eric [Wed, 18 Sep 2019 11:26:30 +0000 (11:26 +0000)]
Implement server certificate validation in smtp(1).
Check certificate against MX name in smtpd(8) mta.
ok gilles@
rob [Wed, 18 Sep 2019 11:00:46 +0000 (11:00 +0000)]
Correct spelling in comment.
martijn [Wed, 18 Sep 2019 10:03:55 +0000 (10:03 +0000)]
Let snmpd's regress test make use of our very own brand new SNMPv3/USM
support in snmp(1).
martijn [Wed, 18 Sep 2019 09:59:05 +0000 (09:59 +0000)]
Add support for some HP LaserJet systems. These systems don't return the
boots and time on probing, but only return those on a fully encrypted
packet. Add a minor workaround for these systems.
Feedback and OK jmatthew@
martijn [Wed, 18 Sep 2019 09:54:36 +0000 (09:54 +0000)]
Add support for SNMPv3/USM privacy.
net-snmp's -3K is supported via the -K parameter, -3K is not supported.
Feedback and OK jmatthew@
martijn [Wed, 18 Sep 2019 09:52:47 +0000 (09:52 +0000)]
Add support for SNMPv3/USM authentication.
net-snmp's -3k is supported via the -k parameter, -3m is not supported.
Feedback and OK jmatthew@
martijn [Wed, 18 Sep 2019 09:48:14 +0000 (09:48 +0000)]
Initial SNMPv3/USM support.
This commit only implements noAuthNoPriv.
Feedback and OK jmatthew@
martijn [Wed, 18 Sep 2019 09:44:38 +0000 (09:44 +0000)]
Move snmp packaging and unpackaging to their own function.
In preparation for SNMPv3/USM support.
Feedback and OK jmatthew@
solene [Wed, 18 Sep 2019 08:39:06 +0000 (08:39 +0000)]
Correct sysctl section is 2
ok jmc millert
solene [Wed, 18 Sep 2019 08:38:06 +0000 (08:38 +0000)]
Add explanation about the default value of sysctl key
machdep.pwraction
ok jmc millert
bluhm [Tue, 17 Sep 2019 22:24:08 +0000 (22:24 +0000)]
Rsyslogd TLS client side is unreliable. Disable compatiblity test.
bluhm [Tue, 17 Sep 2019 21:57:24 +0000 (21:57 +0000)]
Send ping6 fragment that ends behind ipv6 max packet size.
sthen [Tue, 17 Sep 2019 16:19:35 +0000 (16:19 +0000)]
merge 4.2.2
kn [Mon, 16 Sep 2019 20:49:28 +0000 (20:49 +0000)]
Zap unused h_errno
Revision 1.84 removed the last user; no object change.
kn [Mon, 16 Sep 2019 19:39:47 +0000 (19:39 +0000)]
Simplify function detection
To determine which "function" (get, set, ...) is requested, use getopt(3)'s
result directly as ndp(8) does instead of translating everyting into
internal F_* defines and back again.
Avoids one level of indirection, chops 22 lines of code and brings both
tools closer together.
OK bluhm
espie [Mon, 16 Sep 2019 17:30:16 +0000 (17:30 +0000)]
fix lex build to actually get assert under proper conditions.
from Michael Mikonos
okay millert@
krw [Mon, 16 Sep 2019 16:34:14 +0000 (16:34 +0000)]
Update list of device types with combination of FreeBSD and
SPC-5. Add/Fix comments.
