powerpc bulk build report
bulk build on macppc-1.ports.openbsd.org started on Fri Oct 12 09:46:26 MDT 2018 finished at Tue Oct 30 18:15:58 MDT 2018 lasted 19D01h29m done with kern.version=OpenBSD 6.4 (GENERIC) #231: Thu Oct 11 17:55:03 MDT 2018 built packages:8834 Oct 12:589 Oct 13:418 Oct 14:467 Oct 15:701 Oct 16:492 Oct 17:335 Oct 18:232 Oct 19:339 Oct 20:276 Oct 21:536 Oct 22:342 Oct 23:335 Oct 24:391 Oct 25:454 Oct 26:126 Oct 27:181 Oct 28:132 Oct 29:1059 Oct 30:1428 critical path missing pkgs: http://build-failures.rhaalovely.net//powerpc/2018-10-12/summary.log build failures: 61 http://build-failures.rhaalovely.net//powerpc/2018-10-12/audio/siren.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/benchmarks/wrk.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/cad/yosys.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/converters/p5-Convert-TNEF.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/devel/avr/gcc.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/devel/catch2.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/devel/ocaml-graph.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/devel/splint.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/devel/unibilium.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/devel/vte3.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/devel/xtensa-elf/gcc.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/editors/scintilla.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/emulators/higan.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/emulators/stella.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/games/easyrpg.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/games/freeorion.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/games/gnubg.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/games/openclonk.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/games/prboom-plus.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/games/stockfish.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/geo/merkaartor.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/geo/qlandkartegt.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/graphics/aqsis.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/graphics/asymptote.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/graphics/orthanc/webviewer-plugin.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/inputmethods/fcitx,-gtk3.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/lang/bacon.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/lang/racket-minimal,no_jit.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/mail/rspamd.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/mail/solid-pop3d.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/math/kst.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/math/octave.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/math/z3.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/multimedia/libvpx.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/multimedia/swfmill.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/net/fastnetmon.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/net/megatools.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/net/p5-Net-SSH-Perl.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/net/zeromq.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/print/ghostscript/gnu,a4,no_x11.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/sysutils/bacula,-bat.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/sysutils/libolecf.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/textproc/mupdf.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/www/libsass.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/www/ruby-capybara-webkit,ruby24.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/www/webkitgtk4.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/gnome/gjs.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/gnome/usage.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/lxqt/compton-conf.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/lxqt/libfm-qt.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/lxqt/libqtxdg.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/lxqt/libsysstat.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/lxqt/obconf-qt.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/lxqt/pavucontrol-qt.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/lxqt/qtermwidget.log http://build-failures.rhaalovely.net//powerpc/2018-10-12/x11/qt5/qtgraphicaleffects.log
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bent...@cvs.openbsd.org 2018/10/30 23:39:27 Modified files: devel/libftdi : Makefile Log message: Move homepage/master_sites to https.
NEW: devel/libftdi1
Hi, The FTDI people took a page from libusb and released newer versions of libftdi as libftdi1. No files conflict, so libftdi and libftdi1 can be installed side-by-side. libftdi1 also lists fewer supported chips than the old library, which might be why they made it separate. libFTDI is an open source library to talk to FTDI chips: FT232BM, FT245BM, FT2232C, FT2232D, FT245R, FT232H and FT230X including the popular bitbang mode. The library is linked with programs in userspace, no kernel driver required. This is needed for an upcoming sigrok update. ok? -- Anthony J. Bentley libftdi1.tar.gz Description: libftdi1.tar.gz
Re: UPDATE: www/wp-cli 2.0.1
On Tue, 30 Oct 2018 at 20:32:25 +0200, Manolis Tzanidakis wrote:
> Hello ports,
> here is a trivial update for wp-cli to the latest version, 2.0.1.
>
OK abieber@ if anyone wants to commit!
>
> Index: Makefile
> ===
> RCS file: /cvs/ports/www/wp-cli/Makefile,v
> retrieving revision 1.4
> diff -u -p -r1.4 Makefile
> --- Makefile 17 Oct 2018 14:15:56 - 1.4
> +++ Makefile 30 Oct 2018 18:26:22 -
> @@ -2,9 +2,8 @@
>
> COMMENT =command line tool for wordpress
>
> -V =1.5.1
> +V =2.0.1
> DISTNAME = wp-cli-${V}
> -REVISION = 0
>
> EXTRACT_ONLY =
> EXTRACT_SUFX = .phar
> Index: distinfo
> ===
> RCS file: /cvs/ports/www/wp-cli/distinfo,v
> retrieving revision 1.2
> diff -u -p -r1.2 distinfo
> --- distinfo 12 Jul 2018 13:29:20 - 1.2
> +++ distinfo 30 Oct 2018 18:26:22 -
> @@ -1,2 +1,2 @@
> -SHA256 (wp-cli-1.5.1.phar) = DMepXmii7wL8QjYUgGwpqOduSsjJs+Z9ZnNjXW6uqHE=
> -SIZE (wp-cli-1.5.1.phar) = 4595436
> +SHA256 (wp-cli-2.0.1.phar) = j12hxu/bHREWs8AdFb6CY16SpGgIkr2LIecQwIhXixY=
> +SIZE (wp-cli-2.0.1.phar) = 5366981
>
--
PGP: 0x1F81112D62A9ADCE / 3586 3350 BFEA C101 DB1A 4AF0 1F81 112D 62A9 ADCE
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: abie...@cvs.openbsd.org 2018/10/30 19:19:41 Modified files: www/kwebapp: Makefile distinfo www/kwebapp/pkg: PLIST Removed files: www/kwebapp/patches: patch-db_txt Log message: Update to the latest, diff from kristaps, bump from myself. OK jturner@
editors/emacs21 upgrade path?
We could force an upgrade to the latest version, like it was done for
emacs22 and emacs23. I don't know how an init file written for emacs-21
would behave when interpreted by emacs-26; expect some bumps. On the
other hand, people who want to keep emacs21 can still look in the Attic.
Diff below. I needed to explicitely list the no_x11 flavor as below in
order to hint pkg_add -u, maybe this should have been done for emacs22
and emacs23 too.
Input welcome,
Index: Makefile
===
RCS file: /d/cvs/ports/editors/emacs/Makefile,v
retrieving revision 1.78
diff -u -p -r1.78 Makefile
--- Makefile4 Sep 2018 12:46:11 - 1.78
+++ Makefile31 Oct 2018 00:28:03 -
@@ -4,7 +4,7 @@ COMMENT=GNU editor: extensible, custom
VERSION= 26.1
DISTNAME= emacs-${VERSION}
-REVISION= 2
+REVISION= 3
CATEGORIES=editors
Index: pkg/PLIST
===
RCS file: /d/cvs/ports/editors/emacs/pkg/PLIST,v
retrieving revision 1.22
diff -u -p -r1.22 PLIST
--- pkg/PLIST 4 Sep 2018 12:46:11 - 1.22
+++ pkg/PLIST 31 Oct 2018 00:28:03 -
@@ -1,5 +1,9 @@
@comment $OpenBSD: PLIST,v 1.22 2018/09/04 12:46:11 espie Exp $
@option is-branch
+@pkgpath editors/emacs21,-main
+@pkgpath editors/emacs21,no_x11,-main
+@pkgpath editors/emacs21,-el
+@pkgpath editors/emacs21,-leim
@pkgpath editors/emacs22,-main
@pkgpath editors/emacs22,-el
@pkgpath editors/emacs23,-main
--
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: j...@cvs.openbsd.org2018/10/30 18:27:24 Modified files: editors: Makefile Removed files: editors/emacs21: Makefile distinfo editors/emacs21/patches: patch-Makefile_in patch-configure patch-leim_Makefile_in patch-lib-src_cvtmail_c patch-lisp_mail_mh-funcs_el patch-lisp_mail_mh-utils_el patch-src_Makefile_in patch-src_m_alpha_h patch-src_m_hp9000s300_h patch-src_m_hppa_h patch-src_m_intel386_h patch-src_m_macppc_h patch-src_m_mips64_h patch-src_m_mips64el_h patch-src_m_x86_64_h patch-src_s_openbsd_h patch-src_unexelf_c patch-src_xfns_c patch-src_xterm_h editors/emacs21/pkg: DESCR-el DESCR-leim DESCR-main PLIST-el PLIST-leim PLIST-main Log message: Remove emacs21 Broken when linked with lld, the unexec'd emacs segfaults. Instead of yet another workaround (ld.bfd), many prefer a removal. One the plus side, that's one less brk(2) user in the ports tree. Prodded by naddy@, no objections from the usual suspects.
[update] www/kwebapp to 0.6.4
This update is based off kristaps' previous bump for 6.3! I added NO_TEST for
good measure (this way we don't have to keep a db.txt up to date)!
This is needed for sysutils/slant (also sent by kristaps) to go in!
See here for changes: https://marc.info/?l=openbsd-ports=153960499116223=2
OK?
diff --git a/www/kwebapp/Makefile b/www/kwebapp/Makefile
index cf74eeba331..5e00ad7a1d9 100644
--- a/www/kwebapp/Makefile
+++ b/www/kwebapp/Makefile
@@ -2,7 +2,7 @@
COMMENT = web application source generator
-DISTNAME = kwebapp-0.5.6
+DISTNAME = kwebapp-0.6.4
CATEGORIES = www
HOMEPAGE = https://kristaps.bsd.lv/kwebapp/
@@ -19,11 +19,10 @@ MASTER_SITES =
https://kristaps.bsd.lv/kwebapp/snapshots/
RUN_DEPENDS = databases/ksql \
www/kcgi
-TEST_DEPENDS = ${RUN_DEPENDS}
-TEST_FLAGS = CFLAGS+=-I${LOCALBASE}/include \
- LDFLAGS+=-L${LOCALBASE}/lib
CONFIGURE_STYLE = simple
CONFIGURE_ENV ="PREFIX=${PREFIX}"
+NO_TEST = Yes
+
.include
diff --git a/www/kwebapp/distinfo b/www/kwebapp/distinfo
index bfab7d47816..19814b0704a 100644
--- a/www/kwebapp/distinfo
+++ b/www/kwebapp/distinfo
@@ -1,2 +1,2 @@
-SHA256 (kwebapp-0.5.6.tar.gz) = DaDvwKiZSIZb9jH5DtRgknTZIA8/ZJWMGNhizJTOugY=
-SIZE (kwebapp-0.5.6.tar.gz) = 119389
+SHA256 (kwebapp-0.6.4.tar.gz) = xcXl4Gnp3hAkzJ5TX0JX8jlRJ4KJN2SKqrOKd/hkn0U=
+SIZE (kwebapp-0.6.4.tar.gz) = 132030
diff --git a/www/kwebapp/patches/patch-db_txt b/www/kwebapp/patches/patch-db_txt
deleted file mode 100644
index f41c14229f0..000
--- a/www/kwebapp/patches/patch-db_txt
+++ /dev/null
@@ -1,96 +0,0 @@
-$OpenBSD: patch-db_txt,v 1.1.1.1 2018/03/14 01:49:50 abieber Exp $
-
-Index: db.txt
db.txt.orig
-+++ db.txt
-@@ -0,0 +1,90 @@
-+# This is a top-level structure.
-+# It's output as a struct in C, a table in SQL, and an object in
-+# JavaScript.
-+
-+struct company {
-+ # The "limit" clause is for input validation.
-+ field name text limit gt 0 comment
-+"Name of the organisation.";
-+ # SQL primary keys.
