A new USES has been added to depend on ImageMagick.
USES=magick
adds a LIB_DEPENDS on graphics/ImageMagick${IMAGEMAGICK_DEFAULT}.
If a specific version is required, use for example
USES=magick:6 resp. USES=magick:7
If only a build, run or test is required, use for example
USES=magick:build resp. USES=magick:6,build,test
If a dependency on the nox11 flavor is required, use for example
USES=magick:nox11 resp. USES=magick:7,nox11,run,test
See magick.mk for more details on the available flags.
The tree has been completely converted to make use of this.
Approved by: bapt
Differential Revision: https://reviews.freebsd.org/D32754
After reviewing licenses again,
- mark mbedTLS broken for now, since it uses the Apache License 2.0,
which is incompatible with the GPLv2 (OpenVPN does not employ the
"or any later version" escape hatch). This will be handed to the
OpenVPN-devel mailing list for review.
- block out the combination of LZO with LibreSSL, since OpenVPN
only has a linking exception for OpenSSL itself. Remedy is
to either forgo LibreSSL, or to disable the LZO option, which
requires proper configuration on either end. The maintainer's
recommendation is to compile with OpenSSL instead.
Bump PORTREVISION in spite of unchanged contents to flush out old
packages.
MFH: 2021Q4
* github.com/cloudflare/cloudflared/blob/2021.11.0/RELEASE_NOTES
* github.com/cloudflare/cloudflared/compare/2021.10.3...2021.11.0
* 2021.11.0
Fallback to HTTP2 immediately if connection times out with no network activity
Add flag to 'tunnel create' subcommand to specify a base64-encoded secret
* 2021.10.5
Update change log for release 2021.10.4
Revert "TUN-5184"
* 2021.10.4
Fix misuse of wait group in TestQUICServer that caused the test to exit immediately
Upgrade crypto/ssh package to fix CVE-2020-29652
Allow to configure max fetch size for listing queries
Improvements to `max-fetch-size` that allow to deal with large number of tunnels in account
Collect QUIC metrics about RTT, packets and bytes transfered and log events at tracing level
Make sure outstanding websocket write is finished, and no more writes after shutdown
PR: 254293
Reported by: orzodk % neomailbox.net
I also added a patch to supress the file integrity warning caused by the shebangfix to misc/log-analytics/import_logs.py and changed the pkg-message (change to the recommended apache config + upgrade message)
Changelog:
https://matomo.org/changelog
Major Changes:
* The `logme` method for [automatic logins](https://matomo.org/faq/how-to/faq_30/) is now disabled by default for new installations. For existing installations it will be enabled automatically on update. If you do not need it please consider disabling it again for security reasons by setting `login_allow_logme = 0` in `General` section of `config.ini.php`.
* The redirect using the `url` param for the automatic login action `logme`, will no longer do redirects to untrusted hosts. If you need to do redirects to other URLs on purpose, please add the according hosts as `trusted_hosts` entry in `config.ini.php`
* When determining the client IP address from proxy headers like X-Forwarded-For, Matomo will by default look at the first IP in the list. If you need to read the last IP instead, the new INI config option `[General] proxy_ip_read_last_in_list` be set to `1`. Using the last IP can be more secure when you are using proxy headers in combination with a load balancer.
* Matomo logs can now be written into "errorlog" (logs using the error_log() php function) and "syslog" (logs to the syslog service) (to complement existing log writers: "screen", "file", "database"). [Learn more.](https://matomo.org/faq/troubleshooting/faq_115/)
* Added new command `core:version` which returns the Matomo version number.
* Added new command `core:create-security-files` which creates some web server security files if they haven't existed previously (useful when using for example Apache or IIS web server).
* Before the JS tracker method, `enableLinkTracking` did not follow the DOM changes, from this version when the DOM updates, Matomo automatically adds event listeners for new links on the page. It makes it easier to track clicks on links in SPAs. From this version, if we use the `addListener` method to add event listener manually after the DOM has changed and the `enableLinkTracking` is turned on we will track the click event for that element twice.
