HardenedBSD/src 35f585fsys/dev/mlx5/mlx5_en mlx5_en_main.c, sys/net iflib.c if.h

Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi
DeltaFile
+16-2sys/dev/mlx5/mlx5_en/mlx5_en_main.c
+9-0sys/net/iflib.c
+3-2sys/net/if.h
+4-1sys/net/iflib.h
+1-0sys/sys/sockio.h
+33-55 files

HardenedBSD/src 11950ecsys/dev/mlx5/mlx5_en mlx5_en_main.c, sys/net iflib.c iflib.h

Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+16-2sys/dev/mlx5/mlx5_en/mlx5_en_main.c
+9-0sys/net/iflib.c
+4-1sys/net/iflib.h
+3-2sys/net/if.h
+1-0sys/sys/sockio.h
+33-55 files

HardenedBSD/ports e94d8bdmath/R-cran-recipes distinfo Makefile

math/R-cran-recipes: Update to 1.3.2

Reported by:    portscout
DeltaFile
+3-3math/R-cran-recipes/distinfo
+1-1math/R-cran-recipes/Makefile
+4-42 files

HardenedBSD/ports 277a257devel/R-cran-hardhat Makefile distinfo

devel/R-cran-hardhat: Update to 1.4.3

- Remove BUILD_DEPENDS as r cran pkg doesn't compile.

ChangeLog: https://cran.r-project.org/web/packages/hardhat/news/news.html
DeltaFile
+2-4devel/R-cran-hardhat/Makefile
+3-3devel/R-cran-hardhat/distinfo
+5-72 files

HardenedBSD/ports 09a49c8devel/R-cran-cpp11 distinfo Makefile

devel/R-cran-cpp11: Update to 0.5.4

ChangeLog: https://cran.r-project.org/web/packages/cpp11/news/news.html
DeltaFile
+3-3devel/R-cran-cpp11/distinfo
+1-1devel/R-cran-cpp11/Makefile
+4-42 files

HardenedBSD/ports 3d572acsysutils/beats8 Makefile, sysutils/beats91 Makefile

sysutils/beats*: Mark as not for arch i386

MFH:    2026Q2
DeltaFile
+2-0sysutils/beats8/Makefile
+2-0sysutils/beats91/Makefile
+2-0sysutils/beats92/Makefile
+2-0sysutils/beats93/Makefile
+8-04 files

HardenedBSD/src cf1f215sys/dev/mlx5/mlx5_en mlx5_en_main.c, sys/net iflib.c if.h

net: Add SIOCGI2CPB ioctl & add page/bank fields to ifi2creq

This commit adds page & bank fields to ifi2creq in preparation
for adding CMIS support for 400g optics to ifconfig.
The new ioctl SIOCGI2CPB is added, so that drivers can distinguish
between callers asking for page/bank selection and legacy callers
that simply failed to zero out all ifi2creq fields.

The mlx5en(4) driver and iflib(4) driver frameork have been updated
to use this new SIOCGI2CPB ioctl and support page/bank operations.
A follow-on patchset will add support to ifconfig for reporting
data from CMIS optics.

This has been tested on Nvidia ConnectX-7 and Broadcom Thor2 (using
out of tree driver) based NICs.

Differential Revision: https://reviews.freebsd.org/D55912
Sponsored by: Netflix Inc.
Reviewed by: kib
DeltaFile
+16-2sys/dev/mlx5/mlx5_en/mlx5_en_main.c
+9-0sys/net/iflib.c
+3-2sys/net/if.h
+4-1sys/net/iflib.h
+1-0sys/sys/sockio.h
+33-55 files

HardenedBSD/ports fd50ba4www/homer-web pkg-plist distinfo

www/homer-web: update to 26.4.1

Changes:        https://github.com/bastienwirtz/homer/releases/tag/v26.4.1
DeltaFile
+103-101www/homer-web/pkg-plist
+3-3www/homer-web/distinfo
+1-1www/homer-web/Makefile
+107-1053 files

HardenedBSD/ports 5e40ce9textproc/py-m2r Makefile

textproc/py-m2r: Bump PORTREVISION

...to update metadata
DeltaFile
+1-1textproc/py-m2r/Makefile
+1-11 files

HardenedBSD/ports 17a3980devel/capnproto Makefile

devel/capnproto: Mark BROKEN on 15+

Multiple unit tests fails with following message:
failed: expected hupPromise.poll(waitScope)

PR:             294259
DeltaFile
+4-0devel/capnproto/Makefile
+4-01 files

HardenedBSD/ports 9daa967graphics/png distinfo Makefile

graphics/png: Update to 1.6.56

Fixes CVE-2026-33416 and CVE-2026-33636

Initial patch submitted by Fabian Wenk

Changelog:      https://github.com/pnggroup/libpng/blob/v1.6.56/ANNOUNCE

PR:             294061
Reviewed by:    ports-secteam (fluffy)
Exp-run by:     antoine
DeltaFile
+5-5graphics/png/distinfo
+1-1graphics/png/Makefile
+1-1graphics/png/pkg-plist
+7-73 files

HardenedBSD/ports 51f1036. UPDATING, security/openvpn distinfo Makefile

security/openvpn: Update to 2.7.1

This changes installed scripts, openvpn-client.up and .down scripts
are no longer installed into libexec/, but instead a dns-updown script
is placed into libexec/openvpn/ (all under $PREFIX).

