

CVS: cvs.openbsd.org: ports

[Robert Nagy]

CVSROOT:/cvs
Module name:ports
Changes by: rob...@cvs.openbsd.org  2017/12/17 06:16:28

Modified files:
www/chromium   : Makefile 
www/chromium/patches: patch-content_common_user_agent_cc 

Log message:
Add an i686 string as well on i386 now that chromium is re-enabled on i386 
builds

Re: UPDATE: misc/memcached

[Jeremie Courreges-Anglas]

On Sun, Dec 17 2017, Giovanni Bechis  wrote:
> Il 17 dicembre 2017 11:54:22 CET, Jeremie Courreges-Anglas  
> ha scritto:
>>On Sat, Dec 16 2017, Giovanni Bechis  wrote:
>>> On 12/15/17 17:51, Jeremie Courreges-Anglas wrote:
 On Wed, Nov 22 2017, Giovanni Bechis  wrote:
> Hi,
> update to latest release, some bug fixes and pledge(2) support
> committed upstream.
 
 I don't use this but the update looks fine ports-wise.  ok jca@ fwiw
 
> Pledge(2) support is enabled only if the daemon is not run with "-o
>>no_drop_privileges" parameter;
> do we want to go the way upstream goes or should we disable the
>>possibility to disable pledge(2) ?
 
 I would not bother disabling this, but if you do make it obvious
>>that
 -o no_drop_privileges won't work.  If people use the option as
 a workaround and slack off instead of reporting bugs, they're the
>>ones
 not benefiting from pledge(2), which is not a smart thing to do.
 
>>> what about this one ?
>>
>>I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have
>>implemented this as a configure-time option which would be usable on
>>other systems that provide sandboxing.  Words are cheap and I don't
>>care
>>enough to write a diff, so please go ahead with whatever suits you. ;)
>
> As done in other diffs, I would like to go with a diff as simple as possible 
> for our tree, then push a proper autoconf diff to upstream for next release.

Cool!  But then you could make your patch even shorter: no need to add
the #ifdef __OpenBSD__ goo. :)

-- 
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF  DDCC 0DFA 74AE 1524 E7EE


signature.asc
Description: PGP signature

Re: games/hedgewars update?

[Matthias Kilian]

Hi Pascal,

On Sat, Dec 16, 2017 at 12:12:03PM +0100, Pascal Stumpf wrote:
> Index: Makefile
> ===
> RCS file: /cvs/ports/games/hedgewars/Makefile,v
> retrieving revision 1.15
> diff -u -p -r1.15 Makefile
> --- Makefile  26 Jul 2017 22:45:21 -  1.15
> +++ Makefile  16 Dec 2017 11:11:38 -
> @@ -7,8 +7,7 @@ MULTI_PACKAGES =  -main -server
>  
>  SHARED_LIBS +=  physlayer 0.0 # 0.0
>  
> -R =  0.9.22
> -REVISION =   8
> +R =  0.9.23
>  V =  $R
>  DISTNAME =   hedgewars-src-$V
>  PKGNAME-main =   hedgewars-$V

[...]

Thank you for the update!. Also builds fine with what I've in my
tree (ghc-8.2.2 and a couple of changed/updated hs-ports).

ok kili@

Re: UPDATE: misc/memcached

[Giovanni Bechis]

Il 17 dicembre 2017 11:54:22 CET, Jeremie Courreges-Anglas  ha 
scritto:
>On Sat, Dec 16 2017, Giovanni Bechis  wrote:
>> On 12/15/17 17:51, Jeremie Courreges-Anglas wrote:
>>> On Wed, Nov 22 2017, Giovanni Bechis  wrote:
 Hi,
 update to latest release, some bug fixes and pledge(2) support
 committed upstream.
>>> 
>>> I don't use this but the update looks fine ports-wise.  ok jca@ fwiw
>>> 
 Pledge(2) support is enabled only if the daemon is not run with "-o
>no_drop_privileges" parameter;
 do we want to go the way upstream goes or should we disable the
>possibility to disable pledge(2) ?
>>> 
>>> I would not bother disabling this, but if you do make it obvious
>that
>>> -o no_drop_privileges won't work.  If people use the option as
>>> a workaround and slack off instead of reporting bugs, they're the
>ones
>>> not benefiting from pledge(2), which is not a smart thing to do.
>>> 
>> what about this one ?
>
>I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have
>implemented this as a configure-time option which would be usable on
>other systems that provide sandboxing.  Words are cheap and I don't
>care
>enough to write a diff, so please go ahead with whatever suits you. ;)

