BSD Commit Log Search

rc.subr: Drop duplicate SPDX tag in test script

I added a tag in the correct place in the previous commit, and somehow
managed to miss that there was already one in the wrong place.

Fixes:          7f04c09fe745
Sponsored by:   Klara, Inc.
Sponsored by:   NetApp, Inc.

rc.subr: Fix wait_for_pids

It looks like this function was intended to loop and print an update
whenever at least one of the waited-for processes terminates.  However,
the default behavior of pwait is to block until none of the watched
processes exist.  Use pwait -o instead so it only blocks until at least
one process terminates, and add a test.

Sponsored by:   Klara, Inc.
Sponsored by:   NetApp, Inc.
Reviewed by:    siderop1_netapp.com, kevans
Differential Revision:  https://reviews.freebsd.org/D51691

libarchive: Stop using readdir_r()

It cannot be used safely, though libarchive goes to ridiculous lengths
to attempt to do so.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D51679

libc: Deprecate readdir_r()

This function was never safe to use.  We marked it deprecated in the
manual page in 2016, and it is marked obsolete in POSIX 2024.  Add a
linker warning and annotate the prototype.

Sponsored by:   Klara, Inc.
Reviewed by:    imp, markj
Differential Revision:  https://reviews.freebsd.org/D51681

kyua: Stop using readdir_r()

It cannot be used safely, and Kyua doesn't even pretend to try.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    igoro
Differential Revision:  https://reviews.freebsd.org/D51680

bsnmpd: Fix an error message

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D51678

www/phpmustace: Mark as deprecated

It should now be installed with the application that needs it,
instead of as a system-wide PHP library.

PR:             288554
Approved by:    yuri@ (Mentor)

archivers/php-zstd: Update 0.11.0 => 0.14.0

Commit log:
https://github.com/kjdev/php-ext-zstd/compare/0.11.0...0.14.0

PR:     288592

archivers/php-lz4: Update 0.4.3 => 0.5.0

Commit logs:
https://github.com/kjdev/php-ext-lz4/compare/0.4.3...0.4.4
https://github.com/kjdev/php-ext-lz4/compare/0.4.4...0.5.0

Changelog:
https://github.com/kjdev/php-ext-lz4/releases/tag/0.5.0

PR:     288592

graphics/pastel: update 0.9.0 => 0.10.0

PR:             283645
Approved by:    lcook@ (maintainer, timeout > 7 months)
Approved by:    yuri@  (Mentor)

inotify: Avoid calling vrele() with a namecache mutex held

In cache_vop_inotify(), we call inotify_log() with a namecache hash lock
held.  inotify_log() looks at all watches registered with the vnode to
see if any of them are interested in the event.  In some cases, we have
to detach and free the watch after logging the event.  This means we
must vrele() the watched vnode, and this must not be done while a
non-sleepable lock held.

Previously, I deferred the vrele() to until the inotify softc and vnode
pollinfo locks were dropped.  However, this is not enough since we may
still be holding the aforementioned namecache lock.  Go further and use
a taskqueue thread to release vnode references.  Introduce a set of
detached watches, and queue a threaded task which releases the vnode
reference.

Reported by:    syzbot+c128f121cb22df95559b at syzkaller.appspotmail.com
Reviewed by:    kib
Fixes:          f1f230439fa4 ("vfs: Initial revision of inotify")
Differential Revision:  https://reviews.freebsd.org/D51685

www/node20: fix build on powerpc64

../deps/simdutf/simdutf.cpp:8339:37: error: use of 'long long' with '__vector' requires VSX support (available on POWER7 or later) to be enabled
 8339 | using vec_u64_t = __vector unsigned long long;
      |                                     ^
../deps/simdutf/simdutf.cpp:8340:35: error: use of 'long long' with '__vector' requires VSX support (available on POWER7 or later) to be enabled
 8340 | using vec_i64_t = __vector signed long long;
      |                                   ^

tcp: Fix wrap around comparison bug

The variables p_curtick and p_lasttick are not in usecs.

