OpenBSD/ports hYZOO77www/chromium/patches patch-chrome_browser_about_flags_cc patch-components_device_signals_core_common_linux_platform_utils_linux_cc

   update to 136.0.7103.59
VersionDeltaFile
1.129+90-45www/chromium/patches/patch-chrome_browser_about_flags_cc
1.1+79-0www/chromium/patches/patch-components_device_signals_core_common_linux_platform_utils_linux_cc
1.91+38-29www/chromium/patches/patch-chrome_browser_flag_descriptions_cc
1.91+37-28www/chromium/patches/patch-chrome_browser_flag_descriptions_h
1.108+28-35www/chromium/patches/patch-build_config_compiler_BUILD_gn
1.121+36-18www/chromium/patches/patch-chrome_browser_chrome_content_browser_client_cc
+308-155385 files not shown
+1,846-1,213391 files

OpenBSD/ports V4oDoSxsecurity/gnutls Makefile, security/gnutls/patches patch-lib_hello_ext_c

   MFC: gnutls: pull in repair from later version of MR #1930 to unbreak PSK

   from joel, ok aja
VersionDeltaFile
1.1.2.1+8-2security/gnutls/patches/patch-lib_hello_ext_c
1.202.2.1+1-0security/gnutls/Makefile
+9-22 files

OpenBSD/ports kv3osMmsecurity/gnutls Makefile, security/gnutls/patches patch-lib_hello_ext_c

   gnutls: pull in repair from later version of MR #1930 to unbreak PSK

   from joel, ok aja
VersionDeltaFile
1.2+8-2security/gnutls/patches/patch-lib_hello_ext_c
1.203+1-0security/gnutls/Makefile
+9-22 files

OpenBSD/src dHIyEM6regress/usr.bin/ssh/unittests/hostkeys test_iterate.c, regress/usr.bin/ssh/unittests/sshkey test_file.c test_fuzz.c

   remove DSA from the regression/unit test suite too.
VersionDeltaFile
1.10+43-165regress/usr.bin/ssh/unittests/hostkeys/test_iterate.c
1.13+1-94regress/usr.bin/ssh/unittests/sshkey/test_file.c
1.15+1-71regress/usr.bin/ssh/unittests/sshkey/test_fuzz.c
1.29+1-69regress/usr.bin/ssh/unittests/sshkey/test_sshkey.c
1.12+6-47regress/usr.bin/ssh/unittests/sshkey/mktestdata.sh
1.7+1-36regress/usr.bin/ssh/unittests/sshkey/common.c
+53-48253 files not shown
+120-62959 files

OpenBSD/src n5Lot75usr.sbin/lldp lldp.8 lldp.c

   lldp(8):
   - zap trailing whitespace
   - add -s to SYNOPSIS

   lldp.c:
   - put -s after -i in usage()
   - sync the argument name for -i in usage()
VersionDeltaFile
1.3+4-3usr.sbin/lldp/lldp.8
1.3+2-2usr.sbin/lldp/lldp.c
+6-52 files

OpenBSD/ports ArpKrnMsecurity/nss distinfo Makefile

   security/nss: update to 3.111.

   see https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_111.html
   (404 for now)
VersionDeltaFile
1.155+2-2security/nss/distinfo
1.196+1-1security/nss/Makefile
+3-32 files

OpenBSD/src rAMDnJ5usr.bin/ssh ssh-keygen.c sshkey.c

   finally remove DSA signature support from OpenSSH.

   feedback/ok tb@, ok deraadt@
VersionDeltaFile
1.478+6-83usr.bin/ssh/ssh-keygen.c
1.149+1-41usr.bin/ssh/sshkey.c
1.166+8-18usr.bin/ssh/ssh-keyscan.c
1.67+1-10usr.bin/ssh/sshkey.h
1.57+5-6usr.bin/ssh/PROTOCOL
1.613+1-7usr.bin/ssh/ssh.c
+22-16514 files not shown
+38-20720 files

OpenBSD/src lnkNODdusr.sbin/lldp lldp.c lldp.8

   add -s socket to allow connecting to an lldpd on a different unix socket.
VersionDeltaFile
1.2+13-4usr.sbin/lldp/lldp.c
1.2+9-3usr.sbin/lldp/lldp.8
+22-72 files

OpenBSD/ports npZAd9Fdevel/pylint distinfo Makefile

   update pylint to 3.3.7
VersionDeltaFile
1.17+2-2devel/pylint/distinfo
1.54+1-2devel/pylint/Makefile
+3-42 files

OpenBSD/src gzRLkK5sys/arch/amd64/amd64 acpi_wakecode.S locore0.S, sys/arch/amd64/include cpufunc.h

