FreeBSD/ports 5453dcanet/openldap26-server distinfo Makefile

net/openldap26-server: upgrade to 2.6.12.
DeltaFile
+3-3net/openldap26-server/distinfo
+1-2net/openldap26-server/Makefile
+4-52 files

FreeBSD/ports 98b6891lang/dotnet pkg-plist distinfo

lang/dotnet: Update to 9.0.12
DeltaFile
+89-105lang/dotnet/pkg-plist
+5-5lang/dotnet/distinfo
+4-4lang/dotnet/Makefile
+98-1143 files

FreeBSD/ports 2f6f29clang/dotnet-host distinfo Makefile

lang/dotnet-host: Update to 9.0.12
DeltaFile
+3-3lang/dotnet-host/distinfo
+1-1lang/dotnet-host/Makefile
+4-42 files

FreeBSD/src d76b8a9sys/powerpc/powermac platform_powermac.c

powerpc: explicitly cast the timebase printfs

This is causing compilation issues on powerpc:powerpc GENERIC.

(cherry picked from commit 03e4cc9fdeb2a6445f13cd41b471927a0f722fff)
DeltaFile
+8-8sys/powerpc/powermac/platform_powermac.c
+8-81 files

FreeBSD/src 10a0132sys/powerpc/powermac platform_powermac.c

powerpc: explicitly cast the timebase printfs

This is causing compilation issues on powerpc:powerpc GENERIC.

(cherry picked from commit 03e4cc9fdeb2a6445f13cd41b471927a0f722fff)
DeltaFile
+8-8sys/powerpc/powermac/platform_powermac.c
+8-81 files

FreeBSD/src 03e4cc9sys/powerpc/powermac platform_powermac.c

powerpc: explicitly cast the timebase printfs

This is causing compilation issues on powerpc:powerpc GENERIC.
DeltaFile
+8-8sys/powerpc/powermac/platform_powermac.c
+8-81 files

FreeBSD/ports d999bcfmath/R-cran-mnormt distinfo Makefile

math/R-cran-mnormt: Update to 2.1.2

Switch WWW to canonical form.

Changelog: https://cran.r-project.org/web/packages/mnormt/news.html
DeltaFile
+3-3math/R-cran-mnormt/distinfo
+2-2math/R-cran-mnormt/Makefile
+5-52 files

FreeBSD/src efd7c55sys/powerpc/aim moea64_native.c

powerpc: disable the TLBIE lock, it's not needed for POWER8

According to POWER8_UM_v1.3_16MAR2016 3.8.3 Translation Lookaside
Buffer (TLB), POWER8 supports lockless TLBIE operations.

Locally Tested:

* IBM POWER8 Revision 2.0, dual socket, 160 threads

Differential Revision:  https://reviews.freebsd.org/D54855
Approved by:    jhibbits

(cherry picked from commit 9a5baa9c585652fb7bd4ccd45d567204caf349f2)
DeltaFile
+5-0sys/powerpc/aim/moea64_native.c
+5-01 files

FreeBSD/src f7358bcsys/powerpc/powermac platform_powermac.c

powerpc: add a best-effort SMP time base sync for G5's that need it

There's no timebase freeze platform routine registered on my dual 2.3GHz
G5 PPC970FX Apple PowerMac.

For platforms without an explicit timebase freeze/unfreeze, we'll have to
make do with what we have - which for now is an explicit hand-crafted
spinlock/rendezvous method.

* For existing platforms, they'll still continue to clock freeze /
  rendezvous; albeit with some stronger atomic bits now (from jhibbits@.)
* Instead of the fallback being "no timesync", implement a
  best-effort one which does a similar rendezvous barrier between
  BSP and APs, but instead of freeze/unfreeze the first instruction
  after the CPUs all register they're ready is to set the timebase.

This has resulted in many reboots of my Powermac G5 dual-socket device
correctly starting and running in SMP mode.


    [4 lines not shown]
DeltaFile
+90-9sys/powerpc/powermac/platform_powermac.c
+90-91 files

FreeBSD/src 8baa4e9release/powerpc mkisoimages.sh

powerpc: fix release image building for Apple partitions

awk changed somewhere between 14 and 15 and it stopped accepting
a hexadecimal number as its input - it will always return 0.
This results in a very badly written apple boot block.

