Update devel/objfw to 1.5.3
ObjFW 1.5.2 -> ObjFW 1.5.3, 2026-05-20
* Fixes OFForwardingTests on Windows with GCC.
* Fixes OFHTTPCookieManager which was completely broken.
* OFHTTPServer refuses to send responses that contain a newline in the
headers or the server name now.
* Fixes setting the Amiga Comment to nil in OFMutableTarArchiveEntry.
* Improves handling of truncated archives in OFLHAArchiveEntry.
* OFThread no longer inherits the priority on AmigaOS.
* Uses better source for randomness now to find a free port on platforms that
can't bind to port 0.
* ofarc now strips drives from the paths it stores inside the archive.
* Fixes ofarc failing to create ZIP archives with specific paths on AmigaOS.
* Fixes ofarc incorrectly storing Amiga Protection in ZIP archives.
axen.4: note examples of presently unsupported features
(These could go under a bugs section, but it perhaps makes more sense
to keep all this information together.)
shells/powerlevel10k: Fix build with GCC 14 in bundled gitstatus
Add patches for gitstatus src/index.cc and src/tag_db.cc to resolve
GCC 14 build failures. Update distinfo with patch checksums.
lang/gcc16: Guard Linux-only open(2) flags with #ifdef for NetBSD portability
Adds patch to libgcobol/posix/shim/open.cc to wrap O_DIRECT, O_LARGEFILE,
O_NOATIME, O_PATH and O_TMPFILE in #ifdef guards; these flags are
Linux-specific and not defined on NetBSD.
axen.4: add and adjust examples of supported devices
Noted to work with TP-Link UE300 (those that come with ASIX chips,
apparently some come with an RTL8153) and UE306. While here, also
correct the transliteration of "Kuroutoshikou", following OpenBSD.
misc/DeepSeek-TUI: Add deepseek-tui version 0.8.39
Packaged in wip by Chavdar Ivanov and Claude Code.
Rust-based terminal coding agent for Deep-Seek V4.
tcp: set initial RTO to 1s per RFC 6298
Lower TCPTV_SRTTDFLT from 3s to 1s and adjust the t_rttvar seed in
tcp_tcpcb_template() so the pre-measurement TCP_REXMTVAL() equals
TCPTV_SRTTDFLT (was 2*TCPTV_SRTTDFLT). Active opens and SYN|ACK
retransmits now start at 1s and back off 1, 2, 4, ... per RFC 6298
sections 2.1 and 5.5. Post-first-sample RTO is unchanged.
Pin tcp_msl_remote_threshold to its previous numeric default (3*PR_SLOWHZ)
so the SRTTDFLT change does not move an unrelated TIME_WAIT-shortening
tunable.
This is conceptually https://reviews.freebsd.org/D18941 which we ran at a
large CDN, modified for NetBSD's stack.
py-music21: update to 10.1.0
Music21 v10 (10.1.0) is released. This release has small backwards incompatibilities, but is mostly focused on improved typing, better MIDI support, and improved features for using modern tooling (uv especially) and AI agents and assistants.
I'm very proud of the improvements that the new deprecations and updates have been able to make! 10 in music21 v.10 is a big number, representing decades since the first release, so I'm so proud of release teams and contributors for making this happen.
Other important changes.
MIDI in Jupyter notebooks supports playback w/ multiple instruments via music21j and soundfonts. - playback is versioned so future music21j changes will not affect the routine.
Humdrum spineParser module major improvements, esp. to repeates.
Modern Python packaging. Fully migrated to uv: pyproject.toml now controls dev dependencies.
lots of better typehints.
What else's Changed
MusicXML ChordSymbol.placement round trips.
Drop support for py 3.10 - add support for Python 3.14. #1819
Add metadata.primitives.convertValue and metadata.primitives.DatePrimitive by @mscuthbert in #1820
Remove networkX functions. Refactor RichMD.scoreQuarterLength by @mscuthbert in #1821
Remove some deprecated functions: runningUnderIPython -> runningInNotebook common.lcm -> math.lcm
[51 lines not shown]
Import bind 9.20.23 (previous was 9.20.22)
Security Fixes
Limit resolver server list size. (CVE-2026-3592)
When resolving a domain with many nameservers that shared overlapping
IP addresses (e.g., 10 NS records all pointing at the same set of
addresses), BIND could previously waste time querying duplicate
addresses and build up excessively large server lists. Addresses
in the resolver's server list are now deduplicated so that each
unique IP is only queried once per resolution attempt, regardless
of how many NS records point to it. The number of addresses stored
per nameserver name is also now capped at six (combined A and AAAA),
preventing memory and CPU overhead from domains with unusually
large NS/glue sets.
ISC would like to thank Shuhan Zhang from Tsinghua University for
reporting this issue. [GL #5641]
[222 lines not shown]
lang/go126: Avoid excessive parallism
Tell "go build" to use at most ${MAKE_JOBS} threads, instead of the
vastly higher number that it tends to use, at least on machines with
many CPUs. This meets the intent of MAKE_JOBS because there is only
one "go build" process.
As discussed on tech-pkg@ with no $MAINTAINER objection.
bind920: update to version 9.20.23.
Pkgsrc changes:
* None, other than checksum changes.
Upstream changes:
BIND 9.20.23
------------
Security Fixes
~~~~~~~~~~~~~~
- Fix outgoing zone transfers' quota issue. ``1006b044b7``
Unauthorized clients could consume outgoing zone transfers quota and
block authorized zone transfer clients. This has been fixed.
:gl:`#3589`
[344 lines not shown]
