HardenedBSD/ports 796c90adevel/git pkg-plist, graphics/gpu-firmware-amd-kmod pkg-plist

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+821-822java/intellij-ultimate/pkg-plist
+443-0security/vuxml/vuln/2025.xml
+15-8net/samba422/pkg-plist.cluster
+23-0devel/git/pkg-plist
+20-0graphics/gpu-firmware-amd-kmod/pkg-plist
+16-3graphics/gpu-firmware-kmod/Makefile
+1,338-833103 files not shown
+1,660-1,087109 files

HardenedBSD/ports ab2aaddnet/samba422 pkg-plist.cluster

net/samba422: Fix pkg-plist.cluster

PR:             291104
Reported by:    vvd
DeltaFile
+15-8net/samba422/pkg-plist.cluster
+15-81 files

HardenedBSD/ports 30b1436sysutils/py-hcloud distinfo Makefile

sysutils/py-hcloud: update to 2.12.0

Changes:        https://github.com/hetznercloud/hcloud-python/blob/v2.12.0/CHANGELOG.md
Reported by:    repology,portscout
DeltaFile
+3-3sysutils/py-hcloud/distinfo
+1-1sysutils/py-hcloud/Makefile
+4-42 files

HardenedBSD/ports fb557c3security/zeek Makefile

security/zeek: Update PATH the crash-diag so it can locate gdb

Previously the script was not finding gdb.
DeltaFile
+6-0security/zeek/Makefile
+6-01 files

HardenedBSD/ports 5896c3enet/samba422 pkg-plist

net/samba422: Fix pkg-plist when TDB is bundled

PR:     291104
DeltaFile
+4-4net/samba422/pkg-plist
+4-41 files

HardenedBSD/ports b8562e5security/vuxml/vuln 2025.xml

security/vuxml: Add mozilla, mongo vulnerabilities

 * CVE-2025-14345
 * CVE-2025-14333
 * CVE-2025-14332
 * CVE-2025-14331
 * CVE-2025-14330
 * CVE-2025-14329
 * CVE-2025-14328
 * CVE-2025-14327
 * CVE-2025-14326
 * CVE-2025-14325
 * CVE-2025-14324
 * CVE-2025-14323
 * CVE-2025-14322
 * CVE-2025-14321
DeltaFile
+443-0security/vuxml/vuln/2025.xml
+443-01 files

HardenedBSD/ports 85ccdc6print/pdf-renderer/files patch-nbproject_project.properties patch-src_com_sun_pdfview_colorspace_PDFColorSpace.java

print/pdf-renderer: allow building with jdk21

Error was:
[00:01:29] -do-compile:
[00:01:29]     [javac] Compiling 116 source files to /wrkdirs/usr/ports/print/pdf-renderer/work/pdf-renderer-0.9.1_1,1/build/classes
[00:01:30]     [javac] warning: [options] bootstrap class path not set in conjunction with -source 5
[00:01:30]     [javac] error: Source option 5 is no longer supported. Use 8 or later.
[00:01:30]     [javac] error: Target option 5 is no longer supported. Use 8 or later.
[00:01:30]
[00:01:30] BUILD FAILED

PR:     291576
DeltaFile
+14-3print/pdf-renderer/files/patch-nbproject_project.properties
+4-4print/pdf-renderer/files/patch-src_com_sun_pdfview_colorspace_PDFColorSpace.java
+18-72 files

HardenedBSD/ports c2fe56ejava/intellij-ultimate pkg-plist Makefile, java/intellij-ultimate/files idea.in

java/intellij-ultimate: update to 2025.3 release
DeltaFile
+821-822java/intellij-ultimate/pkg-plist
+5-8java/intellij-ultimate/Makefile
+3-3java/intellij-ultimate/distinfo
+1-1java/intellij-ultimate/files/idea.in
+830-8344 files

HardenedBSD/ports 40bc3damail/sendmail/files tls-install.sh

mail/sendmail: Update URL to Jason Heiss' new location

Tracking the archive.org path showing 302 back in 13 Jul 2010 points to
new location.

Reviewed by:    rodrigo
Approved by:    portmgr blanket
Pull Request:   https://github.com/freebsd/freebsd-ports/pull/427
DeltaFile
+1-1mail/sendmail/files/tls-install.sh
+1-11 files

HardenedBSD/ports 58306c0databases/cego distinfo, databases/cegobridge distinfo Makefile

databases/cego: update 2.52.44 -> 2.53.2

- integer cleanup, all int values will be replaced by unsigned
  or unsigned long, where is no need of nagative values
- for those ports:
  devel/lfcbase
  devel/lfcxml
  databases/cego
  databases/cegobridge
  databases/p5-DBD-cego

cego:
- Fix added in CegoDbHander::acceptSession and CegoSerial::readChain
  to treat empty or invalid session requests
- fix in CegoDbThreadPool for bad message handling

p5-DBD-cego:
- Fix added for execute return value and $sth->rows value to
  return affected rows for update statements
DeltaFile
+3-3databases/p5-DBD-cego/distinfo
+3-3devel/lfcbase/distinfo
+3-3databases/cegobridge/distinfo
+3-3databases/cego/distinfo
+3-3devel/lfcxml/distinfo
+1-1databases/cegobridge/Makefile
+16-165 files not shown
+20-2111 files

