HardenedBSD/src 54dfb8econtrib/blocklist/bin blacklistd.c blocklistd.c, contrib/blocklist/port popenve.c

Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+110-68sys/compat/linux/linux_file.c
+39-36contrib/blocklist/port/popenve.c
+30-4share/examples/bhyve/vmrun.sh
+14-14contrib/blocklist/bin/blacklistd.c
+14-14contrib/blocklist/bin/blocklistd.c
+9-8contrib/blocklist/bin/run.c
+216-1448 files not shown
+249-17014 files

HardenedBSD/ports 78bcc33emulators/wine/files extra-patch-tools-winebuild-res32, net/freerdp3 Makefile distinfo

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+0-173net/freerdp3/files/mntent_compat.c
+0-62net/freerdp3/files/mntent.h
+12-9net/freerdp3/Makefile
+13-3net/freerdp3/distinfo
+7-7emulators/wine/files/extra-patch-tools-winebuild-res32
+0-10net/freerdp3/files/patch-channels_rdpdr_client_CMakeLists.txt
+32-26418 files not shown
+72-29724 files

LLVM/project 743538cclang-tools-extra/clang-tidy/readability SuspiciousCallArgumentCheck.cpp, clang-tools-extra/docs ReleaseNotes.rst

[clang-tidy] Fix crash in readability-suspicious-call-argument on invalid option (#180351)

Closes #180346
DeltaFile
+7-0clang-tools-extra/test/clang-tidy/checkers/readability/suspicious-call-argument-option.cpp
+5-1clang-tools-extra/docs/ReleaseNotes.rst
+5-1clang-tools-extra/clang-tidy/readability/SuspiciousCallArgumentCheck.cpp
+1-1clang-tools-extra/test/clang-tidy/checkers/readability/suspicious-call-argument.cpp
+18-34 files

NetBSD/pkgsrc uSsbAFLdoc CHANGES-2026

   doc: Updated net/coturn to 4.8.0
VersionDeltaFile
1.961+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc xdv8yBNnet/coturn Makefile distinfo

   net/coturn: Update to 4.8.0

   Release 4.8.0

   Changelist:
   - Allow faster packet validation on listener threads (#1768) (Pavel Punsky <eakraly at users.noreply.github.com>)
   - Fix order of arguments to calloc (#1790) (Pavel Punsky <eakraly at users.noreply.github.com>)
   - Fix crashes while setting socket buffer size (#1789) (Pavel Punsky <eakraly at users.noreply.github.com>)
   - Implement configurable buffer sizes (#1780) (Pavel Punsky <eakraly at users.noreply.github.com>)
   - Update Alpine to 3.23.2 version in Docker image (tyranron <tyranron at gmail.com>)
   - Update Debian "trixie" to 20251208 snapshot in Docker image (tyranron <tyranron at gmail.com>)
   - Use bool to enable prometheus (#1779) (Pavel Punsky <eakraly at users.noreply.github.com>)
   - Fix memory leak using libevent (#1751) (Pavel Punsky <eakraly at users.noreply.github.com>)
   - Addressed possible null pointer dereferences (#1729) (redraincatching <99604494+redraincatching at users.noreply.github.com>)
   - Address possible null pointer dereferences (#1744) (redraincatching <99604494+redraincatching at users.noreply.github.com>)
   - Improve const correctness in coturn (#1424) (Michael Jones <jonesmz at users.noreply.github.com>)
   - Update attribute values according to RFC 8656 (#1748) (Pavel Punsky <eakraly at users.noreply.github.com>)
   - Fixing missing dependencies in Makefile (#1739) (Jun Lyu <71107931+Meiye-lj at users.noreply.github.com>)
   - Add fuzzing to ci workflows (#1745) (redraincatching <99604494+redraincatching at users.noreply.github.com>)

    [90 lines not shown]
VersionDeltaFile
1.9+5-10net/coturn/Makefile
1.2+4-4net/coturn/distinfo
1.4+1-5net/coturn/PLIST
+10-193 files

FreeBSD/ports 8205a98emulators/wine/files extra-patch-tools-winebuild-res32

emulators/wine: Fix up i386-only patch
DeltaFile
+7-7emulators/wine/files/extra-patch-tools-winebuild-res32
+7-71 files

HardenedBSD/ports 8205a98emulators/wine/files extra-patch-tools-winebuild-res32

emulators/wine: Fix up i386-only patch
DeltaFile
+7-7emulators/wine/files/extra-patch-tools-winebuild-res32
+7-71 files

FreeBSD/ports 7e83d86net/freerdp3 Makefile distinfo, net/freerdp3/files mntent_compat.c mntent.h

net/freerdp3: 3.21.0 => 3.22.0

Changelog:
https://github.com/FreeRDP/FreeRDP/releases/tag/3.22.0

While here cleanup port.

