summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2024-02-03fix off-by-one in bounds testJonathan Gray
found by "buffer overflow 'peerxfs' 6 <= 6" smatch error tobhe@ had a remote peer attempt a transform type of 6 and it is caught by earlier checks before getting here. ok tobhe@
2024-02-03correct buffer size argument to snprintf in print_proto()Jonathan Gray
found by "snprintf() is printing too much 8192 vs 1024" smatch error ok tobhe@ stsp@
2024-02-03fix vmd vioblk fd closing bounds testJonathan Gray
found by "buffer overflow 'vioblk->disk_fd' 4 <= 15" smatch error ok dv@
2024-02-03fix off-by-one in bounds checkJonathan Gray
found by "buffer overflow 'ContextVarbind' 3 <= 3" smatch error ok miod@ stsp@
2024-02-03add missing fatal() call in rde_peer_send_rrefresh()Jonathan Gray
found by "if statement not indented" smatch warning ok claudio@
2024-02-02when an alternate delivery user is provided in a dispatcher, do not processGilles Chehade
any recipient .forward file except that of the alternate delivery user. ok millert@
2024-02-02Rework proc_parser_mft() furtherTheo Buehler
By making proc_parser_mft_check() fail on a NULL manifest, we can simplify the manifest selection logic further. This way we can see if the new manifest has all the files it lists with correct hashes and fall back to mft2 if not. This is still more complicated and uglier than it should be, but far les convoluted and mind-bending than a day ago. ok job
2024-02-02there's no good reason to allow smtpd to execute custom command set by rootGilles Chehade
in a .forward file so disallow custom commands and file reading, only allow setting forward addresses and users. as root is no longer allowed to run any MDA but mbox, we can be stricter on the setup of the MDA process and refuse to exec anything that's not an mbox dispatcher. tested by op@ who edited a root envelope to simulate an exploit injecting a custom command in a root envelope, smtpd refused to exec. ok millert@ and op@
2024-02-02Fix vector number check.Mark Kettenis
ok kevlo@, patrick@
2024-02-02Run lmtp deliveries as the recipient user, not SMTPD_USER (_smtpd).Todd C. Miller
This is a backout of revision 1.278. Delivery via lmtp is not limited to running mail.lmtp, it may also be modified by a user's .forward file (if any). OK gilles@
2024-02-02Update the commentJob Snijders
2024-02-02Remove old commentJob Snijders
OK tb@
2024-02-02no longer check staleness in proc_parser_mftJob Snijders
invert logic for readability OK tb@
2024-02-02parser: inline last call to proc_parser_mft_post()Theo Buehler
with and ok job
2024-02-02fix previous: a *mp = mft1 got lostTheo Buehler
ok job
2024-02-02refactor: don't call proc_parser_mft_post for the first mftJob Snijders
should be exact same behaviour as before OK tb@
2024-02-02parser: no need to overload err1 twice.Theo Buehler
err2 is only used in the second call to proc_parser_mft_proc() and right before it there is already an error overload. ok job
2024-02-02refactor: populate mft->path in the pre parserJob Snijders
OK tb@
2024-02-02aspath_inflate() can be called with an empty ASPATH.Claudio Jeker
In this case ibuf_size(in) is 0 and the ibuf_open() fails because right now 0 sized ibufs are not allowed. Add + 1 to the size calculation as a workaround. OK tb@
2024-02-02Cleanup a couple of fatal messages to be less bad.Claudio Jeker
2024-02-02Implement basics of the qwx(4) data frame Rx path.Stefan Sperling
Port enough ath11k dp_rx code in order to let our net80211 stack see the initial WPA handshake packet sent by the AP.
2024-02-02In in_pcbrtentry() add missing return of in6_pcbrtentry() value.Alexander Bluhm
Reported-by: syzbot+5f2286d5962355f0cfd8@syzkaller.appspotmail.com OK kn@
2024-02-02Explain missing group on getgrnam(3) failure.Dave Voutila
vmd's use of agentx requires the agentx group, but if unavailable, no details were given to the user. Zap some whitespace whitespace while here. "that is better", deraadt@
2024-02-02refactor: no longer needed to pass loc to the mft preparserJob Snijders
OK tb@
2024-02-02Ignore EVP_MD_CTX_reset() return valueTheo Buehler
Also drop now unnecessary NULL checks before it.
2024-02-02Ignore EVP_CIPHER_CTX_reset() return value, it can't failTheo Buehler
2024-02-02refactor: move parse_filepath() to avoid pointer indirectionJob Snijders
OK tb@
2024-02-02refactoring: move time validity window checks out of proc_parser_mft_post()Job Snijders
OK tb@
2024-02-02Rework error messages a bitJob Snijders
OK tb@
2024-02-02Enable sximmc(4)Mark Kettenis
2024-02-02Add Allwinner D1 support.Mark Kettenis
ok jca@, patrick@
2024-02-02Add a few more Allwinner D1 clocks.Mark Kettenis
ok patrick@
2024-02-02Reimplement BIO_dump_indent() with CBS/CBB and BIO_printf()Theo Buehler
Instead of heaps of unchecked strlcpy/strlcat/snprintf doing hard to follow gymnastics, use a byte string, a somewhat comprehensible computation of the number of bytes to dump per output line and write using checked BIO_printf() directly to the BIO. Longer strings will still overflow the terminal width of 80 and even longer strings will still overflow the return value (undefined behavior). I don't care much about the former but the latter should be fixed in a later pass. ok beck
2024-02-02The fix to pfctl_kill_src_nodes() comes from Olivier Croquin.Alexandr Nedvedicky
bluhm@ pointed out pfctl_net_kill_states() suffers from the same copy'n'paste typo. Commit combines both fixes. OK @bluhm, OK @kn
2024-02-02bio_dump: fix indentTheo Buehler
2024-02-02bio_dump: add one more testcaseTheo Buehler
This one covers the silly minuses between the hexdump and the ASCII dump when dumping eight bytes per line.
