BSD Commit Log Search

   update p5-HTTP-Message to 7.02

   cad/solvespace: update to 3.2

   Small tweak and ok tb@

   update jupyter-notebook to 7.5.7

   update jupyterlab to 4.5.8

   pgpool: zap garbage from patch

   update ipython to 9.14.1

   pgpool: add missing casts to strchrnul() impl, fix format string warnings

   databases/pgpool: add forgotten chunk with strchrnul

   implem copied from src/parser/snprintf.c, this really unbreaks it with llvm 22.

   quirk for net/trickle

   remove net/trickle, "bandwidth manager" which uses LD_PRELOAD to override
   socket functions; has various time_t issues, breaking build on 32-bit
   archs with llvm22.

   ok tb

   graphics/vtk: update to 9.6.2

   Ok tb@

   sysutils/vifm: update to 0.14.4

   From xaizek (maintainer). Ok tb@

   cast to unbreak llvm22 build; however gnushogi appears to be 12 years
   dead upstream and there are other type issues so removal might be a good
   option (we also had to fix for -fno-common)

   fix lengths of variables in printf-like format strings (time_t, blocks, etc)

   Fix #ifdef maze leading to a build failure on (at least) amd64

   Also move additional code upper in the file so that we respect the
   pseudo order already present, and so that both hunks are contiguous.

   Build error reported by tb@

   graphics/tgif: make C types coherent to appease llvm22

   ok benoit@

   lang/gcc/16: update PLIST fot riscv64

   Bump REVISION

   Required following files/OpenBSD addition.

   Comment out _unit

   Update to gosec-2.27.1

   From Laurent Cheylus (maintainer)

   Update to fzf-0.73.1

   From Laurent Cheylus (maintainer)

   modlogan: fix build with llvm22

   I will remove this port soon, but let's keep the build fix in version
   control. Perhaps it's useful for someone.

   Update to ibus-skk-1.4.4.

   Update to libskk-1.1.1 to unbreak.

   Update to glabels-3.99pre638 to unbreak.

   databases/pgbouncer: MFC security update to 1.25.2.

   see https://www.pgbouncer.org/changelog.html#pgbouncer-125x

   fixes CVE-2026-6664, CVE-2026-6665, CVE-2026-6666 & CVE-2026-6667

   libssl: don't break TLSv1.2 with X25519MLKEM768

   If the list of 'groups' starts with X25519MLKEM768 for a TLSv1.2 server,
   ssl3_send_server_kex_ecdhe() attempts to use NID_X25519MLKEM768, which
   it receives from tls1_get_supported_groups(). This does not work because
   it never received the peer's public keys, which causes an error return
   from tls_key_share_server_generate_mlkem768x25519().

   For a TLSv1.2-only client with custom supported group list we will
   currently send ML-KEM if configured. We should not do this.

   There is more to fix here: if a TLSv1.2 client is misconfigured with
   only X25519MLKEM768, we should not send a supported groups extension
   (with this commit we'll send an empty one, which is an RFC violation).

   This commit simply filters X25519MLKEM768 out of the supported groups
   list if we're configured to be TLSv1.2-only.

   feedback/ok jsing kenjiro (on an earlier version)

   Update to pizauth 1.1.0, from maintainer/upstream

   Add regress tests for DTLS handshake messages.

   jujutsu: pull in upstream #9610 to disable mimalloc

   I was unsure whether I should disable mimalloc for OpenBSD but then thought
   I'd go with upstream's decision despite performance properties of mimalloc
   not being great on OpenBSD. While mimalloc has been working fine for me in
   the last few weeks and is well tested via python, mimalloc turns out to be
   completely broken on illumos, at least the way jujutsu uses it. A day after
   release upstream therefore decided not to enable it on platforms they don't
   cover in CI. So let just not use this code since it will be disabled again
   anyway in a month at the latest.