Build date: 1782856803 - Tue Jun 30 22:00:03 UTC 2026 Build cvs date: 1782851256 - Tue Jun 30 20:27:36 UTC 2026 Build id: 2026-07-01.1 Build tags: amd64-regress ports sysupgrade Applied the following diff(s): /home/anton/tmp/robsd/src-sys-em.diff /home/anton/tmp/robsd/src-sys-ptrace-revert.diff /home/anton/tmp/robsd/src-sys-uhidev-sispm.diff /home/anton/tmp/robsd/src-sysupgrade.diff P distrib/arm64/iso/Makefile P lib/libc/hidden/string.h P lib/libc/hidden/wchar.h P lib/libc/include/namespace.h P lib/libc/string/strlen.c P lib/libc/string/wcslen.c P lib/libc/sys/pledge.2 P lib/libutil/ober_read_elements.3 P libexec/ld.so/Makefile P libexec/login_ldap/aldap.c P sys/arch/arm64/dev/aplns.c P sys/dev/ic/nvme.c P sys/dev/pci/nvme_pci.c M sys/dev/usb/uhidev.c P sys/isofs/cd9660/cd9660_node.c P sys/isofs/udf/udf_vnops.c P sys/kern/sysv_msg.c P sys/kern/vfs_subr.c P sys/miscfs/fuse/fuse_ihash.c P sys/msdosfs/msdosfs_denode.c P sys/nfs/nfs_node.c P sys/ntfs/ntfs_vfsops.c P sys/ufs/ufs/ufs_ihash.c P usr.bin/ldap/aldap.c P usr.bin/ssh/packet.c P usr.bin/ssh/sftp.c P usr.bin/ssh/ssherr-libcrypto.c P usr.bin/tmux/grid.c P usr.bin/tmux/mode-tree.c P usr.bin/tmux/screen-write.c P usr.bin/tmux/tty-features.c P usr.bin/tmux/tty-keys.c P usr.bin/units/units.lib M usr.sbin/bgpd/session.c P usr.sbin/vmd/proc.c P usr.sbin/vmd/proc.h P usr.sbin/vmd/vmd.c P usr.sbin/ypldap/aldap.c commit bRtmJBvQvffcVFbQ Author: nicm Date: 2026/06/30 20:27:36 Change a malloc to calloc. usr.bin/tmux/grid.c commit n8KWL4Sno6fRAoyX Author: kettenis Date: 2026/06/30 19:18:54 LLVM now emits calls to strlen(3) and wcslen(3). Redirect those calls to our hidden aliases to prevent unnecessary PLT entries (like we already do for memmove(3), memcpy(4) and memset(3)). ok deraadt@ lib/libc/hidden/string.h lib/libc/hidden/wchar.h lib/libc/include/namespace.h lib/libc/string/strlen.c lib/libc/string/wcslen.c libexec/ld.so/Makefile commit u5xUngAiyaapQyEM Author: jan Date: 2026/06/30 18:55:29 login_ldap(8)/ldap(1): fix endless loop Goto fail on closed socket and check for evbuffer_add(3) errors, too. Original bug was reported by Matthias Pitzl. On Tue, Jun 30, 2026 at 11:35:32AM +0200, Martijn van Duren wrote: > Could you also make sure other aldap.c users get the fix? OK martijn@ libexec/login_ldap/aldap.c usr.bin/ldap/aldap.c commit viNVE6KqwQht6kRa Author: jan Date: 2026/06/30 18:20:28 ypldap(8): fix endless loop Goto fail on closed socket and check for evbuffer_add(3) errors, too. OK martijn@ usr.sbin/ypldap/aldap.c commit cBBSbWJPfstOZAkO Author: jcs Date: 2026/06/30 16:24:33 partially revert previous to return to 64-byte submission queue entries by default, only applying 128-byte entries on APPLE_NVME3 (T2) where we know it's needed the previous change broke APPLE_NVME2 which advertises 128 bytes but needs 64 ok dlg sys/arch/arm64/dev/aplns.c sys/dev/ic/nvme.c sys/dev/pci/nvme_pci.c commit o3Ez8WvCbqV91hpU Author: deraadt Date: 2026/06/30 16:18:10 Yet another AI assisted report has triggered on the belief that kill(2) against 0 (for pgrp) should not be permitted by pledge "proc". Nothing validates this premise. Blocking process group kills would break substantial amounts of software in dangeous ways, as it creates fragile invarient conditions. We previously tried to block this belief with kern_pledge.c:1.357 by subtly adding "/pgrp" in a comment, but that was not effective so try adding "kill(2) may still operate on the process group with pid 0." to the manual page. This is annoying because the pledge manual page usually describes what is blocked (resulting in process killing) rather than specifically listing what allowed. Discussed with Ivan Arce lib/libc/sys/pledge.2 commit JaSuZmdH0zkYkm6b Author: kirill Date: 2026/06/30 14:04:04 sys: check vnode identity after vget Several vnode lookup paths