-+ field id int rowid;
-+ field somenum int null comment
-+"Simply a check for null values.";
-+ # Operations: a "list" function produces an in-memory
-+ # queue of responses.
-+ # "Insert" allows us to insert into the table.
-+ list somenum isnull;
-+ insert;
-+ comment "Controlling organisation.";
-+};
-+
-+# This is an enumeration.
-+# It lets us validate input fields and use
-+# better type-safety in the C API.
-+# They're also export to JavaScript.
-+
-+enum sex {
-+ item male comment "Male";
-+ item female comment "Femmale";
-+ item other comment "Other";
-+ comment "Birthsex of individual";
-+};
-+
-+struct user {
-+ # Foreign key support.
-+ # This will produce a nested "struct company" filled
-+ # in with the join on "cid" (see below).
-+ field company struct cid comment
-+"This struct will be filled in from an inner join
-+on the \"cid\" variable.";
-+ # The foreign key itself.
-+ # We also stipulate an action on delete.
-+ field cid:company.id int actdel cascade comment
-+"A foreign key reference.";
-+ field sex enum sex comment
-+"User's birth sex.";
-+ # Passwords are important and often screwed up.
-+ # This automatically handles the logic of accepting
-+ # passwords and hashing them on insertion.
-+ # When we "search" on password fields, the system
-+ # will do the hashing for us.
-+ field hash password limit gt 0 comment
-+"Password hash.
-+This is passed to inserts and updates as a password,
-+then hashed within the implementation and extracted
-+(in listings and searches) as the hash value.";
-+ field email email unique comment
-+"Unique e-mail address.";
-+ field image blob null comment
-+"A PNG image or something.";
-+ field name text comment
-+"User's full name.";
-+ field uid int rowid;
-+ iterate name: limit 5 comment
-+"Create a function that searches for users by a given
-+name; and, when found, invokes a callback function
-+provided the user structure.";
-+ search email,hash: name creds comment
-+"Search for a unique user with their e-mail and
-+password.
-+This is a quick way to verify that a user has entered
-+the correct password for logging in.";
-+ search uid: comment "Lookup by unique identifier.";
-+ update hash: uid;
-+ update email: uid;
-+ insert;
-+ comment "A regular user.";
-+};
-+
-+struct session {
-+ field user struct userid;
-+ field userid:user.uid int comment "Associated user.";
-+ field token int comment "Random cookie.";
-+ field mtime epoch;
-+ field id int rowid;
-+ iterate user.company.name,mtime: name foo comment
-+"Search for company's logged-in users.";
-+ insert;
-+ delete id;
-+ comment "Authenticated session.";
-+};
diff --git a/www/kwebapp/pkg/PLIST b/www/kwebapp/pkg/PLIST
index 4a9d376cc38..c72dcdadf62
[update] www/geckodriver to 0.23.0
Hola! Another update! This time for geckodriver! Geckodriver changes: - https://github.com/mozilla/geckodriver/releases/tag/v0.23.0 Port changes: - bumps! OK? diff --git a/www/geckodriver/Makefile b/www/geckodriver/Makefile index 957f38bb0e5..6e4db9674e2 100644 --- a/www/geckodriver/Makefile +++ b/www/geckodriver/Makefile @@ -4,7 +4,7 @@ COMMENT = W3C webdriver for Gecko-based browsers GH_ACCOUNT = mozilla GH_PROJECT = geckodriver -GH_TAGNAME = v0.22.0 +GH_TAGNAME = v0.23.0 CATEGORIES = www @@ -32,7 +32,7 @@ MODCARGO_CRATES +=bzip2-0.3.3 # MIT/Apache-2.0 MODCARGO_CRATES += bzip2-sys-0.1.6 # MIT/Apache-2.0 MODCARGO_CRATES += cc-1.0.25 # MIT/Apache-2.0 MODCARGO_CRATES += cfg-if-0.1.5# MIT/Apache-2.0 -MODCARGO_CRATES += chrono-0.2.25 # MIT/Apache-2.0 +MODCARGO_CRATES += chrono-0.4.6# MIT/Apache-2.0 MODCARGO_CRATES += clap-2.32.0 # MIT MODCARGO_CRATES += cloudabi-0.0.3 # BSD-2-Clause MODCARGO_CRATES += cookie-0.11.0 # MIT/Apache-2.0 @@ -144,7 +144,7 @@ MODCARGO_CRATES += utf8-ranges-1.0.1 # Unlicense/MIT MODCARGO_CRATES += version_check-0.1.4 # MIT/Apache-2.0 MODCARGO_CRATES += void-1.0.2 # MIT MODCARGO_CRATES += want-0.0.6 # MIT -MODCARGO_CRATES += webdriver-0.37.0# MPL-2.0 +MODCARGO_CRATES += webdriver-0.38.0# MPL-2.0 MODCARGO_CRATES += winapi-0.2.8# MIT MODCARGO_CRATES += winapi-0.3.5# MIT/Apache-2.0 MODCARGO_CRATES += winapi-build-0.1.1 # MIT @@ -152,7 +152,7 @@ MODCARGO_CRATES += winapi-i686-pc-windows-gnu-0.4.0 # MIT/Apache-2.0 MODCARGO_CRATES += winapi-x86_64-pc-windows-gnu-0.4.0 # MIT/Apache-2.0 MODCARGO_CRATES += winreg-0.5.1# MIT MODCARGO_CRATES += ws2_32-sys-0.2.1# MIT -MODCARGO_CRATES += zip-0.3.3 # MIT +MODCARGO_CRATES += zip-0.4.0 # MIT WANTLIB += c c++abi m pthread diff --git a/www/geckodriver/distinfo b/www/geckodriver/distinfo index 04c62c776ec..60ecf842cde 100644 --- a/www/geckodriver/distinfo +++ b/www/geckodriver/distinfo @@ -10,7 +10,7 @@ SHA256 (cargo/bzip2-0.3.3.tar.gz) = QrfDy/D6nBuCMI1XGRcoygJWy4ISIPTi/UEKcq3ibjs= SHA256 (cargo/bzip2-sys-0.1.6.tar.gz) = LFFiYEGZu7F2kO3oR+qmEgo/M9WrTcyOfCWxbYSa55s= SHA256 (cargo/cc-1.0.25.tar.gz) = 8Vnf1DNjxNCAVaB3A+t6NAaw2sTQWE2WlloyYts8nRY= SHA256 (cargo/cfg-if-0.1.5.tar.gz) = DE57tkqOuw2FZIPh5oLqNCL4g8X1YVqQ1Rosgv6H/dM= -SHA256 (cargo/chrono-0.2.25.tar.gz) = khP3zXwn6VwrV8SfDmmx6mWycTjahKFwEz/SGwdlnAA= +SHA256 (cargo/chrono-0.4.6.tar.gz) = RZEogRIcsm+tfDjBe6faoYdkdxg2s0+rfT+9k+1jOHg= SHA256 (cargo/clap-2.32.0.tar.gz) = uVfYj0tqY7nXDV9FSsgBGBnG76dyeFj0WKtxx1bOLT4= SHA256 (cargo/cloudabi-0.0.3.tar.gz) = 3fxbmqXUUHrK+HLecQUd/Q4wmGDoiWbhBR5GKgd6rE8= SHA256 (cargo/cookie-0.11.0.tar.gz) = FGX4E076KWtMGds02QljfLK/D3qvISmeI+GPoprFV88= @@ -122,7 +122,7 @@ SHA256 (cargo/uuid-0.5.1.tar.gz) = vMfjuJiqb2wI5SlbbIkljRMx6axXjMmS+4GHWZUb3CI= SHA256 (cargo/version_check-0.1.4.tar.gz) = dxbCQpaO6H5VQvgCEXgkjyZ/KVpcSAO+rouLf9m8YFE= SHA256 (cargo/void-1.0.2.tar.gz) = agLkiF7TvA8t6Q6m3UXry7ZtrP/gNUf627DuridwiH0= SHA256 (cargo/want-0.0.6.tar.gz) = eXRkR18w3biDDMUpqqrmSNWB+Z4gNqkoh3394Cfd9rM= -SHA256 (cargo/webdriver-0.37.0.tar.gz) = Qmr+TjN8iDQ1abZe0NhMRGVcHWbFVw8+UNqYtkw4KY8= +SHA256 (cargo/webdriver-0.38.0.tar.gz) = V2AOggq4rD/P7Xgu37WsG1MPWYDZwXAw0T/TZ+lzRoE= SHA256 (cargo/winapi-0.2.8.tar.gz) = Fn3J1pSam4V/NFEnXpEcP0QlWELB96dvM8VRA6kJCHo= SHA256 (cargo/winapi-0.3.5.tar.gz) = dz753MXyS32FDQ/xAeVC/yTDsJCpdo4D/4if3vQfAP0= SHA256 (cargo/winapi-build-0.1.1.tar.gz) = LTFe7js0rKR5ey2msT7Ygmbm1hJWKgxGOQr4KZ/Gmbw= @@ -130,8 +130,8 @@ SHA256 (cargo/winapi-i686-pc-windows-gnu-0.4.0.tar.gz) = rDuHxjYgQm3ZuZHlzgMp7/V SHA256 (cargo/winapi-x86_64-pc-windows-gnu-0.4.0.tar.gz) = cS4ieEHQV8HuHNL7Ivp+WlRhro5I+iynnsQs/BkxGD8= SHA256 (cargo/winreg-0.5.1.tar.gz) = onp1k5XBGVxMxc2mB+9vj2SY9k5495APXeChJ6QkcEo= SHA256 (cargo/ws2_32-sys-0.2.1.tar.gz) = 1Zzv69DIkvot1t5YHpNzAdhVLLREic3/A1xhh8tj+l4= -SHA256 (cargo/zip-0.3.3.tar.gz) = d84M7uk8mVlUox93kDklpqi7CUcJRFI440TyEHkQ4p4= -SHA256 (geckodriver-0.22.0.tar.gz) = YKS6+tk6sDv0Tn8MHnJvrXFXQuubvdMvrjPHj+RS3GU= +SHA256 (cargo/zip-0.4.0.tar.gz) = FaDwFzggtpZXW08UBhWC1zCCW83HqTlITKKkK/SeUIY= +SHA256 (geckodriver-0.23.0.tar.gz) = Ltfqx8QP84E+EUENZdixWwWlXLFd+EE1d8rQPxPlqGo= SIZE (cargo/adler32-1.0.3.tar.gz) = 5734 SIZE (cargo/aho-corasick-0.6.8.tar.gz) = 26786 SIZE (cargo/arrayvec-0.4.7.tar.gz) = 22946 @@ -144,7 +144,7 @@ SIZE (cargo/bzip2-0.3.3.tar.gz) = 15346 SIZE (cargo/bzip2-sys-0.1.6.tar.gz) = 609274 SIZE (cargo/cc-1.0.25.tar.gz) = 43191 SIZE (cargo/cfg-if-0.1.5.tar.gz) = 7363 -SIZE (cargo/chrono-0.2.25.tar.gz) = 98296 +SIZE (cargo/chrono-0.4.6.tar.gz) = 133108 SIZE (cargo/clap-2.32.0.tar.gz) = 196073 SIZE (cargo/cloudabi-0.0.3.tar.gz) = 22156 SIZE (cargo/cookie-0.11.0.tar.gz) = 25906 @@ -256,7 +256,7 @@ SIZE (cargo/uuid-0.5.1.tar.gz) = 18245 SIZE
[update] comms/xastir to 2.1.0
Hi!
