openbsd
2 years agoAdd function to free all of the issuer cache.
beck [Mon, 27 Jun 2022 14:23:40 +0000 (14:23 +0000)]
Add function to free all of the issuer cache.

ok jsing@

2 years agoRemove switch(4) leftovers.
visa [Mon, 27 Jun 2022 14:11:44 +0000 (14:11 +0000)]
Remove switch(4) leftovers.

OK deraadt@ mpi@ claudio@ miod@

2 years agoAllow security_level to mestastasize into the verifier
tb [Mon, 27 Jun 2022 14:10:22 +0000 (14:10 +0000)]
Allow security_level to mestastasize into the verifier

The tentacles are everywhere.  This checks that all certs in a chain
have keys and signature algorithms matching the requirements of the
security_level configured in the verify parameters.

ok beck jsing

2 years agoPrepare to provide X509_VERIFY_PARAM_set_auth_level()
tb [Mon, 27 Jun 2022 14:00:09 +0000 (14:00 +0000)]
Prepare to provide X509_VERIFY_PARAM_set_auth_level()

For some unknown reason this needed a different name than security_level,
both internally and in the public API. Obviously it is exactly the same
garbage.

ok beck jsing

2 years agoAdd new time manipulation funcitons that OpenSSL has exposed that
beck [Mon, 27 Jun 2022 13:54:57 +0000 (13:54 +0000)]
Add new time manipulation funcitons that OpenSSL has exposed that
the world seems to be using.

Symbols.list changes and exposure to wait for minor bump

ok jsing@ jca@

2 years agoinstall script no longer creates a dhclient.conf under any circumstances,
deraadt [Mon, 27 Jun 2022 13:48:38 +0000 (13:48 +0000)]
install script no longer creates a dhclient.conf under any circumstances,
so we do not need to copy it to the new system.

2 years agoFix lock order reversal in nfs_inactive()
visa [Mon, 27 Jun 2022 13:39:58 +0000 (13:39 +0000)]
Fix lock order reversal in nfs_inactive()

Make the silly file removal happen after the vnode has been unlocked.
This avoids a file-directory reversal in the vnode locking order.

OK jca@

2 years agokqueue: Clear task when closing kqueue
visa [Mon, 27 Jun 2022 13:35:21 +0000 (13:35 +0000)]
kqueue: Clear task when closing kqueue

When closing a kqueue, block until any pending wakeup task has finished.
Otherwise, if a pending task progressed slowly, the kqueue could stay
alive longer than the associated file descriptor table, causing
a use-after-free in KQRELE().

This also fixes a failed assertion "p->p_kq->kq_refcnt.r_refs == 1" in
kqpoll_exit().

The use-after-free bug had existed since the introduction of
kqueue_task() (the bug could occur if fdplock() blocked in KQRELE()).
However, the issue became worse when the task was allowed to run without
the kernel lock in sys/kern/kern_event.c r1.187.

Prompted by a report from Mikhail on bugs@.

OK mpi@

Reported-by: syzbot+fca7e4fa773c90886819@syzkaller.appspotmail.com
2 years agoRegress test for the open policy role capability. Make sure it properly
claudio [Mon, 27 Jun 2022 13:29:40 +0000 (13:29 +0000)]
Regress test for the open policy role capability. Make sure it properly
fails when enforced or there is a missmatch and that the session is accepeted
if the roles match.

2 years agobgpctl bits for RFC 9234 support.
claudio [Mon, 27 Jun 2022 13:27:38 +0000 (13:27 +0000)]
bgpctl bits for RFC 9234 support.
OK tb@

2 years agoAdd support for RFC 9234 - Route Leak Prevention and Detection Using Roles
claudio [Mon, 27 Jun 2022 13:26:51 +0000 (13:26 +0000)]
Add support for RFC 9234 - Route Leak Prevention and Detection Using Roles

With this it is possible to send a role in the OPEN message and if that
was successful the RDE will add the new OTC attribute if necessary.
OK tb@

2 years agoRemember the error of ucomreadcb() for the next ucomread() call and returns an
jan [Mon, 27 Jun 2022 13:14:49 +0000 (13:14 +0000)]
Remember the error of ucomreadcb() for the next ucomread() call and returns an
EIO.  Thus the userland notices the error and closes the device.  We forget the
error on reopen and the device works again.

