summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Call exuart(4) early attach on arm64.patrick2021-02-111-1/+3
| | | | ok kettenis@
* Enable exuart(4).patrick2021-02-112-2/+8
| | | | ok kettenis@
* Don't hardcode com(4)'s major number in exuart(4).patrick2021-02-111-5/+12
| | | | ok kettenis@
* Explicitly unset IKED_REQ_CERTVALID before sending cert to ca process.tobhe2021-02-111-1/+2
| | | | ok markus@
* More route-to fallout in pfctl regress.bluhm2021-02-111-5/+5
|
* sbdrop(): use NULL instead of 0 in pointer assignmentmvs2021-02-111-2/+2
| | | | ok bluhm@
* We link `ifp' to `if_list' before we perform if_attachsetup(). It is notmvs2021-02-111-3/+2
| | | | | | | | | fully initialized because we initialize `if_groups' after linking. It's not triggered because if_attach() and if_unit(9) are serialized by kernel lock and `ifp' is often filled by nulls. Move `if_groups' initialization to if_attach_common() to prevent this. ok bluhm@ claudio@ deraadt@
* Link isakmpd dynamically. Mount /usr on NFS via IPsec does notbluhm2021-02-111-2/+4
| | | | | | | work anyway. Dynamic binaries help building errata, reduce disk usage and make ROP harder. Also remove an unused bsd.subdir.mk include. OK sthen@ mvs@ deraadt@ tobhe@ patrick@
* When clang was changed to -fcommon, perl's P_hash_{seed,state} variablesderaadt2021-02-111-1/+2
| | | | | | | | | | | | | | moved into BSS in the .o, with padding rules following the types -- they are both char[]. Since P_hash_seed is (system-dependent) not a multiple of 8, P_hash_state gets layed out misaligned, which sucks because the hash functions demand 64-bit alignment for both variables. There is the possibility of using misalignment macros, but this is not cheap. Could also use kernel-trap fault repair, but the performance would really suck for something so crucial. The correct fix would be for upstream to declare these types as uint64[], we have requested that in https://github.com/Perl/perl5/issues/18555 In the meantime, carry a diff to roundup P_hash_seed to 64-bit alignment so that P_hash_state will land aligned. ok afresh1
* Add missing break in switch statement of rge_activate().stsp2021-02-111-1/+2
| | | | | | | CID 1501716 ok kevlo@ and mestre@ had the same diff
* Leave out gp initialization from kernel entry on mips64visa2021-02-119-24/+8
| | | | | | | | | On OpenBSD/mips64, the kernel is compiled with -mno-abicalls. This disables gp-relative addressing and essentially makes gp a spare register in the kernel. Hence it is unnecessary to initialize gp when entering the kernel. The _gp symbol is not needed either. Suggested by miod@
* "proc: table is full" actually means thread table is full; ok mpi@ sthen@otto2021-02-111-2/+2
|
* In the various open functions reduce the fdplock() to only span over theclaudio2021-02-111-16/+27
| | | | | | | function which need the lock (falloc, fdinsert, fdremove). In most cases it is not correct to hold the lock while calling VFS functions or e.g. closef since those aquire or release long lived VFS locks. OK visa@ mvs@
* Initialize var since it's used in a condition a little bit afterwards.mestre2021-02-111-2/+2
| | | | | | CID 1501713 ok jmatthew@
* Initialize the stack local device id variable correctly.anton2021-02-111-2/+2
| | | | CID 1501705
* Swap faddr/laddr and fport/lport arguments in call to stoeplitz_ipXport().patrick2021-02-112-6/+6
| | | | | | | | | Technically the whole point of the stoeplitz API is that it's symmetric, meaning that the order of addresses and ports doesn't matter and will produce the same hash value. Coverity CID 1501717 ok dlg@
* Add a couple of helper functions, and flush imsgs on exit.nicm2021-02-115-40/+72
|
* O_TRUNC is needed in case file exists.nicm2021-02-111-2/+2
|
* Move file handling protocol stuff all into file.c so it can be reusednicm2021-02-114-360/+449
| | | | more easily.
