22:23 osa 

Update passenger and its third-party module from
6.0.4 to 6.0.5.

Bump PORTREVISION for www/nginx-devel.

 

14:13 osa 

Merge r538002 from www/nginx.

Update 3rd party module nginx-link-function to 3.2.3.

Bump PORTREVISION.

 

18:11 osa 

Merge r537527 and r537550 from www/nginx:

1. Switch with the nginx-upload-module to fdintino, they support http/2:        
                                                       
https://github.com/fdintino/nginx-upload-module/.

2. Update 3rd party module nginx-link-function to 3.2.2.

Bump PORTREVISION.

PR:	246746 [1]
	246897 [2]

 

15:19 osa 

Update nginx from 1.18.0 to 1.19.0.

<ChangeLog>

*) Feature: client certificate validation with OCSP.

*) Bugfix: "upstream sent frame for closed stream" errors might occur
   when working with gRPC backends.

*) Bugfix: OCSP stapling might not work if the "resolver" directive was
   not specified.

*) Bugfix: connections with incorrect HTTP/2 preface were not logged.

</ChangeLog>

 

16:23 osa 

Update njs module from 0.4.0 to 0.4.1.

While I'm here add '--with-compat' option to the configure script
to enable dynamic modules compatibility.

<ChangeLog>

*) Feature: added support for multi-value headers in r.headersIn.

*) Feature: introduced raw headers API.

*) Feature: added TypedScript API description.

Core:

*) Bugfix: fixed Array.prototype.slice() for sparse arrays.

</ChangeLog>

 

01:17 osa 

Remove legacy third-party modules:

o) modsecurity2
o) fastdfs

All modules, including all third-party modules, are dynamic now.

Bump PORTREVISION.

 

02:06 osa 

Add third-party opentracing dynamic module.

Bump PORTREVISION.

 

16:19 osa 

Add cookie_flag third-party dynamic module.

While I'm here create a description for STREAM related
modules.

Bump PORTREVISION.

 

21:31 dinoex 

- update libgd to 2.3.0
- new option RAQM
- resurrect deprecated gdlib-config
- bump dependend ports

 

17:33 osa 

Convert third-party ngx_http_h264_streaming module to dynamic.

Bump PORTREVISION.

 

15:51 osa 

Convert another 3 third-party modules to dynamic:

o) ngx_http_subs_filter
o) ngx_http_upstream_check
o) ngx_http_response

Bump PORTREVISION.

 

22:36 osa 

Convert another 3 third-party modules to dynamic:

o) http_json_status
o) http_mogilefs
o) http_notice

Bump PORTREVISION.

 

15:55 osa 

Convert another 2 third-party modules to dynamic:

o) rds_csv
o) rds_json

Bump PORTREVISION.

 

21:36 osa 

Convert another 2 third-party modules to dynamic:

o) slowfs_cache
o) xss

Bump PORTREVISION.

 

20:58 osa 

Convert another 7 third-party modules to dynamic:

o) gridfs
o) http_push_stream
o) http_upstream_sticky
o) http_video_thumbextractor
o) http_zip
o) let
o) link

Bump PORTREVISION.

 

13:18 osa 

Convert another 5 third-party modules to dynamic:

o) drizzle
o) http_dav_ext
o) http_footer_filter
o) http_ip2location
o) http_ip2proxy

Bump PORTREVISION.

 

03:08 osa 

Convert the following third-party modules to dynamic:

o) accept_language
o) modsecurity3

While I'm here fix the third-party auth_krb5 module build.

Bump PORTREVISION.

 

14:43 osa 

Third-party postgres module is dynamic now and remove
the legacy patch.
While I'm here update the PORTSCOUT.

Bump PORTREVISION.

 

12:58 osa 

Update njs module from 0.3.9 to 0.4.0.

<ChangeLog>

*) Feature: added js_import directive.

*) Feature: added support for multi-value headers in r.headersOut.

*) Improvement: iteration over r.headersOut with special headers.

*) Improvement: iteration over r.headersOut with duplicates.

*) Change: r.responseBody property handler now returns "undefined"
   instead of throwing an exception if response body is not available.

Core:

*) Feature: added script arguments support in CLI.

*) Feature: converting externals values to native js objects.

*) Bugfix: fixed NULL-pointer dereference in "__proto__" property
   handler.

*) Bugfix: fixed handling of no-newline at the end of the script.

*) Bugfix: fixed RegExp() constructor with empty pattern and
   non-empty flags.

*) Bugfix: fixed String.prototype.replace() when function
   returns non-string.

*) Bugfix: fixed reading of pseudofiles in "fs".

</ChangeLog>

 

22:09 osa 

Add the knob for the quiet startup.

Bump PORTREVISION.

PR:		245830
Submitted by:	marck

 

21:55 osa 

Update some third-party modules to their recent versions.

Convert the following third-party modules to dynamic:
o) ajp
o) cache_purge
o) vts
o) websockify

Bump PORTREVISION.

 

15:15 osa 

Update nginx from 1.17.10 to 1.18.0.

<ChangeLog>

*) 1.18.x stable branch.

</ChangeLog>

 

14:41 osa 

Update nginx from 1.17.9 to 1.17.10.

Keep third-party modules knobs sorted, but DEVEL_KIT must be
earlier cause ARRAYVAR depends on it, so partially revert back
r531124.

<ChangeLog>

*) Feature: the "auth_delay" directive.

</ChangeLog>

 

18:24 osa 

Fix the build issue.

A typo was introduced with r531086.

