Pull up the following revisions(s) (requested by riastradh in ticket #2035):
lib/libc/citrus/modules/citrus_viqr.c: revision 1.10
lib/libc/citrus/modules/citrus_iconv_std.c: revision 1.18
iconv(3): Fix use-after-free in VIQR encoding, and incorrect
mbstate_t allocation alignment in various encodings (triggerable
if the source is VIQR).
Fixes:
- PR lib/59019: various iconv issues
- PR lib/60413: iconv_samples test crashes on sparc*
Pull up the following revisions(s) (requested by riastradh in ticket #1308):
lib/libc/citrus/modules/citrus_viqr.c: revision 1.10
lib/libc/citrus/modules/citrus_iconv_std.c: revision 1.18
iconv(3): Fix use-after-free in VIQR encoding, and incorrect
mbstate_t allocation alignment in various encodings (triggerable
if the source is VIQR).
Fixes:
- PR lib/59019: various iconv issues
- PR lib/60413: iconv_samples test crashes on sparc*
Update widelands to 1.3.1
From Paul Ripke in pkgsrc-wip + ctype() patch.
Sole consumer of asio. rm:-Wold-style-cast still needed after its update.
Highlights in release 1.3.1
This point release fixes a severe multiplayer desync found in Widelands 1.3.
Note that it is not possible to combine the versions 1.3 and 1.3.1 in a
network game.
Highlights in release 1.3
Since the release of version 1.2, we implemented several hundreds of new
features and bugfixes; for example, to name just a few of the highlights:
- Market trading
[10 lines not shown]
py-test-rerunfailures: updated to 16.4
16.4 (2026-07-01)
Breaking changes
- Drop support for pytest 8.1. Minimum pytest version is now 8.2.
Features
- Add support for pytest 9.1.
- Rerun tests with failed subtests. This feature is only available on pytest 9.0
and later. The pytest-subtests plugin is *not* supported.
- Add ``--reruns-delay-backoff-factor`` option (and the matching
``reruns_delay_backoff_factor`` marker kwarg / ini setting) to grow the rerun
delay after each attempt for an exponential backoff. The delay before the
*n*-th re-run is ``reruns_delay * reruns_delay_backoff_factor ** (n - 1)``.
[2 lines not shown]
ansible: updated to 14.1.0
14.1.0
Major Changes
community.clickhouse
- clickhouse_named_collection - new module to add/modify/delete named collections in database.
vmware.vmware_rest
- Update minimum required ansible-core version to 2.16 in meta/runtime.yml
resterm: Update to 0.45.1
Vim-Style Command Line
Added a Vim-like command line to the TUI. Press : from normal-mode panes to run common actions such as :w, :q, :q!, :wq, :x, :e, :help, and :noh.
Search UX
Search behavior now more closely follows Vim: opening / starts with an empty prompt while keeping the previous search available for match navigation, and clearing the live search input clears current highlights.
The search prompt UI was also simplified by removing the extra search icon. This release also includes theming support.
dropbear: updated to 2026.92
2026.92 - 6 July 2026
Note >> for compatibility/configuration changes
- >> server auth plugins have been deprecated, the configure option
has been renamed to --enable-plugin-deprecated.
Planned to be removed in future.
- >> Two factor auth "-t" has been deprecated, it now requires
a configuration option DEPRECATED_TWO_FACTOR.
Planned to be removed in future.
- Security: server: Don't allow -B (accept blank password) with
-t (two factor auth). If run with -t and -B a user configured with a
blank password would be allowed to log in without pubkey auth.
https://github.com/mkj/dropbear/commit/23ec78285639edf068d86bb96f91cba755039740
Reported by nvidia
[61 lines not shown]
octgpio: OCTEON GPIO controller driver
Port of OpenBSD octgpio(4) (Visa Hankala) onto the NetBSD fdtbus
gpio controller API.
