OpenBSD/src e0hHIM2sys/kern kern_pledge.c

by deraadt on ⎇
   From now on, readlink(2) requires pledge "rpath"
   Discussed with david leadbeater and beck
VersionDeltaFile
1.345+2-2sys/kern/kern_pledge.c
+2-21 files

OpenBSD/src b9V8nJclib/libc/gen readpassphrase.c

by deraadt on ⎇
   use O_CLOEXEC; ok guenther
VersionDeltaFile
1.29+2-2lib/libc/gen/readpassphrase.c
+2-21 files

OpenBSD/src NFzoNAOlib/libarch/alpha bwx.c, lib/libc/gmon gmon.c

by deraadt on ⎇
   use O_CLOEXEC; ok guenther
VersionDeltaFile
1.11+3-3lib/libarch/alpha/bwx.c
1.41+3-3lib/libc/gmon/gmon.c
1.19+2-2lib/libc/hash/helper.c
1.59+2-2lib/libfuse/fuse.c
1.3+1-1lib/libfido2/src/hid_unix.c
+11-115 files

OpenBSD/ports Az133wRwww/mozilla-firefox distinfo Makefile

by landry on ⎇
   www/mozilla-firefox: MFC update to 148.0.2.

   see https://www.firefox.com/en-US/firefox/148.0.2/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-19/
VersionDeltaFile
1.378.2.14+2-2www/mozilla-firefox/distinfo
1.651.2.17+1-1www/mozilla-firefox/Makefile
+3-32 files

OpenBSD/ports 43he7synet/librenms Makefile, net/p5-Nmap-Parser Makefile

by sthen on ⎇
   bump revisions, nmap pkgpath changed from net/nmap,-main to net/nmap
   (there were no other subpackages anyway)
VersionDeltaFile
1.20+2-2net/p5-Nmap-Scanner/Makefile
1.219+2-1net/librenms/Makefile
1.28+1-1net/py-nmap/Makefile
1.23+1-0net/p5-Nmap-Parser/Makefile
+6-44 files

OpenBSD/ports H7p5rPEnet/nmap Makefile, net/nmap/patches patch-nse_ssl_cert_cc patch-nse_openssl_cc

by sthen on ⎇
   update to nmap-7.98, maintainer timeout
   the license has changed
VersionDeltaFile
1.16+827-4net/nmap/pkg/PLIST
1.155+38-32net/nmap/Makefile
1.5+17-18net/nmap/pkg/DESCR
1.3+19-1net/nmap/patches/patch-nse_ssl_cert_cc
1.6+5-14net/nmap/patches/patch-nse_openssl_cc
1.3+3-3net/nmap/patches/patch-nping_Crypto_cc
+909-7212 files not shown
+917-8018 files

OpenBSD/ports hIYYPP1www/firefox-i18n distinfo Makefile.inc, www/mozilla-firefox distinfo Makefile

by landry on ⎇
   www/mozilla-firefox: update to 148.0.2.

   see https://www.firefox.com/en-US/firefox/148.0.2/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-19/
VersionDeltaFile
1.381+164-164www/firefox-i18n/distinfo
1.394+4-4www/mozilla-firefox/distinfo
1.676+2-4www/mozilla-firefox/Makefile
1.336+1-1www/firefox-i18n/Makefile.inc
+171-1734 files

OpenBSD/ports sGqgQy8textproc/p5-XML-LibXML Makefile

by sthen on ⎇
   sync LIB_DEPENDS; WANTLIB was updated to remove iconv, but LIB_DEPENDS wasn't
VersionDeltaFile
1.75+2-3textproc/p5-XML-LibXML/Makefile
+2-31 files

OpenBSD/ports quVHDagdevel/protobuf-c/patches patch-protoc-gen-c_c_field_cc patch-protoc-gen-c_c_enum_field_cc

by tb on ⎇
   protobuf-c: unbreak build with protobuf-cpp 6.34
VersionDeltaFile
1.1+42-0devel/protobuf-c/patches/patch-protoc-gen-c_c_field_cc
1.1+23-0devel/protobuf-c/patches/patch-protoc-gen-c_c_enum_field_cc
1.1+23-0devel/protobuf-c/patches/patch-protoc-gen-c_c_helpers_cc
1.1+23-0devel/protobuf-c/patches/patch-protoc-gen-c_c_message_field_cc
1.1+23-0devel/protobuf-c/patches/patch-protoc-gen-c_c_bytes_field_cc
1.1+23-0devel/protobuf-c/patches/patch-protoc-gen-c_c_primitive_field_cc
+157-03 files not shown
+198-19 files

OpenBSD/ports ENgkIhSdevel/protobuf/patches patch-src_google_protobuf_compiler_command_line_interface_cc

by tb on ⎇
   protobuf: regen patch
VersionDeltaFile
1.6+1-1devel/protobuf/patches/patch-src_google_protobuf_compiler_command_line_interface_cc
+1-11 files