jsg [Mon, 16 Sep 2019 15:29:48 +0000 (15:29 +0000)]
drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV
From Ville Syrjala
057cdb6f0f47c643905df5557fdf9d56f46d2931 in linux 4.19.y/4.19.73
a8f196a0fa6391a436f63f360a1fb57031fdf26c in mainline linux
jsg [Mon, 16 Sep 2019 15:27:54 +0000 (15:27 +0000)]
drm/amdgpu/{uvd,vcn}: fetch ring's read_ptr after alloc
From Shirish S
f276beb324cc1c60dc3495dc03a927a70c1aa5c7 in linux 4.19.y/4.19.73
517b91f4cde3043d77b2178548473e8545ef07cb in mainline linux
jsg [Mon, 16 Sep 2019 15:26:20 +0000 (15:26 +0000)]
drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2)
From Louis Li
7abeffff7bc33f86da68ca3bfc0fee881b3ab7de in linux 4.19.y/4.19.73
ce0e22f5d886d1b56c7ab4347c45b9ac5fcc058d in mainline linux
jsg [Mon, 16 Sep 2019 15:24:29 +0000 (15:24 +0000)]
drm/amdkfd: Add missing Polaris10 ID
From Kent Russell
90772cf588380e6253b8d820ed6c3a7933950181 in linux 4.19.y/4.19.73
0a5a9c276c335870a1cecc4f02b76d6d6f663c8b in mainline linux
jsg [Mon, 16 Sep 2019 15:22:46 +0000 (15:22 +0000)]
drm/i915: Sanity check mmap length against object size
From Chris Wilson
fba4f7c118e4a8c0eb23e8eccaca1f1a30892506 in linux 4.19.y/4.19.73
000c4f90e3f0194eef218ff2c6a8fd8ca1de4313 in mainline linux
jsg [Mon, 16 Sep 2019 15:20:57 +0000 (15:20 +0000)]
drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set
From Joonas Lahtinen
6423a2ad57097eb29758afa87f9c8b5b4fd06c1b in linux 4.19.y/4.19.73
ebfb6977801da521d8d5d752d373a187e2a2b9b3 in mainline linux
jsg [Mon, 16 Sep 2019 15:18:48 +0000 (15:18 +0000)]
drm/vblank: Allow dynamic per-crtc max_vblank_count
From Ville Syrjala
2b4f567912ad5f6653c557e424ee1bf85d8b6266 in linux 4.19.y/4.19.73
ed20151a7699bb2c77eba3610199789a126940c4 in mainline linux
jsg [Mon, 16 Sep 2019 15:16:47 +0000 (15:16 +0000)]
drm/i915: Cleanup gt powerstate from gem
From Chris Wilson
d88b01d04c6a16dee1fa172db5064af2768b33a7 in linux 4.19.y/4.19.73
30b710840e4b9c9699d3d4b33fb19ad8880d4614 in mainline linux
jsg [Mon, 16 Sep 2019 15:14:54 +0000 (15:14 +0000)]
drm/i915: Restore sane defaults for KMS on GEM error load
From Chris Wilson
b185bde520d5feb8fc750107d4cda32262fd92bf in linux 4.19.y/4.19.73
7ed43df720c007d60bee6d81da07bcdc7e4a55ae in mainline linux
jsg [Mon, 16 Sep 2019 15:12:36 +0000 (15:12 +0000)]
drm/amd/dm: Understand why attaching path/tile properties are needed
From Lyude Paul
016218ef6bb057ac494ea59caeb928492c2fcb6e in linux 4.19.y/4.19.73
04ac4b0ed412f65230b456fcd9aa07e13befff89 in mainline linux
jsg [Mon, 16 Sep 2019 15:10:56 +0000 (15:10 +0000)]
drm/amd/pp: Fix truncated clock value when set watermark
From Rex Zhu
853dc0759586fb6a8cb3b2a659493d63796fe0f1 in linux 4.19.y/4.19.73
4d454e9ffdb1ef5a51ebc147b5389c96048db683 in mainline linux
jsg [Mon, 16 Sep 2019 15:08:41 +0000 (15:08 +0000)]
powerplay: Respect units on max dcfclk watermark
From David Francis
5faabd22ed64df5c581f5224fcdbf822ab60a152 in linux 4.19.y/4.19.73
f191415b24a3ad3fa22088af7cd7fc328a2f469f in mainline linux
jsg [Mon, 16 Sep 2019 15:07:03 +0000 (15:07 +0000)]
drm/i915: Rename PLANE_CTL_DECOMPRESSION_ENABLE
From Dhinakaran Pandiyan
8ccbb1d24c26ab7cf1bcd94d5cd75377bea95ec0 in linux 4.19.y/4.19.73
53867b46fa8443713b3aee520d6ca558b222d829 in mainline linux
jsg [Mon, 16 Sep 2019 15:04:35 +0000 (15:04 +0000)]
drm/i915: Fix intel_dp_mst_best_encoder()
From Lyude Paul
4b2dfc0e2d44e7fdd8fd5d6b1d25eef0c10cf3f7 in linux 4.19.y/4.19.73
a9f9ca33d1fe9325f414914be526c0fc4ba5281c in mainline linux
jsg [Mon, 16 Sep 2019 15:01:14 +0000 (15:01 +0000)]
drm/amdgpu: Update gc_9_0 golden settings.
