FreeNAS/freenas 8aef2b4tests/unit test_http_service_tnc.py

Fix TNC test
DeltaFile
+1-1tests/unit/test_http_service_tnc.py
+1-11 files

LLVM/project 6de2b5fllvm/lib/Target/Hexagon HexagonPatternsHVX.td, llvm/test/CodeGen/Hexagon vselect.ll

[Hexagon] Lower vselect instruction (#206675)

Selection fails with "Cannot select: vselect" when the condition and
both data operands of an HVX vselect are predicate vectors (e.g. v32i1,
v64i1, v128i1). This patch adds patterns for vselect on HVX predicate
vectors of all three element widths (VecQ8, VecQ16, VecQ32), expanding
them to V6_pred_or/V6_pred_and/V6_pred_and_n on Q registers.

Patch-By: @iajbar 
Fixes #206353
DeltaFile
+25-0llvm/test/CodeGen/Hexagon/vselect.ll
+9-0llvm/lib/Target/Hexagon/HexagonPatternsHVX.td
+34-02 files

OPNSense/core 3796738src/opnsense/mvc/app/models/OPNsense/OpenVPN OpenVPN.xml

openvpn: same for auth token secret

PR: https://forum.opnsense.org/index.php?topic=52272.0
DeltaFile
+3-1src/opnsense/mvc/app/models/OPNsense/OpenVPN/OpenVPN.xml
+3-11 files

NetBSD/pkgsrc kP8EufXprint/py-octoprint Makefile distinfo

   py-octoprint: updated to 1.11.8

   1.11.8

   Security fixes

   XSS in Suppressed Command Notifications, severity Moderate (4.6): OctoPrint versions up to and including 1.11.7 as well as 2.0.0rc1 and 2.0.0rc2 are affected by a vulnerability that allows injection of arbitrary HTML and JavaScript into Suppressed Command notifications popups generated by the printer.

   An attacker who successfully convinces a victim to print a specially crafted file could exploit this issue to disrupt ongoing prints, extract information (including sensitive configuration settings, if the targeted user has the necessary permissions for that), or perform other actions on behalf of the targeted user within the OctoPrint instance.

   See also the GitHub Security Advisory and CVE-2026-35163.

   File exfiltration possible via further parameter injection on upload endpoints, severity High (7.0): OctoPrint versions up until and including 1.11.7 as well as 2.0.0rc1 and 2.0.0rc2 contain a vulnerability that allows an attacker with the FILE_UPLOAD permission to exfiltrate files from the host that OctoPrint has read access to, by moving them into the upload folder where they then can be downloaded from. This vulnerability was already reported as GHSA-m9jh-jf9h-x3h2/CVE-2025-48067 but the fix provided in OctoPrint 1.11.2 turned out to be incomplete.

   The primary risk lies in the potential exfiltration of secrets stored inside OctoPrint's config, or further system files. By removing important runtime files, this could also be used to impact the availability of the host after an attempted server restart. Given that the attacker requires a user account with file upload permissions, the actual impact of this should however hopefully be minimal in most cases.

   See also the GitHub Security Advisory and CVE-2026-54134.

   Bug fixes

    [2 lines not shown]
VersionDeltaFile
1.19+4-6print/py-octoprint/Makefile
1.11+4-4print/py-octoprint/distinfo
+8-102 files

FreeBSD/ports e35d5f0misc/github-copilot-cli-legacy Makefile

misc/github-copilot-cli-legacy: Fix PKGBASE

Reported by:    Antoine Brodin <antoine at freebsd.org>
DeltaFile
+2-3misc/github-copilot-cli-legacy/Makefile
+2-31 files

LLVM/project e8b509fclang/lib/Sema SemaTemplate.cpp, clang/test/SemaCXX GH203701.cpp

[clang] use decl itself in static assert failed boolean condition printer (#203736)

fixes #203701
  
`getName()` assumes the decl used in the static asserts has a simple
identifier name, but in some cases like `operator int` don't — they
fails the assertion `Name.isIdentifier() && "Name is not a simple
identifier"` when the `static_assert` failure diagnostic tries to print
the boolean expression.

