BSD Commit Log Search

HBSD: Opt zlib kernel module into -ftrivial-var-auto-init=zero

Recent CVEs in the zlib project demonstrate the need to apply additional
protections.

Signed-off-by:  Shawn Webb <shawn.webb at hardenedbsd.org>
See-Also:       https://7asecurity.com/reports/pentest-report-zlib-RC1.1.pdf
MFC-to:         15-STABLE

Merge branch 'freebsd/current/main' into hardened/current/master

Merge branch 'freebsd/main' into hardenedbsd/main

devel/py-itanium_demangler: Pass maintainership

PR:             291196

bhyveload: If disk cannot be opened RW try RO. (=same as bhyve)

Not expecting it to turn into yak-shaving: kevans

recoverdisk: Ensure medium_read is multiple of small_read.

OpenSSL: install EVP_CIPHER_CTX_get_app_data.3 once

A separate EVP_CIPHER_CTX_get_app_data.3 was added in the OpenSSL 3.5.5
import, but the link to EVP_EncryptInit.3 was still being installed
which stomped on the file and created inconsistent entries in the METALOG.

Reviewed by:    emaste
Found by:       package_check script in Cirrus-CI
Fixes:          1731fc70f734 ("OpenSSL: update vendor sources to match 3.5.5 content")
Sponsored by:   Innovate UK
Differential Revision:  https://reviews.freebsd.org/D55332

sysutils/smartmontools: fix reload command

- add patch from upstream to set signals regardless existing flags
- simplify rc script by handling reload natively

PR: 293205

audio/sidplayfp: Update to 2.16.1

trimdomain.3: Explain DISPLAY a bit more

MFC after:              3 days
Reported by:            jrtc27
Reviewed by:            des
Differential Revision:  https://reviews.freebsd.org/D54629

x11/xterm: Update to 407

cad/surfer: Update to 0.6.0

Changelog: https://gitlab.com/surfer-project/surfer/-/releases/v0.6.0

games/gcompris-qt: ignore on systems with legacy OpenSSL

www/redmine60: Allow build with ruby34

- Bump PORTREVISION for package change

PR:             292489
Approved by:    delphij (maintainer)

java/openjfx14: Fix a67f24e318a6966aa0f191de2c49f1fb687fde6e

Simplify RUBY_VER check

PR:             293109
Reported by:    Benjamin Takacs <nimaje+fbz at bureaucracy.de>

databases/mysql96-server: Fix typo

Approved by:    portmgr (blanket)

databases/mysql94-server: Fix typo

Approved by:    portmgr (blanket)

x11-fonts/py-vfblib: Update version requirement of BUILD_DEPENDS

print/py-vharfbuzz: Update version requirement of BUILD_DEPENDS

x11-fonts/py-babelfont: Update version requirement of BUILD_DEPENDS

textproc/py-youseedee: Update version requirement of BUILD_DEPENDS

security/py-python-pkcs11: Update version requirement of BUILD_DEPENDS

devel/py-toml-fmt-common: Update WWW

devel/py-localstack-core: Update version requirement of BUILD_DEPENDS

print/py-glyphsets: Change BUILD_DEPENDS from py-setuptools-scm8 to py-setuptools-scm

- Update version requirement of BUILD_DEPENDS
- Bump PORTREVISION for package change

devel/py-lark: Fix BUILD_DEPENDS

devel/py-flatbuffers: Update to 25.12.19-2026-02-06-03fffb2

Changes:        https://github.com/google/flatbuffers/releases

devel/py-git-up: Allow build with py-packaging 26.0+

- Bump PORTREVISION for package change

devel/py-distributed: Update version requirement of BUILD_DEPENDS

devel/py-dask: Update version requirement of BUILD_DEPENDS