HardenedBSD/src 97bcda0sys/arm/arm elf_machdep.c machdep.c, sys/arm/include ifunc.h

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+21-3sys/arm/include/ifunc.h
+7-1sys/arm/arm/elf_machdep.c
+2-3sys/conf/kern.pre.mk
+2-3sys/arm/arm/machdep.c
+1-1sys/kern/link_elf.c
+1-0sys/sys/elf_common.h
+34-116 files

HardenedBSD/src d78cbf4sys/arm/arm elf_machdep.c machdep.c, sys/arm/include ifunc.h

by Michal Meloun (mmel) on ⎇
arm: Implement kernel ifunc

Add kernel ifunc support on arm.

MFC after :     3 weeks
Reviewed by:    kib (previous version)
Differential Revision:  https://reviews.freebsd.org/D54970
DeltaFile
+21-3sys/arm/include/ifunc.h
+7-1sys/arm/arm/elf_machdep.c
+2-3sys/arm/arm/machdep.c
+2-3sys/conf/kern.pre.mk
+1-1sys/kern/link_elf.c
+1-0sys/sys/elf_common.h
+34-116 files

HardenedBSD/ports c6aa5c4irc/halloy distinfo Makefile.crates, japanese/anthy-unicode Makefile

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+225-167irc/halloy/distinfo
+112-83irc/halloy/Makefile.crates
+7-7japanese/anthy-unicode/Makefile
+5-5www/redmine60/files/patch-Gemfile
+4-4www/redmine60/files/patch-config_database.yml.sample
+2-5math/R-cran-linprog/Makefile
+355-27117 files not shown
+391-29623 files

HardenedBSD/ports d48630ewww/redmine60 distinfo Makefile, www/redmine60/files patch-Gemfile patch-config_database.yml.sample

by Xin LI (delphij) on ⎇
www/redmine60: upgrade to 6.0.8.
DeltaFile
+5-5www/redmine60/files/patch-Gemfile
+4-4www/redmine60/files/patch-config_database.yml.sample
+3-3www/redmine60/distinfo
+3-3www/redmine60/Makefile
+4-0www/redmine60/pkg-plist
+19-155 files

HardenedBSD/ports e869adajapanese/fcitx-anthy Makefile, japanese/fcitx5-anthy Makefile

by MANTANI Nobutaka (nobutaka) on ⎇
*/*: Bump PORTREVISION for the update of japanese/anthy-unicode
DeltaFile
+1-1japanese/fcitx-anthy/Makefile
+1-1japanese/scim-anthy/Makefile
+1-1japanese/ibus-anthy/Makefile
+1-0japanese/uim-anthy-unicode/Makefile
+1-0japanese/fcitx5-anthy/Makefile
+1-0japanese/kasumi-unicode/Makefile
+6-31 files not shown
+7-37 files

HardenedBSD/ports 2dc568fjapanese/anthy-unicode Makefile distinfo

by mew14930xvi via MANTANI Nobutaka (nobutaka) on ⎇
japanese/anthy-unicode: Update to 1.0.0.20260127

PR:             292797
Reported by:    mew14930xvi <mew14930xvi at inbox.lv>
DeltaFile
+7-7japanese/anthy-unicode/Makefile
+3-3japanese/anthy-unicode/distinfo
+3-3japanese/anthy-unicode/pkg-message
+13-133 files

HardenedBSD/ports 250f76edevel/R-cran-Rdpack distinfo Makefile

by TAKATSU Tomonari (tota) on ⎇
devel/R-cran-Rdpack: Update to 2.6.5

Reported by:    portscout
DeltaFile
+3-3devel/R-cran-Rdpack/distinfo
+2-2devel/R-cran-Rdpack/Makefile
+5-52 files

HardenedBSD/ports bf463f3astro/mymoon Makefile

by Javier Montero via Mark Linimon (linimon) on ⎇
astro/mymoon: mark as unfetchable/DEPRECATED.

