BSD Commit Log Search

   Update to harfbuzz-13.0.1.

   More QNetworkInformation nullptr checks

   Update to license-scanner-spdx-licenses-3.28.0.

   Update to py3-phonenumbers-9.0.25.

   Update to py3-mitogen-0.3.43.

   Update to py3-tifffile-2026.3.3.

   Update to p5-SVG-2.89.

   Update to py3-cachetools-7.0.3.

   Update to p5-Devel-Cover-1.52.

   Update to py3-astropy-iers-data-0.2026.3.2.0.47.4.

   As a temporary hack, model the timezone change for America/Vancouver
   as occurring on 2026-11-01 02:00, not on 2026-03-09.  This allows
   for a transition period where America/Vancouver still shows as PDT.

   It also replaces "-07" with "MST" post-transition until such time
   as a better abbreviation is chosen.

   mame: roll the port forward to slightly past the latest release.

   This brings in some build fixes for ASIO for long deprecated function use,
   which are required for building with the upcoming asio 1.36 update.

   From Brad.

   lang/gcc/15: add dlang support at aarch64, amd64 and sparc64

   OK: sthen@

   lang/gcc/11: add dlang support at sparc64

   With it's own daemonization / fd cleaning code, ssh-agent opens /dev/null
   O_RDWR after a pledge without "wpath".  This is allowed in current pledge
   because "/dev/null" is implicitly allowed to be opened even with the most
   restrictive pledges or unveils.  This is a design decision in pledge made
   at the very beginning, to satisfy libc requirements.  We've finally had
   enough experience and know how to fix that in the near-future, but need
   to review and fix all code which opens these implicit paths.
   The fix is to add "wpath", so that "/dev/null" can be opened O_RDWR.
   But that is uncomfortable, so we add unveil() allowing "/" with "r",
   4 unveil "x" for the potential askpass and helpers to be execve'd,
   and "/dev/null" with "wr".  As a result filesystem access is substantially
   more restricted than before, and ssh-agent is ready for the future pledge
   change.
   ok djm dtucker

   Stop doing access() before execve().  It is a TOCTOU, but also it
   forces use of unveil "rx" instead of "x".
   This is done by using a pipe() through the fork+execve attempt to
   expose execve failure and create the same error return as the access()
   used to do.
   ok djm dtucker

   Use the (no YP, non-threaded) cleaned up copy of getpwent.c placed into
   usr.bin/chpass instead of reaching around into libc and using crazy cpp
   options.
   In the near future the libc version will have more substantial changes
   (intersecting with pledge and unveil) which are much more difficult to
   manage using cpp features, so we stop this reacharound into libc subtree.

   Remove #ifdef's relating to YP and threading, and directives for symbol
   visibility when compiled inside the libc environment.

   Verbatim copy of /usr/src/lib/libc/gen/getpwent.c to here, which will
   be cleaned up for local purposes in the next steps.

   Remove qtwebkit

   Bye bye Qt5WebKit

   OK landry@

   Remove QtWebkit support

   OK landry

   Update to uv 0.10.9 from maintainer

   https://github.com/astral-sh/uv/releases/tag/0.10.9
   https://github.com/astral-sh/uv/releases/tag/0.10.8
   https://github.com/astral-sh/uv/releases/tag/0.10.7

   lang/scala: update to 3.8.2

   MFC: net/gmid: replace tmppath in titan(1) with unveil + cpath wpath

   Remove ruby*-capybara-webkit

   net/gmid: replace tmppath in titan(1) with unveil + cpath wpath

   update to borgmatic-2.1.3

   missed WANTLIB sync

   update to py3-charset-normalizer-3.4.5