Do not bump PORTREVISION.

Pointy hat:	osa
Eagle eye:	"Herbert J. Skuhra" <herbert@gojira.at>

 

16:38 osa 

Add http_degradation module.

While I'm here keep the knobs inside their groups sorted.

Bump PORTREVISION.

 

03:34 osa 

Add STREAM_REALIP knob for the ngx_stream_realip module. (*)

Enable STREAM_REALIP knob by default.

Also, create STREAMGRP group for stream-specific modules.

Bump PORTREVISION.

Requested by:	Kirill I. <kerya@kerya.net> (*)

 

15:21 osa 

Update nginx from 1.17.8 to 1.17.9.

<ChangeLog>

*) Change: now nginx does not allow several "Host" request header lines.

*) Bugfix: nginx ignored additional "Transfer-Encoding" request header
   lines.

*) Bugfix: socket leak when using HTTP/2.

*) Bugfix: a segmentation fault might occur in a worker process if OCSP
   stapling was used.

*) Bugfix: in the ngx_http_mp4_module.

*) Bugfix: nginx used status code 494 instead of 400 if errors with code
   494 were redirected with the "error_page" directive.

*) Bugfix: socket leak when using subrequests in the njs module and the
   "aio" directive.

</ChangeLog>

 

15:05 osa 

Update NGINX JavaScript (aka njs) module from 0.3.8 to 0.3.9.

To avoid a potential conflict between two versions of LuaJIT let's
update mod_security's dependecy list and use lang/luajit-openresty
instead of original lang/luajit.

Bump PORTREVISION.

 

15:15 osa 

Partially revert back r524489, the trird-party opentracing module
is not ready yet to be added to the port.

Bump PORTREVISION.

 

15:11 osa 

Commit missing patches for r524122.

Eagle eye notice from:	joneum
No cookie for:		osa

 

19:33 osa 

Add link-function third-party module, it provides dynamic linking to
your application in a server context and call the function of your
application in a location directive.

Bump PORTREVISION.

 

14:32 osa 

Update nginx from 1.17.7 to 1.17.8.
Update third-party njs module from 0.3.7 to 0.3.8.

<ChangeLog with nginx 1.17.8>

*) Feature: variables support in the "grpc_pass" directive.

*) Bugfix: a timeout might occur while handling pipelined requests in an
   SSL connection; the bug had appeared in 1.17.5.

*) Bugfix: in the "debug_points" directive when using HTTP/2.
   Thanks to Daniil Bondarev.

</ChangeLog>

<ChangeLog with njs 0.3.8>

nginx modules:

*) Feature: added Promise support for r.subrequest(). If callback
   is not provided r.subrequest() returns an ordinary Promise object
   that resolves to subrequest response object.

*) Change: r.parent property handler now returns "undefined"
   instead of throwing exception if parent object is not available.

Core:

*) Feature: added Promise support. Implemented according to
   the specification without: Promise.all(), Promise.allSettled(),
   Promise.race().

*) Feature: added initial Typed-arrays support.
   Thanks to Tiago Natel de Moura.

*) Feature: added ArrayBuffer support.
   Thanks to Tiago Natel de Moura.

*) Feature: added initial Symbol support.
   Thanks to Artem S. Povalyukhin.

*) Feature: added externals supopor for JSON.stringify().

*) Feature: added Object.is().
   Thanks to Artem S. Povalyukhin.

*) Feature: added Object.setPrototypeOf().
   Thanks to Artem S. Povalyukhin.

*) Feature: introduced nullish coalescing operator.
   Thanks to Valentin Bartenev.

*) Bugfix: fixed Object.getPrototypeOf() according to the
   specification.

*) Bugfix: fixed Object.prototype.valueOf() according to the
   specification.

*) Bugfix: fixed JSON.stringify() with unprintable values and
   replacer function.

*) Bugfix: fixed operator "in" according to the specification.

*) Bugfix: fixed Object.defineProperties() according to the
   specification.

*) Bugfix: fixed Object.create() according to the specification.
   Thanks to Artem S. Povalyukhin.

*) Bugfix: fixed Number.prototype.toString(radix) when
   fast-math is enabled.

*) Bugfix: fixed RegExp() instance properties.

*) Bugfix: fixed import segfault.
   Thanks to Hong Zhi Dao  (Hong Zhi Dao).

</ChangeLog>

 

21:05 osa 

Update the nginx.8 man page location after r523104.
Bump PORTREVISION.

 

22:04 osa 

Update third-party modsecurity3 module to 1.0.1.
Bump PORTREVISION.

 

18:03 osa 

Update from 1.17.6 to 1.17.7.

<ChangeLog>

*) Bugfix: a segmentation fault might occur on start or during
   reconfiguration if the "rewrite" directive with an empty replacement
   string was used in the configuration.

*) Bugfix: a segmentation fault might occur in a worker process if the
   "break" directive was used with the "alias" directive or with the
   "proxy_pass" directive with a URI.

*) Bugfix: the "Location" response header line might contain garbage if
   the request URI was rewritten to the one containing a null character.

*) Bugfix: requests with bodies were handled incorrectly when returning
   redirections with the "error_page" directive; the bug had appeared in
   0.7.12.

*) Bugfix: socket leak when using HTTP/2.

*) Bugfix: a timeout might occur while handling pipelined requests in an
   SSL connection; the bug had appeared in 1.17.5.

*) Bugfix: in the ngx_http_dav_module.

</ChangeLog>

 

11:55 osa 

Update third-party modules ip2location and ip2proxy to
their recent versions.

