HardenedBSD/ports f30a675devel/cargo-about distinfo Makefile, devel/uv distinfo

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+397-459net/shadowsocks-rust/distinfo
+253-291devel/cargo-about/distinfo
+198-229net/shadowsocks-rust/Makefile.crates
+189-211devel/uv/distinfo
+2-294devel/cargo-about/Makefile
+273-0devel/cargo-about/Makefile.crates
+1,312-1,484103 files not shown
+2,085-2,110109 files

HardenedBSD/ports b5e0060devel Makefile, sysutils Makefile

*/Makefile: Sort SUBDIRs
DeltaFile
+3-3devel/Makefile
+1-1www/Makefile
+1-1sysutils/Makefile
+5-53 files

HardenedBSD/ports 11e0a69multimedia/jellyfin Makefile pkg-plist, multimedia/jellyfin/files jellyfin.in

multimedia/jellyfin: udpate to 10.11.6

While here split amd64 and arm64 node archives (like done in navidrome)
to fix build on arm64

Fix thunbnail and trickplay creation on fresh install by making sure
/tmp/jellyfin is created at start [1]

PR:     290908 [1]
Submitted by:   ek at purplehat.org [1]
DeltaFile
+51-26multimedia/jellyfin/Makefile
+30-24multimedia/jellyfin/files/packagejsons/package-lock.json
+21-20multimedia/jellyfin/pkg-plist
+11-7multimedia/jellyfin/distinfo
+5-0multimedia/jellyfin/files/jellyfin.in
+2-2multimedia/jellyfin/files/packagejsons/package.json
+120-796 files

HardenedBSD/ports f39915bsecurity/pam_worker Makefile

security/pam_worker: add missing setgid by default
DeltaFile
+2-1security/pam_worker/Makefile
+2-11 files

HardenedBSD/ports 9f3a70btextproc/harper distinfo Makefile.crates

textproc/harper: Update to 1.5.1
DeltaFile
+31-19textproc/harper/distinfo
+15-9textproc/harper/Makefile.crates
+1-2textproc/harper/Makefile
+47-303 files

HardenedBSD/ports d2958a9net/realtek-rge-kmod distinfo Makefile

net/realtek-rge-kmod: Update to 20260112 snapshot
DeltaFile
+3-3net/realtek-rge-kmod/distinfo
+2-2net/realtek-rge-kmod/Makefile
+5-52 files

HardenedBSD/ports 73f4259devel/dfuzzer distinfo Makefile

devel/dfuzzer: Update to 2.6

Reported by:    portscout!
DeltaFile
+3-3devel/dfuzzer/distinfo
+1-1devel/dfuzzer/Makefile
+4-42 files

HardenedBSD/ports b6be123devel/libnjs distinfo pkg-plist, lang/njs distinfo

*/*: update NGINX JavaScript to 0.9.5

Changes with njs 0.9.5

Release Date: 13 January 2026

nginx modules:

    Feature: added native module support for qjs engine for http and
stream.

    Bugfix: fixed js_body_filter with multiple chunks for qjs engine.

    Bugfix: fixed buffer_type inheritance in if blocks for
js_body_filter. Previously, when js_body_filter was used inside an if
block, the data parameter received Buffer type instead of the expected
String type.

    Bugfix: fixed js_body_filter when data is not in memory. Previously,

    [25 lines not shown]
DeltaFile
+3-3www/nginx-devel/distinfo
+3-3devel/libnjs/distinfo
+3-3lang/njs/distinfo
+3-3www/freenginx/distinfo
+3-3www/nginx/distinfo
+1-3devel/libnjs/pkg-plist
+16-188 files not shown
+24-2614 files

HardenedBSD/ports 055a18ddevel/appstream distinfo Makefile, devel/appstream-compose Makefile pkg-plist

devel/appstream*: Update to 1.1.2
DeltaFile
+3-3devel/appstream/distinfo
+3-2devel/appstream/Makefile
+3-1devel/appstream/pkg-plist
+1-1devel/appstream-qt/Makefile
+1-1devel/appstream-compose/Makefile
+1-1devel/appstream-compose/pkg-plist
+12-91 files not shown
+13-107 files

HardenedBSD/ports bb47914. MOVED, x11 Makefile

x11/rofi-wayland: Remove the port

PR:             291862
DeltaFile
+0-18x11/rofi-wayland/Makefile
+0-7x11/rofi-wayland/distinfo
+0-1x11/Makefile
+1-0MOVED
+1-264 files

