FreeNAS/freenas 74c1fdcsrc/middlewared/middlewared/plugins/apps resources.py schema_validation.py, src/middlewared/middlewared/plugins/directoryservices_ datastore.py

by Waqar Ahmed on ⎇
Prevent TNC certificate reuse in apps and DS

This commit fixes an issue where TNC certificates could be selected
by apps and directory services because their validation paths did
not run cert_services_validation. TNC certs also appeared in cert
choice dropdowns across apps, directory services, system general UI
and system advanced syslog.

Filter TNC certs out of all cert choices methods and add the missing
validation hooks so that new users cannot attach a TNC cert to any
non-TNC consumer. For directory services LDAP_MTLS the validation
is a narrow TNC-prefix check to preserve compatibility with legacy
client certs.
DeltaFile
+11-2src/middlewared/middlewared/plugins/directoryservices_/datastore.py
+7-1src/middlewared/middlewared/plugins/apps/resources.py
+7-0src/middlewared/middlewared/plugins/apps/schema_validation.py
+6-1src/middlewared/middlewared/plugins/system_advanced/syslog.py
+6-1src/middlewared/middlewared/plugins/system_general/ui.py
+37-55 files

LLVM/project 73a48a6llvm/lib/CodeGen/SelectionDAG LegalizeDAG.cpp

by Paul Walker via GitHub on ⎇
[LLVM][CodeGen] When expanding ISD::LRINT, non-deterministic results should be frozen. (#197435)
DeltaFile
+5-3llvm/lib/CodeGen/SelectionDAG/LegalizeDAG.cpp
+5-31 files

FreeBSD/ports 83ce0f3devel/onetbb/files patch-test_common_utils_concurrency_limit.h-affinity patch-test_common_memory_usage.h

by Ganael LAPLANCHE (martymac) on ⎇
devel/onetbb: Update to 2023.0.0

and fix building of two dependent ports [1].

Release notes:  https://github.com/uxlfoundation/oneTBB/blob/v2023.0.0/RELEASE_NOTES.md
Approved by:    blanket [1]
DeltaFile
+0-57devel/onetbb/files/patch-test_common_utils_concurrency_limit.h-affinity
+0-34devel/onetbb/files/patch-test_common_memory_usage.h
+0-26devel/onetbb/files/patch-include_oneapi_tbb_detail__exception.h
+0-24devel/onetbb/files/patch-test_common_utils_concurrency_limit.h
+0-24devel/onetbb/files/patch-test_CMakeLists.txt
+0-23devel/onetbb/files/patch-src_tbb_co_context.h
+0-1889 files not shown
+37-21515 files

FreeBSD/src aa92784lib/libc/gen timespec_getres.3 timespec_get.3

by Robert Clausecker (fuz) on ⎇
libc/timespec_get*.3: expose STANDARDS section

We now have .St -isoC-2023, so the STANDARDS section can go live.

Fixes:          9b5d724cad10087e34165199e55f15f2df744ed5
MFC after:      1 week
DeltaFile
+6-6lib/libc/gen/timespec_getres.3
+5-5lib/libc/gen/timespec_get.3
+11-112 files

FreeBSD/src 6825176lib/libc/stdtime ctime.3

by Robert Clausecker (fuz) on ⎇
libc/ctime.3: timegm() is in C23.

See also:       D53951, https://wiki.freebsd.org/C23
MFC after:      1 week
DeltaFile
+4-3lib/libc/stdtime/ctime.3
+4-31 files

FreeBSD/ports cc12f45security/vuxml/vuln 2026.xml

by Daniel Engberg (diizzy) on ⎇
security/vuxml: Update entry for (py-)setuptools CVE-2025-47273

Expand this to our ancient ports to according to upstream report.
Affects devel/py-setuptools44 and devel/py-setuptools58
DeltaFile
+7-0security/vuxml/vuln/2026.xml
+7-01 files

FreeBSD/ports a6e4ca9www/reproxy distinfo Makefile

by Alexey Dokuchaev (danfe) on ⎇
www/reproxy: the port had been updated to version 1.6.0

Unfortunately it now requires non-default Go[lang] 1.26.

