20:57 ohauer 

- backport patch for CVE-2015-5343 [1]
- sync 220_subversion.conf.sample.in with subversion 1.8/1.9
- bump PORTREVISION

[1]  http://subversion.apache.org/security/CVE-2015-5343-advisory.txt

MFH:		2015Q4

 

21:03 ohauer 

- deprecate port, set expiration date to 2015-12-29 [1]

Version 1.7.x is no longer supported by upstream.

[1]
https://subversion.apache.org/docs/release-notes/1.9.html#svn-1.7-deprecation

M    subversion17/Makefile.common

 

20:37 ohauer 

- update to 1.7.22

Developer-visible changes:
  - General:
    * fix the regression test suite which was broken in 1.7.21 (r1694012)

 

14:20 mat 

Remove UNIQUENAME and LATEST_LINK.

UNIQUENAME was never unique, it was only used by USE_LDCONFIG and now,
we won't have conflicts there.

Use PKGBASE instead of LATEST_LINK in PKGLATESTFILE, the *only* consumer
is pkg-devel, and it works just fine without LATEST_LINK as pkg-devel
has the correct PKGNAME anyway.

Now that UNIQUENAME is gone, OPTIONSFILE is too. (it's been called
OPTIONS_FILE now.)

Reviewed by:	antoine, bapt
Exp-run by:	antoine
Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D3336

 

20:41 ohauer 

- upgrade to 1.7.21
- fix py-subversion (convert BDB_CONFIGURE_OFF back to !${PORT_OPTIONS:MBDB})
- fix sample apache module config ('s/dav_module/dav_svn_module/')
- add tuning example for dav_svn_module

MFH:		2013Q5

 

10:15 mat 

MASTER_SITES cleanup.

- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
  of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
  no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.

While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.

Also, replace some EXTRACT_SUFX occurences with USES=tar:*.

Checked by:	make fetch-urlall-list
With hat:	portmgr
Sponsored by:	Absolight

 

20:55 ohauer 

- security update to version 1.7.20
- Instead changing the httpd.conf the port uses now a
  dedicated module file to activate the apache modules
  %%APACHEETCDIR%%/modules.d/220_subversion.conf

Changelog:
Version 1.7.20
(31 Mar 2015, from /branches/1.7.x)
http://svn.apache.org/repos/asf/subversion/tags/1.7.20

User-visible changes:
- Client-side bugfixes:
  * fix 'svn patch' output for reordered hunks

- Server-side bugfixes:
  * reject invalid get-location-segments requests in mod_dav_svn and
    svnserve
  * mod_dav_svn: reject invalid txnprop change requests (r1667235)

- Client-side and server-side bugfixes:
  * properly duplicate svn error objects
  * fix use-after-free in config parser

Developer-visible changes:
  * add lock file config for testing against HTTPD 2.4+ (r1544302, r1544303)
  * fix build with absolute path to neon install (r1664789)

Security:	vid=8e887b71-d769-11e4-b1c2-20cf30e32f6d
Security:	CVE-2015-0202
Security:	CVE-2015-0248
Security:	CVE-2015-0251

 

06:03 ohauer 

- rename www/neon29 to www/neon and update to neon-0.30.1
- adjust ports depending on neon, bump PORTREVISION

Changelog:
Fix memory leak with GnuTLS (Werner Baumann, Patrick Ohly).
Fix possible crash after DNS lookup errors on Windows (Olivier Goffart).
Don't fail if the SSL cert changes between connections with OpenSSL, behaviour
now matches that with GnuTLS.
Fix PKCS#11 support under OpenSSL with TLS 1.2.
Fix static linking with pkg-config file (Alan H)

PR:		195786
Differential Revision:	https://reviews.freebsd.org/D1319
Submitted by:	ohauer
Reviewed by:	portmgr (bapt, mat)
Approved by:	portmgr, lev (implicit)

 

22:24 ohauer 

- update to 1.7.19

Changelog:
http://svn.apache.org/repos/asf/subversion/trunk/CHANGES

MFH:		2014Q4
Security:	f5561ade-846c-11e4-b7a7-20cf30e32f6

 

18:42 ohauer 

- add CPE information
- use NO_STATIC instead DYNAMIC_ENABLED in pkg-plist

 

17:21 miwi 

- Chase database/sqlite3 slib bump

Approved by:	portmgr (myself)

 

09:17 tijl 

Bump PORTREVISION on everything that depends on devel/apr1 due to the
library version change.