Ok mbuhl

2 years agoAllow the pluart(4) baud rate to be changed.
anton [Mon, 27 Jun 2022 13:03:32 +0000 (13:03 +0000)]
Allow the pluart(4) baud rate to be changed.

It's most likely that users have the wrong baud rate in /etc/ttys as
this was corrected in revision 1.11 of sys/dev/ic/pluart.c. Make sure to
change the console baud rate from 38400 to 115200 in /etc/ttys before
upgrading.

ok visa@

2 years agoInstead of calling getuptime() all the time in ARP code, do it only
bluhm [Mon, 27 Jun 2022 12:47:07 +0000 (12:47 +0000)]
Instead of calling getuptime() all the time in ARP code, do it only
once per function.  This gives a more consistent time value.
OK claudio@ miod@ mvs@

2 years agoPrepare to provide EVP_PKEY_security_bits()
tb [Mon, 27 Jun 2022 12:36:05 +0000 (12:36 +0000)]
Prepare to provide EVP_PKEY_security_bits()

This also provides a pkey_security_bits member to the PKEY ASN.1 methods
and a corresponding setter EVP_PKEY_asn1_set_security_bits().

ok beck jsing

2 years agoPrepare to provide DH_security_bits()
tb [Mon, 27 Jun 2022 12:31:38 +0000 (12:31 +0000)]
Prepare to provide DH_security_bits()

ok beck jsing

2 years agoPrepare to provide RSA_security_bits()
tb [Mon, 27 Jun 2022 12:30:28 +0000 (12:30 +0000)]
Prepare to provide RSA_security_bits()

ok beck jsing

2 years agoPrepare to provide DSA_security_bits()
tb [Mon, 27 Jun 2022 12:28:46 +0000 (12:28 +0000)]
Prepare to provide DSA_security_bits()

ok beck jsing

2 years agoPrepare to provide BN_security_bits()
tb [Mon, 27 Jun 2022 12:25:49 +0000 (12:25 +0000)]
Prepare to provide BN_security_bits()

ok beck jsing

2 years agoMove rc.firsttime additions before some slower jobs run from install.sub.
sthen [Mon, 27 Jun 2022 11:01:41 +0000 (11:01 +0000)]
Move rc.firsttime additions before some slower jobs run from install.sub.
Reduces the risk of post-upgrade steps (sysmerge -b etc) being missed if
there was some issue with those jobs e.g. fw_update or reorder_kernel
triggering watchdog or an impatient admin to reboot the system. ok florian@

2 years agoMostly rewrite appl_request_upstream_reply.
martijn [Mon, 27 Jun 2022 10:31:17 +0000 (10:31 +0000)]
Mostly rewrite appl_request_upstream_reply.
The old code had a potential off by one underflow, which is unlikely to be
hit with the current builtin backend, and didn't show the returned
varbindlist correct.

OK sthen@

2 years agoInitialize oidbuf and regionbuf when registering a region in appl_region.
martijn [Mon, 27 Jun 2022 10:25:32 +0000 (10:25 +0000)]
Initialize oidbuf and regionbuf when registering a region in appl_region.
This prevents us from spewing garbage on error.

regionbuf case pointed out by tb@

OK deraadt@ tb@

2 years agoAdd skiplist option to steer clear of skiplisted hosts
job [Mon, 27 Jun 2022 10:18:27 +0000 (10:18 +0000)]
Add skiplist option to steer clear of skiplisted hosts

Blocking outbound connections towards RPKI publication servers based
on IP or IPv6 address in external instrumentation like HTTP proxies
or pf(4) rules is somewhat unwieldy. It might be easier for operators
if we offer a mechanism that cuts at the CA cert SIA parsing step.