   Clear %dr6 and %dr7 on boot and on resume from suspend, in case the
   BIOS uses but doesn't reset them.  Display their values in trap_print()
   if it's a trace trap.

   problem observed on a MacPro6,1 by mglocker@
   ok deraadt@ mglocker@
VersionDeltaFile
1.44+20-1sys/arch/amd64/include/cpufunc.h
1.51+6-1sys/arch/amd64/amd64/acpi_wakecode.S
1.27+6-1sys/arch/amd64/amd64/locore0.S
1.107+3-1sys/arch/amd64/amd64/trap.c
+35-44 files

OpenBSD/src XVnNDpqshare/man/man8 starttls.8 afterboot.8

   clean up and revise some wording.
   delete lots of junk that maybe sounded good 20 years ago in starttls.8
   ok benno jmc
VersionDeltaFile
1.29+8-36share/man/man8/starttls.8
1.175+10-10share/man/man8/afterboot.8
1.34+1-5share/man/man8/boot_config.8
+19-513 files

OpenBSD/src tLsPieSlibexec/reorder_kernel reorder_kernel.sh

   just run make reconfig here, now that target exists
VersionDeltaFile
1.15+2-2libexec/reorder_kernel/reorder_kernel.sh
+2-21 files

OpenBSD/src uYhEQJjsys/arch/alpha/conf Makefile.alpha, sys/arch/amd64/conf Makefile.amd64

   lucas pointed out that config failure could be swalled by true.
   use a new incantation suggested by tb.
VersionDeltaFile
1.113+2-2sys/arch/sparc64/conf/Makefile.sparc64
1.142+2-2sys/arch/amd64/conf/Makefile.amd64
1.120+2-2sys/arch/alpha/conf/Makefile.alpha
1.54+2-2sys/arch/arm64/conf/Makefile.arm64
1.59+2-2sys/arch/armv7/conf/Makefile.armv7
1.113+2-2sys/arch/hppa/conf/Makefile.hppa
+12-128 files not shown
+28-2814 files

OpenBSD/src 442bfuPusr.bin/pkgconf/man pkgconf.1

   sort options list; no text or markup change;
   accepted and pushed upstream by Ariadne Conill
VersionDeltaFile
1.3+124-127usr.bin/pkgconf/man/pkgconf.1
+124-1271 files

OpenBSD/ports cbjIkl8sysutils/inotify-tools Makefile distinfo, sysutils/inotify-tools/patches patch-libinotifytools_src_inotifytools_cpp patch-libinotifytools_src_Makefile_am

   sysutils/inotify-tools: Update to 4.23.9.0

   Also move to the new github organization.
   ok tb@
VersionDeltaFile
1.5+9-5sysutils/inotify-tools/Makefile
1.1+12-0sysutils/inotify-tools/patches/patch-libinotifytools_src_inotifytools_cpp
1.3+5-4sysutils/inotify-tools/patches/patch-libinotifytools_src_Makefile_am
1.3+3-1sysutils/inotify-tools/pkg/PLIST
1.3+2-2sysutils/inotify-tools/distinfo
1.3+0-0sysutils/inotify-tools/patches/patch-src_Makefile_am
+31-122 files not shown
+31-128 files

OpenBSD/ports w8aq6jOshells/nushell distinfo crates.inc

   shells/nushell: Update to 0.104.0
VersionDeltaFile
1.14+98-70shells/nushell/distinfo
1.13+48-34shells/nushell/crates.inc
1.15+2-2shells/nushell/Makefile
+148-1063 files

OpenBSD/ports iwZV5YTdevel/esbuild distinfo Makefile

   devel/esbuild: Update to 0.25.3

   from Igor Zornik, thanks
VersionDeltaFile
1.6+2-2devel/esbuild/distinfo
1.6+1-1devel/esbuild/Makefile
+3-32 files

OpenBSD/ports 0gE8KZQsysutils/eza distinfo crates.inc

   sysutils/eza: Update to 0.21.3
VersionDeltaFile
1.22+68-58sysutils/eza/distinfo
1.21+33-28sysutils/eza/crates.inc
1.24+1-1sysutils/eza/Makefile
+102-873 files

OpenBSD/src Hae49uZusr.bin/ftp fetch.c

   When auto-fetching files:
    1. Error out when a command line argument that is supposed to specify
       a URL does not contain a colon, rather than silently ignoring all
       subsequent arguments including the bad one and reporting spurious
       success.  This can only happen for a bad argument following a valid
       URL argument.
    2. The check whether the "host" part of a URL is empty was ineffective.
       Move it after cutting off the directory part to make it actually work,
       and let it print a meaningful error message.

   Issue 1 reported by Henrich Hartzer <h at hartzer dot sh> on tech@.
   Issue 2 found in my audit of the function triggered by the report.