2024-02-02Add regress coverage for BIO_dump()Theo Buehler
2024-02-02drm/amdgpu/gfx11: set UNORD_DISPATCH in compute MQDsJonathan Gray
From Alex Deucher 5ff487d180dc25138d2261dda9e3b2d46ef3051a in linux-6.6.y/6.6.15 3380fcad2c906872110d31ddf7aa1fdea57f9df6 in mainline linux
2024-02-02drm/amdgpu/gfx10: set UNORD_DISPATCH in compute MQDsJonathan Gray
From Alex Deucher b59ea95e72e051fe53a5c978222d65b80ca2ef96 in linux-6.6.y/6.6.15 03ff6d7238b77e5fb2b85dc5fe01d2db9eb893bd in mainline linux
2024-02-02drm/i915/psr: Only allow PSR in LPSP mode on HSW non-ULTJonathan Gray
From Ville Syrjala 02cfae7d62783614b433ec93b2ccf9d9fba212ff in linux-6.6.y/6.6.15 f9f031dd21a7ce13a13862fa5281d32e1029c70f in mainline linux
2024-02-02drm/i915/lnl: Remove watchdog timers for PSRJonathan Gray
From Mika Kahola e017ec3807d40a196dd328ca25b3219e0f97c9cc in linux-6.6.y/6.6.15 a2cd15c2411624a7a97bad60d98d7e0a1e5002a6 in mainline linux
2024-02-02drm/amd/display: Fix uninitialized variable usage in core_link_ 'read_dpcd() ↵Jonathan Gray
& write_dpcd()' functions From Srinivasan Shanmugam b565f41b9f20ed65d73660ffa6d8e495bc839789 in linux-6.6.y/6.6.15 a58371d632ebab9ea63f10893a6b6731196b6f8d in mainline linux
2024-02-02drm/amdgpu/pm: Fix the power source flag errorJonathan Gray
From Ma Jun dcda362dc5b4d5aa0df9d1511cb9427df04d2d11 in linux-6.6.y/6.6.15 ca1ffb174f16b699c536734fc12a4162097c49f4 in mainline linux
2024-02-02drm/amd/display: Fix late derefrence 'dsc' check in 'link_set_dsc_pps_packet()'Jonathan Gray
From Srinivasan Shanmugam 6aa5ede6665122f4c8abce3c6eba06b49e54d25c in linux-6.6.y/6.6.15 3bb9b1f958c3d986ed90a3ff009f1e77e9553207 in mainline linux
2024-02-02drm/amd/display: Align the returned error code with legacy DPJonathan Gray
From Wayne Lin d3af41be094a39e1a1392d1d42cdf3eb90922476 in linux-6.6.y/6.6.15 bfe79f5fff1300d96203383582b078c7b0aec80a in mainline linux
2024-02-02drm/amd/display: Port DENTIST hang and TDR fixes to OTG disable W/AJonathan Gray
From Nicholas Kazlauskas fbc4ee5ca79bcdb8010e7209c0a8d48333b324a2 in linux-6.6.y/6.6.15 4b56f7d47be87cde5f368b67bc7fac53a2c3e8d2 in mainline linux
2024-02-02drm/amd/display: Fix variable deferencing before NULL check in ↵Jonathan Gray
edp_setup_replay() From Srinivasan Shanmugam 22ae604aea14756954e1c00ae653e34d2afd2935 in linux-6.6.y/6.6.15 7073934f5d73f8b53308963cee36f0d389ea857c in mainline linux
2024-02-02drm/amdgpu: correct the cu count for gfx v11Jonathan Gray
From Likun Gao b788696f9ed01019b10b1a2d7e92b4f8c61434d6 in linux-6.6.y/6.6.15 f4a94dbb6dc0bed10a5fc63718d00f1de45b12c0 in mainline linux
2024-02-02drm: Allow drivers to indicate the damage helpers to ignore damage clipsJonathan Gray
From Javier Martinez Canillas 45aafb5075754bbe6458a6b3e8ad02b408c35211 in linux-6.6.y/6.6.15 35ed38d58257336c1df26b14fd5110b026e2adde in mainline linux
2024-02-02drm: Disable the cursor plane on atomic contexts with virtualized driversJonathan Gray
From Zack Rusin 87b3b45ce7b4dd745506f9437b968c5e35b87dda in linux-6.6.y/6.6.15 4e3b70da64a53784683cfcbac2deda5d6e540407 in mainline linux
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-02 18:54:27 +0000