FreeBSD/ports 9470aeddevel/tree-sitter distinfo Makefile

by Adam Weinberger (adamw) on ⎇
devel/tree-sitter: Update to 0.26.10
DeltaFile
+3-3devel/tree-sitter/distinfo
+1-1devel/tree-sitter/Makefile
+4-42 files

FreeBSD/ports 125f1ddx11-toolkits/py-pangocffi distinfo Makefile

by Bernhard Froehlich (decke) on ⎇
x11-toolkits/py-pangocffi: Update to 0.14.1
DeltaFile
+3-3x11-toolkits/py-pangocffi/distinfo
+1-1x11-toolkits/py-pangocffi/Makefile
+4-42 files

FreeBSD/ports b5647a8korean/nabi Makefile distinfo

by Jung-uk Kim (jkim) on ⎇
korean/nabi: Update to 1.0.2
DeltaFile
+5-6korean/nabi/Makefile
+3-3korean/nabi/distinfo
+2-2korean/nabi/pkg-plist
+10-113 files

FreeBSD/ports 38dc851korean/ibus-hangul pkg-plist Makefile, korean/ibus-hangul/files patch-setup_main.py

by Jung-uk Kim (jkim) on ⎇
korean/ibus-hangul: Update to 1.5.5
DeltaFile
+11-6korean/ibus-hangul/pkg-plist
+0-10korean/ibus-hangul/files/patch-setup_main.py
+6-4korean/ibus-hangul/Makefile
+3-3korean/ibus-hangul/distinfo
+20-234 files

FreeBSD/ports d1ca3aakorean/imhangul-gtk2 Makefile, korean/imhangul-gtk3 Makefile

by Jung-uk Kim (jkim) on ⎇
korean/libhangul: Update to 0.2.0
DeltaFile
+0-13korean/libhangul/files/patch-hangul__hangulctype.c
+3-3korean/libhangul/distinfo
+2-3korean/libhangul/Makefile
+3-2korean/imhangul-gtk2/Makefile
+3-2korean/imhangul-gtk3/Makefile
+3-2korean/libhangul/pkg-plist
+14-251 files not shown
+15-267 files

FreeBSD/ports a1913desecurity/vuxml/vuln 2026.xml

by Sergey A. Osokin (osa) on ⎇
security/vuxml: document expat2 vulberabilities

Sponsored by:   tipi.work
DeltaFile
+68-0security/vuxml/vuln/2026.xml
+68-01 files

FreeBSD/src 2bb8d7clibexec/nuageinit nuageinit

by Baptiste Daroussin (bapt) on ⎇
nuageinit: validate set-name to prevent shell injection in variable names

Shell variable names cannot be safely quoted with shell_escape() —
only alphanumeric characters are valid. Add validation that set-name
only matches [a-zA-Z0-9]+; invalid values are rejected with a
warning and the rename is skipped entirely.

(cherry picked from commit 13fb6dbc738f4ba30e78a8fb21efa1382c520d33)
DeltaFile
+6-2libexec/nuageinit/nuageinit
+6-21 files

FreeBSD/src 1561d31libexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: fix shell injection in power_state_change delay and add test

(cherry picked from commit 09d068e52722dee0ed65eb88c5ea5bff4bb2ba06)
DeltaFile
+1-1libexec/nuageinit/nuageinit
+1-1libexec/nuageinit/tests/nuageinit.sh
+2-22 files

FreeBSD/src 3bb20f3libexec/nuageinit nuage.lua, libexec/nuageinit/tests nuageinit.sh nuage.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: use single-quote shell escaping for hostname in rc.conf.d

The hostname value was written inside double quotes in
/etc/rc.conf.d/hostname. POSIX shell performs command substitution
inside double quotes, so a hostname containing $() or backticks would
be executed when the file is sourced (e.g., by rc(8)).

Switch to using the existing shell_escape() helper, which wraps values
in single quotes. In POSIX shell, single-quoted strings are completely
literal — no expansion or substitution of any kind is performed.

While the hostname is already validated to contain only
[a-zA-Z0-9.-], this change provides defense-in-depth so the output
format is safe regardless of future validation changes.