PR:             286817
Reported by:    Javier Montero <javimontejerez at gmail.com>
DeltaFile
+4-0astro/mymoon/Makefile
+4-01 files

HardenedBSD/ports f8cef38math/R-cran-linprog Makefile distinfo

by TAKATSU Tomonari (tota) on ⎇
math/R-cran-linprog: Update to 0.9-6

Reported by:    portscout
DeltaFile
+2-5math/R-cran-linprog/Makefile
+3-3math/R-cran-linprog/distinfo
+5-82 files

HardenedBSD/ports f84a60birc/halloy distinfo Makefile.crates

by Andie Bradley via Charlie Li (vishwin) on ⎇
irc/halloy: update to 2026.1.1

PR: 292761
DeltaFile
+225-167irc/halloy/distinfo
+112-83irc/halloy/Makefile.crates
+1-2irc/halloy/Makefile
+338-2523 files

HardenedBSD/src e34690ecrypto/openssl/crypto/ec ecp_nistz256_table.c curve25519.c, crypto/openssl/ssl s3_lib.c

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/current/main' into hardened/current/master
DeltaFile
+14,894-9,513crypto/openssl/crypto/ec/ecp_nistz256_table.c
+10,184-10,183crypto/openssl/test/ecdsatest.h
+9,620-1,938crypto/openssl/test/quic_record_test.c
+3,601-3,206crypto/openssl/ssl/s3_lib.c
+2,877-2,722crypto/openssl/test/sslapitest.c
+2,625-2,478crypto/openssl/crypto/ec/curve25519.c
+43,801-30,0403,235 files not shown
+215,463-173,1343,241 files

HardenedBSD/ports e73674fdatabases/datafusion-cli distinfo Makefile.crates, databases/py-datafusion distinfo

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+1,197-0databases/datafusion-cli/distinfo
+1,003-0databases/rainfrog/distinfo
+531-433math/py-pcodec/distinfo
+435-437databases/py-datafusion/distinfo
+597-0databases/datafusion-cli/Makefile.crates
+500-0databases/rainfrog/Makefile.crates
+4,263-8701,583 files not shown
+9,952-5,5851,589 files

HardenedBSD/src 43dc4b3tests/sys/fs/fusefs Makefile

by Enji Cooper (ngie) on ⎇
Account for the ctl test needing the ctl(4) module

This testcase does not function unless the /dev/ctl/... node exists,
which is created by the ctl(4) module. Require the ctl(4) module to be
loaded so the test can be executed.

MFC after: 1 week
Differential Revision:  https://reviews.freebsd.org/D54518

(cherry picked from commit da59b3147b01203bb18bcd03cce7a6d5916e87c3)
DeltaFile
+3-0tests/sys/fs/fusefs/Makefile
+3-01 files

HardenedBSD/src 1f5795bshare/man/man4 vt.4, share/syscons/fonts INDEX.fonts

by Alexander Ziaee (ziaee) on ⎇
INDEX.fonts: Minor maintenance

+ Mention relevance of this file in the vt manual screen.font entry
+ The vidfont manual is in section one, not eight
+ Remove leftover blank line from freebsd tag removal

MFC after:      3 days
DeltaFile
+3-0share/man/man4/vt.4
+1-2share/vt/fonts/INDEX.fonts
+1-2stand/fonts/INDEX.fonts
+1-2share/syscons/fonts/INDEX.fonts
+6-64 files

HardenedBSD/src f43d0accrypto/openssl BSDmakefile

by Enji Cooper (ngie) on ⎇
crypto/openssl: fix importing new versions from pristine trees

Prior to this change, CC was not being passed through to Configure,
which was resulting in failures when Configure was running compiler
checks.

Pass through CC via `WRK_ENV` to Configure so the compiler is defined
properly as part of the initial build.

MFC after:      1 month
Fixes:          d18058b7b850 ("crypto/openssl: apply polish to new vendor import process")
Differential Revision:  https://reviews.freebsd.org/D52595

(cherry picked from commit 52c4b76d1dd385fbe33b78172e39a10749b83d13)
DeltaFile
+6-1crypto/openssl/BSDmakefile
+6-11 files

HardenedBSD/src f5828b8sys/sys param.h

by Enji Cooper (ngie) on ⎇
Bump `__FreeBSD_version` for ee6882e6b1287aa9

While the change in ee6882e6b1287aa9 was likely benign, this commit is
playing it safe by updating __FreeBSD_version, per the libcrypto
dependencies change, as libcrypto now explicitly depends on libpthread
and has threading support explicitly enabled.

This is a direct commit to stable/15.
DeltaFile
+1-1sys/sys/param.h
+1-11 files

HardenedBSD/src ee6882esecure/lib/libcrypto Makefile, secure/lib/libcrypto/modules Makefile.inc

by Enji Cooper (ngie) on ⎇
OpenSSL: update Makefiles to reflect 3.5.1 release

This is a targeted effort to update the INCS and SRCS entries for
libcrypto, the legacy provider, and libssl to match what upstream
(OpenSSL) builds in their respective libraries.

The number of stylistic changes were kept at a minimum.

