HardenedBSD/src 0559c9esys/sys elf_common.h

Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi
DeltaFile
+8-0sys/sys/elf_common.h
+8-01 files

HardenedBSD/src c6cf8casys/sys elf_common.h

Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+8-0sys/sys/elf_common.h
+8-01 files

HardenedBSD/ports 05717a4audio/mumble-server Makefile, audio/mumble-server/files patch-src_murmur_Server.cpp

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+45-0security/vuxml/vuln/2026.xml
+32-0devel/prjpeppercorn112/Makefile
+18-0audio/mumble-server/files/patch-src_murmur_Server.cpp
+7-9audio/mumble-server/Makefile
+15-0devel/prjpeppercorn112/pkg-plist
+2-7lang/gawk/pkg-plist
+119-1647 files not shown
+199-8353 files

HardenedBSD/ports 70bbcdcaudio/mumble-server Makefile, audio/mumble-server/files patch-src_murmur_Server.cpp

audio/mumble-server: Fix "Failed to set TOS for UDP Socket" for IPv6

<W>2025-12-29 23:37:57.715 1 => Server listening on [::]:64738
<W>2025-12-29 23:37:57.721 1 => Server: Failed to set TOS for UDP Socket

This prevents proper QoS from being set for IPv6.

Upstream issue: https://github.com/mumble-voip/mumble/issues/7088

While here pet portclippy.

PR:     292034
MFH:    2026Q1
DeltaFile
+18-0audio/mumble-server/files/patch-src_murmur_Server.cpp
+7-9audio/mumble-server/Makefile
+25-92 files

HardenedBSD/ports bca971csysutils/bsdisks distinfo Makefile

sysutils/bsdisks: Update to 0.40
DeltaFile
+3-3sysutils/bsdisks/distinfo
+1-2sysutils/bsdisks/Makefile
+4-52 files

HardenedBSD/ports 6fa65b0devel/nextpnr-devel Makefile distinfo

devel/nextpnr-devel: Update to 2026-02-25
DeltaFile
+3-3devel/nextpnr-devel/Makefile
+3-3devel/nextpnr-devel/distinfo
+6-62 files

HardenedBSD/ports 95b2221devel Makefile, devel/prjpeppercorn112 Makefile pkg-plist

devel/prjpeppercorn112: Add new port

This port is used by devel/nextpnr* to produce configuration bitstreams for
CologneChip GateMate FPGAs.

Notes:
  - This port is versioned because of version compatibility requirements with
devel/nextpnr*
  - The timings tarball is mirrored because upstream currently does not provide
a versioned archive/URL
DeltaFile
+32-0devel/prjpeppercorn112/Makefile
+15-0devel/prjpeppercorn112/pkg-plist
+5-0devel/prjpeppercorn112/distinfo
+4-0devel/prjpeppercorn112/pkg-descr
+1-0devel/Makefile
+57-05 files

HardenedBSD/ports a6dcbfanet/freerdp Makefile

net/freerdp: Fix version

Upstream forgot to update version string for release 2.11.8.
net/guacamole-server broken:
configure: error:
  --------------------------------------------
   You are building against a development version of FreeRDP. Non-release
   versions of FreeRDP may have differences in behavior that are impossible to
   check for at build time. This may result in memory leaks or other strange
   behavior.

   *** PLEASE USE A RELEASED VERSION OF FREERDP IF POSSIBLE ***

   If you are ABSOLUTELY CERTAIN that building against this version of FreeRDP
   is OK, rerun configure with the --enable-allow-freerdp-snapshots
  --------------------------------------------

2.11.7 => 2.11.8-dev
https://github.com/FreeRDP/FreeRDP/commit/a383740a2f85fa93f390181e5ea4bd1458b34051

    [7 lines not shown]
DeltaFile
+5-0net/freerdp/Makefile
+5-01 files

HardenedBSD/ports ffb37c6lang/gawk pkg-plist distinfo

lang/gawk: update GNU awk to version 5.4.0

PMA should now work on OpenBSD 7, FreeBSD 12-16,
NetBSD 10 and 11, and MidnightBSD 3 and 4.

Reported by:    portscout
DeltaFile
+2-7lang/gawk/pkg-plist
+3-3lang/gawk/distinfo
+2-2lang/gawk/Makefile
+7-123 files

HardenedBSD/ports a6361f4databases/postgresql14-server distinfo, databases/postgresql15-contrib Makefile

databases/postgresql??-*: Update to latest version

The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 18.3, 17.9, 16.13, 15.17,
and 14.22. This is an out-of-cycle release that fixes several
regressions reported after the last update release.

