HardenedBSD/src faedcddsys/cam/scsi scsi_xpt.c, sys/fs/unionfs union_vnops.c union_vfsops.c

Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+45-0sys/fs/unionfs/union_vnops.c
+25-2sys/fs/unionfs/union_vfsops.c
+1-2sys/kern/vfs_default.c
+1-1sys/kern/vnode_if.src
+1-1sys/cam/scsi/scsi_xpt.c
+1-0sys/sys/vnode.h
+74-66 files

HardenedBSD/ports c67e220Mk/Uses xlibre-cat.mk, x11-drivers/xlibre-xf86-input-keyboard/files patch-src__bsd_KbdMap.c

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+1,039-0x11-drivers/xlibre-xf86-input-mouse/files/patch-src-bsd_mouse.c
+229-0x11-drivers/xlibre-xf86-input-keyboard/files/patch-src__bsd_KbdMap.c
+221-0Mk/Uses/xlibre-cat.mk
+196-0x11-drivers/xlibre-xf86-input-mouse/files/patch-src_mouse.c
+174-0x11-servers/xlibre-server/pkg-plist
+145-0x11-drivers/xlibre-xf86-video-intel/files/patch-src_intel__list.h
+2,004-0157 files not shown
+4,367-62163 files

HardenedBSD/ports 02739dbgames/flightgear-aircraft distinfo Makefile

games/flightgear-aircraft: Update to 20251211

and unbreak build as Caravelle has been updated upstream.
DeltaFile
+3-3games/flightgear-aircraft/distinfo
+1-1games/flightgear-aircraft/Makefile
+4-42 files

HardenedBSD/src 0247b40sys/fs/unionfs union_vfsops.c

unionfs: detect common deadlock-producing mount misconfigurations

When creating a unionfs mount, it's fairly easy to shoot oneself
in the foot by specifying upper and lower file hierarchies that
resolve back to the same vnodes.  This is fairly easy to do if
the sameness is not obvious due to aliasing through nullfs or other
unionfs mounts (as in the associated PR), and will produce either
deadlock or failed locking assertions on any attempt to use the
resulting unionfs mount.

Leverage VOP_GETLOWVNODE() to detect the most common cases of
foot-shooting at mount time and fail the mount with EDEADLK.
This is not meant to be an exhaustive check for all possible
deadlock-producing scenarios, but it is an extremely cheap and
simple approach that, unlike previous proposed fixes, also works
in the presence of nullfs aliases.

PR:             172334
Reported by:    ngie, Karlo Miličević <karlo98.m at gmail.com>

    [4 lines not shown]
DeltaFile
+25-2sys/fs/unionfs/union_vfsops.c
+25-21 files

HardenedBSD/src 5c02597sys/fs/unionfs union_vnops.c, sys/kern vfs_default.c

unionfs: Implement VOP_GETLOWVNODE

This function returns the vnode that will be used to resolve the
access type specified in the 'flags' argument, and is useful for
optimal behavior of vn_copy_file_range(). While most filesystems
can simply use the default implementation which returns the passed-
in vnode, unionfs (like nullfs) ideally should resolve the access
request to whichever base layer vnode will be used for the I/O.

For unionfs, write accesses must be resolved through the upper vnode,
while read accesses will be resolved through the upper vnode if
present or the lower vnode otherwise.  Provide a simple
unionfs_getlowvnode() implementation that reflects this policy.

Reviewed by:    kib, olce
Tested by:      pho
MFC after:      1 week
Differential Revision:  https://reviews.freebsd.org/D53988
DeltaFile
+45-0sys/fs/unionfs/union_vnops.c
+1-2sys/kern/vfs_default.c
+1-0sys/sys/vnode.h
+47-23 files

HardenedBSD/src 38d60d4sys/kern vnode_if.src

vnode_if.src: fix function name in locking annotation

getwritevnode->getlowvnode

Reviewed by:    kib, olce
Tested by:      pho
MFC after:      1 week
Differential Revision:  https://reviews.freebsd.org/D53988
DeltaFile
+1-1sys/kern/vnode_if.src
+1-11 files

HardenedBSD/ports 934390cwww/filebrowser distinfo Makefile

www/filebrowser: Update to 2.51.2

ChangeLogs:

- https://github.com/filebrowser/filebrowser/releases/tag/v2.51.2
- https://github.com/filebrowser/filebrowser/releases/tag/v2.51.1
- https://github.com/filebrowser/filebrowser/releases/tag/v2.51.0
- https://github.com/filebrowser/filebrowser/releases/tag/v2.50.0
- https://github.com/filebrowser/filebrowser/releases/tag/v2.49.0
- https://github.com/filebrowser/filebrowser/releases/tag/v2.48.2
- https://github.com/filebrowser/filebrowser/releases/tag/v2.48.1
- https://github.com/filebrowser/filebrowser/releases/tag/v2.48.0
- https://github.com/filebrowser/filebrowser/releases/tag/v2.47.0
- https://github.com/filebrowser/filebrowser/releases/tag/v2.46.1
DeltaFile
+7-7www/filebrowser/distinfo
+2-3www/filebrowser/Makefile
+9-102 files