So just remove it; do the math in shell.

PR:             kern/292341
Differential Revision:  https://reviews.freebsd.org/D54639
Reviewed by:    imp
MFC after:      1 week

(cherry picked from commit 7afa03963c448a14b1735a10eaf84941b0b74862)
DeltaFile
+1-1release/powerpc/mkisoimages.sh
+1-11 files

FreeBSD/src 6665996sys/powerpc/powerpc swtch32.S swtch64.S

powerpc: put the isync inside the TD_LOCK() checking loop

Fix a narrow window where the lock is unlocked but the checking CPU
hasn't flushed things appropriately.

Inside this window the CPU inside cpu_switch() will loop forever thinking
the destination thread is still blocked/locked even though it is not.

This manifests as the system hanging after starting all APs.

I've seen this reliably trigger in qemu-system-ppc64 running power9 pseries
guests; the more CPUs the more likely it triggers at boot.

PR: kern/292167
Differential Revision:  https://reviews.freebsd.org/D54478
Reviewed by:    jhibbits
MFC after:      1 week
Relnotes:       yes

(cherry picked from commit 8df2e542146801fd01675e56724eaa567d04c209)
DeltaFile
+1-1sys/powerpc/powerpc/swtch32.S
+1-1sys/powerpc/powerpc/swtch64.S
+2-22 files

FreeBSD/src 0a45c88sys/powerpc/aim moea64_native.c

powerpc: disable the TLBIE lock, it's not needed for POWER8

According to POWER8_UM_v1.3_16MAR2016 3.8.3 Translation Lookaside
Buffer (TLB), POWER8 supports lockless TLBIE operations.

Locally Tested:

* IBM POWER8 Revision 2.0, dual socket, 160 threads

Differential Revision:  https://reviews.freebsd.org/D54855
Approved by:    jhibbits

(cherry picked from commit 9a5baa9c585652fb7bd4ccd45d567204caf349f2)
DeltaFile
+5-0sys/powerpc/aim/moea64_native.c
+5-01 files

FreeBSD/src b30d064sys/powerpc/powermac platform_powermac.c

powerpc: add a best-effort SMP time base sync for G5's that need it

There's no timebase freeze platform routine registered on my dual 2.3GHz
G5 PPC970FX Apple PowerMac.

For platforms without an explicit timebase freeze/unfreeze, we'll have to
make do with what we have - which for now is an explicit hand-crafted
spinlock/rendezvous method.

* For existing platforms, they'll still continue to clock freeze /
  rendezvous; albeit with some stronger atomic bits now (from jhibbits@.)
* Instead of the fallback being "no timesync", implement a
  best-effort one which does a similar rendezvous barrier between
  BSP and APs, but instead of freeze/unfreeze the first instruction
  after the CPUs all register they're ready is to set the timebase.

This has resulted in many reboots of my Powermac G5 dual-socket device
correctly starting and running in SMP mode.


    [4 lines not shown]
DeltaFile
+90-9sys/powerpc/powermac/platform_powermac.c
+90-91 files

FreeBSD/src c443f5dshare/man/man9 intro.9

intro.9: grammar
DeltaFile
+1-1share/man/man9/intro.9
+1-11 files

FreeBSD/src 7f537f4share/man/man9 intro.9

intro.9: deduplicate vm_page Xrs

PR:             292820
Submitted by:   Kraytonian
MFC after:      1 week
DeltaFile
+0-2share/man/man9/intro.9
+0-21 files

FreeBSD/ports 330e604textproc/television distinfo Makefile.crates

textproc/television: Update to 0.15.0

Changelog:
https://github.com/alexpasmantier/television/releases/tag/0.15.0
DeltaFile
+5-7textproc/television/distinfo
+2-3textproc/television/Makefile.crates
+1-2textproc/television/Makefile
+8-123 files

FreeBSD/src f54f362tools/tools/nanobsd/embedded common

nanobsd: embedded: Stub out experimental functions

Stub out both experimental functions introduced in ecc039be7fdd when
doing embedded builds.