Switching to getDeclName() handles these special names properly.

Reproducer:
```c++
  struct S {
    constexpr S(auto) {}
    constexpr operator int() const { return 0; }
  };


    [13 lines not shown]
DeltaFile
+14-0clang/test/SemaCXX/GH203701.cpp
+1-1clang/lib/Sema/SemaTemplate.cpp
+15-12 files

NetBSD/pkgsrc KVQwdsPdoc CHANGES-2026

   Updated devel/SDL3, net/icinga2
VersionDeltaFile
1.4202+3-1doc/CHANGES-2026
+3-11 files

LLVM/project 813f06dllvm/lib/Target/AMDGPU AMDGPUIGroupLP.cpp, llvm/test/CodeGen/AMDGPU llvm.amdgcn.sched.group.barrier.ll llvm.amdgcn.iglp.opt.single.2b.mir

[AMDGPU] IGroupLP: Avoid DAG manipulation in greedyFind (#194827)

The greedy pipeline solver needs to determine the edges that are
implied by assigning an SUnit to a SchedGroup and the cost of this
assignment. The cost is the number of edges that cannot be added without
introducing cycles.  The current implementation (addEdges) adds the
edges to the DAG and uses the DAG reachability function for cycle
checking.  This happens for each candidate SchedGroup and needs to be
undone before other candidates are considered. The DAG manipulations
become a significant performance bottleneck on bigger pipelines.

This commit implements an alternative function for computing the edges
and cost of an assignment. This function performs the reachability
analysis that is necessary for the cyclicity checks without modifying
the DAG.

The new function returns the same cost as addEdges. The concrete edge
set may show insignificant differences, because, for instance,
the link function called from addEdges chooses not to add transitive

    [7 lines not shown]
DeltaFile
+198-200llvm/test/CodeGen/AMDGPU/llvm.amdgcn.sched.group.barrier.ll
+151-8llvm/lib/Target/AMDGPU/AMDGPUIGroupLP.cpp
+27-27llvm/test/CodeGen/AMDGPU/llvm.amdgcn.iglp.opt.single.2b.mir
+8-8llvm/test/CodeGen/AMDGPU/llvm.amdgcn.iglp.opt.single.2c.mir
+5-5llvm/test/CodeGen/AMDGPU/sched-group-barrier-pre-RA.mir
+3-3llvm/test/CodeGen/AMDGPU/sched-group-barrier-pipeline-solver.mir
+392-2516 files

NetBSD/pkgsrc 275J3cLnet/icinga2 distinfo Makefile

   icinga2: updated to 2.16.3

   2.16.3 (2026-07-01)

   This is a hotfix release that fixes a regression with the `Json.decode()` DSL function that was introduced in v2.16.2:
   The addition of a second argument to the internal `JsonDecode()` function unintentionally leaked into the DSL as a
   required argument. This version restores the old and intended behavior of `Json.decode()`.

   Changes

   * Restore single-argument `Json.decode()` in the DSL
   * Add the upgrading documentation for v2.15.1 again, which went missing with the v2.16.0 release
VersionDeltaFile
1.14+4-4net/icinga2/distinfo
1.29+2-2net/icinga2/Makefile
+6-62 files

OpenBSD/ports CgqWxTVnet/gnugk distinfo Makefile, net/gnugk/patches patch-configure

   Update to gnugk-5.15.
VersionDeltaFile
1.45+2-2net/gnugk/distinfo
1.103+1-1net/gnugk/Makefile
1.34+1-1net/gnugk/patches/patch-configure
+4-43 files

LLVM/project 5447679.github/workflows release-documentation.yml

Fix typo in release-documentation workflow (#207329)

