Age | Commit message (Collapse) | Author |
|
dynamically, by comparing the stack pointer against the altstack
base and size, so that you get the correct answer if you longjmp
out of the signal handler, as tested by regress/sys/kern/stackjmp/.
Also, fix alt stack handling on vax, where it was completely broken.
Testing and corrections by miod@, krw@, tobiasu@, pirofti@
|
|
it reports the dest and source parts of the set insn are identical, we need
to check whether they are volatile memory references, and return 0 (not a
noop) in that case.
This allows `*volatile_ptr = *volatile_ptr;' constructs to no longer be
incorrectly optimized away on platforms which can perform memory to memory
transfers in a single instruction (i.e. m68k and vax).
Found the hard way on vax, where some systems need to frob the interrupt
stack early, before being able to handle faults, and a gcc3-built kernel
would have this operation optimized away, leading to a quick system reset.
|
|
|
|
|
|
from firing a false positive; ok robert@
|
|
|
|
|
|
|
|
non-privileged process, go_daemon().
As pointed out by kettenis@, otherwise it is still attached to a
controlling terminal and subject to the dangers thereof. Prep for
having the privileged process pay attention to signals.
|
|
advertise it.
|
|
|
|
particular capability is bad, log the fact and ignore it. This may give us
a chance to bring up session that have e.g. unexpected AFI,SAFI pairs in them.
Also make the error messages more user friendly.
OK henning@, sthen@
|
|
ok naddy@ sthen@
|
|
then set the flags. Just set the flags as is done everywhere else.
ok sthen@
|
|
ok beck@ william@ todd@
|
|
|
|
type from int to void.
ok sf@
|
|
|
|
|
|
|
|
few bytes are not lost
|
|
ok guenther@
|
|
and include sha1 signatures for all certs (some were missing).
No certificate changes, this is just for consistency. ok beck@
|
|
|
|
drop clients using it when the port is closed (eg. umidi disconnected)
and try to reopen it whenever a new client connects.
|
|
dropping connections otherwise clients may try to drain their
buffer and would attempt to reopen the device
|
|
|
|
input fifo; besides being simpler, this way there's no data
to drain when a connection is dropped.
|
|
|
|
Remove intermediate GoDaddy certificate, this file should just contain roots.
ok beck@ phessler@
|
|
OK mikeb@ camield@ reyk@ sobrado@ henning@ krw@
|
|
- rtsx.4: lowercase Nd
|
|
ok guenther, krw
|
|
not going to fix in order to stay compatible with legacy password data.
Nobody should use DES crypt anyway these days.
See http://www.freebsd.org/security/advisories/FreeBSD-SA-12:02.crypt.asc
for details about this bug.
Discussed with deraadt and beck about half a year ago (I'm pruning Ms
from my tree).
|
|
Pointed out by naddy some time ago.
Our definition of the Hebrew range is incomplete wrt current Unicode
editions. The proper fix would be to generate this entire file based
on current Unicode data but nobody is currently working on that.
I'm committing this intermediate fix partly to draw attention to
that problem :-)
|
|
|
|
From ray@, adapted from a diff by jakemsr@, commit req'd by Alexey Suslikov
|
|
Add support for the VIRTIO_NET_F_MRG_RXBUF feature, i.e. allow to
chain several rx buffers when receiving large packets.
This requires to put the rx meta data headers at the beginning of
the mbuf cluster instead of dedicated buffers.
ok mikeb@
|
|
ok stsp@
|
|
|
|
|
|
This card reader does not comply to the standard SDHC interface
supported by sdhc(4) and hence requires a custom driver.
With help from uwe and mikeb. Useful hints were also provided by the
author of the corresponding Linux driver (wwang at realsil com cn),
thanks a lot! Tested by myself and weerd on i386 and amd64.
|
|
no binary changes on i386.
|
|
Pointed out by Jung Lee.
|
|
- sync RES_DEBUG with resolv.conf.5
- document RES_PRIMARY, but mark it unsupported (like we already do
for RES_AAAONLY)
- use the exact same text (about being enabled by default) for
RES_RECURSE as for the other two defaults
- document RES_INSECURE{1,2} - description lifted from resolv.conf.5
- document RES_NOALIASES
- mostly sync the RES_USE_EDNS0 text with resolv.conf.5
- RES_USE_DNSSEC not documented for now. something to come...
ok sthen
|
|
|
|
necessarily correct, there might not even be a link when attaching.
ok mikeb@ reyk@
|
|
See http://tools.ietf.org/html/draft-gont-opsec-vpn-leakages.
We forcibly block IPv6 traffic by loading a "flow esp out from ::/0 to
::/0 type deny" unless the protocol is used in any of the flows. Note
that this will block any IPv6 traffic, superseding routes and pf, on
the host by default when iked is running with IPv4 flows only. This
auto-blocking feature can be disabled by specifying the "-6" command
line flag to iked.
Thanks to Fernando Gont.
ok mikeb@
|
|
(struct imsgev *)->data for the argument of imsgev handlers.
ok reyk
|
|
ok miod@, pointed Stefan Koerner <stefan dot koerner at pilum-tech dot de>
|