OpenBSD/ports SsQuAMTsecurity/libfido2 Makefile distinfo, security/libfido2/patches patch-examples_util_c

   OpenSSH now requires v.2 of the middleware in order to support Ed25519
   keys on FIDO2 tokens. Point this port as a compatible middleware ahead
   of it landing upstream.

OpenBSD/src mZw9KD1usr.bin/ssh ssh-sk.c

   allow an empty attestation certificate returned by a security key
   enrollment - these are possible for tokens that only offer self-
   attestation. This also needs support from the middleware.

   ok markus@
VersionDeltaFile
1.10+3-2usr.bin/ssh/ssh-sk.c
+3-21 files

OpenBSD/src SpG0Obyusr.bin/ssh sshconnect2.c ssh-keygen.c

   security keys typically need to be tapped/touched in order to perform
   a signature operation. Notify the user when this is expected via
   the TTY (if available) or $SSH_ASKPASS if we can.

   ok markus@

OpenBSD/src qmvlLtrusr.bin/ssh readpass.c

   pass SSH_ASKPASS_PROMPT hint to y/n key confirm too
VersionDeltaFile
1.56+2-1usr.bin/ssh/readpass.c
+2-11 files

OpenBSD/src jK9bc9yusr.bin/ssh readpass.c misc.h

   dd API for performing one-shot notifications via tty or SSH_ASKPASS
VersionDeltaFile
1.55+85-1usr.bin/ssh/readpass.c
1.82+6-1usr.bin/ssh/misc.h
+91-22 files

OpenBSD/src 66F9epwusr.bin/ssh xmalloc.c xmalloc.h

   add xvasprintf()
VersionDeltaFile
1.36+14-7usr.bin/ssh/xmalloc.c
1.19+3-1usr.bin/ssh/xmalloc.h
+17-82 files

OpenBSD/ports fj96yGSsysutils/telegraf Makefile distinfo, sysutils/telegraf/patches patch-plugins_inputs_pf_pf_go patch-plugins_inputs_openntpd_openntpd_go

   Update telegraf to 1.12.3

OpenBSD/ports 3rKwEWgeditors/calligra/patches patch-filters_karbon_pdf_SvgOutputDev_cpp patch-filters_karbon_pdf_SvgOutputDev_h

   Fix for poppler-0.82.0.

   ok aja@

OpenBSD/ports xoOdre1databases/influxdb Makefile distinfo

   update influxdb to 1.6.6

   Take maintainer

   OK landry@ bket@

OpenBSD/ports IodqyLcgraphics/inkscape/patches patch-src_extension_internal_pdfinput_svg-builder_cpp patch-src_extension_internal_pdfinput_svg-builder_h

   Fix for poppler-0.82.0.

   ok aja@

OpenBSD/ports F95I6kRprint/poppler Makefile distinfo, print/poppler/pkg PLIST-main

   Update to poppler-0.82.0.

OpenBSD/ports qjm6vj6infrastructure/db network.conf

   update MASTER_SITE_KDE and prefer https over http/ftp.
VersionDeltaFile
1.9+10-8infrastructure/db/network.conf
+10-81 files

OpenBSD/src CNW0Q3Musr.sbin/smtpd parse.y smtpd.conf.5

   a long long time ago, there was no such thing as "from socket" and the
   socket listener was tagged "local" so we could trick "from local" into
   matching non-network connections.

   this hack was removed years ago and the socket listener still had this
   "local" tag hardcoded. this commit teaches parse.y how to assign a tag
   to a socket listener and removes the hardcoded "local".
VersionDeltaFile
1.264+15-2usr.sbin/smtpd/parse.y
1.227+7-5usr.sbin/smtpd/smtpd.conf.5
+22-72 files

OpenBSD/ports 2TJbhCfgraphics/py-dot/patches patch-dot_parser_py, mail/rspamd/pkg PFRAG.no-no_luajit

   zap empty files

OpenBSD/src 8nhj7lEsbin/unwind resolver.c

   we might not have a best resolver at all
VersionDeltaFile
1.62+9-4sbin/unwind/resolver.c
+9-41 files

