schwarze [Wed, 16 Aug 2023 13:50:05 +0000 (13:50 +0000)]
add the missing entry for EVP_CIPHER_CTX_ctrl(3) to the RETURN VALUES section
schwarze [Wed, 16 Aug 2023 13:47:18 +0000 (13:47 +0000)]
Describe more precisely how these functions are supposed to be used,
document the control operations supported by EVP_chacha20_poly1305(3),
and add the missing STANDARDS and HISTORY sections.
This replaces all text written by Matt Caswell and all text Copyrighted
by OpenSSL in the year 2019.
dv [Wed, 16 Aug 2023 13:07:11 +0000 (13:07 +0000)]
Backout changes for btrace(8) argN builtins.
Talking with mpi@, going to rework this to be part of the parser.
Reverts commit 0iIzGtIFgBXVfbNa.
tb [Wed, 16 Aug 2023 10:38:33 +0000 (10:38 +0000)]
Cosmetic fix for copy-pasto
jsg [Wed, 16 Aug 2023 09:51:39 +0000 (09:51 +0000)]
avoid bios sign msr on intel family < 6
the pentium msr list in the sdm does not include it
job [Wed, 16 Aug 2023 08:38:40 +0000 (08:38 +0000)]
ASPAs are AFI-agnostic
OK claudio@
claudio [Wed, 16 Aug 2023 08:29:41 +0000 (08:29 +0000)]
The per-AFI madness in ASPA was removed. So adjust this test here.
claudio [Wed, 16 Aug 2023 08:28:46 +0000 (08:28 +0000)]
Per-AFI ASPA provider was removed. Adjust expected result.
claudio [Wed, 16 Aug 2023 08:26:35 +0000 (08:26 +0000)]
Remove per-AFI ASPA handling in bgpd internals
With draft-ietf-sidrops-aspa-profile-16 and
draft-ietf-sidrops-aspa-verification-15 the AFI dependence of ASPA
records was dropped. So remove this complication form the code.
This only removes the AFI handling internally in bgpd but still allows
the old syntax in aspa-set tables. The optional address family is just
ignored and records are merged together.
For RTR sessions draft-ietf-sidrops-8210bis has not yet been updated so
right now we still handle RTR sessions as specified there. The IPv4 and
IPv6 ASPA entries are handled in two trees and merged together into one
AFI independent tree. This is the best we can do for now until IETF
updates draft-ietf-sidrops-8210bis.
OK tb@ job@
claudio [Wed, 16 Aug 2023 07:55:52 +0000 (07:55 +0000)]
Move SCHED_LOCK after sleep_signal_check.
sleep_signal_check() is there to look for pending signals / single thread
requests which were posted before sleep_setup() finished. Once p_stat
is set to SSLEEP the wakeup and delivery of signals is taken care of
by ptsignal and single_thread_set().
Moving the SCHED_LOCK further down allows to cleanup cursig() and to
remove a SCHED_LOCK recursion in single_thread_check().
OK mpi@
jsg [Wed, 16 Aug 2023 07:26:05 +0000 (07:26 +0000)]
avoid patch level msr on amd families < 0fh
Paul de Weerd reported it isn't implemented on ALIX with
cpu0: Geode(TM) Integrated Processor by AMD PCS ("AuthenticAMD" 586-class) 499 MHz, 05-0a-02
the earliest amd microcode update files I can find are for family 0fh (K8)
ok guenther@
jsg [Wed, 16 Aug 2023 04:07:37 +0000 (04:07 +0000)]
add Intel ARCH_CAP_GDS bits
mentioned in
https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/technical-documentation/gather-data-sampling.html
tb [Tue, 15 Aug 2023 21:05:44 +0000 (21:05 +0000)]
Add regress coverage for ASN1_STRING_cmp()
dv [Tue, 15 Aug 2023 20:51:45 +0000 (20:51 +0000)]
btrace(8): fix out of bounds read using argN in BEGIN/END.
The argN builtins aren't valid in BEGIN or END actions. The fake
probe number btrace uses to facilitate other valid builtins caused
an out of bound read of an array, producing a segfault.
Change the fake probe number to 0 as it's an unsigned int and check
for that condition.