Reported by:    Yazdan Soltani <yazdan.soltani at gmail.com>

(cherry picked from commit da3890fdccfa7d540ea746182248299b81f95345)
DeltaFile
+6-6libexec/nuageinit/tests/nuageinit.sh
+1-1libexec/nuageinit/tests/nuage.sh
+1-1libexec/nuageinit/tests/sethostname.lua
+1-1libexec/nuageinit/nuage.lua
+9-94 files

FreeBSD/src 3654d0clibexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: fix shell command injection in multiple rc.conf.d writes

(cherry picked from commit 0211c8722ff2ac9367565e526e62837745bb2cce)
DeltaFile
+30-59libexec/nuageinit/nuageinit
+23-23libexec/nuageinit/tests/nuageinit.sh
+53-822 files

FreeBSD/src 7aefe34libexec/nuageinit nuageinit.7 nuageinit, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: install certs in /usr/share/certs/trusted

Suggested by:   kevans

(cherry picked from commit e5ef12ccd01f8ec6c519bf2a56cac2808f78c51a)
DeltaFile
+2-2libexec/nuageinit/tests/nuageinit.sh
+1-1libexec/nuageinit/nuageinit.7
+1-1libexec/nuageinit/nuageinit
+4-43 files

FreeBSD/src 48bf144libexec/nuageinit nuageinit.7

by Baptiste Daroussin (bapt) on ⎇
nuageinit: update documentation for phone_home and final_message

(cherry picked from commit bad3c15dffea69ea84f95489d26a86ad0498d942)
DeltaFile
+32-1libexec/nuageinit/nuageinit.7
+32-11 files

FreeBSD/src 167ddf9libexec/nuageinit nuage.lua

by Baptiste Daroussin (bapt) on ⎇
nuageinit: expose decode_base64 to fix tests

(cherry picked from commit 68e60bb8b6c968fe615f81ccc8afd2a30ff78003)
DeltaFile
+1-0libexec/nuageinit/nuage.lua
+1-01 files

FreeBSD/src 25f255dlibexec/nuageinit nuage.lua

by Baptiste Daroussin (bapt) on ⎇
nuage.lua: add encode_base64 helper

(cherry picked from commit 71e8122b3f6efdaac23ac219312dfe270731b495)
DeltaFile
+30-0libexec/nuageinit/nuage.lua
+30-01 files

FreeBSD/src 35ea67elibexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement phone_home support

Posts instance data (hostname, instance_id, public keys) to a URL
using fetch(1). Supports:
- url: target URL
- post: list of data items to send, or 'all'
- tries: number of retry attempts (default 1)

(cherry picked from commit 58653bf4d0fb8ccd5de146d671ec101a1df0ede0)
DeltaFile
+89-2libexec/nuageinit/nuageinit
+33-0libexec/nuageinit/tests/nuageinit.sh
+122-22 files

FreeBSD/src eb677a5libexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement final_message support

(cherry picked from commit e01f202ecf9344bd6658869a869f36c5b3790384)
DeltaFile
+36-0libexec/nuageinit/tests/nuageinit.sh
+25-0libexec/nuageinit/nuageinit
+61-02 files

FreeBSD/src 8c4d893libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement keyboard support

(cherry picked from commit 58184a301a1f0ef0858689f8dcc608cb468d4644)
DeltaFile
+29-1libexec/nuageinit/tests/nuageinit.sh
+24-0libexec/nuageinit/nuageinit
+20-0libexec/nuageinit/nuageinit.7
+73-13 files

FreeBSD/src 202ae01libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement power_state_change and locale support

(cherry picked from commit 328a76d17f85ff6aa6228035c4c4b989eb7534f8)
DeltaFile
+61-0libexec/nuageinit/nuageinit
+56-0libexec/nuageinit/tests/nuageinit.sh
+49-0libexec/nuageinit/nuageinit.7
+166-03 files

FreeBSD/src bf02669libexec/nuageinit nuage.lua nuageinit, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement MIME multipart user-data support

Add support for MIME multipart/mixed user-data, allowing a single
user-data blob to contain multiple parts with different content types.

(cherry picked from commit be711ade6f66506fb2cae9fd33b142ce910f0346)
DeltaFile
+45-0libexec/nuageinit/nuage.lua
+38-0libexec/nuageinit/nuageinit
+35-0libexec/nuageinit/tests/nuageinit.sh
+14-0libexec/nuageinit/nuageinit.7
+132-04 files

FreeBSD/src 9835838libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement ntp support

Add support for the 'ntp' cloud-config key which configures NTP
by writing /etc/ntp.conf with server and pool entries.

(cherry picked from commit 6d27d52ccd35d1980e99bc2fc4dae602334d28af)
DeltaFile
+37-0libexec/nuageinit/nuageinit
+28-0libexec/nuageinit/tests/nuageinit.sh
+21-0libexec/nuageinit/nuageinit.7
+86-03 files

FreeBSD/src f0fa0c5libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement ca_certs support

Add support for the 'ca_certs' cloud-config key which manages
CA certificates by writing them to /etc/ssl/certs/ and running
certctl rehash.