Based on a patch provided by Marek Zarychta.

Changelog:      https://github.com/OpenVPN/openvpn/releases/tag/v2.7.1

PR:             293138, 286263
DeltaFile
+14-3security/openvpn/files/pkg-message.in
+0-11security/openvpn/files/patch-inotify
+9-0UPDATING
+3-3security/openvpn/distinfo
+2-3security/openvpn/files/openvpn-client.in
+1-3security/openvpn/Makefile
+29-231 files not shown
+30-257 files

HardenedBSD/ports 17cb671audio/fooyin distinfo Makefile

audio/fooyin: Update to 0.10.3

Changelog: https://github.com/fooyin/fooyin/releases/tag/v0.10.3
DeltaFile
+3-3audio/fooyin/distinfo
+1-1audio/fooyin/Makefile
+4-42 files

HardenedBSD/ports ff3b84dgraphics/openexr Makefile distinfo, graphics/openexr-website-docs Makefile distinfo

graphics/openexr*: Security update to 3.4.9

Addresses several security vulnerabilities

Changelog:
https://github.com/AcademySoftwareFoundation/openexr/blob/v3.4.9/CHANGES.md#version-349-april--3-2026

PR:             294197
Security:       CVE-2026-34589, CVE-2026-34588, CVE-2026-34380,
                CVE-2026-34379, CVE-2026-34378,
                adb096d4-2e72-11f1-acc1-339a1a6999b0
DeltaFile
+6-5graphics/openexr/Makefile
+3-3graphics/openexr-website-docs/Makefile
+3-3graphics/openexr-website-docs/distinfo
+3-3graphics/openexr/distinfo
+15-144 files

HardenedBSD/ports 2f74648cad/fritzing Makefile, devel/py-itanium_demangler Makefile

*/*: Update maintainer to my FreeBSD address

Approved by:    makc (mentor)
DeltaFile
+1-1devel/py-itanium_demangler/Makefile
+1-1devel/thonny/Makefile
+1-1graphics/qimgv/Makefile
+1-1ports-mgmt/zig2tuple/Makefile
+1-1devel/zls/Makefile
+1-1cad/fritzing/Makefile
+6-62 files not shown
+8-88 files

HardenedBSD/ports d5d3d33cad/OrcaSlicer Makefile, x11/ly Makefile

*/*: Take maintainership

Approved by:    bapt (former maintainer)
Approved by:    makc (mentor)
DeltaFile
+1-1cad/OrcaSlicer/Makefile
+1-1x11/ly/Makefile
+2-22 files

HardenedBSD/ports 01fe4ebaudio/piper Makefile, audio/piper-phonemize Makefile

*/*: Drop maintainership

Approved by:    makc (mentor)
DeltaFile
+1-1audio/piper-phonemize/Makefile
+1-1audio/piper/Makefile
+2-22 files

HardenedBSD/ports d387e6bwww/qutebrowser distinfo Makefile

www/qutebrowser: update to 3.7.0
DeltaFile
+3-3www/qutebrowser/distinfo
+1-1www/qutebrowser/Makefile
+4-42 files

HardenedBSD/ports 91c5f11databases/rubygem-flipper-active_record-rails-gitlab Makefile

Revert "databases/rubygem-flipper-active_record-rails-gitlab: Add PORTSCOUT"

This reverts commit 150e94f893320e4aab25613587a128e6bdcfccaa.
DeltaFile
+0-2databases/rubygem-flipper-active_record-rails-gitlab/Makefile
+0-21 files

HardenedBSD/ports a4b0056devel/rubygem-flipper-active_support_cache_store-rails-gitlab Makefile

Revert "devel/rubygem-flipper-active_support_cache_store-rails-gitlab: Add PORTSCOUT"

This reverts commit c316ed718a347e429a1e51fd97df6160a7fc3699.
DeltaFile
+0-2devel/rubygem-flipper-active_support_cache_store-rails-gitlab/Makefile
+0-21 files

HardenedBSD/ports 5f7076fnet-im/toot distinfo Makefile

net-im/toot: Update 0.51.1 => 0.52.2

Changelogs:
* https://github.com/ihabunek/toot/releases/tag/0.52.0
* https://github.com/ihabunek/toot/releases/tag/0.52.1

Reviewed by:    osa (mentor), vvd (co-mentor)
Approved by:    vvd (co-mentor)
Differential Revision: https://reviews.freebsd.org/D56261
DeltaFile
+3-3net-im/toot/distinfo
+1-1net-im/toot/Makefile
+4-42 files

HardenedBSD/ports 48ea19ddevel/bazel7 Makefile, devel/bazel7/files extra-patch-abseil-cpp-cfe27e79cfcbefb2b4479e04f80cbb299bc46965 toolchain_local-BUILD

devel/bazel7: Upgrade to 7.7.1.