Adds asserts near other probe array indexing to catch future issues.
ok kn@
tb [Tue, 15 Aug 2023 19:14:42 +0000 (19:14 +0000)]
Add some regress coverage for various ASN1_STRING types to codify some
quirks and invariants.
tb [Tue, 15 Aug 2023 18:05:15 +0000 (18:05 +0000)]
Zap extra parens
sthen [Tue, 15 Aug 2023 17:52:23 +0000 (17:52 +0000)]
sync
tb [Tue, 15 Aug 2023 17:40:06 +0000 (17:40 +0000)]
Fix typo in previous
tb [Tue, 15 Aug 2023 17:38:00 +0000 (17:38 +0000)]
Avoid undefined behavior with memcmp(NULL, x, 0) in ASN1_STRING_cmp()
ok jsing miod
jsg [Tue, 15 Aug 2023 14:37:26 +0000 (14:37 +0000)]
No MS-DOS filesystem support on amd64 floppy
miod [Tue, 15 Aug 2023 14:27:27 +0000 (14:27 +0000)]
No MS-DOS filesystem support on floppy anymore
jsg [Tue, 15 Aug 2023 14:24:53 +0000 (14:24 +0000)]
drop MSDOSFS from i386 floppy
sthen mentioned it is out of space. ok deraadt@
deraadt [Tue, 15 Aug 2023 13:50:53 +0000 (13:50 +0000)]
ldd can pledge "stdio rpath proc exec prot_exec". We can later bifurbicate
at the dlopen vs execve split, dropping either "proc" or "prot_exec".
ok gnezdo
sthen [Tue, 15 Aug 2023 12:37:58 +0000 (12:37 +0000)]
sync
tb [Tue, 15 Aug 2023 12:18:46 +0000 (12:18 +0000)]
Fix bug when using gzflush() with a very small buffer.
from upstream
schwarze [Tue, 15 Aug 2023 11:54:38 +0000 (11:54 +0000)]
SHA-3 is not a symmetric cipher.
Fix a copy and paste mistake that Ronald Tse introduced in 2017 even
though Richard Levitte and Bernd Edlinger reviewed his commit - and that
i unwittingly copied. Even in the OpenSSL 3 main trunk, it wasn't fixed
until 2022, and in OpenSSL-1.1.1, it is still wrong.
Unfortunately, we need to be really careful before believing anything
the OpenSSL documentation says...
schwarze [Tue, 15 Aug 2023 11:26:49 +0000 (11:26 +0000)]
Import the EVP_chacha20(3) manual page from the OpenSSL 1.1 branch,
which is still under a free license, to work on it in the tree.
The required content changes have not been done yet,
i only tweaked the markup and wording so far.
tb [Tue, 15 Aug 2023 11:20:57 +0000 (11:20 +0000)]
Avoid memcmp() with NULL pointer and 0 length
nicm [Tue, 15 Aug 2023 09:51:48 +0000 (09:51 +0000)]
Add meta bindings for status line menus as well as the existing pane one
for terminals which steal the mouse menu button.
dlg [Tue, 15 Aug 2023 09:46:30 +0000 (09:46 +0000)]
scrub the mbuf flowid for packets going out a sec interface.
maybe ipsec should do this for all packets it encapsulates.
tested by hrvoje
jsing [Tue, 15 Aug 2023 08:39:27 +0000 (08:39 +0000)]
Clean up alignment handling.
Instead of using HOST_{c2l,l2c} macros, provide and use
crypto_load_le32toh() and crypto_store_htole32(). In some cases just
use htole32() directly.
ok tb@
jsing [Tue, 15 Aug 2023 08:35:33 +0000 (08:35 +0000)]
Use MD5_LONG instead of unsigned int for consistency.
ok tb@
jsing [Tue, 15 Aug 2023 08:30:49 +0000 (08:30 +0000)]
Condition only on #ifdef MD5_ASM.