As done in other diffs, I would like to go with a diff as simple as possible 
for our tree, then push a proper autoconf diff to upstream for next release.
  Giovanni

Re: UPDATE: powerdns 4.1.0

[Florian Obser]

updated diff after input from jca and rsadowski

- added quirks for ldap removal
- reduced wantlib
- removed PLIST-ldap

OK?

diff --git devel/quirks/files/Quirks.pm devel/quirks/files/Quirks.pm
index 6a75e9ddae5..5460ffbf5f9 100644
--- devel/quirks/files/Quirks.pm
+++ devel/quirks/files/Quirks.pm
@@ -1216,6 +1216,7 @@ my $obsolete_reason = {
'aimsniff' => 6,
'pork' => 6,
'ntimed' => 3,
+   'powerdns-ldap' => 6,
 };
 
 # reasons for obsolete packages
diff --git net/powerdns/Makefile net/powerdns/Makefile
index c96c9a9b108..11a08254528 100644
--- net/powerdns/Makefile
+++ net/powerdns/Makefile
@@ -5,25 +5,19 @@ BROKEN-hppa = undefined reference to 
'__sync_fetch_and_add_4'
 COMMENT-main=  modular authoritative nameserver (with database support)
 COMMENT-mysql= MySQL database access module for PowerDNS
 COMMENT-pgsql= PGSQL database access module for PowerDNS
-COMMENT-ldap=  LDAP module for PowerDNS
 
-V= 4.0.4
+V= 4.1.0
 DISTNAME=  pdns-${V}
 EXTRACT_SUFX = .tar.bz2
 PKGNAME=   powerdns-${V}
 PKGNAME-main=  powerdns-${V}
 PKGNAME-mysql= powerdns-mysql-${V}
 PKGNAME-pgsql= powerdns-pgsql-${V}
-PKGNAME-ldap=  powerdns-ldap-${V}
 CATEGORIES=net
-HOMEPAGE=  http://www.powerdns.com/
+HOMEPAGE=  https://www.powerdns.com/
 MAINTAINER=Florian Obser 
-REVISION-ldap= 0
-REVISION-main= 0
-REVISION-mysql=0
-REVISION-pgsql=0
 
-MULTI_PACKAGES=-main -mysql -pgsql -ldap
+MULTI_PACKAGES=-main -mysql -pgsql
 
 # GPLv2
 PERMIT_PACKAGE_CDROM=  Yes
@@ -31,22 +25,19 @@ PERMIT_PACKAGE_CDROM=   Yes
 COMPILER = base-clang ports-gcc
 
 WANTLIB += m pthread ${COMPILER_LIBCXX}
-#WANTLIB += ${MODGCC4_CPPWANTLIB}
 
 WANTLIB-main += ${WANTLIB}
-WANTLIB-main += boost_program_options-mt boost_serialization-mt
-WANTLIB-main += bz2 c crypto gmp sqlite3 z
+WANTLIB-main += boost_program_options-mt c crypto sqlite3
 
-MASTER_SITES=  http://downloads.powerdns.com/releases/
+MASTER_SITES=  https://downloads.powerdns.com/releases/
 
 NO_TEST=   Yes
 
 LIB_DEPENDS-main=  ${LIB_DEPENDS} \
databases/sqlite3 \
-   devel/boost \
-   devel/gmp
+   devel/boost
 