HardenedBSD/ports b3e38c2x11/rofi Makefile distinfo

x11/rofi: Update to 2.0.0

PR:             291862
DeltaFile
+19-14x11/rofi/Makefile
+5-5x11/rofi/distinfo
+1-0x11/rofi/pkg-plist
+25-193 files

HardenedBSD/ports 581d65asecurity/s2n-tls distinfo Makefile

security/s2n-tls: Update to 1.7.0

ChangeLog: https://github.com/aws/s2n-tls/releases/tag/v1.7.0
DeltaFile
+3-3security/s2n-tls/distinfo
+1-1security/s2n-tls/Makefile
+4-42 files

HardenedBSD/ports 25b22f9devel/aws-c-http distinfo Makefile

devel/aws-c-http: Update to 0.10.10

ChangeLog: https://github.com/awslabs/aws-c-http/releases/tag/v0.10.10
DeltaFile
+3-3devel/aws-c-http/distinfo
+1-1devel/aws-c-http/Makefile
+4-42 files

HardenedBSD/ports de9ca6fdevel/R-cran-timechange Makefile distinfo

devel/R-cran-timechange: Update to 0.4.0

- Switch to DISTVERSION
- Switch WWW to canonical form

ChangeLog: https://cran.r-project.org/web/packages/timechange/news/news.html
DeltaFile
+5-3devel/R-cran-timechange/Makefile
+3-3devel/R-cran-timechange/distinfo
+8-62 files

HardenedBSD/ports c2e1cb8multimedia/obs-studio distinfo Makefile

multimedia/obs-studio: update 32.0.2 → 32.0.4
DeltaFile
+3-3multimedia/obs-studio/distinfo
+2-2multimedia/obs-studio/Makefile
+5-52 files

HardenedBSD/ports cd908d7security/openssl34 distinfo Makefile

security/openssl34: Security update to 3.4.4

If you're using this, please switch to OpenSSL 3.5

Security:       4b824428-fb93-11f0-b194-8447094a420f
MFH:            2026Q1
DeltaFile
+3-3security/openssl34/distinfo
+1-1security/openssl34/Makefile
+4-42 files

HardenedBSD/ports 1b2ff4csecurity/openssl33 distinfo Makefile

security/openssl33: Security update to 3.3.6

If you're using this, please switch to OpenSSL 3.5

Security:       4b824428-fb93-11f0-b194-8447094a420f
MFH:            2026Q1
DeltaFile
+3-3security/openssl33/distinfo
+1-1security/openssl33/Makefile
+4-42 files

HardenedBSD/src 7b6e84csys/dev/usb/net if_ure.c

ure: improve checksum offloading

This patch fixes three issues:
(1) Initially, set the hwassist flags correctly when enabling
    transmit checksum offload for TCP/IPv6 and UDP/IPv6.
(2) Keep the hwassist flags in sync with the capabilities when
    changing txcsum.
(3) Keep the hwasssit flags in sync with the capabilities when
    changing txcsum6.
Without this patch, transmit checksum offloading for TCP/IPv6 and
UDP/IPv6 is never used and transmit checksum offloading for IPv4,
TCP/IPv4 and UDP/IPv4 is always used, even if disabled via
ifconfig ue? -txcsum.

Reviewed by:            Timo Völker
MFC after:              3 days
Differential Revision:  https://reviews.freebsd.org/D54974
DeltaFile
+3-0sys/dev/usb/net/if_ure.c
+3-01 files

HardenedBSD/ports d58f024security/gnupg25 pkg-plist Makefile, security/gnupg25/files patch-configure

devel/gnupg25: new port 2.5.17, latest upstream

2.5.16 was (kind of suddenly, since I was waiting for 2.6) declared the
stable version. This was probably because of gpg.fail (which was partly
addressed by the previous update to 2.4.9).

