Don't hardcode STRIP unconditionally [1].  Instead, respect the build
environment's settings.

Add a DEBUG option.

Based on patch from:	tobik [1]
Requested by:	Leander Schafer <info netocean de>

Add a patch to improve Outlook interoperability at expense of possible
RFC violation.  This patch is optional and not enabled by default.

For detailed discussion please follow:

	http://www.openldap.org/lists/openldap-technical/201211/msg00175.html

Requested by:	Tim Gustafson <tjg ucsc edu>

Fix build when ODBC is enabled.

Submitted by:	madpilot

Add CPE information.

Submitted by:	shun
PR:		ports/197468

Apply two upstream patches to address two remote DoS issues:

 - ITS8027: crash when a search includes the Deref control with an
   empty attribute list.
 - ITS8046: double free and crash by certain search queries using
   the Matched Values control.

MFH:	2015Q1

 - Fix Perl dependency by converting the port from using
   bsd.port.{pre,post}.mk to options.mk. [1]
 - Fix build with LibreSSL. [2] [3]
 - Make LM Password optional and disable by default. [3]

Reported by:	Lorenzo Perone <lorenzo.perone@bytesatwork.com> [1],
		brd [1]
Submitted by:	spil.oss@gmail.com [2]
PR:		194841 [3]

 - Make the example slapd.conf use mdb as examples.
 - Remove BDB dependency from default build.

Blacklist BDB 6.

Reported by:	Gerard E. Seibert <gerard seibercom net>

Allow installing contrib modules in a different prefix than /usr/local

PR:		194160
Submitted by:	jhujhiti@adjectivism.org

Update to 2.4.40.

Install smbk5pwd and pw-sha2 modules using make install such that the
libtool libraries are installed correctly.

Replace USE_AUTOTOOLS=libltdl with an ordinary LIB_DEPENDS in all ports.
There are only 60 such ports so there doesn't need to be a separate
keyword or USES for this.

Approved by:	portmgr (bapt)

Fix packaging

cleanup openldap24-server / client

- pre-su-instal no longer required with staging (replaced with pre-install)
- pkg-install was removed in r295334, so remove the part in Makefile
- handle schema.sample files during install and use the @sample keyword
- use %%ETCDIR%% in pkg-plist
- bump PORTREVISION

PR:		193439
Submitted by:	ohauer
Approved by:	delphij

Simplify plist

Fix up missed or botched PORTREVISION bumps from r365599.
Apparently Tools/scripts/bump-revision.sh isn't too robust...

PR:		192690

Berkeley DB cleanup, remove versions 4.0 ... 4.7.
- Mk/bsd.database.mk rewrite, new default to db5.
- db6 is eligible by default only if installed on the system.
- Bump PORTREVISION of all ports that directly depend on BerkeleyDB or
  where USE_BDB is found in the port's directory
- Patch a few ports such that they will pick up or work with newer
  versions.
- Add UPDATING entry
- Drive-by format fix for pks
- Drop BerkeleyDB option from mail/popular for now, requires more work.
- Exp-run logs linked from the PR below.
- Ports that do not build (IGNORE, BROKEN, etc.) have pro-forma changes
  for new Berkeley DB, but are untested.

NOTE: please read UPDATING and the Wiki page before proceeding!

Announcement:	http://lists.freebsd.org/pipermail/freebsd-ports-announce/2014-August/000090.html
Wiki reference:	https://wiki.freebsd.org/Ports/BerkeleyDBCleanup
PR:		192690
Approved by:	portmgr (implicit, PORTREVISION bump on unstaged ports)

Rename all patches that contain '::' as a path separator, and use
'__' instead.

- fix libtool -> libtool:keepla leftovers
  no bump required because no default option where affected

Noted on ports@ by Oliver Hartmann

net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample

Fix some non default LIB_DEPENDS

With hat:	portmgr

Modernize LIB_DEPENDS

Support LIBS like LDFLAGS.

- Add LIBS="${LIBS}" to MAKE_ENV and CONFIGURE_ENV.
- Add an option helper for LIBS.
- Adjust all ports that already use LIBS.  Also remove references to
  PTHREAD_CFLAGS and PTHREAD_LIBS while here.
- Some ports did not support having a LIBS environment variable and
  required additional patches.

Somewhat simplified a linker command line looks like:

${CC} ${src_LDFLAGS} ${LDFLAGS} ${src_LIBS} ${LIBS}

where src_LDFLAGS and src_LIBS are controlled by upstream and LDFLAGS and
LIBS can be controlled by us.  If possible -L and -l flags need to be

 - Add support to GSSAPI (implies SASL).

