OpenBSD/ports dZim1Y3security/libassuan Makefile

   Take maintainership
VersionDeltaFile
1.29+3-0security/libassuan/Makefile
+3-01 files

OpenBSD/ports toR8sDex11/tk tk.port.mk

   Add Tk 9.

   Use string comparisons because (9 == 9.0) but ("9" != "9.0").
   Hardcode some version numbers for simplicity.


   ok gkoehler@
VersionDeltaFile
1.18+7-4x11/tk/tk.port.mk
+7-41 files

OpenBSD/ports h5YAS4bx11/tk Makefile

   +9
VersionDeltaFile
1.10+1-0x11/tk/Makefile
+1-01 files

OpenBSD/ports jqOuWQ2x11/tk/9 Makefile, x11/tk/9/patches patch-unix_Makefile_in patch-unix_configure

   Initial revision
VersionDeltaFile
1.1+605-0x11/tk/9/pkg/PLIST
1.1+60-0x11/tk/9/Makefile
1.1+50-0x11/tk/9/patches/patch-unix_Makefile_in
1.1+46-0x11/tk/9/patches/patch-unix_configure
1.1+19-0x11/tk/9/patches/patch-library_tk_tcl
1.1+15-0x11/tk/9/patches/patch-unix_tk_pc_in
+795-012 files not shown
+816-018 files

OpenBSD/ports aY8iY9Nlang/tcl tcl.port.mk

   Add Tcl 9.

   Use string comparisons because (9 == 9.0) but ("9" != "9.0").
   Hardcode some version numbers for simplicity.


   ok gkoehler@
VersionDeltaFile
1.21+7-4lang/tcl/tcl.port.mk
+7-41 files

OpenBSD/ports OnBwNF5lang/tcl Makefile

   +9
VersionDeltaFile
1.10+1-0lang/tcl/Makefile
+1-01 files

OpenBSD/ports 44w6yU8lang/tcl/9 Makefile, lang/tcl/9/patches patch-unix_Makefile_in patch-unix_configure

   Import Tcl 9.0.3.


   Tcl 9 arrives with 64-bit sizes, improved Unicode, ZIP filesystems,
   and too many other additions and improvements to list here.

   The Tcl 9 port is essentially the same as the Tcl 8.* ports, except:
   The port and some installed files and directories are simply "9", not "9.0".
   Future versions will also be "9", not separate "9.1", "9.2", etc.

   Many script extensions and programs will continue to work with 9.
   Binary extensions compiled against 8.* cannot be loaded into 9.


   https://sourceforge.net/projects/tcl/files/Tcl/9.0.0/tcl-release-notes-9.0.0.md
   https://sourceforge.net/projects/tcl/files/Tcl/9.0.1/tcl-release-notes-9.0.1.md
   https://sourceforge.net/projects/tcl/files/Tcl/9.0.2/tcl-release-notes-9.0.2.md
   https://sourceforge.net/projects/tcl/files/Tcl/9.0.3/tcl-release-notes-9.0.3.md


    [2 lines not shown]
VersionDeltaFile
1.1+1,136-0lang/tcl/9/pkg/PLIST
1.1+102-0lang/tcl/9/pkg/README
1.1+79-0lang/tcl/9/patches/patch-unix_Makefile_in
1.1+63-0lang/tcl/9/Makefile
1.1+20-0lang/tcl/9/patches/patch-unix_configure
1.1+20-0lang/tcl/9/patches/patch-library_tm_tcl
+1,420-014 files not shown
+1,461-020 files

OpenBSD/ports P0IRf4isysutils/docker-compose distinfo modules.inc

   sysutils/docker-compose: update to 5.0.1

   Upstream rationalize 2.40.x -> 5.0.0 jump in version as:

   > We decided to skip 3.0.0 for next major release after docker Compose v2 to
   > prevent (more) confusion with the obsolete docker-compose file versions
   > 2.x and 3.x inherited from Docker Compose v1. We also skipped 4.0.0 to
   > have a clear separation with this legacy.
VersionDeltaFile
1.29+660-694sysutils/docker-compose/distinfo
1.25+456-474sysutils/docker-compose/modules.inc
1.31+2-2sysutils/docker-compose/Makefile
+1,118-1,1703 files

OpenBSD/src w8L7RvWsys/arch/i386/i386 pmap.c

   Introduce pmap_start_tlb_shoot() from amd64 to make the tlb shootdown
   code more similar because a fix is coming and we'd rather place it in
   that inline function than replicate it numerous times.
   ok kettenis
VersionDeltaFile
1.230+45-27sys/arch/i386/i386/pmap.c
+45-271 files

