BSD Commit Log Search

   Forgot to add patch along with the fix

   Patch from Brad Smith that fixes vvenc on sparc64

   archivers/libarchive: update to 3.8.6

   Fixes for a motley collection of NULL pointer dereference, SEGV,
   out-of-bounds access, infinite loop, memory/file descriptor leaks.

   Update to gosec-2.25.0

   From Laurent Cheylus (maintainer)

   Update to tailscale-1.96.4

   From Adriano Barbosa (maintainer)

   strip Telegram binary to save +400M in installed size

   debug builds have long been disabled due to the binary being too big,
   but it still contains debug symbols.  instructing cmake to strip during
   fake fixes that.

   drop obsolete configure flags while here, cmake reports them as unused.

   Update to ergo-2.18.0

   From Lydia Sobot (maintainer)

   Update to miniflux-2.2.18

   From Igor Zornik (maintainer)

   Update to vultr-cli-3.9.2

   From Adriano Barbosa (maintainer)

   audio/beets: update to 2.8.0

   update to newer commit

   After the kernel-writes-the-buffer changes to profil(2) a year ago, the
   profil(2) call only works for stop/restart of profiling.  So pledge no
   longer interferes and it is available in "stdio".

   Remove pthread rwlocks from vmd(8)'s qcow code.

   The users of this code are single threaded today. The locks also
   don't look to fully protect key state in qcow images. If/when virtio
   block emulation ends up with multiple virtqueues, this will need
   to be revisited.

   ok mlarkin@, hshoexer@

   Update to gemini-cli-0.35.3.

   turn off py3.13 colourised exception handling

   MFC: tigervnc: build with newer xorg-server, backport upstream fixes from 1.16.2

   add backports from vim9.1 for py3.13 support

   update py-superqt to 0.8.1

   update ipython to 9.12.0

   Include crypto_assembly.h instead of manually ensuring _CET_ENDBR exists.

   ok kenjiro@ tb@

   Provide a crypto_assembly.h internal header.

   This will contain defines and macros that we need for assembly code,
   without polluting other headers that are primarily used for C code.

   For now, this just unconditionally provides _CET_ENDBR on amd64.

   ok kenjiro@ tb@

   Update to p5-Test-Unit-0.30.

   Update to p5-Locale-Codes-3.88.

   Update to duckdb-1.5.1.

   backport upstream fixes from 1.16.2

   update to freetds-1.5.15

   update to libiconv-1.19, from Brad (maintainer)

   libtls: const workarounds for X509_NAME in OCSP for OpenSSL 4

   The API to look up a cert by subject or issuer name clearly only needs to
   do name comparisons in a collection of certs so should by all means take a
   const X509_NAME * as an argument. However, this isn't all that easy to do
   and hence it's only in OpenSSL 4 that this obvious step was reached.

   This means that there is no way around casting for older code. One could
   cast the return value of X509_get_issuer_name() or the argument passed to
   the two lookups by subject. jsing slightly prefers the second approach,
   so this is what we do here.

   ok djm jsing kenjiro

   update to icingadb-1.5.1, from Alvar Penning (maintainer)

   libtls: simple cases of const for X509_NAME *

   After the const sprinkling in OpenSSL 1.1, X509_get_{issuer,subject}_name()
   still returned a non-const pointer for unclear reasons. In OpenSSL 4,
   the return value also grew a const qualifier, so move the two "name" in
   tls_conninfo.c and the "subject_name" in tls_verify.c to const. They are
   only used for further processing by already const correct functions (at
   least as far as X509_NAME is concerned).

   ok djm jsing kenjiro