Here is an update to xastir.
Xastir changes:
- https://github.com/Xastir/Xastir/releases/tag/Release-2.1.0
Port changes:
- Host the github tarball on my site.
- Compile Xastir_tigerpoly.py to make portcheck happy.
- Start using AC stuffs.
OK?
diff --git a/comms/xastir/Makefile b/comms/xastir/Makefile
index dad7c3be018..1b0d6798e95 100644
--- a/comms/xastir/Makefile
+++ b/comms/xastir/Makefile
@@ -2,8 +2,7 @@
COMMENT= X amateur station tracking and info reporting
-DISTNAME= xastir-2.0.6
-REVISION= 1
+DISTNAME= xastir-2.1.0
CATEGORIES=comms hamradio geo
@@ -17,7 +16,9 @@ WANTLIB = GraphicsMagick ICE SM X11 Xext Xm Xpm Xt bz2 c
curl db
WANTLIB += freetype gdal geotiff iconv intl lcms2 ltdl lzma m pcre proj
WANTLIB += pthread shp tiff z
-MASTER_SITES= $(MASTER_SITE_SOURCEFORGE:=xastir/)
+MASTER_SITES = https://deftly.net/dist/
+
+MODULES = lang/python
CONFIGURE_STYLE= autoconf
AUTOCONF_VERSION= 2.69
@@ -27,6 +28,8 @@ MAKE_ENV+=MOTIFLIB='-L${LOCALBASE}/lib -lXm'
MAKE_FLAGS=CFLAGS="${CFLAGS} -fno-tree-ter"
.endif
+WRKDIST= ${WRKDIR}/Xastir-Release-2.1.0
+
CONFIGURE_ARGS=--with-shapelib
\
--with-pcre \
--with-libproj \
@@ -50,4 +53,15 @@ LIB_DEPENDS= net/curl \
devel/pcre \
x11/motif
+AUTO_ENV= AUTOCONF_VERSION=${AUTOCONF_VERSION} \
+AUTOMAKE_VERSION=${AUTOMAKE_VERSION}
+
+post-patch:
+ @echo "Running aclocal-${AUTOMAKE_VERSION} in ${WRKSRC}"
+ @cd ${WRKSRC}; ${AUTO_ENV} ./bootstrap.sh
+
+post-install:
+ ${MODPY_BIN} ${MODPY_LIBDIR}/compileall.py \
+ ${PREFIX}/share/xastir/scripts/*.py
+
.include
diff --git a/comms/xastir/distinfo b/comms/xastir/distinfo
index 588477eab8f..d35def0e0ca 100644
--- a/comms/xastir/distinfo
+++ b/comms/xastir/distinfo
@@ -1,2 +1,2 @@
-SHA256 (xastir-2.0.6.tar.gz) = 5G3r0/Z+pcCOL4XwPiZlOHGpzdbWksju7kNsO8io3UM=
-SIZE (xastir-2.0.6.tar.gz) = 2662042
+SHA256 (xastir-2.1.0.tar.gz) = pIHmpsA1lUBBkENS7Fj1IkDAaHSjDfuBAAHaSJ1A9Do=
+SIZE (xastir-2.1.0.tar.gz) = 2996246
diff --git a/comms/xastir/patches/patch-Makefile_in
b/comms/xastir/patches/patch-Makefile_in
deleted file mode 100644
index f7b7f531b62..000
--- a/comms/xastir/patches/patch-Makefile_in
+++ /dev/null
@@ -1,12 +0,0 @@
-$OpenBSD: patch-Makefile_in,v 1.1 2014/04/24 18:52:58 schwarze Exp $
Makefile.in.orig Thu Apr 24 19:16:05 2014
-+++ Makefile.inThu Apr 24 19:22:01 2014
-@@ -250,7 +250,7 @@ libexecdir = @libexecdir@
- localedir = @localedir@
- localstatedir = @localstatedir@
- lpr = @lpr@
--mandir = ${prefix}/share/man
-+mandir = ${prefix}/man
- mkdir_p = @mkdir_p@
- mv = @mv@
- oldincludedir = @oldincludedir@
diff --git a/comms/xastir/patches/patch-configure_ac
b/comms/xastir/patches/patch-configure_ac
index 933876687c0..b0e9c4cb921 100644
--- a/comms/xastir/patches/patch-configure_ac
+++ b/comms/xastir/patches/patch-configure_ac
@@ -1,7 +1,8 @@
$OpenBSD: patch-configure_ac,v 1.2 2014/01/29 15:22:31 abieber Exp $
configure.ac.orig Tue Dec 4 16:35:35 2012
-+++ configure.ac Tue Jan 28 10:08:15 2014
-@@ -352,6 +352,7 @@ AC_CHECK_FUNCS([roundf])
+Index: configure.ac
+--- configure.ac.orig
configure.ac
+@@ -367,6 +367,7 @@ AC_CHECK_FUNCS([roundf])
# Check for intl library (Needed for Cygwin)
#
diff --git a/comms/xastir/patches/patch-src_interface_c
b/comms/xastir/patches/patch-src_interface_c
index 7a425a3fa8c..12f56d7cd6f 100644
--- a/comms/xastir/patches/patch-src_interface_c
+++ b/comms/xastir/patches/patch-src_interface_c
@@ -1,7 +1,8 @@
$OpenBSD: patch-src_interface_c,v 1.2 2014/01/29 15:22:31 abieber Exp $
src/interface.c.orig Mon Oct 22 18:37:22 2012
-+++ src/interface.cTue Jan 28 10:19:11 2014
-@@ -88,6 +88,15 @@
+Index: src/interface.c
+--- src/interface.c.orig
src/interface.c
+@@ -87,6 +87,15 @@
#include
@@ -17,7 +18,7 @@ $OpenBSD: patch-src_interface_c,v 1.2 2014/01/29 15:22:31
abieber Exp $
#include "xastir.h"
#include "symbols.h"
#include "main.h"
-@@ -4355,7 +4364,7 @@ int serial_detach(int port) {
+@@ -4354,7 +4363,7 @@ int serial_detach(int port) {
}
// Delete lockfile
@@ -26,7 +27,7 @@ $OpenBSD: patch-src_interface_c,v 1.2 2014/01/29 15:22:31
abieber Exp $
if (debug_level & 2)
fprintf(stderr,"Delete lock file %s\n",fn);
-@@ -4455,7 +4464,7 @@ int serial_init (int port) {
+@@ -4454,7 +4463,7 @@ int serial_init (int port) {
// check for lockfile
@@ -35,7 +36,7 @@ $OpenBSD: patch-src_interface_c,v 1.2 2014/01/29 15:22:31
abieber Exp $
get_device_name_only(port_data[port].device_name));
if (filethere(fn) == 1) {
-@@ -4632,8 +4641,20 @@ int serial_init (int port) {
+@@
Re: infrastructure/mk/cpan.port.mk: search.cpan.org -> metacpan.org
On 2018/10/30 20:40, Charlene Wendling wrote:
>
> I'm proposing here a change for CPAN modules' default HOMEPAGE to
> metacpan.org instead, as search.cpan.org is no more [1]:
>
> - This would avoid useless redirections
> - It provides https for homepages
>
> It's the first time i touch to something in the infrastructure, i may
> have missed something. I've rebuilt and install various Perl ports with
> that change, it works as expected.
>
> Any comments or feedback?
>
> Charlène.
>
> [1] https://log.perl.org/2018/05/goodbye-search-dot-cpan-dot-org.html
>
>
> Index: cpan.port.mk
> ===
> RCS file: /cvs/ports/infrastructure/mk/cpan.port.mk,v
> retrieving revision 1.20
> diff -u -p -r1.20 cpan.port.mk
> --- cpan.port.mk 20 Mar 2016 19:56:44 - 1.20
> +++ cpan.port.mk 29 Oct 2018 21:46:21 -
> @@ -7,7 +7,7 @@ MASTER_SITES ?= ${MASTER_SITE_PERL_CPAN:
> MASTER_SITES ?= ${MASTER_SITE_PERL_CPAN:=../by-authors/id/$
> {CPAN_AUTHOR:C/^(.).*/\1/}/${CPAN_AUTHOR:C/^(..).*/\1/}/$
> {CPAN_AUTHOR}/} .endif
> -HOMEPAGE ?= http://search.cpan.org/dist/${DISTNAME:C/-[^-]*$//}/
> +HOMEPAGE ?= https://metacpan.org/release/${DISTNAME:C/-[^-]*$//}
>
> CATEGORIES +=perl5
> .if ! ${CONFIGURE_STYLE:L:Mperl}
>
REVISION will need to be bumped on every port that has its HOMEPAGE changed
as a result.
This is possible, but easier for someone with commit and already familiar
with this type of change to do it when they have time.
[update] sysutils/restic to 0.9.3
Hi,
Here is an update to the latest restic.
Restic changes:
- https://github.com/restic/restic/releases/tag/v0.9.3
Port changes:
- Add ALL_TARGET.
- Stop using their helper tool to build things.
OK?
diff --git a/sysutils/restic/Makefile b/sysutils/restic/Makefile
index b9dda3ca1ec..6d888a42560 100644
--- a/sysutils/restic/Makefile
+++ b/sysutils/restic/Makefile
@@ -2,7 +2,7 @@
COMMENT = fast, efficient and secure backup program
-V =0.9.2
+V =0.9.3
DISTNAME = restic-${V}
CATEGORIES = sysutils
@@ -23,8 +23,10 @@ MODGO_TYPE = bin
NO_TEST = Yes
+ALL_TARGET = github.com/restic/restic
+
do-build:
- cd ${WRKSRC} && ${MODGO_CMD} run -x build.go
+ cd ${WRKSRC} && ${MODGO_CMD} build ./cmd/restic/...
do-install:
${INSTALL_PROGRAM} ${WRKSRC}/restic ${PREFIX}/bin
diff --git a/sysutils/restic/distinfo b/sysutils/restic/distinfo
index e873533ade8..3b6a4de74b9 100644
--- a/sysutils/restic/distinfo
+++ b/sysutils/restic/distinfo
@@ -1,2 +1,2 @@
-SHA256 (restic-0.9.2.tar.gz) = j47uPpZRufc4SjI7o8JqVmemOIqy745thp081puffJU=
-SIZE (restic-0.9.2.tar.gz) = 27344284
+SHA256 (restic-0.9.3.tar.gz) = uVolgJmu6aVuYgzOvOyrwkbuf4OQ45N8ztrdYJxtLdA=
+SIZE (restic-0.9.3.tar.gz) = 26183792
--
PGP: 0x1F81112D62A9ADCE / 3586 3350 BFEA C101 DB1A 4AF0 1F81 112D 62A9 ADCE
Re: [FIX/Testing needed] Unbreak games/openarena on i386
Hi, inteldrm works (partially) for me again since a recent snapshot on that box, so i had some fun and it runs fine. Charlène. On Sat, 6 Oct 2018 07:10:06 +0200 Charlene Wendling wrote: > Hi ports! > > Here is a fix that unbreaks OpenArena on i386, shamelessly stolen from > FreeBSD [1]. > > Port change: > > Added build fix and bumped REVISION. > > Testing: > > I can only use software rendering (3/4 fps), because inteldrm makes my > i386 box panic, so my testing is very limited, but i was able to play > a solo game with no crash. > > > Feedbacks and comments are welcome! > > Charlène. > > [1] > https://svnweb.freebsd.org/ports/head/games/openarena/files/patch-code_qcommon_vm__x86.c?revision=414032=markup
infrastructure/mk/cpan.port.mk: search.cpan.org -> metacpan.org
I'm proposing here a change for CPAN modules' default HOMEPAGE to
metacpan.org instead, as search.cpan.org is no more [1]:
- This would avoid useless redirections
- It provides https for homepages
It's the first time i touch to something in the infrastructure, i may
have missed something. I've rebuilt and install various Perl ports with
that change, it works as expected.
