BSD Commit Log Search

DiagnosticInfo: Fix missing LLVM_LIFETIME_BOUND on Twine arguments

Fix use after free errors in DiagnosticInfoResourceLimit uses.

security/vuxml: add openexr < 3.4.9 vulns

Security:       CVE-2026-34589
Security:       CVE-2026-34588
Security:       CVE-2026-34380
Security:       CVE-2026-34379
Security:       CVE-2026-34378
Security:       adb096d4-2e72-11f1-acc1-339a1a6999b0

PR:     294196

Merge branch 'main' into users/kasuga-fj/pipeliner-remove-isloopcarrieddep

remove useless test

[offload][libc] Adapt test to changes in #190239 (#190330)

www/tomcat101: Update 10.1.53 => 10.1.54

Changelog:
https://tomcat.apache.org/tomcat-10.1-doc/changelog.html#Tomcat_10.1.54_(schultz)

Sponsored by:   UNIS Labs
MFH:            2026Q2

(cherry picked from commit 3506a6143738005a9650cefd15d1c4a5eec144c9)

[MachinePipeliner] Remove isLoopCarriedDep and use DDG

www/tomcat101: Update 10.1.53 => 10.1.54

Changelog:
https://tomcat.apache.org/tomcat-10.1-doc/changelog.html#Tomcat_10.1.54_(schultz)

Sponsored by:   UNIS Labs
MFH:            2026Q2

[AArch64] Fold fcvtzu/fcvtzs(uitofp/sitofp(x)) roundtrip

stack-info: PR: https://github.com/llvm/llvm-project/pull/190328, branch: users/SavchenkoValeriy/feat/instcombine/fcvtzu_fcvtzs_roundtrip/stack/2

[InstCombine][NFC] Expose isKnownExactCastIntToFP as a public method

stack-info: PR: https://github.com/llvm/llvm-project/pull/190327, branch: users/SavchenkoValeriy/feat/instcombine/fcvtzu_fcvtzs_roundtrip/stack/1

   remove dup block that tries to close tls client ca fd

   it's already closed and fd set to -1 a few lines above.
   diff from Marc Jorge (openbsd [at] cypher-fox com), thanks!

[CIR] Auto-generate matchAndRewrite for one-to-one CIR-to-LLVM lowerings

When a CIR op specifies a non-empty `llvmOp` field, the lowering
emitter now generates the `matchAndRewrite` body that converts the
result type and forwards all operands to the corresponding LLVM op.
This removes 27 boilerplate lowering patterns from LowerToLLVM.cpp.

Ops needing custom logic (FMaxNumOp/FMinNumOp for FastmathFlags::nsz)
override `llvmOp = ""` to retain hand-written implementations.

Also fixes llvmOp names (TruncOp -> FTruncOp, FloorOp -> FFloorOp)
and adds a diagnostic rejecting conflicting llvmOp + custom constructor.

net/mtg: Connect to build

PR:             233908
Reported by:    antoine (via email)
Approved by:    blanket
Fixes:          d3068db9d8a2 (new port, MTPROTO proxy server for Telegram)
Sponsored by:   UNIS Labs
MFH:            2026Q2

(cherry picked from commit 2dd3636ba67c1e07c6aef2bbe9918dfabcc77556)

net/mtg: Connect to build

PR:             233908
Reported by:    antoine (via email)
Approved by:    blanket
Fixes:          d3068db9d8a2 (new port, MTPROTO proxy server for Telegram)
Sponsored by:   UNIS Labs
MFH:            2026Q2

[MLIR][MemRef] Fix AllocOp/AllocaOp flattening domination violation (#188980)

The generic MemRefRewritePattern handles AllocOp/AllocaOp by calling
getFlattenMemrefAndOffset with the op's own result as the source memref.
This inserts ExtractStridedMetadataOp and ReinterpretCastOp that consume
op.result before the alloc op itself in the block. After
replaceOpWithNewOp, op.result is RAUW'd to the new ReinterpretCastOp
result, leaving those earlier ops with forward references — a domination
violation caught by MLIR_ENABLE_EXPENSIVE_PATTERN_API_CHECKS.

