CVS commit: pkgsrc/textproc/ruby-nokogiri

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/textproc/ruby-nokogiri
From: "Takahiro Kambe" <taca%netbsd.org@localhost>
Date: Tue, 18 Oct 2016 14:41:15 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Tue Oct 18 14:41:15 UTC 2016

Modified Files:
        pkgsrc/textproc/ruby-nokogiri: Makefile PLIST distinfo

Log Message:
Update ruby-nokogiri to 1.6.8.1

=== 1.6.8.1 / 2016-10-03

==== Dependency License Notes

Removes required dependency on the `pkg-config` gem. This dependency
was introduced in v1.6.8 and, because it's distributed under LGPL, was
objectionable to many Nokogiri users (#1488, #1496).

This version makes `pkg-config` an optional dependency. If it's
installed, it's used; but otherwise Nokogiri will attempt to work
around its absence.

=== 1.6.8 / unreleased

==== Security Notes

[MRI] Bundled libxml2 is upgraded to 2.9.4, which fixes many security issues. Many of these had previously been patched in the vendored libxml 2.9.2 in the 1.6.7.x branch, but some are newer.

See these libxml2 email posts for more:

* https://mail.gnome.org/archives/xml/2015-November/msg00012.html
* https://mail.gnome.org/archives/xml/2016-May/msg00023.html

For a more detailed analysis, you may care to read Canonical's take on these security issues:

* http://www.ubuntu.com/usn/usn-2994-1

[MRI] Bundled libxslt is upgraded to 1.1.29, which fixes a security issue as well as many long-known outstanding bugs, some features, some portability improvements, and general cleanup.

See this libxslt email post for more:

* https://mail.gnome.org/archives/xslt/2016-May/msg00004.html

==== Features

Several changes were made to improve performance:

* [MRI] Simplify NodeSet#to_a with a minor speed-up. (#1397)
* XML::Node#ancestors optimization. (#1297) (Thanks, Bruno Sutic!)
* Use Symbol#to_proc where we weren't previously. (#1296) (Thanks, Bruno Sutic!)
* XML::DTD#each uses implicit block calls. (Thanks, @glaucocustodio!)
* Fall back to the `pkg-config` gem if we're having trouble finding the system libxml2. This should help many FreeBSD users. (#1417)
* Set document encoding appropriately even on blank document. (#1043) (Thanks, @batter!)

==== Bug Fixes

* [JRuby] fix slow add_child (#692)
* [JRuby] fix load errors when deploying to JRuby/Torquebox (#1114) (Thanks, @atambo and @jvshahid!)
* [JRuby] fix NPE when inspecting nodes returned by NodeSet#drop (#1042) (Thanks, @mkristian!)
* [JRuby] fix nil attriubte node's namespace in reader (#1327) (Thanks, @codekitchen!)
* [JRuby] fix Nokogiri munging unicode characters that require more than 2 bytes (#1113) (Thanks, @mkristian!)
* [JRuby] allow unlinking an unparented node (#1112, #1152) (Thanks, @esse!)
* [JRuby] allow Fragment parsing on a frozen string (#444, #1077)
* [JRuby] HTML `style` tags are no longer encoded (#1316) (Thanks, @tbeauvais!)
* [MRI] fix assertion failure while accessing attribute node's namespace in reader (#843) (Thanks, @2potatocakes!)
* [MRI] fix issue with GCing namespace nodes returned in an xpath query. (#1155)
* [MRI] Ensure C strings are null-terminated. (#1381)
* [MRI] Ensure Rubygems is loaded before using mini_portile2 at installation. (#1393, #1411) (Thanks, @JonRowe!)
* [MRI] Handling another edge case where the `libxml-ruby` gem's global callbacks were smashing the heap. (#1426). (Thanks to @bbergstrom for providing an isolated test case!)
* [MRI] Ensure encodings are passed to Sax::Parser xmldecl callback. (#844)
* [MRI] Ensure default ns prefix is applied correctly when reparenting nodes to another document. (#391) (Thanks, @ylecuyer!)
* [MRI] Ensure Reader handles non-existent attributes as expected. (#1254) (Thanks, @ccutrer!)
* [MRI] Cleanup around namespace handling when reparenting nodes. (#1332, #1333, #1444) (Thanks, @cuttrer and @bradleybeddoes!)
* unescape special characters in CSS queries (#1303) (Thanks, @twalpole!)
* consistently handle empty documents (#1349)
* Update to mini_portile2 2.1.0 to address whitespace-handling during patching. (#1402)
* Fix encoding of xml node namespaces.
* Work around issue installing Nokogiri on overlayfs (commonly used in Docker containers). (#1370, #1405)