Any comments or feedback?
Charlène.
[1] https://log.perl.org/2018/05/goodbye-search-dot-cpan-dot-org.html
Index: cpan.port.mk
===
RCS file: /cvs/ports/infrastructure/mk/cpan.port.mk,v
retrieving revision 1.20
diff -u -p -r1.20 cpan.port.mk
--- cpan.port.mk20 Mar 2016 19:56:44 - 1.20
+++ cpan.port.mk29 Oct 2018 21:46:21 -
@@ -7,7 +7,7 @@ MASTER_SITES ?= ${MASTER_SITE_PERL_CPAN:
MASTER_SITES ?=${MASTER_SITE_PERL_CPAN:=../by-authors/id/$
{CPAN_AUTHOR:C/^(.).*/\1/}/${CPAN_AUTHOR:C/^(..).*/\1/}/$
{CPAN_AUTHOR}/} .endif
-HOMEPAGE ?=http://search.cpan.org/dist/${DISTNAME:C/-[^-]*$//}/
+HOMEPAGE ?=https://metacpan.org/release/${DISTNAME:C/-[^-]*$//}
CATEGORIES += perl5
.if ! ${CONFIGURE_STYLE:L:Mperl}
[UPDATE] devel/p5-POE-Component-IKC 0.2002 -> 0.2402 (p5-POE update 4/14)
Here is an update for POE::Component::IKC, that allow inter kernels communication between POE kernels. What's new upstream (full changelog [1]): - Created a new, faster protocol (IKC0) which sends all info on one line as opposed to multiple lines as before (IKC) - Better concurrency handling Port-wise it's a simple version bump. There is no Pod testing this time. Testing: - 'make test' passes, but 1) There is a warning about reaped child processes, but it runs as expected. 2) There are warnings about redeclaration of variable inside the same scope, i looked at the source, upstream reuses variable names. Comments/feedback are welcome! Charlène. p5-POE-Component-IKC.diff Description: Binary data
[UPDATE] devel/p5-POE-API-Peek 1.34 -> 2.20 (p5-POE* update 3/14)
I'm proposing here an update for POE::API::Peek, a module that peeks into the internals of a running POE environment. What's new upstream [1]: - Mostly bugfixes for newer POE versions What's new in the port: - Improved tests support Testing: - 'make test' passes Any comment ? Charlène. [1] https://metacpan.org/changes/distribution/POE-API-Peek p5-POE-API-Peek.diff Description: Binary data
[NEW] net/p5-POE-Component-Resolver 0.921 (p5-POE* update 2/14)
I'm proposing here POE::Component::Resolver. It will be needed for updating net/p5-POE-Component-Client-HTTP. >From DESCR: POE::Component::Resolver performs Socket::getaddrinfo() calls in subprocesses where they're permitted to block as long as necessary. WWW: https://metacpan.org/release/POE-Component-Resolver 'make test' runs fine. Any comment/feedback is welcome! Charlène. p5-POE-Component-Resolver.tgz Description: Binary data
[UPDATE] devel/p5-POE 1.294 -> 1.367 (p5-POE* update 1/14)
Hi ports, - Intro: This is the second round of the big POE update. I'll submit them in dependency order. The whole thing builds and installs with dpb on amd64 and i386, and the few consumers i've found run fine. - I'm proposing here an update for p5-POE itself. The (truncated) changelog can be found here [1], as our version is 8 years old and too many things happened, i'm skipping this time. What's new in the port: - new run and test dependencies, for the latter it's due to the fact that i enabled more tests - "fix" child process leaking for t/rt56417-wheel-run.t, recommended by upstream [2] - removal of trailing spaces in DESCR, also HOMEPAGE isn't reachable via HTTPS. Testing: - 'make test' runs fine - no issue found in all updated PoCo tests Comments/feedback are welcome! Charlène. [1] https://metacpan.org/changes/distribution/POE [2] https://code.activestate.com/lists/perl-poe/5008/ p5-POE.diff Description: Binary data
Re: NEW: py-tacacs_plus (tacacs+ client written in python)
Hello Daniel, thank you for feedback. Please see updated port: - port is now flavored for python 2 and 3 - make test passes for both pythons - managed version conflict, so both flavors could be installed alongside - incorporated your comments below. Is this OK? Thank you, Jan > I quickly looked at it. Can you please: > - remove the license link > - stop using GH stuff and use MODPY_PI > - vertically align stuff > > I think providing a py3 flavour would be a good thing. > > Cheers, > Daniel py-tacacs_plus.tar.gz,2 Description: Binary data
UPDATE: www/wp-cli 2.0.1
Hello ports,
here is a trivial update for wp-cli to the latest version, 2.0.1.
Index: Makefile
===
RCS file: /cvs/ports/www/wp-cli/Makefile,v
retrieving revision 1.4
diff -u -p -r1.4 Makefile
--- Makefile17 Oct 2018 14:15:56 - 1.4
+++ Makefile30 Oct 2018 18:26:22 -
@@ -2,9 +2,8 @@
COMMENT = command line tool for wordpress
-V =1.5.1
+V =2.0.1
DISTNAME = wp-cli-${V}
-REVISION = 0
EXTRACT_ONLY =
EXTRACT_SUFX = .phar
Index: distinfo
===
RCS file: /cvs/ports/www/wp-cli/distinfo,v
retrieving revision 1.2
diff -u -p -r1.2 distinfo
--- distinfo12 Jul 2018 13:29:20 - 1.2
+++ distinfo30 Oct 2018 18:26:22 -
@@ -1,2 +1,2 @@
-SHA256 (wp-cli-1.5.1.phar) = DMepXmii7wL8QjYUgGwpqOduSsjJs+Z9ZnNjXW6uqHE=
-SIZE (wp-cli-1.5.1.phar) = 4595436
+SHA256 (wp-cli-2.0.1.phar) = j12hxu/bHREWs8AdFb6CY16SpGgIkr2LIecQwIhXixY=
+SIZE (wp-cli-2.0.1.phar) = 5366981
Re: fix games/tome4 compilation
Solene Rapenne wrote:
> the following diff add a patch file used only when using clang, so it links to
> c++abi correctly.
>
> Thanks to naddy@ for his explanations about the work required for fixing it.
>
> I found the PATCH_LIST idea from games/xkobo
>
new diff, uses PROPERTIES:Mlld instead of reusing the clang if
compiles and run fine on amd64
Index: Makefile
===
RCS file: /data/cvs/ports/games/tome4/Makefile,v
retrieving revision 1.18
diff -u -p -r1.18 Makefile
--- Makefile4 Sep 2018 12:46:13 - 1.18
+++ Makefile30 Oct 2018 17:57:58 -
@@ -54,6 +54,12 @@ COMPILER_LANGS = c
WANTLIB-main += c++abi
.endif
+# lld requires linking against c++abi for libunwind
+# symbols needed by luajit
+.if ${PROPERTIES:Mlld}
+PATCH_LIST = patch-* lld-linking
+.endif
+
NO_TEST = Yes
USE_GMAKE =Yes
Index: patches/lld-linking
===
RCS file: patches/lld-linking
diff -N patches/lld-linking
--- /dev/null 1 Jan 1970 00:00:00 -
+++ patches/lld-linking 30 Oct 2018 17:56:04 -
@@ -0,0 +1,15 @@
+$OpenBSD: patch-build_te4core_lua,v 1.2 2018/04/29 10:21:35 solene Exp $
+
+link against libc++abi to access libunwind symbols needed by luajit
+
+Index: build/te4core.lua
+--- build/te4core.lua.orig
build/te4core.lua
+@@ -50,6 +50,7 @@ project "TEngine"
+ if _OPTIONS.relpath == "64" then defines{"TE4_RELPATH64"} end
+
+ links { "m" }
++ links { "c++abi" }
+
+ if _OPTIONS.no_rwops_size then defines{"NO_RWOPS_SIZE"} end
+
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: jtur...@cvs.openbsd.org 2018/10/30 11:57:42 Modified files: sysutils/login_duo: Makefile distinfo sysutils/login_duo/pkg: PLIST Log message: Update login_duo to 1.11.0
Re: UPDATE: multimedia/libv4l
Ping.
As there are no changes in SHARED_LIBS I expect no breakage. I'll commit
in the next days but of course prefer explicit OKs.
Thank you.
Best regards,
Ingo
On Wed, Oct 24, 2018 at 08:07:37AM +0200, Ingo Feinerer wrote:
> Hi,
>
> this updates multimedia/libv4l from 1.14.2 to 1.16.1.
>
> patches/patch-lib_libv4lconvert_control_libv4lcontrol_c is restored from
> the CVS attic as there is a regression that was already fixed upstream
> in previous versions.
>
> No symbol changes in SHARED_LIBS.
>
> Successfully tested on amd64 in combination with baresip (switching to
> USB mode 2 in BIOS such that my webcam still works; a known issue
> unrelated to libv4l due to unfinished isochronous transfer support in
> xhci(4)).
>
> I have never seen "the rings of Saturn"
> (https://marc.info/?l=openbsd-ports=148875464503193=2) in my video
> setup. Maybe the update improves the situation for some of you ...
>
> OK?
>
> Best regards,
> Ingo
>
> Index: Makefile
> ===
> RCS file: /cvs/ports/multimedia/libv4l/Makefile,v
> retrieving revision 1.14
> diff -u -p -r1.14 Makefile
> --- Makefile 3 Mar 2018 07:26:27 - 1.14
> +++ Makefile 24 Oct 2018 05:50:46 -
> @@ -2,7 +2,7 @@
>
> COMMENT =libv4l userspace library
>
> -VERSION =1.14.2
> +VERSION =1.16.1
> DISTNAME = v4l-utils-${VERSION}
> PKGNAME =libv4l-${VERSION}
>
> Index: distinfo
> ===
> RCS file: /cvs/ports/multimedia/libv4l/distinfo,v
> retrieving revision 1.9
> diff -u -p -r1.9 distinfo
> --- distinfo 3 Mar 2018 07:26:27 - 1.9
> +++ distinfo 24 Oct 2018 05:50:46 -
> @@ -1,2 +1,2 @@
> -SHA256 (v4l-utils-1.14.2.tar.bz2) =
> 5rlixLElPPhSwx2hP9a1u3y+Wqnhgoga7FUSO65oBpI=
> -SIZE (v4l-utils-1.14.2.tar.bz2) = 1672765
> +SHA256 (v4l-utils-1.16.1.tar.bz2) =
> x+TW9LS38nim+kv1Y4VSaSDUD72ePignt13c1B2gUEo=
> +SIZE (v4l-utils-1.16.1.tar.bz2) = 1901822
> Index: patches/patch-lib_libv4lconvert_Makefile_in
> ===
> RCS file:
> /cvs/ports/multimedia/libv4l/patches/patch-lib_libv4lconvert_Makefile_in,v
> retrieving revision 1.4
> diff -u -p -r1.4 patch-lib_libv4lconvert_Makefile_in
> --- patches/patch-lib_libv4lconvert_Makefile_in 28 Dec 2017 12:11:43
> - 1.4
> +++ patches/patch-lib_libv4lconvert_Makefile_in 24 Oct 2018 05:50:46
> -
> @@ -5,7 +5,7 @@ OpenBSD does not have an rt library.