OK claudio@ tb@

2 years agoDo not run receive and transmit interrupt handlers when the bnxt(4)
bluhm [Mon, 27 Jun 2022 10:02:20 +0000 (10:02 +0000)]
Do not run receive and transmit interrupt handlers when the bnxt(4)
interface is not running.  Prevents a panic triggered by ifconfig
bnxt0 down.
found by Hrvoje Popovski; OK jmatthew@

2 years agoFix bwfm(4) ifconfig media display on devices with sta_info command version 3.
stsp [Mon, 27 Jun 2022 09:16:56 +0000 (09:16 +0000)]
Fix bwfm(4) ifconfig media display on devices with sta_info command version 3.

ok jsg@

2 years agoTweak previous - find end of style correctly.
nicm [Mon, 27 Jun 2022 09:16:54 +0000 (09:16 +0000)]
Tweak previous - find end of style correctly.

2 years agoDo not expand single character format aliases inside #[] since they
nicm [Mon, 27 Jun 2022 09:14:49 +0000 (09:14 +0000)]
Do not expand single character format aliases inside #[] since they
interfere with colours. GitHub issue 3239 from Magnus Gross.

2 years agoDon't copy more than sa_len from the sockaddr to the sysctl / rt msg buffer.
claudio [Mon, 27 Jun 2022 08:15:38 +0000 (08:15 +0000)]
Don't copy more than sa_len from the sockaddr to the sysctl / rt msg buffer.
In the rt msg buffer the size of the full buffer is calculated first then
filled out after allocating the mbuf. In the sysctl code this is not needed
since the buffer is already provided.
OK mvs@

2 years agoWhitespace/KNF
mlarkin [Mon, 27 Jun 2022 08:00:31 +0000 (08:00 +0000)]
Whitespace/KNF

2 years agoamdgpio(4): restore pin configuration on resume
mlarkin [Mon, 27 Jun 2022 07:55:28 +0000 (07:55 +0000)]
amdgpio(4): restore pin configuration on resume

Save/restore the pin configuration on suspend/resume for amdgpio(4).
This fixes missing interrupts after resume for trackpads on some
machines, including the ROG Zephyrus 14 and the HP DevOne (and probably
others).

Code based on pchgpio(4).

ok deraadt, kettenis

2 years agoMark `pipex_enable' as atomic. We never check `pipex_enable' within
mvs [Sun, 26 Jun 2022 22:51:58 +0000 (22:51 +0000)]
Mark `pipex_enable' as atomic. We never check `pipex_enable' within
(*if_qstart)() and we don't worry it's not serialized with the rest of
output path. Also we will process already enqueued pipex(4) packets
regardless on `pipex_enable' state.

Use the local copy of `pipex_enable' within pppx_if_output(), otherwise we
loose consistency.

pointed and ok by bluhm@

2 years agoDon't reset `idle_time' timeout on closed pipex(4) sessions in packet
mvs [Sun, 26 Jun 2022 21:29:34 +0000 (21:29 +0000)]
Don't reset `idle_time' timeout on closed pipex(4) sessions in packet
processing path. Such sessions already reached time to live timeout, and
the garbage collector waits a little to before kill them. Otherwise we
could make session's life time more then PIPEX_CLOSE_TIMEOUT.

ok bluhm@

2 years agoDon't take kernel lock on pipex(4) pppoe input. This extra serialization
mvs [Sun, 26 Jun 2022 21:19:53 +0000 (21:19 +0000)]
Don't take kernel lock on pipex(4) pppoe input. This extra serialization
is not required. In packet processing path we have shared netlock held,
but we do read-only access on per session `flags' and `ifindex'. We always
modify them from ioctl(2) path with exclusive netlock held. The rest of
pipex(4) session is immutable or uses per-session locks.

ok bluhm@

2 years agoIn groff commit 78e66624 on May 7 20:15:33 2021 +1000,
schwarze [Sun, 26 Jun 2022 20:30:00 +0000 (20:30 +0000)]
In groff commit 78e66624 on May 7 20:15:33 2021 +1000,
G. Branden Robinson changed the -T ascii rendering
of \(sd, the "second" symbol, U+2033 DOUBLE PRIME, from '' to ".
Follow suit in mandoc.

2 years agoadd a few missing drivers for recent nics, input from jmatthew kettenis mbuhl deraadt
sthen [Sun, 26 Jun 2022 20:05:06 +0000 (20:05 +0000)]
add a few missing drivers for recent nics, input from jmatthew kettenis mbuhl deraadt

2 years agoFix spacing.
mvs [Sun, 26 Jun 2022 18:56:09 +0000 (18:56 +0000)]
Fix spacing.

