FreeBSD/ports 00f77d1net/nats-surveyor distinfo Makefile

net/nats-surveyor: Update to 0.9.10
DeltaFile
+7-7net/nats-surveyor/distinfo
+1-2net/nats-surveyor/Makefile
+8-92 files

FreeBSD/ports a89746bnet/nats-nsc distinfo Makefile

net/nats-nsc: Update to 2.15.0
DeltaFile
+5-5net/nats-nsc/distinfo
+1-2net/nats-nsc/Makefile
+6-72 files

FreeBSD/ports 577dbddnet/nats-server distinfo Makefile

net/nats-server: Update to 2.14.2
DeltaFile
+5-5net/nats-server/distinfo
+1-2net/nats-server/Makefile
+6-72 files

FreeBSD/ports 832d30bdevel Makefile, devel/toomanycooks pkg-plist Makefile

devel/toomanycooks: New port - C++20 concurrency framework

Sponsored by:   tipi.work
DeltaFile
+94-0devel/toomanycooks/pkg-plist
+21-0devel/toomanycooks/Makefile
+3-0devel/toomanycooks/distinfo
+2-0devel/toomanycooks/pkg-descr
+1-0devel/Makefile
+121-05 files

FreeBSD/ports 7b09a55lang/gnat12 Makefile, lang/gnat13 Makefile

lang/gnat1?: gettext is always required

Ignore the portlint warning and always depends on gettext.
(See PR 277508)

PR:             295966
Reported by:    Robert William Vesterman
DeltaFile
+1-2lang/gnat13/Makefile
+1-2lang/gnat14/Makefile
+1-2lang/gnat12/Makefile
+3-63 files

FreeBSD/src 6365c45sys/sys elf_common.h

elf_common: Add FDO package metadata note type

Reviewed by:    fuz
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D57525
DeltaFile
+3-0sys/sys/elf_common.h
+3-01 files

FreeBSD/src 0881f6csecure/lib/libcrypto/man/man3 BIO_s_bio.3 d2i_X509.3, sys/crypto/openssl/powerpc chachap10-ppc.S

crypto/openssl: update artifacts to match 3.5.7 release

MFC after:      3 days
MFC with:       1523ccfd9
DeltaFile
+85-3secure/lib/libcrypto/man/man3/BIO_s_bio.3
+46-4sys/crypto/openssl/powerpc64le/chachap10-ppc.S
+46-4sys/crypto/openssl/powerpc/chachap10-ppc.S
+46-4sys/crypto/openssl/powerpc64/chachap10-ppc.S
+24-16secure/lib/libcrypto/man/man3/d2i_X509.3
+19-10secure/lib/libcrypto/man/man3/SSL_CTX_set_session_id_context.3
+266-41901 files not shown
+1,274-996907 files

FreeBSD/src 1523ccfcrypto/openssl/apps testrsa.h, crypto/openssl/crypto/cast cast_s.h

MFV: openssl 3.5.7

This change is a security release which resolves several issues with OpenSSL 3.5,
the highest severity issue being ranked "High". Users are strongly encouraged to
update to this release.

More information about the release (from a high level) can be found in
the release notes [1].

1. https://github.com/openssl/openssl/blob/openssl-3.5.7/NEWS.md

All conflicts were resolved with `--theirs`, taking the release diff
over the local diff; the conflicts occurred due to preemptive security
fixes applied by so@ in e508c343.

MFC after:      3 days (the important security issues have been
preemptively addressed)
Merge commit '3a71a35ad9dad0e5d2cad8efecc8ba9d57c42d43'


    [6 lines not shown]
DeltaFile
+854-8,335crypto/openssl/test/quic_record_test.c
+449-4,467crypto/openssl/apps/testrsa.h
+380-3,027crypto/openssl/fuzz/dtlsserver.c
+284-2,821crypto/openssl/test/pkcs12_format_test.c
+224-2,214crypto/openssl/test/evp_extra_test2.c
+257-2,049crypto/openssl/crypto/cast/cast_s.h
+2,448-22,913196 files not shown
+7,603-35,267202 files