Security:       CVE-2026-23948
Security:       CVE-2026-24682
Security:       CVE-2026-24683
Security:       CVE-2026-24676
Security:       CVE-2026-24677
Security:       CVE-2026-24678
Security:       CVE-2026-24684
Security:       CVE-2026-24679
Security:       CVE-2026-24681
Security:       CVE-2026-24675
Security:       CVE-2026-24491
Security:       CVE-2026-24680

    [2 lines not shown]
DeltaFile
+0-173net/freerdp3/files/mntent_compat.c
+0-62net/freerdp3/files/mntent.h
+12-9net/freerdp3/Makefile
+13-3net/freerdp3/distinfo
+0-10net/freerdp3/files/patch-channels_rdpdr_client_CMakeLists.txt
+25-2575 files

FreeBSD/ports e0aed18net/freerdp3 Makefile distinfo, net/freerdp3/files mntent_compat.c mntent.h

net/freerdp3: 3.21.0 => 3.22.0

Changelog:
https://github.com/FreeRDP/FreeRDP/releases/tag/3.22.0

While here cleanup port.

Security:       CVE-2026-23948
Security:       CVE-2026-24682
Security:       CVE-2026-24683
Security:       CVE-2026-24676
Security:       CVE-2026-24677
Security:       CVE-2026-24678
Security:       CVE-2026-24684
Security:       CVE-2026-24679
Security:       CVE-2026-24681
Security:       CVE-2026-24675
Security:       CVE-2026-24491
Security:       CVE-2026-24680
MFH:            2026Q1
DeltaFile
+0-173net/freerdp3/files/mntent_compat.c
+0-62net/freerdp3/files/mntent.h
+12-9net/freerdp3/Makefile
+13-3net/freerdp3/distinfo
+0-10net/freerdp3/files/patch-channels_rdpdr_client_CMakeLists.txt
+25-2575 files

HardenedBSD/ports e0aed18net/freerdp3 Makefile distinfo, net/freerdp3/files mntent_compat.c mntent.h

net/freerdp3: 3.21.0 => 3.22.0

Changelog:
https://github.com/FreeRDP/FreeRDP/releases/tag/3.22.0

While here cleanup port.

Security:       CVE-2026-23948
Security:       CVE-2026-24682
Security:       CVE-2026-24683
Security:       CVE-2026-24676
Security:       CVE-2026-24677
Security:       CVE-2026-24678
Security:       CVE-2026-24684
Security:       CVE-2026-24679
Security:       CVE-2026-24681
Security:       CVE-2026-24675
Security:       CVE-2026-24491
Security:       CVE-2026-24680
MFH:            2026Q1
DeltaFile
+0-173net/freerdp3/files/mntent_compat.c
+0-62net/freerdp3/files/mntent.h
+12-9net/freerdp3/Makefile
+13-3net/freerdp3/distinfo
+0-10net/freerdp3/files/patch-channels_rdpdr_client_CMakeLists.txt
+25-2575 files

OpenBSD/src FqH7iO3usr.bin/ssh auth2.c

   Move setting of user, service and style earlier since -portable needs to
   use these when setting up PAM.  Removes two diffs vs portable.
VersionDeltaFile
1.172+4-4usr.bin/ssh/auth2.c
+4-41 files

OpenBSD/ports yBRJL0etextproc/xmlwf distinfo Makefile

   update xmlwf to expat 2.7.4
VersionDeltaFile
1.12+4-4textproc/xmlwf/distinfo
1.20+1-1textproc/xmlwf/Makefile
+5-52 files

NetBSD/pkgsrc yxrmqOGdoc CHANGES-2026

   doc: Updated chat/py-xmpppy to 0.7.3
VersionDeltaFile
1.960+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc WnOmBQKchat/py-xmpppy Makefile distinfo, chat/py-xmpppy/patches patch-xmpp_transports.py

   chat/py-xmpppy: Update to 0.7.3

   Packaging changes:
     - Give up on python 2.7; pkgsrc by default excludes that so it's
       been disabled.  It might work, but there is no reason to think the
       number of people that care is non-zero, so I'm not going to
       maintain it working with 27.
     - Add TEST_DEPENDS, which lets make test get further.