Reported by:    portscout
DeltaFile
+3-3www/reproxy/distinfo
+2-3www/reproxy/Makefile
+5-62 files

LLVM/project 652a978clang/test/AST ast-dump-templates.cpp, llvm/test/CodeGen/AArch64 bf16-v8-instructions.ll

by Robert Imschweiler on ⎇
Merge remote-tracking branch 'origin/main' into xteam-red-runtime
DeltaFile
+652-9,343clang/test/AST/ast-dump-templates.cpp
+7,584-740llvm/test/CodeGen/AArch64/bf16-v8-instructions.ll
+8,195-0llvm/test/MC/AMDGPU/gfx13_asm_vop3.s
+8,182-0llvm/test/MC/AMDGPU/gfx13_asm_vop3-fake16.s
+6,873-0llvm/test/tools/llvm-mca/AArch64/Cortex/C1Premium-sve-instructions.s
+6,862-0llvm/test/tools/llvm-mca/AArch64/Cortex/C1Nano-sve-instructions.s
+38,348-10,0838,257 files not shown
+437,282-165,1218,263 files

LLVM/project 0b53f85clang/lib/Driver/ToolChains/Arch AArch64.cpp, clang/test/Driver aarch64-march.c

by Jonathan Thackray on ⎇
[AArch64][clang] Improve -mcpu= and -mtune= error messages too

Similar to my previous change improving the error message for
`-march=` in #197441, this changes `-mcpu=` and `-mtune=` arguments
to only report the invalid feature flag, rather than the entire
string.

This is a much clearer error message for the user.
DeltaFile
+34-26clang/lib/Driver/ToolChains/Arch/AArch64.cpp
+13-0clang/test/Driver/aarch64-march.c
+47-262 files

LLVM/project 5a0e401clang/test/Driver aarch64-march.c

by Jonathan Thackray on ⎇
fixup! Adjust test comment
DeltaFile
+1-1clang/test/Driver/aarch64-march.c
+1-11 files

FreeBSD/ports fca7f3eprint/pdfcpu distinfo Makefile

by Daniel Engberg (diizzy) on ⎇
print/pdfcpu: Update to 0.12.1

Slight adjustment of version reporting in the compiled bianry

Changelog: https://github.com/pdfcpu/pdfcpu/releases/tag/v0.12.1
DeltaFile
+5-5print/pdfcpu/distinfo
+3-2print/pdfcpu/Makefile
+8-72 files

LLVM/project ccd7f4cllvm/lib/Target/AMDGPU/Disassembler AMDGPUDisassembler.cpp, llvm/test/MC/AMDGPU literals.s

by Stanislav Mekhanoshin on ⎇
[AMDGPU] Fix disasm roundtrip for forced fp64 literal
DeltaFile
+33-48llvm/test/MC/AMDGPU/literals.s
+7-1llvm/lib/Target/AMDGPU/Disassembler/AMDGPUDisassembler.cpp
+40-492 files

FreeBSD/ports 9eb9661audio/fooyin distinfo Makefile

by Daniel Engberg (diizzy) on ⎇
audio/fooyin: Update to 0.10.6

Changelog: https://github.com/fooyin/fooyin/releases/tag/v0.10.6
DeltaFile
+3-3audio/fooyin/distinfo
+1-1audio/fooyin/Makefile
+4-42 files

LLVM/project a4acc5cllvm/test/CodeGen/X86 vector-reduce-umin.ll vector-reduce-umax.ll

by Simon Pilgrim via GitHub on ⎇
[X86] Improve lowering of i32/i64 minmax reductions (#197578)

Allow 32-bit targets to correctly lower i64 ISD::VECREDUCE min/max nodes
via ReplaceNodeResults - this is necessary once we're finally ready for
#194473 and remove combineMinMaxReduction entirely

Improve handling of v2iXX reduction stages by consistently preferring
binop(extract(),extract()) scalarisation on SSE targets (if the vector
binop isn't legal).
DeltaFile
+592-703llvm/test/CodeGen/X86/vector-reduce-umin.ll
+573-658llvm/test/CodeGen/X86/vector-reduce-umax.ll
+460-549llvm/test/CodeGen/X86/vector-reduce-smin.ll
+464-543llvm/test/CodeGen/X86/vector-reduce-smax.ll
+227-276llvm/test/CodeGen/X86/horizontal-reduce-umin.ll
+210-244llvm/test/CodeGen/X86/horizontal-reduce-umax.ll
+2,526-2,9735 files not shown
+2,886-3,39711 files