HardenedBSD/ports bdecdd5deskutils/stirling-pdf distinfo Makefile

deskutils/stirling-pdf: update to 2.1.3

Changes:        https://github.com/Stirling-Tools/Stirling-PDF/releases/tag/v2.1.3
DeltaFile
+3-3deskutils/stirling-pdf/distinfo
+1-1deskutils/stirling-pdf/Makefile
+4-42 files

HardenedBSD/src 478ac7dsys/cam/scsi scsi_xpt.c

cam: Also reduce timeout for wlun probing

wlun probing was added after my initial work on this and was overlooked
in merging forward. Add the timeout here too, for the same reasons as
for REPORT LUNS. This doesn't change the default.

Fixes: 8ac7a3801c6a cam: Reduce overly long timeout values for initial device probing
Sponsored by:           Netflix
Reviewed by:            jaeyoon
Differential Revision:  https://reviews.freebsd.org/D54184
DeltaFile
+1-1sys/cam/scsi/scsi_xpt.c
+1-11 files

HardenedBSD/ports 31d34a9www/librewolf distinfo Makefile

www/librewolf: Update 146.0-1 => 146.0-2

Release Notes:
https://www.firefox.com/en-US/firefox/146.0/releasenotes/

PR:     291584
MFH:    2025Q4
DeltaFile
+3-3www/librewolf/distinfo
+2-1www/librewolf/Makefile
+5-42 files

HardenedBSD/ports af5ff2bx11-wm/cosmic-comp distinfo

x11-wm/cosmic-comp: chase checksum after fe50a1eb16c4

=> No suitable checksum found for rust/crates/bstr-1.12.1.crate.
=> No suitable checksum found for rust/crates/btoi-0.5.0.crate.
=> No suitable checksum found for rust/crates/font-types-0.10.1.crate.
=> No suitable checksum found for rust/crates/harfrust-0.4.1.crate.
=> No suitable checksum found for rust/crates/phf-0.13.1.crate.
=> No suitable checksum found for rust/crates/phf_generator-0.13.1.crate.
=> No suitable checksum found for rust/crates/phf_macros-0.13.1.crate.
=> No suitable checksum found for rust/crates/phf_shared-0.13.1.crate.
=> No suitable checksum found for rust/crates/read-fonts-0.36.0.crate.
=> No suitable checksum found for rust/crates/skrifa-0.39.0.crate.
=> No suitable checksum found for smithay-smithay-cb9acba2775de4f2032e023520e007cd66909eda_GH0.tar.gz.
=> No suitable checksum found for pop-os-cosmic-text-7051682e70defcab6b683d6e9db07124a6de0df7_GH0.tar.gz.
=> No suitable checksum found for pop-os-freedesktop-icons-7a61a704f6d1ec41f71cbe766e3cc484858523fa_GH0.tar.gz.
=> No suitable checksum found for pop-os-libcosmic-3b8ad45950f5d23c8550e18e628f6e70b7089d89_GH0.tar.gz.
=> No suitable checksum found for pop-os-iced-0.4.2-3067-g10db38f9_GH0.tar.gz.
DeltaFile
+30-24x11-wm/cosmic-comp/distinfo
+30-241 files

HardenedBSD/ports fe50a1ex11-wm/cosmic-comp Makefile.crates distinfo

x11-wm/cosmic-comp: update to 1.0.0

Changes:        https://github.com/pop-os/cosmic-comp/compare/epoch-1.0.0-beta.9...epoch-1.0.0
Reported by:    Repology
DeltaFile
+14-11x11-wm/cosmic-comp/Makefile.crates
+3-3x11-wm/cosmic-comp/distinfo
+2-2x11-wm/cosmic-comp/Makefile
+19-163 files

HardenedBSD/ports 1c62cb4x11 Makefile, x11/xlibre Makefile pkg-descr

x11/xlibre: XLibre + X.Org complete distribution metaport

This is a metaport for the XLibre server and XLibre drivers with many of the
complementary X.Org packages available in the ports tree.