There are a bunch of unnecessary preprocessor directives - just condition
on MD5_ASM, the same as we do elsewhere.
ok tb@
miod [Tue, 15 Aug 2023 08:27:29 +0000 (08:27 +0000)]
Replace a bunch of (1 << 31) with (1U << 31)
tb [Tue, 15 Aug 2023 08:01:01 +0000 (08:01 +0000)]
fix openssl11 regress compilation
reminded by anton
miod [Tue, 15 Aug 2023 07:56:27 +0000 (07:56 +0000)]
Use the proper ofw node in com_fdt_attach(), likely a cut'n'paste error
from com_fdt_init_cons().
ok patrick@
nicm [Tue, 15 Aug 2023 07:01:47 +0000 (07:01 +0000)]
Add an option menu-selected-style to configure the currently selected
menu item, from Alexis Hildebrandt.
guenther [Tue, 15 Aug 2023 06:26:34 +0000 (06:26 +0000)]
Improve handling of dlopen(RTLD_TRACE) aka ldd, of a library that
is already loaded:
* add a 'trace' argument to _dl_show_objects() and exit the
walk-the-objects loop if you hit that traced object
* in dlopen(), pass the trace object to _dl_show_objects()
* also, invoke _dl_show_objects() + exit if the object was
already opened
* pass NULL to _dl_show_objects() for all the other calls
* oh hey, _dl_tracelib is now superfluous: _dl_show_objects()
should do the walk-the-objects loop only if trace is not NULL.
Problem noted by gnezdo@
ok millert@
guenther [Tue, 15 Aug 2023 06:23:31 +0000 (06:23 +0000)]
Skip the _dl_msyscall() invocation if tracing library loading.
Problem noted by gnezdo@
ok millert@
jsg [Tue, 15 Aug 2023 03:51:29 +0000 (03:51 +0000)]
make sure the end result is NULL if malloc failed
dlg [Tue, 15 Aug 2023 02:31:07 +0000 (02:31 +0000)]
sec_start needs to show bpf the packets going out.
from and ok goda@
requested by many
jsg [Tue, 15 Aug 2023 00:43:00 +0000 (00:43 +0000)]
spacial -> spatial
ok stsp@
tb [Mon, 14 Aug 2023 18:10:42 +0000 (18:10 +0000)]
Prepare tlsfuzzer.py for ports update
jsing [Mon, 14 Aug 2023 15:48:16 +0000 (15:48 +0000)]
Inline INIT_DATA_* defines.
ok tb@
jsing [Mon, 14 Aug 2023 15:26:01 +0000 (15:26 +0000)]
style(9)
schwarze [Mon, 14 Aug 2023 14:46:40 +0000 (14:46 +0000)]
Below SEE ALSO, point to all pages documenting the evp.h sub-library, and
also point to a selection of functions from other sub-libraries that rely
on evp.h objects, in particular on EVP_CIPHER, EVP_MD, and EVP_PKEY.
While here, merge a few trivial improvements to orthography and
punctuation from the OpenSSL 1.1 branch.
schwarze [Mon, 14 Aug 2023 14:22:32 +0000 (14:22 +0000)]
import EVP_sha3_224(3) from the OpenSSL 1.1 branch, which is still under
a free license, tweaked by me
miod [Mon, 14 Aug 2023 13:49:42 +0000 (13:49 +0000)]
Skip leading dash in kernel boot options instead of complaining it is an
unknown option character.
miod [Mon, 14 Aug 2023 12:03:12 +0000 (12:03 +0000)]
unreferneced -> unreferenced
tobhe [Mon, 14 Aug 2023 12:02:02 +0000 (12:02 +0000)]
Improve error message when if_indextoname() fails.
tobhe [Mon, 14 Aug 2023 11:55:03 +0000 (11:55 +0000)]
Add explicit NULL checks for sa_cp_addr and sa_cp_addr6.
anton [Mon, 14 Aug 2023 09:26:37 +0000 (09:26 +0000)]
Sync expected failures with reality. Recent libm changes caused
nearbyint_test.c to pass on amd64.
ok miod@
kn [Mon, 14 Aug 2023 08:56:20 +0000 (08:56 +0000)]
zap useless MAN bits
distrib/special/Makefile.inc sets MAN= NOMAN=1, thus setting MAN* in
distrib/special/*/Makefile is useless; no manuals in the installer.
disklabel(8) and fdisk(8) remain exceptions with their NOMAN handling
as they embed their manual for use with interactive commands.