This causes lots of "Invalid workflow file" errors.

Introduced in https://github.com/llvm/llvm-project/pull/204852.
DeltaFile
+1-1.github/workflows/release-documentation.yml
+1-11 files

Linux/linux d2c9a99include/linux mod_devicetable.h, include/linux/device-id usb.h input.h

Merge tag 'device-id-rework' of git://git.kernel.org/pub/scm/linux/kernel/git/ukleinek/linux

Pull mod_devicetable.h header split from Uwe Kleine-König:
 "Split <linux/mod_devicetable.h> in per subsystem headers

  <linux/mod_devicetable.h> is included transitively in nearly every
  driver in an x86_64 allmodconfig build of v7.1:

      $ find drivers -name \*.o -not -name \*.mod.o | wc -l
      21330
      $ find drivers -name \*.o.cmd -not -name \*.mod.o.cmd | xargs grep -l mod_devicetable.h | wc -l
      17038

  The result of this mixture of different and unrelated subsystem
  details is that even when touching an obscure device id struct most of
  the kernel needs to be recompiled. Given that each driver typically
  only needs one or two of these structures, splitting into per
  subsystem headers and only including what is really needed reduces the
  amount of needed recompilation.

    [29 lines not shown]
DeltaFile
+56-958include/linux/mod_devicetable.h
+111-0include/linux/device-id/usb.h
+62-0include/linux/device-id/input.h
+58-0include/linux/device-id/dmi.h
+54-0include/linux/device-id/pci.h
+48-0include/linux/device-id/pcmcia.h
+389-9581,644 files not shown
+1,606-2,5441,650 files

NetBSD/pkgsrc OC6VNsJdevel/SDL3 distinfo Makefile

   SDL3: updated to 3.4.12

   3.4.12

   This is a stable bugfix release, with the following changes:

   Fixed an assert on Windows in SDL_SetWindowOpacity()
   Improved support for external surfaces under Wayland
   Fixed visual artifacts when switching render targets with the Vulkan renderer
   Fixed crash rendering YUV textures on NVIDIA drivers with the Vulkan renderer
   Added SDL_HINT_ENABLE_STEAM_SCREEN_KEYBOARD to customize behavior on Steam Deck and Steam Machine
   Improved support for gamepads under Emscripten
   Added hotplug detection support when using libusb for HIDAPI controllers
   Fixed flipped Xbox 360 controller axes on macOS
   Fixed truncated long text input sequences when using sdl2-compat
VersionDeltaFile
1.11+4-4devel/SDL3/distinfo
1.12+2-2devel/SDL3/Makefile
1.12+2-2devel/SDL3/PLIST
+8-83 files

LLVM/project 2f3d026llvm/lib/Transforms/Vectorize VPlanRecipes.cpp, llvm/test/Transforms/LoopVectorize flags.ll

[VPlan] Intersect all fast-math flags in VPIRFlags::intersectFlags (#204664)

intersectFlags only ANDed the nnan and ninf flags and left the others
reassoc, arcp, contract, afn and nsz) unchanged. When CSE or
interleave-group narrowing combines two operations into one, the kept
operation's remaining flags then leak onto the merged value.

Intersect all fast-math flags instead, so the result keeps only the
flags present on both operations. A pure intersection is required
because the combined operations do not always compute the same value
(e.g. when narrowing interleave groups), so a flag may be kept only if