Release notes:  https://www.postgresql.org/about/news/postgresql-183-179-1613-1517-and-1422-released-3246/
                https://wiki.postgresql.org/wiki/2026-02_Regression_Fixes
DeltaFile
+3-3databases/postgresql14-server/distinfo
+3-3databases/postgresql17-server/distinfo
+3-3databases/postgresql18-server/distinfo
+3-3databases/postgresql15-server/distinfo
+3-3databases/postgresql16-server/distinfo
+1-1databases/postgresql15-contrib/Makefile
+16-1629 files not shown
+45-4535 files

HardenedBSD/src d971bc5sys/sys elf_common.h

elf_common.h: Add AArch64 Memtag ABI constants

Obtained from the Memtag ABI Extension to ELF for the Arm® 64-bit
Architecture (AArch64) [1]

[1] https://github.com/ARM-software/abi-aa/blob/main/memtagabielf64/memtagabielf64.rst#dynamic-section

Reviewed by:    andrew
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D55486
DeltaFile
+8-0sys/sys/elf_common.h
+8-01 files

HardenedBSD/ports d969771textproc/R-cran-xtable distinfo Makefile

textproc/R-cran-xtable: Update to 1.8-8

Reported by:    portscout
DeltaFile
+3-3textproc/R-cran-xtable/distinfo
+2-3textproc/R-cran-xtable/Makefile
+5-62 files

HardenedBSD/ports bf556efsecurity/vuxml/vuln 2026.xml

security/vuxml: document gitlab vulnerabilities
DeltaFile
+45-0security/vuxml/vuln/2026.xml
+45-01 files

HardenedBSD/src fdc5ff6lib/libnetbsd/sys cdefs.h, sbin/route route_netlink.c

Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi
DeltaFile
+30-0lib/libnetbsd/sys/cdefs.h
+6-6sbin/route/route_netlink.c
+11-1sys/netlink/route/rt.c
+3-2usr.bin/netstat/route_netlink.c
+5-0share/man/man5/style.mdoc.5
+2-0sys/netlink/netlink_snl_route_parsers.h
+57-96 files

HardenedBSD/src d5d56c4lib/libnetbsd/sys cdefs.h, sbin/route route_netlink.c

Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+30-0lib/libnetbsd/sys/cdefs.h
+6-6sbin/route/route_netlink.c
+11-1sys/netlink/route/rt.c
+3-2usr.bin/netstat/route_netlink.c
+5-0share/man/man5/style.mdoc.5
+2-0sys/netlink/netlink_snl_route_parsers.h
+57-96 files

HardenedBSD/ports 13216cddevel/py-yamlloader Makefile pkg-descr, editors/zed distinfo Makefile.crates

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+77-59editors/zed/distinfo
+37-28editors/zed/Makefile.crates
+26-0devel/py-yamlloader/Makefile
+8-8editors/zed/files/patch-Cargo.lock
+14-0www/py-django-photologue/files/patch-setup.py
+12-0devel/py-yamlloader/pkg-descr
+174-95516 files not shown
+731-355522 files

HardenedBSD/ports 64cc754astro/traccar distinfo Makefile

astro/traccar: update to 6.12.1
DeltaFile
+3-3astro/traccar/distinfo
+1-2astro/traccar/Makefile
+1-1astro/traccar/pkg-plist
+5-63 files

HardenedBSD/ports ac0b421dns Makefile

dns/knot-resolver6: Connect to build

Reported by:    antoine (via email)
Fixes:          36bded72682c (Add new port)
MFH:            2026Q1
DeltaFile
+1-0dns/Makefile
+1-01 files

HardenedBSD/ports aa90efedevel/apache-commons-configuration Makefile

devel/apache-commons-configuration: deprecate

Multiple reasons to deprecate:
https://commons.apache.org/proper/commons-configuration/#Commons_Configuration_1.x_and_2.x
- 'The 1.x codebase no longer receives updates.'
- 'Denial of service issues that rely on loading untrusted data from
  configuration files, or passing untrusted data to the API, are outside
  the scope of the 1.x security model and will not be fixed.'
- Version 2 exists since 2016
- the port just installs the jar, it does not build anything
- nothing in the ports tree uses this
- no maintainer

Approved-by:    no maintainer
DeltaFile
+4-1devel/apache-commons-configuration/Makefile
+4-11 files

HardenedBSD/src b5366f8sbin/route route_netlink.c

route(8): show expire time of each nexthop in monitor

Reviewed by: glebius
Differential Revision: https://reviews.freebsd.org/D55514
DeltaFile
+2-0sbin/route/route_netlink.c
+2-01 files

HardenedBSD/src 8230cf1sbin/route route_netlink.c

route(8): Fix -expire argument when using netlink

Also fixes nexthop expire value on route get using netlink.

Reviewed by: glebius
MFC after: 3 weeks
Differential Revision: https://reviews.freebsd.org/D55444
DeltaFile
+4-6sbin/route/route_netlink.c
+4-61 files

HardenedBSD/src 2f7cfeeusr.bin/netstat route_netlink.c

netstat(1): Fix expire column in -r flag using netlink

Reviewed by: glebius
MFC after: 3 weeks
Differential Revision: https://reviews.freebsd.org/D55440
DeltaFile
+3-2usr.bin/netstat/route_netlink.c
+3-21 files

HardenedBSD/src ff6d1fasys/netlink netlink_snl_route_parsers.h, sys/netlink/route rt.c

rtnetlink: Add support for nexthop expiration in new/get route

Before this change, netlink only shows nexthop
expire value if route is not multipath.
Now it can set expire time during route creation.
Also, show expire time of multipath nexthops.