Fixes:          ecc039be7fdd ("nanobsd: Add a NO_ROOT build option")
MFC after:      3 days
DeltaFile
+7-0tools/tools/nanobsd/embedded/common
+7-01 files

FreeBSD/src 2b22e05lib/libc/net getnetbydns.c

libc: Don't use uninitialised string for getnetbyaddr[_r](0) DNS lookup

If net is all-zero, the loop to extract all leading non-zero octets will
iterate zero times and leave nn with the value 4, which the following
switch statement to initialise qbuf does not handle. As a result,
_dns_getnetbyaddr will look up the PTR record for this uninitialised
string, which will leak the pre-existing contents of that stack memory
to the DNS resolver and, if remote and not otherwise protected, network.

Note that _dns_getnetbyaddr is only used if nsswitch.conf is configured
to enable the "dns" source for the "networks" database, which is not the
default configuration in FreeBSD.

For glibc this same bug, in code also derived from BIND's, was issued
CVE-2026-0915. This commit adopts the same behaviour as glibc's fix,
which is to regard a net of 0 as being for 0.0.0.0. Apparently NetBSD
will return NS_UNAVAIL instead, which may or may not make more sense,
but in general glibc compatibility tends to cause less friction when
there's not a good reason to avoid it.

    [7 lines not shown]
DeltaFile
+3-0lib/libc/net/getnetbydns.c
+3-01 files

FreeBSD/src afedf56contrib/file/src apprentice.c

Merge commit faa5141b9be4 from file git (by Christos Zoulas):

  PR/656: harry.sintonen: Fix bug in byte swapping that was caused by the change to make flags uint16_t and cont_level uint8_t.

This fixes using a magic.mgc built with a different endianness than
file(1) itself, e.g. when building powerpc64 on amd64.

PR:             292079
Fixes:          ae316d1d1cff ("MFV: file 5.46.")
MFC after:      3 days

(cherry picked from commit 39047538cf5d8f26112f7b08b3c56967f70f7f94)
DeltaFile
+2-3contrib/file/src/apprentice.c
+2-31 files

FreeBSD/src d499239lib/libc/net getnetbydns.c

libc: Don't use uninitialised string for getnetbyaddr[_r](0) DNS lookup

If net is all-zero, the loop to extract all leading non-zero octets will
iterate zero times and leave nn with the value 4, which the following
switch statement to initialise qbuf does not handle. As a result,
_dns_getnetbyaddr will look up the PTR record for this uninitialised
string, which will leak the pre-existing contents of that stack memory
to the DNS resolver and, if remote and not otherwise protected, network.

Note that _dns_getnetbyaddr is only used if nsswitch.conf is configured
to enable the "dns" source for the "networks" database, which is not the
default configuration in FreeBSD.

For glibc this same bug, in code also derived from BIND's, was issued
CVE-2026-0915. This commit adopts the same behaviour as glibc's fix,
which is to regard a net of 0 as being for 0.0.0.0. Apparently NetBSD
will return NS_UNAVAIL instead, which may or may not make more sense,
but in general glibc compatibility tends to cause less friction when
there's not a good reason to avoid it.

    [7 lines not shown]
DeltaFile
+3-0lib/libc/net/getnetbydns.c
+3-01 files

FreeBSD/src 2696f9blib/libc/net getnetbydns.c

libc: Don't use uninitialised string for getnetbyaddr[_r](0) DNS lookup

If net is all-zero, the loop to extract all leading non-zero octets will
iterate zero times and leave nn with the value 4, which the following
switch statement to initialise qbuf does not handle. As a result,
_dns_getnetbyaddr will look up the PTR record for this uninitialised
string, which will leak the pre-existing contents of that stack memory
to the DNS resolver and, if remote and not otherwise protected, network.

Note that _dns_getnetbyaddr is only used if nsswitch.conf is configured
to enable the "dns" source for the "networks" database, which is not the
default configuration in FreeBSD.

For glibc this same bug, in code also derived from BIND's, was issued
CVE-2026-0915. This commit adopts the same behaviour as glibc's fix,
which is to regard a net of 0 as being for 0.0.0.0. Apparently NetBSD
will return NS_UNAVAIL instead, which may or may not make more sense,
but in general glibc compatibility tends to cause less friction when
there's not a good reason to avoid it.

