openbsd
3 years agoadd missing sudo
anton [Sat, 2 Oct 2021 07:07:08 +0000 (07:07 +0000)]
add missing sudo

3 years agohook up btrace
anton [Sat, 2 Oct 2021 07:06:13 +0000 (07:06 +0000)]
hook up btrace

3 years agoDynamically allocate encoded HashKnownHosts and free as appropriate.
dtucker [Sat, 2 Oct 2021 03:17:01 +0000 (03:17 +0000)]
Dynamically allocate encoded HashKnownHosts and free as appropriate.
Saves 1k of static storage and prevents snprintf "possible truncation"
warnings from newer compilers (although in this case it's false positive
since the actual sizes are limited by the output size of the SHA1).
ok djm@

3 years agoAdd test for ssh hashed known_hosts handling.
dtucker [Fri, 1 Oct 2021 05:20:20 +0000 (05:20 +0000)]
Add test for ssh hashed known_hosts handling.

3 years agounbreak FIDO sk-ed25519 key enrollment for OPENSSL=no builds;
djm [Fri, 1 Oct 2021 04:50:36 +0000 (04:50 +0000)]
unbreak FIDO sk-ed25519 key enrollment for OPENSSL=no builds;
ok dtucker@

3 years agoamd/display: downgrade validation failure log level
jsg [Fri, 1 Oct 2021 04:41:10 +0000 (04:41 +0000)]
amd/display: downgrade validation failure log level

From Simon Ser
526261c1b706fec0ea80ce9f14c8fe8468bee34d in linux 5.10.y/5.10.70
7bbee36d71502ab9a341505da89a017c7ae2e6b2 in mainline linux

3 years agotreewide: Change list_sort to use const pointers
jsg [Fri, 1 Oct 2021 04:36:38 +0000 (04:36 +0000)]
treewide: Change list_sort to use const pointers

From Sami Tolvanen
55e6f8b3c0f5cc600df12ddd0371d2703b910fd7 in linux 5.10.y/5.10.70
4f0f586bf0c898233d8f316f471a21db2abd522d in mainline linux

3 years agodrm/amd/pm: Update intermediate power state for SI
jsg [Fri, 1 Oct 2021 04:25:17 +0000 (04:25 +0000)]
drm/amd/pm: Update intermediate power state for SI

From Lijo Lazar
68d4fbe6220cd1f3d07cab0a4901e62f8c12cc68 in linux 5.10.y/5.10.70
ab39d3cef526ba09c4c6923b4cd7e6ec1c5d4faa in mainline linux

3 years agoMark another test as failing with the legacy verifier.
jsing [Thu, 30 Sep 2021 18:28:38 +0000 (18:28 +0000)]
Mark another test as failing with the legacy verifier.

This test now fails with the legacy verifier, due to
X509_V_FLAG_TRUSTED_FIRST being enabled by default.

3 years agoEnable X509_V_FLAG_TRUSTED_FIRST by default in the legacy verifier.
jsing [Thu, 30 Sep 2021 18:23:46 +0000 (18:23 +0000)]
Enable X509_V_FLAG_TRUSTED_FIRST by default in the legacy verifier.

In order to work around the expired DST Root CA X3 certficiate, enable
X509_V_FLAG_TRUSTED_FIRST in the legacy verifier. This means that the
default chain provided by Let's Encrypt will stop at the ISRG Root X1
intermediate, rather than following the DST Root CA X3 intermediate.

Note that the new verifier does not suffer from this issue, so only a
small number of things will hit this code path.

ok millert@ robert@ tb@

3 years agodelete expired DST Root CA X3 to work around bugs various libraries
deraadt [Thu, 30 Sep 2021 18:16:11 +0000 (18:16 +0000)]
delete expired DST Root CA X3 to work around bugs various libraries
ok sthen, beck, jsing, tb, etc etc

3 years agoQuote SUDO value during propagation, allowing `doas -n' to be correctly
anton [Thu, 30 Sep 2021 17:57:44 +0000 (17:57 +0000)]
Quote SUDO value during propagation, allowing `doas -n' to be correctly
honored which I use while running regress. The same principle is already
applied to the PYTHON variable here.