From Feifei Xu
8e91cc7f7f916d5ce310026591d549aa5bf5952d in linux 4.19.y/4.19.73
c55045adf7210d246a016c961916f078ed31a951 in mainline linux
jsg [Mon, 16 Sep 2019 14:59:24 +0000 (14:59 +0000)]
drm/amdgpu/gfx9: Update gfx9 golden settings.
From Feifei Xu
bcc3bd761ab5f2d4539f396a1fd7d0c7dbd955c9 in linux 4.19.y/4.19.73
54d682d9a5b357eb711994fa94ef1bc44d7ce9d9 in mainline linux
jsg [Mon, 16 Sep 2019 14:57:34 +0000 (14:57 +0000)]
drm/i915: Re-apply "Perform link quality check, unconditionally during long pulse"
From Jan-Marek Glogowski
c09d675f294b64c607ed87c946698836db2b9530 in linux 4.19.y/4.19.73
3cf71bc9904d7ee4a25a822c5dcb54c7804ea388 in mainline linux
nicm [Mon, 16 Sep 2019 13:27:14 +0000 (13:27 +0000)]
Change menu key bindings to Up and Down and also close it on any mouse
press if opened by key.
kettenis [Mon, 16 Sep 2019 11:49:05 +0000 (11:49 +0000)]
Add RK3399 GMAC clock.
djm [Mon, 16 Sep 2019 03:23:02 +0000 (03:23 +0000)]
Allow testing signature syntax and validity without verifying that
a signature came from a trusted signer. To discourage accidental or
unintentional use, this is invoked by the deliberately ugly option name
"check-novalidate"
from Sebastian Kinne
nicm [Sun, 15 Sep 2019 21:42:57 +0000 (21:42 +0000)]
Add push-default and pop-default in styles to change the default colours
and attributes and use them to restore the previous behaviour of
window-status-style being the default for window-status-format in the
status line. From John Drouhard in GitHub issue 1912.
rob [Sun, 15 Sep 2019 19:23:29 +0000 (19:23 +0000)]
Add support for binary protocol health checking. Feedback and guidance from
benno@ and reky@. Man page tweaks from jmc@.
ok benno@
kettenis [Sun, 15 Sep 2019 15:52:14 +0000 (15:52 +0000)]
Mask all MMC interrupts. This prevents an interrupt storm when one of the
counters reaches the half-way point (i.e. after receiving 2GB of packet
data). Fixes the problem discovered and reported by kurt@
ok jsg@
krw [Sun, 15 Sep 2019 15:00:30 +0000 (15:00 +0000)]
With the recent fixes to SCSI version detection we reproduced a
problem encountered by FreeBSD and Linux when they started to try
issuing READ CAPACITY 16 commands to 'newer' devices. i.e. some USB
devices return bad data instead of an error when they can't handle the
command.
Reproduce the FreeBSD solution (r233746 by mav@) by issuing READ
CAPACITY 16 commands only to devices that claim to be REALLY new
(a.k.a. newer than SPC-2, a.k.a. newer than SCSI-3), or which indicate
they really are bigger than can be reported via READ CAPACITY 10.
Should fix some USB devices claiming to have 71,776,119,061,217,281 or
33,601,071,049,867,265 sectors.
kettenis [Sun, 15 Sep 2019 12:25:40 +0000 (12:25 +0000)]
Add ttyC4 to lost of devices to change when logging in on ttyC0 (and in
some cases also the serial console) such that X can use it as its VT
when running without root privileges.
ok jsg@, matthieu@
kn [Sun, 15 Sep 2019 12:06:20 +0000 (12:06 +0000)]
Use (egress) in nat-to example
Without parentheses, this rule evaluates to the static list of
addresses at loadtime; this can be a problem when the machine's
network is not fully established when pf.conf is loaded.