OpenBSD/ports 3J3M2Zbdevel/protobuf-java distinfo Makefile

by tb on ⎇
   Update to protobuf-java 4.34.0, tested/ok kurt

   https://github.com/protocolbuffers/protobuf/releases/tag/v34.0
VersionDeltaFile
1.2+2-2devel/protobuf-java/distinfo
1.2+1-1devel/protobuf-java/Makefile
+3-32 files

OpenBSD/ports 6HEgiiQdevel/py-protobuf Makefile distinfo

by tb on ⎇
   Update to py3-protobuf 7.34.0, ok kurt

   Major version crank comes with a few breaking changes of course:
   https://github.com/protocolbuffers/protobuf/releases/tag/v34.0
VersionDeltaFile
1.72+2-2devel/py-protobuf/Makefile
1.57+2-2devel/py-protobuf/distinfo
+4-42 files

OpenBSD/ports a4A2GV9devel/protobuf Makefile distinfo, devel/protobuf/pkg PLIST

by tb on ⎇
   Update to protobuf-cpp 6.34.0, ok kurt

   https://github.com/protocolbuffers/protobuf/releases/tag/v34.0
VersionDeltaFile
1.32+9-13devel/protobuf/pkg/PLIST
1.105+4-4devel/protobuf/Makefile
1.66+2-2devel/protobuf/distinfo
+15-193 files

OpenBSD/ports BU57Duvmath/py-numpy distinfo Makefile

by sthen on ⎇
   update to py3-numpy-2.4.3
VersionDeltaFile
1.26+2-2math/py-numpy/distinfo
1.101+1-1math/py-numpy/Makefile
+3-32 files

OpenBSD/ports eWTqnhidevel/py-scikit-build-core distinfo Makefile

by sthen on ⎇
   update to py3-scikit-build-core-0.12.2
VersionDeltaFile
1.4+2-2devel/py-scikit-build-core/distinfo
1.4+1-1devel/py-scikit-build-core/Makefile
+3-32 files

OpenBSD/ports ZrXpdeMdevel/py-cachetools distinfo Makefile

by sthen on ⎇
   update to py3-cachetools-7.0.5
VersionDeltaFile
1.26+2-2devel/py-cachetools/distinfo
1.37+1-1devel/py-cachetools/Makefile
+3-32 files

OpenBSD/ports dhKmO6Jdevel/py-puremagic distinfo Makefile

by sthen on ⎇
   update to py3-puremagic-2.0.2
VersionDeltaFile
1.12+2-2devel/py-puremagic/distinfo
1.19+1-1devel/py-puremagic/Makefile
+3-32 files

OpenBSD/ports zvhdFeXgraphics/lerc distinfo Makefile, graphics/lerc/patches patch-src_LercLib_fpl_EsriHuffman_cpp patch-src_LercLib_fpl_Lerc2Ext_cpp

by landry on ⎇
   graphics/lerc: update to 4.1.0.

   see https://github.com/Esri/lerc/blob/v4.1.0/CHANGELOG.md#410---2026-03-09
VersionDeltaFile
1.2+2-2graphics/lerc/distinfo
1.2+1-1graphics/lerc/Makefile
1.2+0-0graphics/lerc/patches/patch-src_LercLib_fpl_EsriHuffman_cpp
1.2+0-0graphics/lerc/patches/patch-src_LercLib_fpl_Lerc2Ext_cpp
+3-34 files

OpenBSD/ports uRm3wnOwww/firefox-esr Makefile, www/firefox-esr/files unveil.main unveil.content

by landry on ⎇
   www/firefox-esr:  add some missing unveils

   - content process already accesses /etc/localtime, add /usr/share/zoneinfo
   - main process already has /usr/share/zoneinfo, add /etc/localtime
   - main process sometimes parses /etc/hosts (mostly on network.trr.mode
   changes ?) so unveil it.
   - unveil.socket is wrong but time is running out, and the socket process
   isnt used much anyway (network.http.network_access_on_socket_process.enabled defaults to false)

   required by upcoming changes to pledge/unveil
VersionDeltaFile
1.15+2-0www/firefox-esr/files/unveil.main
1.14+1-0www/firefox-esr/files/unveil.content
1.266+1-0www/firefox-esr/Makefile
+4-03 files

OpenBSD/ports 1I0RZxPwww/mozilla-firefox Makefile, www/mozilla-firefox/files unveil.main unveil.content

by landry on ⎇
   www/mozilla-firefox: add some missing unveils

   - content process already accesses /etc/localtime, add /usr/share/zoneinfo
   - main process already has /usr/share/zoneinfo, add /etc/localtime
   - main process sometimes parses /etc/hosts (mostly on network.trr.mode
   changes ?) so unveil it.
   - unveil.socket is wrong but time is running out, and the socket process
     isnt used much anyway (network.http.network_access_on_socket_process.enabled defaults to false)

   required by upcoming changes to pledge/unveil
VersionDeltaFile
1.675+1-1www/mozilla-firefox/Makefile
1.24+2-0www/mozilla-firefox/files/unveil.main
1.14+1-0www/mozilla-firefox/files/unveil.content
+4-13 files

