FreeBSD/src d036b3bshare/man/man4 rtw89.4 rtw88.4

iwlwifi.4, rtw88.4, rtw89.4: Fix xref typos

MFC after:      3 days
Reviewed by:    bz, ziaee
Fixes:  0a2f7683bf0c ("man: iwlwifi/rtw88/rtw89: update man pages for Linux v7.0 based updates")
Differential Revision:  https://reviews.freebsd.org/D57720
DeltaFile
+2-2share/man/man4/rtw89.4
+2-2share/man/man4/rtw88.4
+2-2share/man/man4/iwlwifi.4
+6-63 files

FreeBSD/src 59667b7sys/amd64/amd64 exception.S

amd64: do not restore fsbase/gsbase for 32bit processes

(cherry picked from commit c7e5802ab6e6230a5782a09c914585d055eb5223)
DeltaFile
+31-0sys/amd64/amd64/exception.S
+31-01 files

FreeBSD/src cfd5bdcshare/colldef_unicode Makefile, share/monetdef_unicode sr_RS.UTF-8@latin.src

locale: make install Unicode 17.0.0/CLDR 48.2

Data changes:

48.1:
- Update RSD (Serbian Dinar) to use 2-digits for non-cash and 0-digits
  for cash.
- Fix issue with tippi and bindi in Punjabi exemplars.
- Fix parsing issue in numeric date+time patterns for zh_Hant and yue.
- Fix issues with hour cycle display names for several languages.

https://cldr.unicode.org/downloads/cldr-48#481-changes

48.2:
- Group separator for number formatting was updated to ' in fr-CH
  consistent with other Swiss locales.
- Some fixes to date formats including: Hv available formats were
  updated to match behavior in CLDR 47 due to web compatibility issues
  related to current JS capabilities.

    [9 lines not shown]
DeltaFile
+4,516-1tools/tools/locale/etc/final-maps/widths.txt
+14-0share/numericdef_unicode/fr_CH.UTF-8.src
+2-2share/monetdef_unicode/sr_RS.UTF-8@latin.src
+1-1tools/tools/locale/etc/final-maps/map.UTF-8
+1-1share/numericdef_unicode/Makefile
+1-1share/colldef_unicode/Makefile
+4,535-61 files not shown
+4,536-77 files

FreeBSD/src 9edbff3tools/tools/locale Makefile

locale: Update Unicode to CLDR 48.2

Notable changes:

- Group separator for number formatting was updated to ' in fr-CH
  consistent with other Swiss locales.
- Some fixes to date formats including: Hv available formats were
  updated to match behavior in CLDR 47 due to web compatibility issues
  related to current JS capabilities.
- Emoji annotations fixes including collisions between emoji short
  names.
- Updated AM/PM for ko & ps to be consistent with how the wide forms are
  localized.

Reviewed by:    bapt
MFC after:      2 weeks
Differential Revision:  https://reviews.freebsd.org/D57626
DeltaFile
+1-1tools/tools/locale/Makefile
+1-11 files

FreeBSD/src 77ca1cetools/tools/locale Makefile

locale: Do not strip the suffix from CLDRVERSION

The upstream CLDR directory structure requires the full version string.
Remove the ':R' modifier to fix the fetch paths.

Previously this worked because major releases were published in a
directory without the ".0" suffix, while the filenames included it.
Starting with CLDR 47, the upstream layout changed to use the full
version string exclusively, causing the fetch URLs to break for point
releases.

MFC after:      2 weeks
Differential Revision:  https://reviews.freebsd.org/D57625
DeltaFile
+3-3tools/tools/locale/Makefile
+3-31 files

FreeBSD/src 4d8f2d2share/man/man7 build.7

build.7: explain how to build KBI-compatible standalone module

(cherry picked from commit d946a88e0ce347a9a6fdbfdae0b23ef192b9bddc)
DeltaFile
+40-0share/man/man7/build.7
+40-01 files

FreeBSD/src d3d1095sys/kern vnode_if.src kern_exec.c, sys/ufs/ffs ffs_softdep.c

vfs: rename vop_mmapped() to vop_update_atime()