FreeBSD/ports 680508dsecurity/vuxml/vuln 2026.xml

by Daniel Engberg (diizzy) on ⎇
security/vuxml: Add entry for (py-)setuptools CVE-2025-47273

This is almost a one year old CVE
DeltaFile
+37-0security/vuxml/vuln/2026.xml
+37-01 files

LLVM/project b3c0ae4openmp/device/src Reduction.cpp

by Robert Imschweiler on ⎇
add a comment about the self-reset
DeltaFile
+2-0openmp/device/src/Reduction.cpp
+2-01 files

OpenBSD/ports vLaSzUYx11/gnome/showtime distinfo Makefile, x11/gnome/showtime/pkg PLIST

by ajacoutot on ⎇
   Update to showtime-50.0.
VersionDeltaFile
1.4+2-2x11/gnome/showtime/distinfo
1.5+4-0x11/gnome/showtime/pkg/PLIST
1.6+1-1x11/gnome/showtime/Makefile
+7-33 files

OpenBSD/ports PxaMF6jx11/gnome/papers distinfo crates.inc, x11/gnome/papers/pkg PLIST-main

by ajacoutot on ⎇
   Update to papers-50.1.
VersionDeltaFile
1.7+322-284x11/gnome/papers/distinfo
1.2+160-141x11/gnome/papers/crates.inc
1.4+69-0x11/gnome/papers/pkg/PLIST-main
1.7+1-1x11/gnome/papers/Makefile
+552-4264 files

OpenBSD/xenocara DP01Mwglib/xcb-util-xrm configure config.sub

by matthieu on ⎇
   Update to xcb-util-xrm 1.3.0
VersionDeltaFile
1.2+4,905-4,088lib/xcb-util-xrm/configure
1.2+1,471-1,293lib/xcb-util-xrm/config.sub
1.2+1,028-753lib/xcb-util-xrm/config.guess
1.2+633-73lib/xcb-util-xrm/Makefile.in
1.2+383-241lib/xcb-util-xrm/aclocal.m4
1.2+216-202lib/xcb-util-xrm/install-sh
+8,636-6,65019 files not shown
+10,081-7,11725 files

LLVM/project 0521762compiler-rt/lib/builtins/arm extendsfdf2.S truncdfsf2.S

by Simon Tatham on ⎇
Update for rename of endian.h in a previous patch
DeltaFile
+1-1compiler-rt/lib/builtins/arm/extendsfdf2.S
+1-1compiler-rt/lib/builtins/arm/truncdfsf2.S
+2-22 files

LLVM/project e1b0f56llvm/test/CodeGen/AMDGPU/NextUseAnalysis spill-vreg-many-lanes.mir acyclic-770bb.mir

by Simon Tatham on ⎇
Merge from main
DeltaFile
+275,101-0llvm/test/CodeGen/AMDGPU/NextUseAnalysis/spill-vreg-many-lanes.mir
+144,679-0llvm/test/CodeGen/AMDGPU/NextUseAnalysis/acyclic-770bb.mir
+57,682-0llvm/test/CodeGen/AMDGPU/NextUseAnalysis/double-nested-loops-complex-cfg.mir
+41,844-0llvm/test/CodeGen/AMDGPU/NextUseAnalysis/test_ers_multiple_spills2.mir
+40,613-0llvm/test/CodeGen/AMDGPU/NextUseAnalysis/test_ers_multiple_spills1.mir
+37,209-0llvm/test/CodeGen/AMDGPU/NextUseAnalysis/test_ers_multiple_spills3.mir
+597,128-019,520 files not shown
+2,324,406-580,58319,526 files

