openbsd
3 years agoAdd a length check before NUL-terminating target. From Jonas Termansen.
tb [Sat, 23 Oct 2021 08:13:48 +0000 (08:13 +0000)]
Add a length check before NUL-terminating target.  From Jonas Termansen.

ok jsing

3 years agoChange tlsext_tick_lifetime_hint to uint32_t.
jsing [Sat, 23 Oct 2021 08:13:02 +0000 (08:13 +0000)]
Change tlsext_tick_lifetime_hint to uint32_t.

Now that SSL_SESSION is opaque, change tlsext_tick_lifetime_hint from long
to uint32_t (matching RFC4507), rather than continuing to work around an
inappropriate type choice.

ok tb@

3 years agounwind(8) gives the most preferred resolver strategy a bit more time
florian [Sat, 23 Oct 2021 07:25:20 +0000 (07:25 +0000)]
unwind(8) gives the most preferred resolver strategy a bit more time
(200ms) to answer before trying the next strategy. However, we need to
skip strategies that are not available. In the default configuration,
without a config file unwind(8) would give DoT 200ms more time, but no
DoT forwarders are known, so this is useless.
OK kn

3 years agoPrepare to provide X509_get_{extended_,}key_usage()
tb [Fri, 22 Oct 2021 18:37:15 +0000 (18:37 +0000)]
Prepare to provide X509_get_{extended_,}key_usage()

ok beck jsing

3 years agoDocument existent "descr" alias for "description"
kn [Fri, 22 Oct 2021 18:35:27 +0000 (18:35 +0000)]
Document existent "descr" alias for "description"

3 years agoMake ":tdelete" work
kn [Fri, 22 Oct 2021 18:31:12 +0000 (18:31 +0000)]
Make ":tdelete" work

r1.91 added tags for all commands, but "del[ete]" is special in that
mandoc(1) will generate a tag for "del" only.

Add an explicit for the full command to fix this.

3 years agooops.
mbuhl [Fri, 22 Oct 2021 18:07:01 +0000 (18:07 +0000)]
oops.

3 years agoadd missing FreeBSD libm tests, update the others
mbuhl [Fri, 22 Oct 2021 18:00:22 +0000 (18:00 +0000)]
add missing FreeBSD libm tests, update the others

3 years agoSwitch from u_int and u_char to u32 and u8 to avoid portability issues.
tb [Fri, 22 Oct 2021 17:43:00 +0000 (17:43 +0000)]
Switch from u_int and u_char to u32 and u8 to avoid portability issues.
Prompted by a diff by Jonas Termansen.

ok jsing

3 years agoRemove key and trim text if menu cannot fit in available space, based on
nicm [Fri, 22 Oct 2021 17:12:50 +0000 (17:12 +0000)]
Remove key and trim text if menu cannot fit in available space, based on
a change from Alexis Hildebrandt.

3 years agoadd some punctuation;
jmc [Fri, 22 Oct 2021 16:42:28 +0000 (16:42 +0000)]
add some punctuation;

3 years agoPrepare to provide X509_REQ_pubkey_get0()
tb [Fri, 22 Oct 2021 16:42:13 +0000 (16:42 +0000)]
Prepare to provide X509_REQ_pubkey_get0()

ok jsing

3 years agoremove some bad punctuation;
jmc [Fri, 22 Oct 2021 16:41:47 +0000 (16:41 +0000)]
remove some bad punctuation;

3 years agonew manual page EVP_PKEY_add1_attr(3) documenting nine functions
schwarze [Fri, 22 Oct 2021 15:50:19 +0000 (15:50 +0000)]
new manual page EVP_PKEY_add1_attr(3) documenting nine functions
for associating X.501 Attributes with private keys

3 years agoMake error handling in IPsec consistent. Pass errors to the callers.
bluhm [Fri, 22 Oct 2021 15:44:20 +0000 (15:44 +0000)]
Make error handling in IPsec consistent.  Pass errors to the callers.
OK tobhe@

3 years agoRevert "Preserve select(2) semantics when the other end of the pipe is gone".
mpi [Fri, 22 Oct 2021 15:16:50 +0000 (15:16 +0000)]
Revert "Preserve select(2) semantics when the other end of the pipe is gone".

The logic to emulate the current poll/select behavior is better implemented
at the syscall layer and not in the kqueue backend.

