BSD Commit Log Search

   Update to brewtarget 5.0.4.

   Stop printing the riscv,isa string; our code to do so is broken and the
   string is now deprecated.  Instead change hw.model to be the CPU core
   name for cpu0 like we do on other architectures.

   We'll revisit printing CPU features for riscv64 in the future.

   ok jca@, mlarkin@

   Update to CookCLI 0.27.2.

   Disable auto-update.

   archivers/libarchive: update to 3.8.6

   Fixes for a motley collection of NULL pointer dereference, SEGV,
   out-of-bounds access, infinite loop, memory/file descriptor leaks.

   archivers/xz: update to 5.8.3

   Includes a fix for
   CVE-2026-34743: Buffer overflow in lzma_index_append()

   devel/boost: Fix build on mips64

   Initial diff by and OK kn@
   OK Brad (maintainer), jca@

   Update Powder Toy to latest release 99.5.394

   Add hw.blockcpu support for arm64.  Here we classify CPU cores based on
   their "capacity".  This a concept borrowed from the device tree standard
   that indicates the nominal performance of a CPU core.  For ACPI machines
   we use similar information from ACPI's Collaborative Processor Performance
   Control (CPPC).  If performance is less than 30% of the fastest cores in
   the same we classify them as L.  Between 30% and 80% we classify them as E.
   And above 80% we classify them as P.  The CPU capacity is communicated to
   userland though kstat(4).

   ok deraadt@, jca@

   Remove lib/libssl/test.

   This is all unhelpful historical cruft.

   Discussed with tb@

   Update to glew-2.3.1.

   from Brad (maintainer)

   x11/herbstluftwm: update to 0.9.6

   Changes: https://herbstluftwm.org/news.html
   Put my full name in MAINTAINER line while there.

   from co-maintainer Florian Viehweger

   update p5-XML-Parser to 2.56

   fix memory leak in config_purge() when dealing CONFIG_PROTOS

   original diff from CypherFox (openbsd at cypher-fox com), thanks!
   slightly rearranged to be a bit smaller by me, but still equivalent.

   Remove workaround for SSL 3.0/TLS 1.0 CBC vulnerability.

   We no longer support TLSv1.0 and definitely do not support SSLv3 - remove
   the empty fragments workaround for the CBC vulnerability in these
   protocols.

   ok kenjiro@ tb@

   usr.bin/patch: fix fd leak

   From Renaud Allard

   OK: op@

   Ensure that we cannot negotiate TLSv1.1 or lower.

   TLS versions prior to TLSv1.2 were disabled a while ago, however this
   was done in the version handling code. Remove TLSv1.1 and earlier from
   ssl_get_method() and add an explicit min version check in the legacy
   client and server, to provide a stronger guarantee.

   ok kenjiro@ tb@

   Add smtgpio(4), a driver for the GPIO controller found on SpacemiT K1 SoCs.

   ok jca@

   update p5-MIME-tools to 5.517
   OK giovanni@

   misc/llama.cpp: update to b8631

   devel/libggml: update to 0.9.11

   audio/navidrome: update to v0.60.3.

   Diff from Igor Zornik, with input from myself and abieber@.

   OK abieber@, thanks both.

   Update to spotify-player 0.23.0.

   smtpd: fix using modifiers with partial expansion in format specifiers

   Nits on the manpage and ok op@

   Add some new mouse ranges called "control0" to "control9", will be used
   for controls on floating panes, from Dane Jensen, with some bits from
   Michael Grant.

   remove dup block that tries to close tls client ca fd

   it's already closed and fd set to -1 a few lines above.
   diff from Marc Jorge (openbsd [at] cypher-fox com), thanks!

   Missed a line from previous.

   Handle OSC 9;4 progress bar sequence and store in format variables, from
   Eric Dorland in GitHub issue 4954.

   Sync WANTLIB.

   Increase b64_pton buffer to allow for Base64 without padding, from
   Michal Majchrowicz.