OpenBSD/src CEQzl0Lsys/arch/sparc64/sparc64 autoconf.c

   use DL_PARTNAME2NUM/DL_PARTNUM2NAME when required
VersionDeltaFile
1.153+3-3sys/arch/sparc64/sparc64/autoconf.c
+3-31 files

OpenBSD/src 0I2E5fDusr.bin/ssh auth2-chall.c

   Relax array check slightly.  Prevents compiler warnings in -portable
   when there are no kbdint devices present.  ok djm@
VersionDeltaFile
1.57+2-2usr.bin/ssh/auth2-chall.c
+2-21 files

OpenBSD/src gTA3bA8usr.bin/ssh sftp.c

   backout r1.243 (fix for fatal during tab-completion with some multibyte
   sequences) as it breaks the common case for tab completion.

   Will deal with it properly after release.
VersionDeltaFile
1.245+0-5usr.bin/ssh/sftp.c
+0-51 files

OpenBSD/src 6KgMwTVgnu/usr.bin/binutils-2.17/opcodes m88k-dis.c, gnu/usr.bin/binutils/opcodes m88k-dis.c

   Make the m88k disassembler recognize more forms of ld and st instructions,
   especially in scaled mode. Helps gdb correctly disassemble the code gcc can
   produce...
VersionDeltaFile
1.2+23-4gnu/usr.bin/binutils-2.17/opcodes/m88k-dis.c
1.6+17-6gnu/usr.bin/binutils/opcodes/m88k-dis.c
+40-102 files

OpenBSD/src 6dGdDdIregress/usr.bin/ssh/unittests/sshkey test_sshkey.c

   Set keys to NULL after freeing in tests where the variables will be used
   again.  Should prevent Coverity "potential use after free" warnings.
VersionDeltaFile
1.32+16-1regress/usr.bin/ssh/unittests/sshkey/test_sshkey.c
+16-11 files

OpenBSD/src c8eoTjBregress/usr.bin/ssh keygen-comment.sh

   Get rid of utf8 droppings in commment since it confuses older shells.
   From Sevan Janiyan via openssh-unix-dev.
VersionDeltaFile
1.3+2-1regress/usr.bin/ssh/keygen-comment.sh
+2-11 files

OpenBSD/src rbr2PFJetc/etc.alpha MAKEDEV, etc/etc.amd64 MAKEDEV

   sync
VersionDeltaFile
1.224+3-2etc/etc.alpha/MAKEDEV
1.145+3-2etc/etc.amd64/MAKEDEV
1.31+3-2etc/etc.arm64/MAKEDEV
1.45+3-2etc/etc.armv7/MAKEDEV
1.164+3-2etc/etc.hppa/MAKEDEV
1.283+3-2etc/etc.i386/MAKEDEV
+18-128 files not shown
+42-2814 files

OpenBSD/src dopCgkRetc MAKEDEV.mi

   the MAKEDEV m4 stuff is frustratingly complicated
VersionDeltaFile
1.85+2-1etc/MAKEDEV.mi
+2-11 files

OpenBSD/src FDrt7L9sbin/disklabel disklabel.c

   In the informational message for disklabel -e, the literal value 16 can
   also be MAXPARTITIONS.
VersionDeltaFile
1.258+3-3sbin/disklabel/disklabel.c
+3-31 files

OpenBSD/src qjT9CIXsys/conf newvers.sh

   move out of -beta
VersionDeltaFile
1.212+3-3sys/conf/newvers.sh
+3-31 files

OpenBSD/src kpxXNEJsys/dev/fdt xhci_fdt.c

   Prepare for changes to the decice tree bindings that are being made now
   that support for the Apple version of the DWC3 controllers is being
   upstreamed.  In particular we'll lose the "snps,dwc3" compatible because
   the way the Linux driver is structured.