From pf.conf(5):
When the interface name is surrounded by parentheses, the rule is
automatically updated whenever the interface changes its address.
The ruleset does not need to be reloaded.
This is especially useful with NAT.
This syncs vmctl(8) with the VMM FAQ.
Pointed out by Matthias Schmidt, thanks!
visa [Sun, 15 Sep 2019 07:28:04 +0000 (07:28 +0000)]
Xr cn30xxgmx 4
visa [Sun, 15 Sep 2019 07:25:18 +0000 (07:25 +0000)]
sync
visa [Sun, 15 Sep 2019 07:23:38 +0000 (07:23 +0000)]
Add manual pages for cn30xxgmx(4) and octpip(4).
visa [Sun, 15 Sep 2019 07:15:14 +0000 (07:15 +0000)]
Attach packet interfaces to octpip to use fdt.
visa [Sun, 15 Sep 2019 06:57:05 +0000 (06:57 +0000)]
Add a driver for the packet input processing unit. For now, the purpose
of this piece of code is to facilitate the use of fdt.
visa [Sun, 15 Sep 2019 06:48:29 +0000 (06:48 +0000)]
Add the pip unit into the fdt blob.
jmatthew [Sun, 15 Sep 2019 01:57:19 +0000 (01:57 +0000)]
Implement hardware vlan tagging. Packets delivered to virtual functions
get the tag stripped and copied into the rx descriptor unconditionally,
so for symmetry we should tag outgoing packets with the tx descriptor.
schwarze [Sun, 15 Sep 2019 00:08:46 +0000 (00:08 +0000)]
Fix line breaking in no-fill mode (.Bd -unfilled/<pre>),
which apparently didn't work since the .Pp/<p> reorg.
The new logic is more similar to what the terminal formatter does:
1. Before a node that starts a new mdoc(7) input line,
start a new HTML output line.
2. An empty input line or a .Pp causes an empty output line.
3. Nothing needs to be done at the end of a node.
Severe misformatting was reported in table(5) by
Edgar Pettijohn <edgar at pettijohn dash web dot com> on misc@.
semarie [Sat, 14 Sep 2019 17:47:00 +0000 (17:47 +0000)]
correct some unveil(2) violations due to "login.conf.db" access (the .db version
of "login.conf"), and stat(2) on _PATH_MASTERPASSWD_LOCK (via pw_mkdb(3)).
problem initially noted by myself for passwd(1)
millert@ reported similar problem on chpass(1), su(1), doas(1) and encrypt(1)
mestre@ noted chpass(1) too
ok mestre@ millert@
krw [Sat, 14 Sep 2019 13:30:48 +0000 (13:30 +0000)]
Typo in comment. scsi_size() is actually sd_size().
otto [Sat, 14 Sep 2019 13:16:50 +0000 (13:16 +0000)]
Add comment line saying S is described vaguely on purpose.
Prompted by guenther@
kn [Sat, 14 Sep 2019 11:38:46 +0000 (11:38 +0000)]
Support quoted SSIDs
Instead of ignoring SSIDs containing whitespaces, slightly adjust the
commands to take everything in between 'nwid ' and ' chan' as SSID; if it
has double quotes at start *and* end, simply remove those.
This enables users to select networks such as "Unitymedia WifiSpot" and
"FRITZ!Box 7490" for example which are common among the quoted ones at
least in germany.
The only SSIDs known to break this are those containing " chan " as this
substring is used as delimiter. Picking "some chan 4 me" would therefore
result in _nwid being assigned '"some' (literal double quote), but that
seems reasonably acceptable compared to the current behaviour.