PR:             ports/294256
Approved by:    yuri (maintainer)
DeltaFile
+140-0devel/bazel7/files/extra-patch-abseil-cpp-cfe27e79cfcbefb2b4479e04f80cbb299bc46965
+32-14devel/bazel7/Makefile
+43-0devel/bazel7/files/toolchain_local-BUILD
+23-0devel/bazel7/files/rules_python_freebsd.patch.in
+20-0devel/bazel7/files/extra-patch-grpc_bazel_grpc__deps.bzl
+20-0devel/bazel7/files/patch-distdir_deps.bzl
+278-149 files not shown
+384-1715 files

HardenedBSD/ports c7f2183misc/ollama distinfo Makefile, misc/ollama/files update-port.sh

misc/ollama: update 0.20.0 → 0.20.2
DeltaFile
+11-11misc/ollama/distinfo
+10-0misc/ollama/files/update-port.sh
+1-1misc/ollama/Makefile
+22-123 files

HardenedBSD/ports b1d6707print/py-PyMuPDF Makefile, print/py-PyMuPDF/files patch-swig patch-setup.py

print/py-PyMuPDF: update 1.22.5 → 1.27.2.2

PR:             294174
Approved by:    Wen Heping <wen at FreeBSD.org>
DeltaFile
+0-2,117print/py-PyMuPDF/files/patch-swig
+26-8print/py-PyMuPDF/Makefile
+29-0print/py-PyMuPDF/files/patch-setup.py
+20-0print/py-PyMuPDF/files/patch-mupdf-scripts-wrap-state.py
+11-0print/py-PyMuPDF/files/patch-mupdf-scripts-wrap-__main__.py
+11-0print/py-PyMuPDF/files/patch-mupdf-Makefile
+97-2,1252 files not shown
+103-2,1298 files

HardenedBSD/ports afefde6math/py-heyoka Makefile distinfo

math/py-heyoka: update 6.0.0 → 7.10.0
DeltaFile
+3-4math/py-heyoka/Makefile
+3-3math/py-heyoka/distinfo
+3-0math/py-heyoka/pkg-plist
+9-73 files

HardenedBSD/src a4252cdshare/misc committers-ports.dot, sys/fs/nfsclient nfs_clport.c nfs_clstate.c

Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi
DeltaFile
+25-12sys/nfs/nfs_diskless.c
+31-0sys/fs/nfsclient/nfs_clport.c
+15-2sys/fs/nfsclient/nfs_clstate.c
+5-2sys/fs/nfsclient/nfs_clvfsops.c
+2-1sys/fs/nfsclient/nfs_clrpcops.c
+3-0share/misc/committers-ports.dot
+81-172 files not shown
+83-188 files

HardenedBSD/src cd7da48share/misc committers-ports.dot, sys/fs/nfsclient nfs_clport.c nfs_clstate.c

Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+25-12sys/nfs/nfs_diskless.c
+31-0sys/fs/nfsclient/nfs_clport.c
+15-2sys/fs/nfsclient/nfs_clstate.c
+5-2sys/fs/nfsclient/nfs_clvfsops.c
+2-1sys/fs/nfsclient/nfs_clrpcops.c
+3-0share/misc/committers-ports.dot
+81-172 files not shown
+83-188 files

HardenedBSD/ports a0222acdatabases/tiledb Makefile, devel/capnproto-tiledb pkg-plist Makefile

devel/capnproto-tiledb: Move devel/capnproto1 to devel/capnproto-tiledb

- Update COMMENT
- Bump PORTREVISION for package change
- Bump PORTREVISION of dependent ports for dependency change
DeltaFile
+0-144devel/capnproto1/pkg-plist
+144-0devel/capnproto-tiledb/pkg-plist
+32-0devel/capnproto-tiledb/Makefile
+0-31devel/capnproto1/Makefile
+3-2databases/tiledb/Makefile
+0-3devel/capnproto1/distinfo
+179-1805 files not shown
+186-18311 files

HardenedBSD/ports a354f71www/gohugo distinfo Makefile

www/gohugo: Update to 0.160.0

ChangeLog: https://github.com/gohugoio/hugo/releases/tag/v0.160.0

Bug fixes

 * Fix some recently introduced Position issues
 * markup/goldmark: Fix double-escaping of ampersands in link URLs
 * tpl: Fix stray quotes from partial decorator in script context

Improvements

 * all: Replace NewIntegrationTestBuilder with Test/TestE/TestRunning
 * tpl/css:
 * Improve and extend .Position handling in Goldmark render hooks
 * markup/goldmark: Clean up test

Approved by:    doceng@ (implicit)
DeltaFile
+5-5www/gohugo/distinfo
+1-1www/gohugo/Makefile
+6-62 files

HardenedBSD/ports 7227889security/py-social-auth-core Makefile distinfo

security/py-social-auth-core: Allow build with py-google-auth 2.49.0+

- Bump PORTREVISION for package change

Obtained from:  https://github.com/python-social-auth/social-core/commit/44f15058c0b030b4f6212033f7db275739c86078
Approved by:    portmgr (blanket)
DeltaFile
+5-1security/py-social-auth-core/Makefile
+3-1security/py-social-auth-core/distinfo
+8-22 files