OpenBSD/src j4BjxRfsys/dev/i2c sambat.c

   I've noticed slight hiccups on the keyboard input during the battery status
   update caused by the delay busy loop.  Using tsleep instead resolves that.
VersionDeltaFile
1.2+9-2sys/dev/i2c/sambat.c
+9-21 files

OpenBSD/ports MvrVSGudevel/arm-none-eabi/gdb/patches patch-gdb_common_enum-flags_h, devel/riscv32-esp-elf/gdb/patches patch-gdb_gdbsupport_enum-flags_h

   devel/*/gdb: unbreak build with llvm22 and revert prior workaround

   LLVM 22 has changed -Wenum-constexpr-conversion into a hard error.
   Revert the workaround introduced for LLVM 16 and replace idiom that
   results in undefined behavior.

   ok tb@
VersionDeltaFile
1.2+12-13devel/arm-none-eabi/gdb/patches/patch-gdb_common_enum-flags_h
1.2+3-14devel/riscv32-esp-elf/gdb/patches/patch-gdb_gdbsupport_enum-flags_h
1.2+3-13devel/xtensa-lx106-elf/binutils/patches/patch-gdb_common_enum-flags_h
1.2+3-13devel/xtensa-esp32s3-elf/gdb/patches/patch-gdb_gdbsupport_enum-flags_h
1.2+3-13devel/xtensa-esp32s2-elf/gdb/patches/patch-gdb_gdbsupport_enum-flags_h
1.2+3-13devel/xtensa-esp32-elf/gdb/patches/patch-gdb_gdbsupport_enum-flags_h
+27-7911 files not shown
+33-8417 files

OpenBSD/ports yI9Co94security/p5-Crypt-OpenSSL-RSA Makefile distinfo

   MFC: Update to Crypt::OpenSSL::RSA 0.41, tested by henning

   Attacks on the Marvin attack were too aggressive and 0.35 disabled the
   widely used PKCS#1 v1.5 padding outright, when only decryption is
   problematic due to the padding oracle. Signing is fine and required for
   many things, among other things TLS and DNSSEC.

     Version 0.35 disabled PKCS#1 v1.5 padding entirely to mitigate the
     Marvin attack. However, the Marvin attack only affects PKCS#1 v1.5
     decryption (padding oracle), not signatures. Version 0.38 re-enables
     use_pkcs1_padding() for use with sign() and verify(), while keeping it
     disabled for encrypt() and decrypt(). PKCS1_OAEP should be used for
     encryption and either PKCS1_PSS or PKCS1 can be used for signing.

     https://metacpan.org/pod/Crypt::OpenSSL::RSA#SECURITY
VersionDeltaFile
1.33.2.1+2-2security/p5-Crypt-OpenSSL-RSA/Makefile
1.13.2.1+2-2security/p5-Crypt-OpenSSL-RSA/distinfo
+4-42 files

OpenBSD/ports WiHj2L7net/abaddon Makefile distinfo, net/abaddon/patches patch-src_platform_cpp

   net/abaddon: update to 0.2.4

   From izzy Meyer (maintainer)
VersionDeltaFile
1.2+14-16net/abaddon/Makefile
1.2+0-13net/abaddon/patches/patch-src_platform_cpp
1.2+8-4net/abaddon/distinfo
1.2+3-4net/abaddon/pkg/PLIST
+25-374 files

OpenBSD/ports zrpq592mail/cyrus-imapd Makefile

   cyrus-imapd: add back bdep on p5-Type-Tiny

   This covers a few namespaces, among which at least Types::Standard is
   still used.
VersionDeltaFile
1.163+1-0mail/cyrus-imapd/Makefile
+1-01 files

OpenBSD/ports IY6QeTLx11/xarchive Makefile, x11/xarchive/patches patch-src_main_c

   xarchive: fix build with llvm22: getline() takes a size_t *, not an int *
VersionDeltaFile
1.4+19-0x11/xarchive/patches/patch-src_main_c
1.27+1-1x11/xarchive/Makefile
+20-12 files

OpenBSD/ports JR1bd1kdevel/cvstrac Makefile, devel/cvstrac/patches patch-cgi_c

   cvstrac: fix build with llvm22: two size_t -> socklen_t conversions
VersionDeltaFile
1.3+21-2devel/cvstrac/patches/patch-cgi_c
1.13+1-1devel/cvstrac/Makefile
+22-32 files

OpenBSD/src wqjRYxebin/ksh edit.c emacs.c

   bin/ksh: preserve tildes in completion

   Keep leading tilde expressions in the command line after file
   completion. Expanding ~user to pw_dir during editing bakes the result of
   an early passwd lookup into the command line; if the account changes
   before the command is executed, the command uses a stale pathname
   instead of the current ~user expansion.

   Completion still performs the lookup needed to enumerate pathname
   matches, but rewrites matches back to the spelling the user typed and
   does not leave a completion only lookup in the homedir cache.

   Also complete bare ~user prefixes from the passwd database, so ~us[TAB]
   can become ~user before pathname completion continues.

   Preserving tilde is the default behaviour.