    [7 lines not shown]
DeltaFile
+3-0lib/libc/net/getnetbydns.c
+3-01 files

FreeBSD/src 10f4191contrib/file/src apprentice.c

Merge commit faa5141b9be4 from file git (by Christos Zoulas):

  PR/656: harry.sintonen: Fix bug in byte swapping that was caused by the change to make flags uint16_t and cont_level uint8_t.

This fixes using a magic.mgc built with a different endianness than
file(1) itself, e.g. when building powerpc64 on amd64.

PR:             292079
Fixes:          ae316d1d1cff ("MFV: file 5.46.")
MFC after:      3 days

(cherry picked from commit 39047538cf5d8f26112f7b08b3c56967f70f7f94)
DeltaFile
+2-3contrib/file/src/apprentice.c
+2-31 files

FreeBSD/src ba56760share/mk src.opts.mk

Revert "src.opts.mk: Enable LLDB by default globally"

This breaks the riscv64 build; clearly the version we have in-tree is
not new enough to work. That or our build system needs tweaking. Either
way, we're not ready for this, and enabling it without testing was
misguided.

This reverts commit c59a47dc6c016dff74466cecb160459980a5d782.
DeltaFile
+5-1share/mk/src.opts.mk
+5-11 files

FreeBSD/ports 2408f42dns/dnsmasq-devel Makefile distinfo, dns/dnsmasq-devel/files patch-inotify

dns/dnsmasq-devel: update to v2.93test2

Changes: (notably --log-malloc)

* ed2ba5b 2026-01-26 | Optimise TCP send. (HEAD -> master, tag: v2.93test2, origin/master, origin/HEAD) [Simon Kelley]
* 729c16a 2026-01-26 | Rationalise DNS TCP buffer use. [Simon Kelley]
* 80acb76 2026-01-24 | Don't start malloc() logging until the log system is configured. [Simon Kelley]
* f1fa05d 2026-01-24 | Don't log free(NULL) calls. [Simon Kelley]
* b148ba4 2026-01-24 | Add --log-malloc debugging option. [Simon Kelley]
* 81f6196 2026-01-24 | Fix memory allocation in blockdata_retrieve() [Simon Kelley]
* cb32170 2026-01-18 | Fix DNSSEC fail with CNAME replies to DS queries. (tag: v2.93test1) [Simon Kelley]
* 8eb3684 2026-01-18 | Log SERVFAIL from usptream servers. [Simon Kelley]
* 8fa68a6 2025-12-19 | The only_failed argument has been added to the log-queries parameter. [Pavel Bozhko]
* 1269f07 2026-01-15 | Fix DNSSEC failure with spurious RRSIGs. [Simon Kelley]
* e1faf70 2026-01-14 | Support Inotify in FreeBSD. [Matthias Andree]
* f603a4f 2026-01-12 | Fix a corner-case in DNSSEC validation with wildcards. [Simon Kelley]
* c090f1d 2025-12-06 | Terminate TCP child processes that arise from UDP truncated replies. [Simon Kelley]
* fa48bdb 2025-12-05 | Tidy up code in in do_tcp_connection() which filters incoming connections. [Simon Kelley]

(cherry picked from commit 81dfe97b7966b99cc0d605a952d3f8a88edc6d16)
DeltaFile
+0-40dns/dnsmasq-devel/files/patch-inotify
+5-5dns/dnsmasq-devel/Makefile
+3-3dns/dnsmasq-devel/distinfo
+8-483 files

FreeBSD/ports 81dfe97dns/dnsmasq-devel Makefile distinfo, dns/dnsmasq-devel/files patch-inotify

dns/dnsmasq-devel: update to v2.93test2

Changes: (notably --log-malloc)

