BSD Commit Log Search

Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi

Merge branch 'freebsd/current/main' into hardened/current/master

HBSD: Resolve merge conflict

This port was updated upstream. We no longer need to carry a patch
downstream to support our HARDCFLAGS option.

Signed-off-by:  Shawn Webb <shawn.webb at hardenedbsd.org>

Merge remote-tracking branch 'internal/freebsd/main' into hardenedbsd/main

Conflicts:
        archivers/zip/files/patch-zip.c (unresolved)

games/veloren-weekly: update to s20260121

Changes:        https://gitlab.com/veloren/veloren/-/compare/5378d5cf29...547fc9f725

emulators/rpcs3: update to 0.0.39.18708

Changes:        https://github.com/RPCS3/rpcs3/compare/d7b723cd7c...3e49c32c9c

graphics/mesa-devel: update to 26.0.b.44

Changes:        https://gitlab.freedesktop.org/mesa/mesa/-/compare/6f076cdfda3...481df222095

x11/wvkbd: update to 0.19

Changes:        https://git.sr.ht/~proycon/wvkbd/log/v0.19
Reported by:    GitHub (watch releases)

net-im/ejabberd: Update to 26.01

*/*: Bump port revision after electron39 update (af09aa198c34)

devel/electron39: Update to 39.3.0

Changelog: https://github.com/electron/electron/releases/tag/v39.3.0

Reported by:    GitHub (watch releases)

security/himitsu: create new port

Himitsu is a secure secret storage system for Unix-like systems. It provides an
arbitrary key/value store (where values may be secret) and a query language for
manipulating the key store.

WWW: https://himitsustore.org

PR:             292475

multimedia/ccextractor: update to 0.96.5

 - rust now mandatory
 - GUI rewritten in flutter, which we do not support unfortunately
 - hard subtitle extraction works now

Changelog: https://github.com/CCExtractor/ccextractor/releases/tag/v0.96.5
Changelog: https://github.com/CCExtractor/ccextractor/releases/tag/v0.96.4
Changelog: https://github.com/CCExtractor/ccextractor/releases/tag/v0.96.3
Changelog: https://github.com/CCExtractor/ccextractor/releases/tag/v0.96.2
Changelog: https://github.com/CCExtractor/ccextractor/releases/tag/v0.96.1
Changelog: https://github.com/CCExtractor/ccextractor/releases/tag/v0.96

multimedia/ccextractor-gui: remove port

The ccextractor GUI has been rewritten in flutter, which requires Dart.
We do not support Dart, so that means no GUI for us for now.

multimedia/gpac: enable pic everywhere

This fixes the build on arm64 for example.

Approved by:    portmgr (build fix blanket)

net-im/gurk-rs: fix build on armv7

Same fix as for shells/nushell.

Approved by:    portmgr (build fix blanket)
MFH:            2026Q1

net-mgmt/nagios-pf-plugin: broken on FreeBSD 15, deprecate

This port requires the obsolete ioctl(DIOCGETSTATUS), which is no
longer supported on FreeBSD 15.  Upstream is dead, so deprecate.
It also has some questionable warnings.

See also:       D41651
MFH:            2026Q1

shells/nushell: fix build on armv7

PR:             286368
MFH:            2026Q1
Tested by:      fuz
Approved by:    yuri (maintainer timeout)

archivers/zip: apply Debian patches

These patches fix some security and other issues:

 - ( 7) zipnote.c: Close in_file instead of undefined file x
 - ( 8) Use format specifier %s to print strings, not the string itself
 - (14) Fix buffer overflow when filename contains unicode characters
 - (15) Fix buffer overflow when using '-T -TT'
 - (16) Fix symlink update detection

Obtained from:  https://salsa.debian.org/sanvila/zip
Reported by:    diizzy
Reviewed by:    diizzy
Security:       CVE-2018-13410
MFH:            2026Q1

security/snortsam: broken on FreeBSD 15, deprecate

This port requires the obsolete ioctl(DIOCGETSTATUS), which is no
longer supported on FreeBSD 15.  Upstream is dead, so deprecate.
It also has some questionable warnings.

See also:       D41651
MFH:            2026Q1

cad/abc: not for armv7 either

Approved by:    portmgr (build fix blanket)
MFH:            2026Q1

graphics/sdl2_gpu: rename DOCS option to DOXYGEN

This avoids having to OPTIONS_EXCLUDE the DOCS option.

Suggested by:   makc
MFH:            2026Q1

editors/wordgrinder: broken on 15 too, deprecate

This port can likely be saved as upstream is still alive and a
newer version (0.8) exists.

See also:       https://cowlark.com/wordgrinder/
MFH:            2026Q1

truncate: fix a minor nit + add a hole-punching test

The struct spacectl_range we use is only really used in these three
lines of code, so re-scope it down to just the dealloc branch.  This is
marginally easier to reason about what might be necessary to replace in
porting our truncate(1) to other platforms.

While we're here, add a test for the -d flag to be sure it really does
punch a hole in the file.  The test also tries to confirm that it does
not disturb other segments of the file in the process, just to inspire
some confidence that it's not corrupting the file somehow.

Sponsored by:   Klara, Inc.
Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D51207

science/afni: Update to 26.0.04

devel/py-pytest-html: update to 4.2.0

Changes:        https://github.com/pytest-dev/pytest-html/releases/tag/4.2.0
Reported by:    portscout, repology

sysutils/wmtop: Update 0.84 => 0.85

Changelog:
https://repo.or.cz/dockapps.git/blob/refs/tags/wmtop-0.85:/wmtop/ChangeLog

Upstream moved to https://www.dockapps.net/wmtop.

PR:             292626
Co-authored-by: Vladimir Druzenko <vvd at FreeBSD.org>

ath10k: update Atheros/QCA's ath10k driver

This version is based on
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
24d479d26b25bce5faea3ddd9fa8f3a6c3129ea7 ( tag: v6.19-rc6 ).

Sponsored by:   The FreeBSD Foundation

rtw88: update Realtek's rtw88 driver

This version is based on
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
24d479d26b25bce5faea3ddd9fa8f3a6c3129ea7 ( tag: v6.19-rc6 ).

Sponsored by:   The FreeBSD Foundation

sctp: support bridge interfaces

Reported by:    Timo Völker
Tested by:      Timo Völker

(cherry picked from commit 8d82dafa568baf7be46e5e443dd7310986a28aa9)