3 years agoIn iwm(4) and iwx(4), prevent attemps to transition towards the same state
stsp [Thu, 30 Sep 2021 09:27:47 +0000 (09:27 +0000)]
In iwm(4) and iwx(4), prevent attemps to transition towards the same state
in cases where this would result in a redundant or illegal state transition.

jmc@ observed ASSOC -> ASSOC transitions which would result in a hang.
Such transitions are invalid and never intentionally triggered by net80211.
They imply a race between the Rx interrupt handler and the newstate task.

Tested by jmc@ on AX200 for a week and several known issues seem to be fixed.

3 years agoFix up whitespace left by previous change removing privsep. No other
dtucker [Thu, 30 Sep 2021 05:26:26 +0000 (05:26 +0000)]
Fix up whitespace left by previous change removing privsep.  No other
changes.

3 years agoRemove (almost all) references to privsep. This removes several do..while
dtucker [Thu, 30 Sep 2021 05:20:08 +0000 (05:20 +0000)]
Remove (almost all) references to privsep.  This removes several do..while
loops but does not change the indentation of the now-shallower loops,
which will be done in a separate whitespace-only commit to keep changes
of style and substance separate.

3 years agoUse "skip" instead of "fatal" if SUDO isn't set for the *-command tests.
dtucker [Thu, 30 Sep 2021 04:22:50 +0000 (04:22 +0000)]
Use "skip" instead of "fatal" if SUDO isn't set for the *-command tests.
This means running "make tests" without SUDO set will perform all of the
tests that it can instead of failing on the ones it cannot run.

3 years agoDon't constrain -b specified block count or block size to be greater than 63.
krw [Wed, 29 Sep 2021 22:55:40 +0000 (22:55 +0000)]
Don't constrain -b specified block count or block size to be greater than 63.
Allow any value from 1 to UINT32_MAX.

MBR boot partition sizes/offsets are completely machine dependent.

Pointed out by loongson.

3 years agoGlobal variables to track initialisation behave poorly with MP.
bluhm [Wed, 29 Sep 2021 22:08:13 +0000 (22:08 +0000)]
Global variables to track initialisation behave poorly with MP.
Move the tdb pool init into an init function.
OK mvs@

3 years agoAdd support for Cannon Lake H and Tiger Lake H platforms.
kettenis [Wed, 29 Sep 2021 22:03:33 +0000 (22:03 +0000)]
Add support for Cannon Lake H and Tiger Lake H platforms.

ok jcs@

3 years agosync
jsg [Wed, 29 Sep 2021 13:03:47 +0000 (13:03 +0000)]
sync

3 years agodrm/amdgpu: add some additional RDNA2 PCI IDs
jsg [Wed, 29 Sep 2021 13:02:29 +0000 (13:02 +0000)]
drm/amdgpu: add some additional RDNA2 PCI IDs

From Alex Deucher
8f0c93f454bd7ab04eaec1d3c436c4c7c2378f07 in mainline linux

3 years agoregen
jsg [Wed, 29 Sep 2021 12:18:40 +0000 (12:18 +0000)]
regen

3 years agointel 0x5915 is a kaby lake graphics id not imaging unit
jsg [Wed, 29 Sep 2021 12:18:08 +0000 (12:18 +0000)]
intel 0x5915 is a kaby lake graphics id not imaging unit
fix strings in some other graphics devices as well

3 years agoregen
jsg [Wed, 29 Sep 2021 10:28:07 +0000 (10:28 +0000)]
regen

3 years agoadd amdgpu and inteldrm devices matched by 5.15 drm without force probe
jsg [Wed, 29 Sep 2021 10:27:21 +0000 (10:27 +0000)]
add amdgpu and inteldrm devices matched by 5.15 drm without force probe
includes amd codenames for codenames so subject to change

3 years agoadd some debug output showing how many key file/command lines
djm [Wed, 29 Sep 2021 01:33:32 +0000 (01:33 +0000)]
add some debug output showing how many key file/command lines
were processed. Useful to see whether a file or command actually has
keys present

3 years agoTest certificate hostkeys held in ssh-agent too. Would have caught
djm [Wed, 29 Sep 2021 01:32:21 +0000 (01:32 +0000)]
Test certificate hostkeys held in ssh-agent too. Would have caught
regression fixed in sshd r1.575

ok markus@

3 years agoRevert part of the previous diff to fix a regression (another endless loop)
schwarze [Tue, 28 Sep 2021 17:06:17 +0000 (17:06 +0000)]
Revert part of the previous diff to fix a regression (another endless loop)
reported by Michael <Stapelberg at Debian> in the Linux md(4) manual.