* ed2ba5b 2026-01-26 | Optimise TCP send. (HEAD -> master, tag: v2.93test2, origin/master, origin/HEAD) [Simon Kelley]
* 729c16a 2026-01-26 | Rationalise DNS TCP buffer use. [Simon Kelley]
* 80acb76 2026-01-24 | Don't start malloc() logging until the log system is configured. [Simon Kelley]
* f1fa05d 2026-01-24 | Don't log free(NULL) calls. [Simon Kelley]
* b148ba4 2026-01-24 | Add --log-malloc debugging option. [Simon Kelley]
* 81f6196 2026-01-24 | Fix memory allocation in blockdata_retrieve() [Simon Kelley]
* cb32170 2026-01-18 | Fix DNSSEC fail with CNAME replies to DS queries. (tag: v2.93test1) [Simon Kelley]
* 8eb3684 2026-01-18 | Log SERVFAIL from usptream servers. [Simon Kelley]
* 8fa68a6 2025-12-19 | The only_failed argument has been added to the log-queries parameter. [Pavel Bozhko]
* 1269f07 2026-01-15 | Fix DNSSEC failure with spurious RRSIGs. [Simon Kelley]
* e1faf70 2026-01-14 | Support Inotify in FreeBSD. [Matthias Andree]
* f603a4f 2026-01-12 | Fix a corner-case in DNSSEC validation with wildcards. [Simon Kelley]
* c090f1d 2025-12-06 | Terminate TCP child processes that arise from UDP truncated replies. [Simon Kelley]
* fa48bdb 2025-12-05 | Tidy up code in in do_tcp_connection() which filters incoming connections. [Simon Kelley]
DeltaFile
+0-40dns/dnsmasq-devel/files/patch-inotify
+5-5dns/dnsmasq-devel/Makefile
+3-3dns/dnsmasq-devel/distinfo
+8-483 files

FreeBSD/ports 3c2399edevel/py-rtree Makefile

devel/py-rtree: Fix build
DeltaFile
+1-0devel/py-rtree/Makefile
+1-01 files

FreeBSD/src fdcd67bsys/kern subr_firmware.c

firmware: Fix inverted FIRMWARE_GET_NOWARN logic

The try_binary_file() function has inverted logic for the
FIRMWARE_GET_NOWARN flag.  When the flag is set (meaning "don't warn"),
the code sets warn=true and makes noise anyway.

Invert the assignment to warn to correctly suppress warnings when
FIRMWARE_GET_NOWARN is set.

Reviewed by:    kevans
Differential Revision:  https://reviews.freebsd.org/D54955
DeltaFile
+1-1sys/kern/subr_firmware.c
+1-11 files

FreeBSD/ports 649e3cfsecurity/vuxml/vuln 2026.xml

security/vuxml: populate missing <name> for security/zeek

Reported by:    Dan Langille
Fixes:  03bfa3969e0d
DeltaFile
+1-1security/vuxml/vuln/2026.xml
+1-11 files

FreeBSD/src b249cb2sys/kern sched_4bsd.c kern_synch.c, sys/sys sched.h proc.h

SCHED_4BSD: maybe_resched() cannot schedule ast() for curthread

maybe_resched() needs to schedule TDA_SCHED for curthread, but this
requires taking curthread lock while owning some other thread lock.
To avoid introducing the order:
- Use a scheduler-private TDP flag.
- Register an unconditional TDA_SCHED_PRIV for 4BSD.
When an AST needs to be scheduled, i.e. the current thread must do
context switch in the return to userspace path, set the flag.
Then the ast handler calls ast_scheduler(), which gives the same
effect as scheduling TDA_AST.

The overhead is a single function call on each userspace return, for
4BSD case.

Reported and tested by: pho (previous version)
Reviewed by:    markj
Sponsored by:   The FreeBSD Foundation
MFC after:      1 week
Differential revision:  https://reviews.freebsd.org/D54945
DeltaFile
+19-2sys/kern/sched_4bsd.c
+2-0sys/sys/sched.h
+1-1sys/kern/kern_synch.c
+1-0sys/sys/proc.h
+23-34 files

FreeBSD/ports 573fbd6portuguese/aspell-pt_PT Makefile pkg-plist

portuguese/aspell-pt_PT: upgrade to 20190329-1-0
DeltaFile
+6-3portuguese/aspell-pt_PT/Makefile
+4-2portuguese/aspell-pt_PT/pkg-plist
+3-2portuguese/aspell-pt_PT/distinfo
+13-73 files