> Index: lib/libv4lconvert/Makefile.in
> --- lib/libv4lconvert/Makefile.in.orig
> +++ lib/libv4lconvert/Makefile.in
> -@@ -506,7 +506,7 @@ libv4lconvert_la_SOURCES = libv4lconvert.c tinyjpeg.c
> +@@ -539,7 +539,7 @@ libv4lconvert_la_SOURCES = libv4lconvert.c tinyjpeg.c
> libv4lconvert-priv.h libv4lsyscall-priv.h tinyjpeg.h \
> tinyjpeg-internal.h $(am__append_1) $(am__append_2)
> libv4lconvert_la_CPPFLAGS = $(CFLAG_VISIBILITY) $(ENFORCE_LIBV4L_STATIC)
> Index: patches/patch-lib_libv4lconvert_control_libv4lcontrol_c
> ===
> RCS file: patches/patch-lib_libv4lconvert_control_libv4lcontrol_c
> diff -N patches/patch-lib_libv4lconvert_control_libv4lcontrol_c
> --- /dev/null 1 Jan 1970 00:00:00 -
> +++ patches/patch-lib_libv4lconvert_control_libv4lcontrol_c 24 Oct 2018
> 05:50:46 -
> @@ -0,0 +1,13 @@
> +$OpenBSD$
> +
> +Index: lib/libv4lconvert/control/libv4lcontrol.c
> +--- lib/libv4lconvert/control/libv4lcontrol.c.orig
> lib/libv4lconvert/control/libv4lcontrol.c
> +@@ -20,7 +20,6 @@
> + */
> +
> + #include
> +-#include
> + #include
> + #include
> + #include
> Index: pkg/PLIST
> ===
> RCS file: /cvs/ports/multimedia/libv4l/pkg/PLIST,v
> retrieving revision 1.3
> diff -u -p -r1.3 PLIST
> --- pkg/PLIST 28 Dec 2017 12:11:43 - 1.3
> +++ pkg/PLIST 24 Oct 2018 05:50:46 -
> @@ -30,11 +30,22 @@ lib/pkgconfig/libv4lconvert.pc
> lib/v4l1compat.so
> lib/v4l2convert.so
> @comment share/locale/
> +@comment share/locale/ca/
> +@comment share/locale/ca/LC_MESSAGES/
> +@comment share/locale/ca/LC_MESSAGES/libdvbv5.mo
> +@comment share/locale/ca/LC_MESSAGES/v4l-utils.mo
> @comment share/locale/de/
> @comment share/locale/de/LC_MESSAGES/
> @comment share/locale/de/LC_MESSAGES/libdvbv5.mo
> @comment share/locale/de/LC_MESSAGES/v4l-utils.mo
> +@comment share/locale/fr/
> +@comment share/locale/fr/LC_MESSAGES/
> +@comment share/locale/fr/LC_MESSAGES/v4l-utils.mo
> @comment share/locale/pt_BR/
> @comment share/locale/pt_BR/LC_MESSAGES/
> @comment share/locale/pt_BR/LC_MESSAGES/libdvbv5.mo
> @comment share/locale/pt_BR/LC_MESSAGES/v4l-utils.mo
> +@comment share/locale/uk/
> +@comment share/locale/uk/LC_MESSAGES/
> +@comment share/locale/uk/LC_MESSAGES/libdvbv5.mo
> +@comment share/locale/uk/LC_MESSAGES/v4l-utils.mo
Re: RFC: USE_LLD=No for default-is-lld arches
Marc Espie: > > I'm more inclined to remove USE_LLD again. > > What actual use do you envision for either USE_LLD=Yes on !clang > > or USE_LLD=No on clang archs? > > the vmm bios ? doesn't it require some kind of weird 16 bit support. That's a singular case that can be handled by passing in LD=ld.bfd if we can't find a solution with lld. Once we get over the Mesa blocker, I need to talk sthen@ into doing an i386 bulk build with lld. I expect some additional fallout compared to amd64 due to crufty non-PIC asm code, but should anything turn up that can't be made to work with lld, it will likely be a candidate for deletion. I don't exactly forsee a use for USE_LLD on non-x86 either. -- Christian "naddy" Weisgerber na...@mips.inka.de
Re: NEW: Tacacs+ port - shrubbery.net version
Hello Stuart,
thank you for fixing and feedback on the tacacs+ port. I've learned a lot here.
Sorry for late response, I was missing some commmands in accounting log
and command denies were not enforced properly and I needed to find out
why. I was missing part of config on the catalyst side, so the port
works ok.
Re-tested:
- acls
- password backend (running as root)
- cleartext backend
- bcrypt backend
- command permit/deny
I've also tested this with HP5800 Series switch and both logging and
command enforcement work.
There's a minor typo in tac_plus.rc, there's slash missing after
${TRUEPREFIX}
--- tac_plus.rc.origThu Oct 25 14:21:34 2018
+++ tac_plus.rc Thu Oct 25 14:21:43 2018
@@ -2,7 +2,7 @@
#
# $OpenBSD$
-daemon="${TRUEPREFIX}sbin/tac_plus"
+daemon="${TRUEPREFIX}/sbin/tac_plus"
daemon_flags="-C ${SYSCONFDIR}/tac_plus.conf -Q _tacacs -U _tacacs"
. /etc/rc.d/rc.subr
###
What is the case with:
${MODPY_BIN} ${MODPY_LIBDIR}/compileall.py ${PREFIX}/share/tacacs/do_auth.py ?
/usr/ports/infrastructure/bin/portcheck complained:
Python module without compiled version, consider using ${MODPY_BIN}
${MODPY_LIBDIR}/compileall.py: share/tacacs/do_auth.py
is this the case where packages don't provide compiled python by
default?
Would a more minimal config as sample make sense? (please see attachment:)
Thank you again,
Jan
> : daemon="/usr/local/sbin/tac_plus"
>
> should use ${TRUEPREFIX}, see all other rc scripts in ports
>
> : daemon_flags="-C /etc/tac_plus.conf -Q _tacacs -U _tacacs"
>
> should use ${SYSCONFDIR}
>
> : Before running tac_plus, a configuration file needs to be created.
> : Copy the provided ${PREFIX}/share/tacacs/tac_plus.conf.sample to
> : /etc/tac_plus.conf and modify as necessary.
>
> should use @sample to copy the file, so it's registered in the package
> database (e.g. used by sysmerge -p, sysclean, pkg_delete -c) and you can
> set permissions/ownership appropriately.
>
> editing the config file is expected, it doesn't really need a MESSAGE
> for this.
>
> : encrypt(1) could be used to generate hashes for login = des $HASH
> : directives.
>
> encrypt(1) doesn't generate des hashes, so by itself this adds confusion.
> I'd modify the sample config to explain it better and get rid of MESSAGE
> completely.
>
> :# use `encrypt -p' to get blowfish hash (see: man encrypt(1))
> :# test123
> :login = des $2b$10$rhfyMY/VeB7Tm1nCy4hDpeJNcfI32EcEZBYZ1sy/qpQf5YhAahVqG
>
> # "login = des" actually uses the OS crypt() function, it is not really
> # using DES encryption. On OpenBSD this uses bcrypt. See encrypt(1) to
> # generate suitable hashes.
>
> : ${MODPY_BIN} ${MODPY_LIBDIR}/compileall.py
> ${PREFIX}/share/tacacs/do_auth.py
>
> that's not needed here, but on the other hand the #! line does need fixing
> (MODPY_ADJ_FILES = do_auth.py) and it's not marked as executable.
>
> : CONFIGURE_ENV = YACC="${LOCALBASE}/bin/bison -y"
> : YACC = bison -y
> :
> : pre-configure:
> : ln -sf ${LOCALBASE}/bin/bison ${WRKDIR}/bin/yacc
>
> I think this whole lot can just be replaced by
>
> CONFIGURE_ENV = YACC=bison
>
> : COMMENT = version of Cisco System's TACACS+ AAA service
>
> "the name of Cisco Systems, Inc. not be used in advertising or publicity
> pertaining to distribution of the program without specific prior
> permission"
>
> Other things, the old tacacs+ package version was tacacs+-4.0.4ap1
> which compares as "newer" than 4.0.4.28, so needs EPOCH.
>
> Picks up libwrap if present at build time.
>
> Some patch parts are no longer needed.
>
> Simpler to just remove the built tac_pwd rather than do a more complex
> patch to an automake-generated Makefile.
>
> Above are addressed in the tar attached, does that still work ok for you?
>
>
# $OpenBSD$
key = "your key here"
accounting file = /var/log/tac_plus/tac.acct
# authentication users not appearing elsewhere via
# the file /etc/passwd
#
# passwd backend needs tac_plus running a root,
# `cleartext' and `des' backends can run as
# _tacacs:_tacacs
#
acl = management_networks_acl {
permit = ^192\.168\.50\.
deny = .*
}
acl = monitoring_acl {
permit = 192\.168\.10\.
deny = .*
}
# administrators with direct enable mode access
group = admin {
default service = permit
service = exec {
priv-lvl = 15
}
acl = management_networks_acl
}
# group for monitoring
group = monitoring {
default service = deny
service = exec {
priv-lvl = 15
}
# COMWARE example
cmd = display {
permit mac-address
deny .*
}
# IOS example
cmd = show {
permit version
deny .*
}
acl = monitoring_acl
}
user = fred {
# "login = des" actually uses the OS crypt() function, it is not really
# using DES encryption. On
Re: RFC: USE_LLD=No for default-is-lld arches
On Tue, Oct 30, 2018 at 03:35:47PM -, Christian Weisgerber wrote: > On 2018-10-30, Stuart Henderson wrote: > > > Not sure if this is useful or unnecessary bloat, it provides a way to switch > > back to ld.bfd on arches which default to ld.lld to switch back to ld.bfd. > > (It hasn't gone into a bulk yet). Thoughts? > > I'm more inclined to remove USE_LLD again. > What actual use do you envision for either USE_LLD=Yes on !clang > or USE_LLD=No on clang archs? the vmm bios ? doesn't it require some kind of weird 16 bit support.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: st...@cvs.openbsd.org 2018/10/30 09:41:51 Modified files: www/squid : Makefile Added files: www/squid/patches: patch-src_snmp_core_cc Log message: fix triggerable memory leak which is present if snmp is enabled (not on by default), http://www.squid-cache.org/Advisories/SQUID-2018_5.txt
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: na...@cvs.openbsd.org 2018/10/30 09:41:17 Modified files: net/p5-Net-SSH-Perl: Makefile Added files: net/p5-Net-SSH-Perl/patches: patch-src_chacha_poly1305_c Log message: fix build on big-endian archs; from Charlene Wendling
Re: RFC: USE_LLD=No for default-is-lld arches
On 2018-10-30, Stuart Henderson wrote: > Not sure if this is useful or unnecessary bloat, it provides a way to switch > back to ld.bfd on arches which default to ld.lld to switch back to ld.bfd. > (It hasn't gone into a bulk yet). Thoughts? I'm more inclined to remove USE_LLD again. What actual use do you envision for either USE_LLD=Yes on !clang or USE_LLD=No on clang archs? -- Christian "naddy" Weisgerber na...@mips.inka.de
Re: Remaining lld breakage (2018-10-29)
Theo de Raadt wrote: > Christian Weisgerber wrote: > > > * editors/emacs21 segfault > > Maybe it's time to take that old horse out behind the barn? > > BTW, I don't use it anymore. And the reason is, it is the last program using brk which we want to get rid of to make address spaces better (mostly, it can become a bit cheaper to do aslr)
Re: Remaining lld breakage (2018-10-29)
Christian Weisgerber wrote: > * editors/emacs21 segfault > Maybe it's time to take that old horse out behind the barn? BTW, I don't use it anymore.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: abie...@cvs.openbsd.org 2018/10/30 07:56:10 Modified files: security/keybase: Makefile distinfo Log message: Bump keybase to the latest. OK gonzalo@
NEW: net/vf1
Hi all, Find attached vf1-0.0.10. This is a small gopher client written in python I usually use (not written by me though). - $ pkg_info vf1 Information for inst:vf1-0.0.10 Comment: command line gopher client Description: VF-1 is a command line gopher client. It is built around an interactive command prompt, and has a very "REPL" feeling. You only need a small number of commands to get around, and most of them can be abbreviated to one or two chars Maintainer: Paco Esteban WWW: https://github.com/solderpunk/VF-1 - OK ? p.s.: This is my first attempt to create a port, so there will be errors probably. -- Paco Esteban https://onna.be/gpgkey.asc vf1-0.0.10.tgz Description: Binary data
[update] security/keybase to 2.7.3
Hi,
Here is a trivial update to bring keybase to the latest release version.