Discussed with deraadt@, ok anton@

3 years agooops, missed unused variable in previous
florian [Fri, 22 Oct 2021 15:11:51 +0000 (15:11 +0000)]
oops, missed unused variable in previous

3 years agoMake EVFILT_EXCEPT handling separate from the read filter.
mpi [Fri, 22 Oct 2021 15:11:32 +0000 (15:11 +0000)]
Make EVFILT_EXCEPT handling separate from the read filter.

This is a change of behavior and events wont be generated if there
is something to read on the fd.  Only EV_EOF or NOTE_OOB will now
be reported.

While here a new filter for FIFOs supporting EV_EOF and __EV_HUP.

ok visa@

3 years agoconfig_new_empty() should give us a completely empty config, let
florian [Fri, 22 Oct 2021 15:03:28 +0000 (15:03 +0000)]
config_new_empty() should give us a completely empty config, let
parse_config() handle the case of defaults. This prevents the resolver
process from spinning up resolver strategies before the config has
been parsed and tearing them down immediately after if they are not
listed in the config files preferences section.

OK kn

3 years agoUpdate to tzdata2021e from www.iana.org. Major changes:
millert [Fri, 22 Oct 2021 14:40:49 +0000 (14:40 +0000)]
Update to tzdata2021e from iana.org.  Major changes:
 o Palestine will fall back 10-29 (not 10-30) at 01:00.
 o Fiji suspends DST for the 2021/2022 season.
 o Move some backward-compatibility links to 'backward'.
 o Rename Pacific/Enderbury to Pacific/Kanton.

3 years agoMask LPI interrupts. This fixes an interrupt storm on dwge(4) variants
kettenis [Fri, 22 Oct 2021 14:28:54 +0000 (14:28 +0000)]
Mask LPI interrupts.  This fixes an interrupt storm on dwge(4) variants
that support Energy Efficient Ethernet when connected to a switch that
also supports Energy Effient Ethernet.  For example on the odroid-hc4.

ok patrick@

3 years agoHonour enabled resolvers to keep unused forwarders actually disabled
kn [Fri, 22 Oct 2021 13:38:07 +0000 (13:38 +0000)]
Honour enabled resolvers to keep unused forwarders actually disabled

An unwind.conf like the following would still query forwarders,
both "." periodically and any explicit "example.com." queries:

preference { recursor autoconf stub }
forwarder { 2001:db8::1 }
force accept bogus forwarder { example.com. }

That's because the forwarder and resolver children processes start with
the default configuration and main later sends them the effective user
configuration;  merging them, however, would ignore the list of enabled
resolvers, i.e. those listed in the `preference {}' block and thusly
cause children to always have all forwarders enabled (as is by default).

Copy the resolvers list during merge to fix this and restore expected
behaviour.

(Noticed during tests with "forwarder" temporarily removed from
`preference {}' while leaving the rest as is:  my VPN interface serving
that forwarder showed DNS traffic while it was supposed to be silent.)

OK florian

3 years agonew manual page X509at_add1_attr(3)
schwarze [Fri, 22 Oct 2021 13:29:41 +0000 (13:29 +0000)]
new manual page X509at_add1_attr(3)
describing five functions to change arrays of X.501 Attribute objects

3 years agofix a gratuitiously different argument name
schwarze [Fri, 22 Oct 2021 13:21:06 +0000 (13:21 +0000)]
fix a gratuitiously different argument name

3 years agoAfter deleting hifn(4) the only provider for the LZS compression
bluhm [Fri, 22 Oct 2021 12:30:53 +0000 (12:30 +0000)]
After deleting hifn(4) the only provider for the LZS compression
algorithm is gone.  Reomve all LZS references from the tree.  The
v42bis in isakmpd also looks unsupported.
OK mvs@ patrick@ sthen@

3 years agonew manual page X509at_get_attr(3)
schwarze [Fri, 22 Oct 2021 11:24:45 +0000 (11:24 +0000)]
new manual page X509at_get_attr(3)
documenting five X.501 Attribute read accessors

3 years agoFirst step of cleanup in the io land. Introduce io_buf_new() and
claudio [Fri, 22 Oct 2021 11:13:06 +0000 (11:13 +0000)]
First step of cleanup in the io land. Introduce io_buf_new() and
io_buf_close(). These function will inject a size of the the buffer
at the beginning of the buffer and will allow the read size to be
switched to proper async IO.
OK benno@