FreeBSD/ports 32ef70enet/ovhcloud-cli distinfo Makefile, net/ovhcloud-cli/files modules.txt

net/ovhcloud-cli: update to 0.12.0

Changes: https://github.com/ovh/ovhcloud-cli/releases/tag/v0.12.0
DeltaFile
+14-0net/ovhcloud-cli/files/modules.txt
+9-3net/ovhcloud-cli/distinfo
+4-2net/ovhcloud-cli/Makefile
+27-53 files

FreeBSD/ports 8c6fc5bwww/linux-freetube distinfo Makefile

www/linux-freetube: Update to 0.24.1.b

ChangeLog:      https://github.com/FreeTubeApp/FreeTube/releases/tag/v0.24.1-beta
Reported by:    efb4f5ff-1298-471a-8973-3d47447115dc <notifications at github.com>
DeltaFile
+3-3www/linux-freetube/distinfo
+1-1www/linux-freetube/Makefile
+4-42 files

FreeBSD/src 4bdcff5sys/powerpc/booke machdep_e500.c, sys/powerpc/include spr.h

powerpc/booke: Add watchdog driver

The Book-E watchdog is effectively a state machine based around an AND
mask of the timebase register.  A single bit (0-63) is watched in the
timebase register, and when it transitions (by counting *or* by
programmatically setting) an exception is triggered.  The first
exception triggers a core interrupt.  The second is programmable.
In our case, we panic on the first and reset on second.
DeltaFile
+71-0sys/powerpc/booke/machdep_e500.c
+3-0sys/powerpc/include/spr.h
+74-02 files

FreeBSD/src d08cb1dsys/dev/watchdog watchdog.c

watchdog: Fix a couple type issues

* Force the type of the literal `1` passed to nstosbt() to ensure it's a
  64-bit type (or larger).  Otherwise it gets inconveniently typed to
  int, resulting in truncation.
* Use `flsll()` when converting sbt to power-of-2-nanoseconds to fix
  32-bit compatibility.

PR:             292616
Obtained from:  Hewlett Packard Enterprise
Fixes:  26d6617f3 ("watchdog: Convert to using sbintime_t format")
MFC after:      3 days
DeltaFile
+2-2sys/dev/watchdog/watchdog.c
+2-21 files

FreeBSD/src 4d8fde8usr.sbin/ppp fsm.c

ppp: Reject FSM messages whose length is smaller than the message header

PR:             271843
Reported by:    Robert Morris <rtm at lcs.mit.edu>
Reviewed by:    des, emaste
Differential Revision:  https://reviews.freebsd.org/D57139
DeltaFile
+6-0usr.sbin/ppp/fsm.c
+6-01 files

FreeBSD/src 7e97189usr.sbin/ppp chap.c chap.h

ppp: Permit CHAP challenges up to 255 bytes

RFC 1994 does not place any limit on the length of the value field in
challenge messages except that the length is a single octet which
bounds the maximum length to 255.

NB: I'm not sure why the local[] and peer[] arrays contain room for an
authentication name (AUTHLEN) in addition to a challenge value/response,
but I've just left that in place.

PR:             271955
Reported by:    Robert Morris <rtm at lcs.mit.edu>
Reviewed by:    des
Differential Revision:  https://reviews.freebsd.org/D57138
DeltaFile
+2-2usr.sbin/ppp/chap.c
+2-2usr.sbin/ppp/chap.h
+1-1usr.sbin/ppp/defs.h
+5-53 files

FreeBSD/src b5a8b93usr.sbin/ppp id.c

ppp: Don't fetch a non-existent variadic argument

Only fetch the optional mode argument to ID0open to pass to open(2) if
O_CREAT is present in the flags argument.  It is UB to fetch an
argument that doesn't exist.  On CHERI this UB results in a fault.