Deviations from the OpenBSD original, per the SDK CSR definitions:
CN63XX/CN68XX and CN38/52/56/58XX have 16 pins and no XBIT_CFG
registers. The OUTPUT_SEL output mux is cleared only on CN70XX and
newer, where it exists.
Attach at pass 3 so consumers (octmmc cd-gpios) find the controller
registered. Primary motivation is SD card-detect on boards with a
real MMC slot but could drive LEDs and other features later.
Reviewed by skrll@
: ----------------------------------------------------------------------
Pull up the following revisions(s) (requested by msaitoh in ticket #2036):
usr.sbin/syslogd/extern.h: revision 1.5
usr.sbin/syslogd/sign.c: revision 1.10
usr.sbin/syslogd/sign.h: revision 1.4
usr.sbin/syslogd/syslogd.c: revision 1.132,1.137,1.139,1.141,1.145,1.148,1.151-1.155 via patch
usr.sbin/syslogd/syslogd.h: revision 1.10-1.11 via patch
usr.sbin/syslogd/tls.c: revision 1.18,1.20,1.26-1.27
usr.sbin/syslogd/tls.h: revision 1.4
Some improvements for syslogd(8):
- Retry sendto() if it raises EBUSY, too.
- Add missing SLIST_INIT() in main(). This is not a real bug because
the tls_opt is in BSS and SLIST_INIT() assign NULL.
- Cleanups (KNF, fix typos and G.C.).
Pull up the following revisions(s) (requested by msaitoh in ticket #1307):
usr.sbin/syslogd/tls.c: revision 1.22-1.25
syslogd: Fix memory leak in match_certfile().
Use X509_free() to deallocate certfile data in init_global_TLS_CTX().
Fix mem-leak of match_hostname(). ASN1_OCTET_STRING must be deallocated.
Fix memory-leak during tls_send().
Found and fixed by Masakazu OOHASHI at IIJ.
patchelf: updated to 0.19.1
0.19.1
A small bug fix release for --build-resolution-cache.
Bug fixes
--build-resolution-cache: run-path entries that only resolve at run time are now recorded as search hints in run-path order instead of being dropped or baked in as bogus exact entries, so cached resolution keeps the semantics of a plain run-path walk. This covers empty and relative components, absolute directories absent at patch time (such as /run/opengl-driver/lib on NixOS), trailing empty components, and entries that exist but are not searchable directories when patching.
Pull up the following revisions(s) (requested by msaitoh in ticket #1306):
usr.sbin/syslogd/syslogd.c: revision 1.149-1.150
Fix a bug that tls_ca mistakenly matches tls_cadir.
Fix incorrect comparison in buf_queue_obj_size().
Found and fixed by Masakazu OOHASHI at IIJ.
mkvtoolnix: updated to 100.0
Version 100.0 "Do Hot Girls Like Chords" 2026-07-05
New features and enhancements
* all: added new scalable (SVG) application icons for all applications,
replacing the existing pixmap (PNG, ICO) icons. Icons from Sarreq
Teryx.
* mkvmerge: MP4 reader: track names are now read from the track's user-data
atoms (`trak` → `udta` → `name`) if present.
* MKVToolNix GUI: executing actions configuration, type "play audio file":
added a slider to make configuration more intuitive.
* MKVToolNix GUI: executing actions: macOS only: the GUI will now use bundled
audio files for "play audio file" actions that Qt can play instead of using
macOS's system sounds.
* MKVToolNix GUI: executing actions: Windows only: added a new type: executing
a PowerShell script. Either an existing script file can be selected or
custom PowerShell script code entered in a small editor. The executed script
[44 lines not shown]
Update asio to 1.36.0
Gymnastics due to:
x asio-1.36.0/doc/proactor.png: Cannot restore extended attributes: com.apple.quarantine com.apple.quarantine com.apple.lastuseddate#PS com.apple.lastuseddate#PS: Unknown error: -1
No real highlights
Full release notes at:
https://think-async.com/Asio/asio-1.36.0/doc/asio/history.html#asio.history.asio_1_36_0