The reason the colwidth[] array is needed is not that it stores widths
different from those in tbl->cols[].width, but that only part of the
columns participate in the comparisons, i.e. only those intersecting
at least one span the still requires width distribution.

3 years agotestcase for the avahi/avahi-lib/avahi-glib/cups update
espie [Tue, 28 Sep 2021 14:46:54 +0000 (14:46 +0000)]
testcase for the avahi/avahi-lib/avahi-glib/cups update

3 years agoMake prototype for rijndaelEncrypt match function including the bounds.
dtucker [Tue, 28 Sep 2021 11:14:50 +0000 (11:14 +0000)]
Make prototype for rijndaelEncrypt match function including the bounds.
Fixes error in portable where GCC>=11 takes notice of the bounds.
ok deraadt@

3 years agoImport regenerated moduli.
dtucker [Tue, 28 Sep 2021 11:10:05 +0000 (11:10 +0000)]
Import regenerated moduli.

3 years agoFix timeout behaviour bug introduced in 1.241.
claudio [Tue, 28 Sep 2021 10:00:18 +0000 (10:00 +0000)]
Fix timeout behaviour bug introduced in 1.241.
If the timespec is zero-valued sys___thrsigdivert() should just do the
check for pending signals and return immediatly.
OK kettenis@

3 years agoTurns out that older SPARC CPUs (like the UltraSPARC II) do report an exact
kettenis [Tue, 28 Sep 2021 08:56:15 +0000 (08:56 +0000)]
Turns out that older SPARC CPUs (like the UltraSPARC II) do report an exact
fault address, while others (like the UltraSPARC T2) report an inexact
address.  Deal with this by using the EXPADDR_MASK on both the expected and
the reported fault address.

ok bluhm@

3 years agoUse -Wl,-z,wxneeded instead of -z wxneeded such that this builds with base
kettenis [Tue, 28 Sep 2021 08:51:17 +0000 (08:51 +0000)]
Use -Wl,-z,wxneeded instead of -z wxneeded such that this builds with base
gcc.

ok patrick@, millert@, jca@

3 years agoLink libclang_rt.profile to the build.
fcambus [Tue, 28 Sep 2021 08:35:06 +0000 (08:35 +0000)]
Link libclang_rt.profile to the build.

"go for it" kettenis@

3 years agoadd missing sudo
anton [Tue, 28 Sep 2021 05:40:38 +0000 (05:40 +0000)]
add missing sudo

3 years agoRemove recent changes used to unblock the signal undergoing testing, I solved it
anton [Tue, 28 Sep 2021 05:39:24 +0000 (05:39 +0000)]
Remove recent changes used to unblock the signal undergoing testing, I solved it
by changing my regress environment instead. This reduces the delta to the NetBSD
upstream.

3 years agoMark "failures" volatile to avoid a problem with sigsetjmp/siglongjmp.
millert [Mon, 27 Sep 2021 19:33:58 +0000 (19:33 +0000)]
Mark "failures" volatile to avoid a problem with sigsetjmp/siglongjmp.
This makes the test pass on sparc64 where the compiler may otherwise
store the variable in the strlcpy/strlcat function's delay slot.
OK kettenis@

3 years agoDo not call recalculate_sizes while clearing a client session because it
nicm [Mon, 27 Sep 2021 19:12:00 +0000 (19:12 +0000)]
Do not call recalculate_sizes while clearing a client session because it
needs to loop over the clients, instead do it after all clients are
cleared. Fixes a crash reported by martijn@ when a session with multiple
clients attached is destroyed, but there are other sessions so tmux does
not entirely exit. ok deraadt

3 years agoThese tests pass in a few seconds. Remove REGRESS_SLOW_TARGETS.
bluhm [Mon, 27 Sep 2021 18:47:46 +0000 (18:47 +0000)]
These tests pass in a few seconds.  Remove REGRESS_SLOW_TARGETS.

3 years agoBring this regress into nicer shape. Add all recent architectures.
bluhm [Mon, 27 Sep 2021 18:27:14 +0000 (18:27 +0000)]
Bring this regress into nicer shape.  Add all recent architectures.
For me it is still unclear what should actually be tested.  It runs
MAKEDEV, stores the result into an outfile and checks nothing.