==== Other Notes

* Removed legacy code remaining from Ruby 1.8.x support.
* Removed legacy code remaining from REE support.
* Removing hacky workarounds for bugs in some older versions of libxml2.
* Handling C strings in a forward-compatible manner, see https://github.com/ruby/ruby/blob/v2_2_0/NEWS#L319


To generate a diff of this commit:
cvs rdiff -u -r1.31 -r1.32 pkgsrc/textproc/ruby-nokogiri/Makefile
cvs rdiff -u -r1.19 -r1.20 pkgsrc/textproc/ruby-nokogiri/PLIST
cvs rdiff -u -r1.21 -r1.22 pkgsrc/textproc/ruby-nokogiri/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/textproc/ruby-nokogiri/Makefile
diff -u pkgsrc/textproc/ruby-nokogiri/Makefile:1.31 pkgsrc/textproc/ruby-nokogiri/Makefile:1.32
--- pkgsrc/textproc/ruby-nokogiri/Makefile:1.31 Tue Mar 15 15:45:46 2016
+++ pkgsrc/textproc/ruby-nokogiri/Makefile      Tue Oct 18 14:41:15 2016
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.31 2016/03/15 15:45:46 taca Exp $
+# $NetBSD: Makefile,v 1.32 2016/10/18 14:41:15 taca Exp $
 
-DISTNAME=      nokogiri-1.6.7.2
+DISTNAME=      nokogiri-1.6.8.1
 CATEGORIES=    textproc
 
 MAINTAINER=    pkgsrc-users%NetBSD.org@localhost
@@ -8,8 +8,8 @@ HOMEPAGE=       http://nokogiri.org/
 COMMENT=       HTML, XML, SAX, and Reader parser with XPath and CSS selector support
 LICENSE=       mit
 
-DEPENDS+=      ${RUBY_PKGPREFIX}-mini_portile2>=2.0.0:../../misc/ruby-mini_portile2
-OVERRIDE_GEMSPEC=      mini_portile2>=2.0.0
+DEPENDS+=      ${RUBY_PKGPREFIX}-pkg-config>=1.1.7<1.2:../../devel/ruby-pkg-config
+DEPENDS+=      ${RUBY_PKGPREFIX}-mini_portile2>=2.1.0:../../misc/ruby-mini_portile2
 