Reviewed by:    dtxdf acm
Tested by:      dtxdf acm
Obtained from:  https://github.com/b-aaz/xlibre-ports
DeltaFile
+28-0x11/xlibre/Makefile
+2-0x11/xlibre/pkg-descr
+1-0x11/Makefile
+31-03 files

HardenedBSD/ports 43f96fcx11-servers Makefile, x11-servers/xlibre-vfb Makefile pkg-descr

x11-servers/xlibre-vfb: New port: Xlibre Xvfb server

This package contains Xvfb, a virtual framebuffer X server.

Reviewed by:    dtxdf acm
Tested by:      dtxdf acm
Obtained from:  https://github.com/b-aaz/xlibre-ports
DeltaFile
+15-0x11-servers/xlibre-vfb/Makefile
+1-0x11-servers/xlibre-vfb/pkg-descr
+1-0x11-servers/Makefile
+17-03 files

HardenedBSD/ports 654acf5x11-drivers/xlibre-drivers Makefile, x11-drivers/xlibre-xf86-input-keyboard/files patch-src__bsd_KbdMap.c

x11-drivers/xlibre-drivers: New port: XLibre drivers

New port: x11-drivers/xlibre-xf86-input-elographics
New port: x11-drivers/xlibre-xf86-input-evdev
New port: x11-drivers/xlibre-xf86-input-joystick
New port: x11-drivers/xlibre-xf86-input-keyboard
New port: x11-drivers/xlibre-xf86-input-libinput
New port: x11-drivers/xlibre-xf86-input-mouse
New port: x11-drivers/xlibre-xf86-input-synaptics
New port: x11-drivers/xlibre-xf86-input-vmmouse
New port: x11-drivers/xlibre-xf86-input-void
New port: x11-drivers/xlibre-xf86-input-wacom
New port: x11-drivers/xlibre-xf86-video-amdgpu
New port: x11-drivers/xlibre-xf86-video-ast
New port: x11-drivers/xlibre-xf86-video-ati
New port: x11-drivers/xlibre-xf86-video-dummy
New port: x11-drivers/xlibre-xf86-video-intel
New port: x11-drivers/xlibre-xf86-video-mga
New port: x11-drivers/xlibre-xf86-video-nv

    [7 lines not shown]
DeltaFile
+1,039-0x11-drivers/xlibre-xf86-input-mouse/files/patch-src-bsd_mouse.c
+229-0x11-drivers/xlibre-xf86-input-keyboard/files/patch-src__bsd_KbdMap.c
+196-0x11-drivers/xlibre-xf86-input-mouse/files/patch-src_mouse.c
+145-0x11-drivers/xlibre-xf86-video-intel/files/patch-src_intel__list.h
+99-0x11-drivers/xlibre-xf86-video-intel/files/patch-test_present-speed.c
+85-0x11-drivers/xlibre-drivers/Makefile
+1,793-0118 files not shown
+3,339-0124 files

HardenedBSD/ports 036fb65x11-servers/xlibre-server pkg-plist Makefile.common, x11-servers/xlibre-server/files patch-config_udev.c patch-hw_xfree86_os-support_bsd_bsd__init.c

x11-servers/xlibre-server: New port: Xlibre X server

This package contains the XLibre X server and some associated programs.

See also: https://github.com/X11Libre/xserver

Reviewed by:    dtxdf acm
Tested by:      dtxdf acm
Obtained from:  https://github.com/b-aaz/xlibre-ports
DeltaFile
+174-0x11-servers/xlibre-server/pkg-plist
+90-0x11-servers/xlibre-server/Makefile.common
+56-0x11-servers/xlibre-server/files/patch-config_udev.c
+55-0x11-servers/xlibre-server/files/patch-hw_xfree86_os-support_bsd_bsd__init.c
+54-0x11-servers/xlibre-server/Makefile
+35-0x11-servers/xlibre-server/files/pkg-message.in
+464-011 files not shown
+569-017 files

HardenedBSD/ports 29c1662x11-servers Makefile, x11-servers/xlibre-nest Makefile pkg-descr

x11-servers/xlibre-nest: New port: Xlibre Xnest server

This package contains Xnest, a nesting X Server that displays on an X Server.

Reviewed by:    dtxdf acm
Tested by:      dtxdf acm
Obtained from:  https://github.com/b-aaz/xlibre-ports
DeltaFile
+19-0x11-servers/xlibre-nest/Makefile
+1-0x11-servers/xlibre-nest/pkg-descr
+1-0x11-servers/Makefile
+21-03 files

HardenedBSD/ports 1f22470x11-servers Makefile, x11-servers/xlibre-ephyr Makefile pkg-descr

x11-servers/xlibre-ephyr: New port: Xlibre Xephyr server

Xephyr is a kdrive server that outputs to a window on a pre-existing
'host' X display. Think Xnest but with support for modern extensions
like composite, damage and randr.