Reviewed by: glebius
MFC after: 3 weeks
Differential Revision: https://reviews.freebsd.org/D55442
DeltaFile
+11-1sys/netlink/route/rt.c
+2-0sys/netlink/netlink_snl_route_parsers.h
+13-12 files

HardenedBSD/ports 85333a2net-im/py-matrix-synapse pkg-descr Makefile

net-im/py-matrix-synapse: Update WWW and description

PR:             274257
Approved by:    Sascha Biberhofer <ports at skyforge.at> (maintainer,
timeout > 2 weeks)
Approved by:    db@, yuri@ (Mentors, implicit)
DeltaFile
+2-2net-im/py-matrix-synapse/pkg-descr
+1-1net-im/py-matrix-synapse/Makefile
+3-32 files

HardenedBSD/ports 2ea0d37editors/zed distinfo Makefile.crates, editors/zed/files patch-Cargo.lock patch-crates_gpui_src_platform_blade_blade__renderer.rs

editors/zed: Update to 0.225.9

Changelog: https://github.com/zed-industries/zed/releases/tag/v0.225.9

Reported by:    GitHub (watch releases)
DeltaFile
+77-59editors/zed/distinfo
+37-28editors/zed/Makefile.crates
+8-8editors/zed/files/patch-Cargo.lock
+0-11editors/zed/files/patch-crates_gpui_src_platform_blade_blade__renderer.rs
+11-0editors/zed/files/patch-crates_audio_src_audio.rs
+4-4editors/zed/files/patch-crates_project_src_agent__server__store.rs
+137-1106 files not shown
+150-12312 files

HardenedBSD/ports ed534f0math/R-cran-pls distinfo Makefile

math/R-cran-pls: Update to 2.9-0

Reported by:    portscout
DeltaFile
+3-3math/R-cran-pls/distinfo
+1-1math/R-cran-pls/Makefile
+4-42 files

HardenedBSD/ports f69201fwww/py-django-photologue Makefile, www/py-django-photologue/files patch-setup.py

www/py-django-photologue: Fix stage QA

* This was overlooked in 21900d66eda3 and was then noticed
  retrospectively during a bulk run after stage QA was extended in
  f35f902eb8f1:

[...]
====> Running Q/A tests (stage-qa)
Error: Python package installs top-level 'scripts/' directory in site-packages
Error:   Location: lib/python3.11/site-packages/scripts
[...]

* Bump PORTREVISION due changed package contents.

Approved by:    portmgr (build fix blanket)
Fixes:  21900d66eda3 www/py-django-photologue: Update to 3.18
DeltaFile
+14-0www/py-django-photologue/files/patch-setup.py
+1-0www/py-django-photologue/Makefile
+15-02 files

HardenedBSD/ports 95e059fdevel Makefile, devel/py-yamlloader Makefile pkg-descr

devel/py-yamlloader: New port

This module provides loaders and dumpers for PyYAML.

Currently, an OrderedDict loader/dumper is implemented, allowing to keep
items order when loading respective dumping a file from/to an
OrderedDict.

(Python 3.8+: Also regular dicts are supported and are the default items
to be loaded to.  As of Python 3.7 preservation of insertion order is a
language feature of regular dicts.)

This project was originally mirrored from "yamlordereddict" and contains
several improvements including automated testing and the much faster
C-versions of the Loaders/Dumpers.
DeltaFile
+26-0devel/py-yamlloader/Makefile
+12-0devel/py-yamlloader/pkg-descr
+3-0devel/py-yamlloader/distinfo
+1-0devel/Makefile
+42-04 files

HardenedBSD/ports 2baaf16archivers/javatar Makefile, audio/atunes Makefile

*/*: bump portrevision after java_default=21 update

PR:     272855
DeltaFile
+2-2java/java-subversion/Makefile
+1-1comms/java-simple-serial-connector/Makefile
+1-1archivers/javatar/Makefile
+1-1audio/atunes/Makefile
+1-1audio/jid3lib/Makefile
+1-1audio/musiccontrol/Makefile
+7-7488 files not shown
+495-218494 files

HardenedBSD/ports 17e021a. UPDATING, Mk bsd.default-versions.mk

Mk/bsd.default-versions.mk: bump java default to 21

After an extensive time of testing OpenJDK 21 LTS is now the default
java version on FreeBSD.
Some major ports already used Java 21 and some olders ports are now
pinned to OpenJDK 8 or other versions.

For armv6/armv7 OpenJDK 11 is the latest version with support
for these platforms on FreeBSD.

Thanks to everybody involved in making Java a vivid environment on
FreeBSD.

PR:     272855
Relnotes:       yes
DeltaFile
+8-0UPDATING
+5-1Mk/bsd.default-versions.mk
+13-12 files