   ok jsg@
VersionDeltaFile
1.25+8-4sys/dev/fdt/xhci_fdt.c
+8-41 files

OpenBSD/src ImCaGxysys/arch/arm64/dev aplspmi.c aplpmgr.c

   Apparently we can't have "generic" compatibles anymore, even though they
   were accepted when support for the M1 and M1 Pro chips was upstreamed.  So
   now we have an incoherent mess where we need to add the right SoC-specific
   compatble to the list of compatibles to make sure drivers still attach when
   we update device trees to the latest Linux versions.

   ok jsg@
VersionDeltaFile
1.3+3-9sys/arch/arm64/dev/aplspmi.c
1.6+5-3sys/arch/arm64/dev/aplpmgr.c
1.16+4-3sys/arch/arm64/dev/aplns.c
1.6+3-2sys/arch/arm64/dev/apliic.c
1.8+3-2sys/arch/arm64/dev/aplmca.c
1.3+3-2sys/arch/arm64/dev/aplnco.c
+21-216 files not shown
+39-3312 files

OpenBSD/src 6CAp6K1sys/arch/arm64/dev aplpmu.c

   The device tree bindings changed during the upstreaming process.  Since it
   is relatively easy to support both the old and the new, do so.

   ok jsg@
VersionDeltaFile
1.8+25-15sys/arch/arm64/dev/aplpmu.c
+25-151 files

OpenBSD/src trv1BQssys/dev/fdt rkrng.c

   Device tree bindings for the RK3568 changed during the upstreaming process.
   Match on "rockchip,rk3568-rng" such that this driver attaches again when
   using the current U-Bott that we ship in the u-boot-rk356x package.

   ok phessler@
VersionDeltaFile
1.7+5-3sys/dev/fdt/rkrng.c
+5-31 files

OpenBSD/src KbPv9IRlib/libcrypto/cms cms_pwri.c

   cms_RecipientInfo_pwri_crypt: fix incorrect return check
   cms_RecipientInfo_pwri_crypt: plug leak of kekalg
   cms: fix incorrect length check in kek_unwrap_key()

   An incorrect length check can result in a 4-byte overwrite and an
   8-byte overread.

   From Stanislav Fort and Viktor Dukhovni via OpenSSL.
   CVE-2025-9230.

   ok jsing

   this is errata/7.6/023_libcrypto.patch.sig
VersionDeltaFile
1.31.4.1+6-6lib/libcrypto/cms/cms_pwri.c
+6-61 files

OpenBSD/src YI0Y7wvlib/libcrypto/cms cms_pwri.c

   cms_RecipientInfo_pwri_crypt: fix incorrect return check
   cms_RecipientInfo_pwri_crypt: plug leak of kekalg
   cms: fix incorrect length check in kek_unwrap_key()

   An incorrect length check can result in a 4-byte overwrite and an
   8-byte overread.

   From Stanislav Fort and Viktor Dukhovni via OpenSSL.
   CVE-2025-9230.

   ok jsing

   this is errata/7.7/010_libcrypto.patch.sig
VersionDeltaFile
1.31.8.1+6-6lib/libcrypto/cms/cms_pwri.c
+6-61 files

OpenBSD/src kZ82Bknlib/libcrypto/cms cms_pwri.c

   cms: fix incorrect length check in kek_unwrap_key()

   An incorrect length check can result in a 4-byte overwrite and an
   8-byte overread.

   From Stanislav Fort and Viktor Dukhovni via OpenSSL.
   CVE-2025-9230.

   ok jsing
VersionDeltaFile
1.35+2-2lib/libcrypto/cms/cms_pwri.c
+2-21 files

OpenBSD/src J0QSxfzlib/libcrypto/cms cms_pwri.c

   cms_RecipientInfo_pwri_crypt: fix incorrect return check

   ok jsing
VersionDeltaFile
1.34+3-3lib/libcrypto/cms/cms_pwri.c
+3-31 files

OpenBSD/src SBTsnW8lib/libcrypto/cms cms_pwri.c

   cms_RecipientInfo_pwri_crypt: plug leak of kekalg

   ok jsing
VersionDeltaFile
1.33+3-3lib/libcrypto/cms/cms_pwri.c
+3-31 files

OpenBSD/src lLqP0hdsbin/disklabel disklabel.c

   Rather than a raw 'p' in the informational message for disklabel -e,
   create the letter dynamically from MAXPARTITIONS-1 using the
   DL_PARTNUM2NAME() macro which can convert it to a-zA-Z.
   ok krw
VersionDeltaFile
1.257+4-3sbin/disklabel/disklabel.c
+4-31 files

OpenBSD/src K5I4widusr.bin/ssh sftp-client.c

   during sftp uploads, avoid a condition where a failed write could
   be ignored if a subsequent write succeeded.