2 years agoadd --null to usage() forgot in previous commit. reminded by jmc@, thanks!
op [Sun, 26 Jun 2022 18:48:10 +0000 (18:48 +0000)]
add --null to usage() forgot in previous commit.  reminded by jmc@, thanks!

2 years agoSwitch walkargs for the buffer size to size_t and change the overflow
claudio [Sun, 26 Jun 2022 16:07:00 +0000 (16:07 +0000)]
Switch walkargs for the buffer size to size_t and change the overflow
check to the less awkward w->w_needed <= w->w_given.
OK bluhm@

2 years agoremove outdated comment
florian [Sun, 26 Jun 2022 16:01:39 +0000 (16:01 +0000)]
remove outdated comment

2 years agoThe "ifq_set_maxlen(..., 1);" hack we use to enforce pipex(4) related
mvs [Sun, 26 Jun 2022 15:50:21 +0000 (15:50 +0000)]
The "ifq_set_maxlen(..., 1);" hack we use to enforce pipex(4) related
(*if_qstart)() be always called with netlock held doesn't work anymore
with PPPOE sessions.

Introduce `pipex_list_mtx' mutex(9) and use it to protect global pipex(4)
lists and radix trees.

Protect pipex(4) `session' dereference with reference counters, because we
could sleep when accessing pipex(4) from ioctl(2) path, and this is not
possible with mutex(9) held.

ok bluhm@

2 years agoAdd missing splx before returning when urtwn_ccmp_decap() fails.
jmatthew [Sun, 26 Jun 2022 15:38:11 +0000 (15:38 +0000)]
Add missing splx before returning when urtwn_ccmp_decap() fails.

from Christian Ludwig

2 years agoBreak out of the switch statement rather than returning early on ioctl
jmatthew [Sun, 26 Jun 2022 15:33:37 +0000 (15:33 +0000)]
Break out of the switch statement rather than returning early on ioctl
errors, ensuring the IPL is correctly restored.

from Christian Ludwig

2 years agoadd missing splx in error path
jmatthew [Sun, 26 Jun 2022 15:25:03 +0000 (15:25 +0000)]
add missing splx in error path

from Christian Ludwig

2 years ago'pipex_mppe' and 'pipex_session' structures have uint16_t bit fields
mvs [Sun, 26 Jun 2022 13:14:37 +0000 (13:14 +0000)]
'pipex_mppe' and 'pipex_session' structures have uint16_t bit fields
which represent flags. We mix unlocked access to immutable flags with
protected access to mutable ones. This could be not MP independent on
some architectures, so convert these fields to u_int `flags' variables.

ok bluhm@

2 years agoProvide and use long_{get,set}()
jsing [Sun, 26 Jun 2022 13:10:15 +0000 (13:10 +0000)]
Provide and use long_{get,set}()

Apparently at some point a LONG_it was misaligned - provide and use
long_{get,set}() so that we always memcpy() rather than doing it some times
but not others. While here provide long_clear() rather than abusing and
reusing long_free().

ok tb@

2 years agoDiscourage nfs mounting of /var by not talking about it.
deraadt [Sun, 26 Jun 2022 12:34:41 +0000 (12:34 +0000)]
Discourage nfs mounting of /var by not talking about it.
ok sthen florian

2 years agoAllow waiting during ktable allocation in pf_ioctl.
mbuhl [Sun, 26 Jun 2022 11:37:08 +0000 (11:37 +0000)]
Allow waiting during ktable allocation in pf_ioctl.

OK bluhm

Reported-by: syzbot+50ea4f33ed5dd9264918@syzkaller.appspotmail.com
Reported-by: syzbot+df65f8b7ee8c0089e885@syzkaller.appspotmail.com
2 years agoFix URI name constraints, allow for URI's with no host part.
beck [Sun, 26 Jun 2022 11:29:27 +0000 (11:29 +0000)]
Fix URI name constraints, allow for URI's with no host part.

Such uri's must be parsed and allowed, but then should
fail if a name constraint is present.