HardenedBSD/ports 6ab5877graphics/gpu-firmware-kmod Makefile

graphics/gpu-firmware-kmod: Update to 20250109

Update the meta port to include latest entries for amdgpu and i915

Sponsored by:   Beckhoff Automation GmbH & Co. KG
DeltaFile
+16-3graphics/gpu-firmware-kmod/Makefile
+16-31 files

HardenedBSD/ports 7f32504graphics/gpu-firmware-amd-kmod pkg-plist Makefile

graphics/gpu-firmware-amd-kmod: Update to 20250109

This adds some new firmware for amd card.
We now use the same date (and git tag) as the linux-firmware one
that the files comes from.

Sponsored by:   Beckhoff Automation GmbH & Co. KG
DeltaFile
+20-0graphics/gpu-firmware-amd-kmod/pkg-plist
+14-3graphics/gpu-firmware-amd-kmod/Makefile
+3-3graphics/gpu-firmware-amd-kmod/distinfo
+37-63 files

HardenedBSD/ports 599d069graphics/gpu-firmware-intel-kmod Makefile distinfo

graphics/gpu-firmware-intel-kmod: Update to 20250109

This adds firmware for the MeteorLake platform.
We now use the same date (and git tag) as the linux-firmware one
that the files comes from.

Sponsored by:   Beckhoff Automation GmbH & Co. KG
DeltaFile
+4-3graphics/gpu-firmware-intel-kmod/Makefile
+3-3graphics/gpu-firmware-intel-kmod/distinfo
+5-0graphics/gpu-firmware-intel-kmod/pkg-plist
+12-63 files

HardenedBSD/ports d2aca38graphics/drm-66-kmod distinfo Makefile, graphics/nvidia-drm-66-kmod distinfo Makefile

graphics/drm-66-kmod: Really fix build on -CURRENT

Sponsored by:   Beckhoff Automation GmbH & Co. KG
DeltaFile
+3-3graphics/drm-66-kmod/distinfo
+3-3graphics/nvidia-drm-66-kmod/distinfo
+1-1graphics/drm-66-kmod/Makefile
+1-1graphics/drm-66-kmod/Makefile.version
+1-1graphics/nvidia-drm-66-kmod/Makefile
+9-95 files

HardenedBSD/ports eef56dcgraphics/drm-515-kmod Makefile

graphics/drm-515-kmod: Disable for 16.0-CURRENT

People who still uses this one should migrate to 61 or 66.

Sponsored by:   Beckhoff Automation GmbH & Co. KG
DeltaFile
+2-2graphics/drm-515-kmod/Makefile
+2-21 files

HardenedBSD/ports 9e5e0c5graphics/drm-61-kmod distinfo Makefile, graphics/drm-66-kmod distinfo

graphics/drm-6{1,6}-kmod: Fix build on current

Update the port to have code dealing with change in BUS_ALLOC_RESOURCE

Sponsored by:   Beckhoff Automation GMbH & Co. KG
DeltaFile
+3-3graphics/nvidia-drm-66-kmod/distinfo
+3-3graphics/nvidia-drm-61-kmod/distinfo
+3-3graphics/drm-61-kmod/distinfo
+3-3graphics/drm-66-kmod/distinfo
+1-1graphics/drm-61-kmod/Makefile
+1-1graphics/nvidia-drm-66-kmod/Makefile
+14-144 files not shown
+18-1810 files

HardenedBSD/ports dad29a7security/plasma6-kscreenlocker distinfo, security/plasma6-ksshaskpass distinfo

KDE: Update KDE Plasma to 6.5.4

Announcement: https://kde.org/announcements/plasma/6/6.5.4/
DeltaFile
+3-7x11-themes/plasma6-breeze/distinfo
+7-0x11/plasma6-plasma-workspace/pkg-plist
+3-3security/plasma6-kscreenlocker/distinfo
+3-3security/plasma6-ksshaskpass/distinfo
+3-3security/plasma6-kwallet-pam/distinfo
+3-3sysutils/plasma6-discover/distinfo
+22-1956 files not shown
+175-16562 files

HardenedBSD/ports 2d9474ddevel/git pkg-plist distinfo

devel/git: Update to 2.52.0

ReleseNotes:    https://github.com/git/git/blob/v2.52.0/Documentation/RelNotes/2.52.0.adoc

PR:             291110
Sponsored by:   Rubicon Communications, LLC ("Netgate")
DeltaFile
+23-0devel/git/pkg-plist
+7-7devel/git/distinfo
+1-1devel/git/Makefile
+31-83 files

HardenedBSD/ports f3a12dcjava/sigar/files patch-bindings_java_build.xml patch-bindings_java_hyperic__jni_jni-build.xml

java/sigar: fix compilation with jdk21

PR:     272855
DeltaFile
+18-0java/sigar/files/patch-bindings_java_build.xml
+10-0java/sigar/files/patch-bindings_java_hyperic__jni_jni-build.xml
+28-02 files