Another incoming change will reformat this file to make future
maintenance easier.

MFC after:      1 week
Differential Revision:  https://reviews.freebsd.org/D52554

(cherry picked from commit d5984d5f29a7c717b88ccd17a85a747792403cdf)
DeltaFile
+30-19secure/lib/libcrypto/Makefile
+36-5secure/lib/libcrypto/modules/legacy/Makefile
+0-7secure/lib/libcrypto/modules/Makefile.inc
+1-1share/mk/src.libnames.mk
+1-1secure/lib/libssl/Makefile
+68-335 files

HardenedBSD/ports 541a42dnet/wireguard-tools Makefile

by Vladimir Druzenko (vvd) on ⎇
net/wireguard-tools: Set maintainer

Improve port:
- Replace PORTVERSION with DISTVERSION.
- Remove MAKE_ENV+=MANDIR="${PREFIX}/share/man" - it's default value.
- Fix warnings from portclippy.
- Improve indents.
- Replace ".if ${PORT_OPTIONS:MWGQUICK}" with
  "WGQUICK_VARS= USE_RC_SUBR=wireguard_wgquick".
- Add strip bin/wg.

PR:             292620
Approved by:    Juhani Krekelä <juhani at krekela.fi> (new maintainer)
DeltaFile
+16-18net/wireguard-tools/Makefile
+16-181 files

HardenedBSD/src 48ba16fsys/modules/iwlwifi Makefile

by Enji Cooper (ngie) on ⎇
iwlwifi: fix the gcc build

- Only apply the previously added CWARNFLAGS to `drv.c` instead of the
  whole module.
- Only apply `-Wno-initializer-overrides` to CWARNFLAGS in the clang
  scenario as it's not supported with gcc.

This fixes building the module with gcc and avoids accidentally
introducing tech debt with the module, in the event other issues are
accidentally introduced.

MFC after:      3 days
Fixes:          6b627f8858 ("iwlwifi: update Intel's mvm/mld drivers")
Differential Revision:  https://reviews.freebsd.org/D53591

(cherry picked from commit 2ec6a2e5f01120ea8d4e667e7773d8b140e40c75)
DeltaFile
+2-2sys/modules/iwlwifi/Makefile
+2-21 files

HardenedBSD/src 631ff52crypto/openssl FREEBSD-upgrade.md FREEBSD-upgrade

by Enji Cooper (ngie) on ⎇
crypto/openssl: update vendor update instructions

This change fills out the requirements for doing vendor updates,
documents the new vendor update process, and guides whoever needs to do
the next version update a bit better than the documentation did prior to
this change so everyone can pitch in with version updates a bit better.

Convert the document to Markdown while here to make it easier to
render/print out the directions in a structured format.

MFC after:      2 weeks
Differential Revision:  https://reviews.freebsd.org/D53190

(cherry picked from commit 08cdcff58acb2aec881e42c7f097d6492d864898)
DeltaFile
+202-0crypto/openssl/FREEBSD-upgrade.md
+0-122crypto/openssl/FREEBSD-upgrade
+202-1222 files

HardenedBSD/src 1731fc7crypto/openssl/include/openssl ssl.h bio.h

by Enji Cooper (ngie) on ⎇
OpenSSL: update vendor sources to match 3.5.5 content

MFC with:       f25b8c9fb4f58cf61adb47d7570abe7caa6d385d
MFC after:      1 week
DeltaFile
+1,423-1,416crypto/openssl/include/openssl/ssl.h
+538-532crypto/openssl/include/openssl/bio.h
+451-462crypto/openssl/include/openssl/asn1t.h
+403-358crypto/openssl/include/openssl/x509v3.h
+344-346crypto/openssl/include/openssl/x509.h
+331-330crypto/openssl/include/openssl/x509_vfy.h
+3,490-3,444946 files not shown
+15,475-11,782952 files

HardenedBSD/src f25b8c9crypto/openssl/crypto/ec ecp_nistz256_table.c curve25519.c, crypto/openssl/ssl s3_lib.c

by Enji Cooper (ngie) on ⎇
openssl: import 3.5.5

This change adds OpenSSL 3.5.5 from upstream [1].

The 3.5.5 artifact was been verified via PGP key [2] and by SHA256 checksum [3].

This is a security release, but also contains several bugfixes. All of
the CVE-worthy issues have already been addressed on the target
branch(es), so the net-result is that this is a bugfix release.

More information about the release (from a high level) can be found in
the release notes [4].