 USE_GCC_RUNTIME=       yes
 USE_TOOLS+=            pkg-config

Index: pkgsrc/textproc/ruby-nokogiri/PLIST
diff -u pkgsrc/textproc/ruby-nokogiri/PLIST:1.19 pkgsrc/textproc/ruby-nokogiri/PLIST:1.20
--- pkgsrc/textproc/ruby-nokogiri/PLIST:1.19    Tue Mar 15 15:45:46 2016
+++ pkgsrc/textproc/ruby-nokogiri/PLIST Tue Oct 18 14:41:15 2016
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.19 2016/03/15 15:45:46 taca Exp $
+@comment $NetBSD: PLIST,v 1.20 2016/10/18 14:41:15 taca Exp $
 bin/nokogiri${RUBY_SUFFIX}
 ${GEM_HOME}/cache/${GEM_NAME}.gem
 ${GEM_EXTSDIR}/gem.build_complete
@@ -8,8 +8,8 @@ ${GEM_LIBDIR}/.cross_rubies
 ${GEM_LIBDIR}/.editorconfig
 ${GEM_LIBDIR}/.gemtest
 ${GEM_LIBDIR}/.travis.yml
-${GEM_LIBDIR}/CHANGELOG.ja.rdoc
 ${GEM_LIBDIR}/CHANGELOG.rdoc
+${GEM_LIBDIR}/CONTRIBUTING.md
 ${GEM_LIBDIR}/C_CODING_STYLE.rdoc
 ${GEM_LIBDIR}/Gemfile
 ${GEM_LIBDIR}/LICENSE.txt
@@ -156,41 +156,6 @@ ${GEM_LIBDIR}/lib/nokogiri/xml/xpath_con
 ${GEM_LIBDIR}/lib/nokogiri/xslt.rb
 ${GEM_LIBDIR}/lib/nokogiri/xslt/stylesheet.rb
 ${GEM_LIBDIR}/lib/xsd/xmlparser/nokogiri.rb
-${GEM_LIBDIR}/patches/libxml2/0001-Revert-Missing-initialization-for-the-catalog-module.patch
-${GEM_LIBDIR}/patches/libxml2/0002-Fix-missing-entities-after-CVE-2014-3660-fix.patch
-${GEM_LIBDIR}/patches/libxml2/0003-Stop-parsing-on-entities-boundaries-errors.patch
-${GEM_LIBDIR}/patches/libxml2/0004-Cleanup-conditional-section-error-handling.patch
-${GEM_LIBDIR}/patches/libxml2/0005-CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch
-${GEM_LIBDIR}/patches/libxml2/0006-Another-variation-of-overflow-in-Conditional-section.patch
-${GEM_LIBDIR}/patches/libxml2/0007-Fix-an-error-in-previous-Conditional-section-patch.patch
-${GEM_LIBDIR}/patches/libxml2/0008-CVE-2015-8035-Fix-XZ-compression-support-loop.patch
-${GEM_LIBDIR}/patches/libxml2/0009-Updated-config.guess.patch
-${GEM_LIBDIR}/patches/libxml2/0010-Fix-parsering-short-unclosed-comment-uninitialized-access.patch
-${GEM_LIBDIR}/patches/libxml2/0011-Avoid-extra-processing-of-MarkupDecl-when-EOF.patch
-${GEM_LIBDIR}/patches/libxml2/0012-Avoid-processing-entities-after-encoding-conversion-.patch
-${GEM_LIBDIR}/patches/libxml2/0013-CVE-2015-7497-Avoid-an-heap-buffer-overflow-in-xmlDi.patch
-${GEM_LIBDIR}/patches/libxml2/0014-CVE-2015-5312-Another-entity-expansion-issue.patch
-${GEM_LIBDIR}/patches/libxml2/0015-Add-xmlHaltParser-to-stop-the-parser.patch
-${GEM_LIBDIR}/patches/libxml2/0016-Detect-incoherency-on-GROW.patch
-${GEM_LIBDIR}/patches/libxml2/0017-CVE-2015-7500-Fix-memory-access-error-due-to-incorre.patch
-${GEM_LIBDIR}/patches/libxml2/0018-CVE-2015-8242-Buffer-overead-with-HTML-parser-in-pus.patch
-${GEM_LIBDIR}/patches/libxml2/0019-Do-not-print-error-context-when-there-is-none.patch
-${GEM_LIBDIR}/patches/libxml2/0020-xmlStopParser-reset-errNo.patch
-${GEM_LIBDIR}/patches/libxml2/0021-Reuse-xmlHaltParser-where-it-makes-sense.patch
-${GEM_LIBDIR}/patches/libxslt/0001-Adding-doc-update-related-to-1.1.28.patch
-${GEM_LIBDIR}/patches/libxslt/0002-Fix-a-couple-of-places-where-f-printf-parameters-wer.patch
-${GEM_LIBDIR}/patches/libxslt/0003-Initialize-pseudo-random-number-generator-with-curre.patch
-${GEM_LIBDIR}/patches/libxslt/0004-EXSLT-function-str-replace-is-broken-as-is.patch
-${GEM_LIBDIR}/patches/libxslt/0006-Fix-str-padding-to-work-with-UTF-8-strings.patch
-${GEM_LIBDIR}/patches/libxslt/0007-Separate-function-for-predicate-matching-in-patterns.patch
-${GEM_LIBDIR}/patches/libxslt/0008-Fix-direct-pattern-matching.patch
-${GEM_LIBDIR}/patches/libxslt/0009-Fix-certain-patterns-with-predicates.patch
-${GEM_LIBDIR}/patches/libxslt/0010-Fix-handling-of-UTF-8-strings-in-EXSLT-crypto-module.patch
-${GEM_LIBDIR}/patches/libxslt/0013-Memory-leak-in-xsltCompileIdKeyPattern-error-path.patch
-${GEM_LIBDIR}/patches/libxslt/0014-Fix-for-bug-436589.patch
-${GEM_LIBDIR}/patches/libxslt/0015-Fix-mkdir-for-mingw.patch
-${GEM_LIBDIR}/patches/libxslt/0016-Fix-for-type-confusion-in-preprocessing-attributes.patch
-${GEM_LIBDIR}/patches/libxslt/0017-Updated-config.guess.patch
 ${GEM_LIBDIR}/patches/sort-patches-by-date
 ${GEM_LIBDIR}/suppressions/README.txt
 ${GEM_LIBDIR}/suppressions/nokogiri_ree-1.8.7.358.supp
@@ -204,6 +169,7 @@ ${GEM_LIBDIR}/test/css/test_tokenizer.rb
 ${GEM_LIBDIR}/test/css/test_xpath_visitor.rb
 ${GEM_LIBDIR}/test/decorators/test_slop.rb
 ${GEM_LIBDIR}/test/files/2ch.html
+${GEM_LIBDIR}/test/files/GH_1042.html
 ${GEM_LIBDIR}/test/files/address_book.rlx
 ${GEM_LIBDIR}/test/files/address_book.xml
 ${GEM_LIBDIR}/test/files/atom.xml
@@ -216,6 +182,7 @@ ${GEM_LIBDIR}/test/files/exslt.xml
 ${GEM_LIBDIR}/test/files/exslt.xslt
 ${GEM_LIBDIR}/test/files/foo/foo.xsd
 ${GEM_LIBDIR}/test/files/metacharset.html
+${GEM_LIBDIR}/test/files/namespace_pressure_test.xml
 ${GEM_LIBDIR}/test/files/noencoding.html
 ${GEM_LIBDIR}/test/files/po.xml
 ${GEM_LIBDIR}/test/files/po.xsd
@@ -262,7 +229,6 @@ ${GEM_LIBDIR}/test/test_css_cache.rb
 ${GEM_LIBDIR}/test/test_encoding_handler.rb
 ${GEM_LIBDIR}/test/test_memory_leak.rb
 ${GEM_LIBDIR}/test/test_nokogiri.rb
-${GEM_LIBDIR}/test/test_reader.rb
 ${GEM_LIBDIR}/test/test_soap4r_sax.rb
 ${GEM_LIBDIR}/test/test_xslt_transforms.rb
 ${GEM_LIBDIR}/test/xml/node/test_save_options.rb
@@ -294,6 +260,7 @@ ${GEM_LIBDIR}/test/xml/test_node_reparen
 ${GEM_LIBDIR}/test/xml/test_node_set.rb
 ${GEM_LIBDIR}/test/xml/test_parse_options.rb
 ${GEM_LIBDIR}/test/xml/test_processing_instruction.rb
+${GEM_LIBDIR}/test/xml/test_reader.rb
 ${GEM_LIBDIR}/test/xml/test_reader_encoding.rb
 ${GEM_LIBDIR}/test/xml/test_relax_ng.rb
 ${GEM_LIBDIR}/test/xml/test_schema.rb