OK miod
mpi [Mon, 14 Aug 2023 08:33:24 +0000 (08:33 +0000)]
Extend scheduler tracepoints to follow CPU jumping.
- Add two new tracpoints sched:fork & sched:steal
- Include selected CPU number in sched:wakeup
- Add sched:unsleep corresponding to sched:sleep which matches add/removal
of threads on the sleep queue
ok claudio@
tb [Mon, 14 Aug 2023 08:25:26 +0000 (08:25 +0000)]
Check SignedData and SignerInfo versions to be 3
This adds two missing checks required by RFC 6488, section 3.
ok job
miod [Mon, 14 Aug 2023 08:16:26 +0000 (08:16 +0000)]
More files need to be removed by make clean.
tb [Mon, 14 Aug 2023 08:07:27 +0000 (08:07 +0000)]
netcat: avoid issuing syscalls on fd -1
In case a socket error condition occurs, readwrite() invalidates the
corresponding fd. Later on, readwrite() may still issue a syscall on
it. Avoid that by adding a couple of checks for fd == -1.
Reported and fix suggested by Leah Neukirchen.
Fixes https://github.com/libressl/openbsd/issues/143
"looks right" deraadt
miod [Mon, 14 Aug 2023 07:42:34 +0000 (07:42 +0000)]
Remove non-MULTIPROCESSOR chunk defining copyin32 as copyin now that all
platforms provide it.
miod [Mon, 14 Aug 2023 07:40:08 +0000 (07:40 +0000)]
Add a copyin32() implementation.
djm [Mon, 14 Aug 2023 03:37:00 +0000 (03:37 +0000)]
add message number of SSH2_MSG_NEWCOMPRESS defined in RFC8308
miod [Sun, 13 Aug 2023 21:54:02 +0000 (21:54 +0000)]
The 8042 emulation found on Chromebooks does not support the RESET command,
for no good reason, and causes pckbc not to attach. However, sending a `get
keyboard id' works, so this can be used as a second check to give those
fawlty pieces of hardware a chance to work.
Based on a diff submitted by, and tested by, Vladimir 'phcoder' Serbinenko.
sashan [Sun, 13 Aug 2023 21:21:53 +0000 (21:21 +0000)]
Ignore failure when deleting regress/ttest anchor
in 'stamp-setup' target. Found by anton@.
anton [Sun, 13 Aug 2023 18:36:20 +0000 (18:36 +0000)]
remove by now unused test.sh script
anton [Sun, 13 Aug 2023 18:34:49 +0000 (18:34 +0000)]
Use a dedicated regress target for each test case.
ok gnezdo@
claudio [Sun, 13 Aug 2023 15:53:31 +0000 (15:53 +0000)]
Fix P_WSLEEP handling when continuing SSTOP-ed processes
When continuing a process on the sleep queue just let it switch to
p_stat = SSLEEP even when P_WSLEEP is set. Once a proc is SSTOP-ed
in sleep_finish() a valid sleep point has been reached and there is
no need to make the process runnable again (which results in some
hairy race conditions). Instead simply clear P_WSLEEP since a stopped
proc reached the sleep state and there is no race with wakeup() anymore.
OK mpi@
dv [Sun, 13 Aug 2023 13:19:23 +0000 (13:19 +0000)]
btrace(8): fix yacc reduce conflicts and undefined symbol warnings.
Define the STR symbol, used for the str function.
Tune the grammar, simplifying the 'pat' rule to 'expr'. Resolves
the reduce conflicts related to 'pat' and 'factor' both matching a
lone CSTRING token.
