CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: gne...@cvs.openbsd.org 2020/08/17 23:21:21 Modified files: sys/netinet: tcp_usrreq.c tcp_var.h Log message: Convert tcp_sysctl to sysctl_bounded_args This introduces bounds checks for many net.inet.tcp sysctl variables. Folded some fitting cases into the framework: tcp_do_sack, tcp_do_ecn. ok derradt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: gne...@cvs.openbsd.org 2020/08/17 22:48:12 Modified files: sys/kern : kern_sysctl.c sys/sys: sysctl.h Log message: Add sysctl_bounded_arr as a replacement for sysctl_int_arr Design by deraadt@ ok deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 16:14:51 Modified files: sys/dev/fdt: if_mvppreg.h Log message: Remove unnecessary BM cookie defines.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 16:03:32 Modified files: sys/dev/fdt: if_mvpp.c if_mvppreg.h Log message: Rename gmac interrupt register defines to stay consistent with other gmac register defines.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 15:54:39 Modified files: sys/dev/fdt: if_mvppreg.h Log message: Add enum for L2 cast like for L3.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 15:32:45 Modified files: sys/dev/fdt: if_mvpp.c if_mvppreg.h Log message: Some register define renaming.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 15:12:06 Modified files: sys/dev/fdt: if_mvppreg.h Log message: Remove an unnecessary define.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 15:02:37 Modified files: sys/dev/fdt: if_mvpp.c if_mvppreg.h Log message: Even more whitespace and header changes.
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: t...@cvs.openbsd.org2020/08/17 13:40:50 Modified files: . : errata67.html Log message: fix a number; spotted by bluhm
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: t...@cvs.openbsd.org2020/08/17 13:38:40 Modified files: . : errata67.html Log message: release libssl errata
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 13:08:23 Modified files: sys/dev/fdt: if_mvppreg.h Log message: More whitespace and enum cleanup.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2020/08/17 12:41:23 Modified files: usr.bin/vis: foldit.c Log message: -F requires at least 5 columns for folding, while a tab at start of line is 8 columns. This causes an infinite loop in the folding logic. Fix this by implementing an escape hatch so that only a single fold can occur. This does mean that a tab with a -F smaller or equal to 8 will always print the newline escape backslash in the 8th column. Bug reported by phillbush cock li Minor tweak and OK deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: sema...@cvs.openbsd.org 2020/08/17 12:12:13 Modified files: usr.bin/su : su.c Log message: honor /etc/nologin by unveiled it ok deraadt@
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: bc...@cvs.openbsd.org 2020/08/17 11:39:59 Modified files: libressl : index.html releases.html Log message: LibreSSL 3.1.4 release
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: dera...@cvs.openbsd.org 2020/08/17 11:23:59 Modified files: sys/arch/i386/conf: Makefile.i386 Log message: base clang is now i586. SMALL_KERNEL images have historically forced i486 (for space-saving reasons), but we don't currently need this in bsd.rd so let's try without to see if it improves things in any way (at least until the next have a space-saving crisis)
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/08/17 10:55:41 Modified files: sys/arch/powerpc64/powerpc64: machdep.c pmap.c vm_machdep.c sys/arch/powerpc64/include: pcb.h pmap.h Log message: Switch to a per-proc SLB cache. Seems to make GENERIC.MP kernels (much more) stable. Probably because we could restore an incoherent SLB cache since there was no locking in the trap return path.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: to...@cvs.openbsd.org 2020/08/17 10:49:28 Modified files: sbin/iked : ocsp.c Log message: Fix possible leak of ocsp_id. ok patrick@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: gne...@cvs.openbsd.org 2020/08/17 10:25:34 Modified files: sys/netinet: igmp.c igmp_var.h Log message: Simplify igmp_sysctl to directly return error in default case This replaces a piece of observationally identical code which was much more complicated. ok mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2020/08/17 10:25:05 Modified files: sys/dev/fdt: if_mvppreg.h Log message: Plenty of whitespace fixups.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mill...@cvs.openbsd.org 2020/08/17 10:17:39 Modified files: lib/libc/stdio : fmemopen.c regress/lib/libc/fmemopen: fmemopentest.c Log message: Fix append mode so it always writes to the end and expand regress. OK deraadt@ martijn@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2020/08/17 09:48:28 Modified files: usr.sbin/snmpd : snmpe.c Log message: Previous commit broke two things: 1) Bulkget broke because mps_getbulkreq doesn't exactly do what it says on the tin, so use it how it works for now. 2) A break statement got left behind resulting in only a single varbind being answered. Reported and tested by sthen@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2020/08/17 05:04:20 Modified files: lib/libssl : Tag: OPENBSD_6_7 tls13_legacy.c Log message: Unbreak bidirectional SSL_shutdown for TLSv1.3 The previous errata patch 019_libssl broke bidirectional SSL_shutdown. This can cause a hang in some software that calls SSL_shutdown in a loop. Problem reported and fix tested by Predrag Punosevac. Thanks to Steffen Nurpmeso who independently found that this was due to an SSL_shutdown loop. ok jsing This is errata/6.7/020_libssl.patch.sig
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2020/08/17 02:19:20 Modified files: regress/lib/libssl/tlsfuzzer: tlsfuzzer.py Log message: Also print a list of missing scripts in summary
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/08/17 02:12:18 Modified files: sys/arch/arm64/arm64: cpu.c sys/arch/arm64/include: armreg.h Log message: Enable PAN (Privileged Access Never) on CPUs that support it. This means that user-space access from the kernel is not allowed for "normal" load/store instructions. Only the special "unprivileged" load/store instructions are allowed. We already use those in copyin(9) and copyout(9). ok patrick@, drahn@, jsg@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2020/08/17 02:09:04 Modified files: sys/arch/arm64/arm64: trap.c Log message: Panic on an attempt to access user-space unless it is done using an "unpriviliged" load/store instruction. This makes sure we catch PAN violations and might even catch some incorrect user-space access cases on systems without PAN. ok drahn@, jsg@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2020/08/17 02:01:53 Modified files: regress/lib/libssl/tlsfuzzer: tlsfuzzer.py Log message: Avoid test failures due to outdated packages Indicate missing test scripts prominently in the result but do not count them as an error.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/08/17 01:09:25 Modified files: usr.sbin/tcpdump: print-gre.c Log message: add geneve option printing. mostly modelled on the nsh md2 printing.