* Before every JS error was tracked, from this version the same JS error will be only tracked once per page view. If the very same error is happening multiple times, then it will be tracked only once within the same page view. If another page view is tracked or when the page reloads, then the error will be tracked again.
* It's no longer possible to store any class instances directly in the session object. Please use arrays or plain data instead.
* In Matomo 4.3.0 we have added a 'passwordConfirmation' parameter to the CorePluginsAdmin.setSystemSettings API method. It is currently optional, but will become mandatory in version 4.4.0. Plugin developers and users of the API should make sure to update their plugins and apps before this happens.
* The `password_hash_algorithm`, `password_hash_argon2_threads`, `password_hash_argon2_memory_cost` and `password_hash_argon2_time_cost` INI config options have been added to allow using specific `password_hash` algorithms and options if desired.
* The `enable_php_profiler` INI config option was added. This must now be set to 1 before profiling is allowed in Matomo.
PR: 259850
Approved by: maintainer timeout
Changelog:
CHANGES BETWEEN 2.11.0 and 2.11.1
I. IMPORTANT CHANGES
- Some fields in the `CID_FaceDictRec`, `CID_FaceInfoRec`, and
`FT_Data` structures have been changed from signed to unsigned
type, which better reflects the actual usage. It is also an
additional means to protect against malformed input.
II. MISCELLANEOUS
- Cmake support has been further improved. To do that various
backward-incompatible changes were necessary; please see file
`CMakeLists.txt` for more details.
- Since version 2.11.0, a C99 compiler is necessary to compile
FreeType.
- The experimental 'COLR' v1 API has been updated to the latest
OpenType standard 1.9.
- The `apinames` tool got a new option `-wV` to output an OpenVMS
Linker Option File.
- VMS support was updated.
- MS Visual Studio support was added to build the demo programs.
PR: 260202
Exp-run by: antoine
Cherry-pick these Git commits from the upstream:
--local should behave as --server, not as --address [...]
Fix confusion in DNS retries and --strict-order.
Fix confusion with log-IDs and DNS retries.
loosely prompted by Olivier's
PR: 260331
mpv supports
- no lua
- luajit
- lua51-52
The new options added support to select between these.
- LUA_NONE
- LUAJIT (previous OFF by default)
- LUA (previously on when LUAJIT=OFF)
So the default remains to use lang/lua5[12].
PR: 259598
Chrome is required for generating reports. Add an option to make this
more visible, but since the dependencies are large, do not enable it by
default.
PORTREVISION is kept unchanged since the default package is not
modified.
With hat: opensearch
ChangeLog:
Cdecl keywords
When an unexpected name token is encountered, if said token is a cdecl keyword, it's now mentioned in the error message:
cdecl> declare ptr as pointer to void
^
16: syntax error: "ptr": name expected ("ptr" is a cdecl keyword)
Additionally, cdecl keywords are now also offered in suggestions.
register arrays
register arrays are now correctly allowed.
Zero-sized arrays
Zero-sized arrays are now correctly forbidden.
No files as arguments
Command-line arguments were treated as files if they weren't commands.
This dubious use-case was a hold-over from the original cdecl and has
been removed. (If you want to read a file use -f.)
Qt testlib is a library for tests; it is not generally needed
at runtime. Move it to a _build dependency for the KDE-related
ports that use it for their tests.
These are fairly basic and silly shell-script errors in the
startplasma-wayland.sh script (which might not even be needed,
if you start KDE Plasma-wayland some other way).
Derpy hat to me.
In order to avoid DOSes due to complex MIME, MIMEDefang sets some limits
on how much memory a process can use (MX_MAX_RSS and MX_MAX_AS).
The provided example init script sets these variables to very low values
(which probably made sense when RAM was much scarcer); the port already
patches that file, increasing them, but they are still way too low in
some cases, resulting in some mail messages crashing the filter and not
passing.
This patch, while retaining the current port defaults, allows these
thresholds to be set in rc.conf.
PR: 256711
Approved by: maintainer
WOLFSSL is a GPLv2+ licensed SSL library with OpenSSL compatibility
layer. This is to permit shipping fetchmail under a clean GPLv2+
license with OpenSSL 1.1.1.