MFC after:      1 week

1. https://github.com/openssl/openssl/releases/download/openssl-3.5.5/openssl-3.5.5.tar.gz
2. https://github.com/openssl/openssl/releases/download/openssl-3.5.5/openssl-3.5.5.tar.gz.asc
3. https://github.com/openssl/openssl/releases/download/openssl-3.5.5/openssl-3.5.5.tar.gz.sha256
4. https://github.com/openssl/openssl/blob/openssl-3.5.5/NEWS.md

    [2 lines not shown]
DeltaFile
+14,894-9,513crypto/openssl/crypto/ec/ecp_nistz256_table.c
+10,184-10,183crypto/openssl/test/ecdsatest.h
+9,620-1,938crypto/openssl/test/quic_record_test.c
+3,601-3,206crypto/openssl/ssl/s3_lib.c
+2,877-2,722crypto/openssl/test/sslapitest.c
+2,625-2,478crypto/openssl/crypto/ec/curve25519.c
+43,801-30,0402,263 files not shown
+199,825-161,2952,269 files

HardenedBSD/ports 200782emath/wxmaxima Makefile, math/wxmaxima/files patch-src_Maxima.cpp patch-src_Maxima.h

by Tiago Gasiba (tiga) on ⎇
math/wxmaxima: Use wx 3.2, fix connection to maxima

- Use wx 3.2
- Fix connection to maxima by reverting upstream patch:
https://github.com/wxMaxima-developers/wxmaxima/issues/2028

PR:             289270
Approved by:    eduardo (mentor)
DeltaFile
+45-0math/wxmaxima/files/patch-src_Maxima.cpp
+28-0math/wxmaxima/files/patch-src_Maxima.h
+2-2math/wxmaxima/files/patch-src_Dirstructure.cpp
+2-1math/wxmaxima/Makefile
+77-34 files

HardenedBSD/ports 8586e16devel/pthreadpool Makefile distinfo

by Yuri Victorovich (yuri) on ⎇
devel/pthreadpool: update 0.1-126 → 0.1.147

PR:             291106
Reported by:    Mikhail Teterin <mi at FreeBSD.org>
DeltaFile
+4-2devel/pthreadpool/Makefile
+3-3devel/pthreadpool/distinfo
+7-52 files

HardenedBSD/ports 7abdcdfgames/chessx Makefile distinfo, games/chessx/files patch-chessx.pro

by Alexey Vyskubov via Kurt Jaeger (pi) on ⎇
games/chessx: update 1.6.2 -> 1.6.8

- submitter is maintainer

Changes:        https://github.com/Isarhamster/chessx/blob/master/ChangeLog.md
PR:             292841
DeltaFile
+19-6games/chessx/files/patch-chessx.pro
+1-7games/chessx/Makefile
+3-3games/chessx/distinfo
+23-163 files

HardenedBSD/src fe81e39usr.bin/sockstat main.c

by Michael Osipov (michaelo) on ⎇
sockstat: Surround explicit IPv6 addresses with brackets

PR:             254611
Approved by:    otis, tuexen, des
MFC after:      1 week
Differential Revision:  https://reviews.freebsd.org/D54375
DeltaFile
+9-1usr.bin/sockstat/main.c
+9-11 files

HardenedBSD/ports 381b947graphics/drm-latest-kmod Makefile

by Enji Cooper (ngie) on ⎇
graphics/drm-latest-kmod: apply 2b49118158d0aa7cb to port

This unbreaks the package build with clang 21+.

MFH:            2026Q1
Approved by:    emaste (maintainer)
Reviewed by:    emaste, dim
Differential Revision:  https://reviews.freebsd.org/D54993
DeltaFile
+7-1graphics/drm-latest-kmod/Makefile
+7-11 files

HardenedBSD/ports 00bbdd2graphics/lightzone Makefile

by Ronald Klop (ronald) via Yuri Victorovich (yuri) on ⎇
graphics/lightzone: force jdk8 because it does not build with jdk11+

PR:             292671
DeltaFile
+3-2graphics/lightzone/Makefile
+3-21 files

HardenedBSD/ports d2ac78cgames/lizzie Makefile

by Ronald Klop (ronald) via Yuri Victorovich (yuri) on ⎇
games/lizzie: force jdk8 because it does not build with jdk11+

PR:             292662
DeltaFile
+2-1games/lizzie/Makefile
+2-11 files

HardenedBSD/ports 090d584devel/gitleaks Makefile

by Yuri Victorovich (yuri) on ⎇
devel/gitleaks: Update WWW
DeltaFile
+2-1devel/gitleaks/Makefile
+2-11 files