BSD Commit Log Search

Merge branch 'freebsd/main' into hardenedbsd/main

www/gitlab: security and patch update to 18.9.1

Changes:        https://about.gitlab.com/releases/2026/02/25/patch-release-gitlab-18-9-1-released/
Security:       102a03c9-1316-11f1-93ca-2cf05da270f3

www/py-fastapi-sso: Update to 0.21.0

Changelog: https://github.com/tomasvotava/fastapi-sso/releases/tag/0.21.0

Reported by:    portscout

net-im/teams: Update to 2.7.8

Changelog: https://github.com/IsmaelMartinez/teams-for-linux/releases/tag/v2.7.8

Reported by:    portscout

Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi

Merge branch 'freebsd/current/main' into hardened/current/master

Merge branch 'freebsd/main' into hardenedbsd/main

newgrp.1: Provide examples

"These examples appear to be originally noted thirteen years ago by
Mark Saad, contributed by eadler, put into a patch by Felix Johnson,
and made into mdoc by myself. Finally, put this bug to rest." ~ziaee

PR:                     167742
Co-authored-by:         eadler, ziaee, Mark Saad
Differential Revision:  https://reviews.freebsd.org/D48877

sanitize.lua: A tool to extract interfaces from files

This is a simple too to remove all comments, extra whitespace and other
unnecessary things that may have creative content. What remains can be
just the minimal interface described by the header file. When used with
care, this can mechanically sanitize files, like some device tree
bindings file, that are only #defines that are meant to be used in
multiple context (the dts files and in C code to interpret the resulting
dtb).

Sponsored by:           Netflix
Reviewed by:            kevans
Differential Revision:  https://reviews.freebsd.org/D55087

rc.8: Add rc.suspend as an alias

Make it consistent with the other lifecycle scripts, thus making it
more findable.

Reviewed by:    ziaee
Signed-off-by:  Pat Maddox <pat at patmaddox.com>
Closes:         https://github.com/freebsd/freebsd-src/pull/2047

devel/pecl-swoole: update to 6.1.7.

databases/R-cran-DBI: Update to 1.3.0

Reported by:    portscout

LinuxKPI: remove dumm header now in common

page_pool/helpers.h does exist in common/include/net/page_pool/helpers.h
so we can remove the dummy header file.

Sponosred by:   The FreeBSD Foundation
MFC after:      3 days

dns/nextdns: Update to 1.47.1

Approved by:    rs at nextdns.io (maintainer)

deskutils/cherrytree: update the port to version 1.6.3

Reported by:    portscout

sysutils/symon: Improve port, take maintainership

- Convert to modern OPTIONS.
- Add record to UPDATING about options.
- "Samplefy" configs.
- Fix warnings from portclippy.
- "Unbreak" on 15+ - disable PF support (patches gratefully received!).

PR:             292366
Co-authored-by: Vladimir Druzenko <vvd at FreeBSD.org>

devel/arduino-irremote: Update to 4.6.0

Changes since 4.5.0:

 -  Fixed missing ESP IRAM_ATTR for receiving interrupt.

 -  Changed USE_DEFAULT_FEEDBACK_LED_PIN from 0 to 0xFF, because
    megaTinyCore defines the not special pin PIN_PA4 as 0.

 -  Changed timer for ATtiny16X4.

 -  Fixed missing initialization with pinMode() for feedback LED.

 -  Fixed bitmask error in sendBiphaseData() when not sending start
    bit.

 -  Improved decodeSamsung().

 -  OpenLASIR protocol added by danielweidman.

    [8 lines not shown]

tests/kern: put ssl_sendfile under MK_OPENSSL != no

Reported by:    wosch

divert: Use a better source identifier for netisr_queue_src() calls

These opaque IDs are used by netisr to distribute work among threads.
The mapping function is simply SourceID % numthreads, so using socket
addresses as source IDs isn't going to distribute packets well due to
alignment.

Use the divert socket's generation number instead, as that suits this
purpose much better.