3 years agoImplement --compare-dest in openrsync. compare-dest allows you to add
claudio [Fri, 22 Oct 2021 11:10:34 +0000 (11:10 +0000)]
Implement --compare-dest in open compare-dest allows you to add
additional directories to check for files to be available.
OK benno@

3 years agoPrevent mem leaks in the (unlikely) event that getaddrinfo returns
dtucker [Fri, 22 Oct 2021 10:51:57 +0000 (10:51 +0000)]
Prevent mem leaks in the (unlikely) event that getaddrinfo returns
no addresses.  ALso, remove an unneeded NULL check in addr_ntop.
From khaleesicodes via github PR#281, ok deraadt@

3 years agoPut back sys/types.h and sys/socket.h. The latter was unintentionally
tb [Fri, 22 Oct 2021 10:22:15 +0000 (10:22 +0000)]
Put back sys/types.h and sys/socket.h. The latter was unintentionally
removed and the former is still needed, as pointed out by kettenis

3 years agoWhen reading the symlink value during the fts travers use ent->fts_accpath
claudio [Fri, 22 Oct 2021 09:59:35 +0000 (09:59 +0000)]
When reading the symlink value during the fts travers use ent->fts_accpath
since the fts traverse does chdirs for performance reasons.
OK deraadt@

3 years agoFix some ghastly whitespace. From Martin Vahlensieck
tb [Fri, 22 Oct 2021 09:51:54 +0000 (09:51 +0000)]
Fix some ghastly whitespace. From Martin Vahlensieck

3 years agoUse unsigned char instead of u_char in base64.c. This is a mild
tb [Fri, 22 Oct 2021 09:49:26 +0000 (09:49 +0000)]
Use unsigned char instead of u_char in base64.c. This is a mild
portability annoyance since not all systems have u_char. Remove
the now unused includes sys/types.h and stdio.h.

u_char diff from Jonas Termansen

ok deraadt

3 years agoGarbage collect an unused variable.
tb [Fri, 22 Oct 2021 09:44:58 +0000 (09:44 +0000)]
Garbage collect an unused variable.

3 years agoStop setting enc.modified manually. It's no longer needed.
tb [Fri, 22 Oct 2021 09:44:30 +0000 (09:44 +0000)]
Stop setting enc.modified manually. It's no longer needed.

3 years agoRemove unnecessary semicolons in case statements. From khaleesicodes
dtucker [Fri, 22 Oct 2021 09:22:04 +0000 (09:22 +0000)]
Remove unnecessary semicolons in case statements. From khaleesicodes
via github PR#280.

3 years agoFix typos in comments. From khaleesicodes via github PR#280.
dtucker [Fri, 22 Oct 2021 09:19:34 +0000 (09:19 +0000)]
Fix typos in comments.  From khaleesicodes via github PR#280.

3 years agoreturn unsupported version for version less than HTTP/0.9 and higher
benno [Fri, 22 Oct 2021 08:51:50 +0000 (08:51 +0000)]
return unsupported version for version less than HTTP/0.9 and higher
than HTTP/1.9. Downgrade version >= HTTP/1.2++ to 1.1.

Found by "J. K." (openbsd DOT list AT krottmayer DOT com)
ok claudio@

3 years agoregen
jsg [Fri, 22 Oct 2021 08:48:46 +0000 (08:48 +0000)]
regen

3 years agoadd Intel ADL-S and ADL-P graphics ids Mesa matches
jsg [Fri, 22 Oct 2021 08:48:08 +0000 (08:48 +0000)]
add Intel ADL-S and ADL-P graphics ids Mesa matches

fix a GMA600 id while here

3 years agoRemove last dangling usage of CRYPTO_F_NOQUEUE.
anton [Fri, 22 Oct 2021 05:06:37 +0000 (05:06 +0000)]
Remove last dangling usage of CRYPTO_F_NOQUEUE.

ok tb@

3 years agosync
anton [Fri, 22 Oct 2021 05:04:27 +0000 (05:04 +0000)]
sync

3 years agoknf nits
anton [Fri, 22 Oct 2021 05:03:57 +0000 (05:03 +0000)]
knf nits

3 years agoadd pipe select hangup test case; ok mpi@
anton [Fri, 22 Oct 2021 05:03:04 +0000 (05:03 +0000)]
add pipe select hangup test case; ok mpi@