-PSEUDO_FLAVORS+=   no_mysql no_pgsql no_ldap
+PSEUDO_FLAVORS+=   no_mysql no_pgsql
 FLAVOR?=
 
 BACKENDS=  gsqlite3
@@ -60,7 +51,9 @@ CONFIGURE_ARGS+=  --disable-shared \
--with-dynmodules="${BACKENDS}" \
--without-lua \
--disable-hardening \
-   --without-protobuf
+   --without-protobuf \
+   --enable-tools
+CONFIGURE_ARGS+=   --without-ldap
 
 CONFIGURE_ENV+=CPPFLAGS="-I${LOCALBASE}/include" \
LDFLAGS="-L${LOCALBASE}/lib"
@@ -93,17 +86,6 @@ LIB_DEPENDS-pgsql=   ${LIB_DEPENDS} \
 RUN_DEPENDS-pgsql= ${FULLPKGNAME-main}:net/powerdns
 WANTLIB-pgsql= crypto pq>=2 ssl ${WANTLIB}
 
-# LDAP
-.if ${BUILD_PACKAGES:M-ldap}
-BACKENDS+= ldap
-.else
-CONFIGURE_ARGS+=   --without-ldap
-.endif
-LIB_DEPENDS-ldap=  ${LIB_DEPENDS} \
-   databases/openldap
-RUN_DEPENDS-ldap=  ${FULLPKGNAME-main}:net/powerdns
-WANTLIB-ldap+= ${WANTLIB} crypto lber-2.4 ldap_r-2.4 sasl2 ssl
-
 EXAMPLE_DIR=   ${PREFIX}/share/examples/pdns/
 post-install:
rm -f ${PREFIX}/lib/pdns/*.la
diff --git net/powerdns/distinfo net/powerdns/distinfo
index 0b14f5ac821..7ba47e175d1 100644
--- net/powerdns/distinfo
+++ net/powerdns/distinfo
@@ -1,2 +1,2 @@
-SHA256 (pdns-4.0.4.tar.bz2) = 2XSrid5pR3x/WBoyM7xzHqy7Q9R5KR5HKyxTHIO212M=
-SIZE (pdns-4.0.4.tar.bz2) = 1320327
+SHA256 (pdns-4.1.0.tar.bz2) = 25GTsPAlXCTfv8Mez/i9OeIf7AX/dSblrqljq8UX8PM=
+SIZE (pdns-4.1.0.tar.bz2) = 1116905
diff --git net/powerdns/patches/patch-ext_json11_json11_cpp 
net/powerdns/patches/patch-ext_json11_json11_cpp
deleted file mode 100644
index caf69e13d07..000
--- net/powerdns/patches/patch-ext_json11_json11_cpp
+++ /dev/null
@@ -1,42 +0,0 @@
-$OpenBSD: patch-ext_json11_json11_cpp,v 1.1 2017/05/27 06:21:43 espie Exp $
-nullptrs are non-comparable.
-patch from freebsd
-
-Index: ext/json11/json11.cpp
 ext/json11/json11.cpp.orig
-+++ ext/json11/json11.cpp
-@@ -37,11 +37,21 @@ using std::make_shared;
- using std::initializer_list;
- using std::move;
- 
-+/* Helper for representing null - just a do-nothing struct, plus comparison
-+ * operators so the helpers in JsonValue work. We can't use nullptr_t because
-+ * it may not be orderable.
-+*/
-+
-+struct NullStruct {
-+bool operator==(NullStruct) const { return true; }
-+bool 

net/knot: new maintainer?

[Jeremie Courreges-Anglas]

Hi,

I have just updated net/knot to its latest release, after very basic
testing since I don't use it.  If someone wants to (co-)maintain this
and make sure the software works fine on OpenBSD, that would be great.

