* Update license information. Since 7.4 upstream distributes source
files under dual license of Redis Source Available License
v2 (RSALv2) and Server Side Public License v1 (SSPLv1).
* Add entry to UPDATING.
ChangeLog: https://github.com/redis/redis/releases/tag/7.4.0
* Alway build with base system compiler. In 2018 Makefile was changed
so GCC is used with i386. It seems to be workaround of build error,
But now build succeeds without GCC on i386 and all supported FreeBSD
versions.
* Remove options for external lua library and related patches. On
April 2022 upstream made incompatible change of bundled lua library
to fix vulnerability. As a result build got failed when external lua
library is enabled. Upstream said in commit message of their
repository that they took codes from lua repository. So I kept the
options with marking as broken hoping breakage will be solved in the
future. But it is still broken after two years and doesn't seem to
change.
* Remove TRIB option. When it is enabled ruby script named
redis-trib.rb is installed. But it just prints warning message that
it is no longer available and redis-cli should be used instead, and
exit. So it isn't usefull anymore.
* Fix post-patch-JEMALLOC-on target so proper line is replaced.
* Pet portclippy.
Security fixes:
* (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory
buffers which can result in incorrect accounting of buffer sizes and lead to
heap overflow and potential remote code execution.
Bug fixes:
* Fix crashes of cluster commands clusters with mixed versions of 7.0 and 7.2 (#12805, #12832)
* Fix slot ownership not being properly handled when deleting a slot from a node (#12564)
* Fix atomicity issues with the RedisModuleEvent_Key module API event (#12733)
Changelog: https://github.com/redis/redis/releases/tag/7.2.4
PR: 276255
Approved by: yasu (maintainer, timeout > 14 days), arrowd (mentor)
MFH: 2024Q1
* Update CONFLICTS_INSTALL after databases/redis70 is added to ports
tree.
* Remove CONFLICTS as build of one redis version succeeds even if
another version is installed.
Switch from Mk/bsd.ruby.mk to Mk/Uses/ruby.mk
Notable changes are.
- Mk/bsd.ruby.mk is moved to Mk/Uses/ruby.mk.
- USE_RUBY=yes is replaced with USES=ruby.
- USE_RUBY_EXTCONF is replaced with USES=ruby:extconf.
- USE_RUBY_RDOC is replaced with USES=ruby:rdoc.
- USE_RUBY_SETUP is replaces with USES=ruby:setup.
- RUBY_NO_BUILD_DEPENDS and RUBY_NO_RUN_DEPENDS are replaced with
USES=ruby:{build,none,run}.
- RUBY_REQUIRE isn't used anywhere, so removed.
- USES=gem now implies USES=ruby.
This is mainly the work of yasu@ at https://reviews.freebsd.org/D27863
I have just made some cosmetic changes and ran exp-run to test that the
tree is not in a BROKEN state.
Approved by: portmgr
Differential Revision: https://reviews.freebsd.org/D37925
Commit b7f05445c0 has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.
This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.
Approved by: portmgr (tcberner)
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
This commit implements such a proposal and moves one of the WWW: entries
of each pkg-descr file into the respective port's Makefile. A heuristic
attempts to identify the most relevant URL in case there is more than
one WWW: entry in some pkg-descr file. URLs that are not moved into the
Makefile are prefixed with "See also:" instead of "WWW:" in the pkg-descr
files in order to preserve them.
There are 1256 ports that had no WWW: entries in pkg-descr files. These
ports will not be touched in this commit.
The portlint port has been adjusted to expect a WWW entry in each port
Makefile, and to flag any remaining "WWW:" lines in pkg-descr files as
deprecated.
Approved by: portmgr (tcberner)
* Mark BROKEN if any of external lua library options are
enabled. Upstream add new APIs to bundled lua library and use them
in source code of redis. This makes it impossible to compile and
link redis with external lua libraries. According to the commit
message of upstream repository they took the code of new API from
the repository of lua. It means linking with external lua libraries
may get possible again if they are updated. So mark BROKEN rather
than remove these options.
* Update CONFLICTS of databases/redis*.
* Switch to DISTVERSION.
* Pet portlint and portclippy.
* Tidy up Makefile with portfmt.
ChangeLog: https://github.com/redis/redis/releases/tag/7.0.0
Security: cc42db1c-c65f-11ec-ad96-0800270512f4
opt_VARS always upcases its argument, so the defined(_addflags)
check will never be true.
The _ADDFLAGS block overwrites the global CFLAGS and LDFLAGS which
is also suspicous and probably not quite right.
Reported by: portscan
Remove added to the upstream patch.
<ChangeLog>
================================================================================
Redis 6.0.12 Released Mon Mar 1 17:29:52 IST 2021
================================================================================
Upgrade urgency: LOW, fixes a compilation issue.
Bug fixes:
* Fix compilation error on non-glibc systems if jemalloc is not used (#8533)
</ChangeLog>
Integer overflow on 32-bit systems (CVE-2021-21309):
Redis 4.0 or newer uses a configurable limit for the maximum supported bulk
input size. By default, it is 512MB which is a safe value for all platforms.
If the limit is significantly increased, receiving a large request from a client
may trigger several integer overflow scenarios, which would result with buffer
overflow and heap corruption.
Various bugfixes.