every combined operation had it.

Found via @jlebar's X86 LLVM bug hunt / FuzzX effort:
https://github.com/SemiAnalysisAI/FuzzX/blob/master/x86/bugs/090-vplan-cse-intersect-flags-fmf-wrong-direction

cc @jlebar
DeltaFile
+72-0llvm/test/Transforms/LoopVectorize/AArch64/transform-narrow-interleave-to-widen-memory-with-wide-ops.ll
+44-0llvm/test/Transforms/LoopVectorize/flags.ll
+2-4llvm/lib/Transforms/Vectorize/VPlanRecipes.cpp
+118-43 files

LLVM/project f233400llvm/lib/Target/X86 X86ISelLowering.cpp, llvm/test/CodeGen/X86 clmul-vector-256.ll clmul-vector-512.ll

[X86] matchUnaryShuffle - only prefer VZEXT_MOVL to VPMOVZX if it will fold away (#207031)

Clean up the logic matching VZEXT_MOVL in preference over VPMOVZX - we
should only use this if the source vector is GPR->FPU or a single
element load (or target load), which fold away to an implicit zero
extension.

Pre-SSE41 targets will attempt to match VZEXT_MOVL again more generally
later on.
DeltaFile
+167-169llvm/test/CodeGen/X86/clmul-vector-256.ll
+150-152llvm/test/CodeGen/X86/clmul-vector-512.ll
+99-106llvm/test/CodeGen/X86/clmul-vector.ll
+15-16llvm/test/CodeGen/X86/combine-or-shuffle.ll
+12-18llvm/test/CodeGen/X86/vector-shuffle-128-v4.ll
+11-15llvm/lib/Target/X86/X86ISelLowering.cpp
+454-4762 files not shown
+461-4878 files

OpenBSD/ports G13xtVWsysutils/terragrunt distinfo modules.inc

   Update to terragrunt-1.1.0.
VersionDeltaFile
1.395+268-308sysutils/terragrunt/distinfo
1.112+92-101sysutils/terragrunt/modules.inc
1.402+1-1sysutils/terragrunt/Makefile
+361-4103 files

FreeBSD/ports 7f01d4dastro/wcslib distinfo Makefile

astro/wcslib: Update to 8.9
DeltaFile
+3-3astro/wcslib/distinfo
+1-1astro/wcslib/Makefile
+4-42 files

FreeBSD/ports 6972a3cwww/py-fastapi distinfo Makefile

www/py-fastapi: Update to 0.139.0
DeltaFile
+3-3www/py-fastapi/distinfo
+1-1www/py-fastapi/Makefile
+4-42 files

FreeBSD/ports 88a894ewww/py-django-cms distinfo Makefile

www/py-django-cms: Update to 5.0.8
DeltaFile
+3-3www/py-django-cms/distinfo
+1-2www/py-django-cms/Makefile
+4-52 files

LLVM/project 4d8ec19llvm/include/llvm/CodeGen TargetRegisterInfo.h, llvm/lib/CodeGen TargetRegisterInfo.cpp MachineCopyPropagation.cpp

[CodeGen][NFC] Remove RegisterClasses pointer array (#207204)

All MCRegisterClasses are stored consecutively in memory. Therefore, we
can remove the RegisterClassses pointer array and save 17kiB in
.data.rel.ro.
DeltaFile
+1-28llvm/include/llvm/CodeGen/TargetRegisterInfo.h
+12-12llvm/lib/Target/AMDGPU/SIRegisterInfo.cpp
+9-12llvm/lib/CodeGen/TargetRegisterInfo.cpp
+9-10llvm/lib/CodeGen/SelectionDAG/ResourcePriorityQueue.cpp
+5-11llvm/utils/TableGen/RegisterInfoEmitter.cpp
+6-6llvm/lib/CodeGen/MachineCopyPropagation.cpp
+42-7912 files not shown
+78-11518 files

FreeBSD/ports 053c188devel/py-breathe Makefile, devel/py-breathe/files patch-documentation_source_conf.py

devel/py-breathe: fix LaTeX build with .svg images

Obtained from:  https://github.com/breathe-doc/breathe/pull/1027

Also, depend on ImageMagick (USES+=magick) because this now requires
the "convert" utility.

PR:             296471