Adds regress testing for this same case.

fixes https://github.com/libressl-portable/openbsd/issues/131

ok tb@

2 years agogrep: add --null flag
op [Sun, 26 Jun 2022 10:57:36 +0000 (10:57 +0000)]
grep: add --null flag

makes grep print an ASCII NUL byte after the file name to make the
output unambiguous even in the presence of file names with funny
characters.

A previous iteration of this diff was improved by benno@ and tedu@ and
discussed also with sthen@ and deraadt@.  deraadt@ also improved the
manpage changes in this version of the diff.

OK deraadt@

2 years agodrm/amd/display: Don't reinitialize DMCUB on s0ix resume
jsg [Sun, 26 Jun 2022 10:51:11 +0000 (10:51 +0000)]
drm/amd/display: Don't reinitialize DMCUB on s0ix resume

From Nicholas Kazlauskas
7fd1d002852f93f5c03b3188f585245c50b52aea in linux 5.15.y/5.15.50
79d6b9351f086e0f914a26915d96ab52286ec46c in mainline linux

2 years agogc trust, it's never set.
florian [Sun, 26 Jun 2022 09:43:39 +0000 (09:43 +0000)]
gc trust, it's never set.
OK beck

2 years agoWait for autoconf interfaces to come up in netstart(8) instead of
florian [Sun, 26 Jun 2022 09:36:13 +0000 (09:36 +0000)]
Wait for autoconf interfaces to come up in netstart(8) instead of
rc(8). This makes tunnel interfaces work that depend on working
autoconf interfaces.
OK deraadt

2 years agoStart network auto configuration daemons earlier so that tunnel
florian [Sun, 26 Jun 2022 08:08:23 +0000 (08:08 +0000)]
Start network auto configuration daemons earlier so that tunnel
interfaces can depend on dhcp or slaac.
dhcpleased needs /var mounted so pull that up, we do not support /var
on nfs.
With & OK deraadt, earlier version OK sthen

2 years agosync with arm64.html
jsg [Sun, 26 Jun 2022 07:15:49 +0000 (07:15 +0000)]
sync with arm64.html

2 years agoDelete trailing whitespace. No code change.
mlarkin [Sun, 26 Jun 2022 07:14:55 +0000 (07:14 +0000)]
Delete trailing whitespace. No code change.

2 years agovmd: create a copy of bios at 4g boundary
dv [Sun, 26 Jun 2022 06:49:09 +0000 (06:49 +0000)]
vmd: create a copy of bios at 4g boundary

Newer Linux kernels call into the bios to perform a reboot and our
version of SeaBIOS assumes there's a "copy" of the bios ending at
4g. When SeaBIOS reads from this area, since vmd doesn't perform
mmio yet, guests terminate with an unhandled fault.

Carve out some space ending at 4g and copy the bios there. Technically
we could load garbage there, but give SeaBIOS what it wants for
now.

ok mlarkin@

2 years agocatch up on some country name changes
deraadt [Sun, 26 Jun 2022 06:28:51 +0000 (06:28 +0000)]
catch up on some country name changes

2 years agoallow HW_USERMEM64 in sysctl pledge
jsg [Sun, 26 Jun 2022 06:11:49 +0000 (06:11 +0000)]
allow HW_USERMEM64 in sysctl pledge

chromium loads vulkan when going to chrome://gpu
anv, the Intel vulkan driver in Mesa uses HW_USERMEM64

ok sthen@ deraadt@

2 years agoPignatoro -> Pignataro
jsg [Sun, 26 Jun 2022 05:54:38 +0000 (05:54 +0000)]
Pignatoro -> Pignataro

2 years agoCLang -> Clang
jsg [Sun, 26 Jun 2022 05:24:06 +0000 (05:24 +0000)]
CLang -> Clang

2 years agoRemove unused VOP_POLL().
visa [Sun, 26 Jun 2022 05:20:42 +0000 (05:20 +0000)]
Remove unused VOP_POLL().