Bump PORTREVISION.

 

15:03 osa 

Update two third-party modules to their recent versions:

o) modsecurity3
o) vod

Remove the needless patch for the third-party vod module,
it's been added to the upstream.

Bump PORTREVISION.

 

15:23 osa 

The stream module doesn't imply on the http module in terms of
SSL/TLS usage.

Bump PORTREVISION.

 

20:27 osa 

Update third-party auth_ldap module to the recent version.

Bump PORTREVISION.

 

18:24 osa 

Update portscount.
No functional change.

 

15:21 osa 

Update nginx from 1.17.5 to 1.17.6.
Update njs module from 0.3.6 to 0.3.7.

<ChangeLog with nginx 1.17.6>

*) Feature: the $proxy_protocol_server_addr and
   $proxy_protocol_server_port variables.

*) Feature: the "limit_conn_dry_run" directive.

*) Feature: the $limit_req_status and $limit_conn_status variables.

</ChangeLog>

<ChangeLog with njs 0.3.7>

nginx modules:

*) Improvement: refactored iteration over external objects.

Core:

*) Feature: added Object.assign().

*) Feature: added Array.prototype.copyWithin().

*) Feature: added support for labels in console.time().

*) Change: removed console.help() from CLI.

*) Improvement: moved constructors and top-level objects to
   global object.

*) Improvement: arguments validation for configure script.

*) Improvement: refactored JSON methods.

*) Bugfix: fixed heap-buffer-overflow in njs_array_reverse_iterator()
   function. The following functions were affected:
   Array.prototype.lastIndexOf(), Array.prototype.reduceRight().

*) Bugfix: fixed [[Prototype]] slot of NativeErrors.

*) Bugfix: fixed NativeError.prototype.message properties.

*) Bugfix: added conversion of "this" value to object in
   Array.prototype functions.

*) Bugfix: fixed iterator for Array.prototype.find() and
   Array.prototype.findIndex() functions.

*) Bugfix: fixed Array.prototype.includes() and
   Array.prototype.join() with "undefined" argument.

*) Bugfix: fixed "constructor" property of "Hash" and "Hmac"
   objects.

*) Bugfix: fixed "__proto__" property of getters and setters.

*) Bugfix: fixed "Date" object string formatting.

*) Bugfix: fixed handling of NaN and -0 arguments in Math.min()
   and Math.max().

*) Bugfix: fixed Math.round() according to the specification.

*) Bugfix: reimplemented "bound" functions according to
   the specification.

</ChangeLog>

 

23:11 osa 

Update the extra patch for the third-party spnego module,
it was missing with r517770.

Bump PORTREVISION.

PR:	242031

 

19:59 osa 

Add support for FreeBSD accept filters.

Bump PORTREVISION.

PR:	238739

 

19:36 osa 

When nginx compiled with third-party spnego module, a worker process
may crash due to read-after-free operation.  This third-party module
update fix the issue.

Bump PORTREVISION.

PR:	235296

 

17:57 osa 

Merge r517734 revision from www/nginx.
Bump PORTREVISION.

PR:	240274

 

15:38 osa 

Merge the r517639 for third-party passenger module from the
www/nginx to fix the build. (*)

While I'm here sort pkg-plist.

Bump PORTREVISION.

PR:		241753 (*)

 

12:39 tobik 

Add USES={gl,gnome,mate,sdl,xorg} missed in the last round

 

02:39 osa 

Update third-party modules to their recent versions.

Switch third-party brotli module's github repo back to google
cause eustas repo, the previous one, has been archived by the
owner.

Bump PORTREVISION.

 

11:13 osa 

Fix the issue with third-aprty modsecurity2 module, it is not
being built into after selection.
An additional useful file is installed now.

Bump PORTREVISION.

Submitted by:	Felipe Zipitria <felipe.zipitria@owasp.org> (in a private mail)

 

18:33 osa 

Update nginx from 1.17.4 to 1.17.5.
Update njs module from 0.3.5 to 0.3.6.
Sync third-party fastdfs module version with www/nginx.

<ChangeLog for nginx 1.17.5>

*) Feature: now nginx uses ioctl(FIONREAD), if available, to avoid
   reading from a fast connection for a long time.

*) Bugfix: incomplete escaped characters at the end of the request URI
   were ignored.

*) Bugfix: "/." and "/.." at the end of the request URI were not
   normalized.

*) Bugfix: in the "merge_slashes" directive.

*) Bugfix: in the "ignore_invalid_headers" directive.
   Thanks to Alan Kemp.

*) Bugfix: nginx could not be built with MinGW-w64 gcc 8.1 or newer.

</ChangeLog>

<ChangeLog for njs 0.3.6>

nginx modules:

*) Improvement: getting special headers from r.headersIn.

Core:

*) Feature: added new Function() support.

*) Feature: added Number.prototype.toFixed().

*) Feature: added Number.prototype.toPrecision().

*) Feature: added Number.prototype.toExponential().

*) Improvement: making "prototype" property of function
   instances writable.

*) Improvement: limiting recursion depth while compiling.

*) Improvement: moving global functions to the global object.

*) Bugfix: fixed prototype mutation for object literals.

*) Bugfix: fixed heap-buffer-overflow while parsing regexp literals.

*) Bugfix: fixed integer-overflow while parsing exponent
   of number literals.

*) Bugfix: fixed parseFloat().

*) Bugfix: fixed Array.prototype functions according to the specification.
   The following functions were fixed: every, includes, indexOf, filter,
   find, findIndex, forEach, lastIndexOf, map, pop, push, reduce,
   reduceRight, shift, some, unshift.