Approved by:	portmgr (implicit)

 

05:18 ohauer 

- update to 1.7.17
- s/USE_AUTOTOOLS=libtool/USES=libtool/
- strip

Version 1.7.17
 User-visible changes:
  - Client-side bugfixes:
    * log: use proper peg revision over DAV (r1568872)
    * move: fix errors when moving files between an external and the parent
      working copy (r1551579)
    * copy: fix 'svn copy URL WC' on relocated working copies
      (r1580626, r1580650)

  - Server-side bugfixes:
    * mod_dav_svn: blacklist building with broken versions of httpd; 2.2.25,
      2.4.5 and 2.4.6 (r1545835)
    * mod_dav_svn: detect out of dateness correctly during commit (issue #4480)

 Developer-visible changes:
  - General:
    * fix libmagic detection with custom LDFLAGS (r1577200)
    * fix a missing null byte when handling old pre-1.4 deltas (r1587968)
    * support building with Serf 1.3.x (r1517123, r1535139)

  - Bindings:
    * javahl: fix crash from resolve callback throwing an exception (r1586439)

 

17:29 mat 

Add a MFH line to the FreeBSD template

With hat:	portmgr
Sponsored by:	Absolight

 

18:42 gjb 

- Update commit template to include 'Relnotes:' tag, to
  help re@ track release notes candidates.
- Bump PORTREVISION.

Discussed with:	re
Reviewed by:	bdrewery
Sponsored by:	The FreeBSD Foundation

 

21:09 ohauer 

- update to version 1.7.16
- add BDB deprecated message (FS backend is the thefault
  since many years, I hope no one use BDB backends today)
- adopt static build fix from devel/subversion

Changes:
========
Version 1.7.16
(26 Feb 2014, from /branches/1.7.x)
http://svn.apache.org/repos/asf/subversion/tags/1.7.16

 User-visible changes:
  - Client-side bugfixes:
    * copy: fix some scenarios that broke the working copy (r1560690)
    * diff: fix regressions due to fixes in 1.7.14 (issue #4460)

  - Server-side bugfixes:
    * mod_dav_svn: prevent crashes with SVNListParentPath on (CVE-2014-0032)
    * reduce memory usage during checkout and export (r1564215)

 Developer-visible changes:
  - General:
    * fix failure in checkout_tests.py
    * support compiling against Cyrus sasl 2.1.25 (r1404912, r1413402)
    * support compiling against neon 0.30.x (r1566320)

Version 1.7.15
(Not released, see changes for 1.7.16.)

 

16:40 ohauer 

- fix apache module building (r341335 regression) [1]
- add all necessary KDE dependencies to KDE_KWALLET (r331808 regression) [2]
- fix shebank (the old way!)  [3]

PR: ports/186167 , Tang Jianfeng <tangjfn@gmail.com> [1]
PR: ports/186361 , PeterK <fbsdq@peterk.org> [1]
PR: ports/185494 , Raphael Kubo da Costa <rakuco@FreeBSD.org> [2]
PR: ports/184295 , Matthias Andree <mandree@FreeBSD.org> [3]

Approved by:	lev (implicit)

 

18:52 mat 

Add PKGNAMESUFFIX to subversion1{6,7}

With hat:	portmgr
Sponsored by:	Absolight

 

20:55 ohauer 

- rename AL2 to APACHE20 in Mk/bsd.licenses.db.mk
- svn move Templates/Licenses/AL2 Templates/Licenses/APACHE20
- add APACHE10 and APACHE11 to Mk/bsd.licenses.db.mk
- add entry in UPDATING
- bulk change all ports AL2 => APACHE20

- math/openfst/pkg-plist: remove share/licenses/openfst-1.3.4

PR:		ports/184785
Submitted by:	ohauer
Reviewed by:	tabthorpe
Approved by:	portmgr (tabthorpe@)

 

19:52 ohauer 

- security update subversion-1.8.5 / 1.7.14 [1]
- add vuxml entry
- let bindings ports load options file [2]

[1]
Version 1.8.5
(25 November 2013, from /branches/1.8.x)
http://svn.apache.org/repos/asf/subversion/tags/1.8.5

