Log message:
python*: Avoid configure test for POSIX semaphores on Linux.

This attempts to build and run a program that uses POSIX semaphores.

This fails in a pbulk sandbox that doesn't contain /dev/shm, resulting
in a broken package where the idea that the platform doesn't support
POSIX semaphores is baked in forever. In newer Python versions,
this means Python doesn't even build properly.

XXX: We might want to avoid it on other platforms too...

Log message:
Avoid MemoryError from "import ctypes" on OpenBSD (PR pkg/55134) for all
applicable Pythons. Bump PKGREVISION.

Log message:
python36 py36-html-docs: updated to 3.6.12

Python 3.6.12 final

Security
bpo-29778: Ensure python3.dll is loaded from correct locations when Python is \ 
embedded (CVE-2020-15523).
bpo-41004: CVE-2020-14422: The __hash__() methods of ipaddress.IPv4Interface and \ 
ipaddress.IPv6Interface incorrectly generated constant hash values of 32 and 128 \ 
respectively. This resulted in always causing hash collisions. The fix uses \ 
hash() to generate hash values for the tuple of (address, mask length, network \ 
address).
bpo-39603: Prevent http header injection by rejecting control characters in \ 
http.client.putrequest(…).

Library
bpo-41288: Unpickling invalid NEWOBJ_EX opcode with the C implementation raises \ 
now UnpicklingError instead of crashing.
bpo-39017: Avoid infinite loop when reading specially crafted TAR files using \ 
the tarfile module (CVE-2019-20907).

Log message:
Note that the need for this patch appears self-induced.

Log message:
On systems where both of the conditions

1. LD_LIBRARY_PATH does _not_ take precedence over DT_RPATH
   (e.g. Linux)
2. A previous libpython with the same major.minor is already installed
   (e.g. a previous version of this package)

hold, the built python will be linked with the installed libpython,
causing it to report an old teeny version in sys.version_info while
staging the install. Then "make package" fails with PLIST mismatches for
{,Pattern}Grammar.*.pickle.

pkgsrc knows which version we're building. Pass that down instead.

For platforms that weren't having this problem, no functional change
intended. For platforms that were, this simply restores "make package",
so no PKGREVISION bump.

Log message:
python36: updated to 3.6.11

Python 3.6.11 final

There were no new changes in version 3.6.11.

Python 3.6.11 release candidate 1

Security
bpo-39073: Disallow CR or LF in email.headerregistry.Address arguments to guard \ 
against header injection attacks.
bpo-38576: Disallow control characters in hostnames in http.client, addressing \ 
CVE-2019-18348. Such potentially malicious header injection URLs now cause a \ 
InvalidURL to be raised.
bpo-39503: CVE-2020-8492: The AbstractBasicAuthHandler class of the \ 
urllib.request module uses an inefficient regular expression which can be \ 
exploited by an attacker to cause a denial of service. Fix the regex to prevent \ 
the catastrophic backtracking. Vulnerability reported by Ben Caller and Matt \ 
Schwager.
bpo-39401: Avoid unsafe load of api-ms-win-core-path-l1-1-0.dll at startup on \ 
Windows 7.

Core and Builtins
bpo-39510: Fix segfault in readinto() method on closed BufferedReader.
bpo-39421: Fix possible crashes when operating with the functions in the heapq \ 
module and custom comparison operators.
Library
bpo-39503: AbstractBasicAuthHandler of urllib.request now parses all \ 
WWW-Authenticate HTTP headers and accepts multiple challenges per header: use \ 
the realm of the first Basic challenge.

Log message:
python*: findlib subst class can be a noop

It is licit to be a noop for findlib subst class when PREFIX is
`/usr/local'.

Thanks to <jklos>! (via PR pkg/54758)

Log message:
document non-obvious readline build dependency

Log message:
python3*: link pydoc in ALTERNATIVES instead of pydoc3

Log message:
Revbump packages depending on libffi after .so version change.

Requested by Matthias Ferdinand and Oskar on pkgsrc-users.