BSD Commit Log Search

Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi

Merge branch 'freebsd/current/main' into hardened/current/master

Merge branch 'freebsd/15-stable/main' into hardened/15-stable/main

Merge branch 'freebsd/main' into hardenedbsd/main

*/Makefile: Sort SUBDIRs

Mk/Uses: Minor correction in comment

security/pygost: update MASTER_SITES and WWW

Switch from cypherpunks.ru to cypherpunks.su as the former is no more.

PR:     291231

devel/pyderasn: update WWW

Followup to previous commit: update WWW too.

PR:     291230

igc.4: Describe better

MFC after:      3 days

deskutils/syncthingtray: Update 2.0.7 => 2.0.9

Changelogs:
https://github.com/Martchus/syncthingtray/releases/tag/v2.0.8
https://github.com/Martchus/syncthingtray/releases/tag/v2.0.9

PR:     293688

devel/pyderasn: update MASTER_SITES

Switch from cypherpunks.ru to cypherpunks.su as the former is no more.

PR:     291230

deskutils/qownnotes: reset MAINTAINER

The port is de facto maintained by danfe@ for several years.

cxgbetool: create one backend routine for all the loadX cmds

They are all doing almost the same thing so it makes sense to have one
common routine.  The new routine supports non-regular files too.  eg.
 # cxgbetool chnex0 loadfw <(fetch -qo - http://srv/t7fw.bin)

MFC after:      1 week
Sponsored by:   Chelsio Communications
Reviewed by:    jhb
Differential Revision:  https://reviews.freebsd.org/D55747

HBSD: Potentially fix security/snowflake-tor

We build golang binaries as PIEs by default. FreeBSD had specifically
added a -static flag, which is currently mutually exclusive with PIE.

Signed-off-by:  Shawn Webb <shawn.webb at hardenedbsd.org>

multimedia/kamoso: add missing dependencies

multimedia/gstreamer1-plugins-v4l2: fix runtime error

Restore lost patch.

PR:             236673

net-mgmt/icingaweb2-module-grafana: Update 3.1.2 => 3.1.3

Changelog:
https://github.com/NETWAYS/icingaweb2-module-grafana/releases/tag/v3.1.3

Replace RM in do-install with EXTRACT_AFTER_ARGS.
Remove unnecessary MKDIR in do-install.

PR:     293689

misc/nanocoder: Add USES=certs:fetch

... since some users report that this is required, ex. in bug#293676

misc/github-copilot-language-server: Add USES=certs:fetch

... since some users report that this is required, ex. in bug#293676

misc/grok-cli: Add USES=certs:fetch

... since some users report that this is required, ex. in bug#293676

misc/claude-code: Add USES=certs:fetch

... since some users report that this is required, ex. in bug#293676

Tools/scripts: Use CA certificates in Tools/scripts/npmjs-fetch-with-dependencies.sh

Mk/Uses: Add certs.mk to handle dependency on security/ca_root_nss

... as USES=certs:{phase} instead of reciting the whole dependency.

Around one hundred ports depend on security/ca_root_nss.

misc/github-copilot-cli: Add USES=certs:fetch

... since some users report that this is required, ex. in bug#293676

www/py-yt-dlp-ejs: Add USES=certs:fetch

npm requires this for some users/systems and not for others.
It's not clear what the differentiating factor is.
See details in the bug report.

PR:             268638
Reported by:    James TD Smith

textproc/ctpp2: update MASTER_SITES and WWW

The project website is from time to time unreachable
and the source archive is not accessible anymore which
blocks the build process.

Create an alternate MASTER_SITES archive and update the
WWW to point to the archive.org backup of the website.

textproc/coccigrep: update 1.20 -> 1.21

Changelog: https://github.com/regit/coccigrep/releases/tag/v1.21

Major changes: fixes compatibility with Python 3.12

www/fmd-server: add NO_PACKAGE as pnpm downloads files during build

To be able to build a package the pnpm cache needs to be turned
into a distfile.

sysutils/podman-suite: bump PORTVERSION after components update

PR:             293609
Approved by:    dfr (maintainer)

Sponsored by:   tipi.work

sysutils/skopeo: update: 1.21.0 -> 1.22.0

PR:             293609
Approved by:    dfr (maintainer)

Sponsored by:   tipi.work