OpenBSD/src URBIy58sbin/unwind resolver.c

   do not leak buf or region if either fails to allocate
VersionDeltaFile
1.61+52-53sbin/unwind/resolver.c
+52-531 files

OpenBSD/src M4Dojowusr.sbin/smtpd ruleset.c to.c

   fix a logic bug in ruleset matching that makes `from socket` rules possibly
   crash depending on how the ruleset is crafted.
VersionDeltaFile
1.46+6-3usr.sbin/smtpd/ruleset.c
1.44+2-2usr.sbin/smtpd/to.c
+8-52 files

OpenBSD/ports WhtpTUDx11/kde4 Makefile, x11/kde4/kget Makefile distinfo

   remove and unhook kde4 kget

   Sometimes it crash, sometimes it came up that HTTP/HTTPS and FTP are not
   supported protocols. Broken!

   OK fcambus@ kn@

OpenBSD/ports IP1TzfMwww/webkitgtk4 Makefile, www/webkitgtk4/pkg PLIST

   Add debug package.

   This is awesome we can provide this:
   27.3M   webkitgtk4-2.26.2p0.tgz
   503M    debug-webkitgtk4-2.26.2p0.tgz
VersionDeltaFile
1.113+4-1www/webkitgtk4/Makefile
1.17+2-2www/webkitgtk4/pkg/PLIST
+6-32 files

OpenBSD/ports qg4ywcGtextproc/lttoolbox Makefile

   reinstate DEBUG_PACKAGES, even though the symlink means it might not be
   that useful...
VersionDeltaFile
1.18+2-2textproc/lttoolbox/Makefile
+2-21 files

OpenBSD/ports pC3wyASmeta/kde4 Makefile

   remove broken digikam-kde4 from kde4-extras
VersionDeltaFile
1.72+3-6meta/kde4/Makefile
+3-61 files

OpenBSD/ports DI3n9RImeta/kde4 Makefile

   Unhook kget
VersionDeltaFile
1.71+3-4meta/kde4/Makefile
+3-41 files

OpenBSD/ports bT2H4jzgraphics/openexr Makefile, graphics/openexr/pkg PLIST-main

   Those '@so' are symlinks to @lib; so remove them.

OpenBSD/ports 9oAsPTvlang/vala distinfo Makefile

   update to vala-0.46.4
VersionDeltaFile
1.96+2-2lang/vala/distinfo
1.128+2-2lang/vala/Makefile
+4-42 files

OpenBSD/ports a7nBH0ksecurity/wesng Makefile distinfo, security/wesng/patches patch-wes_py

   update to wesng-0.98

OpenBSD/ports rDt9PnLinfrastructure/bin build-debug-info

   don't error out on symlinks for now, this allows things to proceed
VersionDeltaFile
1.8+10-4infrastructure/bin/build-debug-info
+10-41 files

OpenBSD/src MLGU0CFusr.bin/ssh ssh-sk.c ssh-ed25519-sk.c

   remove extra layer for ed25519 signature; ok djm@

OpenBSD/src Uza97tPusr.bin/ssh ssh-sk.c

   check sig_r and sig_s for ssh-sk keys; ok djm
VersionDeltaFile
1.8+13-1usr.bin/ssh/ssh-sk.c
+13-11 files

OpenBSD/src uxJHaMEusr.bin/ssh sshkey.c ssh-keygen.c

   enable ed25519 support; ok djm

OpenBSD/src Ux12Hypusr.bin/ssh ssh-sk.c sk-api.h

   update sk-api to version 2 for ed25519 support; ok djm

OpenBSD/src FRgsmiqusr.bin/ssh ssh-sk.c ssh-sk.h

   implement sshsk_ed25519_assemble(); ok djm
VersionDeltaFile
1.6+54-4usr.bin/ssh/ssh-sk.c
1.5+4-4usr.bin/ssh/ssh-sk.h
+58-82 files

OpenBSD/src pXYROaRusr.bin/ssh ssh-sk.c sshkey.c

   implement sshsk_ed25519_inner_sig(); ok djm

OpenBSD/src DRyIa2pusr.bin/ssh ssh-sk.h sshkey.c

   rename sshsk_ecdsa_sign() to sshsk_sign(); ok djm

OpenBSD/src UvLnocXusr.bin/ssh ssh-sk.c

   factor out sshsk_ecdsa_inner_sig(); ok djm@
VersionDeltaFile
1.3+43-20usr.bin/ssh/ssh-sk.c
+43-201 files