3 years agoReturn 0 from main() otherwise the exit code is garbage on sparc64.
bluhm [Mon, 27 Sep 2021 18:10:24 +0000 (18:10 +0000)]
Return 0 from main() otherwise the exit code is garbage on sparc64.
Collect status of the child process to detect test failures.
OK tb@

3 years agoMake t_gettimeofday pass on sparc64.
mbuhl [Mon, 27 Sep 2021 14:07:44 +0000 (14:07 +0000)]
Make t_gettimeofday pass on sparc64.
OK bluhm@

3 years agodrm/amdgpu: Disable PCIE_DPM on Intel RKL Platform
jsg [Mon, 27 Sep 2021 05:05:57 +0000 (05:05 +0000)]
drm/amdgpu: Disable PCIE_DPM on Intel RKL Platform

From Koba Ko
45bd9dd1bee8aedc4cbd409b1ba7f9b4f941eea6 in linux 5.10.y/5.10.69
b3dc549986eb7b38eba4a144e979dc93f386751f in mainline linux

3 years agodrm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10
jsg [Mon, 27 Sep 2021 04:47:02 +0000 (04:47 +0000)]
drm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10

From Ernst Sjoestrand
8f95553f0016c3994d9c022b5af4a1a433d6714e in linux 5.10.y/5.10.68
67a44e659888569a133a8f858c8230e9d7aad1d5 in mainline linux

3 years agodrm/amd/display: Update bounding box states (v2)
jsg [Mon, 27 Sep 2021 04:16:18 +0000 (04:16 +0000)]
drm/amd/display: Update bounding box states (v2)

From Jerry (Fangzhi) Zuo
b80a99e048275d566d63f2463a2f640065ccbf75 in linux 5.10.y/5.10.67
a7a9d11e12fcc32160d55e8612e72e5ab51b15dc in mainline linux

3 years agodrm/amd/display: Update number of DCN3 clock states
jsg [Mon, 27 Sep 2021 04:14:09 +0000 (04:14 +0000)]
drm/amd/display: Update number of DCN3 clock states

From Aurabindo Pillai
583c4f3d09c3e980a683b59febbb0c775bdff1db in linux 5.10.y/5.10.67
0bbf06d888734041e813b916d7821acd4f72005a in mainline linux

3 years agodrm/amdgpu: Fix BUG_ON assert
jsg [Mon, 27 Sep 2021 04:11:34 +0000 (04:11 +0000)]
drm/amdgpu: Fix BUG_ON assert

From Andrey Grodzovsky
7b1abace16a9dff6804d4eb94750beb60d9502b4 in linux 5.10.y/5.10.67
ea7acd7c5967542353430947f3faf699e70602e5 in mainline linux

3 years agodrm/dp_mst: Fix return code on sideband message failure
jsg [Mon, 27 Sep 2021 04:09:05 +0000 (04:09 +0000)]
drm/dp_mst: Fix return code on sideband message failure

From Rajkumar Subbiah
bb693c114e8b53e3e0b8228be218d907d35959a5 in linux 5.10.y/5.10.67
92bd92c44d0d9be5dcbcda315b4be4b909ed9740 in mainline linux

3 years agodrm/amdkfd: Account for SH/SE count when setting up cu masks.
jsg [Mon, 27 Sep 2021 04:06:35 +0000 (04:06 +0000)]
drm/amdkfd: Account for SH/SE count when setting up cu masks.

From Sean Keely
0e9f4492219f8f991163691aad43897da8478c4e in linux 5.10.y/5.10.67
1ec06c2dee679e9f089e78ed20cb74ee90155f61 in mainline linux

3 years agodrm/display: fix possible null-pointer dereference in dcn10_set_clock()
jsg [Mon, 27 Sep 2021 04:04:35 +0000 (04:04 +0000)]
drm/display: fix possible null-pointer dereference in dcn10_set_clock()

From Tuo Li
83449db3aac0895147eac723bf23d0739720b968 in linux 5.10.y/5.10.67
554594567b1fa3da74f88ec7b2dc83d000c58e98 in mainline linux