OK?
diff --git a/security/keybase/Makefile b/security/keybase/Makefile
index 465049a1157..4b045bd485f 100644
--- a/security/keybase/Makefile
+++ b/security/keybase/Makefile
@@ -8,7 +8,7 @@ ONLY_FOR_ARCHS = amd64
COMMENT = client for keybase.io
# XXX: https://github.com/keybase/client/issues/10800
-V =2.5.0
+V =2.7.3
GH_ACCOUNT = keybase
GH_PROJECT = client
GH_TAGNAME = v${V}
diff --git a/security/keybase/distinfo b/security/keybase/distinfo
index b7f7439a268..f7ce443a8f3 100644
--- a/security/keybase/distinfo
+++ b/security/keybase/distinfo
@@ -1,2 +1,2 @@
-SHA256 (keybase-2.5.0.tar.gz) = CH/7FWcy9W6/M86dHvBL2Dbawl9uAm0nxoIyNxwWz5Q=
-SIZE (keybase-2.5.0.tar.gz) = 35012800
+SHA256 (keybase-2.7.3.tar.gz) = zBTUad08F0yJ0Ww/9b95TzWbHBd69Fpcg49tu7yt9Wk=
+SIZE (keybase-2.7.3.tar.gz) = 34648144
--
PGP: 0x1F81112D62A9ADCE / 3586 3350 BFEA C101 DB1A 4AF0 1F81 112D 62A9 ADCE
Re: drop privileges for net/arpwatch
On Tue, Oct 30, 2018 at 02:02:18PM +0100, Sebastian Reitenbach wrote:
> Hi,
>
> Am Dienstag, Oktober 30, 2018 08:58 CET, Antoine Jacoutot
> schrieb:
>
> > > > > > On Mon, Oct 29, 2018 at 02:58:11PM +0100, Sebastian Reitenbach
> > > > > > wrote:
> > > > > > > Hi,
> > > > > > >
> > > > > > > attached patch updates arpwatch to add -u flag, to
> > > > > > > drop privileges
> > > > > > > to non-privileged user after startup. Patch taken from
> > > > > > > Debian/Ubuntu, which
> > > > > > > originates from RedHat. user/group _arpwatch added to PLIST,
> > > > > > > and a user to be added to users.list
> > > > > > >
> > > > > > > rc script is updated to add -u _arpwatch user to to the daemon.
> > > > > > > manpage.
> > > > > > >
> > > > > > > any comments, objections, or even OK?
> > > > > > >
> > >
> > > > > -daemon="${TRUEPREFIX}/sbin/arpwatch"
> > > > > +daemon="${TRUEPREFIX}/sbin/arpwatch -u _arpwatch"
> > > >
> > > > As I mentioned in my former mail, please put this in daemon_flags.
> > > >
> > >
> > > Do, I overlooked that comment. Meanwhile I also recognized, arpwatch has
> > > to
> > > be able to write to /var/arpwatch, not only to the arp.dat file in there,
> > > it seems
> > > to create some temporary files there as well. So also for the @sample
> > > /var/arpwatch
> > > change @user
> > > Updated diff with these two additional changes below.
> >
> > I think you should s/var/${VARBASE}/
> >
> that I haven't left alone as it was before, but here you go, also had to
> update Makefile and
> two of the patches with ${VARBASE}
Looks fine to me :-)
Thanks.
>
> Index: Makefile
> ===
> RCS file: /cvs/ports/net/arpwatch/Makefile,v
> retrieving revision 1.49
> diff -u -r1.49 Makefile
> --- Makefile 24 Jul 2018 18:59:20 - 1.49
> +++ Makefile 30 Oct 2018 12:57:00 -
> @@ -3,7 +3,7 @@
> COMMENT= monitor arp & rarp requests
>
> DISTNAME=arpwatch-2.1a15
> -REVISION=18
> +REVISION=19
> CATEGORIES= net
>
> MASTER_SITES=ftp://ftp.ee.lbl.gov/
> @@ -16,7 +16,7 @@
> WANTLIB= c pcap
>
> CONFIGURE_STYLE= gnu
> -MAKE_FLAGS+= ARPDIR=/var/arpwatch
> +MAKE_FLAGS+= ARPDIR=${VARBASE}/arpwatch
>
> # this provides an up-to-date pregenerated ethercodes.dat file
> RUN_DEPENDS= net/arp-scan,-mac
> @@ -24,6 +24,10 @@
> NO_TEST= Yes
>
> EXAMPLESDIR= ${PREFIX}/share/examples/arpwatch
> +SUBST_VARS +=VARBASE
> +
> +pre-build:
> + ${SUBST_CMD} ${WRKSRC}/arpsnmp.8 ${WRKSRC}/arpwatch.8
>
> do-install:
> @sed -i 's,awk -f ,awk -f ${EXAMPLESDIR}/', ${WRKSRC}/massagevendor
> Index: patches/patch-arpsnmp.8
> ===
> RCS file: /cvs/ports/net/arpwatch/patches/patch-arpsnmp.8,v
> retrieving revision 1.2
> diff -u -r1.2 patch-arpsnmp.8
> --- patches/patch-arpsnmp.8 11 May 2018 08:13:26 - 1.2
> +++ patches/patch-arpsnmp.8 30 Oct 2018 12:57:00 -
> @@ -8,7 +8,7 @@
> .nh
> .nf
> -/usr/operator/arpwatch - default directory
> -+/var/arpwatch - default directory
> ++${VARBASE}/arpwatch - default directory
> arp.dat - ethernet/ip address database
> ethercodes.dat - vendor ethernet block list
> .ad
> Index: patches/patch-arpwatch.8
> ===
> RCS file: /cvs/ports/net/arpwatch/patches/patch-arpwatch.8,v
> retrieving revision 1.1
> diff -u -r1.1 patch-arpwatch.8
> --- patches/patch-arpwatch.8 1 Jun 2001 23:36:32 - 1.1
> +++ patches/patch-arpwatch.8 30 Oct 2018 12:57:00 -
> @@ -1,13 +1,45 @@
> $OpenBSD: patch-arpwatch.8,v 1.1 2001/06/01 23:36:32 jakob Exp $
>
> arpwatch.8.orig Sat Jun 2 01:22:23 2001
> -+++ arpwatch.8 Sat Jun 2 01:22:47 2001
> -@@ -152,7 +152,7 @@ addresses was a DECnet address.
> +Add -u flag, to drop privileges to that user given
> +
> +Index: arpwatch.8
> +--- arpwatch.8.orig
> arpwatch.8
> +@@ -43,6 +43,9 @@ arpwatch - keep track of ethernet/ip address pairings
> + ]] [
> + .B -r
> + .I file
> ++] [
> ++.B -u
> ++.I username
> + ]
> + .ad
> + .SH DESCRIPTION
> +@@ -94,6 +97,18 @@ of reading from the network. In this case,
> + .B arpwatch
> + does not fork.
> + .LP
> ++The
> ++.B -u
> ++flag instructs
> ++.B arpwatch
> ++to drop root privileges and change the UID to
> ++.I username
> ++and GID to the primary group of
> ++.I username .
> ++This is recommended for security reasons, but
> ++.I username
> ++has to have write access to the default directory.
> ++.LP
> + Note that an empty
> + .I arp.dat
> + file must be created before the first time you run
> +@@ -152,7 +167,7 @@ addresses was a DECnet address.
> .na
> .nh
> .nf
> -/usr/operator/arpwatch - default directory
> -+/var/arpwatch - default directory
> ++${VARBASE}/arpwatch - default directory
> arp.dat - ethernet/ip address database
> ethercodes.dat - vendor ethernet block list
> .ad
> Index:
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2018/10/30 07:10:53 Modified files: www/webkitgtk4 : Tag: OPENBSD_6_4 Makefile distinfo Log message: Maintenance update to webkitgtk4-2.22.3. Committing this on -stable to ease future security updates.
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2018/10/30 07:10:28 Modified files: www/webkitgtk4 : Makefile distinfo Log message: Maintenance update to webkitgtk4-2.22.3.
Re: drop privileges for net/arpwatch
Hi,
Am Dienstag, Oktober 30, 2018 08:58 CET, Antoine Jacoutot
schrieb:
> > > > > On Mon, Oct 29, 2018 at 02:58:11PM +0100, Sebastian Reitenbach wrote:
> > > > > > Hi,
> > > > > >
> > > > > > attached patch updates arpwatch to add -u flag, to drop
> > > > > > privileges
> > > > > > to non-privileged user after startup. Patch taken from
> > > > > > Debian/Ubuntu, which
> > > > > > originates from RedHat. user/group _arpwatch added to PLIST,
> > > > > > and a user to be added to users.list
> > > > > >
> > > > > > rc script is updated to add -u _arpwatch user to to the daemon.
> > > > > > manpage.
> > > > > >
> > > > > > any comments, objections, or even OK?
> > > > > >
> >
> > > > -daemon="${TRUEPREFIX}/sbin/arpwatch"
> > > > +daemon="${TRUEPREFIX}/sbin/arpwatch -u _arpwatch"
> > >
> > > As I mentioned in my former mail, please put this in daemon_flags.
> > >
> >
> > Do, I overlooked that comment. Meanwhile I also recognized, arpwatch has to
> > be able to write to /var/arpwatch, not only to the arp.dat file in there,
> > it seems
> > to create some temporary files there as well. So also for the @sample
> > /var/arpwatch
> > change @user
> > Updated diff with these two additional changes below.
