| Age | Commit message (Collapse) | Author |
|---|
|
but then parked ourselves in real mode without completing acquisition of
said lock. Also removes the park routine from i386 since we don't need it
(the APs are already parked at the time we start unpack).
discussed with and ok kettenis@, also ok deraadt@
|
|
Enable specifying the filesystem of interest by the duid.
Original diff from halex@ a while ago.
ok halex@ jsing@ (with comments for future tweaking)
|
|
and it is occasionally useful to be able to pass literal strings
|
|
|
|
ciphers we no longer need the flags or code to support it.
ok beck@ miod@
|
|
doesnt need to know which ifp an mbuf was allocated on so it can uncount
it on free.
while here, remove the ext_backend field which identifies the pool the
cluster came from and use ext_arg instead.
ok henning@ mpi@
|
|
Original diff from halex@ a while ago.
ok halex@ jsing@ (with comments for future tweaking)
|
|
of post-open tests and fixups. Also, reorder _dl_dirdesc to save
8 bytes on LP64.
ok otto@ miod@
|
|
ok beck@
|
|
Also remove unused des_ver.h, which exports some of these strings, but is not installed.
ok miod@ tedu@
|
|
8-line if() tests.
|
|
now that it is a trivial wrapper around the extended bpf_mtap_hdr, we can
use bpf_mtap_hdr directly. added benefit: pflog_bpfcopy doesn't need to
be exported any more and can stay private to if_pflog.c
ok benno bluhm reyk
|
|
|
|
|
|
- fail if the same option is specified multiple times on a listener
- prompt for queue encryption key after config parsing, not during.
- add ip addresses to localnames table
- prepare for filters
|
|
no obj change.
OK benno@
|
|
OK benno@
|
|
OK benno@
|
|
OK benno@
|
|
OK benno@
|
|
Further cleanup by hand lead to a obj change though.
OK benno@
|
|
OK benno@
|
|
the various bpf_mtap_* are very similiar, they differ in what (and to some
extent how) they prepend something, and what copy function they pass to
bpf_catchpacket.
use an internal _bpf_mtap as "backend" for bpf_mtap and friends.
extend bpf_mtap_hdr so that it covers all common cases:
if dlen is 0, nothing gets prepended.
copy function can be given, if NULL the default bpf_mcopy is used.
adjust the existing bpf_mtap_hdr users to pass a NULL ptr for the copy fn.
re-implement bpf_mtap_af as simple wrapper for bpf_mtap_hdr.
re-implement bpf_mtap_ether using bpf_map_hdr
re-implement bpf_mtap_pflog as trivial bpf_mtap_hdr wrapper
ok bluhm benno
|
|
internal interfaces, and promoting them to being the public
AES_set_{enc,dec}rypt_key() interfaces. In non-FIPS mode, these public
interfaces were directly calling the private ones.
ok guenther@ jsing@
|
|
memcpy() with a negative size.
ok tedu@
|
|
Rather than casting password_callback to the correct function pointer
signature at every call site, change it to match the signature instead.
ok miod@ deraadt@ tedu@
|
|
signatures using the wrong oid for the signature type. The signature
verification code has thus been modified to allow these signatures to be
accepted, with a printf to stderr to notify the user something was fishy.
Remove this chunk; these signatures will no longer get accepted.
ok deraadt@ guenther@ jsing@ tedu@
|
|
|
|
RSA components to memory and clears them, but there is no unserializing
function, so its usefulness is close to zero.
A grep through the ports tree sources show that it is only present in ports
embedding their own openssl copy, and never used otherwise.
ok jsing@
|
|
ok miod@ deraadt@ guenther@
|
|
|
|
compiled-in, with nonfunctional code, to be able to cope with the RSA
patent.
However, we don't use this option, and the RSA patent has expired more than 10
years ago, so just drop this piece.
|
|
|
|
includes
|
|
|
|
that user.h's tentacles fetched it even earlier.
|
|
|
|
disables responses to RFC4620 IPv6 Node Information Queries.
ok florian henning bluhm
|
|
ok deraadt@ mpi@
|
|
but I flipped the test on i386/amd64, thus breaking kernel traps before
enough proc0 bits were set up. In theory, this could have resulted in
a NFS read for a page fault being done with a process's old credentials.
pointed out by Patrick Wildt of bitrig
|
|
the stack adjustments/handling in the asm. Based on FreeBSD.
ok kettenis@ matthew@
|
|
ok beck@ jsing@
|
|
|
|
|
|
changes from 2.8.8dev.16:
* fix most issues found by clang 3.2 analyze
* fix most issues found by Coverity scan
tested on i386, sparc64, and macppc by myself.
tested on vax by miod@ (including https)
helpful discussion with avsm@, sthen@
ok deraadt@
|
|
did; suppresses spurious errors with hostbased authentication enabled
|
|
bz#2254, patch from Orion Poplawski
|
|
|
|
when filling the rx ring. trust the hwm.
problem found by sthen@
|
|
ok guenther
|