3 years agogpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in...
jsg [Mon, 27 Sep 2021 04:02:04 +0000 (04:02 +0000)]
gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port()

From Tuo Li
2254383788ff93a423e20068333b9f8376d56cb4 in linux 5.10.y/5.10.67
a211260c34cfadc6068fece8c9e99e0fe1e2a2b6 in mainline linux

3 years agodrm/amd/display: fix incorrect CM/TF programming sequence in dwb
jsg [Mon, 27 Sep 2021 03:59:34 +0000 (03:59 +0000)]
drm/amd/display: fix incorrect CM/TF programming sequence in dwb

From Roy Chan
63ebc1f1df813ebb40d19449c356480555008166 in linux 5.10.y/5.10.67
781e1e23131cce56fb557e6ec2260480a6bd08cc in mainline linux

3 years agodrm/amd/display: fix missing writeback disablement if plane is removed
jsg [Mon, 27 Sep 2021 03:57:30 +0000 (03:57 +0000)]
drm/amd/display: fix missing writeback disablement if plane is removed

From Roy Chan
d763afc4ea2b251217ec87cf4c1e006c9f0aef99 in linux 5.10.y/5.10.67
82367e7f22d085092728f45fd5fbb15e3fb997c0 in mainline linux

3 years agodrm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex
jsg [Mon, 27 Sep 2021 03:54:37 +0000 (03:54 +0000)]
drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex

From Anson Jacob
6f51f4241253974a6a147daecd5c20beb7450330 in linux 5.10.y/5.10.67
1a394b3c3de2577f200cb623c52a5c2b82805cec in mainline linux

3 years agodrm/amdgpu: Fix a printing message
jsg [Mon, 27 Sep 2021 03:52:13 +0000 (03:52 +0000)]
drm/amdgpu: Fix a printing message

From Oak Zeng
a5999d18a8d8c4c767c60d67fe6a6fe51b9a203d in linux 5.10.y/5.10.67
95f71f12aa45d65b7f2ccab95569795edffd379a in mainline linux

3 years agodrm/amd/display: Fix timer_per_pixel unit error
jsg [Mon, 27 Sep 2021 03:47:24 +0000 (03:47 +0000)]
drm/amd/display: Fix timer_per_pixel unit error

From Oliver Logush
f462a39eb8334b52e332cc0cbffb705660b7d87b in linux 5.10.y/5.10.67
23e55639b87fb16a9f0f66032ecb57060df6c46c in mainline linux

3 years agodrm: protect drm_master pointers in drm_lease.c
jsg [Mon, 27 Sep 2021 03:44:40 +0000 (03:44 +0000)]
drm: protect drm_master pointers in drm_lease.c

From Desmond Cheong Zhi Xi
34609faad0c9f9f08d4b59d25c94b78bf5710d93 in linux 5.10.y/5.10.67
56f0729a510f92151682ff6c89f69724d5595d6e in mainline linux

3 years agodrm: serialize drm_file.master with a new spinlock
jsg [Mon, 27 Sep 2021 03:34:34 +0000 (03:34 +0000)]
drm: serialize drm_file.master with a new spinlock

From Desmond Cheong Zhi Xi
06a553a99bacb00d3bc25f79e75c8e0fbf7a5025 in linux 5.10.y/5.10.67
0b0860a3cf5eccf183760b1177a1dcdb821b0b66 in mainline linux

3 years agodrm: avoid blocking in drm_clients_info's rcu section
jsg [Mon, 27 Sep 2021 03:23:16 +0000 (03:23 +0000)]
drm: avoid blocking in drm_clients_info's rcu section

From Desmond Cheong Zhi Xi
54e51d288b38377e8cd645a83e1ad08cc9d20ccc in linux 5.10.y/5.10.67
5eff9585de220cdd131237f5665db5e6c6bdf590 in mainline linux

3 years agodrm/amdgpu: Fix amdgpu_ras_eeprom_init()
jsg [Mon, 27 Sep 2021 03:20:21 +0000 (03:20 +0000)]
drm/amdgpu: Fix amdgpu_ras_eeprom_init()

From Luben Tuikov
10a135969fd7419695c003ddb67ef8a7820a808b in linux 5.10.y/5.10.67
dce4400e6516d18313d23de45b5be8a18980b00e in mainline linux

3 years agoopenssh-8.8
djm [Sun, 26 Sep 2021 14:01:11 +0000 (14:01 +0000)]
openssh-8.8

3 years agoneed initgroups() before setresgid(); reported by anton@, ok deraadt@
djm [Sun, 26 Sep 2021 14:01:03 +0000 (14:01 +0000)]
need initgroups() before setresgid(); reported by anton@, ok deraadt@

3 years agoRevert '-b' change. Forgot required bsd.rd tweak.
krw [Sun, 26 Sep 2021 13:13:16 +0000 (13:13 +0000)]
Revert '-b' change. Forgot required bsd.rd tweak.

