BSD Commit Log Search

   If a fd came from libc doing the __pledge_open(2) system call, do not
   allow write(2), chmod(2), chflags(2), chown(2), ftruncate(2), or fdpassing.
   pledge_open(2) is an unexported interface that libc will use (soon) to
   open 2 devices (null and tty), about 9 files (based upon pledge promises),
   and files within the zoneinfo directory.  This works because libc only
   reads from those fd.  Currently those files are openable by non-libc code,
   but soon only static libc code will be able to do those opens.
   This does not transition libc to using the new system call, yet.
   Based upon long discussions with david leadbeater and beck.

   use ida_alloc_range() for ida_alloc_min() and ida_alloc_max()
   corrects ida_alloc_max() range end

   The range end argument of idr_alloc() is exclusionary.  Don't try to
   insert into the idr tree with an id value matching the end.

   unifdef unused idr random path

   remove unused ida_simple* which no longer exist in linux

   sysutils/docker-compose: update to 5.1.0

   sysutils/docker-cli: update to 29.3.0

   sysutils/docker-buildx: update to 0.32.1

   no need to include both sys/atomic.h and machine/atomic.h

   include sys/atomic.h for atomic_inc_int()

   archivers/zpaqfranz: update to 64.6

   From maintainer tux0r

   Add missing sys/atomic.h

   audio/beets: update to 2.7.1

   Add missing sys/atomic.h. ok miod@

   switch upstream to codeberg; the git-archive had changed anyway

   there is a newer verson but that needs attention from someone who knows
   how to use this (note it picks up more libraries if present; libatomic
   from gcc, which it shouldn't do for clang archs, and hunspell)

   remove tmppath from pledge, it doesn't help anyway with rpath cpath wpath

   Fix pledge/unveil issues relating to manual opening of /etc/resolv.conf
   uncovered by david leadbeater and florian, and later on also by sthen

   calendar -a uses different pledge, add test for that.

   use atomic_inc_int() on more fields in uvmexp

   mark a few more (MD incremented) fields in uvmexp as [a] atomic

   typo

   sync

   Introduce __pledge_open(2) system call which is pretty much the same as
   open(2), except libc will use it to differentiate certain well-controlled
   pathnames which follow special rules in pledge and can be accessed even
   when "rpath" or unveil(2) don't allow so.
   The kernel gets the system call BEFORE libc starts using it; soon there
   will be more commits which will require at least this kernel.
   Long discusions with david leadbeater and and beck

   update to luajit-2.1.1772619647

   exclude cache-* instead of cache-4 which is not at version 7 and can be
   changed anytime

   update

   par: build debug packages

   Update to xcalc 1.1.3

   Update to xauth 1.1.5

   Update to xconsole 1.1.0