BSD Commit Log Search

   update

   sync

   update to xf86-video-amdgpu 25.0.0

   tested by matthieu and myself on multiple machines

   sysutils/grafana: update to 12.4.1

   fix patch in previous, from tb@. the stack members also need to be
   freed, not just the stack itself.

   fix patch in previous, from tb@. the stack members also need to be
   freed, not just the stack itself.

   update to caddy-2.11.2, earlier diff & tested Keith Henderson Jr

   update to php-8.4.19

   update to php-8.5.4, same workaround for php_openssl_load_all_certs_from_file
   and sk_push as in 8.4.

   update to php-8.4.19

   an upstream commit changed php_openssl_load_all_certs_from_file() to use
   sk_new_reserve to avoid alloc failures from sk_push. libressl doesn't yet
   have this (and I want to push this to 7.8-stable anyway), so instead
   revert to sk_new_null as done in the previous version, and check sk_push
   for a failure return code instead and free/error out if hit.

   net/curl: update to 8.19.0

   Changes:
   * initial support for MQTTS
   * curl: support fractions for --limit-rate and --max-filesize
   * curl: with -J, use the redirect name as a backup

   Includes fixes for
   CVE-2026-1965: bad reuse of HTTP Negotiate connection
   CVE-2026-3783: token leak with redirect and netrc
   CVE-2026-3784: wrong proxy connection reuse with credentials
   CVE-2026-3805: use after free in SMB connection reuse

   Add new AFRINIC ASN block

   per https://mail.lacnic.net/pipermail/lacnog/2026-March/010239.html

   While there, merge ranges.

   OK tb@

   unbreak patching, patch should have been removed
   use FIX_EXTRACT_PERMISSIONS, tar extracts only user-readable, no group/other

   update to vim-9.2.140

   update to minify-2.24.10, from Igor Zornik (maintainer)

   update to dnscrypt-proxy-2.1.15, from Igor Zornik, maintainer timeout

   Update to jjui 0.10.1

   https://github.com/idursun/jjui/releases/tag/v0.10.1

   update to glances-4.5.1

   unbreak previous, and move the two LIB_DEPENDS sections together in Makefile

   lr, xe, pandoc: drop MAINTAINER lines per request on ports@

   Add support for RK3576 clocks and resets.
   A couple of additional clocks from kevlo@

   ok kevlo@

   Match the compatible for the RK3576.

   ok kevlo@

   Add a DMA constraint for the Rockchip RK3576 too as the SD controller can
   only do 32-bit DMA.

   ok patrick@, kevlo@

   Implement delayed hibernation.  If the machdep.hibernatedelay sysctl is
   set to a value that isn't zero, this specifies a number of seconds after
   which the machine will wake up from suspend and hibernate itself.

   ok florian@, mlarkin@

   sync

   pass "e" to fopen() to set O_CLOEXEC
   ok guenther

   Increase argv buffer from _POSIX2_LINE_MAX to _POSIX_ARG_MAX.

   This better handles matching commands with long arguments.  Note
   that it is still possible for a command to have command line arguments
   larger than _POSIX_ARG_MAX, but this should be enough in most cases.
   From Mikolaj Kucharski

   On OpenBSD, recv*msg(2) can return EPERM if the ancillary data from
   the other side contains a file descriptor type we don't like.  We
   have some protection against ridiculous types, and when running in pledge
   it gets even more strict.
   ok kettenis

   update to syncthing-2.0.15, this uses a newer quic-go which fixes an
   issue with go 1.26 found by Martin Ziemer.

   clues from tb, tested by Martin, ok kn

   Remove unused iwx(4) BZ -92 firmware, and add -89 firmware for MA devices.

   ok kettenis@ sthen@