   OK: deraadt@
VersionDeltaFile
1.72+247-11bin/ksh/edit.c
1.92+4-2bin/ksh/emacs.c
1.70+4-2bin/ksh/vi.c
1.14+2-1bin/ksh/edit.h
+257-164 files

OpenBSD/ports 7nnVEgqmail/mboxgrep Makefile, mail/mboxgrep/patches patch-src_wrap_c patch-src_wrap_h

   mboxgrep: fix build with llvm22

   gzFile is a pointer type, so it should be used, not gzFile *. It is also
   not equivalent to FILE *, so undo some incorrect fixes from prior compiler
   updates.
VersionDeltaFile
1.1+15-0mail/mboxgrep/patches/patch-src_wrap_c
1.1+12-0mail/mboxgrep/patches/patch-src_wrap_h
1.4+0-12mail/mboxgrep/patches/patch-src_main_c
1.1+12-0mail/mboxgrep/patches/patch-src_scan_c
1.19+1-1mail/mboxgrep/Makefile
+40-135 files

OpenBSD/ports wXtu1Whx11/stumpwm Makefile

   bump x11/stumpwm after lang/sbcl update
VersionDeltaFile
1.42+1-1x11/stumpwm/Makefile
+1-11 files

OpenBSD/ports na3I6bRx11/xli Makefile, x11/xli/patches patch-pcd_c

   xli: fix build with llvm22: bfill() is a memset wrapper using (char *)
VersionDeltaFile
1.1+12-0x11/xli/patches/patch-pcd_c
1.6+1-1x11/xli/Makefile
+13-12 files

OpenBSD/ports bmAKI00lang/sbcl Makefile distinfo, lang/sbcl/patches patch-src_runtime_os-common_c

   update lang/sbcl to 2.6.4

   Release notes: https://sbcl.org/news.html#2.6.4
VersionDeltaFile
1.89+2-2lang/sbcl/Makefile
1.53+2-2lang/sbcl/distinfo
1.2+1-1lang/sbcl/patches/patch-src_runtime_os-common_c
+5-53 files

OpenBSD/ports SNqm9Jsgames/xinvaders Makefile, games/xinvaders/patches patch-main_c patch-vaders_h

   xinvaders: fix build with llvm22

   gamewidget and labelwidget are Widgets of class vadersWidgetClass, not
   VadersWidgets
VersionDeltaFile
1.4+10-5games/xinvaders/patches/patch-main_c
1.5+7-1games/xinvaders/patches/patch-vaders_h
1.39+1-1games/xinvaders/Makefile
+18-73 files

OpenBSD/ports XvYj6oHdevel/gdb distinfo Makefile, devel/gdb/patches patch-gdb_doc_gdb_info-2

   Bugfix update to gdb-17.2

   Tests & ok tb@
VersionDeltaFile
1.5+4-4devel/gdb/patches/patch-gdb_doc_gdb_info-2
1.28+2-2devel/gdb/distinfo
1.103+1-2devel/gdb/Makefile
+7-83 files

OpenBSD/ports VUBNg6Cgraphics/krita-gmic-plugin Makefile distinfo, graphics/krita-gmic-plugin/patches patch-src_gmic_cpp

   Update krita-gmic-plugin to 3.7.4.1

   Feedback, tweaks and OK sdk@
VersionDeltaFile
1.12+16-22graphics/krita-gmic-plugin/Makefile
1.10+2-2graphics/krita-gmic-plugin/distinfo
1.5+2-2graphics/krita-gmic-plugin/patches/patch-src_gmic_cpp
1.4+3-0graphics/krita-gmic-plugin/pkg/PLIST
+23-264 files

OpenBSD/src ktzA9Vkusr.bin/tmux cmd-attach-session.c cmd-switch-client.c

   Tighten up read-only checks on attach-session, detach-client and
   switch-client so that a user should be able to only detach their own
   client. Reported by John Walker.
VersionDeltaFile
1.90+11-2usr.bin/tmux/cmd-attach-session.c
1.74+11-1usr.bin/tmux/cmd-switch-client.c
1.39+9-1usr.bin/tmux/cmd-detach-client.c
+31-43 files

OpenBSD/ports MKpp4rlsecurity/sequoia-sq Makefile

   Temporarily mark broken until I fix it after the recent nettle changes.
VersionDeltaFile
1.2+2-0security/sequoia-sq/Makefile
+2-01 files

OpenBSD/ports qtC75K5security/aide Makefile

   Stick with older nettle for the time being (security/libnettle).
VersionDeltaFile
1.32+7-4security/aide/Makefile
+7-41 files

OpenBSD/ports 8G8pGYhmail/claws-mail Makefile, multimedia/gstreamer1/plugins-bad Makefile

   Move from security/libnettle(v3) to security/nettle(v4).
VersionDeltaFile
1.211+2-3security/gnutls/Makefile
1.156+2-2mail/claws-mail/Makefile
1.144+2-1multimedia/gstreamer1/plugins-bad/Makefile
1.50+2-1net/libfilezilla/Makefile
+8-74 files