Reviewed by:    brooks
Obtained from:  CheriBSD
Sponsored by:   AFRL, DARPA
Differential Revision:  https://reviews.freebsd.org/D57137
DeltaFile
+4-1usr.sbin/ppp/id.c
+4-11 files

FreeBSD/src 0492dbesys/fs/cd9660 cd9660_rrip.c

cd9660: Don't parse RRIP records whose length overflows the sector boundary

PR:             272896
Reported by:    Robert Morris <rtm at lcs.mit.edu>
Reviewed by:    des, emaste
Differential Revision:  https://reviews.freebsd.org/D57135
DeltaFile
+18-8sys/fs/cd9660/cd9660_rrip.c
+18-81 files

FreeBSD/src f2f67dfsys/dev/mii miidevs smscphy.c

mii: Fix SMSC name

The LAN8700 / LAN8710 PHYs were Standard Microsystems Corporation (SMSC)
parts.  I presume SMC was chosen as an abbreviation, but the company
always used SMSC as its short name.

SMSC was acquired by Microchip in 2012.  I kept the pre-acquisition
name, as NetBSD (from where we obtained miidevs) uses SMSC.

Reviewed by:    adrian
Sponsored by:   The FreeBSD Foundation
Differential Revision:  https://reviews.freebsd.org/D56819

(cherry picked from commit 89c883c09ab5e0fdca7ac5dfe74fcc46b7669eb5)
DeltaFile
+4-4sys/dev/mii/miidevs
+2-2sys/dev/mii/smscphy.c
+6-62 files

FreeBSD/src b203a37sys/compat/linuxkpi/common/include/linux pm_qos.h

linuxkpi: Make pm_qos.h self-contained

Include <linux/types.h> for `false`.  This is needed by amdgpu somewhere
between Linux 6.12 and 6.15.

Reviewed by:    Minsoo Choo <minsoo at minsoo.io>, bz
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D57415

(cherry picked from commit 67df313015906d84d90df8e37795885e81cf8da5)
DeltaFile
+2-0sys/compat/linuxkpi/common/include/linux/pm_qos.h
+2-01 files

FreeBSD/src 4b57028usr.bin/xinstall xinstall.c, usr.bin/xinstall/tests install_test.sh

xinstall: Do not allow -l and -s together

Cannot strip the target if creating a link.

Reviewed by:    des
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D57398

(cherry picked from commit 521afce6a859c1d7ac9674e8f21ff45418becaf5)
DeltaFile
+6-0usr.bin/xinstall/xinstall.c
+3-0usr.bin/xinstall/tests/install_test.sh
+9-02 files

FreeBSD/src 166532eusr.bin/xinstall install.1

install.1: Convert link flags to a table

The five link flags get lost in prose.

Reviewed by:    ziaee
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D57418

(cherry picked from commit 248dd56d2dea03e4723e8225b890d02fcc10973f)
DeltaFile
+13-10usr.bin/xinstall/install.1
+13-101 files

FreeBSD/src 8853447usr.bin/xinstall/tests install_test.sh

xinstall: Add test for -d -s not allowed together

Reviewed by:    des
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D57403

(cherry picked from commit 4908bea5b7f5de70032e201e718958ef40bc3b03)
DeltaFile
+7-0usr.bin/xinstall/tests/install_test.sh
+7-01 files

FreeBSD/src 5ccda21usr.bin/xinstall install.1

install.1: Document options incompatible with -s

Reported by:    des
Reviewed by:    ziaee
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D57409

(cherry picked from commit b49021b49a78ca6a9e3a1a59c5aa6f2fec503afb)
DeltaFile
+5-1usr.bin/xinstall/install.1
+5-11 files

FreeBSD/ports 70c3e18www/iridium/files patch-chrome_browser_about__flags.cc patch-third__party_webrtc_modules_desktop__capture_linux_x11_x__server__pixel__buffer.cc

www/iridium: update to 2026.06.149.1
DeltaFile
+79-106www/iridium/files/patch-chrome_browser_about__flags.cc
+106-13www/iridium/files/patch-third__party_webrtc_modules_desktop__capture_linux_x11_x__server__pixel__buffer.cc
+99-0www/iridium/files/patch-third__party_libc++_src_include_____locale__dir_support_bsd__like.h
+98-0www/iridium/files/patch-third__party_libvpx_source_config_linux_arm64-highbd_vpx__dsp__rtcd.h
+49-35www/iridium/files/patch-build_config_compiler_BUILD.gn
+40-31www/iridium/files/patch-chrome_browser_policy_configuration__policy__handler__list__factory.cc
+471-185446 files not shown
+2,702-2,209452 files

