FreeBSD/ports ff5a731www/freenginx-devel distinfo Makefile.extmod, www/freenginx-devel/files extra-patch-passenger-disable-telemetry extra-patch-passenger-build-nginx.rb

www/freenginx-devel: third-party modules management (+)

- update lua
- update luastream
- update passenger

to their recent releases/snapshots.

Bump PORTREVISION.

Sponsored by:   tipi.work
DeltaFile
+9-9www/freenginx-devel/distinfo
+5-5www/freenginx-devel/Makefile.extmod
+2-2www/freenginx-devel/files/extra-patch-passenger-disable-telemetry
+2-2www/freenginx-devel/files/extra-patch-passenger-build-nginx.rb
+2-2www/freenginx-devel/files/extra-patch-passenger-Configuration.c
+1-1www/freenginx-devel/Makefile
+21-216 files

Linux/linux cab9e33arch/x86/events/amd core.c brs.c, kernel/events core.c

Merge tag 'perf-urgent-2026-07-11' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

Pull perf events fixes from Ingo Molnar:

 - Fix SVM #GP on AMD CPUs that LBR but not BRS (Sandipan Das)

 - Fix UAF bug in the perf AUX code (Lee Jia Jie)

 - Fix address leakage in the AMD LBR code (Sandipan Das)

 - Fix address leakage in the AMD BRS code (Sandipan Das)

* tag 'perf-urgent-2026-07-11' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip:
  perf/x86/amd/brs: Fix kernel address leakage
  perf/x86/amd/lbr: Fix kernel address leakage
  perf/aux: Fix page UAF in map_range()
  perf/x86/amd/core: Avoid enabling BRS from the SVM reload path
DeltaFile
+8-4arch/x86/events/amd/core.c
+5-5arch/x86/events/amd/brs.c
+2-1arch/x86/events/amd/lbr.c
+2-0kernel/events/core.c
+17-104 files

Linux/linux b37fa0darch/x86/video video-common.c, arch/x86/virt/svm sev.c

Merge tag 'x86-urgent-2026-07-11' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

Pull x86 fixes from Ingo Molnar:

 - Fix resctrl resource leak (Tony Luck)

 - Fix resctrl umount race (Tony Luck)

 - Fix resctrl double-free (Reinette Chatre)

 - Fix x86 VGA display fallback logic during bootup on
   certain multi-GPU systems (Mario Limonciello)

 - Re-add a WBINVD call to the SNP bootstrap path to
   fix an SNP regression (Tycho Andersen)

* tag 'x86-urgent-2026-07-11' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip:
  x86/virt/sev: Revert "Drop WBINVD before setting MSR_AMD64_SYSCFG_SNP_EN"
  x86/video: Only fall back to vga_default_device() without screen info

    [3 lines not shown]
DeltaFile
+26-7fs/resctrl/rdtgroup.c
+14-9arch/x86/video/video-common.c
+2-0arch/x86/virt/svm/sev.c
+42-163 files

FreeBSD/ports 35dfcb9www/waterfox distinfo Makefile, www/waterfox/files patch-bug2046162 patch-gfx_skia_skia_src_core_SkCpu.cpp

www/waterfox: Update 6.6.15 => 6.6.16

Release Notes:
https://www.waterfox.com/releases/6.6.16/

PR:             296677
Sponsored by:   UNIS Labs
MFH:            2026Q3

(cherry picked from commit 71743838563eff87812f4ea702bcd228551ee39f)
DeltaFile
+0-31www/waterfox/files/patch-bug2046162
+0-29www/waterfox/files/patch-gfx_skia_skia_src_core_SkCpu.cpp
+3-3www/waterfox/distinfo
+2-2www/waterfox/Makefile
+5-654 files

FreeBSD/ports 7174383www/waterfox distinfo Makefile, www/waterfox/files patch-bug2046162 patch-gfx_skia_skia_src_core_SkCpu.cpp

www/waterfox: Update 6.6.15 => 6.6.16

Release Notes:
https://www.waterfox.com/releases/6.6.16/

PR:             296677
Sponsored by:   UNIS Labs
MFH:            2026Q3
DeltaFile
+0-31www/waterfox/files/patch-bug2046162
+0-29www/waterfox/files/patch-gfx_skia_skia_src_core_SkCpu.cpp
+3-3www/waterfox/distinfo
+2-2www/waterfox/Makefile
+5-654 files

Linux/linux 767707akernel signal.c exit.c, kernel/time posix-cpu-timers.c

Merge tag 'timers-urgent-2026-07-11' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

Pull timer fix from Ingo Molnar:

 - Fix a subtle posix-cpu-timers vs. exec() race, which
   unearthed other races in the area (Thomas Gleixner)

* tag 'timers-urgent-2026-07-11' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip:
  posix-cpu-timers: Prevent UAF caused by non-leader exec() race
DeltaFile
+115-58kernel/time/posix-cpu-timers.c
+9-1kernel/signal.c
+6-1kernel/exit.c
+130-603 files

LLVM/project 670e0a0llvm/test/Analysis/CostModel/AMDGPU is_fpclass.ll, llvm/test/Assembler print-formatted.ll

[IR] Use pretty printing for mask in is_fpclass (#207653)

The second argument of `llvm.is_fpclass` is a mask, where each bit
represents a floating-point class. Understanding the check that the call
makes in an IR dump requires additional effort. To simplify the
interpretation of IR dumps, a previously implemented pretty-printing
mechanism can be used:
https://github.com/llvm/llvm-project/commit/39e7712ac520ccfc43383b3e9d6ea8cf2958b8e3.
This commit implements this mechanism for printing the arguments of
`llvm.is_fpclass`.

This change also fixes the printing of argument names: if an argument
name is absent, it is simply not printed.
DeltaFile
+239-239llvm/test/Transforms/InstCombine/is_fpclass.ll
+177-60llvm/test/Transforms/SpeculativeExecution/spec-calls.ll
+69-69llvm/test/Transforms/InstCombine/create-class-from-logic-fcmp.ll
+64-64llvm/test/Analysis/CostModel/AMDGPU/is_fpclass.ll
+51-0llvm/test/Assembler/print-formatted.ll
+25-25llvm/test/Transforms/InstCombine/fpclass-check-idioms.ll
+625-45741 files not shown
+871-69247 files

Illumos/gate c9797e7usr/src/cmd/mdb Makefile.kmdb Makefile.libstand, usr/src/cmd/mdb/demo Makefile.common README

13755 mdb: remove CNOWARN_UNINIT
Reviewed by: Bill Sommerfeld <sommerfeld at hamachi.org>
Approved by: Gordon Ross <gordon.w.ross at gmail.com>
DeltaFile
+1-28usr/src/cmd/mdb/intel/amd64/kmdb/Makefile
+2-14usr/src/cmd/mdb/demo/Makefile.common
+5-6usr/src/cmd/mdb/Makefile.kmdb
+2-8usr/src/cmd/mdb/Makefile.libstand
+3-6usr/src/cmd/mdb/demo/README
+0-6usr/src/cmd/mdb/intel/ia32/libproc/Makefile
+13-6869 files not shown
+19-20175 files

OpenBSD/ports 50fMkMGdevel/py-cachetools Makefile

   py-cachetools: fix previous: needs setuptools_scm now
VersionDeltaFile
1.41+1-1devel/py-cachetools/Makefile
+1-11 files

Linux/linux 64d9ca4block blk-zoned.c blk-wbt.c, drivers/block ublk_drv.c xen-blkfront.c

Merge tag 'block-7.2-20260710' of git://git.kernel.org/pub/scm/linux/kernel/git/axboe/linux

Pull block fixes from Jens Axboe:

 - Limit blk_hctx_poll() to one jiffy. Prevents buggy drivers from
   spinning for too long, hence triggering a stalled RCU read section
   warning

 - Avoid a potential deadlock on zone revalidation failure, which could
   otherwise trigger a lockdep circular locking splat during a SCSI disk
   rescan

 - Remove a redundant GD_NEED_PART_SCAN set in add_disk_final()

 - Make writes to queue/wbt_lat_usec honor the WBT enable state

 - ublk fix to snapshot the batch commands before preparing IO, so that
   userspace can't change an already processed tag and trip the
   WARN_ON_ONCE() in the rollback path

    [13 lines not shown]
DeltaFile
+28-14block/blk-zoned.c
+20-1block/blk-wbt.c
+12-1drivers/block/ublk_drv.c
+9-0drivers/block/xen-blkfront.c
+1-5block/genhd.c
+5-0drivers/block/drbd/drbd_receiver.c
+75-212 files not shown
+79-248 files

Linux/linux 596d603io_uring msg_ring.c tw.c

Merge tag 'io_uring-7.2-20260710' of git://git.kernel.org/pub/scm/linux/kernel/git/axboe/linux

Pull io_uring fixes from Jens Axboe:

 - Restore full RCU read section in io_req_local_work_add(), which was
   mistakenly dropped with the DEFER_TASKRUN rework in this merge
   window. Revert the commit that grabbed the RCU read lock in
   io_ctx_mark_taskrun(), as that's no longer required with the previous
   fix.