3 years ago'-g' no longer needs '-i'.
krw [Sun, 26 Sep 2021 12:39:25 +0000 (12:39 +0000)]
'-g' no longer needs '-i'.

No functional change.

3 years agoMBR partitions created with '-b' should be marked DOSACTIVE.
krw [Sun, 26 Sep 2021 12:24:53 +0000 (12:24 +0000)]
MBR partitions created with '-b' should be marked DOSACTIVE.
That's what 'bootable' means in the MBR world. GPT
partitions created by '-b' are unaffected.

Pointed out by kettenis@, obviating need for new option.

3 years agoFix a possible race condition in spc_msgin().
aoyama [Sat, 25 Sep 2021 23:53:35 +0000 (23:53 +0000)]
Fix a possible race condition in spc_msgin().

This comes from NetBSD:sys/dev/ic/mb89352.c fix by tsutsui:
http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/dev/ic/mb89352.c.diff?r1=1.57&r2=1.58&f=h

Tested on LUNA-88K2 by me.

3 years agoAdd $OpenBSD$ keyword and correct spelling.
aoyama [Sat, 25 Sep 2021 21:34:21 +0000 (21:34 +0000)]
Add $OpenBSD$ keyword and correct spelling.

3 years agoAdd gpiocharger(4) for arm64
kn [Sat, 25 Sep 2021 18:40:07 +0000 (18:40 +0000)]
Add gpiocharger(4) for arm64

This driver provides support for battery chargers connected to GPIO pins,
such as those found on the Pinebook Pro.

OK kettenis

3 years agoAdd gpioleds(4) for arm64
kn [Sat, 25 Sep 2021 10:43:23 +0000 (10:43 +0000)]
Add gpioleds(4) for arm64

This driver provides support for LEDs connected to GPIO pins,
such as those found on the Pinebook Pro.

OK kettenis

3 years agoRSA/SHA-1 is not used by default anymore
kn [Sat, 25 Sep 2021 09:40:33 +0000 (09:40 +0000)]
RSA/SHA-1 is not used by default anymore

OK dtucker deraadt djm

3 years agoSimplify runAesCmacTest() by using EVP_DigestSign().
tb [Fri, 24 Sep 2021 20:48:23 +0000 (20:48 +0000)]
Simplify runAesCmacTest() by using EVP_DigestSign().

3 years agoReset the Tx timer when iwm(4) firmware sends a BA notification.
stsp [Fri, 24 Sep 2021 19:02:16 +0000 (19:02 +0000)]
Reset the Tx timer when iwm(4) firmware sends a BA notification.

This prevents a bogus "device timeout" if firmware sends a IWM_BA_NOTIF
instead of IWM_TX_CMD in order to let us know that a frame has been sent
on a Tx aggregation queue. Such behaviour was observed on iwx(4), and there
is reason to believe that iwm(4) might also be affected by this issue.

Tested by Jean-Michel Bessot on 7265 via bugs@ where this change seems
to prevent random device timeouts.
Tested by myself on 8265 with no apparent behaviour change seen.

3 years agoJordan now starts DST on February's last Thursday (was March).
millert [Fri, 24 Sep 2021 15:02:07 +0000 (15:02 +0000)]
Jordan now starts DST on February's last Thursday (was March).

3 years agoFix two bugs in m88k fcmp{,u} emulation.
aoyama [Fri, 24 Sep 2021 14:37:56 +0000 (14:37 +0000)]
Fix two bugs in m88k fcmp{,u} emulation.

- Use of goto will skip zeroing of 88110-specific comparison bits (bitn
  12-17) in some cases. (Move their zeroing closer to the point of
  their computation.)

- Computing of the "in interval" bits should not be performed when the
  S2 operand is negative.