Reviewed by:    zlei, glebius
MFC after:      1 week
Sponsored by:   OPNsense
Sponsored by:   Klara, Inc.
Differential Revision:  https://reviews.freebsd.org/D55537

devel/libunistring: Update 1.4.1 => 1.4.2

Changelog:
 - Prepare for 1.4.2 release.
   * version.sh: Bump version number, date, gnulib version.
   * README: Update version.
   * NEWS: Update.
 - Sync with gnulib.
   * lib/unistring/cdefs.h: Update from gnulib/m4/gnulib-common.m4.
 - (_GL_UNNAMED): New macro.
 - (_UC_UNNAMED): Apply "New C macro _GL_UNNAMED".
 - Make the generated <unistring/stdint.h> more usable in C++ mode.
   * lib/Makefile.am (unistring/stdint.h): In C++ 11 or newer mode, just
     use <cstdint>.

PR:     293435

security/p5-openxpki-clca: Update 1.20 => 1.21

Commit log:
https://github.com/openxpki/clca/compare/v1.20...v1.21

PR:     293444

textproc/moor: Update 2.10.4 => 2.11.0

Changelogs:
- https://github.com/walles/moor/releases/tag/v2.10.5
- https://github.com/walles/moor/releases/tag/v2.11.0

Reviewed by:    osa, vvd (mentors)
Approved by:    osa, vvd (mentors)
Differential Revision: https://reviews.freebsd.org/D55540

ports-mgmt/pkg_replace: Update 20260209 => 20260219

Changelog:
https://github.com/kdeguchi/pkg_replace/releases/tag/20260219

PR:     293452

net/samba422: opt out from Features/fortify.mk

[...]
Checking for freebsd sendfile support                                                           : not found
sendfile support not found but it was requested !
(complete log in /wrkdirs/usr/ports/net/samba422/work/samba-4.22.6/bin/config.log)
===>  Script "configure" failed unexpectedly.
[...]

PR:     292391

net/samba423: opt out from Features/fortify.mk

[...]
Checking for freebsd sendfile support                                                           : not found
sendfile support not found but it was requested !
(complete log in /wrkdirs/usr/ports/net/samba423/work/samba-4.23.4/bin/config.log)
===>  Script "configure" failed unexpectedly.
[...]

PR:     292392

net/samba420: opt out from Features/fortify.mk

[...]
Checking for freebsd sendfile support                                                           : not found
sendfile support not found but it was requested !
(complete log in /wrkdirs/usr/ports/net/samba420/work/samba-4.20.8/bin/config.log)
===>  Script "configure" failed unexpectedly.
[...]

PR:     292390

net/samba416: opt out from Features/fortify.mk

[...]
sendfile support not found but it was requested !
(complete log in /wrkdirs/usr/ports/net/samba416/work-default/samba-4.16.11/bin/config.log)
===>  Script "configure" failed unexpectedly.
[...]

PR:     292388

net/samba419: opt out from Features/fortify.mk

[...]
Checking for freebsd sendfile support                                                           : not found
sendfile support not found but it was requested !
(complete log in /wrkdirs/usr/ports/net/samba419/work/samba-4.19.9/bin/config.log)
===>  Script "configure" failed unexpectedly.
[...]

PR:     292389

net-mgmt/unifi10: Update to 10.1.85

Release notes:  https://community.ui.com/releases/r/network/10.1.85

java/openjdk25: Update to OpenJDK 25.0.2

Update to track upstream version 25.0.2, with fixes for FreeBSD.

See the upstream release notes for details on what has changed since
version 25.0.1:
https://www.oracle.com/java/technologies/javase/25-0-2-relnotes.html

In addition to the above, this release includes the following patch,
scheduled for JDK 26 by upstream.

JDK-8371637: allocateNativeInternal sometimes return incorrectly aligned
memory

This is because this patch affects systems using jemalloc specifically,
like FreeBSD does, but I feel it's too long time to wait until the next
LTS release before making it available on FreeBSD.

Reviewed by:    fuz (mentor)

    [3 lines not shown]