The obvious alternative would be to ditch the port if I don't feel like
updating it next time, so please speak up if you care. ;)

-- 
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF  DDCC 0DFA 74AE 1524 E7EE

CVS: cvs.openbsd.org: ports

[Jeremie Courreges-Anglas]

CVSROOT:/cvs
Module name:ports
Changes by: j...@cvs.openbsd.org2017/12/17 04:08:16

Modified files:
net/knot   : Makefile 

Log message:
Remove Pierre from MAINTAINER (ENOTIME)

CVS: cvs.openbsd.org: ports

[Jeremie Courreges-Anglas]

CVSROOT:/cvs
Module name:ports
Changes by: j...@cvs.openbsd.org2017/12/17 04:05:42

Modified files:
net/knot   : Makefile distinfo 
net/knot/pkg   : PLIST 
Removed files:
net/knot/patches: patch-src_libknot_lookup_h 

Log message:
Major update to knot-2.6.3

Upstream ChangeLog: https://gitlab.labs.nic.cz/knot/knot-dns/raw/v2.6.3/NEWS

CVS: cvs.openbsd.org: ports

[Antoine Jacoutot]

CVSROOT:/cvs
Module name:ports
Changes by: ajacou...@cvs.openbsd.org   2017/12/17 04:00:09

Modified files:
productivity/gnucash: Makefile distinfo 
productivity/gnucash/pkg: PLIST 

Log message:
Update to gnucash-2.6.19.

Re: UPDATE: misc/memcached

[Jeremie Courreges-Anglas]

On Sat, Dec 16 2017, Giovanni Bechis  wrote:
> On 12/15/17 17:51, Jeremie Courreges-Anglas wrote:
>> On Wed, Nov 22 2017, Giovanni Bechis  wrote:
>>> Hi,
>>> update to latest release, some bug fixes and pledge(2) support
>>> committed upstream.
>> 
>> I don't use this but the update looks fine ports-wise.  ok jca@ fwiw
>> 
>>> Pledge(2) support is enabled only if the daemon is not run with "-o 
>>> no_drop_privileges" parameter;
>>> do we want to go the way upstream goes or should we disable the possibility 
>>> to disable pledge(2) ?
>> 
>> I would not bother disabling this, but if you do make it obvious that
>> -o no_drop_privileges won't work.  If people use the option as
>> a workaround and slack off instead of reporting bugs, they're the ones
>> not benefiting from pledge(2), which is not a smart thing to do.
>> 
> what about this one ?

I have a knee-jerk reaction whenever I see #ifdef SOME_OS, I would have
implemented this as a configure-time option which would be usable on
other systems that provide sandboxing.  Words are cheap and I don't care
enough to write a diff, so please go ahead with whatever suits you. ;)

-- 
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF  DDCC 0DFA 74AE 1524 E7EE

CVS: cvs.openbsd.org: ports

[Antoine Jacoutot]

CVSROOT:/cvs
Module name:ports
Changes by: ajacou...@cvs.openbsd.org   2017/12/17 03:53:17

Modified files:
multimedia/gstreamer1/core: Makefile 
multimedia/gstreamer1/core/pkg: PLIST 

Log message:
The PTP helper does not do anything on OpenBSD and is installed suid root.
It's a useless and scary utility for us, so drop the setuit bit.

from tobiasu

Re: gstreamer1/core: no suid root gst-ptp-helper please

[Antoine Jacoutot]

On Sat, Dec 16, 2017 at 06:37:40PM +, Tobias Ulmer wrote:
> Hi Antoine,
> 
> I noticed gstreamer1 core installs gst-ptp-helper setuid root.
> 
> https://cgit.freedesktop.org/gstreamer/gstreamer/tree/libs/gst/helpers/gst-ptp-helper.c
> 
> That's a rather large and scary program for a feature (Precision Time
> Protocol multicast multimedia shenanigans) with about zero users on
> OpenBSD.
> 
> I doubt it does anything useful in its current state:
> 
> gst-ptp-helper.c:305:2: warning: "Implement something to list all
> network interfaces" [-W#warnings]
> gst-ptp-helper.c:421:2: warning: "Implement something to get MAC
> addresses of network interfaces" [-W#warnings]
> 
> You don't even want to see all the high quality libs it links against..
> 
> Supposedly it's at least dropping privileges, but on a hunch compiling with
> -save-temps holds this:
> ...
> static void
> drop_privileges (void)
> {
> # 564 "gst-ptp-helper.c"
> }
> ...
> 
> Not sure whether to laugh or cry.
> 
> What I'm trying to say, can we nuke this crap from orbit, pretty please?