OpenBSD/ports iyVtZdpx11/gnome/maps distinfo Makefile, x11/gnome/maps/patches patch-lib_maps-shield_c

by ajacoutot on ⎇
   Update to gnome-maps-50.1.
VersionDeltaFile
1.39+3-1x11/gnome/maps/pkg/PLIST
1.91+2-2x11/gnome/maps/distinfo
1.124+1-1x11/gnome/maps/Makefile
1.4+1-1x11/gnome/maps/patches/patch-lib_maps-shield_c
+7-54 files

OpenBSD/ports fMkGNOawww/epiphany distinfo Makefile, www/epiphany/pkg PLIST

by ajacoutot on ⎇
   Update to epiphany-50.4.
VersionDeltaFile
1.126+2-2www/epiphany/distinfo
1.255+1-1www/epiphany/Makefile
1.67+1-0www/epiphany/pkg/PLIST
+4-33 files

FreeBSD/ports 8eb68e1games/colobot/files patch-src_app_main.cpp

by Max Brazhnikov (makc) on ⎇
games/colobot: Backport upstream patch to fix build with modern compilers

(cherry picked from commit 736716fcf0f886becc8892adfd6596bc7d405ce9)
DeltaFile
+25-0games/colobot/files/patch-src_app_main.cpp
+25-01 files

OpenBSD/ports vEZB73fx11/gnome/weather Makefile distinfo, x11/gnome/weather/pkg PLIST

by ajacoutot on ⎇
   Update to gnome-weather-50.0.
VersionDeltaFile
1.66+1-3x11/gnome/weather/Makefile
1.37+2-2x11/gnome/weather/distinfo
1.34+2-0x11/gnome/weather/pkg/PLIST
+5-53 files

FreeBSD/ports 736716fgames/colobot/files patch-src_app_main.cpp

by Max Brazhnikov (makc) on ⎇
games/colobot: Backport upstream patch to fix build with modern compilers
DeltaFile
+25-0games/colobot/files/patch-src_app_main.cpp
+25-01 files

FreeBSD/ports 096b982devel/ktextaddons distinfo Makefile

by Max Brazhnikov (makc) on ⎇
devel/ktextaddons: Update to 2.0.2
DeltaFile
+3-3devel/ktextaddons/distinfo
+1-1devel/ktextaddons/Makefile
+1-0devel/ktextaddons/pkg-plist
+5-43 files

FreeBSD/ports 4a4e2f4x11/plasma-wayland-protocols distinfo Makefile

by Max Brazhnikov (makc) on ⎇
x11/plasma-wayland-protocols: Update to 1.21.0
DeltaFile
+3-3x11/plasma-wayland-protocols/distinfo
+1-1x11/plasma-wayland-protocols/Makefile
+4-42 files

LLVM/project 1cb92d8compiler-rt/lib/builtins/arm fcmp.h cmpsf2.S, compiler-rt/lib/builtins/arm/thumb1 fcmp.h cmpsf2.S

by Simon Tatham via GitHub on ⎇
[compiler-rt][ARM] Optimized single-precision FP comparisons (#179925)

These comparison functions follow the same structure as the
double-precision ones in a prior commit, of a header file containing the
main logic and some entry points varying the construction of the return
value.

In this case, we have provided versions for Thumb1 as well as
Arm/Thumb2.
DeltaFile
+443-0compiler-rt/test/builtins/Unit/comparesf2new_test.c
+189-0compiler-rt/lib/builtins/arm/thumb1/fcmp.h
+176-0compiler-rt/lib/builtins/arm/fcmp.h
+56-0compiler-rt/lib/builtins/arm/cmpsf2.S
+56-0compiler-rt/lib/builtins/arm/unordsf2.S
+55-0compiler-rt/lib/builtins/arm/thumb1/cmpsf2.S
+975-04 files not shown
+1,147-110 files

LLVM/project b783371llvm/lib/Target/AMDGPU/Disassembler AMDGPUDisassembler.cpp, llvm/test/MC/AMDGPU literals.s

by Stanislav Mekhanoshin on ⎇
[AMDGPU] Fix disasm roundtrip for forced fp64 literal
DeltaFile
+33-48llvm/test/MC/AMDGPU/literals.s
+7-1llvm/lib/Target/AMDGPU/Disassembler/AMDGPUDisassembler.cpp
+40-492 files