   2026-02-08 0.7.3
   ================
   - Fixed ``wait`` and ``route`` parameters for Bosh transport. Thanks, @soul4code.
   - Fixed ``receive`` when message is empty. Thanks, @soul4code.
   - Fixed memory leak by removing stanza once callback called.
     Thanks, @CyrilPeponnet.
   - Made example programs work on Python 3.
VersionDeltaFile
1.7+6-6chat/py-xmpppy/patches/patch-xmpp_transports.py
1.37+4-7chat/py-xmpppy/Makefile
1.14+5-5chat/py-xmpppy/distinfo
+15-183 files

LLVM/project 5dbeb29clang/bindings/python/clang cindex.py, clang/bindings/python/tests/cindex test_location.py test_source_range.py

[libclang/python] Type-annotate SourceLocation and SourceRange (#180193)

This adds type annotations to the `SourceLocation` and `SourceRange`
classes, enough to pass a strict typecheck. This resolves 29 strict
typing errors as the next step towards
https://github.com/llvm/llvm-project/issues/76664
DeltaFile
+30-28clang/bindings/python/clang/cindex.py
+4-0clang/docs/ReleaseNotes.rst
+1-1clang/bindings/python/tests/cindex/test_location.py
+1-1clang/bindings/python/tests/cindex/test_source_range.py
+36-304 files

NetBSD/pkgsrc-wip d3bf104g-golf distinfo Makefile

g-golf: Update to 0.8.3

** Feb 2026

[[http://www.gnu.org/software/g-golf][GNU G-Golf]] version 0.8.3 is released.

*** Noteworthy changes in 0.8.3

Here is a summary of the noteworthy changes in this release. See G-Golf
[[http://git.savannah.gnu.org/cgit/g-golf.git][git summary]] and [[http://git.savannah.gnu.org/cgit/g-golf.git/log/][git log]] for a complete list and description.

**** Dependencies

***** Adwaita examples

  Adw-1  >=  1.8.0

**** Enhancement


    [43 lines not shown]
DeltaFile
+3-3g-golf/distinfo
+2-2g-golf/Makefile
+5-52 files

NetBSD/src W4gLjGZlib/libnvmm nvmm.h

   libnvmm(3): KNF. Limit line size.

   from Aaron LI at DragonflyBSD, commit id
   7d57c05a4fbda4e1a6276313da5cce071291a04b
VersionDeltaFile
1.20+3-3lib/libnvmm/nvmm.h
+3-31 files

NetBSD/src mMm4hURlib/libnvmm libnvmm.c

   libnvmm(3): Check return value of malloc.

   adapted from a patch by Aaron LI at DragonflyBSD, commit id
   7c543ef0a3b08473f10dcc066e531c459fbc3879
VersionDeltaFile
1.21+11-4lib/libnvmm/libnvmm.c
+11-41 files

NetBSD/pkgsrc 5RveO4cmultimedia/gerbera/patches patch-CMakeLists.txt patch-src_config_grb__runtime.cc

   gerbera: restore missing patches

   I removed two patches too many in the update to 3.0.0; sorry!
VersionDeltaFile
1.5+0-0multimedia/gerbera/patches/patch-CMakeLists.txt
1.3+0-0multimedia/gerbera/patches/patch-src_config_grb__runtime.cc
+0-02 files

OpenBSD/ports hUu2kHowww Makefile

   +minify
VersionDeltaFile
1.1171+1-0www/Makefile
+1-01 files

OpenBSD/ports b7DHsykwww/minify distinfo Makefile, www/minify/pkg DESCR PLIST

   Initial revision
VersionDeltaFile
1.1+60-0www/minify/distinfo
1.1+32-0www/minify/Makefile
1.1+19-0www/minify/modules.inc
1.1+15-0www/minify/pkg/DESCR
1.1+6-0www/minify/pkg/PLIST
1.1.1.1+0-0www/minify/pkg/PLIST
+132-04 files not shown
+132-010 files

HardenedBSD/ports 244267bastro/xtide distinfo Makefile

astro/xtide: Set WVS option default
DeltaFile
+3-1astro/xtide/distinfo
+2-1astro/xtide/Makefile
+5-22 files