>
> I think you should s/var/${VARBASE}/
>
that I haven't left alone as it was before, but here you go, also had to update
Makefile and
two of the patches with ${VARBASE}
Index: Makefile
===
RCS file: /cvs/ports/net/arpwatch/Makefile,v
retrieving revision 1.49
diff -u -r1.49 Makefile
--- Makefile24 Jul 2018 18:59:20 - 1.49
+++ Makefile30 Oct 2018 12:57:00 -
@@ -3,7 +3,7 @@
COMMENT= monitor arp & rarp requests
DISTNAME= arpwatch-2.1a15
-REVISION= 18
+REVISION= 19
CATEGORIES=net
MASTER_SITES= ftp://ftp.ee.lbl.gov/
@@ -16,7 +16,7 @@
WANTLIB= c pcap
CONFIGURE_STYLE= gnu
-MAKE_FLAGS+= ARPDIR=/var/arpwatch
+MAKE_FLAGS+= ARPDIR=${VARBASE}/arpwatch
# this provides an up-to-date pregenerated ethercodes.dat file
RUN_DEPENDS= net/arp-scan,-mac
@@ -24,6 +24,10 @@
NO_TEST= Yes
EXAMPLESDIR= ${PREFIX}/share/examples/arpwatch
+SUBST_VARS += VARBASE
+
+pre-build:
+ ${SUBST_CMD} ${WRKSRC}/arpsnmp.8 ${WRKSRC}/arpwatch.8
do-install:
@sed -i 's,awk -f ,awk -f ${EXAMPLESDIR}/', ${WRKSRC}/massagevendor
Index: patches/patch-arpsnmp.8
===
RCS file: /cvs/ports/net/arpwatch/patches/patch-arpsnmp.8,v
retrieving revision 1.2
diff -u -r1.2 patch-arpsnmp.8
--- patches/patch-arpsnmp.8 11 May 2018 08:13:26 - 1.2
+++ patches/patch-arpsnmp.8 30 Oct 2018 12:57:00 -
@@ -8,7 +8,7 @@
.nh
.nf
-/usr/operator/arpwatch - default directory
-+/var/arpwatch - default directory
++${VARBASE}/arpwatch - default directory
arp.dat - ethernet/ip address database
ethercodes.dat - vendor ethernet block list
.ad
Index: patches/patch-arpwatch.8
===
RCS file: /cvs/ports/net/arpwatch/patches/patch-arpwatch.8,v
retrieving revision 1.1
diff -u -r1.1 patch-arpwatch.8
--- patches/patch-arpwatch.81 Jun 2001 23:36:32 - 1.1
+++ patches/patch-arpwatch.830 Oct 2018 12:57:00 -
@@ -1,13 +1,45 @@
$OpenBSD: patch-arpwatch.8,v 1.1 2001/06/01 23:36:32 jakob Exp $
arpwatch.8.origSat Jun 2 01:22:23 2001
-+++ arpwatch.8 Sat Jun 2 01:22:47 2001
-@@ -152,7 +152,7 @@ addresses was a DECnet address.
+Add -u flag, to drop privileges to that user given
+
+Index: arpwatch.8
+--- arpwatch.8.orig
arpwatch.8
+@@ -43,6 +43,9 @@ arpwatch - keep track of ethernet/ip address pairings
+ ]] [
+ .B -r
+ .I file
++] [
++.B -u
++.I username
+ ]
+ .ad
+ .SH DESCRIPTION
+@@ -94,6 +97,18 @@ of reading from the network. In this case,
+ .B arpwatch
+ does not fork.
+ .LP
++The
++.B -u
++flag instructs
++.B arpwatch
++to drop root privileges and change the UID to
++.I username
++and GID to the primary group of
++.I username .
++This is recommended for security reasons, but
++.I username
++has to have write access to the default directory.
++.LP
+ Note that an empty
+ .I arp.dat
+ file must be created before the first time you run
+@@ -152,7 +167,7 @@ addresses was a DECnet address.
.na
.nh
.nf
-/usr/operator/arpwatch - default directory
-+/var/arpwatch - default directory
++${VARBASE}/arpwatch - default directory
arp.dat - ethernet/ip address database
ethercodes.dat - vendor ethernet block list
.ad
Index: patches/patch-arpwatch_c
===
RCS file: /cvs/ports/net/arpwatch/patches/patch-arpwatch_c,v
retrieving revision 1.1
diff -u -r1.1 patch-arpwatch_c
--- patches/patch-arpwatch_c15 May 2018 19:10:24 - 1.1
+++ patches/patch-arpwatch_c30 Oct 2018 12:57:00 -
@@ -2,11 +2,80 @@
- Do not bail if the interface does not have an IP
Re: new sysutils/reed-alert
On Wed, Oct 24 2018, Solene Rapenne wrote: > I am very happy to submit a package for reed-alert. It's a software to monitor > servers (file creation, ssl certificate expiration, service running, load, > etc...) easily. So much enthousiasm comes from that I'm the author of it and > making it packageable AND portable wasn't straightforward. > > It doesn't track any value nor produce graphs, it only check if things works. > It only uses a ~/.reed-alert/states folder to keep track of check reporting > failures, so you can be warned after N failures (to prevent false positives) > and to warn you when it doesn't fail anymore. > > Examples and a full README (the documentation) are packaged. > > One check available uses curl so I added net/curl in RUN_DEPEND, it also > requires either lang/ecl or lang/sbcl for running. I choose to use lang/ecl as > RUN_DEPENDS as it has a smaller memory footprint and doesn't require W^X. > > I hold a talk about it at BitreichCON 2018: > https://dataswamp.org/~solene/2018-08-20-brcon2018-reed-alert.html -1 for the gopher:// HOMEPAGE, the rest looks good ports-wise. You could set PKG_ARCH = *. ok jca@ to import -- jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
RFC: USE_LLD=No for default-is-lld arches
Not sure if this is useful or unnecessary bloat, it provides a way to switch
back to ld.bfd on arches which default to ld.lld to switch back to ld.bfd.
(It hasn't gone into a bulk yet). Thoughts?
Index: bsd.port.mk
===
RCS file: /cvs/ports/infrastructure/mk/bsd.port.mk,v
retrieving revision 1.1450
diff -u -p -r1.1450 bsd.port.mk
--- bsd.port.mk 18 Oct 2018 09:38:32 - 1.1450
+++ bsd.port.mk 30 Oct 2018 11:52:03 -
@@ -392,12 +392,6 @@ BASELOCALSTATEDIR ?= ${VARBASE}
LOCALSTATEDIR ?= ${BASELOCALSTATEDIR}
RCDIR ?= /etc/rc.d
-USE_LLD ?= No
-.if ${USE_LLD:L} == "yes"
-_LD_PROGRAM = /usr/bin/ld.lld
-.else
-_LD_PROGRAM = /usr/bin/ld
-.endif
USE_WXNEEDED ?= No
.if ${USE_WXNEEDED:L} == "yes"
_WXNEEDED_FLAGS = -z wxneeded
@@ -795,6 +789,30 @@ CONFIGURE_ENV += ${_EXTRA_ENV}
MAKE_ENV += ${_EXTRA_ENV}
.endif
+.if ${PROPERTIES:Mlld}
+USE_LLD ?= Yes
+.else
+USE_LLD ?= No
+.endif
+
+.if ${USE_LLD:L} == "yes"
+_LD_PROGRAM = /usr/bin/ld.lld
+. if ! ${PROPERTIES:Mlld}
+_NONDEFAULT_LD = Yes
+. endif
+.else
+_LD_PROGRAM = /usr/bin/ld.bfd
+. if ${PROPERTIES:Mlld}
+_NONDEFAULT_LD = Yes
+. endif
+.endif
+
+.if ${_LD_PROGRAM} != ${_LD_DEFAULT}
+_NONDEFAULT_LD = Yes
+.else
+_NONDEFAULT_LD = No
+.endif
+
# setup locations of compilers from the base system or environment variables.
# MODULES for compilers (gcc4.port.mk, clang.port.mk) also append to this,
# used to write wrappers to WRKDIR/bin which is at the head of the PATH.
@@ -2667,7 +2685,7 @@ ${_PATCH_COOKIE}: ${_EXTRACT_COOKIE}
# Run as _pbuild
_post-patch-finalize:
-.if ${USE_WXNEEDED:L} == "yes" || ${USE_LLD:L} == "yes"
+.if ${USE_WXNEEDED:L} == "yes" || ${_NONDEFAULT_LD:L} == "yes"
@wrktmp=`df -P ${WRKOBJDIR_${PKGPATH}} | awk 'END { print $$6 }'`; \
if ! mount | grep -q " $${wrktmp} .*wxallowed"; then \
echo "Fatal: ${WRKOBJDIR_${PKGPATH}} must be on a wxallowed
filesystem" \
Re: [amd64/SOGO] : Floating point exception on current snapshot
Le ven. 26 oct. 2018 à 15:46, Stuart Henderson a écrit : > > On 2018/10/26 14:11, Éric Jacquot wrote: > > I don't know if it is related to the recent switch on ld LLVM, but > > sogo failed with current snap ((GENERIC.MP) #383: Tue Oct 23 14:44:06 > > MDT 2018): > > This may be due to the "mmap unlock" diff which was tested in snapshots. > I have seen various problems with multithreaded programs including > segfaults and daemons silently failing to start. > > Not 100% certain that this is the problem, but it needs to be eliminated > as a possibility first, so please try either a newer snapshot or a > self-built -current kernel and let us know if it helps. > Hi, Tested with the 3 latest snapshots and fresh current ports : OpenBSD 6.4-current (GENERIC.MP) #396: Sat Oct 27 01:52:49 MDT 20 OpenBSD 6.4-current (GENERIC.MP) #408: Sun Oct 28 23:10:11 MDT 2018 OpenBSD 6.4-current (GENERIC.MP) #411: Mon Oct 29 19:18:32 MDT 2018 sogod failed with the same issue. Regards,
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ajacou...@cvs.openbsd.org 2018/10/30 05:20:33 Added files: multimedia/x265/patches: patch-source_common_cpu_cpp Log message: Fix the build on !X86 archs. from Brad (maintainer)
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bent...@cvs.openbsd.org 2018/10/30 02:25:43 Modified files: comms/sigrok/sigrok-cli: Makefile distinfo comms/sigrok/sigrok-cli/pkg: PLIST Log message: Update to sigrok-cli-0.7.1. Changelog: https://sigrok.org/gitweb/?p=sigrok-cli.git;a=blob;f=NEWS;hb=sigrok-cli-0.7.1
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: rsadow...@cvs.openbsd.org 2018/10/30 02:08:41 Modified files: x11/qt5: Makefile.version x11/qt5/docs : distinfo x11/qt5/docs/pkg: PLIST-html x11/qt5/qt3d : distinfo x11/qt5/qtbase : Makefile distinfo x11/qt5/qtbase/patches: patch-config_tests_openssl_openssl_cpp x11/qt5/qtcanvas3d: distinfo x11/qt5/qtcharts: distinfo x11/qt5/qtconnectivity: distinfo x11/qt5/qtdatavis3d: distinfo x11/qt5/qtdeclarative: distinfo x11/qt5/qtgamepad: distinfo x11/qt5/qtgraphicaleffects: distinfo x11/qt5/qtimageformats: distinfo x11/qt5/qtlocation: distinfo x11/qt5/qtmultimedia: distinfo x11/qt5/qtnetworkauth: distinfo x11/qt5/qtpurchasing: distinfo x11/qt5/qtquickcontrols: distinfo x11/qt5/qtquickcontrols2: distinfo x11/qt5/qtremoteobjects: distinfo x11/qt5/qtscript: distinfo x11/qt5/qtscxml: distinfo x11/qt5/qtsensors: distinfo x11/qt5/qtserialbus: distinfo x11/qt5/qtserialport: distinfo x11/qt5/qtspeech: distinfo x11/qt5/qtsvg : distinfo x11/qt5/qttools: distinfo x11/qt5/qttranslations: distinfo x11/qt5/qtvirtualkeyboard: distinfo x11/qt5/qtwebchannel: distinfo x11/qt5/qtwebsockets: distinfo x11/qt5/qtx11extras: distinfo x11/qt5/qtxmlpatterns: distinfo Removed files: x11/qt5/qtbase/patches: patch-src_network_ssl_qsslcertificate_openssl_cpp patch-src_network_ssl_qsslcontext_openssl_cpp patch-src_network_ssl_qsslsocket_openssl_symbols_cpp patch-src_network_ssl_qsslsocket_openssl_symbols_p_h patch-src_widgets_widgets_qdockarealayout_cpp patch-src_widgets_widgets_qdockarealayout_p_h Log message: Update Qt to the latest 5.9.7 TLS - remove QTBUG-68939 backport - remove libressl patches Feedback from Vadim and bulk build by landry@ (thanks!)