 - Fix a dangling iovec after a provided-buffer bundle grow failure,
   also an issue introduced in this merge window.

 - Reject IORING_CQE_F_32 flag pass-through in MSG_RING to rings that
   weren't setup with CQE32 or CQE_MIXED.

 - Return -EINVAL rather than -ENOMEM from get_unmapped_area() when mmap
   validation fails, matching io_uring_mmap().


    [7 lines not shown]
DeltaFile
+27-7io_uring/msg_ring.c
+7-4io_uring/tw.c
+3-2io_uring/kbuf.c
+2-2io_uring/uring_cmd.c
+1-1io_uring/memmap.c
+40-165 files

NetBSD/src t89sFdCusr.bin/systat vmstat.c

   PR/60440: Havard Eidnes: avoid systat vmstat SysCal field overflow by scaling
VersionDeltaFile
1.93+3-6usr.bin/systat/vmstat.c
+3-61 files

OpenBSD/src RUVRF0Rlib/libc/arch/sparc64/gen sigsetjmp.S

   Use ENTRY_NB() for sig{set,long}jmp

   Like on arm, the END_WEAK() trigger "changed binding to STB_WEAK"
   warnings on sparc64 when compiled with clang.

   ok kettenis
VersionDeltaFile
1.6+3-3lib/libc/arch/sparc64/gen/sigsetjmp.S
+3-31 files

LLVM/project 31ddc7emlir/lib/Analysis/Presburger Matrix.cpp

[mlir][presburger] Avoid redundant zero-initialization in insertColumns (#199911)

When insertColumns does not trigger a physical reallocation, the inner
loop needlessly loops up to nReservedColumns - 1. This causes massive
redundant zero-writes on trailing columns that are already zero. This
patch truncates the inner loop start boundary to nColumns - 1, when the
reserved capacity is unchanged, optimizing the non-realloc path from
O(nRows * nReservedColumns) to O(nRows * nColumns).
DeltaFile
+4-4mlir/lib/Analysis/Presburger/Matrix.cpp
+4-41 files

OpenBSD/src d0VhKnnlib/libc/arch/sparc64/gen fpsetsticky.c fpsetmask.c

   Convert libc/arch/sparc64/gen to ANSI-style function definitions

   ok jsg kettenis, lgtm jca
VersionDeltaFile
1.2+2-3lib/libc/arch/sparc64/gen/fpsetsticky.c
1.2+2-3lib/libc/arch/sparc64/gen/fpsetmask.c
1.2+2-3lib/libc/arch/sparc64/gen/fpsetround.c
+6-93 files

OpenBSD/src eNKLr0Alib/libc/arch/sparc64/fpu fpu_explode.c fpu_implode.c

   Convert libc/arch/sparc64/fpu to ANSI-style function definitions

   ok jsg kettenis, lgtm jca
VersionDeltaFile
1.13+9-26lib/libc/arch/sparc64/fpu/fpu_explode.c
1.9+7-24lib/libc/arch/sparc64/fpu/fpu_implode.c
1.8+2-3lib/libc/arch/sparc64/fpu/fpu_sqrt.c
1.6+2-3lib/libc/arch/sparc64/fpu/fpu_add.c
1.6+2-3lib/libc/arch/sparc64/fpu/fpu_div.c
1.5+2-3lib/libc/arch/sparc64/fpu/fpu_mul.c
+24-626 files

FreeBSD/src c52bcd0sys/fs/nfsserver nfs_nfsdstate.c

nfsd: Garbage collect stray NFSv4 state

When a file is deleted on the NFS server by another client,
any NFSv4 state related to that file is left stranded.
This happens because the NFSv4 operations that free the
state use a CFH, which is set by a PutFH operation.
However, the PutFH fails with ESTALE because the file has
been deleted.

This patch adds a function called nfsrv_freestrandedstate()
that frees all the NFSv4 state related to a file and calls
this function when PutFH will be replying ESTALE.

While here, a helper function was defined to handle free'ng
of the nfslockfile structure and replaces the two places
where nearly identical code does this.