OK mpi@

2 years agowhitespace
tb [Sun, 26 Jun 2022 04:14:43 +0000 (04:14 +0000)]
whitespace

2 years agoUse in_addr for AF_INET.
mbuhl [Sat, 25 Jun 2022 20:33:40 +0000 (20:33 +0000)]
Use in_addr for AF_INET.
OK bluhm

2 years agoDon't add unknown filetypes to the entity queue. Otherwise we bail out
tb [Sat, 25 Jun 2022 20:25:43 +0000 (20:25 +0000)]
Don't add unknown filetypes to the entity queue. Otherwise we bail out
without good reason. Regression introduced in a recent refactoring found
by job

ok claudio job

2 years agoMove leaf certificate checks to the last thing after chain validation.
beck [Sat, 25 Jun 2022 20:01:43 +0000 (20:01 +0000)]
Move leaf certificate checks to the last thing after chain validation.

While seemingly illogical and not what is done in Go's validator, this
mimics OpenSSL's behavior so that callback overrides for the expiry of
a certificate will not "sticky" override a failure to build a chain.

ok jsing@

2 years agoSince 128bit addressing is not enough add some addition 32bit of
claudio [Sat, 25 Jun 2022 19:21:27 +0000 (19:21 +0000)]
Since 128bit addressing is not enough add some addition 32bit of
scope_id to struct kroute6 to make link local addresses work.
OK tb@

2 years agoIncrease the auto partitioner's maximum /usr size to 30G.
mbuhl [Sat, 25 Jun 2022 19:19:39 +0000 (19:19 +0000)]
Increase the auto partitioner's maximum /usr size to 30G.
OK bluhm, otto, deraadt

2 years agoAdd some airports I've landed airplanes at.
mlarkin [Sat, 25 Jun 2022 18:51:52 +0000 (18:51 +0000)]
Add some airports I've landed airplanes at.

2 years agoUse ints for boolean values.
jsing [Sat, 25 Jun 2022 17:43:56 +0000 (17:43 +0000)]
Use ints for boolean values.

Switch to using ints for boolean values and use 0 or 1 for constructed,
rather than using 0 the ASN.1 tag encoded value (1 << 5).

ok tb@

2 years agoAdd HFE in Ahnui, China.
mbuhl [Sat, 25 Jun 2022 16:48:57 +0000 (16:48 +0000)]
Add HFE in Ahnui, China.
I flew from there to Xi'an in 2019.

2 years agoReuse ASN1_INTEGER functions for ASN1_ENUMERATED_{get,set}()
jsing [Sat, 25 Jun 2022 16:15:18 +0000 (16:15 +0000)]
Reuse ASN1_INTEGER functions for ASN1_ENUMERATED_{get,set}()

Instead of having a separate get/set implementation, reuse the ASN1_INTEGER
code. Also prepare to provide ASN1_ENUMERATED_{get,set}_int64().

ok beck@ tb@

2 years agoCheck pointer argument after {d2i,i2d}_ASN1_{BIT_STRING,BOOLEAN,INTEGER}()
jsing [Sat, 25 Jun 2022 15:49:28 +0000 (15:49 +0000)]
Check pointer argument after {d2i,i2d}_ASN1_{BIT_STRING,BOOLEAN,INTEGER}()

2 years agoAdd regress for ASN1_INTEGER_{get,set}_{u,}int64()
jsing [Sat, 25 Jun 2022 15:41:14 +0000 (15:41 +0000)]
Add regress for ASN1_INTEGER_{get,set}_{u,}int64()

2 years agoRewrite ASN1_INTEGER_{get,set}() using CBS/CBB
jsing [Sat, 25 Jun 2022 15:39:12 +0000 (15:39 +0000)]
Rewrite ASN1_INTEGER_{get,set}() using CBS/CBB

In the process, prepare to provide ASN1_INTEGER_{get,set}_{u,}int64().

ok beck@ tb@

2 years agoremove unused struct members
florian [Sat, 25 Jun 2022 15:38:22 +0000 (15:38 +0000)]
remove unused struct members

2 years agoSimplify ASN1_INTEGER_cmp()
jsing [Sat, 25 Jun 2022 14:22:54 +0000 (14:22 +0000)]
Simplify ASN1_INTEGER_cmp()

ok beck@ tb@

2 years agoAdd regress for ASN1_INTEGER_cmp()
jsing [Sat, 25 Jun 2022 13:57:17 +0000 (13:57 +0000)]
Add regress for ASN1_INTEGER_cmp()

2 years agoIf an .Xr macro contains a section argument, write an aria-label attribute
schwarze [Sat, 25 Jun 2022 12:44:12 +0000 (12:44 +0000)]
If an .Xr macro contains a section argument, write an aria-label attribute
such that users of screen readers aren't forced to listen to lengthy and
distracting readings like "mdoc, left parenthesis, 7, right parenthesis".