PR:		ports/189470
Submitted by:	zi

Fix unixODBC vs libiodbc conflicts

Always rely on unixODBC each time a port is looking for libodbc.so
Remove odbc compat from libiodbc
This allows to install both kde and gnome at the same time

While here:
- Convert libiodbc to USES=libtool
- Convert a bunch of libiodbc dependencies to USES=libtool
- Chase libiodbc.so shlib change
- Stagify some ports
- Convert some ports to USES=pgsql

Discussed with:	rakuco (kde)
With hat:	portmgr

Convert all :U to :tu and :L to :tl

Since FreeBSD 8.4 and FreeBSD 9.1 make(1) do support :tu and :tl as a
replacement for :U and :L (which has been marked as deprecated)

bmake which is the default on FreeBSD 10+ only support by default
:tu/:tl a hack has been added at the time to support :U and :L to ease
migration. This hack is now not necessary anymore

Note that this makes the ports tree incompatible with make(1) from
FreeBSD 8.3 or earlier

With hat:	portmgr

Require BDB >= 4.4.

Submitted by:	des

For some reason, having an ` in BROKEN/FORBIDDEN/IGNORE breaks QAT badly.

With hat:	portmgr

Remove DEBUG option for now as it have broke syslog capability.

Reported by:	many

Update OpenLDAP to 2.4.39.

While I'm there, make OpenLDAP daemon start earlier than SERVERS, right
after ldconfig.

Spring cleanup of OpenLDAP 2.4 port:

 - Fix various issues introduced with staging support.
 - Build MDB backend by default, this will become new preferred backend
   and BerkeleyDB backend is now deprecated.

- Unbreak sasl support

PR:		186376

- Stage support

Reviewed by:	mat (via a crappy vnc session and it looked nice :-p)

Fix properties on pkg-plist

Support building against Berkeley DB 6.x.

PR:		ports/185630
Submitted by:	Yasuhiro KIMURA <yasu utahime org>

Add a patch from OpenLDAP ITS 7249 [1] which addresses crash issue
with OpenLDAP 'memberof' overlay.

Pointed out by:	oshogbo

[1] http://www.openldap.org/lists/openldap-bugs/201205/msg00002.html

Update to 2.4.38.

Update to 2.4.37

Don't overwrite existing schema when they already do.

PR:		ports/177016
Submitted by:	pclin

Add NO_STAGE all over the place in preparation for the staging support (cat:
net)

- convert to the new perl5 framework
- convert USE_GMAKE to Uses

Approved by:	portmgr (bapt@, blanket)

Don't assume that the user have gcc and do not override default CFLAGS.

PR:		ports/181929
Reported by:	O. Hartmann <ohartman zedat fu-berlin de>

Update to 2.4.36.

- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)

Add http mirrors as last resort option.

PR:		ports/179153
Submitted by:	brd

Add an option to build SHA2 modules.

PR:		ports/178268
Submitted by:	Mike Carlson <mike bayphoto com>

Do not try to remove a directory not created or existing

Reported by:	pkg (PKG_DEVELOPER_MODE)

Update to 2.4.35.

Feature safe:	yes

Fixup for previous commit to fix installation issues reported by several
users.

 - Split server and client manual pages (OpenLDAP ITS #7548) [1]
 - Minor fixup to plist

PR:		ports/176924 [1]
Submitted by:	Andriei Romanienko <melanhit gmail com> [1]

 - Fix build when SMBPASSWD is checked [1];
 - Use OPTIONSFILE?= instead of OPTIONSFILE= [2].

PR:		ports/176873 [1]
Submitted by:	"A.J. Kehoe IV (Nanoman)" <nanoman nanoman ca> [2]

Fix version range representation.

Update OpenLDAP to 2.4.34.

Variable that start with _ are considered private to the defining
makefile and may not be used by ports makefiles.
In addition, avoid problems should the defaults ever change.

Approved by:	portmgr (tabthorpe)

The port only installs certain documentation file with the client slave
port, so cover these to CLIENT case.

Noticed by:	remko (via pkgng)

Avoid setting PKGNAMESUFFIX late, which in turn changes UNIQUENAME and
causes OPTIONS menu to be shown up multiple times.

As a side effect we have to make openldap24-client and
openldap24-sasl-client which we do not have a better solution at this
time.

Submitted by:	bapt (mostly)

Update cyrus-sasl2 to 2.1.26.
This bumps shlib version of libsasl2.

 o Correct typo.

PR:		ports/173663
Submitted by:	Chris Mikkelson <cmikk uerige.oss.uswest.net>
Feature safe:	yes

Update to 2.4.33.

Feature safe:	yes

fix plist for use with pkg.

PR:		ports/172387
Submitted by:	kwm

Apply a vendor fix to mdb initialization crash.

Move the rc.d scripts of the form *.sh.in to *.in

Where necessary add $FreeBSD$ to the file

No PORTREVISION bump necessary because this is a no-op

DYNAMIC_BACKEND should be in the default.