ok mpi@
tb [Sun, 13 Aug 2023 12:25:36 +0000 (12:25 +0000)]
sync with userland
tb [Sun, 13 Aug 2023 12:25:12 +0000 (12:25 +0000)]
Conditionally disable MSAN
from upstream
tb [Sun, 13 Aug 2023 12:09:14 +0000 (12:09 +0000)]
fix whitespace
jsg [Sun, 13 Aug 2023 10:40:45 +0000 (10:40 +0000)]
Revert "drm/i915: Disable DC states for all commits"
From Greg Kroah-Hartman
673cdde74fd13fff0acc4c6c41f5f949434156a5 in linux-6.1.y/6.1.45
jsg [Sun, 13 Aug 2023 10:36:26 +0000 (10:36 +0000)]
drm/amdgpu: Use apt name for FW reserved region
From Lijo Lazar
af7215182417c892e09bcb6829377ce5c69f127f in linux-6.1.y/6.1.45
db3b5cb64a9ca301d14ed027e470834316720e42 in mainline linux
jsg [Sun, 13 Aug 2023 10:33:48 +0000 (10:33 +0000)]
drm/amdgpu: Remove unnecessary domain argument
From Luben Tuikov
3d0a34c42f0d50c06ca21761d625a823e245118e in linux-6.1.y/6.1.45
3273f11675ef11959d25a56df3279f712bcd41b7 in mainline linux
jsg [Sun, 13 Aug 2023 10:30:28 +0000 (10:30 +0000)]
drm/amdgpu: add vram reservation based on vram_usagebyfirmware_v2_2
From Tong Liu01
526defeec474ea8002b8312b9c88f96fa1f85a48 in linux-6.1.y/6.1.45
4864f2ee9ee2acf4a1009b58fbc62f17fa086d4e in mainline linux
jsg [Sun, 13 Aug 2023 10:27:32 +0000 (10:27 +0000)]
drm/amd/display: skip CLEAR_PAYLOAD_ID_TABLE if device mst_en is 0
From Peichen Huang
56562676102e135e7aebada26c2aea146a5b5ad0 in linux-6.1.y/6.1.45
a1c9a1e27022d13c70a14c4faeab6ce293ad043b in mainline linux
jsg [Sun, 13 Aug 2023 10:25:34 +0000 (10:25 +0000)]
drm/amd/display: Ensure that planes are in the same order
From Rodrigo Siqueira
63eeb50fa11009cc4c82919b040c361c4ea0f14e in linux-6.1.y/6.1.45
bb46a6a9bab134b9d15043ea8fa9d6c276e938b8 in mainline linux
jsg [Sun, 13 Aug 2023 10:23:58 +0000 (10:23 +0000)]
drm/i915/gt: Cleanup aux invalidation registers
From Andi Shyti
37f6073f7db329c9db4357f82e565958fb64ea16 in linux-6.1.y/6.1.45
d14560ac1b595aa2e792365e91fea6aeaee66c2b in mainline linux
jmc [Sun, 13 Aug 2023 10:23:26 +0000 (10:23 +0000)]
simplify previous;
jsg [Sun, 13 Aug 2023 10:22:20 +0000 (10:22 +0000)]
drm/i915: Fix premature release of request's reusable memory
From Janusz Krzysztofik
4db8b39418a685179263b7ad895a3182d72be358 in linux-6.1.y/6.1.45
a337b64f0d5717248a0c894e2618e658e6a9de9f in mainline linux
jsg [Sun, 13 Aug 2023 10:20:31 +0000 (10:20 +0000)]
drm/ttm: check null pointer before accessing when swapping
From Guchun Chen
1fdd16d89c01336d9a942b5f03673c17d401da87 in linux-6.1.y/6.1.45
2dedcf414bb01b8d966eb445db1d181d92304fb2 in mainline linux
mpi [Sun, 13 Aug 2023 09:52:47 +0000 (09:52 +0000)]
Add support for storing builtin TID and PID in variables.
mpi [Sun, 13 Aug 2023 09:49:47 +0000 (09:49 +0000)]
Regression test for the use-after-free in map insertion
mpi [Sun, 13 Aug 2023 09:48:27 +0000 (09:48 +0000)]
Prevent user-after/double free in map insertion.
Freeing arguments tied to statements is not an option because rules are
parsed multiple times. Always make a copy of them if they are assigned
to a key in a map.
visa [Sun, 13 Aug 2023 08:29:28 +0000 (08:29 +0000)]
kevent: Add precision and abstimer flags for EVFILT_TIMER
Add timer precision flags NOTE_SECONDS, NOTE_MSECONDS, NOTE_USECONDS
and NOTE_NSECONDS for EVFILT_TIMER. Also, add an initial implementation
of NOTE_ABSTIME timers.