   This is unlikely but technically possible because sftp servers are
   allowed to reorder requests.

   Reported by Graziano Stefani, ok tb@
VersionDeltaFile
1.180+6-4usr.bin/ssh/sftp-client.c
+6-41 files

OpenBSD/src PP7ocFfusr.bin/ssh sftp.c

   avoid a fatal() when sftp tab-completes filenames that share
   common utf-8 characters that don't encode to a complete codepoint

   from menthu.zhou via GHPR#587; ok dtucker@
VersionDeltaFile
1.244+6-1usr.bin/ssh/sftp.c
+6-11 files

OpenBSD/src CV6d73Jusr.bin/ssh mux.c

   fix memory leak in mux_client_request_stdio_fwd
   GHPR#575 by Boris Tonofa; ok dtucker
VersionDeltaFile
1.107+4-2usr.bin/ssh/mux.c
+4-21 files

OpenBSD/src 4xv0QUpsys/dev/pci/drm/i915 i915_driver.c

   IS_ALDERLAKE_P shouldn't be used in inteldrm_attach() as runtime info
   is not initialised until inteldrm_attachhook()

   Problem reported, fix tested and ok tb@
VersionDeltaFile
1.24+5-2sys/dev/pci/drm/i915/i915_driver.c
+5-21 files

OpenBSD/src S6rsAzvusr.bin/ssh auth2-chall.c

   Add explicit check for array overflow.  The array is bounded by a
   NULL sentinel which already prevents this, however since we check
   the bit vector for overflow Coverity assumes that check is for the
   devices array and flags it as a potential overflow.  Adding this
   additional check on the array placates CID 896018.  ok djm@ deraadt@
VersionDeltaFile
1.56+3-2usr.bin/ssh/auth2-chall.c
+3-21 files

OpenBSD/src dWRFgVcusr.bin/ssh gss-serv.c

   Move ifdef to start of file.  Removes diff vs portable.
VersionDeltaFile
1.33+3-3usr.bin/ssh/gss-serv.c
+3-31 files

OpenBSD/src mUDzm8Jusr.bin/ssh auth-krb5.c

   Include misc.h.  Removes diff vs portable.
VersionDeltaFile
1.25+2-1usr.bin/ssh/auth-krb5.c
+2-11 files

OpenBSD/src GvITX1Lusr.bin/ssh gss-genr.c

   Sort headers as per KNF.  Removes diff vs portable.
VersionDeltaFile
1.30+2-3usr.bin/ssh/gss-genr.c
+2-31 files

OpenBSD/src rEcTwzXgnu/gcc/gcc/config/m88k m88k.c

   Due to the way the save area for the registers used for argument passing is
   set up in variadic functions with the "new" frame layout, make sure that
   variadic functions always setup a frame pointer, even if they qualify for
   omitting them (e.g. variadic leaf functions which do not call alloca or use
   exceptions), as their save area is relative to %r30.

   This buglet amazingly went unnoticed as it was apparently not blatant enough
   to break the gcc testsuite - the only piece of code it broke horribly was
   the mvme88k boot blocks.
VersionDeltaFile
1.39+3-2gnu/gcc/gcc/config/m88k/m88k.c
+3-21 files

OpenBSD/src QC8hmLQgnu/usr.bin/cc Makefile

   Make obj in all SUBDIR even if COMPILER_VERION != gcc4.
VersionDeltaFile
1.5+2-2gnu/usr.bin/cc/Makefile
+2-21 files