Submitted by:	sunpoet

Don't remove schema if they are modified.

PR:		ports/170300
Submitted by:	ohauer

Update to 2.4.32, while I'm there, convert to OptionsNG

Don't override UNIQUENAME.  Without this, -client slave will overwrite
-server configurations.

Reported by:    crees

Wrap USERS and GROUPS within !CLIENT_ONLY, the user credential
is only required for server.

 - Allow building with MDB option;
 - Fixup for plist;
 - Remove sites that no longer carries distfiles;
 - Use USERS/GROUPS to eliminate duplicated code in pkg-install
 - Update to 2.4.31[1]

PR:             ports/167102
Submitted by:   Hirohisa Yamaguchi <umq ueo co jp>, myself [1]

Update to 2.4.30.

Don't list LDAP_RUN_DIR as required_dirs since we will create it.

PR:             ports/166492
Noticed by:     "O. Hartmann" <ohartman mail zedat fu-berlin de>
Feature safe:   yes

Create LDAPRUNDIR before starting.

Requested by:   Oliver Hartmann <ohartman zedat fu-berlin de>
PR:             ports/166492
Feature safe:   yes

Allow building with Berkeley DB 5.x based on popular demands.

Feature safe:   yes

Remove a duplicate @dirrmtry, as spotted by pkg2ng.

Note that this does not actually affect packaging (by
accident) so no PORTREVISION bump is done.

Noticed by:     Anton Shterenlikht <mexas@bristol.ac.uk>
Feature safe:   yes

- Chase unixODBC shlib bump

In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.

- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav

Pet portlint(1).

Add license.

Update to 2.4.26.

Remove painful examples of foo="", with particular prejudice against
constructions that parse out to [ -z "$foo" ] && foo=""

These are bad examples that get copied and pasted into new code, so the
hope is that with less bad examples there will be less need for me to
bring this up in review.

In a few of these files all that were changed were comments so that next
time I search for these patterns I won't trip on the file for no reason.

In a few places, add $FreeBSD$

No functional changes, so no PORTREVISION bumps

inet_ntoa is not thread-safe as it uses a static store, which may
result in a race condition, where for instance an IP based ACL
might result in a denial decision.

Fix this by changing these inet_ntoa's to inet_ntop with on-stack
store.

Reported by:    Damian Hazen <dhazen lbl.gov>

Make OpenLDAP libraries link against libfetch when requested and not only
binaries linking against liblutil.  This should fix build issue when FETCH
is enabled.

Prompted by:    kib

Disable FETCH support by default, as it adds a new requirement to fetch(3)
library which is unexpected by most applications.

Update to 2.4.25.

Add a patch from OpenLDAP ITS 6832 to fix build when the user uses a custom
GCC version.

PORTREVISION intentionally not bumped because this does not affect compiled
binary.

PR:             ports/155743
Submitted by:   mm

Update OpenLDAP to 2.4.24.

Unfortunately this version requires a shared library version bump again.

Sync to new bsd.autotools.mk

Previous patch was:

Submitted by:   Alexander Kriventsov <avk vl ru>

WITH_SMBPWD should apply only when building servers.

PR:             ports/148936

Update to 2.4.23.  This is a pure bugfix release that addresses several
reliability issues.

Feature safe:   yes

 - SASL is not default since 2007 so remove an unneeded test about WITHOUT_SASL
   which causes confusion that defining WITHOUT_SASL as building
   openldap24-sasl-client would get you openldap24-client.
 - Add an option to build without fetch(3) library, which in turn depends on
   base OpenSSL. [1]
 - Promote SASL and FETCH options to be on both client and library ports.
 - Both SASL and FETCH remains their defaults (no and yes) so no PORTREVISION
   bump.

PR:             ports/145337 [1]
Feature safe:   yes

Mark Berkeley DB 5.0 as invalid combination for now.  OpenLDAP does not
officially supports this (yet).

Note that BDB 5.0 do work with OpenLDAP with some trivial tweaks to the
configure scripts.

Update to 2.4.22

RC_SUBR_SUFFIX has not been needed for a long time now, all supported
versions of FreeBSD now use /etc/rc.subr and rc.d scripts without .sh
appended to the script name.

Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#

Update to 2.4.21.

Sponsored by:   iXsystems, Inc.

Update to 2.4.20.

Sponsored by:   iXsystems, Inc.

Update to 2.4.19.

Use same logic when creating the name for client package, as what we have
used in building 'em.

PR:             ports/135622
Submitted by:   Christian Ullrich <chris+freebsd chrullrich net>

Add a missing / or otherwise the generated script would point to wrong
directory.

PR:             ports/138618
Reported by:    Alexander Wittig <alexander wittig name>