3 years agoPreserve pipe select(2) semantics when the other end of the pipe is gone.
anton [Fri, 22 Oct 2021 05:00:26 +0000 (05:00 +0000)]
Preserve pipe select(2) semantics when the other end of the pipe is gone.
In preparation for implementing select(2) on top of kqueue.

ok mpi@

3 years agoOne could end up with the wrong encoding in xenocara while having a ucc
anton [Fri, 22 Oct 2021 04:59:31 +0000 (04:59 +0000)]
One could end up with the wrong encoding in xenocara while having a ucc
keyboard attached and /etc/kbdtype being present. The advertised
encoding of a wsmux is a bit fragile as the last attached device will
dictate it. If this happens to be a ucc keyboard, KB_US will always be
the advertised encoding as its encoding is immutable and /etc/kbdtype is
ignored.

Instead, do not advertise the encoding for ucc devices when the parent
mux queries its attached devices. However, asking the device directly
(i.e. bypassing the mux) still returns the encoding as wsconsctl(8)
would otherwise report an error.

Thanks to landry@ for the report and testing.

3 years agoRemove more dead code related to crypto task queues.
tobhe [Thu, 21 Oct 2021 23:03:48 +0000 (23:03 +0000)]
Remove more dead code related to crypto task queues.

3 years agoRemove code to run crypto operations in a task queue. The code was
tobhe [Thu, 21 Oct 2021 22:59:07 +0000 (22:59 +0000)]
Remove code to run crypto operations in a task queue. The code was
not reachable because all callers had set the CRYPTO_F_NOQUEUE flag.

ok patrick@ mvs@ bluhm@

3 years agoSimplify the description of RETURN VALUES.
schwarze [Thu, 21 Oct 2021 22:36:16 +0000 (22:36 +0000)]
Simplify the description of RETURN VALUES.
After tb@'s commit x509/x509_lu.c rev. 1.33, it is no longer necessary
to talk about X509_LU_* constants as return values from these functions.
Feedback and OK from tb@.

3 years agoInitialize interrupts to G1NS by configuring IGROUPR and IGRPMODR. This
patrick [Thu, 21 Oct 2021 22:25:03 +0000 (22:25 +0000)]
Initialize interrupts to G1NS by configuring IGROUPR and IGRPMODR.  This
makes interrupts work with Parallels on the Apple M1.

Tested by patrick@ on Ampere eMAG and MacchiatoBin
Tested by fkr@ on Pinebook Pro
ok kettenis@

3 years agoRelease solock() before call unp_internalize() and take it within when
mvs [Thu, 21 Oct 2021 22:11:07 +0000 (22:11 +0000)]
Release solock() before call unp_internalize() and take it within when
access garbage collector data.

This is the next step to make UNIX domain sockets locking fine grained.
This also moves M_WAIT/M_WAITOK allocations out from `unp_lock' rwlock(9).
The lock order between fdplock() and `unp_lock' changed and now fdplock()
should be taken first. This was not required, but helps to mpi@'s knote(9)
related work.

ok bluhm@

3 years agoregen
jsg [Thu, 21 Oct 2021 21:50:16 +0000 (21:50 +0000)]
regen

3 years agoadd Gemini Lake MEI; from fkr
jsg [Thu, 21 Oct 2021 21:47:41 +0000 (21:47 +0000)]
add Gemini Lake MEI; from fkr

3 years agoRemove hifn(4), safe(4), and ubsec(4) crypto drivers. They require
bluhm [Thu, 21 Oct 2021 18:36:41 +0000 (18:36 +0000)]
Remove hifn(4), safe(4), and ubsec(4) crypto drivers.  They require
the asynchronous crypto API which makes progress in MP difficult.
The hardware is rarely available.  They support only obsolete crypto
algorithms.  Scheduling crypto tasks via PCI is probably slower
than the CPU, especailly as modern CPUs have their own accelerators.