keep a vnode pointer from a filesystem hash, node tree, or alias list, then call vget() after dropping or lacking the lookup side protection. If the vnode is recycled while vget() waits, the pointer can still name a valid struct vnode, but no longer the object found by the lookup. Record v_id before vget() and retry the lookup if the id changes after the vnode is locked. This matches the existing namecache pattern and turns stale vnode hits into lookup retries instead of returning the wrong object. OK: claudio@ sys/isofs/cd9660/cd9660_node.c sys/isofs/udf/udf_vnops.c sys/kern/vfs_subr.c sys/miscfs/fuse/fuse_ihash.c sys/msdosfs/msdosfs_denode.c sys/nfs/nfs_node.c sys/ntfs/ntfs_vfsops.c sys/ufs/ufs/ufs_ihash.c commit V1NnygctJWczJj4G Author: dv Date: 2026/06/30 13:52:34 vmd(8): remove extraneous control socket objects. Vestiges of the past. ok hshoexer@ usr.sbin/vmd/proc.c usr.sbin/vmd/proc.h usr.sbin/vmd/vmd.c commit EQRWYG2LWvkSlKFh Author: mvs Date: 2026/06/30 13:49:06 Drop sleeping malloc() handling in sysctl_sysvmsg(). msginfo.msgmni is immutable, it can't be changed during sleep. ok millert kirill sys/kern/sysv_msg.c commit OucXHO5GXi3w5c1N Author: deraadt Date: 2026/06/30 11:48:18 grow iso distrib/arm64/iso/Makefile commit rkObihy9dqguZJH9 Author: nicm Date: 2026/06/30 10:07:05 Add default features for Ghostty, GitHub issue 5305 from Glib Shpychka. usr.bin/tmux/tty-features.c usr.bin/tmux/tty-keys.c commit ATmvXq4wjlBjYtot Author: nicm Date: 2026/06/30 09:20:43 Redraw when sync stops again (accidentally turned off), from Japin Li in GitHub issue 5304. usr.bin/tmux/screen-write.c commit H4DPAtpstgq4AQQL Author: jan Date: 2026/06/30 08:32:45 ober_read_elements(3): returns NULL on error, not -1 OK claudio@ ok tb lib/libutil/ober_read_elements.3 commit mT0sl3i13at1JmDZ Author: nicm Date: 2026/06/30 06:44:46 Remove C-r from help since it does not in fact exist. usr.bin/tmux/mode-tree.c commit ccUMQ1m5xH1mWp7n Author: tb Date: 2026/06/30 03:42:53 ssherr-libcrypto: avoid use of deprecated ERR_load_crypto_strings() Follow regress and use unchecked OPENSSL_init_crypto() because ERR_load_crypto_strings() has been deprecated in OpenSSL 1.1.0. This call can in principle fail, in which case there's a fallback to generic error strings. There is still use of OpenSSL 3.x-deprecated API in here. That's a problem for someone else to solve. ok djm usr.bin/ssh/ssherr-libcrypto.c commit xyyW0QhWmISQKNOJ Author: jsg Date: 2026/06/30 03:30:32 change Venezuelan Bolivar ISO 4217 code from VEF to VES VES was used for the 2018 redenomination. VED was used as part of the 2021 redenomination process. VES remains the official code after the 2021 redenomination according to ISO 4217 amendment number 170. usr.bin/units/units.lib commit vvUTsPSBqW7dGUgR Author: djm Date: 2026/06/30 02:30:19 another ruser_name/ruser_group vs attrib_to_stat() ordering screwup. Coverity CID 910530 via dtucker@ usr.bin/ssh/sftp.c commit ckRzXrH1ZOkZqpUd Author: djm Date: 2026/06/30 00:10:48 set FD_CLOEXEC on the fds between sftp and its ssh process, avoids risk of subcommands that write on odd fds breaking the connection. GHPR693 from Manuel Einfalt; feedback deraadt@ ok dtucker@ usr.bin/ssh/sftp.c commit jL5konznbL5jJMgr Author: djm Date: 2026/06/30 00:09:01 check key and IV length received in privsep state transfer exactly match the expected sizes for the selected cipher; partially redundant to similar checks in cipher_init(), but nice to be more exact. GHPR from jmestwa-coder; ok dtucker@ usr.bin/ssh/packet.c commit cXmqTNcFrzEwIVl7 Author: djm Date: 2026/06/29 23:00:00 revert bits that weren't ready for commit yet usr.bin/ssh/sftp.c commit kDbjyTKmfOYHYSlR Author: djm Date: 2026/06/29 22:56:44 Move user/group name lookup to correct place; coverity CID 910530 via dtucker@ usr.bin/ssh/sftp.c