Log message:
revbump for icu and libffi

Log message:
net: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Not committed (merge conflicts...):

net/radsecproxy/distinfo

The following distfiles could not be fetched (fetched conditionally?):

./net/citrix_ica/distinfo citrix_ica-10.6.115659/en.linuxx86.tar.gz
./net/djbdns/distinfo dnscache-1.05-multiple-ip.patch
./net/djbdns/distinfo djbdns-1.05-test28.diff.xz
./net/djbdns/distinfo djbdns-1.05-ignoreip2.patch
./net/djbdns/distinfo djbdns-1.05-multiip.diff
./net/djbdns/distinfo djbdns-cachestats.patch

Log message:
openvpn: Avoid to accidentally build HTML man pages

rst2html.py and rst2man.py are accidentally recognized if installed and used
leading to generation of HTML man pages and PLIST mismatch.

Log message:
net: Remove SHA1 hashes for distfiles

Log message:
openvpn: updated to 2.5.4

Overview of changes in 2.5.4
============================
Bugfixes
--------
- fix prompting for password on windows console if stderr redirection
  is in use - this breaks 2.5.x on Win11/ARM, and might also break
  on Win11/adm64 when released.

- fix setting MAC address on TAP adapters (--lladdr) to use sitnl
  (was overlooked, and still used "ifconfig" calls)

- various improvements for man page building (rst2man/rst2html etc)

- minor bugfix with IN6_IS_ADDR_UNSPECIFIED() use (breaks build on
  at least one platform strictly checking this)

- fix minor memory leak under certain conditions in add_route() and
  add_route_ipv6()

User-visible Changes
--------------------
- documentation improvements

- copyright updates where needed

- better error reporting when win32 console access fails

New features
------------
- also build man page on Windows builds

Log message:
revbump for boost-libs

Log message:
openvpn: updated to 2.5.3

Version 2.5.3
* Add missing free_key_ctx for auth_token
* Add github actions
* Implement auth-token-user
* Update copyrights
* openvpnmsica: properly schedule reboot in the end of installation
* msvc: add ARM64 configuration
* msvc: standalone building
* contrib/vcpkg-ports: add pkcs11-helper port
* vcpkg-ports: restore trailing whitespaces in .patch files
* GitHub actions: add MSVC build
* crypto_openssl.c: disable explicit initialization on Windows (CVE-2121-3606)
* contrib/vcpkg-ports: add openssl port with --no-autoload-config option set \ 
(CVE-2121-3606)
* Fix SIGSEGV (NULL deref) receiving push "echo"
* Fix build with mbedtls w/o SSL renegotiation support
* Improve documentation of AUTH_PENDING related directives
* Apply the connect-retry backoff to only one side of a connection

Log message:
Recursive revbump for security/mbedtls

Log message:
openvpn: updated to 2.5.2

The OpenVPN community project team is proud to release OpenVPN 2.5.2. It fixes \ 
two related security vulnerabilities (CVE-2020-15078) which under very specific \ 
circumstances allow tricking a server using delayed authentication (plugin or \ 
management) into returning a PUSH_REPLY before the AUTH_FAILED message, which \ 
can possibly be used to gather information about a VPN setup. In combination \ 
with “–auth-gen-token” or a user-specific token auth solution it can be \ 
possible to get access to a VPN with an otherwise-invalid account. OpenVPN 2.5.2 \ 
also includes other bug fixes and improvements. Updated OpenSSL and OpenVPN GUI \ 
are included in Windows installers.

Log message:
revbump for boost-libs