OpenBSD/src wYPsSkSsys/arch/amd64/amd64 lapic.c

   On Intel CPUs writes to the x2APIC MSRs are non-serializing.  This means
   that writes done before sending an IPI may not be visible to other CPUs
   because of out-of-order execution of the MSR write that triggers the IPI.
   Add a "mfence; lfence" barrier like Linux has to prevent this unexpected
   trap.

   ok deraadt@, mlarkin@, mpi@
VersionDeltaFile
1.77+2-1sys/arch/amd64/amd64/lapic.c
+2-11 files

OpenBSD/ports xa1cWQbjava/gradle Makefile

   Run with jdk 11+. ok op@
VersionDeltaFile
1.16+2-1java/gradle/Makefile
+2-11 files

OpenBSD/src IcBOuA5sys/arch/amd64/amd64 cpu.c

   remove unused Xsyscall32 extern, var removed in locore.S rev 1.146
VersionDeltaFile
1.203+2-2sys/arch/amd64/amd64/cpu.c
+2-21 files

OpenBSD/ports bvf9ztNnet Makefile

   + bgp-perf
VersionDeltaFile
1.1451+1-0net/Makefile
+1-01 files

OpenBSD/ports TKXKK3bnet/bgp-perf Makefile distinfo, net/bgp-perf/pkg DESCR PLIST

   import bgp-perf, the OpenBGPD performance test suite

   ok claudio rsadowski sthen

   The OpenBGPD performance test suite contains two applications for
   performance measurements.

   The bgp-blaster tool can load mrtdump files into a table and emulate
   many peers using that table.

   The bgp-canary tool sends special UPDATE messages to the system under
   test and measures the latency through the system. The statistics for
   these measurements are available as an openmetric file.
VersionDeltaFile
1.1+22-0net/bgp-perf/Makefile
1.1+9-0net/bgp-perf/pkg/DESCR
1.1+3-0net/bgp-perf/pkg/PLIST
1.1+2-0net/bgp-perf/distinfo
1.1.1.1+0-0net/bgp-perf/pkg/DESCR
1.1.1.1+0-0net/bgp-perf/Makefile
+36-02 files not shown
+36-08 files

OpenBSD/ports NDXO6ajastro/stellarium distinfo Makefile, astro/stellarium/patches patch-CMakeLists_txt

   Update to stellarium-25.4.
VersionDeltaFile
1.65+207-4astro/stellarium/pkg/PLIST
1.22+0-24astro/stellarium/patches/patch-CMakeLists_txt
1.66+2-2astro/stellarium/distinfo
1.111+1-2astro/stellarium/Makefile
+210-324 files

OpenBSD/ports kez1M8Fsysutils/exoscale-cli distinfo Makefile

   Update to exoscale-cli-1.89.0.
VersionDeltaFile
1.139+2-2sysutils/exoscale-cli/distinfo
1.142+1-1sysutils/exoscale-cli/Makefile
+3-32 files

OpenBSD/ports 30YLb6Adevel/libgit2/py-git2 distinfo Makefile

   Update to py3-git2-1.19.1.
VersionDeltaFile
1.56+2-2devel/libgit2/py-git2/distinfo
1.83+1-1devel/libgit2/py-git2/Makefile
+3-32 files

OpenBSD/src aMS3QMbusr.sbin/rpki-client print.c ccr.c

   Print CCR hashes in the same way in filemode as elsewhere

   OK tb@
VersionDeltaFile
1.72+13-37usr.sbin/rpki-client/print.c
1.32+6-4usr.sbin/rpki-client/ccr.c
+19-412 files

OpenBSD/ports NoW27Vrdevel/lua-language-server distinfo Makefile, devel/lua-language-server/patches patch-make_lua

   Update lua-language-server 3.16.1 -> 3.16.4
   Changelog: https://github.com/LuaLS/lua-language-server/blob/master/changelog.md
VersionDeltaFile
1.4+12-12devel/lua-language-server/distinfo
1.6+6-6devel/lua-language-server/Makefile
1.3+1-1devel/lua-language-server/patches/patch-make_lua
+19-193 files

OpenBSD/ports NKXDV3Jx11/xfce4/libxfce4windowing distinfo Makefile, x11/xfce4/libxfce4windowing/pkg PLIST

   x11/xfce4/libxfce4windowing: update to 4.20.5.

   see https://gitlab.xfce.org/xfce/libxfce4windowing/-/tags/libxfce4windowing-4.20.5
VersionDeltaFile
1.5+6-0x11/xfce4/libxfce4windowing/pkg/PLIST
1.5+2-2x11/xfce4/libxfce4windowing/distinfo
1.7+1-1x11/xfce4/libxfce4windowing/Makefile
+9-33 files

