OpenBSD/ports pGEZqiQsysutils/rclone distinfo Makefile

   Update to rclone-1.73.4

   Changes: https://rclone.org/changelog/#v1-73-4-2026-04-08
VersionDeltaFile
1.63+4-4sysutils/rclone/distinfo
1.73+1-1sysutils/rclone/Makefile
+5-52 files

OpenBSD/ports sGRPafCx11/kde-plasma/plasma-workspace Makefile, x11/kde-plasma/plasma-workspace/patches patch-libclock_alignedtimer_posix_cpp patch-libclock_alignedtimer_h

   libclock: add POSIX-compatible AlignedTimer for OpenBSD

   https://invent.kde.org/plasma/plasma-workspace/-/merge_requests/6487

   timerfd_create(2) and timerfd_settime(2) are Linux-specific and not available
   on OpenBSD. This alternative implementation uses a single-shot QTimer that
   reschedules itself.

   The next expiry is computed by rounding the current CLOCK_REALTIME down to the
   last interval boundary and stepping forward by one interval.
VersionDeltaFile
1.1+88-0x11/kde-plasma/plasma-workspace/patches/patch-libclock_alignedtimer_posix_cpp
1.1+25-0x11/kde-plasma/plasma-workspace/patches/patch-libclock_alignedtimer_h
1.1+18-0x11/kde-plasma/plasma-workspace/patches/patch-libclock_CMakeLists_txt
1.38+1-1x11/kde-plasma/plasma-workspace/Makefile
+132-14 files

OpenBSD/ports m1lxBvfgames/scid Makefile

   Now that ports-gcc is GCC 15, C++20 is available on sparc64

   Remove BROKEN-sparc64
VersionDeltaFile
1.16+0-2games/scid/Makefile
+0-21 files

OpenBSD/ports TdGV8VKproductivity/davical Makefile

   This was marked BROKEN-sparc64 back when PHP 8.1 was still in the tree.

   The issues then no longer apply, it builds fine on sparc64.

   Remove BROKEN-sparc64
VersionDeltaFile
1.41+0-2productivity/davical/Makefile
+0-21 files

OpenBSD/ports j5xv2wDdevel/rgbds Makefile

   GCC 15 has the needed bit.h file that was missing when this
   was marked BROKEN-sparc64 (like openttd, which was pointed out
   by gkoehler).

   Remove BROKEN-sparc64 now that it builds again.
VersionDeltaFile
1.18+0-2devel/rgbds/Makefile
+0-21 files

OpenBSD/src axKf6qFshare/man/man4 pfsync.4

   The pfsync manual page has no mention about safety of this protocol.
   Furthermore there are no configuration options for "key negotation",
   so we believe everyone knows to run this on a dedicated wire or on L2 inside
   some sort of encryption tunnel (it is the natural way to do it in anycase).
   Books do mention this detail, because books enjoy being more wordy.
   But the AI's can't figure it out, so put in some words to stop future
   AI's from sending us slop.
VersionDeltaFile
1.40+9-2share/man/man4/pfsync.4
+9-21 files

OpenBSD/src DG5zBkssys/net if_pfsync.c if_pfsync.h

   The pfcksum[] field in the pfsync packet header is not a hash of the
   packet.  It provides absolutely no security benefits, keep reading to
   find out.

   According to dlg, during early development this field was hopefully
   going to be a hash related to the ruleset for optimizing state
   match. That approach was abandoned (I guess because ruleset drift
   between firewalls happens too often during normal practice). As is
   usual in protocol development, at least 6 people were already using
   pfsync in production, so for compatibility the field was not
   removed...  and forgotten.  On send, it was left as zero, due to
   the full-header zero initialization code.

   So there is no useful checksum or hash stored in this field called
   'pfcksum[PF_MD5_DIGEST_LENGTH]'.  Actually there isn't a single line
   of code in the entire tree which writes to this array.  Besides the
   field definition in the structure, there is 1 comment elsewhere
   mentioning the field.  So no code at all.  I said no code, which is
   why there is no code checking it on receive, not even checking if it

    [19 lines not shown]
VersionDeltaFile
1.333+2-2sys/net/if_pfsync.c
1.66+2-2sys/net/if_pfsync.h
+4-42 files

OpenBSD/ports MMTEXZAdevel/tbb/patches patch-cmake_compilers_GNU_cmake

   First step to fixing build on sparc64 from Brad Smith
VersionDeltaFile
1.3+14-1devel/tbb/patches/patch-cmake_compilers_GNU_cmake
+14-11 files

OpenBSD/ports MeECPfGbiology/py-biopython distinfo Makefile, biology/py-biopython/pkg PLIST

   Update biopython 1.87.
VersionDeltaFile
1.24+3-1biology/py-biopython/pkg/PLIST
1.19+2-2biology/py-biopython/distinfo
1.54+1-2biology/py-biopython/Makefile
+6-53 files

OpenBSD/ports OflcUdUgeo/nco distinfo Makefile

   Update nco to 5.3.8.