*) Bugfix: fixed handing of accessor descriptors in Object.freeze().

*) Bugfix: fixed String.prototype.replace() when first argument
   is not a string.

*) Bugfix: fixed stack-use-after-scope in Array.prototype.map().

*) Bugfix: Date.prototype.toUTCString() format was aligned to ES9.

*) Bugfix: fixed buffer overflow in Number.prototype.toString(radix).

*) Bugfix: fixed Regexp.prototype.test() for regexps with backreferences.

*) Bugfix: fixed Array.prototype.map() for objects with nonexistent values.

*) Bugfix: fixed Array.prototype.pop() and shift() for sparse objects.

*) Bugfix: fixed Date.UTC() according to the specification.

*) Bugfix: fixed Date() constructor according to the specification.

*) Bugfix: fixed type of Date.prototype.
   Thanks to Artem S. Povalyukhin.

*) Bugfix: fixed Date.prototype.setTime().
   Thanks to Artem S. Povalyukhin.

*) Bugfix: fixed default number of arguments expected by built-in functions.

*) Bugfix: fixed "caller" and "arguments" properties of a function instance.
   Thanks to Artem S. Povalyukhin.

</ChangeLog>

 

12:23 bapt 

Drop the ipv6 virtual category for w* category as it is not relevant anymore

 

16:51 osa 

Update nginx from 1.17.3 to the latest bugfix release 1.17.4.

Move third-party SLICE_AHEAD knob down to other third-party
knobs. (*)

Requested by:	Herbert J. Skuhra <herbert@gojira.at> (*)

<ChangeLog>

*) Change: better detection of incorrect client behavior in HTTP/2.

*) Change: in handling of not fully read client request body when
   returning errors in HTTP/2.

*) Bugfix: the "worker_shutdown_timeout" directive might not work when
   using HTTP/2.

*) Bugfix: a segmentation fault might occur in a worker process when
   using HTTP/2 and the "proxy_request_buffering" directive.

*) Bugfix: the ECONNABORTED error log level was "crit" instead of
   "error" on Windows when using SSL.

*) Bugfix: nginx ignored extra data when using chunked transfer
   encoding.

*) Bugfix: nginx always returned the 500 error if the "return" directive
   was used and an error occurred during reading client request body.

*) Bugfix: in memory allocation error handling.

</ChangeLog>

 

00:59 osa 

Update from 6.0.3 to 6.0.4.

 

20:38 osa 

Add the following third-party modules:
o) ip2location
o) ip2proxy

Add third-party slice_ahead feature.

Update third-party passenger module to the latest release 6.0.3.

Switch third-party lua module dependence from lang/luajit (2.0) to
lang/luajit-openresty (2.1).

Bump PORTREVISION.

 

23:33 osa 

Update third-party njs module from 0.3.4 to 0.3.5.
Bump PORTREVISION.

<ChangeLog>

Core:
*) Bugfix: fixed module importing using require(). The bug was
   introduced in 0.3.4.

*) Bugfix: fixed [[SetPrototypeOf]].

</ChangeLog>

 

08:30 osa 

Security update nginx from 1.17.2 to 1.17.3.

<ChangeLog with nginx 1.17.3>

*) Security: when using HTTP/2 a client might cause excessive memory
   consumption and CPU usage (CVE-2019-9511, CVE-2019-9513,
   CVE-2019-9516).

*) Bugfix: "zero size buf" alerts might appear in logs when using
   gzipping; the bug had appeared in 1.17.2.

*) Bugfix: a segmentation fault might occur in a worker process if the
   "resolver" directive was used in SMTP proxy.

</ChangeLog>

 

08:21 osa 

Update some third-party modules to their recent revisions.
Update the download protocol from http to https.

Bump PORTREVISION.

PR:	239776

 

23:06 jbeich 

multimedia/ffmpeg: update to 4.2

Changes:	https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/n4.2:/Changelog
ABI:		https://abi-laboratory.pro/tracker/timeline/ffmpeg/

 

16:55 osa 

Update nginx from 1.17.1 to 1.17.2.
Update third-party nchan module from 1.2.3 to 1.2.6.

<ChangeLog with nginx 1.17.2>

*) Change: minimum supported zlib version is 1.2.0.4.
   Thanks to Ilya Leoshkevich.

*) Change: the $r->internal_redirect() embedded perl method now expects
   escaped URIs.

*) Feature: it is now possible to switch to a named location using the
   $r->internal_redirect() embedded perl method.

*) Bugfix: in error handling in embedded perl.

*) Bugfix: a segmentation fault might occur on start or during
   reconfiguration if hash bucket size larger than 64 kilobytes was used
   in the configuration.

*) Bugfix: nginx might hog CPU during unbuffered proxying and when
   proxying WebSocket connections if the select, poll, or /dev/poll
   methods were used.

*) Bugfix: in the ngx_http_xslt_filter_module.

*) Bugfix: in the ngx_http_ssi_filter_module.

</ChangeLog>

 

17:41 osa 

Install njs command line utility as a part of the third-party
njs module.

Bump PORTREVISION.

 

01:53 osa 

Update nginx from 1.17.0 to 1.17.1.
Update njs module from 0.3.2 to 0.3.3.

<ChangeLog with nginx 1.17.1>

*) Feature: the "limit_req_dry_run" directive.

*) Feature: when using the "hash" directive inside the "upstream" block
   an empty hash key now triggers round-robin balancing.
   Thanks to Niklas Keller.