Reported by:    Richard Purdie <richard.purdie at linuxfoundation.org>
Tested by:      Michael Halstead <mhalstead at linuxfoundation.org>
MFC after:      2 weeks
DeltaFile
+75-14sys/fs/nfsserver/nfs_nfsdstate.c
+75-141 files

FreeBSD/ports 599ad80security/nextcloud-twofactor_admin distinfo Makefile

security/nextcloud-twofactor_admin: Update to 4.12.0
DeltaFile
+3-3security/nextcloud-twofactor_admin/distinfo
+2-2security/nextcloud-twofactor_admin/Makefile
+5-52 files

LLVM/project a11e844clang/include/clang/Analysis/Analyses/LifetimeSafety Utils.h

[clang][LifetimeSafety] Short-circuit joins of identical immutable containers (#208908)
DeltaFile
+4-0clang/include/clang/Analysis/Analyses/LifetimeSafety/Utils.h
+4-01 files

FreeBSD/ports 383868cemulators/wine-devel distinfo Makefile

emulators/wine-devel: Update 11.12 => 11.13

Changelog:
- Better support for input pointers.
- Improved keyboard scancode mapping on X11.
- Various bug fixes.
https://gitlab.winehq.org/wine/wine/-/releases/wine-11.13

PR:             296690
Sponsored by:   UNIS Labs
DeltaFile
+3-3emulators/wine-devel/distinfo
+1-1emulators/wine-devel/Makefile
+1-0emulators/wine-devel/pkg-plist
+5-43 files

NetBSD/src KmW0bxwsys/dev/pci veritefb.c veritefbreg.h

   Add Rendition Verite V2100/V2200 (PCI/AGP) wsdisplay driver.

   The driver supports:
   - Fully accelerated console, provided that the user installs microcode
   from the Windows driver (v20002d.uc). The driver runs unaccelerated
   until root file system is available, or if the microcode is not present.
   - Mode setting and DDC.

   Redistribution terms of the original microcode are unclear, therefore
   it must be obtained seprarately.

   At some point in the future, we may just develop an alternative microcode,
   since Verite RISC is documented and reverse engineering efforts have
   filled the knowledge gaps.
VersionDeltaFile
1.1+2,473-0sys/dev/pci/veritefb.c
1.1+259-0sys/dev/pci/veritefbreg.h
1.1+152-0sys/dev/pci/veritefb_ucode.h
1.1+88-0sys/dev/pci/veritefbio.h
1.454+8-1sys/dev/pci/files.pci
+2,980-15 files

NetBSD/src wcVv6AFsys/dev/pci pcidevs_data.h

   Leftover regen.
VersionDeltaFile
1.1518+1,629-1,622sys/dev/pci/pcidevs_data.h
+1,629-1,6221 files

OpenBSD/ports BhGkoX0devel/git distinfo Makefile, devel/git/patches patch-connect_c patch-transport-helper_c

   Update to git-2.55.0.
VersionDeltaFile
1.219+4-4devel/git/distinfo
1.125+4-0devel/git/pkg/PLIST-main
1.298+1-2devel/git/Makefile
1.2+0-0devel/git/patches/patch-connect_c
1.2+0-0devel/git/patches/patch-transport-helper_c
+9-65 files

NetBSD/pkgsrc F7yPEdnlang/nodejs distinfo Makefile

   Pullup ticket #7153 - requested by taca
   lang/nodejs: Security fix

   Revisions pulled up:
   - lang/nodejs/Makefile                                          1.354
   - lang/nodejs/distinfo                                          1.322

   ---
      Module Name:    pkgsrc
      Committed By:   adam
      Date:           Mon Jun 22 08:55:22 UTC 2026

      Modified Files:
              pkgsrc/lang/nodejs: Makefile distinfo

      Log Message:
      nodejs: updated to 26.3.1

      26.3.1 (Current)

    [14 lines not shown]
VersionDeltaFile
1.321.2.1+4-4lang/nodejs/distinfo
1.353.2.1+2-2lang/nodejs/Makefile
+6-62 files

FreeBSD/ports 131d7b4security/netbird distinfo Makefile

security/netbird: Update 0.72.2 => 0.74.4

Changelogs:
https://github.com/netbirdio/netbird/releases/tag/v0.72.3
https://github.com/netbirdio/netbird/releases/tag/v0.72.4
https://github.com/netbirdio/netbird/releases/tag/v0.73.0
https://github.com/netbirdio/netbird/releases/tag/v0.73.1
https://github.com/netbirdio/netbird/releases/tag/v0.73.2
https://github.com/netbirdio/netbird/releases/tag/v0.74.0
https://github.com/netbirdio/netbird/releases/tag/v0.74.1
https://github.com/netbirdio/netbird/releases/tag/v0.74.2
https://github.com/netbirdio/netbird/releases/tag/v0.74.3
https://github.com/netbirdio/netbird/releases/tag/v0.74.4