Reviewed by:    tuexen
MFC after:      1 week
Sponsored by:   Netflix, Inc.

net/keycloak: Update 26.2.3 => 26.3.2

Release notes:
https://www.keycloak.org/2025/05/keycloak-2624-released
https://www.keycloak.org/2025/05/keycloak-2625-released
https://www.keycloak.org/2025/07/keycloak-2630-released
https://www.keycloak.org/2025/07/keycloak-2631-released
https://www.keycloak.org/2025/07/keycloak-2632-released

While here replace 4 mkdirs with 1.

PR:     288584

*/*: chase the upgrade to SuiteSparse

math/suitesparse-Example: adding the Example package of SuiteSparse

Like CSparse, do not install it by default.

math/suitesparse*: upgrade to SuiteSparse v7.11.0

Release notes at
        https://github.com/DrTimothyAldenDavis/SuiteSparse/releases/tag/v7.11.0

net/uriparser: Update to 0.9.8

PR:             288566
Reported by:    cs@
Approved by:    maintainer

devel/maven39: Update port to 3.9.11

Approved by:    jrm (mentor)
MFH:            2025Q3
Differential Revision:  https://reviews.freebsd.org/D51675
Release Notes:  https://maven.apache.org/docs/3.9.11/release-notes.html

chroot: Improve error message for unprivileged use

When the security.bsd.unprivileged_chroot sysctl is set, chroot(2) can
be used by unprivileged users as long as the PROC_NO_NEW_PRIVS_CTL
process control is set.

chroot(8) has a -n command line flag to set this process control.
Add an explicit error for EPERM from chroot(2) if the -n flag is
necessary, but not present.

Before:
  $ chroot / /bin/sh
  chroot: /: Operation not permitted

After:
  $ chroot / /bin/sh
  chroot: unprivileged use requires -n

Reviewed by:    kevans

    [2 lines not shown]

multimedia/mkvtoolnix: Update to upstream release 94.0

Details:
- Mostly bugfix release, see
  https://mkvtoolnix.download/doc/NEWS.md

MFH:            2025Q3

vm_pageout: Scan inactive dirty pages less aggressively

Consider a database workload where the bulk of RAM is used for a
fixed-size file-backed cache.  Any leftover pages are used for
filesystem caching or anonymous memory.  In particular, there is little
memory pressure and the inactive queue is scanned rarely.

Once in a while, the free page count dips a bit below the setpoint,
triggering an inactive queue scan.  Since almost all of the memory there
is used by the database cache, the scan encounters only referenced
and/or dirty pages, moving them to the active and laundry queues.  In
particular, it ends up completely depleting the inactive queue, even for
a small, non-urgent free page shortage.

This scan might process many gigabytes worth of pages in one go,
triggering VM object lock contention (on the DB cache file's VM object)
and consuming CPU, which can cause application latency spikes.

Observing this behaviour, my observation is that we should abort

    [21 lines not shown]

genet: Add a detach routine

PR:             288309
Co-authored by: Mike Belanger <mibelanger at qnx.com>
MFC after:      2 weeks

devel/aws-sdk-cpp: Update to 1.11.617

ChangeLog: https://github.com/aws/aws-sdk-cpp/compare/1.11.603...1.11.617

devel/R-cran-future: Update to 1.67.0

ChangeLog: https://cran.r-project.org/web/packages/future/news/news.html

emulators/sameboy: Update to 1.0.2

ChangeLog: https://github.com/LIJI32/SameBoy/releases/tag/v1.0.2

devel/aws-crt-cpp: Update to 0.33.2

ChangeLog: https://github.com/awslabs/aws-crt-cpp/releases/tag/v0.33.2

databases/cego: update 2.52.23 -> 2.52.25

- more fixes for CegoAttrCond

deskutils/py-paperless-ngx: Update to 2.17.1

PR:             287939
Co-authored-by: Sebastian <sko at rostwald.de>

www/py-dj51-django-allauth: Update to 65.10.0