Index: pkgsrc/textproc/ruby-nokogiri/distinfo
diff -u pkgsrc/textproc/ruby-nokogiri/distinfo:1.21 pkgsrc/textproc/ruby-nokogiri/distinfo:1.22
--- pkgsrc/textproc/ruby-nokogiri/distinfo:1.21 Tue Mar 15 15:45:46 2016
+++ pkgsrc/textproc/ruby-nokogiri/distinfo      Tue Oct 18 14:41:15 2016
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.21 2016/03/15 15:45:46 taca Exp $
+$NetBSD: distinfo,v 1.22 2016/10/18 14:41:15 taca Exp $
 
-SHA1 (nokogiri-1.6.7.2.gem) = d6a374a969abd6105d19076558e57a5cbb10e484
-RMD160 (nokogiri-1.6.7.2.gem) = e7e531b522128552d042d024c483b878626aca07
-SHA512 (nokogiri-1.6.7.2.gem) = 27f72763f4f572b9a7042b48bd3a7a7516773eda128be603b8316e8ecaef42028f3d3a190947011cc6973fa4a43265a56f4b563bf28a8b2739b470cc19cee6cd
-Size (nokogiri-1.6.7.2.gem) = 9276928 bytes
+SHA1 (nokogiri-1.6.8.1.gem) = 63111f6eda5a7cbe442e2b6ec6c492250da9fa39
+RMD160 (nokogiri-1.6.8.1.gem) = c89c370d1a866fb7e2de9062459b76e99882e52a
+SHA512 (nokogiri-1.6.8.1.gem) = 6a87f16bd01dfec1da442dd6d8c87f06c61dec42c3a5042145d7b9a1e3e553ca59bcc59cb881587301e33b9a3a3a0615f12dd77562a1120862a87cd8061d0a0d
+Size (nokogiri-1.6.8.1.gem) = 9147904 bytes

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index