3 years agoHave ampintcmsi(4) go through the list of interrupt controllers to find the
patrick [Thu, 21 Oct 2021 18:30:57 +0000 (18:30 +0000)]
Have ampintcmsi(4) go through the list of interrupt controllers to find the
correct parent.  So far we were directly calling some ampintc(4) code, which
is fine for regular hardware.  With Parallels on the Apple M1, ampintcmsi(4)
is combined with agintc(4), which is quite a surprise.  Luckily both types of
interrupt controllers use the same API for passing interrupt information, so
we can craft one structure and both ampintc(4) and agintc(4) will happily work
with it.

ok kettenis@

3 years agoSimplify a return value check for X509_STORE_get_by_subject() now
tb [Thu, 21 Oct 2021 16:55:25 +0000 (16:55 +0000)]
Simplify a return value check for X509_STORE_get_by_subject() now
that we know that it only returns 0 or 1.  Eliminate the last uses
of X509_LU_{FAIL,RETRY}.

ok jsing

3 years agoSet enc.modified if the X509_REQ is going to be modified.
tb [Thu, 21 Oct 2021 16:47:01 +0000 (16:47 +0000)]
Set enc.modified if the X509_REQ is going to be modified.

ok jsing

3 years agonew manual page X509_ATTRIBUTE_set1_object(3)
schwarze [Thu, 21 Oct 2021 16:26:34 +0000 (16:26 +0000)]
new manual page X509_ATTRIBUTE_set1_object(3)
documenting five X.501 Attribute write accessors

3 years agoSync parts of X509_STORE_get_by_subject() with OpenSSL
tb [Thu, 21 Oct 2021 16:03:17 +0000 (16:03 +0000)]
Sync parts of X509_STORE_get_by_subject() with OpenSSL

Initialize stmp.type and stmp.data.ptr so that a user-defined lookup
method need not take responsibility of initializing those. Get rid of
current_method, which was never really used. Stop potentially returning
a negative value since most callers assume Boolean return values already.

In addition, garbage collect the pointless j variable.

ok jsing

3 years agoDocument commands used to send VM IP to Xen host
denis [Thu, 21 Oct 2021 15:56:17 +0000 (15:56 +0000)]
Document commands used to send VM IP to Xen host

OK kn@

3 years agoPrepare to make X509 opaque.
tb [Thu, 21 Oct 2021 15:52:02 +0000 (15:52 +0000)]
Prepare to make X509 opaque.

ok jsing

3 years agoClean up the naming of SNMP_C_GETNEXTREQ and SNMP_C_RESPONSE inside
martijn [Thu, 21 Oct 2021 15:08:15 +0000 (15:08 +0000)]
Clean up the naming of SNMP_C_GETNEXTREQ and SNMP_C_RESPONSE inside
smi_debug_elements

OK sthen@

3 years agolibtls: Don't reach into X509_STORE_CTX.
tb [Thu, 21 Oct 2021 14:57:55 +0000 (14:57 +0000)]
libtls: Don't reach into X509_STORE_CTX.

ok jsing

3 years agos/SNMP_C_GETRESP/SNMP_C_RESPONSE
martijn [Thu, 21 Oct 2021 14:33:13 +0000 (14:33 +0000)]
s/SNMP_C_GETRESP/SNMP_C_RESPONSE

OK sthen@

3 years agoSwitch from X509_VERIFY_PARAM_set_flags() to X509_STORE_set_flags().
tb [Thu, 21 Oct 2021 14:31:21 +0000 (14:31 +0000)]
Switch from X509_VERIFY_PARAM_set_flags() to X509_STORE_set_flags().
This reduces the number of reacharounds into libcrypto internals.

ok jsing

3 years agoisakmpd: prepare for opaque X509_STORE_CTX struct.
tb [Thu, 21 Oct 2021 14:01:00 +0000 (14:01 +0000)]
isakmpd: prepare for opaque X509_STORE_CTX struct.

ok benno

3 years agoisakmpd: prepare for opaque X509_EXTENSION struct. This needs to use
tb [Thu, 21 Oct 2021 13:58:02 +0000 (13:58 +0000)]
isakmpd: prepare for opaque X509_EXTENSION struct. This needs to use
an accessor instead of reaching directly into the struct.

ok benno

3 years agoAdd XKU_ANYEKU #define and use it to cache the anyExtendedKeyUsage
tb [Thu, 21 Oct 2021 13:51:52 +0000 (13:51 +0000)]
Add XKU_ANYEKU #define and use it to cache the anyExtendedKeyUsage
extension. This is part of OpenSSL commit df4c395c which didn't make
it into our tree for some reason.

ok jsing

3 years agoRemove 'disk' editing command. Determining the disk geometry on startup (from
krw [Thu, 21 Oct 2021 13:16:49 +0000 (13:16 +0000)]
Remove 'disk' editing command. Determining the disk geometry on startup (from
-l, -c/-h/-s or DIOCGPDINFO) should be enough for anyone.