* Make room for handling of HID++ 1.0 devices. No functional change.anton2021-02-111-56/+69
|
* Use idx suffix consistently.anton2021-02-111-17/+17
|
* Remove unused software id macro.anton2021-02-111-2/+1
|
* Fold long line.anton2021-02-111-2/+3
|
* Stop uhidpp from claiming all report ids, instead only claim theanton2021-02-111-5/+22
| | | | | | | | | | | necessary ones. Solves a regression introduced with the arrival of uhidpp causing some Logitech HID devices from attaching to its appropriate driver. Thanks to <naszy at poczta dot fm> and Peter Kane <pwkane at gmail dot com> for reporting and trying out diffs. ok mglocker@
* Add uhidev_unset_report_dev(), doing the opposite ofanton2021-02-112-2/+13
| | | | | | uhidev_set_report_dev(). Needed by some upcoming changes to uhidpp. ok mglocker@
* If uhidev_set_report_dev() already have been invoked for the givenanton2021-02-111-4/+6
| | | | | | report id, there's no point in trying to find a matching sub device. ok mglocker@
* KNFtb2021-02-111-4/+7
|
* syncderaadt2021-02-117-21/+0
|
* Delay deletion of IKE SAs on rekey when stickyaddress is enabled to maketobhe2021-02-101-2/+10
| | | | | | sure peers can keep their previously assigned addresses. ok patrick@
* rephrase example in a more consistent wayespie2021-02-101-9/+8
|
* Add a instruction barrier between writing CCSELR_EL1 and reading CCSIDR_EL1kettenis2021-02-101-1/+4
| | | | | | | | to guarantee that we read the cache parameters of the cache we just selected. The required ISB instruction is present in the examples in the ARM ARM. Fixes the the report on the cores in Apple's M1 SoC. ok patrick@
* If pf changes the routing table when sending packets, the kernelbluhm2021-02-101-2/+15
| | | | | | | | could get stuck in an endless recursion during TCP path MTU discovery. Create a dynamic host route in ip_output() that can be used by tcp_mtudisc() to store the MTU. Reported by Peter Mueller and Sebastian Sturm OK claudio@
* Add med test, this no longer fails in -currentclaudio2021-02-101-2/+2
|
* Use the same check in kernel and ifconfig for group names. ifconfigbluhm2021-02-101-9/+9
| | | | | | delete group does not need name sanitation. The kernel will just report that it does not exist. OK deraadt@ gnezdo@ anton@ mvs@ claudio@
* Interface group names must fit into IFNAMSIZ and be unique. Butbluhm2021-02-101-3/+5
| | | | | | | | | | | | the kernel made the unique check before trunkating with strlcpy(). So there could be two interface groups with the same name. The kif is created by a name lookup. The trunkated names are equal, so there was only one kif owned by both groups. When the groups got destroyed, the single kif was removed twice from the RB tree. Check length of group name before doing the unique check. The empty group name was allowed and is now invalid. Reported-by: syzbot+f47e8296ebd559f9bbff@syzkaller.appspotmail.com OK deraadt@ gnezdo@ anton@ mvs@ claudio@
* Remove `sc_dead' logic from pppac(4). It is used to preventmvs2021-02-101-9/+3
| | | | | | | | | | pppac_ioctl() be called on dying pppac(4) interface. But now if_detach() makes dying `ifp' inaccessible and waits for references which are in-use in ioctl(2) path. This logic is not required anymore. Also if_detach() was moved before klist_invalidate() to prevent the case while pppac_qstart() bump `sc_rsel'. ok yasuoka@
* as usual, stuff got removed without updating the documentationespie2021-02-101-75/+2
| | | | GC www/drupal7 description
* Move UNIX domain sockets out of kernel lock. The new `unp_lock' rwlock(9)mvs2021-02-103-63/+192
| | | | | | | | used as solock()'s backend to protect the whole layer. With feedback from mpi@. ok bluhm@ claudio@
* Use ~/.tmux.conf as an example rather than /etc/passwd, suggested bynicm2021-02-101-6/+6
| | | | deraadt@.
* some spacing/grammar fixes from dave voutila;jmc2021-02-101-7/+5
|
* only amd64 & arm64 lldb work at the momentderaadt2021-02-102-2/+12
|
* cast large to reduce warning on 32-bit machines (an ELF type is printed with %ll)deraadt2021-02-101-2/+2
|
* Make sure that switching the console from serial to framebuffer workskettenis2021-02-092-22/+25
| | | | | | for framebuffer nodes under / and /chosen. ok patrick@
* pfsync_state_import() must not be called with the pf state lock held,patrick2021-02-091-3/+1
| | | | | | | | | since the actual modification of the state table is done by a call to pf_state_insert(), which takes the pf state lock itself. Other calls to pfsync_state_import() also only have the pf lock. Reported-by: syzbot+d6ea8620b43dc69ecbc6@syzkaller.appspotmail.com ok bluhm@
* syncpatrick2021-02-0910-0/+30
|
* Build and install lldb.patrick2021-02-092-4/+4
| | | | Discussed with deraadt@
* rc: ensure that vfs.mounts.nfs check works without NFSnaddy2021-02-091-2/+2
| | | | | | | | If NFS isn't compiled into the kernel, sysctl -n vfs.mounts.nfs will produce no numerical output. Make sure that we always have a valid arithmetic expression. Reported by and ok patrick@
* Add optional 'group none' transform for child SAs and fix handling oftobhe2021-02-093-8/+39
| | | | | | | | | | | | 'group none'. We currently send no transform of type DH by default, which should be equivalent to explicitly sending a single DH transform of type 'none'. However, the proposal matching logic had a bug where these two would not match, effectively breaking the ability to negotiate optional PFS. This commit fixes the bug but continues to send no DH proposal by default to remain backwards compatible with older versions. ok patrick@
* Fix lldb.mortimer2021-02-092-14/+4
| | | | | | | | Map deliberately invalid signal to zero when passing to PT_STEP and P_CONTINUE. Also clean up getting Environment so setting LLDB_DEBUGSERVER env vars works again. ok patrick@
* These regress tests expect coredumps to be written so run them withclaudio2021-02-092-2/+2
| | | | | ulimit -c unlimited. Also simplify the logic a bit as requested by bluhm@. OK bluhm@ deraadt@
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.