Spotted by Tetsuya Isaki (nono project), suggested diff and description
from Miod Vallat.  Tested on the real hardware by Isaki and me.

3 years agoregen
kevlo [Fri, 24 Sep 2021 08:50:57 +0000 (08:50 +0000)]
regen

3 years agoAdd support for SIMCom SIM7600.
kevlo [Fri, 24 Sep 2021 05:25:37 +0000 (05:25 +0000)]
Add support for SIMCom SIM7600.
To issue AT commands (AT+CUSBPIDSWITCH=9003,1,1 and AT+CLANMODE=1) to
change to MBIM mode.

ok deraadt@

3 years agoSamoa no longer observes DST.
millert [Thu, 23 Sep 2021 21:37:34 +0000 (21:37 +0000)]
Samoa no longer observes DST.

3 years agoRemove wpath from secure mode pledge.
tobias [Thu, 23 Sep 2021 18:46:25 +0000 (18:46 +0000)]
Remove wpath from secure mode pledge.

Upstream removed history file support for secure mode. The history file
feature is off by default already, disallowing it altogether in secure
mode allows us to drop wpath.

Added a note about it to manual page.

ok benno, deraadt

3 years agoReset the Tx timer when iwx(4) firmware sends a BA notification.
stsp [Thu, 23 Sep 2021 16:27:58 +0000 (16:27 +0000)]
Reset the Tx timer when iwx(4) firmware sends a BA notification.

When multiple frames are sent in a batch on a Tx aggregation queue our
current firmware version does not provide the IWX_TX_CMD notification.
Older versions used to provide this (as observed on iwm(4) devices),
but our current firmware only sends IWX_BA_NOTIF.

This means we need to reset the Tx timer upon BA_NOTIF in order to
avoid a bogus "device timeout" trigger from our watchdog handler.
Do this as soon as the BA notification has been validated.

3 years agoAvoid a potential overread in x509_constraints_parse_mailbox()
jsing [Thu, 23 Sep 2021 15:49:48 +0000 (15:49 +0000)]
Avoid a potential overread in x509_constraints_parse_mailbox()

The length checks need to be >= rather than > in order to ensure the string
remains NUL terminated. While here consistently check wi before using it
so we have the same idiom throughout this function.

Issue reported by GoldBinocle on GitHub.

ok deraadt@ tb@

3 years agoRevert ieee80211_proto.c r1.97 (cvs commit ID 8vKZsdvvkjTr5BG5).
stsp [Thu, 23 Sep 2021 15:40:41 +0000 (15:40 +0000)]
Revert ieee80211_proto.c r1.97 (cvs commit ID 8vKZsdvvkjTr5BG5).

My assumption that frames which are buffered on the power save
queue were already encrypted was wrong. And the issue which this
change intended to fix is still present (reported by Mikolaj Kucharski).

3 years agoAdd support for Tx aggregation to the iwx(4) driver.
stsp [Thu, 23 Sep 2021 15:34:00 +0000 (15:34 +0000)]
Add support for Tx aggregation to the iwx(4) driver.

Throughput goes up to 100 Mbit/s under ideal conditions.

This is mostly working and stable, however rare occasional hangs may occur
where the device stops giving us interrupts for reasons which are not yet
understood.
In such cases ifconfig down/up will recover the interface. Regardless, this
code seems to be stable enough for remaining issues to be resolved in-tree.
My working assumption is that the remaining issues were always present but
only trigger under increased load when firmware is driven with Tx agg enabled.

Feedback is welcome, especially if stability issues turn out to be worse than
expected! As usual, please enable "ifconfig iwx0 debug" when reporting issues.

Tests on ax200/ax201:
myself, dv, hrvoje, Stefan Hagen, kevlo, Eric Auge, mlarkin, jmc, Mark Patruck

Of which only me and jmc have reported seeing a small amount of hangs during
continuous usage over about 2 weeks.

3 years agoAdd an ADDBA_OFFLOAD capability for wifi devices manage Tx block ack
stsp [Thu, 23 Sep 2021 15:13:47 +0000 (15:13 +0000)]
Add an ADDBA_OFFLOAD capability for wifi devices manage Tx block ack
sessions entirely in firmware. This will be used by iwx(4).