3 years agoPrepare to provide X509_get_X509_PUBKEY() as a function.
tb [Thu, 21 Oct 2021 13:02:00 +0000 (13:02 +0000)]
Prepare to provide X509_get_X509_PUBKEY() as a function.

ok jsing

3 years agowhen a client sends header lines without a colon, respond with 400 Bad
benno [Thu, 21 Oct 2021 11:48:30 +0000 (11:48 +0000)]
when a client sends header lines without a colon, respond with 400 Bad
Request instead of 500 Internal Server Error.
ok claudio@

3 years agoAvoid sys/param.h, or annotate reasons for including where required.
deraadt [Thu, 21 Oct 2021 10:55:56 +0000 (10:55 +0000)]
Avoid sys/param.h, or annotate reasons for including where required.
This includes using HOST_NAME_MAX and PATH_MAX
in snaps for around 3 weeks, noone noticed a change in behaviour.

3 years agoMove vfs_stall_barrier() from the fd layer into vn_lock() and the vfs layer.
claudio [Thu, 21 Oct 2021 09:59:13 +0000 (09:59 +0000)]
Move vfs_stall_barrier() from the fd layer into vn_lock() and the vfs layer.
vfs stalling is used by suspend/resume and by vmt(4) to stall any
filesystem operation from altering the state on disk. All these
operations will call vn_lock and be stalled. Adjust vfs_stall_barrier()
to allow the lock owner to still progress so that suspend can sync
the filesystems after stalling vfs operation.
OK mpi@

3 years agoBump to LibreSSL 3.5.0
tb [Thu, 21 Oct 2021 08:47:42 +0000 (08:47 +0000)]
Bump to LibreSSL 3.5.0

3 years agoRemove duplicate variable ibytes, use plen instead.
tobhe [Thu, 21 Oct 2021 08:39:33 +0000 (08:39 +0000)]
Remove duplicate variable ibytes, use plen instead.

ok bluhm@

3 years agoEliminate a dead assignment and a weird cast. Adjust a comment to
tb [Thu, 21 Oct 2021 08:38:11 +0000 (08:38 +0000)]
Eliminate a dead assignment and a weird cast. Adjust a comment to
reality while there.

ok jsing

3 years agoCorrectly adjust the end pointer for a two character terminator before
nicm [Thu, 21 Oct 2021 08:36:51 +0000 (08:36 +0000)]
Correctly adjust the end pointer for a two character terminator before
decoding OSC 52 response, from Daniel Ekloef in GitHub issue 2942.

3 years agoPrint uid with %u instead of %i.
tb [Thu, 21 Oct 2021 08:33:07 +0000 (08:33 +0000)]
Print uid with %u instead of %i.

Prompted by a diff by Jonas Termansen, discussed with deraadt, millert

ok jsing

3 years agoUse *printf %d instead of %i
tb [Thu, 21 Oct 2021 08:31:51 +0000 (08:31 +0000)]
Use *printf %d instead of %i

ok jsing

3 years agoAvoid potential NULL dereferences in dtls1_free()
tb [Thu, 21 Oct 2021 08:30:14 +0000 (08:30 +0000)]
Avoid potential NULL dereferences in dtls1_free()

ok jsing

3 years agoShow error if user option doesn't exist, GitHub issue 2938.
nicm [Thu, 21 Oct 2021 08:23:48 +0000 (08:23 +0000)]
Show error if user option doesn't exist, GitHub issue 2938.

3 years agoRetrieve the actual engineid instead of a pointer value.
martijn [Thu, 21 Oct 2021 08:21:43 +0000 (08:21 +0000)]
Retrieve the actual engineid instead of a pointer value.

OK tb@

3 years agoSync ober_oid_cmp with ax_oid_cmp from libagentx.
martijn [Thu, 21 Oct 2021 08:17:33 +0000 (08:17 +0000)]
Sync ober_oid_cmp with ax_oid_cmp from libagentx.
This flips the returned signedness and adds the weight of 2 for
parent-child relationship in both direction.

This makes ober_oid_cmp consistent with the rest of the *_cmp based
functions.