*) Bugfix: a segmentation fault might occur in a worker process if
   caching was used along with the "image_filter" directive, and errors
   with code 415 were redirected with the "error_page" directive; the
   bug had appeared in 1.11.10.

*) Bugfix: a segmentation fault might occur in a worker process if
   embedded perl was used; the bug had appeared in 1.7.3.

</ChangeLog>

<ChangeLog with njs 0.3.3>

nginx modules:

*) Improvement: getting of special response headers in headersOut.

*) Improvement: working with unknown methods in subrequest().

*) Improvement: added support for null as a second argument
   of r.subrequest().

*) Bugfix: fixed processing empty output chain in stream body filter.

Core:
*) Feature: added runtime support for property getter/setter.
   Thanks to Hong Zhi Dao  (Hong Zhi Dao) and Artem S. Povalyukhin.

*) Feature: added "process" global object.

*) Feature: writable most of built-in properties and methods.

*) Feature: added generic implementation of Array.prototype.fill().

*) Bugfix: fixed integer-overflow in String.prototype.concat().

*) Bugfix: fixed setting of object properties.

*) Bugfix: fixed Array.prototype.toString().

*) Bugfix: fixed Date.prototype.toJSON().

*) Bugfix: fixed overwriting "constructor" property of built-in
   prototypes.

*) Bugfix: fixed processing of invalid surrogate pairs in strings.

*) Bugfix: fixed processing of invalid surrogate pairs in JSON
   strings.

*) Bugfix: fixed heap-buffer-overflow in toUpperCase() and
   toLowerCase().

*) Bugfix: fixed escaping lone closing square brackets in RegExp()
   constructor.

*) Bugfix: fixed String.prototype.toBytes() for ASCII strings.

*) Bugfix: fixed handling zero byte characters inside RegExp
   pattern strings.

*) Bugfix: fixed String.prototype.toBytes() for ASCII strings.

*) Bugfix: fixed truth value of JSON numbers in JSON.parse().

*) Bugfix: fixed use-of-uninitialized-value in
   njs_string_replace_join().

*) Bugfix: fixed parseInt('-0').
   Thanks to Artem S. Povalyukhin.

</ChangeLog>

 

21:02 osa 

Update nginx from 1.16.0 to new mainline version 1.17.0.
Update njs module from 0.3.1 to 0.3.2.

<ChangeLog with nginx 1.17.0>

*) Feature: variables support in the "limit_rate" and "limit_rate_after"
   directives.

*) Feature: variables support in the "proxy_upload_rate" and
   "proxy_download_rate" directives in the stream module.

*) Change: minimum supported OpenSSL version is 0.9.8.

*) Change: now the postpone filter is always built.

*) Bugfix: the "include" directive did not work inside the "if" and
   "limit_except" blocks.

*) Bugfix: in byte ranges processing.

</ChangeLog>

<ChangeLog with njs 0.3.2>

Core:

*) Feature: added support for template literals.
   Thanks to Hong Zhi Dao  (Hong Zhi Dao) and Artem S. Povalyukhin.

*) Feature: executing command from command line arguments.

*) Feature: added support for RegExp "groups" object (ES9).

*) Feature: added block scoped function definitions support.

*) Feature: added support for building with GNU Readline library.

*) Feature: made configurable "length", "name", and most of built-in
   methods.

*) Feature: made all constructor properties configurable.

*) Bugfix: fixed Regexp.prototype.exec() for Unicode-only regexps.

*) Bugfix: fixed njs_vm_value_dump() for empty string values.

*) Bugfix: fixed RegExp constructor for regexp value arguments.

*) Bugfix: fixed walking over prototypes chain during iteration
   over an object.

*) Bugfix: fixed overflow in Array.prototype.concat().

*) Bugfix: fixed length calculation for UTF-8 string with escape
   characters.

*) Bugfix: fixed parsing surrogate pair presents as UTF-16 escape
   sequences.

*) Bugfix: fixed processing asterisk quantifier for
   String.prototype.match().

*) Bugfix: fixed Date() constructor with one argument.

*) Bugfix: fixed arrays expansion.

*) Bugfix: fixed heap-buffer-overflow in String.prototype.replace().

*) Bugfix: fixed heap-buffer-overflow in
   String.prototype.lastIndexOf().

*) Bugfix: fixed regexp literals parsing with escaped backslash and
   backslash in square brackets.

*) Bugfix: fixed regexp literals with lone closing brackets.

*) Bugfix: fixed uninitialized-memory-access in
   Object.defineProperties().

*) Bugfix: fixed processing "*" quantifier for
   String.prototype.replace().

*) Bugfix: fixed Array.prototype.slice() for UTF8-invalid byte
   strings.

*) Bugfix: fixed String.prototype.split() for UTF8-invalid byte
   strings.

*) Bugfix: fixed handling of empty block statements.

</ChangeLog>

 

23:53 osa 

Update from 1.15.12 to 1.16.0.

<ChangeLog>

*) 1.16.x stable branch.

</ChangeLog>

 

01:20 osa 

Update from 1.15.11 to 1.15.12.
Update third-party njs module from 0.3.0 to 0.3.1.

<ChangeLogs>

Changes with nginx 1.15.12                             16 Apr 2019

*) Bugfix: a segmentation fault might occur in a worker process if
   variables were used in the "ssl_certificate" or "ssl_certificate_key"
   directives and OCSP stapling was enabled.