Thanks. I'll take care of it asap.


> 
> Index: Makefile
> ===
> RCS file: /home/vcs/cvs/openbsd/ports/multimedia/gstreamer1/core/Makefile,v
> retrieving revision 1.43
> diff -u -p -r1.43 Makefile
> --- Makefile  8 Dec 2017 14:38:36 -   1.43
> +++ Makefile  16 Dec 2017 18:26:58 -
> @@ -4,6 +4,7 @@ COMMENT=  framework for streaming media
>  
>  DISTNAME=gstreamer-${V}
>  PKGNAME= ${GST_PKGNAME_PREFIX}-${V}
> +REVISION=0
>  
>  SHARED_LIBS +=  gstreamer-1.03.3  # 1204.0
>  SHARED_LIBS +=  gstbase-1.0  3.3  # 1204.0
> @@ -28,5 +29,8 @@ CONFIGURE_ENV +=ac_cv_lib_gmp___gmpz_in
>  
>  # require (at least) gtk+
>  CONFIGURE_ARGS +=--disable-examples
> +
> +# make PTP helper 'suid' at your own peril
> +CONFIGURE_ARGS +=--with-ptp-helper-permissions=none
>  
>  .include 
> Index: pkg/PLIST
> ===
> RCS file: /home/vcs/cvs/openbsd/ports/multimedia/gstreamer1/core/pkg/PLIST,v
> retrieving revision 1.14
> diff -u -p -r1.14 PLIST
> --- pkg/PLIST 20 Jun 2017 11:48:53 -  1.14
> +++ pkg/PLIST 16 Dec 2017 18:26:58 -
> @@ -155,9 +155,7 @@ lib/pkgconfig/gstreamer-net-${API}.pc
>  libexec/gstreamer-${API}/
>  @bin libexec/gstreamer-${API}/gst-completion-helper
>  @bin libexec/gstreamer-${API}/gst-plugin-scanner
> -@mode 4555
>  @bin libexec/gstreamer-${API}/gst-ptp-helper
> -@mode
>  @man man/man1/gst-inspect-${API}.1
>  @man man/man1/gst-launch-${API}.1
>  @man man/man1/gst-stats-${API}.1

-- 
Antoine

CVS: cvs.openbsd.org: ports

[Antoine Jacoutot]

CVSROOT:/cvs
Module name:ports
Changes by: ajacou...@cvs.openbsd.org   2017/12/17 03:44:27

Modified files:
emulators/qemu : Makefile 

Log message:
x11/xkbcommon gets picked up by configure if present, so add a LDEP on it.

CVS: cvs.openbsd.org: ports

[Antoine Jacoutot]

CVSROOT:/cvs
Module name:ports
Changes by: ajacou...@cvs.openbsd.org   2017/12/17 03:36:32

Modified files:
net/py-boto3   : Makefile distinfo 

Log message:
Update to py-boto3-1.5.1.

CVS: cvs.openbsd.org: ports

[Kirill Bychkov]

CVSROOT:/cvs
Module name:ports
Changes by: ki...@cvs.openbsd.org   2017/12/17 03:31:10

Removed files:
games/bzflag/patches: patch-src_bzfs_VotingArbiter_h 

Log message:
patch no longer needed

Re: [new] buildbot 0.9 dependencies

[Landry Breuil]

On Sat, Dec 16, 2017 at 03:21:27PM -0500, Daniel Jakots wrote:
> On Sat, 16 Dec 2017 13:51:03 +0100, Landry Breuil 
> wrote:
> 
> > py-trollius
> 
> don't we already have it as devel/py-trollius?

Right. perfect, one less thing to worry about :)