OpenBSD/ports 1H7Q26udatabases/freetds/patches patch-src_tds_sec_negotiate_gnutls_h, devel/opendht/patches patch-src_crypto_cpp

   Fix with nettle >=4.
VersionDeltaFile
1.1+78-0devel/opendht/patches/patch-src_crypto_cpp
1.1+61-0net/neatvnc/patches/patch-src_crypto_nettle_cipher_c
1.1+47-0x11/rdesktop/patches/patch-ssl_c
1.5+14-31geo/viking/patches/patch-configure
1.1+29-0geo/viking/patches/patch-src_md5_hash_c
1.1+28-0databases/freetds/patches/patch-src_tds_sec_negotiate_gnutls_h
+257-3111 files not shown
+432-3517 files

OpenBSD/ports K1zosiFsecurity/libnettle Makefile, security/libnettle/pkg PLIST

   Fix conflict with security/nettle.
VersionDeltaFile
1.18+81-86security/libnettle/pkg/PLIST
1.49+12-1security/libnettle/Makefile
+93-872 files

OpenBSD/ports 3CvSSQbsecurity Makefile

   +nettle
VersionDeltaFile
1.781+1-0security/Makefile
+1-01 files

OpenBSD/ports y1XI3clsecurity/nettle Makefile, security/nettle/patches patch-configure_ac patch-Makefile_in

   Initial revision
VersionDeltaFile
1.1+83-0security/nettle/pkg/PLIST
1.1+60-0security/nettle/patches/patch-configure_ac
1.1+38-0security/nettle/Makefile
1.1+27-0security/nettle/patches/patch-Makefile_in
1.1+24-0security/nettle/pkg/DESCR
1.1+21-0security/nettle/patches/patch-arm64_chacha-4core_asm
+253-018 files not shown
+338-024 files

OpenBSD/ports NJHyd8tgraphics/krita Makefile distinfo, graphics/krita/patches patch-cmake_modules_Findxsimd_cmake

   Update krita to 6.0.1
VersionDeltaFile
1.90+62-57graphics/krita/Makefile
1.32+63-6graphics/krita/pkg/PLIST
1.1+9-0graphics/krita/patches/patch-cmake_modules_Findxsimd_cmake
1.54+2-2graphics/krita/distinfo
+136-654 files

OpenBSD/ports dIidmeFnet/kdeconnect-kde/patches patch-plugins_digitizer_CMakeLists_txt patch-plugins_mousepad_CMakeLists_txt

   Add mssing patches to unbreak the build

   Spotted by naddy, thanks
VersionDeltaFile
1.1+21-0net/kdeconnect-kde/patches/patch-plugins_digitizer_CMakeLists_txt
1.3+7-9net/kdeconnect-kde/patches/patch-plugins_mousepad_CMakeLists_txt
+28-92 files

OpenBSD/ports S1s8qqEdevel/cmake distinfo Makefile.inc, devel/cmake/core/pkg PLIST-help

   Update CMake to 4.3.3
VersionDeltaFile
1.5+3-3devel/cmake/core/pkg/PLIST-help
1.99+2-2devel/cmake/distinfo
1.9+1-1devel/cmake/Makefile.inc
+6-63 files

OpenBSD/ports rIXZvskdevel/catch2 distinfo Makefile, devel/catch2/pkg PLIST

   Update catch2 to 3.15.0
VersionDeltaFile
1.53+2-2devel/catch2/distinfo
1.21+1-2devel/catch2/pkg/PLIST
1.60+1-1devel/catch2/Makefile
+4-53 files

OpenBSD/ports o88Icchsecurity/oath-toolkit Makefile

   Regen WANTLIB.
VersionDeltaFile
1.31+2-1security/oath-toolkit/Makefile
+2-11 files

OpenBSD/ports L44rThkprint/cups-filters Makefile

   Regen WANTLIB.
VersionDeltaFile
1.210+2-2print/cups-filters/Makefile
+2-21 files

OpenBSD/ports aqdhZKIsecurity/p5-Crypt-OpenSSL-RSA Makefile distinfo

   Update to Crypt::OpenSSL::RSA 0.41, tested by henning

   Attacks on the Marvin attack were too aggressive and 0.35 disabled the
   widely used PKCS#1 v1.5 padding outright, when only decryption is
   problematic due to the padding oracle. Signing is fine and required for
   many things, among other things TLS and DNSSEC.

     Version 0.35 disabled PKCS#1 v1.5 padding entirely to mitigate the
     Marvin attack. However, the Marvin attack only affects PKCS#1 v1.5
     decryption (padding oracle), not signatures. Version 0.38 re-enables
     use_pkcs1_padding() for use with sign() and verify(), while keeping it
     disabled for encrypt() and decrypt(). PKCS1_OAEP should be used for
     encryption and either PKCS1_PSS or PKCS1 can be used for signing.

   https://metacpan.org/pod/Crypt::OpenSSL::RSA
VersionDeltaFile
1.34+2-2security/p5-Crypt-OpenSSL-RSA/Makefile
1.14+2-2security/p5-Crypt-OpenSSL-RSA/distinfo
+4-42 files