Input rpe
"Yes please" stsp
gilles [Sat, 14 Sep 2019 06:20:27 +0000 (06:20 +0000)]
in mta_relay_cmp() properly check that authlabel or backupname are not NULL
before comparing their value with other relays
diff from Caspar Schutijser <caspar@schutijser.com>
schwarze [Fri, 13 Sep 2019 19:23:57 +0000 (19:23 +0000)]
oops, commit correct version of the expected results
schwarze [Fri, 13 Sep 2019 19:18:48 +0000 (19:18 +0000)]
Improve validation of function names:
1. Relax checking to accept function types of the form
"ret_type (fname)(args)" (suggested by Yuri Pankov <yuripv dot net>).
2. Tighten checking to require the closing parenthesis.
schwarze [Fri, 13 Sep 2019 15:47:47 +0000 (15:47 +0000)]
fix markup of the return types of function pointers;
found with mandoc -T lint
djm [Fri, 13 Sep 2019 04:52:34 +0000 (04:52 +0000)]
clarify that IdentitiesOnly also applies to the default ~/.ssh/id_*
keys; bz#3062
dtucker [Fri, 13 Sep 2019 04:36:43 +0000 (04:36 +0000)]
Plug mem leaks on error paths, based in part on github pr#120 from
David Carlier. ok djm@.
djm [Fri, 13 Sep 2019 04:31:19 +0000 (04:31 +0000)]
whitespace
djm [Fri, 13 Sep 2019 04:27:35 +0000 (04:27 +0000)]
allow %n to be expanded in ProxyCommand strings
From Zachary Harmany via github.com/openssh/openssh-portable/pull/118
ok dtucker@
djm [Fri, 13 Sep 2019 04:07:42 +0000 (04:07 +0000)]
clarify that ConnectTimeout applies both to the TCP connection and to
the protocol handshake/KEX. From Jean-Charles Longuet via Github PR140
dlg [Fri, 13 Sep 2019 01:47:51 +0000 (01:47 +0000)]
avoid the use of a custom bpf copy function.
currently pflog prepares a pfloghdr and then passes that, the
original mbuf, and a pflog copy function to bpf. bpf matches on the
original packet, and then if bpf decides it wants the packet it
uses the custom function to copy the packet for userland to read.
the custom function patches the packet so you see the packet after
nat and rdr and af-to and so on. however, this means bpf is matching
on the original packet and reporting a patched packet.
this is also the only use of a custom copy function in the tree,
and it relies on some behaviours that should be internal to bpf to
get away with it.
this pulls the patching up so it's done before the packet is given
to bpf. this simplifies the code a bit, and means bpf is now matching
on and reporting the same packet. removing this custom copy code
also means that we can get rid of that functionality from the
bpf_mtap_hdr function.
ok sashan@ visa@
dlg [Fri, 13 Sep 2019 01:31:24 +0000 (01:31 +0000)]
tweak tun/tap kn_data to be more consistent with everything else.
for EVFILT_READ, kn_data is now like FIONREAD and reports how many
bytes there are to read. previously it would report how many packets
were available to read, which is not something i've seen anywhere
else.
for EVFILT_WRITE, report the max number of bytes a write can do.
previously it was if_mtu bytes, now it is if_hdrlen + if_hardmtu
bytes, which is the same as what the write path uses as it's maximum
message size.
discussed with and ok visa@
jmatthew [Thu, 12 Sep 2019 22:22:53 +0000 (22:22 +0000)]
SAS3 controllers have a maximum size for sgl chain segments, and the
controller faults if you exceed it, so instead use multiple chain
segments in the same request frame layout.
tested on a SAS3008 (max chain size 8), where MAXPHYS io would occasionally
cause faults
ok dlg@ krw@
stsp [Thu, 12 Sep 2019 12:55:06 +0000 (12:55 +0000)]
Make wireless drivers call if_input() only once per interrupt.
This reduces drops caused by the ifq pressure drop mechanism and hence
increases throughput. Such drops are visible with e.g. 'netstat -dnI iwm0'.
Not all affected drivers have been tested yet but these changes are largely
mechanical and should be safe. As usual, please report any regressions.