Then 2.5.17 was released to address a number of critical security issues
introduced in the 2.5 branch. Release notes and discussion can
be found at
        https://lwn.net/Articles/1056209/
Upstream release notes at
        https://dev.gnupg.org/T7996

Marked as conflicting with gnupg1 and gnupg-2.4* because the names
of executables have changed again, and the "is-gpg2" flags went
away, so co-installability is poor.
DeltaFile
+135-0security/gnupg25/pkg-plist
+84-0security/gnupg25/Makefile
+13-0security/gnupg25/files/patch-configure
+7-0security/gnupg25/pkg-descr
+3-0security/gnupg25/distinfo
+3-0security/gnupg25/pkg-help
+245-06 files

HardenedBSD/ports c809e0btextproc/castxml Makefile

textproc/castxml: Small changes

PR:             290709
DeltaFile
+1-7textproc/castxml/Makefile
+1-71 files

HardenedBSD/ports dcf7c62. MOVED, multimedia Makefile

multimedia/decord: Remove

Doesn't build with ffmpeg>6 and upstream inactive for 4 years.

PR:             289047
DeltaFile
+0-33multimedia/decord/Makefile
+0-16multimedia/decord/pkg-plist
+0-13multimedia/decord/pkg-descr
+0-7multimedia/decord/distinfo
+1-0MOVED
+0-1multimedia/Makefile
+1-706 files

HardenedBSD/ports df45b2adevel/elfio Makefile pkg-plist

devel/elfio: update 3.11 → 3.12.102

PR:             291681
Approved by:    james.wright at digital-chaos.com (maintainer's timeout; 45 days)
DeltaFile
+25-9devel/elfio/Makefile
+0-20devel/elfio/pkg-plist
+3-3devel/elfio/distinfo
+28-323 files

HardenedBSD/ports b6b3d4faudio/dsbmixer Makefile

audio/dsbmixer: Migrate to QT6

PR:             289520
Reported by:    Daniel Engberg <diizzy at FreeBSD.org>
DeltaFile
+7-6audio/dsbmixer/Makefile
+7-61 files

HardenedBSD/ports fdc8cb7databases/mongodb-tools distinfo Makefile

databases/mongodb-tools: 100.14.1

https://github.com/mongodb/mongo-tools/blob/master/CHANGELOG.md#100141
DeltaFile
+3-3databases/mongodb-tools/distinfo
+1-4databases/mongodb-tools/Makefile
+4-72 files

HardenedBSD/ports b74f2b1devel/cargo-about distinfo Makefile

devel/cargo-about: update 0.8.2 → 0.8.4

PR:     292272
DeltaFile
+253-291devel/cargo-about/distinfo
+2-294devel/cargo-about/Makefile
+273-0devel/cargo-about/Makefile.crates
+528-5853 files

HardenedBSD/ports b21ea20audio/lollypop Makefile distinfo, audio/lollypop/files pkg-message.in

audio/lollypop: update 1.4.41 → 1.4.45

PR:     289648
DeltaFile
+11-20audio/lollypop/Makefile
+5-4audio/lollypop/files/pkg-message.in
+3-5audio/lollypop/distinfo
+1-1audio/lollypop/pkg-plist
+20-304 files

HardenedBSD/ports 640bd37math/py-scikit-umfpack Makefile distinfo

math/py-scikit-umfpack: update 0.4.1 → 0.4.2

PR:     292199
DeltaFile
+7-6math/py-scikit-umfpack/Makefile
+3-3math/py-scikit-umfpack/distinfo
+10-92 files

HardenedBSD/ports 294f3a9misc/gemini-cli Makefile

misc/gemini-cli: Add bash as a run-time dependency

PR:             292533
Reported by:    William Carrel <william.a at carrel.org>
DeltaFile
+2-0misc/gemini-cli/Makefile
+2-01 files

HardenedBSD/ports 94f3630net/shadowsocks-rust distinfo Makefile.crates

net/shadowsocks-rust: update 1.23.5 → 1.24.0

PR:     292274
DeltaFile
+397-459net/shadowsocks-rust/distinfo
+198-229net/shadowsocks-rust/Makefile.crates
+1-2net/shadowsocks-rust/Makefile
+596-6903 files

HardenedBSD/ports 8316f10misc/ncnn Makefile distinfo, misc/ncnn/files patch-CMakeLists.txt patch-src_layer_x86_gemm__int8.h

misc/ncnn: update 2025050320260113

PR:     292738
DeltaFile
+0-82misc/ncnn/files/patch-CMakeLists.txt
+7-10misc/ncnn/Makefile
+9-0misc/ncnn/files/patch-src_layer_x86_gemm__int8.h
+3-3misc/ncnn/distinfo
+1-1misc/ncnn/pkg-plist
+20-965 files