Pull Request:   https://github.com/freebsd/freebsd-ports/pull/550
DeltaFile
+10-1devel/py-breathe/files/patch-documentation_source_conf.py
+2-1devel/py-breathe/Makefile
+12-22 files

FreeBSD/ports 2930983security/vuxml/vuln 2026.xml

security/vuxml: add security/openvpn[-devel] vuln entries.

Aligned with Gert Doering for openvpn-devel.

PR:             296429
Security:       ffa897a0-756f-11f1-b291-a74de6bb0320
Security:       CVE-2026-11771
Security:       CVE-2026-12932
Security:       CVE-2026-12996
Security:       CVE-2026-13117
Security:       CVE-2026-13122
Security:       CVE-2026-13698

Pull Request:   https://github.com/freebsd/freebsd-ports/pull/550
DeltaFile
+38-0security/vuxml/vuln/2026.xml
+38-01 files

FreeBSD/ports 8f92a09security/vuxml/files extra-validation.py

security/vuxml: Fix invalid escape sequence in Python re

ports/security/vuxml/files/extra-validation.py:13:
  SyntaxWarning: invalid escape sequence '\|'
    re_invalid_package_name = re.compile('[@!#$%^&*()<>?/\|}{~:]')

This can be fixed by making the re.compile argument a raw R'...' string,
capital R avoids issues with some Microsoft IDEs.
(Alternative is doubling the backslash, but that's less readable.)

Pull Request:   https://github.com/freebsd/freebsd-ports/pull/550
DeltaFile
+1-1security/vuxml/files/extra-validation.py
+1-11 files

FreeBSD/ports df3f177science/py-pyked Makefile distinfo

science/py-pyked: update 0.4.1-16 → 0.5.0
DeltaFile
+16-16science/py-pyked/Makefile
+3-3science/py-pyked/distinfo
+19-192 files

FreeBSD/ports c983b0dwww/py-habanero Makefile distinfo

www/py-habanero: update 2.4.0 → 2.9.2
DeltaFile
+6-7www/py-habanero/Makefile
+3-3www/py-habanero/distinfo
+9-102 files

FreeBSD/ports 436cdf2www/cpp-httplib distinfo Makefile

www/cpp-httplib: update 0.48.0 → 0.49.0
DeltaFile
+3-3www/cpp-httplib/distinfo
+1-1www/cpp-httplib/Makefile
+4-42 files

FreeBSD/ports 953ae66textproc/cpp-peglib distinfo Makefile

textproc/cpp-peglib: update 1.13.0 → 1.15.0
DeltaFile
+3-3textproc/cpp-peglib/distinfo
+1-1textproc/cpp-peglib/Makefile
+4-42 files

FreeBSD/ports b1998f1sysutils/opa distinfo Makefile

sysutils/opa: update 1.18.1 → 1.18.2
DeltaFile
+5-5sysutils/opa/distinfo
+1-1sysutils/opa/Makefile
+6-62 files

FreeBSD/ports d63e1e7textproc Makefile, textproc/py-deepsearch-glm Makefile distinfo

textproc/py-deepsearch-glm: New port: Graph Language Models
DeltaFile
+76-0textproc/py-deepsearch-glm/Makefile
+19-0textproc/py-deepsearch-glm/distinfo
+9-0textproc/py-deepsearch-glm/pkg-descr
+1-0textproc/Makefile
+105-04 files

FreeBSD/ports 60661f3misc/py-onnxruntime pkg-plist distinfo, misc/py-onnxruntime/files patch-onnxruntime_core_platform_posix_env.cc

misc/py-onnxruntime: New port: Cross-platform, high performance ML inferencing & training accelerator
DeltaFile
+121-0misc/py-onnxruntime/pkg-plist
+93-0misc/py-onnxruntime/distinfo
+63-0misc/py-onnxruntime/Makefile
+44-0misc/py-onnxruntime/files/patch-onnxruntime_core_platform_posix_env.cc
+43-0misc/py-onnxruntime/Makefile.MASTER_SITES
+43-0misc/py-onnxruntime/Makefile.DISTFILES
+407-04 files not shown
+465-010 files