update to cassette 0.2.2
Upstream moved from gitlab.gnome.org to altlinux.space, the latter using
forgejo with tarball generation disabled for tags and releases, i.e.
there is no way to fetch sources from such repos unless developers upload
static release assets.
The author kindly did that upon my request; new releases should come
with more conventional tarballs so our DISTFILES and WRKDIST goo can go.
Fix bad sizes in certain graceful restart imsgs.
The move to use more u_int for aid also changed the imsgs
IMSG_SESSION_STALE, IMSG_SESSION_NOGRACE, IMSG_SESSION_FLUSH, and
IMSG_SESSION_RESTARTED. The problem was that not all senders were
adjusted.
OK tb@
Update libexpat to version 2.8.1.
Relevant for OpenBSD are security fixes #1216, other changes #1209.
Library bump is not necessary. CVE-2026-45186
OK tb@
Update to 8.6.18.
Tcl/Tk 8.6.18 Release Announcement
May 11, 2026
The Tcl Core Team is pleased to announce the 8.6.18 releases of the Tcl
dynamic language and the Tk toolkit. We intend these to be the final
releases of Tcl 8.6 and Tk 8.6. Both Tcl and Tk have successor major
release sequences in active supported development. As of this release
date, users of Tcl and Tk are encouraged to move to Tcl 9.0.3 and Tk 9.0.3.
With development of Tcl/Tk 8.6 at an end, we are no longer soliciting
bug reports and patches for these lines of development. Please only
report issues that are believed so severe in nature that they would
justify re-opening a closed development sequence.
https://sourceforge.net/projects/tcl/files/Tcl/8.6.18/tcltk-release-notes-8.6.18.txt
Update to 8.6.18.
Tcl/Tk 8.6.18 Release Announcement
May 11, 2026
The Tcl Core Team is pleased to announce the 8.6.18 releases of the Tcl
dynamic language and the Tk toolkit. We intend these to be the final
releases of Tcl 8.6 and Tk 8.6. Both Tcl and Tk have successor major
release sequences in active supported development. As of this release
date, users of Tcl and Tk are encouraged to move to Tcl 9.0.3 and Tk 9.0.3.
With development of Tcl/Tk 8.6 at an end, we are no longer soliciting
bug reports and patches for these lines of development. Please only
report issues that are believed so severe in nature that they would
justify re-opening a closed development sequence.
https://sourceforge.net/projects/tcl/files/Tcl/8.6.18/tcltk-release-notes-8.6.18.txt
getservice() needs to return the port in host byte order but
getservbyname() returns the value in network byte order. Add some ntohs()
for those poor little endian systems.
OK tb@
ibuf_set_maxsize() need to ensure that the invariants are upheld by
checking also that wpos and size are not bigger then the new max.
If wpos is bigger fail hard, for size the allocation may have been used
before and so do an explicit_bzero() to clear the extra memory out.
OK tb@
Add a guarded .note.GNU-stack section to crypto assembly files.
Add a .note.GNU-stack section to avoid ending up with an executable stack
on toolchains that believe we should have an executable stack by default.
Reported by ruuda on Github.
Discussed with tb@
update python/3 to 3.14.4, ok tb (who also helped with build tests and
fixing up other ports etc), daniel
a few changes to follow
_MODPY_SYSTEM_VERSION bumped rather than bumping ERANGE ports