OK tb@

3 years agosync
anton [Thu, 21 Oct 2021 05:30:15 +0000 (05:30 +0000)]
sync

3 years agodrm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read
jsg [Wed, 20 Oct 2021 23:50:20 +0000 (23:50 +0000)]
drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read

From Douglas Anderson
a7b45024f66f9ec769e8dbb1a51ae83cd05929c7 in linux 5.10.y/5.10.75
97794170b696856483f74b47bfb6049780d2d3a0 in mainline linux

3 years agoAdd missing semicolon at the end of the listen_udptcp rule
gerhard [Wed, 20 Oct 2021 16:00:47 +0000 (16:00 +0000)]
Add missing semicolon at the end of the listen_udptcp rule

ok otto@

3 years agodocument ASN1_STRING_set_by_NID(3)
schwarze [Wed, 20 Oct 2021 15:54:21 +0000 (15:54 +0000)]
document ASN1_STRING_set_by_NID(3)
and the three functions related to the global mask

3 years agonew manual page ASN1_mbstring_copy(3)
schwarze [Wed, 20 Oct 2021 13:14:00 +0000 (13:14 +0000)]
new manual page ASN1_mbstring_copy(3)
also documenting ASN1_mbstring_ncopy(3)

3 years agoRemove a TODO comment.
nicm [Wed, 20 Oct 2021 09:52:27 +0000 (09:52 +0000)]
Remove a TODO comment.

3 years agoAdd -T to set a popup title, from Alexis Hildebrandt in GitHub issue 2941.
nicm [Wed, 20 Oct 2021 09:50:40 +0000 (09:50 +0000)]
Add -T to set a popup title, from Alexis Hildebrandt in GitHub issue 2941.

3 years agoDo not ignore carp(4) interfaces.
florian [Wed, 20 Oct 2021 07:04:49 +0000 (07:04 +0000)]
Do not ignore carp(4) interfaces.
Problem reported by Guy Godfroy on bugs, thanks!

3 years agorevert vnode: remove VLOCKSWORK and check locking when vop_islocked != nullop
semarie [Wed, 20 Oct 2021 06:35:39 +0000 (06:35 +0000)]
revert vnode: remove VLOCKSWORK and check locking when vop_islocked != nullop
(both kernel and userland bits)

GENERIC + VFSLCKDEBUG is broken with it.

3 years agosync
anton [Wed, 20 Oct 2021 06:01:16 +0000 (06:01 +0000)]
sync

3 years agonew manual page X509_ATTRIBUTE_get0_object(3)
schwarze [Wed, 20 Oct 2021 05:06:36 +0000 (05:06 +0000)]
new manual page X509_ATTRIBUTE_get0_object(3)
documenting the four X.501 Attribute read accessors

3 years agodocument X509_ATTRIBUTE_create(3) and X509_ATTRIBUTE_dup(3)
schwarze [Wed, 20 Oct 2021 03:31:20 +0000 (03:31 +0000)]
document X509_ATTRIBUTE_create(3) and X509_ATTRIBUTE_dup(3)

3 years agoMove get_default_mbr() invocation before DISK_open() invocation and remove
krw [Tue, 19 Oct 2021 19:38:10 +0000 (19:38 +0000)]
Move get_default_mbr() invocation before DISK_open() invocation and remove
"rpath wpath" from the pledge() invocation. Makes default_dmbr information
available to DISK_open().

No intentional functional change.

3 years agodocument X509_get_pubkey_parameters(3) in a new manual page
schwarze [Tue, 19 Oct 2021 17:42:49 +0000 (17:42 +0000)]
document X509_get_pubkey_parameters(3) in a new manual page

3 years agomore precision, fewer words
schwarze [Tue, 19 Oct 2021 16:27:47 +0000 (16:27 +0000)]
more precision, fewer words

3 years agovnode: remove VLOCKSWORK usage in pstat and mention in man pages
semarie [Tue, 19 Oct 2021 14:50:05 +0000 (14:50 +0000)]
vnode: remove VLOCKSWORK usage in pstat and mention in man pages

unbreak the tree. found hard way by tb@

ok tb@ which have the same diff

3 years agoSame as -N, don't send if 0 arguments and -R.
nicm [Tue, 19 Oct 2021 12:51:43 +0000 (12:51 +0000)]
Same as -N, don't send if 0 arguments and -R.