 User-visible changes:
  - Client-side bugfixes:
    * fix externals that point at redirected locations (issues #4428, #4429)
    * diff: fix assertion with move inside a copy (issue #4444)

  - Server-side bugfixes:
    * mod_dav_svn: Prevent crashes with some 3rd party modules (r1537360 et al)
    * mod_dav_svn: canonicalize paths properly (r1542071)
    * mod_authz_svn: fix crash of mod_authz_svn with invalid config (r1541432)
    * hotcopy: fix hotcopy losing revprop files in packed repos (issue #4448)

  - Other tool improvements and bugfixes:
    * mod_dontdothat: Fix the uri parser (r1542069 et al)

 Developer-visible changes:
  - General:
    * fix compilation with '--enable-optimize' with clang (r1534860)
    * fix copmpilation with debug build of BDB on Windows (r1501656, r1501702)
    * fix '--with-openssl' option when building on Windows (r1535139)
    * add test to fail when built against broken ZLib (r1537193 et al)

  - Bindings:
    * swig-rb: fix tests to run without installing on OS X (r1535161)
    * ctypes-python: build with compiler selected via configure (r1536537)

Version 1.7.14
(25 Nov 2013, from /branches/1.7.x)
http://svn.apache.org/repos/asf/subversion/tags/1.7.14

 User-visible changes:
  - Client- and server-side bugfixes:
    * fix assertion on urls of the form 'file://./' (r1516806)

  - Client-side bugfixes:
    * upgrade: fix an assertion when used with pre-1.3 wcs (r1530849)
    * ra_local: fix error with repository in Windows drive root (r1518184)
    * fix crash on windows when piped command is interrupted (r1522892)
    * fix externals that point at redirected locations (issues #4428, #4429)
    * diff: fix incorrect calculation of changes in some cases (issue #4283)
    * diff: fix errors with added/deleted targets (issues #4153, #4421)

  - Server-side bugfixes:
    * mod_dav_svn: Prevent crashes with some 3rd party modules (r1537360 et al)
    * fix OOM on concurrent requests at threaded server start (r1527103 et al)
    * fsfs: limit commit time of files with deep change histories (r1536790)
    * mod_dav_svn: canonicalize paths properly (r1542071)

  - Other tool improvements and bugfixes:
    * mod_dontdothat: Fix the uri parser (r1542069 et al)

 Developer-visible changes:
  - Bindings:
    * javahl: canonicalize path for streamFileContent method (r1524869)

[2]
- Set OPTIONS_NAME to let bindings ports load the new options file.
  Leave OPTIONSFILE for now to load the old file on systems where
  it hasn't been moved to the new location yet.
- Remove an old hack.

PR:		ports/180612 [2]
Submitted by:	Tijl Coosemans <tijl@FreeBSD.org>
Security:	e3244a7b-5603-11e3-878d-20cf30e32f6d
		CVE-2013-4505
		CVE-2013-4558

 

22:16 ohauer 

- book is now a dedicated port

 

22:01 ohauer 

grr, last commit was from the wron local repo ...

as in the last commit msg written disable PKGNAMEPREFIX
(LATEST_LINK was already added back)

 

21:14 ohauer 

- USES+= pkgconfig
- re add LATEST_LINK to stop duplicate pkgname warnings
  adding PKGNAMEPREFIX will break (py|p5|ruby|java) subversion sub ports

 

18:41 ohauer 

- add STAGEDIR support

 

19:42 ohauer 

- use new LIB_DEPENDS notation in subversion ports
- use new LIB_DEPENDS notation in Mk/Uses to fix static svn building [1]

Approved by:	portmgr (babt@) [1]

 

10:54 ak 

- Remove last vestiges of MAKE_JOBS_SAFE knob

Approved by:	portmgr (bapt)

 

19:04 ohauer 

- update devel/subversion to 1.8.3	[1]
- update devel/subversion17 to 1.7.13	[1]
- add vuxml entry

Version 1.7.13
(29 Aug 2013, from /branches/1.7.x)
http://svn.apache.org/repos/asf/subversion/tags/1.7.13/CHANGES

User-visible changes:
 - General
   * merge: fix bogus mergeinfo with conflicting file merges (issue #4306)
   * diff: fix duplicated path component in '--summarize' output (issue #4408)
   * ra_serf: ignore case when checking certificate common names (r1514763)