OpenBSD/src WbUf9v7usr.bin/ssh ssh-sk.c

   factor out sshsk_ecdsa_assemble(); ok djm@
VersionDeltaFile
1.2+59-37usr.bin/ssh/ssh-sk.c
+59-371 files

OpenBSD/src qE429Axusr.bin/ssh ssh-ed25519-sk.c sshkey.h

   implement ssh-ed25519-sk verification; ok djm@

OpenBSD/ports 2ho74Catextproc/lttoolbox Makefile

   not yet
VersionDeltaFile
1.17+2-2textproc/lttoolbox/Makefile
+2-21 files

OpenBSD/src ZXNpGofdistrib/sets/lists/man mi

   sync
VersionDeltaFile
1.1546+1-0distrib/sets/lists/man/mi
+1-01 files

OpenBSD/ports 7ue9x7Rx11/gnome/totem-pl-parser Makefile distinfo, x11/gnome/totem-pl-parser/pkg PLIST

   Update to totem-pl-parser-3.26.4.

OpenBSD/ports 3geFaUtgraphics/openexr Makefile, graphics/openexr/pkg PLIST-main

   Add debug packages.

OpenBSD/ports fEhqXePgames/braincurses Makefile

   braincurses: add MAKE_ENV to the `do-build' target, so the port really
   uses ports-gcc on base-gcc archs.

   OK kmos@ jca@
VersionDeltaFile
1.11+3-3games/braincurses/Makefile
+3-31 files

OpenBSD/src RJ4SG4Qsbin/iked iked.conf.5

   fix a formatting warning;
VersionDeltaFile
1.59+3-3sbin/iked/iked.conf.5
+3-31 files

OpenBSD/ports 1OXBFZlsecurity/keepassxc Makefile distinfo, security/keepassxc/patches patch-src_keys_drivers_YubiKeyStub_cpp patch-CMakeLists_txt

   Bugfix update keepassxc to 2.5.1

   All patches merged upstream.

OpenBSD/src Ac8KDxgsbin/iked parse.y iked.conf.5

   Add configuration options to explicitly specify ESN support for child SAs.
   The default behaviour remains unchanged.

   ok mikeb@ bluhm@
VersionDeltaFile
1.85+42-3sbin/iked/parse.y
1.58+15-2sbin/iked/iked.conf.5
+57-52 files

OpenBSD/ports 3hYl5gyinfrastructure/bin build-debug-info

   copy remaining annotations with special semantics (cwd but first, pkgpath
   with debug/ prepended)

   put a bit more boilerplate in the generated Makefile, so that the targets
   themselves are much shorter
VersionDeltaFile
1.7+60-25infrastructure/bin/build-debug-info
+60-251 files

OpenBSD/ports soIW511infrastructure/mk bsd.port.mk

   minor tweaks:
   - remove PKG_ARCH=* packages from DEBUG_PACKAGES, to help with
   introspection
   - ditch DEBUG_FILES entirely, the automated mechanism appears to be
   good enough
   - tweak show-debug-info to show the file names
VersionDeltaFile
1.1495+28-41infrastructure/mk/bsd.port.mk
+28-411 files

OpenBSD/src 7HM4lVbshare/man/man1 build-debug-info.1 Makefile

   document new helper

OpenBSD/src 59Ceb8Xshare/man/man5 bsd.port.mk.5

   document how DEBUG_PACKAGES works
VersionDeltaFile
1.517+74-2share/man/man5/bsd.port.mk.5
+74-21 files

OpenBSD/src cyhb1lbshare/man/man5 bsd.port.arch.mk.5

   document DEBUGINFO_ARCHS.
   While there, synch list with reality
VersionDeltaFile
1.11+13-2share/man/man5/bsd.port.arch.mk.5
+13-21 files

OpenBSD/src m9g9CE1usr.sbin/pkg_add pkg_create.1

   document the new annotations corresponding to DEBUG_PACKAGES
VersionDeltaFile
1.116+23-3usr.sbin/pkg_add/pkg_create.1
+23-31 files