sysrc.
mat@ suggested this however as I'm not enamoured with sysrc, it has
been added as annother approach to add/edit rc.conf variables.
Reported by: mat@
MFH: 2018Q3
These changes add support for running ntpd as non-root, and improve support
for the --jaildir (chroot) option when running on freebsd. These correspond
to the changes made in the base system with r336525.
The new patches in this change are exactly what was submitted upstream in
https://bugs.ntp.org/show_bug.cgi?id=3509
Approved by: cy@
Differential Revision: https://reviews.freebsd.org/D16396
This a security release for libwww to take into account security advisories
CVE-2016-9063 and CVE-2017-9233.
In order to take into account current and future expat security advisories,
the expat source code was removed from the libwww tree. The makefiles were
modified so that libwww dynamically links against the system's expat library.
Patches removed were incorporated upstream.
Bump PORTREVISION of dependent ports due shlib change.
Changes: https://raw.githubusercontent.com/w3c/libwww/5.4.2/ChangeLog
MFH: 2018Q3
Security: e375ff3f-7fec-11e8-8088-28d244aee256
default. (New patch from ian@.)
While here ian@ and I discussed the www/libwww libmd5 dependency. It
turns out that if the sntp configure script finds libmd5, it uses it.
This is now an option to include the dependency.
While working on the libmd5 dependency it was discovered that the
sntp build requires SSL only if it finds libmd5. This is now an
IMPLIES.
Thanks to ian@ for the additional patch and for discovering the
libmd5 check, pointing me in the right direction to solve the without
SSL breakage.
PR: 218078
Submitted by: ian@ (default driver options)
Discussed with: ian@ (libmd5 dependency)
The current use of CONFIGURE_ON to handle refclock options allows
adding a refclock that is off by default, but doesn't allow a user
to eliminate refclocks that ntpd includes by default.
Using CONFIGURE_ENABLE instead of CONFIGURE_ON will add the proper
--disable-REFCLOCKNAME to the args when the user disables default-on
options.
PR: 218078
Submitted by: ian@
Leap-second smearing is an experimental option that may be specified in
ntp.conf(5) to spread the effect of a leap-second over an interval as
specified by the leapsmearinterval config file statement. Recommended
values are between 7200 (2 hours) and 86400 (24 hours).
It is advised that leap-second smearing not be used for public NTP
servers (https://www.meinbergglobal.com/download/burnicki/Leap\
%20Second%20Smearing%20With%20NTP.pdf). It is also advised that NTP
clients not use a mix of NTP servers using leap-second smearing with
NTP servers not using leap-second smearing as that could cause
undefined client behaviour.
Suggested by: des
USES=localbase:ldflags can be used to set LDFLAGS. Normally LDFLAGS
appears too early on the command line causing some ports to link with
their own libraries in LOCALBASE (if installed) instead of WRKSRC.
Also make use of _USES_POST so -L${LOCALBASE}/lib is added as late as
possible after anything a port Makefile might set. Use _USES_POST
instead of .include in libedit.mk and libarchive.mk so things like
'USES=libedit localbase:ldflags' work correctly.
Fix some issues with LIBS in some ports.
Switch ports that don't support LIBS to localbase:ldflags.
PR: 212987
Exp-run by: antoine
Approved by: portmgr (antoine)
hide actual commands executed and only show short summary line (like
"CC foo.c"). CMake and ninja enable this by default, some autotools
using ports do as well. This is unacceptable because we need complete
build logs at any time, so we now switch to verbose build logs
unconditionally. Note that this change deliberately affects ALL
builds and not only package builds on cluster, because we need to
be sure that user experiencing failure can always provide informative
build log regardless of settings and without rerunning the build.
Change summary:
- Always do verbose builds for cmake, ninja and GNU configure (the
latter includes check if --disable-silent-rules is actually supported
by the configure script; there are isolated cases when it's not true)
- Remove CMAKE_VERBOSE, NINJA_VERBOSE and
CONFIGURE_ARGS=--disable-silent-rules from all ports which set them
for this is no longer needed
- Revert hacks for --disable-silent-rules support priorly committed
to biology/ncbi-blast+ and net-p2p/mldonkey - no longer needed as well
Submitted by: amdmi3
Reviewed by: mat
Exp-run by: antoine
Approved by: portmgr (mat, antoine)
Differential Revision: D7534
ntp links against gettext (libintl) if it is installed on the system:
- Add an NLS OPTION to explicitly enable, disable and track libintl dependency
- Add DEBUG and THREADS OPTIONS. Keep the latter enabled by OPTIONS_DEFAULT to
preserve compatibility with existing behaviour.
- Explicitly pass OpenSSL include / library dir paths to configure
- Unsilence install command
- Enable verbose building (--disable-silent-rules)
- Use TOUCH variable instead of hardcoded command
- Add TEST_TARGET to enable test suite
- Patch sntp tests to ensure they link correctly to threading library
- Pet portlint (*_DEPENDS order, group USE{S} sections, sort OPTIONS)
Approved by: cy (maintainer)
Differential Revision: D4812
MFH: 2016Q1
- The include/event2 directory was being created improperly due to the lack
of a pkgconfig dependency. Add it to USES.
- Remove WRKSRC from SHEBANG list.
Reported by: many