 - Server-side bugfixes:
   * svnserve: fix creation of pid files (r1516556)
   * mod_dav_svn: better status codes for commit failures (r1490684)
   * mod_dav_svn: do not map requests to filesystem (r1512432 et al)

Developer-visible changes:
 - General:
   * support linking against gssapi on Solaris 10 (r1515068)
   * don't use uninitialized variable to produce an error code (r1482282)

 - Bindings:
   * swig-pl: fix SVN::Client not honoring config file settings (r150744)
   * swig-pl & swig-py: disable unusable svn_fs_set_warning_func (r1515119)

Version 1.8.3
(29 August 2013, from /branches/1.8.x)
http://svn.apache.org/repos/asf/subversion/tags/1.8.3/CHANGES

User-visible changes:
 - Client- and server-side bugfixes:
   * translation updates for Swedish
   * enforce strict version equality between tools and libraries (r1502267)
   * consistently output revisions as "r%ld" in error messags (r1499044 et al)

 - Client-side bugfixes:
   * status: always use absolute paths in XML output (issue #4398)
   * ra_serf: 'svn log -v' fails with a 1.2.x server (issue #4044)
   * ra_serf: fix crash when committing cp with deep deletion (issue #4400)
   * diff: issue an error for files that can't fit in memory (r1513119 et al)
   * svnmucc: generate proper error for mismatched URLs (r1511353)
   * update: fix a crash when a temp file doesn't exist (r1513156)
   * commit & update: improve sleep for timestamps performance (r1508438)
   * diff: continue on missing or obstructing files (issue #4396)
   * ra_serf: use runtime serf version for User-Agent (r1514315, r1514628)
   * ra_serf: ignore case when checking certificate common names (r1514763)
   * ra_serf: format distinguished names properly (r1514804)
   * ra_serf: do not retry HTTP requests if we started to parse them (r1503318)
   * ra_serf: output ssl cert verification failure reason (r1514785 et al)
   * ra_serf: allow session reuse after SVN_ERR_CEASE_INVOCATION (r1502901)
   * ra_serf: include library version in '--version' output (r1514295 et al)
   * info: fix spurious error on wc root with child in conflict (r1515366)

 - Server-side bugfixes:
   * svnserve: fix creation of pid files (r1516556)
   * svnadmin: fix output encoding in non-UTF8 environments (r1506966)
   * svnsync: fix high memory usage when running over ra_serf (r1515249 et al)
   * mod_dav_svn: do not map requests to filesystem (r1512432 et al)
   * svnauthz: improve help strings (r1511272)
   * fsfs: fixed manifest file growth with revprop changes (r1513874)
   * fsfs: fix packed revprops causing loss of revprops (r1513879 et al)

 - Other tool improvements and bugfixes:
   * svnwcsub/irkerbridge: fix symlink attack via pid file (r175 from upstream)

Developer-visible changes:
 - General:
   * describe APR unimplemented errors as coming from APR (r1503010 et al)
   * mod_dav_svn: update INSTALL to reflect configure defaults (r1515141)
   * davautocheck: use the correct apxs binary by default (r1507889, r1507891)

 - API changes:
   * svn_config_walk_auth_data() config_dir arg: permit NULL (r1507382 et al)

 - Bindings:
   * swig-pl: fix SVN::Client not honoring config file settings (r150744)
   * swig-pl & swig-py: disable unusable svn_fs_set_warning_func (r1515119)

Approved by:	lev@ (explicit per PM)
Security:	f8a913cc-1322-11e3-8ffa-20cf30e32f6d
		CVE-2013-4277 [1]

 

17:18 lev 

 Update:
   devel/subversion to 1.8.1
   devel/subversion16 to 1.7.11

 These releases fix CVE-2013-4131
 http://subversion.apache.org/security/CVE-2013-4131-advisory.txt

Approved by:	Olli Hauer <ohauer@FreeBSD.org> for devel/subversion17
Security:	CVE-2013-4131

 

09:03 ohauer 

- cleanup APACHE version check
- bump PORTREVISION

 

08:13 ohauer 

- fix binding for (p5|py|ruby)-subversion

 

21:34 ohauer 

- set LATEST_LINK to preserve devel/subversion