BSD Commit Log Search

   Updated devel/ninja-build, net/haproxy

   haproxy: updated to 3.2.9

   3.2.9
   - MINOR: ssl/sample: expose ssl_*c_curve for AWS-LC
   - Revert "BUG/MEDIUM: connections: permit to permanently remove an idle conn"
   - BUG/MEDIUM: connection: do not reinsert a purgeable conn in idle list
   - BUG/MEDIUM: connection/ssl: also fix the ssl_sock_io_cb() regarding idle list
   - BUG/MINOR: config: Limit "tune.maxpollevents" parameter to 1000000
   - BUG/MEDIUM: stick-tables: Make sure updates are seen as local
   - BUG/MINOR: quic: close connection on CID alloc failure
   - BUG/MINOR: acme: more explicit error when BIO_new_file()
   - BUG/MEDIUM: acme: move from mt_list to a rwlock + ebmbtree
   - BUG/MINOR: acme: can't override the default resolver
   - BUG/MINOR: check: fix reuse-pool if MUX inherited from server
   - DOC: configuration: add missing ssllib_name_startswith()
   - DOC: configuration: add missing openssl_version predicates
   - BUG/MEDIUM: stick-tables: Always return the good stksess from stktable_set_entry
   - BUG/MINOR: stick-tables: Fix return value for __stksess_kill()
   - MINOR: h1: h1_release() should return if it destroyed the connection

    [21 lines not shown]

   ninja-build: updated to 1.13.2

   1.13.2

   Fix Ninja exit code when interrupted

   Updated databases/redis, databases/py-redis

   py-redis: updated to 7.1.0

   7.1.0

   New Features

   Adding MSETEX command support.
   Adding CLAIM option to XREADGROUP command + unit tests
   Apply routing and response aggregation policies in OSS Cluster mode

   Experimental Features

   Adding support for CAS/CAD commands.
   Adding support for HYBRID search.

   Breaking changes (in experimental features)

   Replace default health check and failure detector with custom


    [4 lines not shown]

   redis: updated to 8.4.0

   Major changes compared to 8.2

   - `DIGEST`, `DELEX`; `SET` extensions - atomic compare-and-set and compare-and-delete for string keys
   - `MSETEX` - atomically set multiple string keys and update their expiration
   - `XREADGROUP` - new `CLAIM` option for reading both idle pending and incoming stream entries
   - `CLUSTER MIGRATION` - atomic slot migration
   - `CLUSTER SLOT-STATS` - per-slot usage metrics: key count, CPU time, and network I/O
   - Redis query engine: `FT.HYBRID` - hybrid search and fused scoring
   - Redis query engine: I/O threading with performance boost for search and query commands (FT.*)
   - I/O threading: substantial throughput increase (e.g. >30% for caching use cases (10% `SET`, 90% `GET`), 4 cores)
   - JSON: substantial memory reduction for homogeneous arrays (up to 91%)

   bulk-test-icu: fix PKGNAME in pattern

   ap2-qos: fix typo in HOMEPAGE

   ap2-fcgid: switch HOMEPAGE to https

   ap2-encoding: comment out dead HOMEPAGE

   ap-authnz-crowd: update HOMEPAGE

   antiword: link to a github fork, original homepage is down

   anthy: comment out dead HOMEPAGE

   Note pullup ticket #7032

   Pullup ticket #7032 - requested by nia
   security/pkcs11-helper: security fix

   Revisions pulled up:
   - security/pkcs11-helper/Makefile                               1.46
   - security/pkcs11-helper/distinfo                               1.9
   - security/pkcs11-helper/patches/patch-lib_pkcs11h-util.c       1.1

   ---
      Module Name:      pkgsrc
      Committed By:     nia
      Date:             Wed Nov 19 08:47:26 UTC 2025

      Modified Files:
        pkgsrc/security/pkcs11-helper: Makefile distinfo
      Added Files:
        pkgsrc/security/pkcs11-helper/patches: patch-lib_pkcs11h-util.c

      Log Message:

    [9 lines not shown]

   doc: Updated games/corsix-th to 0.69.1nb3

   corsix-th: Fix installation on macOS 26.1

   But I think I understand by looking at bulk reports that part of the package's
   content of macOS application bundle (at least for CorsixTH) depends on
   libraries installed by the macOS Framework. The PLIST.bundle file will
   therefore be inconsistent for other versions of macOS.

   doc: Updated security/gnutls to 3.8.11

   gnutls: update to 3.8.11.