(cherry picked from commit 8177936ac293210251390e44d109ece0f3868df9)
DeltaFile
+28-14sys/ufs/ufs/ufs_vnops.c
+2-1sys/kern/vnode_if.src
+1-1sys/ufs/ufs/ufs_extern.h
+1-1sys/vm/vm_mmap.c
+1-1sys/ufs/ffs/ffs_softdep.c
+1-1sys/kern/kern_exec.c
+34-191 files not shown
+35-207 files

FreeBSD/src 30fff26sys/compat/linuxkpi/common/src linux_compat.c

linuxkpi ioctl handler: restore the user data pointer

(cherry picked from commit 91413e8e6311b4d4891dc2299d144feb31e04628)
DeltaFile
+44-4sys/compat/linuxkpi/common/src/linux_compat.c
+44-41 files

FreeBSD/src 380c6f5share/man/man4 padlock.4

padlock.4: Update slightly for 64-bit hardware

- Change the document description to "Via and Zhaoxin CPU crypto driver"
- Add a HARDWARE section mentioning these in the hardware release note

This manual still needs desperate help, but just this little bit could
have saved a lot of confusion. I'd write more if I had information.

PR:             295517
Fixes:          14b8531c4ccb8 (Restore padlock_rng the the amd64 build)
MFC after:      3 days (to 15 only)
Reviewed by:    bcr, asomers
Differential Revision:  https://reviews.freebsd.org/D57920
DeltaFile
+13-2share/man/man4/padlock.4
+13-21 files

FreeBSD/src 1807800share/man/man5 periodic.conf.5, usr.sbin/periodic/etc/security 800.loginfail

periodic/security: Introduce $security_status_loginfail_ignore for 800.loginfail

Introduce a new variable "security_status_loginfail_ignore" to filter unwanted
login failure messages from the daily security checks.

Co-authored-by: Michael Osipov <michaelo at FreeBSD.org>
Co-authored-by: Joseph Mingrone <jrm at FreeBSD.org>
PR:             295191
Reviewed by:    jrm
MFC after:      1 week
Differential Revision:  https://reviews.freebsd.org/D57671

(cherry picked from commit 6a7c8c92245562cfd9b900dedacab99a13d5ca86)
DeltaFile
+5-1share/man/man5/periodic.conf.5
+1-0usr.sbin/periodic/etc/security/800.loginfail
+6-12 files

FreeBSD/src 624e0bfshare/man/man5 periodic.conf.5, usr.sbin/periodic/etc/security 800.loginfail

periodic/security: Introduce $security_status_loginfail_ignore for 800.loginfail

Introduce a new variable "security_status_loginfail_ignore" to filter unwanted
login failure messages from the daily security checks.

Co-authored-by: Michael Osipov <michaelo at FreeBSD.org>
Co-authored-by: Joseph Mingrone <jrm at FreeBSD.org>
PR:             295191
Reviewed by:    jrm
MFC after:      1 week
Differential Revision:  https://reviews.freebsd.org/D57671

(cherry picked from commit 6a7c8c92245562cfd9b900dedacab99a13d5ca86)
DeltaFile
+5-1share/man/man5/periodic.conf.5
+1-0usr.sbin/periodic/etc/security/800.loginfail
+6-12 files

FreeBSD/src 2bb8d7clibexec/nuageinit nuageinit

nuageinit: validate set-name to prevent shell injection in variable names

Shell variable names cannot be safely quoted with shell_escape() —
only alphanumeric characters are valid. Add validation that set-name
only matches [a-zA-Z0-9]+; invalid values are rejected with a
warning and the rename is skipped entirely.

(cherry picked from commit 13fb6dbc738f4ba30e78a8fb21efa1382c520d33)
DeltaFile
+6-2libexec/nuageinit/nuageinit
+6-21 files

FreeBSD/src 1561d31libexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

nuageinit: fix shell injection in power_state_change delay and add test

(cherry picked from commit 09d068e52722dee0ed65eb88c5ea5bff4bb2ba06)
DeltaFile
+1-1libexec/nuageinit/nuageinit
+1-1libexec/nuageinit/tests/nuageinit.sh
+2-22 files

FreeBSD/src 3bb20f3libexec/nuageinit nuage.lua, libexec/nuageinit/tests nuageinit.sh nuage.sh

nuageinit: use single-quote shell escaping for hostname in rc.conf.d

The hostname value was written inside double quotes in
/etc/rc.conf.d/hostname. POSIX shell performs command substitution
inside double quotes, so a hostname containing $() or backticks would
be executed when the file is sourced (e.g., by rc(8)).

