Build date: 1774738802 - Sat Mar 28 23:00:02 UTC 2026 Build cvs date: 1774717921 - Sat Mar 28 17:12:01 UTC 2026 Build id: 2026-03-29.1 Build tags: amd64-regress ports sysupgrade Applied the following diff(s): /home/anton/tmp/robsd/src-sys-em.diff /home/anton/tmp/robsd/src-sys-uhidev-sispm.diff /home/anton/tmp/robsd/src-sysupgrade.diff P lib/libc/sys/open.2 P lib/libc/sys/pledge.2 U lib/libcrypto/crypto_assembly.h P lib/libcrypto/md5/md5_amd64_generic.S P lib/libcrypto/sha/sha1_amd64_generic.S P lib/libcrypto/sha/sha1_amd64_shani.S P lib/libcrypto/sha/sha256_amd64_generic.S P lib/libcrypto/sha/sha256_amd64_shani.S P lib/libcrypto/sha/sha512_amd64_generic.S P lib/libtls/tls_conninfo.c P lib/libtls/tls_ocsp.c P lib/libtls/tls_verify.c P regress/sys/kern/pledge/open/Makefile P regress/sys/kern/pledge/open/open.c M sys/dev/usb/uhidev.c P usr.bin/ssh/channels.c P usr.bin/ssh/monitor.c P usr.bin/ssh/sshbuf-misc.c P usr.bin/ssh/sshd_config.5 M usr.sbin/bgpd/session.c P usr.sbin/vmd/vioqcow2.c commit erKbJ16OU0R2JGCH Author: deraadt Date: 2026/03/28 17:12:01 After the kernel-writes-the-buffer changes to profil(2) a year ago, the profil(2) call only works for stop/restart of profiling. So pledge no longer interferes and it is available in "stdio". lib/libc/sys/pledge.2 commit oPRguaoWek4cINHM Author: dv Date: 2026/03/28 16:22:04 Remove pthread rwlocks from vmd(8)'s qcow code. The users of this code are single threaded today. The locks also don't look to fully protect key state in qcow images. If/when virtio block emulation ends up with multiple virtqueues, this will need to be revisited. ok mlarkin@, hshoexer@ usr.sbin/vmd/vioqcow2.c commit GVnWRrGQ3go42bNo Author: jsing Date: 2026/03/28 13:11:28 Include crypto_assembly.h instead of manually ensuring _CET_ENDBR exists. ok kenjiro@ tb@ lib/libcrypto/md5/md5_amd64_generic.S lib/libcrypto/sha/sha1_amd64_generic.S lib/libcrypto/sha/sha1_amd64_shani.S lib/libcrypto/sha/sha256_amd64_generic.S lib/libcrypto/sha/sha256_amd64_shani.S lib/libcrypto/sha/sha512_amd64_generic.S commit JSqHMZ9z0dzhr5J9 Author: jsing Date: 2026/03/28 13:09:55 Provide a crypto_assembly.h internal header. This will contain defines and macros that we need for assembly code, without polluting other headers that are primarily used for C code. For now, this just unconditionally provides _CET_ENDBR on amd64. ok kenjiro@ tb@ lib/libcrypto/crypto_assembly.h commit hIObrY5CPCie3Tdk Author: tb Date: 2026/03/28 11:49:31 libtls: const workarounds for X509_NAME in OCSP for OpenSSL 4 The API to look up a cert by subject or issuer name clearly only needs to do name comparisons in a collection of certs so should by all means take a const X509_NAME * as an argument. However, this isn't all that easy to do and hence it's only in OpenSSL 4 that this obvious step was reached. This means that there is no way around casting for older code. One could cast the return value of X509_get_issuer_name() or the argument passed to the two lookups by subject. jsing slightly prefers the second approach, so this is what we do here. ok djm jsing kenjiro lib/libtls/tls_ocsp.c commit uTH9Jer9lf1lDKTC Author: tb Date: 2026/03/28 11:33:33 libtls: simple cases of const for X509_NAME * After the const sprinkling in OpenSSL 1.1, X509_get_{issuer,subject}_name() still returned a non-const pointer for unclear reasons. In OpenSSL 4, the return value also grew a const qualifier, so move the two "name" in tls_conninfo.c and the "subject_name" in tls_verify.c to const. They are only used for further processing by already const correct functions (at least as far as X509_NAME is concerned). ok djm jsing kenjiro lib/libtls/tls_conninfo.c lib/libtls/tls_verify.c commit dqBqidjZ9a7ILwaq Author: dgl Date: 2026/03/28 07:23:57 Test that __pledge_open can bypass unveil. regress/sys/kern/pledge/open/Makefile regress/sys/kern/pledge/open/open.c commit svsPpnYf3Hoo9LUV Author: djm Date: 2026/03/28 05:16:18 ensure c->local_window doesn't underflow during updates; similar to checks performed elsewhere. From Renaud Allard usr.bin/ssh/channels.c commit TQttVmHbyX52jeyD Author: djm Date: 2026/03/28 05:10:25 fix base16 parsing; currently unused. From Renaud Allard usr.bin/ssh/sshbuf-misc.c commit ciB6F3iwO3m5gMEq Author: djm Date: 2026/03/28 05:07:12 mention that RevokedKeys is read by the server at each authentication time and should only ever be replaced atomically. usr.bin/ssh/sshd_config.5 commit GFHSR4J3tTSh80jP Author: djm Date: 2026/03/28 05:06:16 fix potential hang if /etc/moduli doesn't contain the requested DH group values; from 77c9ca, ok dtucker@, markus@ usr.bin/ssh/monitor.c commit Vu0aW4R25IjgXYnM Author: deraadt Date: 2026/03/28 04:13:52 improve explanation of when it __pledge_open works lib/libc/sys/open.2