Changes with njs 0.3.1                                 16 Apr 2019

Core:

*) Feature: added arrow functions support.
   Thanks to Hong Zhi Dao  (Hong Zhi Dao) and Artem S. Povalyukhin.

*) Feature: added Added Object.getOwnPropertyNames().
   Thanks to Artem S. Povalyukhin.

*) Feature: added Added Object.getOwnPropertyDescriptors().
   Thanks to Artem S. Povalyukhin.

*) Feature: making __proto__ accessor descriptor of Object instances
   mutable.

*) Feature: added shebang support in CLI.

*) Feature: added support for module mode execution in CLI. In module
   mode global this is unavailable.

*) Bugfix: fixed editline detection.

*) Bugfix: fixed Function.prototype.bind().
   Thanks to Hong Zhi Dao  (Hong Zhi Dao).

*) Bugfix: fixed checking of duplication of parameters for functions.
   Thanks to Hong Zhi Dao  (Hong Zhi Dao).

*) Bugfix: fixed function declaration with the same name as a variable.
   Thanks to Hong Zhi Dao  (Hong Zhi Dao).

*) Improvement: code related to parsing of objects, variables and
   functions is refactored.
   Thanks to Hong Zhi Dao  (Hong Zhi Dao).

*) Improvement: console.log() improved for outputting large values.

*) Improvement: console.log() improved for outputting strings in a
   compliant way (without escaping and quotes).

*) Improvement: using ES6 version of ToInt32(), ToUint32(), ToLength().

</ChangeLogs>

 

21:16 osa 

Update from 1.15.10 to 1.15.11.

<ChangeLogs>

*) Bugfix: in the "ssl_stapling_file" directive on Windows.

</ChangeLogs>

 

21:57 osa 

Update from 1.15.9 to 1.15.10.
Update third-party njs module from 0.2.8 to 0.3.0.

<ChangeLogs>

http://nginx.org/en/CHANGES
http://nginx.org/en/docs/njs/changes.html#njs0.3.0

</ChangeLogs>

 

22:56 osa 

Update third-party lua module to its recent version 0.10.14.

Bump PORTREVISION.

 

22:47 osa 

Fix PORTSCOUT.
Update third-party dav-ext module to its recent version 3.0.0.

Bump PORTREVISION.

 

22:37 osa 

Update from 1.15.8 to 1.15.9.

<ChangeLog>

*) Feature: variables support in the "ssl_certificate" and
   "ssl_certificate_key" directives.

*) Feature: the "poll" method is now available on Windows when using
   Windows Vista or newer.

*) Bugfix: if the "select" method was used on Windows and an error
   occurred while establishing a backend connection, nginx waited for
   the connection establishment timeout to expire.

*) Bugfix: the "proxy_upload_rate" and "proxy_download_rate" directives
   in the stream module worked incorrectly when proxying UDP datagrams.

</ChangeLog>

 

22:32 osa 

Update passenger and its third-party modules for www/nginx and
www/nginx-devel from 6.0.1 to 6.0.2.

Bump PORTREVISION for www/nginx and www/nginx-devel.

 

22:23 osa 

Update third-party njs module to its recent version 0.2.8.

Bump PORTREVISION.

 

23:34 osa 

Add the license file.

 

20:58 adamw 

Remove GeoIP-related options. Where possible, replace GeoIP 1 defaults
with GeoIP 2.

Also, as suggested by zi, add an UPDATING note about this.

 

16:42 osa 

Update third-party tarantool module to its recent version.
Bump RORTREVISION.

 

19:49 osa 

Update passenger and its third-party modules for www/nginx and
www/nginx-devel from 6.0.0 to 6.0.1.

While I'm here:
o) remove a needless whitespace and tabs;
o) add a patch to disable anonymouse telemetry for passenger by default.

 

01:18 osa 

Update third-party modsecurity module from 2.9.2 to 2.9.3.
Bump PORTREVISION.

 

20:39 osa 

Update from 1.15.7 to 1.15.8.
Update clojure, modsecurity and njs third-party modules to their recent
versions.
Disable anonymous telemetry reporting in third-party passenger module
by default.

<ChangeLog>

*) Feature: the $upstream_bytes_sent variable.
   Thanks to Piotr Sikora.

*) Feature: new directives in vim syntax highlighting scripts.
   Thanks to Gena Makhomed.

*) Bugfix: in the "proxy_cache_background_update" directive.

*) Bugfix: in the "geo" directive when using unix domain listen sockets.

*) Workaround: the "ignoring stale global SSL error ... bad length"
   alerts might appear in logs when using the "ssl_early_data" directive
   with OpenSSL.

*) Bugfix: in nginx/Windows.

*) Bugfix: in the ngx_http_autoindex_module on 32-bit platforms.

</ChangeLog>

 

18:18 osa 

Upgrade passenger and its third-party modules for www/nginx and
www/nginx-devel from 5.3.7 to 6.0.0.

<ChangeLog>

* Introduces support for *all* programming languages. Yes that's
  right... Java, Elixir, Go -- Passenger now supports them all!
  This effort is called "generic language support".
* Bumps the preferred Nginx version to 1.15.7.
* Introduces anonymous usage telemetry, which helps us improve
  Passenger.  Please read the docs on what data is collected and
  how to disable this.
* [Nginx] Introduces a new option "passenger_request_buffering on|off",
  to allow disabling request body buffering. This is only supported in
  Nginx >= 1.15.3. Closes GH-2121.
* Updated various library versions used in precompiled binaries (used
  for e.g. gem installs):
  - OpenSSL: 1.0.2q (was: 1.0.2p)
  - libcurl: 7.62.0 (was: 7.61.1)
  - Ruby: 2.3.8 (was: 2.3.7)

</ChangeLog>

 

00:00 osa 

Update passenger and it's modules for www/nginx and
www/nginx-devel ports to 5.3.7.