FreeBSD/ports 244267bastro/xtide distinfo Makefile

astro/xtide: Set WVS option default
DeltaFile
+3-1astro/xtide/distinfo
+2-1astro/xtide/Makefile
+5-22 files

GhostBSD/update-station f2efcdb. update-station, po update-station.pot pt_BR.po

Merge pull request #70 from ghostbsd/add-noduplication

Prevent duplicate instances and add IPC for check-now command
DeltaFile
+0-255po/update-station.pot
+191-5update_station/frontend.py
+0-178update_station/notification.py
+118-26update-station
+38-38po/pt_BR.po
+38-38po/fr.po
+385-5404 files not shown
+521-67610 files

GhostBSD/update-station 6f6517fupdate_station frontend.py backend.py

Add error handling for server requests and improve UI localization

- Backend: Add try-except handling with timeouts for server request failures (`requests.get`), preventing UI blocking during unreachable servers.
- Frontend: Localize UI strings with `_()` for better internationalization support.
- UI: Refactor dialog buttons to invoke corresponding "Yes" and "No" click handlers, improving code clarity and maintainability.
DeltaFile
+24-17update_station/frontend.py
+14-2update_station/backend.py
+38-192 files

LLVM/project ac57c4apolly/lib/CodeGen IslNodeBuilder.cpp, polly/lib/External/isl isl_ast_codegen.c GIT_HEAD_ID

[Polly] Update isl to isl-0.27-78-gfc484e00 (#180377)

Update isl to include
https://repo.or.cz/isl.git/commit/fc484e004200964f8f18249de1f510393ec924a9
which fixes #180000.

The isl update also fixes #34710 which had the same cause but with an
empty access domain (#180000 has an empty statement domain). Thus we
also revert 163cacb46960be4dd0d8562737bbf0ea97cb14ad which now only adds
unnecessary overhead.

A regression test has been added to isl which is why we do not add a
test in Polly.

Fixes: #180000

Thanks @skimo-openhub for the fix and @thapgua for the bugreport.
DeltaFile
+0-86polly/test/CodeGen/empty_domain_in_context.ll
+14-3polly/lib/External/isl/isl_ast_codegen.c
+12-0polly/lib/External/isl/test_inputs/codegen/polly2.st
+2-0polly/lib/External/isl/test_inputs/codegen/polly2.c
+1-1polly/lib/External/isl/GIT_HEAD_ID
+0-2polly/lib/CodeGen/IslNodeBuilder.cpp
+29-926 files

GhostBSD/update-station 9976ff9. update-station, po update-station.pot fur.po

Prevent duplicate instances and add IPC for check-now command

  - Use setproctitle and psutil to detect existing update-station processes
  - Send SIGUSR1 to running instance when 'check-now' is invoked, triggering update check in existing GTK loop
  - Consolidate notification.py into frontend.py to reduce module count
  - Simplify boolean returns in backend.py
  - Exit with error if tray mode started while instance is already running

This prevents multiple update-station processes from running simultaneously
and allows the check-now command to communicate with the existing tray
instance instead of spawning a separate GUI process.
DeltaFile
+0-255po/update-station.pot
+184-5update_station/frontend.py
+0-178update_station/notification.py
+118-26update-station
+38-38po/fur.po
+38-38po/pt_BR.po
+378-5404 files not shown
+502-67610 files

HardenedBSD/ports bf070f5net-im/telegram-desktop Makefile

net-im/telegram-desktop: bump PORTREVISION after tde2e update

Sponsored by:   tipi.work
DeltaFile
+1-0net-im/telegram-desktop/Makefile
+1-01 files

FreeBSD/ports bf070f5net-im/telegram-desktop Makefile

net-im/telegram-desktop: bump PORTREVISION after tde2e update

Sponsored by:   tipi.work
DeltaFile
+1-0net-im/telegram-desktop/Makefile
+1-01 files

FreeBSD/ports dbaefa1net-im/tde2e distinfo Makefile, net-im/tde2e/files patch-CMakeLists.txt

net-im/tde2e: update: 1.8.60 -> 1.8.61

Sponsored by:   tipi.work
DeltaFile
+3-3net-im/tde2e/distinfo
+2-2net-im/tde2e/Makefile
+2-2net-im/tde2e/files/patch-CMakeLists.txt
+7-73 files