OpenBSD/ports sI8pYMBdevel/codeblocks Makefile, devel/codeblocks/patches patch-configure_ac patch-src_plugins_contrib_NassiShneiderman_Makefile_am

by sthen on ⎇
   cherry-pick additional commits to fix 'make configure' if autoconf-archive
   is installed, ok tb
VersionDeltaFile
1.4+15-6devel/codeblocks/patches/patch-configure_ac
1.2+9-0devel/codeblocks/patches/patch-src_plugins_contrib_NassiShneiderman_Makefile_am
1.73+0-3devel/codeblocks/Makefile
+24-93 files

OpenBSD/src rfPH1SMsys/conf files

by jsg on ⎇
   make uvm_io.c build conditional to save space on ramdisks

   uvm_io() calls in kern_sysctl.c are under #ifndef SMALL_KERNEL
   sys_process.c has a uvm_io() call but is only built for ptrace | dt

   feedback from miod@
VersionDeltaFile
1.751+2-2sys/conf/files
+2-21 files

OpenBSD/ports G2UDtLjgraphics/geeqie Makefile distinfo, graphics/geeqie/patches patch-src_exif-common_cc patch-meson_build

by kirby on ⎇
   update to geeqie-2.7
VersionDeltaFile
1.3+3-3graphics/geeqie/patches/patch-src_exif-common_cc
1.18+2-4graphics/geeqie/pkg/PLIST
1.6+3-3graphics/geeqie/patches/patch-meson_build
1.47+1-4graphics/geeqie/Makefile
1.17+2-2graphics/geeqie/distinfo
+11-165 files

OpenBSD/src LVQcXG1sys/dev/pci if_iwx.c if_iwxvar.h

by stsp on ⎇
   Remove custom Rx A-MPDU reordering code from iwx(4).

   The equivalent code was deleted from iwlwifi in 2023. It is only needed for
   iwm 9k devices running with multiple Rx queues. AX200 and later devices do
   Rx reordering in firmware and provide flags the driver can check to avoid
   sending duplicate frames up the stack.

   See linux.git commit 29fa9a984b6d1075020f12071a89897fd62ed27f
   and linux.git commit ff8e3a40d78bc414213b2724ad775adf98780a5a

   ok phessler@ kettenis@ kevlo@

   Tested:
   AX200: jmc, stsp
   AX210 (MA): kettenis, kevlo
   AX211 (BZ): stsp
VersionDeltaFile
1.207+7-200sys/dev/pci/if_iwx.c
1.46+1-16sys/dev/pci/if_iwxvar.h
1.64+2-1sys/dev/pci/if_iwxreg.h
+10-2173 files

OpenBSD/src EiuXoQwsys/dev/pci if_iwx.c

by stsp on ⎇
   Prevent fatal firmware errors on iwx(4) Bz devices when forcing 11a/b/g mode.

   Avoid enabling wide channels or MIMO in firmware Tx rate selection if we are
   running in 11a/b/g mode.

   Honour the "nomimo" network flag in any mode.

   ok phessler@

   Tested:
   AX200: stsp
   AX201 (MA): kettenis, kevlo
   AX211 (BZ): stsp
VersionDeltaFile
1.206+25-11sys/dev/pci/if_iwx.c
+25-111 files

OpenBSD/src T4NDplRusr.bin/ssh ssh-agent.c

by djm on ⎇
   whitespace
VersionDeltaFile
1.324+2-2usr.bin/ssh/ssh-agent.c
+2-21 files

OpenBSD/ports zRjRXNAwww/chromium Makefile, www/chromium/files unveil.utility_network unveil.cdm

by robert on ⎇
   unveil "/dev/null rw" in all processes
VersionDeltaFile
1.3+2-0www/chromium/files/unveil.utility_network
1.891+2-0www/chromium/Makefile
1.3+2-0www/chromium/files/unveil.cdm
1.20+2-0www/chromium/files/unveil.main
1.3+2-0www/chromium/files/unveil.utility_audio
1.4+2-0www/chromium/files/unveil.utility_video
+12-018 files not shown
+42-324 files

OpenBSD/src kcF6JZUlib/libsndio sio.c sio_sun.c

by ratchov on ⎇
   libsndio: Move sio_sun_xrun() to sio.c and rename it to _sio_xrun()
VersionDeltaFile
1.30+106-1lib/libsndio/sio.c
1.36+1-106lib/libsndio/sio_sun.c
1.15+2-1lib/libsndio/sio_priv.h
+109-1083 files

OpenBSD/src p7rslkelib/libsndio sio_sun.c

by ratchov on ⎇
   libsndio: Make sio_sun_xrun() backend-independent

   The sio_sun_xrun() function uses only the sio_hdl field of the
   structure passed as its first (and only) argument. Change the function
   to take a sio_hdl pointer instead. This hides all audio(4)-specific
   data and makes clear that the function is not related to the audio(4)
   API.

   No behavior change.
VersionDeltaFile
1.35+17-17lib/libsndio/sio_sun.c
+17-171 files

OpenBSD/src m5dTYTHusr.bin/ssh ssh-agent.c

by deraadt on ⎇
   when unveils error our, use correct variable
VersionDeltaFile
1.323+3-3usr.bin/ssh/ssh-agent.c
+3-31 files