Based on a patch from Anna Vyalkova <cyber at sysrq dot in>,
significantly tweaked by me.

2 years agoremove some unused code and uneeded includes
jsg [Sat, 25 Jun 2022 12:14:18 +0000 (12:14 +0000)]
remove some unused code and uneeded includes
ok beck@ florian@

2 years agoRemove a bunch of unused DNS_RDATASETATTR_ #defines and mop up.
florian [Sat, 25 Jun 2022 10:20:29 +0000 (10:20 +0000)]
Remove a bunch of unused DNS_RDATASETATTR_ #defines and mop up.
OK sthen, beck

2 years agoWe do not order RRsets and we are not interested in partial RRsets.
florian [Sat, 25 Jun 2022 09:40:20 +0000 (09:40 +0000)]
We do not order RRsets and we are not interested in partial RRsets.
OK sthen

2 years agoImprove accessibility of -T html -O toc output by using the <nav> element
schwarze [Fri, 24 Jun 2022 11:15:19 +0000 (11:15 +0000)]
Improve accessibility of -T html -O toc output by using the <nav> element
in the DPUB-ARIA doc-toc role.
Patch from Anna Vyalkova <cyber at sysrq dot in> slightly tweaked by me.

This is hopefully the start of a collaboration to improve accessibility
of Unix manual pages using the WAI-ARIA, HTML-ARIA, and DPUB-ARIA standards.
Progress appears to be possible without changing *anything* with respect to
the way manual pages are written.  Instead, it seems sufficient to properly
translate semantic cues already implied by existing mdoc(7) markup into the
appropriate HTML elements and ARIA attributes.  Overall, the total length
of HTML output is likely to increase slightly, but not much.

2 years agoRoll back previous KEX changes as they aren't safe until
dtucker [Fri, 24 Jun 2022 10:45:06 +0000 (10:45 +0000)]
Roll back previous KEX changes as they aren't safe until
compat_pkalg_proposal and friends always allocate their returned
strings.  Reported by Qualys.

2 years agoUse IN6_IS_ADDR_MC_NODELOCAL() instead of IN6_IS_ADDR_MC_INTFACELOCAL().
claudio [Fri, 24 Jun 2022 10:36:53 +0000 (10:36 +0000)]
Use IN6_IS_ADDR_MC_NODELOCAL() instead of IN6_IS_ADDR_MC_INTFACELOCAL().
It seems that IN6_IS_ADDR_MC_NODELOCAL() is the official name of this
nightmare and therefor more portable.
OK tb@

2 years agoDon't leak the strings allocated by order_hostkeyalgs() and
dtucker [Fri, 24 Jun 2022 04:37:00 +0000 (04:37 +0000)]
Don't leak the strings allocated by order_hostkeyalgs() and
list_hostkey_types() that are passed to compat_pkalg_proposal().
Part of github PR#324 from ZoltanFridrich, ok djm@

2 years agomake it clear that RekeyLimit applies to both transmitted and
djm [Fri, 24 Jun 2022 04:27:14 +0000 (04:27 +0000)]
make it clear that RekeyLimit applies to both transmitted and
received data. GHPR#328 from Jan Pazdziora

2 years agoUse dynamic linking correctly. bntest and bn_to_string need static linking.
tb [Thu, 23 Jun 2022 18:09:19 +0000 (18:09 +0000)]
Use dynamic linking correctly. bntest and bn_to_string need static linking.