Replace the AllocOp/AllocaOp cases in MemRefRewritePattern with a
dedicated AllocLikeFlattenPattern that never touches op.result until the
final replaceOpWithNewOp:
- sizes come from op.getMixedSizes() (operands, not the result)
- strides come from getStridesAndOffset on the MemRefType
- the flat allocation size is computed via
getLinearizedMemRefOffsetAndSize plus the static base offset so the
buffer covers [0, offset+extent)
- castAllocResult is simplified to take the pre-computed sizes and

    [10 lines not shown]

   Missed a line from previous.

net-mgmt/etherape: Update 0.9.20 => 0.9.21, take maintainership

Changelog:
* GooCanvas was unsupported and getting really old, replaced by
  GtkDrawingArea.
* --final-export is primarily meant to be used from other tools as a way
  to get statistics data from a replay. As such, --final-export exits
  automatically after the file replay ends and the dump is written.
* Compatibility Warnings:
  - removed GooCanvas dependency, drawing now done with plain Gtk.
  - new behavior for --final-export: exit after saving the XML dump.
* Changes summary:
  - Updated german translation, thanks to Christoph Brinkhaus.
  - Fix for german translation, thanks to Ronald W. Henderson.
  - Fix for gcc 15, thanks to Petr Gajdos.
  - Assorted refactorings and small modernizations, including autotools.

Improve port:
- Replace PORTVERSION with DISTVERSION.

    [14 lines not shown]

   Handle OSC 9;4 progress bar sequence and store in format variables, from
   Eric Dorland in GitHub issue 4954.

captive portal / hostwatch: output safety when list_hosts.py or decoding fails

arp.py seems to throw an exception an unpredictable times. Since
the most likely culprit is list_hosts.py, capture both
stderr of list_hosts and the exception value of the caller.

In any case, we reuse the old known ARP state to not kill
the CP background process

   Sync WANTLIB.

net-mgmt/etherape: Update 0.9.20 => 0.9.21, take maintainership

Changelog:
* GooCanvas was unsupported and getting really old, replaced by
  GtkDrawingArea.
* --final-export is primarily meant to be used from other tools as a way
  to get statistics data from a replay. As such, --final-export exits
  automatically after the file replay ends and the dump is written.
* Compatibility Warnings:
  - removed GooCanvas dependency, drawing now done with plain Gtk.
  - new behavior for --final-export: exit after saving the XML dump.
* Changes summary:
  - Updated german translation, thanks to Christoph Brinkhaus.
  - Fix for german translation, thanks to Ronald W. Henderson.
  - Fix for gcc 15, thanks to Petr Gajdos.
  - Assorted refactorings and small modernizations, including autotools.

Improve port:
- Replace PORTVERSION with DISTVERSION.

    [12 lines not shown]

   Don't try to preserve errno twice for readdir_r(), even outside
   the mutex protection in the _REENTRANT case.

[BOLT] Move extern "C" out of unnamed namespace (#190282)

GCC 15 changes how it interprets extern "C" in unnamed namespaces and
gives the variable internal linkage.

captive portal / hostwatch: output safety when list_hosts.py or decoding fails, capture possible exceptions in list_hosts.py as well

textproc/highlight: Update to 4.19

Changelog:
https://gitlab.com/saalen/highlight/-/blob/master/ChangeLog.adoc#user-content-highlight-4-19

PR:             294194
Approved by:    fluffy (mentor)

lxqt-wayland-session: fix patch

   Make audiocfg test play real dial sequence with number from AUDIOCFG_DIAL.

   Increase b64_pton buffer to allow for Base64 without padding, from
   Michal Majchrowicz.

posix_spawn test: switch to POSIX spelling for addchdir and addfchdir

Reviewed by:    dim
Sponsored by:   The FreeBSD Foundation
MFC after:      1 week
Differential revision:  https://reviews.freebsd.org/D56222

posix_spawn_file_action_addopen.3: ignoring close failure is now approved

Reviewed by:    dim
Sponsored by:   The FreeBSD Foundation
MFC after:      3 days
Differential revision:  https://reviews.freebsd.org/D56222