3 years agoRemove an unused variable and a pointless label.
tb [Thu, 23 Sep 2021 13:28:50 +0000 (13:28 +0000)]
Remove an unused variable and a pointless label.

ok inoguchi

3 years agoPlug leaks of buf flagged by LLVM scan-build.
tb [Thu, 23 Sep 2021 13:26:51 +0000 (13:26 +0000)]
Plug leaks of buf flagged by LLVM scan-build.

ok claudio

3 years agoif the key is a secret to be cleared with explicit_bzero, then the
deraadt [Wed, 22 Sep 2021 20:43:16 +0000 (20:43 +0000)]
if the key is a secret to be cleared with explicit_bzero, then the
length of that key is also a secret, may as well clear it also

3 years agouse mmap() instead of alloca(), so that argv memory overflow leading to
deraadt [Wed, 22 Sep 2021 20:40:06 +0000 (20:40 +0000)]
use mmap() instead of alloca(), so that argv memory overflow leading to
execve can be detected better
reported by Alejandro Colomar, ok millert

3 years agoenable POOL_DEBUG again.
benno [Wed, 22 Sep 2021 18:24:04 +0000 (18:24 +0000)]
enable POOL_DEBUG again.

3 years agowe are now working on 7.0-current
deraadt [Wed, 22 Sep 2021 18:21:35 +0000 (18:21 +0000)]
we are now working on 7.0-current

3 years agoAdjust handling of RIB_GENERIC_ADDPATH MRT messages. Parse it the way
claudio [Wed, 22 Sep 2021 18:17:49 +0000 (18:17 +0000)]
Adjust handling of RIB_GENERIC_ADDPATH MRT messages. Parse it the way
OpenBGPD and GoBGP dump so that it works with all the MRT implementations
out there supporting this.
While there do some additional minor cleanup.
OK deraadt@

3 years agoremove test traces committed by mistake
eric [Wed, 22 Sep 2021 17:19:58 +0000 (17:19 +0000)]
remove test traces committed by mistake

3 years agobump version to 7.0.0
eric [Wed, 22 Sep 2021 17:12:34 +0000 (17:12 +0000)]
bump version to 7.0.0

3 years agodecode srs-encoded address in the right place.
eric [Wed, 22 Sep 2021 17:11:35 +0000 (17:11 +0000)]
decode srs-encoded address in the right place.
fixes a bug where ruleset was not evaluated with the expanded address.

reported by Stefan Haller

ok millert@

3 years agosync table_db capabilities with table_static
eric [Wed, 22 Sep 2021 17:09:07 +0000 (17:09 +0000)]
sync table_db capabilities with table_static

ok millert@

3 years agoAdd a workaround for machines where the framebuffer size reported by the
kettenis [Wed, 22 Sep 2021 16:03:14 +0000 (16:03 +0000)]
Add a workaround for machines where the framebuffer size reported by the
hardware is incorrect.  In this case, make sure the amount of "stolen"
memory is at least as large as the EFI framebuffer such that the
driver doesn't use this memory until we've switched to the framebuffer
allocated by the amdgpu(4) driver.

Needs further investigation why the size reported by the hardware is
incorrect.

Tested by djm@
ok jsg@, deraadt@

3 years agoPrevent ucc keyboards from changing the wsmux keyboard layout.
anton [Wed, 22 Sep 2021 15:44:12 +0000 (15:44 +0000)]
Prevent ucc keyboards from changing the wsmux keyboard layout.

ok deraadt@

3 years agoFix command prompt with multiple prompts (add the result onto the list
nicm [Wed, 22 Sep 2021 15:21:44 +0000 (15:21 +0000)]
Fix command prompt with multiple prompts (add the result onto the list
again as we go along). ok deraadt

3 years agoAdd NUL termination to btfile content to avoid that strlcpy(3) reads
bluhm [Tue, 21 Sep 2021 21:33:35 +0000 (21:33 +0000)]
Add NUL termination to btfile content to avoid that strlcpy(3) reads
too much in btrace(8).
OK mpi@ deraadt@

3 years agoctfstrip uses objcopy behind the scenes, meaning objcopy must also
deraadt [Tue, 21 Sep 2021 21:19:20 +0000 (21:19 +0000)]
ctfstrip uses objcopy behind the scenes, meaning objcopy must also
be in base set, for KARL
spotted by pavel korovin