FreeBSD/ports dc44c98www/c-icap distinfo Makefile

www/c-icap: update 0.6.4 -> 0.6.5

Changelog: https://sourceforge.net/p/c-icap/news/2026/06/the-c-icap-065-is-released/

Major changes:
    - Fixes some out-of-bounds reads and writes
    - TLS read/write operations may aborted and
      return error because of an interrupted system call.
DeltaFile
+3-3www/c-icap/distinfo
+1-1www/c-icap/Makefile
+1-1www/c-icap/pkg-plist
+5-53 files

FreeBSD/ports 91986e7security/vuxml/vuln 2026.xml

security/vuxml: Document p5-ack vulnerabilities
DeltaFile
+32-0security/vuxml/vuln/2026.xml
+32-01 files

FreeBSD/ports 72e50a5misc/p5-Business-ISBN-Data distinfo Makefile

misc/p5-Business-ISBN-Data: update 20260523.001 -> 20260604.001

Changelog: https://metacpan.org/dist/Business-ISBN-Data/changes

Port changes: Update TEST_DEPENDS to pass all the tests
DeltaFile
+3-3misc/p5-Business-ISBN-Data/distinfo
+4-1misc/p5-Business-ISBN-Data/Makefile
+7-42 files

FreeBSD/ports 579ac78textproc/p5-ack distinfo Makefile

textproc/p5-ack: update 3.9.0 -> 3.10.0

Changelog: https://metacpan.org/dist/ack/changes

Security:       CVE-2026-49147
Security:       CVE-2026-49146
Security:       CVE-2026-49145
DeltaFile
+3-3textproc/p5-ack/distinfo
+1-1textproc/p5-ack/Makefile
+4-42 files

FreeBSD/ports 8be3d5darchivers/p5-Archive-Tar distinfo Makefile

archivers/p5-Archive-Tar: update 3.10 -> 3.12

Changelog: https://metacpan.org/dist/Archive-Tar/changes

Major changes:
    - Allow '..' links in secure extract in parent path for
      symlinks and hardlinks

Port changes:
    - Update TEST_TEPENDS to pass all the tests
DeltaFile
+3-3archivers/p5-Archive-Tar/distinfo
+3-1archivers/p5-Archive-Tar/Makefile
+6-42 files

FreeBSD/src ab8ceaalib/libc/stdlib hcreate.3

hcreate(3): fix incorrect claim that hdestroy frees keys

The man page incorrectly stated that hdestroy() calls free(3) for
each comparison key. The implementation (hdestroy_r.c) only frees
the internal table structure, not the user-provided keys or data.
This matches POSIX, which says hdestroy "shall dispose of the
search table" without mentioning key deallocation.

Update the description to clarify that the caller is responsible
for freeing any memory associated with table entries.

PR: 291240
Signed-off-by: Kit Dallege <xaum.io at gmail.com>
Reviewed by: imp
Pull Request: https://github.com/freebsd/freebsd-src/pull/2095
DeltaFile
+6-5lib/libc/stdlib/hcreate.3
+6-51 files

FreeBSD/src 05a02d3usr.bin/mail mail.1

mail(1): fix temporary file path in FILES section

The FILES section listed /tmp/R* but the source code uses
/tmp/mail.R* (e.g. mail.RsXXXXXXXXXX, mail.ReXXXXXXXXXX,
mail.RxXXXXXXXXXX) as the mkstemp template prefix.

PR: 289980
Signed-off-by: Kit Dallege <xaum.io at gmail.com>
Reviewed by: imp
Pull Request: https://github.com/freebsd/freebsd-src/pull/2103
DeltaFile
+2-2usr.bin/mail/mail.1
+2-21 files