Switch to using the existing shell_escape() helper, which wraps values
in single quotes. In POSIX shell, single-quoted strings are completely
literal — no expansion or substitution of any kind is performed.

While the hostname is already validated to contain only
[a-zA-Z0-9.-], this change provides defense-in-depth so the output
format is safe regardless of future validation changes.

Reported by:    Yazdan Soltani <yazdan.soltani at gmail.com>

(cherry picked from commit da3890fdccfa7d540ea746182248299b81f95345)
DeltaFile
+6-6libexec/nuageinit/tests/nuageinit.sh
+1-1libexec/nuageinit/tests/nuage.sh
+1-1libexec/nuageinit/tests/sethostname.lua
+1-1libexec/nuageinit/nuage.lua
+9-94 files

FreeBSD/src 3654d0clibexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

nuageinit: fix shell command injection in multiple rc.conf.d writes

(cherry picked from commit 0211c8722ff2ac9367565e526e62837745bb2cce)
DeltaFile
+30-59libexec/nuageinit/nuageinit
+23-23libexec/nuageinit/tests/nuageinit.sh
+53-822 files

FreeBSD/src 7aefe34libexec/nuageinit nuageinit.7 nuageinit, libexec/nuageinit/tests nuageinit.sh

nuageinit: install certs in /usr/share/certs/trusted

Suggested by:   kevans

(cherry picked from commit e5ef12ccd01f8ec6c519bf2a56cac2808f78c51a)
DeltaFile
+2-2libexec/nuageinit/tests/nuageinit.sh
+1-1libexec/nuageinit/nuageinit.7
+1-1libexec/nuageinit/nuageinit
+4-43 files

FreeBSD/src 48bf144libexec/nuageinit nuageinit.7

nuageinit: update documentation for phone_home and final_message

(cherry picked from commit bad3c15dffea69ea84f95489d26a86ad0498d942)
DeltaFile
+32-1libexec/nuageinit/nuageinit.7
+32-11 files

FreeBSD/src 167ddf9libexec/nuageinit nuage.lua

nuageinit: expose decode_base64 to fix tests

(cherry picked from commit 68e60bb8b6c968fe615f81ccc8afd2a30ff78003)
DeltaFile
+1-0libexec/nuageinit/nuage.lua
+1-01 files

FreeBSD/src 25f255dlibexec/nuageinit nuage.lua

nuage.lua: add encode_base64 helper

(cherry picked from commit 71e8122b3f6efdaac23ac219312dfe270731b495)
DeltaFile
+30-0libexec/nuageinit/nuage.lua
+30-01 files

FreeBSD/src 35ea67elibexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement phone_home support

Posts instance data (hostname, instance_id, public keys) to a URL
using fetch(1). Supports:
- url: target URL
- post: list of data items to send, or 'all'
- tries: number of retry attempts (default 1)

(cherry picked from commit 58653bf4d0fb8ccd5de146d671ec101a1df0ede0)
DeltaFile
+89-2libexec/nuageinit/nuageinit
+33-0libexec/nuageinit/tests/nuageinit.sh
+122-22 files

FreeBSD/src eb677a5libexec/nuageinit nuageinit, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement final_message support

(cherry picked from commit e01f202ecf9344bd6658869a869f36c5b3790384)
DeltaFile
+36-0libexec/nuageinit/tests/nuageinit.sh
+25-0libexec/nuageinit/nuageinit
+61-02 files

FreeBSD/src 8c4d893libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement keyboard support

(cherry picked from commit 58184a301a1f0ef0858689f8dcc608cb468d4644)
DeltaFile
+29-1libexec/nuageinit/tests/nuageinit.sh
+24-0libexec/nuageinit/nuageinit
+20-0libexec/nuageinit/nuageinit.7
+73-13 files