   Prompted by maintainer Marco van Hulten
VersionDeltaFile
1.2+2-2geo/nco/distinfo
1.3+1-1geo/nco/Makefile
+3-32 files

OpenBSD/ports hYnc0Plsecurity/rust-openssl-tests distinfo crates.inc, security/rust-openssl-tests/patches patch-openssl-sys_build_main_rs

   Update to rust-openssl-tests 20260411

   Add patch to allow libressl 4.3.x
VersionDeltaFile
1.208+8-8security/rust-openssl-tests/distinfo
1.28+6-5security/rust-openssl-tests/patches/patch-openssl-sys_build_main_rs
1.170+3-3security/rust-openssl-tests/crates.inc
1.150+5-1security/rust-openssl-tests/pkg/PLIST
1.216+2-2security/rust-openssl-tests/Makefile
+24-195 files

OpenBSD/src xiPfDxllib/libc/sys unveil.2, sys/kern kern_unveil.c

   Before it is disabled, unveil allows you to override the settings on
   any vnode.  A block of #if 0 code suggests this might be different.
   That can be deleted.  This also shows one word "other" in the manual
   page is misleading.
   question asked by Stuart Thomas
   ok beck
VersionDeltaFile
1.57+5-24sys/kern/kern_unveil.c
1.24+3-3lib/libc/sys/unveil.2
+8-272 files

OpenBSD/src zbxSCJ0sys/arch/amd64/isa clock.c

   wrap the ; on a single while() line
VersionDeltaFile
1.44+3-2sys/arch/amd64/isa/clock.c
+3-21 files

OpenBSD/src JUA2ws0sys/kern exec_elf.c

   A binary without a PT_LOAD exec segment would later read a pinsyscall table
   and damage it strangely.  Such a binary cannot actually run, but we should
   avoid the internal pinsyscall table damage, and fail the execve with EINVAL.
   reported by Stuart Thomas
   ok guenther
VersionDeltaFile
1.196+3-3sys/kern/exec_elf.c
+3-31 files

OpenBSD/src upLfovpsys/arch/amd64/amd64 vmm_machdep.c

   vmm: Handle reserved bits in debug registers

   vmm(4) handles the %dr6 debug register on VMX on its own. It is not
   part of the VMCB. The AMD and Intel SDMs mention that a 'MOV DRn'
   instruction traps with #GP when any of the upper 32 bits of %dr6/%dr7
   is 1. Userland can set arbitrary values in that register, forcing an
   Intel machine to crash. An initial bogus %dr7 fails to launch the VM
   on both platforms.

   Reject such debug register values an all platforms.

   ok mlarkin@

   Reported-by: syzbot+f386e2f64711877025a6 at syzkaller.appspotmail.com
VersionDeltaFile
1.73+9-1sys/arch/amd64/amd64/vmm_machdep.c
+9-11 files

OpenBSD/ports yOGtZGPsecurity/openssl Makefile

   +libretls4
VersionDeltaFile
1.51+1-0security/openssl/Makefile
+1-01 files

OpenBSD/ports Zg18yF1security/openssl/libretls4 Makefile distinfo, security/openssl/libretls4/patches patch-tls_conninfo_c patch-tls_verify_c

   Initial revision
VersionDeltaFile
1.1+93-0security/openssl/libretls4/pkg/PLIST
1.1+47-0security/openssl/libretls4/Makefile
1.1+23-0security/openssl/libretls4/patches/patch-tls_conninfo_c
1.1+19-0security/openssl/libretls4/patches/patch-tls_verify_c
1.1+14-0security/openssl/libretls4/patches/patch-tls_ocsp_c
1.1+2-0security/openssl/libretls4/distinfo
+198-08 files not shown
+200-014 files

OpenBSD/ports tpiNab7sysutils/ruby-openfact distinfo Makefile

   update to openfact 5.6.0
VersionDeltaFile
1.7+2-2sysutils/ruby-openfact/distinfo
1.13+1-2sysutils/ruby-openfact/Makefile
+3-42 files

OpenBSD/ports PKVq2Obdevel/py-nbconvert distinfo Makefile, devel/py-nbconvert/pkg PLIST

   update py-nbconvert to 7.17.1
VersionDeltaFile
1.15+2-2devel/py-nbconvert/distinfo
1.32+1-1devel/py-nbconvert/Makefile
1.15+0-1devel/py-nbconvert/pkg/PLIST
+3-43 files

OpenBSD/src o7QRtXXusr.sbin/rpki-client main.c

   Call repo_check_timeout() before colleting the POLLOUT fds. Since
   repo_abort() called by repo_check_timeout() will add messages to
   be sent out.