Commit log:
https://github.com/netbirdio/netbird/compare/v0.72.2...v0.74.4

PR:             296688
Sponsored by:   UNIS Labs

    [3 lines not shown]
DeltaFile
+5-5security/netbird/distinfo
+1-2security/netbird/Makefile
+6-72 files

LLVM/project 9d5d883llvm/lib/Transforms/AggressiveInstCombine AggressiveInstCombine.cpp, llvm/test/Transforms/AggressiveInstCombine/X86 or-load.ll

[AggressiveInstCombine] Fix crash when folding consecutive loads into a type smaller than the combined load (#207229)
DeltaFile
+51-0llvm/test/Transforms/AggressiveInstCombine/X86/or-load.ll
+8-3llvm/lib/Transforms/AggressiveInstCombine/AggressiveInstCombine.cpp
+59-32 files

FreeBSD/ports 77282desecurity/netbird distinfo Makefile

security/netbird: Update 0.72.2 => 0.74.4

Changelogs:
https://github.com/netbirdio/netbird/releases/tag/v0.72.3
https://github.com/netbirdio/netbird/releases/tag/v0.72.4
https://github.com/netbirdio/netbird/releases/tag/v0.73.0
https://github.com/netbirdio/netbird/releases/tag/v0.73.1
https://github.com/netbirdio/netbird/releases/tag/v0.73.2
https://github.com/netbirdio/netbird/releases/tag/v0.74.0
https://github.com/netbirdio/netbird/releases/tag/v0.74.1
https://github.com/netbirdio/netbird/releases/tag/v0.74.2
https://github.com/netbirdio/netbird/releases/tag/v0.74.3
https://github.com/netbirdio/netbird/releases/tag/v0.74.4

Commit log:
https://github.com/netbirdio/netbird/compare/v0.72.2...v0.74.4

PR:             296688
Sponsored by:   UNIS Labs
MFH:            2026Q3
DeltaFile
+5-5security/netbird/distinfo
+1-2security/netbird/Makefile
+6-72 files

Illumos/gate 65c22b1usr/src/cmd/fs.d/nfs/nfslog fhtab.h nfslogd.h, usr/src/lib/krb5/plugins/kdb/db2 policy_db.h

18213 rpc/xdr.h should not pull in stdio.h
Reviewed by: Hans Rosenfeld <rosenfeld at grumpf.hope-2000.org>
Reviewed by: Toomas Soome <tsoome at me.com>
Reviewed by: Bill Sommerfeld <sommerfeld at hamachi.org>
Approved by: Dan McDonald <danmcd at edgecast.io>
DeltaFile
+4-2usr/src/cmd/fs.d/nfs/nfslog/fhtab.h
+2-2usr/src/uts/common/rpc/xdr.h
+2-1usr/src/lib/libnisdb/db_vers_c.x
+2-1usr/src/lib/libnisdb/db_pickle.h
+2-1usr/src/lib/krb5/plugins/kdb/db2/policy_db.h
+2-1usr/src/cmd/fs.d/nfs/nfslog/nfslogd.h
+14-817 files not shown
+31-823 files

FreeBSD/ports e0acf96security/dogtag-pki Makefile, security/dogtag-pki/files patch-base_common_python_pki_____init____.py

security/dogtag-pki: Fix PKI version file path

Read share/pki/VERSION from LOCALBASE instead of the Linux
/usr/share/pki path.

Sponsored by:   Netzkommune GmbH
DeltaFile
+11-0security/dogtag-pki/files/patch-base_common_python_pki_____init____.py
+1-1security/dogtag-pki/Makefile
+12-12 files

OpenBSD/src pAj9j05sys/uvm uvm_swap.c uvm_pager.c

   Encrypt swap pages "inline" instead of going through a bounce buffer.  This
   means we no longer need to reserve bounce pages for the pagdaemon.  Instead
   we can use the complete set of psegs to swap out pages.  Note that there is
   another important consequence of this diff.  Before the old page remaines
   unencrypted and on the inactive queue, where it will sit until the
   pagedaemon runs again and kills it.  With this diff, pages will be freed
   as soon as the I/O completes.  This is probably an improvement in itself.

   This is simplified version of a diff posted by mpi@ earlier this year.
   These simplifications were possible because we no longer bounce pages to
   meet DMA constraints in the swap code.

   ok deraadt@
VersionDeltaFile
1.183+95-210sys/uvm/uvm_swap.c
1.99+55-36sys/uvm/uvm_pager.c
1.160+12-9sys/uvm/uvm_pdaemon.c
1.23+8-2sys/uvm/uvm_swap.h
1.190+2-2sys/uvm/uvm_page.c
1.74+2-2sys/uvm/uvm_page.h
+174-2616 files