   OK tedu@, and deraadt@ is "not worried"
VersionDeltaFile
1.219+12-7usr.bin/ftp/fetch.c
+12-71 files

OpenBSD/ports 0xpjer3net Makefile

   +net/rate-mirrors

   OK: rsadowski@
VersionDeltaFile
1.1426+1-0net/Makefile
+1-01 files

OpenBSD/ports 4hZt9fanet/rate-mirrors distinfo crates.inc, net/rate-mirrors/pkg DESCR PLIST

   net/rate-mirrors: new port (version 0.20.0)

   net/rate-mirrors tests mirror speed for some Linux distributives,
   OpenBSD and any http/https mirrors via stdin.

   It uses info about submarine cables and internet exchanges (kudos to
   TeleGeography for data) to jump between countries and find fast mirrors.
   And it's fast enough to run it before each system update (~30 seconds
   with default options).

   OK: rsadowski@

VersionDeltaFile
1.1+548-0net/rate-mirrors/distinfo
1.1+273-0net/rate-mirrors/crates.inc
1.1+21-0net/rate-mirrors/Makefile
1.1+7-0net/rate-mirrors/pkg/DESCR
1.1+1-0net/rate-mirrors/pkg/PLIST
1.1.1.1+0-0net/rate-mirrors/Makefile
+850-04 files not shown
+850-010 files

OpenBSD/src tD3nkwisbin/mountd mountd.c

   Clear the resp buffer before calling getfh(). If getfh fails the response
   would leak stack memory to the less privileged process.

   Reported by S. Ai, H. Lefeuvre, Systopia team
   OK deraadt@
VersionDeltaFile
1.98+2-1sbin/mountd/mountd.c
+2-11 files

OpenBSD/ports 5pylmIntextproc/icu4c Makefile distinfo

   Update to icu4c-77.1; survived a bulk.
VersionDeltaFile
1.104+2-3textproc/icu4c/Makefile
1.47+2-2textproc/icu4c/distinfo
+4-52 files

OpenBSD/ports wzcFYOLsysutils/fzf distinfo Makefile

   Update to fzf-0.62.0

   From Laurent Cheylus (maintainer)
VersionDeltaFile
1.38+2-2sysutils/fzf/distinfo
1.45+1-1sysutils/fzf/Makefile
+3-32 files

OpenBSD/ports e1DoDoMx11/dbus Makefile, x11/gnome/mutter Makefile

   Drop uneeded chuncks now that we have a modern pkg-config(1).
VersionDeltaFile
1.13+0-12x11/gnome/mutter/patches/patch-meson_build
1.179+2-3x11/dbus/Makefile
1.184+2-0x11/gnome/mutter/Makefile
+4-153 files

OpenBSD/ports 9liRkZugames/freeorion Makefile

   Mark freeorion broken on maintainer's request
VersionDeltaFile
1.25+3-0games/freeorion/Makefile
+3-01 files

OpenBSD/ports hrfAssstextproc/syrics/pkg PLIST

   Fix plist.

   ok kn@
VersionDeltaFile
1.5+2-1textproc/syrics/pkg/PLIST
+2-11 files

OpenBSD/src 2lrP24Qregress/lib/libcrypto/x509 x509_name_test.c Makefile

   merge the x509name test into x509_name_test.c

   Remove the old x509name test and its Makefile rule. Its logic has
   been fully integrated into x509_name_test.c using a new table-driven
   approach. Each x509 name entry is added and validated step by step,
   checking both the string representation produced by X509_NAME_print_ex()
   and the internal RDN set structure.

   This makes the test easier to extend and maintain, and eliminates the need
   for an external .expected file or output diff.

   From Kenjiro Nakayama (with tiny tweaks)
VersionDeltaFile
1.3+122-1regress/lib/libcrypto/x509/x509_name_test.c
1.25+3-7regress/lib/libcrypto/x509/Makefile
1.4+1-1regress/lib/libcrypto/x509/x509name.c
1.2+0-0regress/lib/libcrypto/x509/x509name.expected
+126-94 files

OpenBSD/src VRiwa0Eusr.bin/ssh PROTOCOL PROTOCOL.certkeys

   Now that there's an I-D for certificate keys, refer to that instead
   of the much more basic format description we had previously.
VersionDeltaFile
1.56+2-2usr.bin/ssh/PROTOCOL
1.21+1-1usr.bin/ssh/PROTOCOL.certkeys
+3-32 files

OpenBSD/src xVm6dGCusr.bin/ssh ssh-agent.1

   - add full stop to the text in -a
   - move the -U and -u text to the correct place
VersionDeltaFile
1.84+8-8usr.bin/ssh/ssh-agent.1
+8-81 files