   * Version 3.8.11 (released 2025-11-18)

   ** libgnutls: Fix stack overwrite in gnutls_pkcs11_token_init
      Reported by Luigino Camastra from Aisle Research. [GNUTLS-SA-2025-11-18,
      CVSS: low] [CVE-2025-9820]

   ** libgnutls: MAC algorithms for PSK binders is now configurable
      The previous implementation assumed HMAC-SHA256 to calculate the
      PSK binders. With the new gnutls_psk_allocate_client_credentials2()
      and gnutls_psk_allocate_server_credentials2() functions, the
      application can use other MAC algorithms such as HMAC-SHA384.

   ** libgnutls: Expose a new function to provide the maximum record send size
      A new function gnutls_record_get_max_send_size() has been added to
      determine the maximum size of a TLS record to be sent to the peer.

   ** libgnutls: Expose a new function to update keys without sending a KeyUpdate

    [25 lines not shown]

   kf6-karchive: fix build with latest qt6

   Updated databases/py-barman, math/py-xarray

   py-xarray: updated to 2025.11.0

   v2025.11.0 (Nov 17, 2025)

   This release changes the default for ``keep_attrs`` such that attributes are
   preserved by default, adds support for :py:class:`DataTree` in top-level
   functions, and contains several memory and performance improvements as well as
   a number of bug fixes.

   py-tinycss2: updated to 1.5.0

   1.5.0

   Support most of CSS Color Level 5
   Fix tokenizer crash on escaped Dimension units and Function names

   py-barman: updated to 3.16.2

   3.16.2 (2025-11-04)

   Bugfixes

   - Improve barman-cloud delete workaround to inspect error message content

     Some S3-compatible storages return an "InvalidRequest" error instead of
     "MissingContentMD5" during delete operations. Since we cannot rely on the error code
     alone, this updates the logic to also inspect the error message text to detect
     MissingContentMD5-like issues and apply the appropriate fallback.

     References: BAR-947.

   3.16.1 (2025-10-14)

   Notable changes


    [164 lines not shown]

   Updated devel/py-stevedore, net/wireshark

   wireshark: updated to 4.6.1

   4.6.1

   Bug Fixes

   wnpa-sec-2025-05 BPv7 dissector crash. Issue 20770.
   wnpa-sec-2025-06 Kafka dissector crash. Issue 20823.
   The following bugs have been fixed:
   L2CAP dissector doesn’t understand retransmission mode. Issue 2241.
   DNS HIP dissector labels PK algorithm as HIT length. Issue 20768.
   clang-cl error in "packet-zbee-direct.c" Issue 20776.
   Writing to an LZ4-compressed output file might fail. Issue 20779.
   endian.h conflics with libc for building plugins. Issue 20786.
   TShark crash caused by Lua plugin. Issue 20794.
   Wireshark stalls for a few seconds when selecting specific messages. Issue 20797.
   TLS Abbreviated Handshake Using New Session Ticket. Issue 20802.
   Custom websocket dissector does not run. Issue 20803.
   WINREG QueryValue triggers dissector bug in packet-dcerpc.c. Issue 20813.

    [10 lines not shown]

   py-stevedore: updated to 5.6.0

   5.6.0

   * Deprecate warn\_on\_missing\_entrypoint parameter
   * Add py.typed file
   * Unskip test
   * Add conflict resolution support
   * Make better use of super
   * typing: Remove use of \_init\_attributes (2/2)
   * typing: Remove use of \_init\_attributes (1/2)
   * typing: Remove unnecessary method subclass
   * docs: Update to use pyproject.toml
   * tests: Trivial fixups
   * Remove unnecessary type docstring field lists
   * typing: Add hints to tests
   * typing: Make better use of ParamSpec
   * typing: Add initial type hints
   * Deprecate verify\_requirements flag

    [13 lines not shown]

   anomy-sanitizer: comment out dead HOMEPAGE

   anjalioldlipi-ttf: update HOMEPAGE

   anise: switch HOMEPAGE to https