   This brings back rev 1.263 which was accidentially reverted by rev 1.293

   OK tb@
VersionDeltaFile
1.305+3-3usr.sbin/rpki-client/main.c
+3-31 files

OpenBSD/ports MNf8qbCwww/hugo distinfo Makefile

   www/hugo: update to 0.160.1

   a micro update which fixed a few panics.

   Changes:
    - https://github.com/gohugoio/hugo/releases/tag/v0.160.1
VersionDeltaFile
1.94+2-2www/hugo/distinfo
1.102+1-1www/hugo/Makefile
+3-32 files

OpenBSD/ports I1DjXVVwww/iridium/patches patch-chrome_browser_about_flags_cc patch-chrome_browser_policy_configuration_policy_handler_list_factory_cc

   update to 2026.04.147
VersionDeltaFile
1.73+114-78www/iridium/patches/patch-chrome_browser_about_flags_cc
1.45+34-25www/iridium/patches/patch-chrome_browser_policy_configuration_policy_handler_list_factory_cc
1.15+39-12www/iridium/patches/patch-components_signin_public_base_signin_switches_cc
1.46+28-19www/iridium/patches/patch-chrome_browser_profiles_chrome_browser_main_extra_parts_profiles_cc
1.37+43-3www/iridium/patches/patch-net_socket_udp_socket_posix_cc
1.40+21-21www/iridium/patches/patch-remoting_host_remoting_me2me_host_cc
+279-158337 files not shown
+1,598-1,143343 files

OpenBSD/ports IcaVCqFgeo/pdal Makefile distinfo, geo/pdal/pkg PLIST

   geo/pdal: update to 2.10.1.

   see https://github.com/PDAL/PDAL/releases/tag/2.10.1
VersionDeltaFile
1.50+4-2geo/pdal/Makefile
1.38+2-2geo/pdal/distinfo
1.19+1-1geo/pdal/pkg/PLIST
+7-53 files

OpenBSD/ports e1r8KOSgeo/cdo Makefile distinfo

   Update cdo to 2.6.0.

   From Maintainer Marco van Hulten, thanks!
VersionDeltaFile
1.3+2-2geo/cdo/Makefile
1.3+2-2geo/cdo/distinfo
+4-42 files

OpenBSD/ports AL4v5IZaudio/csound Makefile

   Unbreak on powerpc by disabling altivec

   ok gkoehler@
VersionDeltaFile
1.5+4-0audio/csound/Makefile
+4-01 files

OpenBSD/ports Bdmiq5ugeo/py-owslib Makefile

   geo/py-owslib: add missing RDEP on py-lxml

   OGC protocols being mostly XML-based, it somewhat makes sense to depend
   on an XML parser...

   found by Marco Van Hulten via the MetaSearch QGIS plugin
VersionDeltaFile
1.35+2-0geo/py-owslib/Makefile
+2-01 files

OpenBSD/ports nmDiw8Fsysutils/awscli/v2 Makefile distinfo, sysutils/awscli/v2/patches patch-pyproject_toml

   Update awscli to 2.34.29

   Based on a diff from Joel Knight (maintainer)
VersionDeltaFile
1.3+471-268sysutils/awscli/v2/pkg/PLIST
1.3+13-10sysutils/awscli/v2/patches/patch-pyproject_toml
1.5+3-4sysutils/awscli/v2/Makefile
1.2+2-2sysutils/awscli/v2/distinfo
+489-2844 files

OpenBSD/ports yMKBwHkdevel/py-awscrt distinfo Makefile, devel/py-awscrt/pkg PLIST

   Update py-awscrt to 0.31.2

   Based on a diff from Joel Knight (maintainer)
VersionDeltaFile
1.3+8-0devel/py-awscrt/pkg/PLIST
1.2+2-2devel/py-awscrt/distinfo
1.3+1-1devel/py-awscrt/Makefile
+11-33 files

OpenBSD/ports rWe0pxQsysutils/awscli/v1 distinfo Makefile

   Update to awscli-1.44.78.
VersionDeltaFile
1.27+2-2sysutils/awscli/v1/distinfo
1.29+2-2sysutils/awscli/v1/Makefile
+4-42 files

OpenBSD/ports RSwn4k3net/py-boto3 distinfo Makefile

   Update to py3-boto3-1.42.88.
VersionDeltaFile
1.645+2-2net/py-boto3/distinfo
1.657+1-1net/py-boto3/Makefile
+3-32 files