[Polly] Honor 'scops' phase being disabled (#180380)
`opt -passes=polly-custom<detect>`, or `stopafter=detect` would still
run the ScopInfo analysis even though it should run when explicitly
enabled or required by another phase.
lagg: Avoid dropping locks when starting the interface
The init routine of a lagg(4) interface will not change during the whole
lifecycle. So we can call lagg_init() directly instead of through the
function pointer. Well, that requires a drop and pickup lock, which
unnecessarily expose a small race window. Refactor lagg_init() into
lagg_init_locked() and call the later one to avoid that.
Meanwhile, delay updating the driver managed status until after the
interface is really ready.
Reviewed by: markj
MFC after: 5 days
Differential Revision: https://reviews.freebsd.org/D55198
(cherry picked from commit c182cf646a4f995fa8506afd8afc9541c4d32905)
lagg: Make lagg_link_active() static
It is declared as static. Make the definition consistent with the
declaration.
It was ever fixed by commit 52e53e2de0ec, but the commit was reverted,
leaving it unfixed.
No functional change intended.
MFC after: 3 days
(cherry picked from commit 30988d0a7bd7ebd5f5825b9b7aa04ff0af788aa7)
backend: allow non-intrusive config_read_array(); closes #9786
When config keys are not found or are not arrays that should
be (especially for iterating with foreach) we do a trick here
by returning a detached empty array to avoid upper layer
errors, forcing empty arrays into $config yet reading and
removal still work fine. The default stays the "insert" mode,
which can be triggered explicitly just for symmetry. Bools
are not in the keys so this is perfectly fine.
The function itself was added in 4c179c23 in 2017 and hasn't
been modified since which is quite the achievement IMO. It's
had a clear purpose but now we make it just a little bit
better. :)
Look for more references at least in the legacy pages:
# git grep 'foreach.($config\[' src/www
[VPlan] Directly unroll VectorEndPointerRecipe (#172372)
Directly unroll VectorEndPointerRecipe following 0636225b ([VPlan]
Directly unroll VectorPointerRecipe, #168886). It allows us to leverage
existing VPlan simplifications to optimize.
Co-authored-by: Luke Lau <luke at igalia.com>
Co-authored-by: Florian Hahn <flo at fhahn.com>
audio/shairport-sync: Update to 5.0.0
- Update to 5.0.0
- Drop SNDIO from default options (deprecated upstream)
- Add SNDIO deprecation note to OPTIONS
Changelog:
https://github.com/mikebrady/shairport-sync/releases
gyb: update to 1.95
Changes from 1.90:
GYB 1.95
always retry certain API operations that seemed to occasionally fail.
Reduce the number of SSL certificate authorities GYB trusts to the minimal set Google uses.
Fix --tls-min-version and --tls-max-version so they actually work.
GYB 1.94
Reduce both GYB binary file size and startup performance significantly by removing hundreds of unnecessary JSON files.
Optimize GYB usage and retrieval of Google API Discovery files
GYB 1.93
Fix Linux legacy binary to properly rename the staticx binary. Fixes #514.
[9 lines not shown]
py-asdf_astropy: updated to 0.10.0
0.10.0 (2026-02-13)
- Add support for astronomy-1.2.0 manifest
- Add TETE and TEME coordinate frames
- Fix magunit serialization to match unit
gam: update to 7.34.02
Changes from 7.33.02:
Updated GAM to prevent errors like the following:
ERROR: Unable to find the server at oauth2.googleapis.com
ERROR: Unable to find the server at gmail.googleapis.com
7.34.01
Updated gam create|update adminrole to handle the following errors:
ERROR: 400: invalid - Invalid Role privileges
ERROR: 400: required - Required parameter: [resource.privileges[n].service_id]
7.34.00
Added variable csv_output_header_required to gam.cfg that is a comma separated list of <Strings> that are required to be in the list of column headers in the CSV file written by a gam print command. This will typically be used to specify headers that are required in subsequent commands that process the CSV file even if the API didn't return any data for those columns.
[12 lines not shown]
ports-mgmt/synth: update to 3.13 release (+)
Changelog:
* Attempt to fix prefetching with modern pkg
* Limit log preservation to the task that failed
* testing fix for missing synth scanner log file
* Add EXIT STATUS section to man page
* Set non-zero return code when problem encountered
* Create /etc/hosts in builder
py-asdf-standard: updated to 1.5.0
1.5.0 (2026-02-05)
- Add missing transform-1.0.0 and domain-1.0.0 schemas.
These are only used by legacy schemas and are not to be
used for new schemas. See asdf-transform-schemas for
newer versions of these schemas
- Support setting ASDF_UNSTABLE_CORE_SCHEMAS environment variable
to enable support for upcoming (currently unstable) versions of
core schemas. Be warned that writing files with unstable/development
versions of core schemas is not recommended as these schemas
may change during development
- Drop support for Python 3.9
net/py-trio: Update to 0.33.0
- Add PYTHONPATH=${WRKSRC}/src to TEST_ENV so pytest runs against
the in-tree sources (src layout)
- Disable pytest plugin autoload during tests to avoid interference
from unrelated globally installed pytest plugins
[Flang][OpenMP] Don't generate code for unreachable target regions. (#178937)
When a target region is placed inside a constant false condition (e.g.,
`if (.false.)`), the dead code gets eliminated on the host side,
removing the `omp.target` operation entirely. However, the device-side
compilation pipeline is unaware of this elimination and attempts to
generate kernel code. Since the host never created offload metadata for
the eliminated target, the device-side kernel function lacks the
"kernel" attribute, causing `OpenMPOpt` to fail with an assertion when
it expects all outlined kernels to have this attribute. The problem can
be seen with the following code:
```fortran
program cele
implicit none
real :: V
integer :: i
if (.false.) then
!$omp target teams distribute parallel do
[16 lines not shown]
[flang] fix codegen of fir.select with only default case (#181373)
The case where fir.select only has a "unit" block target (i.e., it is a
switch with only the default case) was not handled correctly in codegen.
py-octoprint: updated to 1.11.6
1.11.6
Security fixes
Timing Side-Channel in API Key Authentication, severity Moderate (6.0): OctoPrint versions up to and including 1.11.5 are affected by a (theoretical) timing attack vulnerability that allows API key extraction over the network.
Due to using character based comparison that short-circuits on the first mismatched character during API key validation, rather than a cryptographical method with static runtime regardless of the point of mismatch, an attacker with network based access to an affected OctoPrint could extract API keys valid on the instance by measuring the response times of the denied access responses and guess an API key character by character.
The likelihood of this attack actually working is highly dependent on the network's latency, noise and similar parameters. An actual proof of concept was not achieved so far. Still, as always administrators are advised to not expose their OctoPrint instance on hostile networks, especially not on the public internet!
See also the GitHub Security Advisory and CVE-2026-23892
Features & improvements
Achievements Plugin
Support resetting the yearly stats & display the status of the current year.
[15 lines not shown]