(cherry picked from commit b56f029add4825b21b2957f19ccfbb219a3f96cb)
DeltaFile
+30-0libexec/nuageinit/tests/nuageinit.sh
+20-0libexec/nuageinit/nuageinit
+17-0libexec/nuageinit/nuageinit.7
+67-03 files

FreeBSD/src a4a46e6libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement ssh_authkey_fingerprints support

Add support for the 'ssh_authkey_fingerprints' cloud-config key
which logs SSH host key fingerprints to the console via ssh-keygen.

(cherry picked from commit d7984912385cc5a191547dc6c2d73acba25e2239)
DeltaFile
+24-0libexec/nuageinit/nuageinit
+21-0libexec/nuageinit/tests/nuageinit.sh
+5-0libexec/nuageinit/nuageinit.7
+50-03 files

FreeBSD/src ae577a7usr.sbin/pw pw_conf.c

by Baptiste Daroussin (bapt) on ⎇
pw: fix const qualification in unquote()

The unquote() function took a const char * parameter but modified the
string in-place (removing quote characters). Change the parameter to
char * and update callers that passed const char * to cast explicitly.

(cherry picked from commit 5f9c8f142d1702f5810618e02534054d28d22fa5)
DeltaFile
+6-6usr.sbin/pw/pw_conf.c
+6-61 files

FreeBSD/src e3d8f73libexec/nuageinit nuage.lua nuageinit.7, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement mounts support

Add support for the 'mounts' cloud-config key which configures
mount points by appending entries to /etc/fstab and creating
the corresponding directories.

(cherry picked from commit 797dad91ff468a9bd6cd5d4f720eb4bbac1f454a)
DeltaFile
+47-1libexec/nuageinit/nuage.lua
+36-0libexec/nuageinit/nuageinit.7
+33-0libexec/nuageinit/nuageinit
+28-0libexec/nuageinit/tests/nuageinit.sh
+144-14 files

FreeBSD/src c552051usr.sbin/pw pw_conf.c, usr.sbin/pw/tests pw_config_test.sh

by Baptiste Daroussin (bapt) on ⎇
pw: fix setmode(NULL) crash when homemode is a boolean value

(cherry picked from commit fe1e912d5a394565e9adfbc443555ae0b3f087e5)
DeltaFile
+10-4usr.sbin/pw/pw_conf.c
+12-0usr.sbin/pw/tests/pw_config_test.sh
+22-42 files

FreeBSD/src 04b8103libexec/nuageinit nuage.lua nuageinit.7, libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: implement resolv_conf support

Add support for the 'resolv_conf' cloud-config key which writes
directly to /etc/resolv.conf.

(cherry picked from commit 4662263c246fd9c31cf0f03089845140114445bc)
DeltaFile
+32-0libexec/nuageinit/nuage.lua
+32-0libexec/nuageinit/tests/nuageinit.sh
+17-0libexec/nuageinit/nuageinit.7
+6-0libexec/nuageinit/nuageinit
+87-04 files

FreeBSD/src c5755b7libexec/nuageinit/tests nuageinit.sh

by Baptiste Daroussin (bapt) on ⎇
nuageinit: add tests for bootcmd, ssh_deletekeys, disable_root, manage_etc_hosts

(cherry picked from commit 6e54d00867dd2b979d2dc097c710613e6b9bd33b)
DeltaFile
+167-0libexec/nuageinit/tests/nuageinit.sh
+167-01 files

FreeBSD/src ed54170usr.sbin/pw pw_user.c

by Baptiste Daroussin (bapt) on ⎇
pw: fix incorrect metalog path in mkdir_home_parents

(cherry picked from commit ab478de1f9b3f73036ee05004fb2d503a0f339bc)
DeltaFile
+1-1usr.sbin/pw/pw_user.c
+1-11 files

FreeBSD/src 2dd4c50usr.sbin/pw pw_user.c, usr.sbin/pw/tests pw_useradd_test.sh

by Baptiste Daroussin (bapt) on ⎇
pw: fix inverted condition in shell_path error handling

(cherry picked from commit 4fd8a69ec6623da5ef33818be134efffebe37f75)
DeltaFile
+1-1usr.sbin/pw/pw_user.c
+1-1usr.sbin/pw/tests/pw_useradd_test.sh
+2-22 files

FreeBSD/src 5433481usr.sbin/pw pw.h

by Baptiste Daroussin (bapt) on ⎇
pw: remove duplicate pw_user_add declarations

(cherry picked from commit 1cc5684b3216dd0198c4fe83cdbcaed8d874c99c)
DeltaFile
+0-3usr.sbin/pw/pw.h
+0-31 files