FreeBSD/src 202ae01libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement power_state_change and locale support

(cherry picked from commit 328a76d17f85ff6aa6228035c4c4b989eb7534f8)
DeltaFile
+61-0libexec/nuageinit/nuageinit
+56-0libexec/nuageinit/tests/nuageinit.sh
+49-0libexec/nuageinit/nuageinit.7
+166-03 files

FreeBSD/src bf02669libexec/nuageinit nuage.lua nuageinit, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement MIME multipart user-data support

Add support for MIME multipart/mixed user-data, allowing a single
user-data blob to contain multiple parts with different content types.

(cherry picked from commit be711ade6f66506fb2cae9fd33b142ce910f0346)
DeltaFile
+45-0libexec/nuageinit/nuage.lua
+38-0libexec/nuageinit/nuageinit
+35-0libexec/nuageinit/tests/nuageinit.sh
+14-0libexec/nuageinit/nuageinit.7
+132-04 files

FreeBSD/src 9835838libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement ntp support

Add support for the 'ntp' cloud-config key which configures NTP
by writing /etc/ntp.conf with server and pool entries.

(cherry picked from commit 6d27d52ccd35d1980e99bc2fc4dae602334d28af)
DeltaFile
+37-0libexec/nuageinit/nuageinit
+28-0libexec/nuageinit/tests/nuageinit.sh
+21-0libexec/nuageinit/nuageinit.7
+86-03 files

FreeBSD/src f0fa0c5libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement ca_certs support

Add support for the 'ca_certs' cloud-config key which manages
CA certificates by writing them to /etc/ssl/certs/ and running
certctl rehash.

(cherry picked from commit b56f029add4825b21b2957f19ccfbb219a3f96cb)
DeltaFile
+30-0libexec/nuageinit/tests/nuageinit.sh
+20-0libexec/nuageinit/nuageinit
+17-0libexec/nuageinit/nuageinit.7
+67-03 files

FreeBSD/src a4a46e6libexec/nuageinit nuageinit nuageinit.7, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement ssh_authkey_fingerprints support

Add support for the 'ssh_authkey_fingerprints' cloud-config key
which logs SSH host key fingerprints to the console via ssh-keygen.

(cherry picked from commit d7984912385cc5a191547dc6c2d73acba25e2239)
DeltaFile
+24-0libexec/nuageinit/nuageinit
+21-0libexec/nuageinit/tests/nuageinit.sh
+5-0libexec/nuageinit/nuageinit.7
+50-03 files

FreeBSD/src ae577a7usr.sbin/pw pw_conf.c

pw: fix const qualification in unquote()

The unquote() function took a const char * parameter but modified the
string in-place (removing quote characters). Change the parameter to
char * and update callers that passed const char * to cast explicitly.

(cherry picked from commit 5f9c8f142d1702f5810618e02534054d28d22fa5)
DeltaFile
+6-6usr.sbin/pw/pw_conf.c
+6-61 files

FreeBSD/src e3d8f73libexec/nuageinit nuage.lua nuageinit.7, libexec/nuageinit/tests nuageinit.sh

nuageinit: implement mounts support

Add support for the 'mounts' cloud-config key which configures
mount points by appending entries to /etc/fstab and creating
the corresponding directories.

(cherry picked from commit 797dad91ff468a9bd6cd5d4f720eb4bbac1f454a)
DeltaFile
+47-1libexec/nuageinit/nuage.lua
+36-0libexec/nuageinit/nuageinit.7
+33-0libexec/nuageinit/nuageinit
+28-0libexec/nuageinit/tests/nuageinit.sh
+144-14 files

FreeBSD/src c552051usr.sbin/pw pw_conf.c, usr.sbin/pw/tests pw_config_test.sh

pw: fix setmode(NULL) crash when homemode is a boolean value

(cherry picked from commit fe1e912d5a394565e9adfbc443555ae0b3f087e5)
DeltaFile
+10-4usr.sbin/pw/pw_conf.c
+12-0usr.sbin/pw/tests/pw_config_test.sh
+22-42 files