With help from dlg@ and mpi@
Problem found by robert@
Tested by robert, jmc, Tracey Emer, Matthias Schmidt, florian, Björn Ketelaars
ok mpi@
florian [Thu, 12 Sep 2019 08:14:26 +0000 (08:14 +0000)]
Update to libunbound 1.9.3
Heavy lifting by sthen with updating in-tree unbound(8)
jmatthew [Thu, 12 Sep 2019 04:23:59 +0000 (04:23 +0000)]
Use unsigned types for queue counters and mask them appropriately before
writing to doorbell registers. Now it should work for more than a couple
of billion packets. While here, actually set up the timeout to refill
the rx ring if it's empty, and remove the unused rx consumer counter.
chris@ reminded me this was still a problem
ok dlg@
jsg [Thu, 12 Sep 2019 03:17:12 +0000 (03:17 +0000)]
Prepare for the emac/gmac "phy" property being renamed to "phy-handle"
in a large number of allwinner device trees in arm-soc/for-next which is
expected to be merged into linux 5.4-rc1.
ok kettenis@
dlg [Thu, 12 Sep 2019 02:02:54 +0000 (02:02 +0000)]
pf_test can return PF_PASS, but set the mbuf to NULL.
check for this like every other caller to pf_test so we don't go
on to pass NULL to m_prepend. that causes a fault.
chris@ gave me an excellent bug report. -msave-args is pretty great.
dlg [Thu, 12 Sep 2019 01:28:29 +0000 (01:28 +0000)]
knf for the switch statement in tun_dev_kqfilter.
no functional change.
dlg [Thu, 12 Sep 2019 01:27:02 +0000 (01:27 +0000)]
let userland write up to hardmtu bytes, not just mtu bytes.
this brings tun in line with pretty much every other driver we have
where we let interfaces rx whatever they can.
while here make sure userland provides enough bytes for the link
header, which is the 4 byte address family for tun(4), and an
ethernet header for tap(4).
dlg [Thu, 12 Sep 2019 01:25:14 +0000 (01:25 +0000)]
we don't need to cast hdr arguments to caddr_t for bpf_mtap_hdr anymore.
pointed out by naddy@
dlg [Thu, 12 Sep 2019 01:17:38 +0000 (01:17 +0000)]
make bpf_mtap_hdr take a const void *, not a caddr_t.
this makes it easier to call at least, and makes it consistent with
bpf_tap_hdr.
ok stsp@ sashan@
gilles [Wed, 11 Sep 2019 20:06:26 +0000 (20:06 +0000)]
when replace tree_xget() with tree_get() ... actually use tree_get() so the
change actually does something.
anton [Wed, 11 Sep 2019 16:55:53 +0000 (16:55 +0000)]
vm_teardown() must be serialized since it modifies the global vmm_softc
structure. Therefore grab the appropriate lock before calling the same
function. This issue has been known for a while and reported before but
lacking a way to easily reproduce it; until syzkaller came up with a
reproducer.
ok mlarkin@
Reported-by: syzbot+39ff060789d93be0084f@syzkaller.appspotmail.com
martijn [Wed, 11 Sep 2019 15:20:30 +0000 (15:20 +0000)]
CDP's Native-VLAN-ID does not need a substraction.
While here add a link to the documentation.
OK sthen@
beck [Wed, 11 Sep 2019 15:01:40 +0000 (15:01 +0000)]
Fix unveil for relative lookups in the non AT_FDCWD case
Issue spotted by Benjamin Baier <programmer@netzbasis.de> with relative
path lookups from openat(2). Lacking a current working directory unveil,
operations using the *at functions could fail when not crossing an unveil,
since an initial covering unveil was not found.