HardenedBSD/ports 08a84f9www/iridium/files patch-chrome_browser_about__flags.cc patch-chrome_browser_flag__descriptions.h

Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+142-79www/iridium/files/patch-chrome_browser_about__flags.cc
+19-162www/iridium/files/patch-chrome_browser_flag__descriptions.h
+0-172www/iridium/files/patch-chrome_browser_flag__descriptions.cc
+99-53www/iridium/files/patch-chrome_browser_chrome__browser__main.cc
+30-81www/iridium/files/patch-chrome_browser_chrome__content__browser__client.cc
+49-22www/iridium/files/patch-third__party_blink_renderer_platform_runtime__enabled__features.json5
+339-5691,528 files not shown
+3,259-3,3981,534 files

HardenedBSD/ports afd5eabdevel/sabre/files patch-build.xml

devel/sabre: fix build with jdk21

The patch for build.xml hardcoded java 5 source and target which is not available for javac in openjdk21. I removed the source and target.

[javac] Compiling 80 source files to /wrkdirs/usr/ports/devel/sabre/work/Simple API for Binary REpresentations (SABRE)/build/classes
[javac] warning: [options] bootstrap class path not set in conjunction with -source 5
[javac] error: Source option 5 is no longer supported. Use 8 or later.
[javac] error: Target option 5 is no longer supported. Use 8 or later.

Later JDKs are more picky about the charset used. Also for characters in comments. I hinted the encoding for the compiler.

[javac] /wrkdirs/usr/ports/devel/sabre/work/Simple API for Binary REpresentations (SABRE)/src/java/de/tu_darmstadt/informatik/rbg/bstickler/udflib/tools/OSTAIdentifierTranslation.java:6: error: unmappable character (0xF6) for encoding UTF-8
[javac]  *      Bj?rn Stickler <...>

PR:     291571
DeltaFile
+1-1devel/sabre/files/patch-build.xml
+1-11 files

HardenedBSD/ports f0ec4e0sysutils/loki/files loki.in

sysutils/loki: Fix a copy/paste mishap in comments

Several comments in loki's rc.d file referred to "grafana" where they
should have referred to "loki". Looks like a copy/paste mishap from
grafana's rc.d.

Approved by:    portmgr blanket
Fixes:          a96c988a2977 sysutils/loki: Add new port
Pull Request:   https://github.com/freebsd/freebsd-ports/pull/466
DeltaFile
+3-3sysutils/loki/files/loki.in
+3-31 files

HardenedBSD/ports 37c8cb7net/dpinger distinfo Makefile

net/dpinger: Update to 3.4

and take maintainership

PR:             291558
DeltaFile
+3-3net/dpinger/distinfo
+2-2net/dpinger/Makefile
+5-52 files

HardenedBSD/ports 6d414b7sysutils/helm distinfo Makefile

sysutils/helm: Update to 3.19.3

Changelog:
https://github.com/helm/helm/releases/tag/v3.19.3
DeltaFile
+5-5sysutils/helm/distinfo
+2-3sysutils/helm/Makefile
+7-82 files

HardenedBSD/ports 3befd43sysutils/kubectl distinfo Makefile

sysutils/kubectl: Update to 1.34.3

Changelog:
https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.34.md#changelog-since-v1342
DeltaFile
+3-3sysutils/kubectl/distinfo
+1-2sysutils/kubectl/Makefile
+4-52 files

HardenedBSD/ports f30ff7cscience/siesta Makefile

science/siesta: Constrain to gfortran
DeltaFile
+1-1science/siesta/Makefile
+1-11 files

HardenedBSD/ports fa0193blang/ratfor Makefile

lang/ratfor: Fix building with Flang and newest Clang
DeltaFile
+1-0lang/ratfor/Makefile
+1-01 files

HardenedBSD/ports 97d9eeecad/scotch Makefile

cad/scotch: Fix building with Flang and newest Clang
DeltaFile
+1-0cad/scotch/Makefile
+1-01 files

HardenedBSD/ports 900510enet/spread-j Makefile

net/spread-j: only compiles on jdk8 and jdk11

Error on later JDKs:
[javac] /wrkdirs/usr/ports/net/spread-j/work/spread-src-3.17.3/java/spread/SpreadConnection.java:1800: error: invalid use of a restricted identifier 'yield'
[javac]                                         yield();

PR:     272855
Approved-by:    no maintainer
DeltaFile
+1-0net/spread-j/Makefile
+1-01 files

HardenedBSD/ports 7d5f8d2www/forgejo-lts distinfo Makefile

www/forgejo-lts: Update to 11.0.8

Changelog:
* https://codeberg.org/forgejo/forgejo/src/branch/forgejo/release-notes-published/11.0.8.md

MFH:            2025Q4
DeltaFile
+3-3www/forgejo-lts/distinfo
+1-2www/forgejo-lts/Makefile
+4-52 files