BSD Commit Log Search

[EarlyCSE] Support memset loads (#194268)

This PR addresses the zero-`memset` case in EarlyCSE as discussed in
#194080. If we do a `memset` of zero and then load back from the same
base pointer, we can fold that load to `null`.

[clang][bytecode] Check reference initializers for one-past-the-end pointers (#195501)

[OpenMP][mlir] Add DynGroupPrivateClause in omp dialect (#153562)

- The `dyn_groupprivate` clause allows to dynamically allocate
group-private memory in OpenMP parallel regions, specifically for
`target` and `teams` directives.
- This clause enables runtime-sized private memory allocation and
applicable to target and teams ops.

This PR enables dyn_groupprivate clause in openmp mlir dialect and adds
it to Teams and Target ops. Also includes parser, printer and
verification for clause.

support device_type groupprivate lowering

[libc][math] Qualify all math functions to be constexpr

[clang][bytecode] Diagnose copying empty mutable unions (#195529)

We had a special case for copy/move ctors of empty unions. Remove that.
Everything else is just so we don't regress diagnostics.

Fix typo in previous

[X86] vector-reduce-* - add 32-bit test coverage to the minmax tests (#195617)

The horizontal-reduce-* tests already have 32-bit coverage but they will be retired soon.

Remove config instantiation inside loops

Make prefix pool validation stricter, if only a /64 prefix exists there is nothing we can do if we offer both IA_NA and IA_PD, at least /63 would be required for one IA_NA and one IA_PD pool.

format

[libc][math] Qualify all math functions to be constexpr

[IR] Add require-logical-module module flag (#193502)

This module flag is optional and can be set to require the use of
logical alloca/gep instructions.
This flag will have 2 usages:

- tell optimization which flavor of GEP/alloca to emit
- fail loudly if a GEP/alloca is emitted in a module targeting logical.

sysutils/cpu-microcode: revoke tier 2

A number of cheapish hardware has issues with microcode updates now
and then preventing them to boot.  Since this isn't good enough for
our standards revoke tier 2 so that this goes back to community scope.

PR: https://forum.opnsense.org/index.php?topic=51786.msg266329#msg266329

security/netbird: move validation message to help text

security/aws-iam-authenticator: Update to 0.7.14

Changelog:
https://github.com/kubernetes-sigs/aws-iam-authenticator/releases/tag/v0.7.14

www/nginx-devel: Update to 1.29.8

Changes with nginx 1.29.8                                        07 Apr
2026

    *) Feature: the "max_headers" directive.
       Thanks to Maxim Dounin.

    *) Feature: OpenSSL 4.0 compatibility.

    *) Feature: now the "include" directive inside the "geo" block
supports
       wildcards.

    *) Bugfix: in processing of HTTP 103 (Early Hints) responses from a
       proxied backend.

    *) Bugfix: the $request_port and $is_request_port variables were not
       available in subrequests.

    [2 lines not shown]

security/netbird: added netbird_devices() so that wt0 is a volatile interface

Add a mvp for the dynamic pd_pool, the pool is auto generated from the largets possible prefix that does not include the IA_NA generated address pool. Validation ensures the user can only change the delegated prefix length, but not anything about the pool itself. KEA is very strict about validations, auto generation is required here to ensure the model stays sane.

www/mod_security: Update to 2.9.13

Changelog: https://github.com/owasp-modsecurity/ModSecurity/releases/tag/v2.9.13

Sponsored by:   Netzkommune GmbH

[flang][mlir] Add flang to mlir lowering for groupprivate

[CIR] Replace nsw/nuw unit attrs with OverflowFlags BitEnum

Combine the separate `no_signed_wrap` and `no_unsigned_wrap` unit
properties on arithmetic ops into a single `OverflowFlags` BitEnum
(`nsw`, `nuw`). This allows combined flags to be written as
`nsw|nuw` in assembly, replaces the per-flag verification traits
with a single `OverflowFlagsRequireIntType` predicate, and folds
the two `HasAtMostOneOfAttrs` checks into one
`SatExclusiveWithOverflowFlags` predicate.

The bit layout matches `mlir::LLVM::IntegerOverflowFlags`, so
lowering casts the value directly and asserts the layout via
static_assert.

Updates IncOp/DecOp/MinusOp builders, CIRGenExprScalar, and
LowerItaniumCXXABI to the new API. Adds round-trip and
verification tests in clang/test/CIR/IR/.

Missing SEMA tests

   Updated devel/glib2, devel/glib2-tools, devel/gdbus-codegen

   glib2 glib2-tools gdbus-codegen: updated to 2.88.1

   Overview of changes in GLib 2.88.1, 2026-05-02

   * Fix miscompilation with GCC 16 due to GLib’s use of the wrong function
     attribute (!5145, work by Sam James)

   * Fix flag confusion security issue when using `GRegex` with `G_REGEX_RAW` which
     can result in unbounded out-of-bounds heap reads off the start of a regex
     input string

   * Fix various minor (low severity) security issues, typically one-to-five-byte
     out-of-bounds reads or ones relying on
     very specific (and unlikely) API calls or ones relying on
     discouraged P2P D-Bus configurations (work by linhlhq)

   * Bugs fixed:
     - Buffer Over-read on GLib through glib/gvariant-
       serialiser.c:1253 via gvs_tuple_is_normal() (Philip Withnall)

    [47 lines not shown]

www/p5-JSON-API: Update to 1.2.0

[AMDGPU] Add builtins for wave reduction intrinsics

Assisted by - Claude-sonnet:4.6

[AMDGPU] Support Wave Reduction for true-16 types - 3

Supporting true-16 versions of the reduction intrinsics
Supported Ops: `and`, `or`, `xor`.
Supports only the iterative stratergy, DPP is yet
to be supported.

fix formatting

Use only SALU opcodes