2 years agoMove struct kif from bgpd.h to kroute.c
claudio [Thu, 23 Jun 2022 13:09:03 +0000 (13:09 +0000)]
Move struct kif from bgpd.h to kroute.c

The only user of struct kif was the session engine for the 'depend on'
feature. Switch the imsg exchange to a new struct session_dependon and
rename the IMSG as well.
OK tb@

2 years agofmt_timeframe() cleanup. Remove the ring buffer, it is not required.
claudio [Thu, 23 Jun 2022 12:40:32 +0000 (12:40 +0000)]
fmt_timeframe() cleanup. Remove the ring buffer, it is not required.
Ensure that the time_t is positive and print increadibly long timeframes
of over 19 years just as weeks.
OK tb@

2 years agoFix comments
claudio [Thu, 23 Jun 2022 10:22:23 +0000 (10:22 +0000)]
Fix comments

2 years agoThanks IPv6 for being extra complex. Recover scope_id for link local addrs.
claudio [Thu, 23 Jun 2022 09:54:31 +0000 (09:54 +0000)]
Thanks IPv6 for being extra complex. Recover scope_id for link local addrs.
OK tb@

2 years agoungate DMA clock on >= tgp to avoid packet loss on Alder Lake
jsg [Thu, 23 Jun 2022 09:47:04 +0000 (09:47 +0000)]
ungate DMA clock on >= tgp to avoid packet loss on Alder Lake
chicken bit set in linux but not documented anywhere I can find
ok claudio@

2 years agoadd tgp and adp mac types and change from reusing cnp
jsg [Thu, 23 Jun 2022 09:38:28 +0000 (09:38 +0000)]
add tgp and adp mac types and change from reusing cnp
ok claudio@

2 years agoReplace struct kroute_node and kroute6_node with direct versions of
claudio [Thu, 23 Jun 2022 07:43:37 +0000 (07:43 +0000)]
Replace struct kroute_node and kroute6_node with direct versions of
struct kroute and kroute6.

Rename knexthop_node to knexthop as well. Mostly mechanical but fix
at least one log format string to have the correct order of arguments.

OK tb@

2 years agoregen
jsg [Thu, 23 Jun 2022 00:32:06 +0000 (00:32 +0000)]
regen

2 years agoadd some intel bluetooth ids
jsg [Thu, 23 Jun 2022 00:31:37 +0000 (00:31 +0000)]
add some intel bluetooth ids

0x0032 Typhoon Peak (AX210, AX1675)
0x0033 Garfield Peak (AX211, AX411, AX1690, AX1675)
0x0035 Madison Peak
0x07da Jackson Peak (2230, 6235)
0x07dc Wilkins Peak (7260)
0x0aa7 Sandy Peak (3168)
0x0aaa Jefferson Peak (9461, 9462, 9560)

2 years agodrm/amd/display: Cap OLED brightness per max frame-average luminance
jsg [Wed, 22 Jun 2022 23:00:02 +0000 (23:00 +0000)]
drm/amd/display: Cap OLED brightness per max frame-average luminance

From Roman Li
8720414b51d43a407dc6e7d7d70cebd459b0b93b in linux 5.15.y/5.15.49
4fd17f2ac0aa4e48823ac2ede5b050fb70300bf4 in mainline linux

2 years agodrm/i915/reset: Fix error_state_read ptr + offset use
jsg [Wed, 22 Jun 2022 22:55:56 +0000 (22:55 +0000)]
drm/i915/reset: Fix error_state_read ptr + offset use

From Alan Previn
f4c5eba87675a07a6c28cdaca7366aeb4258ec78 in linux 5.15.y/5.15.49
c9b576d0c7bf55aeae1a736da7974fa202c4394d in mainline linux

2 years agodrm/amdkfd: add pinned BOs to kfd_bo_list
jsg [Wed, 22 Jun 2022 22:53:12 +0000 (22:53 +0000)]
drm/amdkfd: add pinned BOs to kfd_bo_list

From Lang Yu
4a0d2797918c87e30193167a2da6a743aa2cddc1 in linux 5.15.y/5.15.49
4fac4fcf4500bce515b0f32195e7bb86aa0246c6 in mainline linux

2 years agodrm/amdkfd: Use mmget_not_zero in MMU notifier
jsg [Wed, 22 Jun 2022 22:50:55 +0000 (22:50 +0000)]
drm/amdkfd: Use mmget_not_zero in MMU notifier

From Philip Yang
09c5cdbc62d99fc6306a21b24b60eb11a3bd0963 in linux 5.15.y/5.15.49
fa582c6f3684ac0098a9d02ddf0ed52a02b37127 in mainline linux