This corrects this so we walk up from the directory vnode to find a
covering unveil at the start of non AT_FDCWD lookups, and adds regress
for this case.
ok bluhm@
sthen [Wed, 11 Sep 2019 14:13:27 +0000 (14:13 +0000)]
merge unbound 1.9.3
sthen [Wed, 11 Sep 2019 14:11:35 +0000 (14:11 +0000)]
import unbound 1.9.3, thanks gonzalo@ dtucker@ for tests.
kettenis [Wed, 11 Sep 2019 12:30:34 +0000 (12:30 +0000)]
Make it possible to free overlapping regions (effectively allowing
freeing parts of regions that are already free) when the EX_CONFLICTOK
flag is passed to extent_free.
ok jmatthew@
stsp [Wed, 11 Sep 2019 08:59:12 +0000 (08:59 +0000)]
Ignore empty Tx queue slots in iwn_tx_done(). Prevents a NULL dereference.
crash reported by mlarkin@
nicm [Wed, 11 Sep 2019 06:43:17 +0000 (06:43 +0000)]
Add window_marked_flag, GitHub issue 1887.
martijn [Wed, 11 Sep 2019 04:19:19 +0000 (04:19 +0000)]
Sprinkle around some __attribute__((__format__ (printf(...))).
OK gilles@
krw [Tue, 10 Sep 2019 23:07:46 +0000 (23:07 +0000)]
Shuffle a couple of lines to make the device -> st_softc dances look
the same.
bluhm [Tue, 10 Sep 2019 22:43:29 +0000 (22:43 +0000)]
Fix heap overflow in libexpat 2.2.7 triggered by XML_GetCurrentLineNumber
(or XML_GetCurrentColumnNumber), and deny internal entities closing
the doctype; CVE-2019-15903
fixed in commit
c20b758c332d9a13afbbb276d30db1d183a85d43
OK tb@
krw [Tue, 10 Sep 2019 22:39:13 +0000 (22:39 +0000)]
No need to check for ST_MOUNTED before calling st_mount_tape() AND in
st_mount_tape(). Just keep the latter.
st_mount_tape() is called from inside stopen() which has already found
the relevant st_softc(), incremented the device reference count, and
checked if it is dying. No need to repeast that in
st_mount_tape(). Just pass the st_softc.
bluhm [Tue, 10 Sep 2019 22:35:07 +0000 (22:35 +0000)]
If rsyslogd is not installed, explicitly skip these syslogd
compatibility tests. Fix some races and increase the timeout for
rsyslog tests.
bluhm [Tue, 10 Sep 2019 19:58:13 +0000 (19:58 +0000)]
Fix more races in syslogd test.
schwarze [Tue, 10 Sep 2019 19:44:32 +0000 (19:44 +0000)]
document EVP_PKEY_CTX_get_signature_md(3);
jsing@ provided it in evp.h rev. 1.77
anton [Tue, 10 Sep 2019 19:36:12 +0000 (19:36 +0000)]
Do not decrement the number of VMs counter twice in one of vm_create()
error paths. If creation of the first VM fails, the counter will wrap
around to a huge value. The same value could later be passed to malloc()
through vm_get_info() causing a panic.
While here, only decrement the same counter in vm_teardown() if the VM
has a valid ID. Otherwise it has not been accounted for.
ok mlarkin@
Reported-by: syzbot+d325bc014d9eca9f36d0@syzkaller.appspotmail.com
nicm [Tue, 10 Sep 2019 19:35:34 +0000 (19:35 +0000)]
Make client exit if pane where input is going is closed.
gilles [Tue, 10 Sep 2019 19:30:12 +0000 (19:30 +0000)]
do not use tree_xget() between filters resume as a session may legitimately
go away due to a disconnection before a filter responds.
diff from martijn@, committing on his behalf
krw [Tue, 10 Sep 2019 19:04:36 +0000 (19:04 +0000)]
return is not a funciton call. Avoid pointless parenthesis.
bluhm [Tue, 10 Sep 2019 19:01:24 +0000 (19:01 +0000)]
Test that lastcomm(1) shows M flag if the stack pointer was not in
stack memory.
krw [Tue, 10 Sep 2019 18:45:45 +0000 (18:45 +0000)]
Explicitly check error results against 0.
bluhm [Tue, 10 Sep 2019 18:35:17 +0000 (18:35 +0000)]
Fix race in syslogd test.
millert [Tue, 10 Sep 2019 18:20:07 +0000 (18:20 +0000)]
Skip fcodes parent dir permission check if writing to stdout.
Fixes building the locate db from /etc/weekly.
OK semarie@ kn@ kmos@
projects / openbsd / log