BSD Commit Log Search

Merge branch 'freebsd/current/main' into hardened/current/master

Merge branch 'freebsd/main' into hardenedbsd/main

devel/py-maturin: Update to 1.10.2

Changelog:

https://github.com/PyO3/maturin/releases/tag/v1.10.2

devel/freebsd-git-devtools: Update to 2025-11-27 snapshot

Base commits since last update:
6049f1bc2106 - git-arc: Fix failure to call arc() function
257da67d2808 - git-arc: Fix existence check
b3e53f9fff11 - git-arc: Don't require devel/arcanist
be27c64b3a01 - git-arc: Fix quoting of review titles
af445e1dd95d - mfc-candidates.lua: add -F fmt option
e57d72a7f35c - mfc-candidates: Improve branch detection and repository handling
3a20f630a9fc - git-arc: Fix handling of author names when we have to make a guess
3d4a61a10bb7 - git-arc: Try harder to get the author name and email out of phab
20e6354fe783 - git-arc.1: Clarify argument format for group reviewers

Sponsored by:   The FreeBSD Foundation

cxgbe(4): Delete leftovers from $FreeBSD$ removal

No functional change.

MFC after:      1 week
Sponsored by:   Chelsio Communications

Export t4_tom's symbols for other offload modules

This allows iw_cxgbe.ko, cxgbei.ko, nvmf_che.ko, etc. to be loaded when
debug.link_elf_leak_locals and debug.link_elf_obj_leak_locals are
disabled.

PR:             291250
MFC after:      1 week
Sponsored by:   Chelsio Communications

deskutils/stirling-pdf: update to 2.0.1

Changes:        https://github.com/Stirling-Tools/Stirling-PDF/releases/tag/v2.0.1

misc/crush: Update to 0.19.2

Changelog:
- https://github.com/charmbracelet/crush/releases/tag/v0.19.0
- https://github.com/charmbracelet/crush/releases/tag/v0.19.1
- https://github.com/charmbracelet/crush/releases/tag/v0.19.2

Reported by:    GitHub (watch releases)

ports-mgmt/poudriere-devel: Remove DEBUG for now.

This isn't activating properly and the name is confused with WITH_DEBUG
which is different.

ports-mgmt/poudriere-devel: Update to 3.3.0-2467-g1e1cd81b9

Changes:
- Fix dev asserts causing error when DEBUG option not enabled.
- jail -c -m pkgbase: Use pkg.freebsd.org for pkgbase now that it has
  redirects setup.

editors/vscode: Update to 1.106.3

Changelog: https://code.visualstudio.com/updates/v1_106

Reported by:    GitHub (watch releases)

ports-mgmt/poudriere-devel: Mark BROKEN for now due to a bulk error.

kgssapi: Remove broken MOD_UNLOAD code

The module panicked at unload with "recursing but non-recursive rw".
There is a comment that "Unloading of the kgssapi module is not
currently supported" and the MOD_UNLOAD case falls through to returning
EOPNOTSUPP anyway.  Just #if 0 the code in the unload path, leaving it
as a hint in case someone implements unload support later on.

PR:             291249
Reviewed by:    rmacklem
Fixes: ad704a34bc2c ("Use syscall_helper_register(9) rather than syscall_register().")
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D53949

devel/rustup-init: Add missing dependencies

$ rustup-init
ld-elf.so.1: Shared object "libzstd.so.1" not found, required by "rustup-init"
ld-elf.so.1: Shared object "libcurl.so.4" not found, required by "rustup-init"

Merge branch 'freebsd/current/main' into hardened/current/master

Merge branch 'freebsd/15-stable/main' into hardened/15-stable/main

Merge branch 'freebsd/main' into hardenedbsd/main

git-arc: Fix failure to call arc() function

As of b3e53f9fff11, git-arc attempted to call the internal shell
function, arc(), using env(1).  However, because env(1) does not call
shell functions, it actually attempted to run the arc utility.  This led
to errors:

    % git arc create -r xxx HEAD
    env: arc: No such file or directory
    git-arc: could not create Phabricator diff

This change removes the unnecessary use of env(1), so the arc() function
is correctly called.

Reviewed by:    markj
Fixes:          b3e53f9fff11 ("git-arc: Don't require devel/arcanist")
Sponsored by:   The FreeBSD Foundation
Differential Revision:  https://reviews.freebsd.org/D53972

rtld: fix powerpc build

(cherry picked from commit 0628c252bd161ccdd1228a3b8aefeb471044ca04)

vm_page_free_prep(): convert PG_ZERO zeroed page check to use sf_buf

(cherry picked from commit b9fc7628dbb24b55cbb8791c83bd69f73cfadf23)

rtld-elf: move powerpc-specific auxv compat code into arch hook

(cherry picked from commit b2b3d2a962eb00005641546fbe672b95e5d0672a)

vm_fault: add a verifier that the PG_ZERO page is indeed zeroed

(cherry picked from commit d8bfcacd12aba73188c44a157c707908e275825d)

security/vuxml: reference FreeBSD-SA-25:10.unbound

Add a reference to FreeBSD-SA-25:10.unbound (issued 2025-11-26) to the
vuxml entry for Unbound CVE-2025-11411.

FreeBSD-SA-25:10.unbound affects all supported versions of FreeBSD

misc/nanocoder: update 1.17.1 → 1.17.2

misc/nanocoder: update 1.16.5 → 1.17.1

graphics/pcl-pointclouds: update 1.15.0 → 1.15.1

math/pari: update 2.17.2 → 2.17.3

misc/ollama: update 0.3.6 → 0.13.1.r0

Mitigate YXDOMAIN and nodata non-referral answer poisoning.

Add a fix to apply scrubbing of unsolicited NS RRSets (and their
respective address records) for YXDOMAIN and nodata non-referral
answers. This prevents a malicious actor from exploiting a possible
cache poison attack.

Obtained from:  NLnet Labs
Security:       FreeBSD-SA-25:10.unbound
Security:       CVE-2025-11411

(cherry picked from commit 2a3a6a1771148a709c2d9694c1d66c41ce8dee79)
(cherry picked from commit cd40a23fb249bba461e38ca0c3d243a20a12eef4)
Signed-off-by: Shawn Webb <shawn.webb at hardenedbsd.org>

unbound: Vendor import 1.24.1

Release notes at
        https://nlnetlabs.nl/news/2025/Oct/22/unbound-1.24.1-released/

Security:       CVE-2025-11411

Merge commit '73dd92916f532cb3fe353220103babe576d30a15'

(cherry picked from commit 8b29c373e6ab530b62122ea2adcbe637c07e06c9)
(cherry picked from commit eeb41dca070f45f9ebb2b2831f81da65786ba820)
Signed-off-by: Shawn Webb <shawn.webb at hardenedbsd.org>