OpenBSD/ports krJu7s4x11/xfce4/xfce4-panel distinfo Makefile, x11/xfce4/xfce4-panel/pkg PLIST

   x11/xfce4/xfce4-panel: update to 4.20.6.

   see https://gitlab.xfce.org/xfce/xfce4-panel/-/tags/xfce4-panel-4.20.6
VersionDeltaFile
1.47+2-2x11/xfce4/xfce4-panel/distinfo
1.104+1-1x11/xfce4/xfce4-panel/Makefile
1.43+1-0x11/xfce4/xfce4-panel/pkg/PLIST
+4-33 files

OpenBSD/ports FecABuWx11/xfce4/xfce4-settings distinfo Makefile, x11/xfce4/xfce4-settings/pkg PLIST

   x11/xfce4/xfce4-settings: update to 4.20.3.

   see https://gitlab.xfce.org/xfce/xfce4-settings/-/tags/xfce4-settings-4.20.3
VersionDeltaFile
1.37+2-2x11/xfce4/xfce4-settings/distinfo
1.73+1-1x11/xfce4/xfce4-settings/Makefile
1.26+1-0x11/xfce4/xfce4-settings/pkg/PLIST
+4-33 files

OpenBSD/src nExbDQ5usr.bin/ssh packet.c

   test the right thing, doofus
VersionDeltaFile
1.331+2-2usr.bin/ssh/packet.c
+2-21 files

OpenBSD/src jDyaMTTusr.bin/ssh packet.c

   avoid possible NULL deref if ssh_packet_check_rekey_blocklimit()
   called before the encrypted transport is brought up.
VersionDeltaFile
1.330+4-1usr.bin/ssh/packet.c
+4-11 files

OpenBSD/src AbLhAXusys/arch/amd64/include cpufunc.h

   make rdpkru() return unsigned, PKRU is all access/write disable bits
   no change in behaviour for existing callers
   ok deraadt@ mlarkin@
VersionDeltaFile
1.47+2-2sys/arch/amd64/include/cpufunc.h
+2-21 files

OpenBSD/src Oz23NRrusr.bin/ssh packet.c sshconnect.c

   Remove bug compatibility for implementations that don't support
   rekeying. AFAIK this is only an ancient Sun SSH version.

   If such an implementation tries to interoperate with OpenSSH, it
   will eventually fail when the transport needs rekeying.

   This is probably long enough to use it to download a modern SSH
   implementation that lacks this problem :)

   ok markus@ deraadt@
VersionDeltaFile
1.329+3-9usr.bin/ssh/packet.c
1.378+7-1usr.bin/ssh/sshconnect.c
1.19+4-1usr.bin/ssh/sshd-session.c
+14-113 files

OpenBSD/src I5pARj6usr.bin/ssh packet.c

   Enforce maximum packet/block limit during pre-authentication phase

   OpenSSH doesn't support rekeying before authentication completes to
   minimise pre-auth attack surface.

   Given LoginGraceTime, MaxAuthTries and strict KEX, it would be
   difficult to send enough data or packets before authentication
   completes to reach a point where rekeying is required, but we'd
   prefer it to be completely impossible.

   So this applies the default volume/packet rekeying limits to the
   pre-auth phase. If these limits are exceeded the connection will
   simply be closed.

   ok dtucker markus
VersionDeltaFile
1.328+67-21usr.bin/ssh/packet.c
+67-211 files

OpenBSD/src 05F2gUJregress/usr.bin/ssh/unittests/sshbuf test_sshbuf.c

   unit tests for sshbuf_consume_upto_child()
VersionDeltaFile
1.3+37-2regress/usr.bin/ssh/unittests/sshbuf/test_sshbuf.c
+37-21 files

OpenBSD/src n9tMypLusr.bin/ssh sshbuf.c sshbuf.h

   Add sshbuf_consume_upto_child(), to similify particular parsing
   patterns using parent/child buffer; ok markus@
VersionDeltaFile
1.24+21-1usr.bin/ssh/sshbuf.c
1.34+19-1usr.bin/ssh/sshbuf.h
+40-22 files

OpenBSD/src 4whVasosys/arch/arm64/dev smmu.c smmuvar.h

   Serialize concurrent access to command queues with a mutex.  Fixes
   corruption visible on the Orion O6 with multiple devices and after
   the secondary cores spun up.  Command queue handling/synchronization
   can probably the improved further.
VersionDeltaFile
1.28+38-1sys/arch/arm64/dev/smmu.c
1.11+2-1sys/arch/arm64/dev/smmuvar.h
+40-22 files