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: gonz...@cvs.openbsd.org 2018/10/30 02:04:29 Modified files: www/varnish: Makefile distinfo Log message: Maintenance release for Varnish to 6.1.1: https://varnish-cache.org/docs/6.1/whats-new/changes-6.1.html OK kn@
Re: drop privileges for net/arpwatch
On Mon, Oct 29, 2018 at 08:33:58PM +0100, Sebastian Reitenbach wrote:
> Hi,
>
> Am Montag, Oktober 29, 2018 16:44 CET, Antoine Jacoutot
> schrieb:
>
> > On Mon, Oct 29, 2018 at 04:43:02PM +0100, Sebastian Reitenbach wrote:
> > > Hi,
> > >
> > > Am Montag, Oktober 29, 2018 15:26 CET, Antoine Jacoutot
> > > schrieb:
> > >
> > > > On Mon, Oct 29, 2018 at 02:58:11PM +0100, Sebastian Reitenbach wrote:
> > > > > Hi,
> > > > >
> > > > > attached patch updates arpwatch to add -u flag, to drop
> > > > > privileges
> > > > > to non-privileged user after startup. Patch taken from Debian/Ubuntu,
> > > > > which
> > > > > originates from RedHat. user/group _arpwatch added to PLIST,
> > > > > and a user to be added to users.list
> > > > >
> > > > > rc script is updated to add -u _arpwatch user to to the daemon.
> > > > > manpage.
> > > > >
> > > > > any comments, objections, or even OK?
> > > > >
>
> > > -daemon="${TRUEPREFIX}/sbin/arpwatch"
> > > +daemon="${TRUEPREFIX}/sbin/arpwatch -u _arpwatch"
> >
> > As I mentioned in my former mail, please put this in daemon_flags.
> >
>
> Do, I overlooked that comment. Meanwhile I also recognized, arpwatch has to
> be able to write to /var/arpwatch, not only to the arp.dat file in there, it
> seems
> to create some temporary files there as well. So also for the @sample
> /var/arpwatch
> change @user
> Updated diff with these two additional changes below.
I think you should s/var/${VARBASE}/
> Index: Makefile
> ===
> RCS file: /cvs/ports/net/arpwatch/Makefile,v
> retrieving revision 1.49
> diff -u -r1.49 Makefile
> --- Makefile 24 Jul 2018 18:59:20 - 1.49
> +++ Makefile 29 Oct 2018 19:29:47 -
> @@ -3,7 +3,7 @@
> COMMENT= monitor arp & rarp requests
>
> DISTNAME=arpwatch-2.1a15
> -REVISION=18
> +REVISION=19
> CATEGORIES= net
>
> MASTER_SITES=ftp://ftp.ee.lbl.gov/
> Index: patches/patch-arpwatch.8
> ===
> RCS file: /cvs/ports/net/arpwatch/patches/patch-arpwatch.8,v
> retrieving revision 1.1
> diff -u -r1.1 patch-arpwatch.8
> --- patches/patch-arpwatch.8 1 Jun 2001 23:36:32 - 1.1
> +++ patches/patch-arpwatch.8 29 Oct 2018 19:29:47 -
> @@ -1,8 +1,40 @@
> $OpenBSD: patch-arpwatch.8,v 1.1 2001/06/01 23:36:32 jakob Exp $
>
> arpwatch.8.orig Sat Jun 2 01:22:23 2001
> -+++ arpwatch.8 Sat Jun 2 01:22:47 2001
> -@@ -152,7 +152,7 @@ addresses was a DECnet address.
> +Add -u flag, to drop privileges to that user given
> +
> +Index: arpwatch.8
> +--- arpwatch.8.orig
> arpwatch.8
> +@@ -43,6 +43,9 @@ arpwatch - keep track of ethernet/ip address pairings
> + ]] [
> + .B -r
> + .I file
> ++] [
> ++.B -u
> ++.I username
> + ]
> + .ad
> + .SH DESCRIPTION
> +@@ -94,6 +97,18 @@ of reading from the network. In this case,
> + .B arpwatch
> + does not fork.
> + .LP
> ++The
> ++.B -u
> ++flag instructs
> ++.B arpwatch
> ++to drop root privileges and change the UID to
> ++.I username
> ++and GID to the primary group of
> ++.I username .
> ++This is recommended for security reasons, but
> ++.I username
> ++has to have write access to the default directory.
> ++.LP
> + Note that an empty
> + .I arp.dat
> + file must be created before the first time you run
> +@@ -152,7 +167,7 @@ addresses was a DECnet address.
> .na
> .nh
> .nf
> Index: patches/patch-arpwatch_c
> ===
> RCS file: /cvs/ports/net/arpwatch/patches/patch-arpwatch_c,v
> retrieving revision 1.1
> diff -u -r1.1 patch-arpwatch_c
> --- patches/patch-arpwatch_c 15 May 2018 19:10:24 - 1.1
> +++ patches/patch-arpwatch_c 29 Oct 2018 19:29:47 -
> @@ -2,11 +2,80 @@
>
> - Do not bail if the interface does not have an IP assigned.
> - time_t format string fixes
> +- add -u flag, to drop privileges to that user
>
> Index: arpwatch.c
> --- arpwatch.c.orig
> +++ arpwatch.c
> -@@ -223,9 +223,11 @@ main(int argc, char **argv)
> +@@ -63,6 +63,9 @@ struct rtentry;
> + #include
> + #include
> +
> ++#include
> ++#include
> ++
> + #include
> +
> + #include "gnuc.h"
> +@@ -141,6 +144,24 @@ int sanity_ether(struct ether_header *, struct
> ether_a
> + int sanity_fddi(struct fddi_header *, struct ether_arp *, int);
> + __dead void usage(void) __attribute__((volatile));
> +
> ++void dropprivileges(const char* user)
> ++{
> ++struct passwd* pw;
> ++pw = getpwnam( user );
> ++if ( pw ) {
> ++if ( initgroups(pw->pw_name, pw->pw_gid) != 0 ||
> setgid(pw->pw_gid) != 0 ||
> ++setuid(pw->pw_uid) != 0 ) {
> ++syslog(LOG_ERR, "Couldn't change to '%.32s' uid=%d
> gid=%d", user,pw->pw_uid, pw->pw_gid);
> ++exit(1);
> ++}
> ++}
> ++else {
> ++syslog(LOG_ERR, "Couldn't find user '%.32s' in /etc/passwd",
> user);
> ++exit(1);
> ++
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bent...@cvs.openbsd.org 2018/10/30 01:12:45 Modified files: cad/ngspice: Makefile distinfo cad/ngspice/pkg: PLIST Log message: Update to ngspice-29. Release notes: https://sourceforge.net/p/ngspice/ngspice/ci/master/tree/NEWS
NEW: x11/kde-applications/ffmpegthumbs
Hi All. please find attached ffmpegthumbs-kf5 18.08.2. I set "-kf5" suffix to avoid conflict with KDE4 ffmpegthumbs. $ pkg_info ffmpegthumbs-kf5 --- Information for inst:ffmpegthumbs-kf5-18.08.2 Comment: KDE FFmpeg-based thumbnail generator for video files Description: FFmpeg-based thumbnail creation module for KDE file browsing windows. Maintainer: KDE porting team --- OK? Rafael Sadowski ffmpegthumbs-kf5-18.08.2.tar.gz Description: Binary data
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: ki...@cvs.openbsd.org 2018/10/30 01:03:30 Modified files: devel/sdl2/patches: patch-src_video_x11_SDL_x11keyboard_c patch-src_video_x11_SDL_x11sym_h Log message: regen patches to unbreak build
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: bent...@cvs.openbsd.org 2018/10/30 00:35:23 Modified files: emulators/ppsspp: Makefile distinfo emulators/ppsspp/patches: patch-CMakeLists_txt patch-UI_NativeApp_cpp Added files: emulators/ppsspp/patches: patch-ext_CMakeLists_txt Removed files: emulators/ppsspp/patches: patch-ext_armips_Util_Util_cpp Log message: Update to ppsspp-1.7. Changelog: https://github.com/hrydgard/ppsspp#whats-new-in-170
Re: UPDATE: x11/qt5
On Sun, Oct 28, 2018 at 05:53:43PM +0100, Rafael Sadowski wrote: > On Fri Oct 26, 2018 at 05:19:15PM +0200, Rafael Sadowski wrote: > > Update Qt to the latest 5.9 TLS. I removed almost all libressl patches > > and the backports patches from upstream. > > > > Can any of the libressl fallas look over it? According to the tickets, > > everything's closed. > > > > I know it's crazy these days. Maybe someone will find a free bulk build > > slot for the diff below. > > > > Rafael Sadowski > > > > Index: Makefile.version > > === > > RCS file: /cvs/ports/x11/qt5/Makefile.version,v > > retrieving revision 1.6 > > diff -u -p -u -p -r1.6 Makefile.version > > --- Makefile.version5 Jul 2018 09:49:13 - 1.6 > > +++ Makefile.version26 Oct 2018 15:05:44 - > > @@ -1,13 +1,13 @@ > > # $OpenBSD: Makefile.version,v 1.6 2018/07/05 09:49:13 rsadowski Exp $ > > # Common source for Qt5 version > > > > -QT5_VERSION = 5.9.6 > > -QT5_DIST_VERSION = 5.9.6 > > +QT5_VERSION = 5.9.7 > > +QT5_DIST_VERSION = 5.9.7 > > QT5_WEBKIT_VERSION = 5.9.0 > > > > # This one is used for building dependencies for examples and > > documentation, > > # which obviously should be in sync with core packages. > > -QT5_NEXT_VERSION = 5.10 > > +QT5_NEXT_VERSION = 5.12 > > > > The deletion of the above was a mistake from me. Compile at configure > time will fail and thus define QT_NO_SSL which is not correct. Spotted > by landry@ Thanks! All the other failures i had in my bulk were related to this QtSsl thing, so ok to commit that fixed diff. If there are new failures hidden by it, the next bulk will uncover them, but i'm positive there will be none. Landry
CVS: cvs.openbsd.org: ports
CVSROOT:/cvs Module name:ports Changes by: rsadow...@cvs.openbsd.org 2018/10/30 00:00:37 Modified files: devel/qt-creator: Makefile distinfo devel/qt-creator/patches: patch-src_plugins_projectexplorer_gcctoolchain_cpp Log message: Update qt-creator-4.7.2