 

22:56 osa 

Update from 1.15.6 to 1.15.7.
Update clojure and njs third-party modules to their recent versions.

MFH:		2018Q4

<ChangeLog>

*) Feature: the "proxy_requests" directive in the stream module.

*) Feature: the "delay" parameter of the "limit_req" directive.
   Thanks to Vladislav Shabanov and Peter Shchuchkin.

*) Bugfix: memory leak on errors during reconfiguration.

*) Bugfix: in the $upstream_response_time, $upstream_connect_time, and
   $upstream_header_time variables.

*) Bugfix: a segmentation fault might occur in a worker process if the
   ngx_http_mp4_module was used on 32-bit platforms.

</ChangeLog>

 

14:28 des 

Rename www/mod_security3 to security/modsecurity3.  It is not an Apache
module, and the upstream name is ModSecurity in a single word.

PR:		233351
Submitted by:	Marie Helene Kvello-Aune, Marius Halden (maintainer)
Differential Revision:	https://reviews.freebsd.org/D18353

 

00:24 osa 

Change the distribution for the third-party upstream_fair module,
it contains fixes for openssl 1.1.
Remove the needless patch.

Bump PORTREVISION.

 

20:35 osa 

Security update from 1.15.5 to 1.15.6.

Temporary disable third-party upstream_fair module, it should
be updated to build with the modern version of the nginx.

While I'm here fix some whitespaces.

MFH:		2018Q4
Security:	84ca56be-e1de-11e8-bcfd-00e04c1ea73d

<ChangeLog>

*) Security: when using HTTP/2 a client might cause excessive memory
   consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).

*) Security: processing of a specially crafted mp4 file with the
   ngx_http_mp4_module might result in worker process memory disclosure
   (CVE-2018-16845).

*) Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive",
   "grpc_socket_keepalive", "memcached_socket_keepalive",
   "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives.

*) Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL
   1.1.1, the TLS 1.3 protocol was always enabled.

*) Bugfix: working with gRPC backends might result in excessive memory
   consumption.

</ChangeLog>

 

01:50 jbeich 

multimedia/ffmpeg: update to 4.1

Changes:	https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/n4.1:/Changelog
ABI:		https://abi-laboratory.pro/tracker/timeline/ffmpeg/

 

13:32 rene 

Remove compatibility code for FreeBSD < 11.2 from all ports.

Simplify some ports where DragonFlyBSD no longer needs to be special-cased.
Submitted by:	rene
Reviewed by:	bapt, jbeich
Differential Revision:	https://reviews.freebsd.org/D17724

 

00:29 osa 

Upgrade third-party modules to their recent versions.
Fix modsecurity's URL.

Bump PORTREVISION.

 

17:49 osa 

Fix the build issue with STREAM_SSL_PREREAD knob.
Bump PORTREVISION.

PR:	232361

 

14:48 osa 

Upgrade third-party nchan (aka push) module from 1.1.14
to its recent stable version 1.2.1.

Bump PORTREVISION.

 

17:55 osa 

Upgrade third-party vts module from 0.1.15 to 0.1.18.
Bump PORTREVISION.

 

17:44 osa 

Upgrade from 1.15.4 to 1.15.5.

<ChangeLog>

*) Bugfix: a segmentation fault might occur in a worker process when
   using OpenSSL 1.1.0h or newer; the bug had appeared in 1.15.4.

*) Bugfix: of minor potential bugs.

</ChangeLog>

 

20:37 osa 

Upgrade from 1.15.3 to 1.15.4.

<ChangeLog>

*) Feature: now the "ssl_early_data" directive can be used with OpenSSL.

*) Bugfix: in the ngx_http_uwsgi_module.
   Thanks to Chris Caputo.

*) Bugfix: connections with some gRPC backends might not be cached when
   using the "keepalive" directive.

*) Bugfix: a socket leak might occur when using the "error_page"
   directive to redirect early request processing errors, notably errors
   with code 400.

*) Bugfix: the "return" directive did not change the response code when
   returning errors if the request was redirected by the "error_page"
   directive.

*) Bugfix: standard error pages and responses of the
   ngx_http_autoindex_module module used the "bgcolor" attribute, and
   might be displayed incorrectly when using custom color settings in
   browsers.
   Thanks to Nova DasSarma.

*) Change: the logging level of the "no suitable key share" and "no
   suitable signature algorithm" SSL errors has been lowered from "crit"
   to "info".

</ChangeLog>

 

09:56 osa 

Upgrade www/passenger and its third-party modules for
www/nginx and www/nginx-devel from 5.3.4 to 5.3.5.
Bump PORTREVISIONs where it's necessary.

 

21:56 osa 

Upgrade from 0.2.3 to 0.2.4.

<ChangeLog>

nginx modules:

*) Change: stream module handlers are refactored.

   New methods and properties:
   s.on(), s.off(), s.allow(), s.done(), s.decline(),
   s.deny().

   Removed properties of Stream object:
   s.OK, s.ABORT, s.AGAIN, s.DECLINED, s.ERROR (replaced
   with s.allow(), s.done([code]), s.deny()).

   s.buffer (for reading replaced with data argument of
   the corresponding callback, for writing use s.send()).

   s.fromUpstream (replaced with a callback for a corresponding
   event).

   s.eof (replaced with flags.last).