Similar kevent(2) flags exist on FreeBSD, NetBSD and XNU.
Initial diff by and OK aisha@
OK mpi@
miod [Sun, 13 Aug 2023 07:02:36 +0000 (07:02 +0000)]
Add modff()/modfl() inf/nan tests; from Willemijn Coene.
miod [Sun, 13 Aug 2023 06:57:04 +0000 (06:57 +0000)]
Extent the modf() tests; from Willemijn Coene.
miod [Sun, 13 Aug 2023 06:56:10 +0000 (06:56 +0000)]
Make sure modff() returns correct values for infinities.
Reported by Willemijn Coene.
miod [Sun, 13 Aug 2023 06:55:37 +0000 (06:55 +0000)]
Make sure modf() returns correct values for infinities. While there, drop
the few assembler versions as has been done on other *BSD systems; this
function (modf) turns out to be non-trivial enough, having only one
known-to-work version is preferrable.
Reported by Willemijn Coene.
jsg [Sun, 13 Aug 2023 02:20:23 +0000 (02:20 +0000)]
unifdef appeared in 4.1c before 2.9
dates checked in CSRG archives and already changed upstream in unifdef3
miod [Sat, 12 Aug 2023 20:49:29 +0000 (20:49 +0000)]
Mention recent developments.
miod [Sat, 12 Aug 2023 20:47:06 +0000 (20:47 +0000)]
Better uwacom(4) support for Intuos S and One S tablets; most of the work
done by Vladimir Meshcheriakov (first name dot last name at epita somewhere in
frogland), thanks!
Tested by Peter J. Philipp on Intuos Draw and by espie@ on Intuos S.
miod [Sat, 12 Aug 2023 20:44:32 +0000 (20:44 +0000)]
Regen
miod [Sat, 12 Aug 2023 20:43:49 +0000 (20:43 +0000)]
Another Wacom tablet; from Vladimir Meshcheriakov (first name dot last name
at epita somewhere in france)
schwarze [Sat, 12 Aug 2023 16:48:23 +0000 (16:48 +0000)]
document return values of the control function in EVP_MD_meth_set_ctrl(3)
schwarze [Sat, 12 Aug 2023 16:36:41 +0000 (16:36 +0000)]
first batch of intentionally undocumented EVP constants:
some EVP_MD_CTRL_*, some EVP_MD_CTX_FLAG_*, and all of EVP_F_* and EVP_R_*
schwarze [Sat, 12 Aug 2023 16:12:19 +0000 (16:12 +0000)]
1. Tweak the descriptions of EVP_MD_CTX_ctrl(3), EVP_MD_CTX_set_flags(3),
EVP_MD_CTX_clear_flags(3), EVP_MD_CTX_test_flags(3), and the atrocious
EVP_MD_CTX_set_pkey_ctx(3) for precision.
2. Tweak the description of EVP_MD_type(3) and EVP_MD_CTX_type(3)
for conciseness.
3. Add a few missing HISTORY bits.
tb [Sat, 12 Aug 2023 13:49:29 +0000 (13:49 +0000)]
Fix bug when gzungetc() is used immediately after gzopen().
from upstream
tb [Sat, 12 Aug 2023 13:48:37 +0000 (13:48 +0000)]
fix typo
from upstream
gnezdo [Sat, 12 Aug 2023 13:43:22 +0000 (13:43 +0000)]
Check for a full read, avoid warn when errno might be unmodified
Promote size from int to size_t.
From: lucas at sexy dot is
Regress tests by gnezdo@
deraadt: yes
miod [Sat, 12 Aug 2023 13:19:28 +0000 (13:19 +0000)]
Repair compilability for non-MULTIPROCESSOR kernels.
kettenis [Sat, 12 Aug 2023 10:03:05 +0000 (10:03 +0000)]
Don't power down if the device is already opened. This happens when an
ikbd(4) attaches and becomes the console keyboard. We would power down
the device but never power it on again when userland opened ikbd(4) as
an input device since that is only done on the first open. The result
was a non-functioning keyboard if the hardware actually implemented the
power down command. A lot of hardware actually doesn't (which is why
this wasn't noticed for some time) but the ASUS X205T does.
ok miod@