Reviewed by:    dtxdf acm
Tested by:      dtxdf acm
Obtained from:  https://github.com/b-aaz/xlibre-ports
DeltaFile
+25-0x11-servers/xlibre-ephyr/Makefile
+3-0x11-servers/xlibre-ephyr/pkg-descr
+1-0x11-servers/Makefile
+29-03 files

HardenedBSD/ports 290368cMk/Uses xlibre-cat.mk xlibre.mk

Mk/Uses: Add support for xlibre ports

Reviewed by:    dtxdf acm
Tested by:      dtxdf acm
Obtained from:  https://github.com/b-aaz/xlibre-ports
DeltaFile
+221-0Mk/Uses/xlibre-cat.mk
+69-0Mk/Uses/xlibre.mk
+290-02 files

HardenedBSD/src 9756ad5. UPDATING, share/man/man4 scsi.4

Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+33-1share/man/man4/scsi.4
+22-6sys/cam/scsi/scsi_xpt.c
+11-0UPDATING
+66-73 files

HardenedBSD/src 2af01eelib/libpmc/pmu-events/arch/x86/emeraldrapids uncore-cache.json uncore-interconnect.json

Merge branch 'freebsd/14-stable/main' into hardened/14-stable/master
DeltaFile
+6,248-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-cache.json
+6,199-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-interconnect.json
+3,617-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-io.json
+3,308-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-memory.json
+962-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/pipeline.json
+888-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/cache.json
+21,222-022 files not shown
+25,182-228 files

HardenedBSD/src 01e4a84lib/libpmc/pmu-events/arch/x86/emeraldrapids uncore-cache.json uncore-interconnect.json

Merge branch 'freebsd/15-stable/main' into hardened/15-stable/main
DeltaFile
+6,248-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-cache.json
+6,199-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-interconnect.json
+3,617-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-io.json
+3,308-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/uncore-memory.json
+962-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/pipeline.json
+888-0lib/libpmc/pmu-events/arch/x86/emeraldrapids/cache.json
+21,222-025 files not shown
+25,204-2031 files

HardenedBSD/ports d83b7a5net-im/deltachat-desktop pkg-plist, net/deltachat-rpc-server distinfo

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+219-0net/wifi-firmware-iwlwifi-kmod/files/extract-fw-list.sh
+103-87net/wifi-firmware-iwlwifi-kmod/distinfo
+81-83net/deltachat-rpc-server/distinfo
+79-57net/wifi-firmware-iwlwifi-kmod/Makefile
+50-50net-im/deltachat-desktop/pkg-plist
+29-54net/wifi-firmware-kmod/Makefile.inc
+561-33163 files not shown
+882-48369 files

HardenedBSD/ports aa614ffMk/Uses java.mk

Mk/Uses/java.mk: Fix DEFAULT_VERSIONS+=java=25

Add Java 25 to __JAVA_VERSION_LIST.

Approved by:    portmgr (blanket)
DeltaFile
+1-1Mk/Uses/java.mk
+1-11 files

HardenedBSD/ports d9f4c33www/mediawiki144 distinfo Makefile

www/mediawiki144: Update to 1.44.3
DeltaFile
+3-3www/mediawiki144/distinfo
+1-1www/mediawiki144/Makefile
+4-42 files

HardenedBSD/ports 61b5969www/mediawiki145 distinfo Makefile

www/mediawiki145: Update to 1.45.1
DeltaFile
+3-3www/mediawiki145/distinfo
+1-1www/mediawiki145/Makefile
+4-42 files

HardenedBSD/ports ad0a529www/mediawiki139 distinfo Makefile

www/mediawiki139: Update to 1.39.16
DeltaFile
+3-3www/mediawiki139/distinfo
+1-1www/mediawiki139/Makefile
+4-42 files

HardenedBSD/ports e29c92fwww/mediawiki143 distinfo Makefile

www/mediawiki143: Update to 1.43.6
DeltaFile
+3-3www/mediawiki143/distinfo
+1-1www/mediawiki143/Makefile
+4-42 files

HardenedBSD/ports 9959eafprint/plutobook distinfo Makefile

print/plutobook: Update to 0.11.3

Changelog: https://github.com/plutoprint/plutobook/releases/tag/v0.11.3
DeltaFile
+3-3print/plutobook/distinfo
+1-1print/plutobook/Makefile
+4-42 files

HardenedBSD/ports 5ff03fbemulators/fmsx pkg-message

emulators/fmsx: minor update to pkg-message

Update URL in pkg-message to be usable with modern web browsers
changing FTP to HTTP site. Note that http:// is used deliberately
instead of https:// because its SSL certificate does not cover
"ftp.komkon.org" for the moment.
DeltaFile
+1-1emulators/fmsx/pkg-message
+1-11 files