Core:

*) Feature: added Function.prototype.length.

*) Feature: introduced sandboxing mode.

*) Improvement: added exception strings where appropriate.

*) Improvement: improved wording for primitive type conversion
   exception.

*) Bugfix: throwing TypeError for attempts to change frozen
   properties.

*) Bugfix: fixed Object.defineProperty() for existing properties.

*) Bugfix: respecting the enumerable attribute while iterating
   by for in.

*) Bugfix: respecting writable attribute for property handlers.

*) Bugfix: fixed exception handling in arguments of a function.

*) Bugfix: fixed Object.prototype.toString for different
   value types.

*) Bugfix: fixed Object() constructor for object types arguments.

*) Bugfix: fixed comparison of objects and strings.

*) Bugfix: fixed String.slice() for undefined arguments.

*) Bugfix: miscellaneous additional bugs have been fixed.

</ChangeLog>

 

02:13 osa 

Merge r479404 from www/nginx.

<Commitlog>

Some modules depend on other being there before.

For example, devel_kit needs to be there before a few other, so this
fixes, and allow for future fixes of this kind of problem:

configuring additional dynamic modules
adding module in
/wrkdirs/usr/ports/www/nginx-full/work/array-var-nginx-module-0.05
error: ngx_devel_kit is required to build ngx_array_var; please put it before
ngx_array_var.

PR:		230864
Submitted by:	mat
exp-runs by:	antoine

</Commitlog>

 

22:04 osa 

Upgrade from 1.15.2 to 1.15.3.

<ChangeLog>

*) Feature: now TLSv1.3 can be used with BoringSSL.

*) Feature: the "ssl_early_data" directive, currently available with
   BoringSSL.

*) Feature: the "keepalive_timeout" and "keepalive_requests" directives
   in the "upstream" block.

*) Bugfix: the ngx_http_dav_module did not truncate destination file
   when copying a file over an existing one with the COPY method.

*) Bugfix: the ngx_http_dav_module used zero access rights on the
   destination file and did not preserve file modification time when
   moving a file between different file systems with the MOVE method.

*) Bugfix: the ngx_http_dav_module used default access rights when
   copying a file with the COPY method.

*) Workaround: some clients might not work when using HTTP/2; the bug
   had appeared in 1.13.5.

*) Bugfix: nginx could not be built with LibreSSL 2.8.0.

</ChangeLog>

 

16:45 osa 

Upgrade passenger and its third-party modules for www/nginx and
www/nginx-devel from 5.3.3 to 5.3.4.

PR:	229392

<ChangeLog>

* Fixes a crash during startup on FreeBSD 11.2 and recent OpenBSD versions
  due to C++11 compatibility issues in the code. Closes GH-2097.
* Updates Boost to version 1.67.0.
* [Apache] Fixes the handling of HTTP requests with chunked bodies in
  combination with `PassengerBufferUploads off`. Closes GH-2102.

</ChangeLog>

 

07:37 osa 

Upgrade third-party njs module to post 0.2.3 aka a930e69 to
fix a couple of issues.
Bump PORTREVISION.

 

06:51 osa 

Upgrade third-party njs module to 950db73 aka 0.2.3.
Bump PORTREVISION.

<ChangeLog>

nginx modules:

*) Bugfix: making a subrequest from a Reply object caused
    a segmentation fault.

*) Bugfix: getting the parent property of the main Request
    object caused a segmentation fault.

Core:

*) Feature: added the pretty string representation for values.

*) Feature: correctly printing floating point numbers.

*) Feature: correctly parsing floating point numbers.

*) Feature: String.bytesFrom() method (decoding hex, base64,
   base64url into a byte string).

*) Feature: String.padStart() and String.padEnd() methods.

*) Feature: added support of binary literals.

*) Improvement: added information about illegal token in number parsing.

*) Improvement: allowed uppercased O in octal literal values.

*) Improvement: added support for multiple arguments in console.log().

*) Bugfix: fixed applying call() to methods of external values.

*) Bugfix: fixed addition operator applied to an object.

*) Bugfix: fixed exception handling in njs_vm_value_to_ext_string().

*) Bugfix: fixed Number() with boolean, null and undefined arguments.

*) Bugfix: fixed error handling of setting non-numeric Array.length.

*) Bugfix: fixed autocompletion for global objects.

*) Bugfix: miscellaneous additional bugs have been fixed.

</ChangeLog>

 

03:39 osa 

Upgrade from 1.15.1 to 1.15.2.

<ChangeLog>

*) Feature: the $ssl_preread_protocol variable in the
   ngx_stream_ssl_preread_module.

*) Feature: now when using the "reset_timedout_connection" directive
   nginx will reset connections being closed with the 444 code.

*) Change: a logging level of the "http request", "https proxy request",
   "unsupported protocol", and "version too low" SSL errors has been
   lowered from "crit" to "info".

*) Bugfix: DNS requests were not resent if initial sending of a request
   failed.

*) Bugfix: the "reuseport" parameter of the "listen" directive was
   ignored if the number of worker processes was specified after the
   "listen" directive.

*) Bugfix: when using OpenSSL 1.1.0 or newer it was not possible to
   switch off "ssl_prefer_server_ciphers" in a virtual server if it was
   switched on in the default server.

*) Bugfix: SSL session reuse with upstream servers did not work with the
   TLS 1.3 protocol.

</ChangeLog>

 

04:34 osa 

Upgrade third-party naxsi module from 0.55.3 to 0.56.

Bump PORTREVISION.