| Age | Commit message (Collapse) | Author |
|---|
|
the l pointer is advanced, so if the line is malformed `goto cleanup'
will free(NULL) or a pointer inside l.
semplification and ok tb@
|
|
based on a diff by lux (lx [at] shellcodes [dot] org), thanks!
Diff via, tweak and ok tb@
|
|
|
|
|
|
When `unmap_1` is reached we should bus_space_unmap() sc_hwrm_* and not sc_db_*.
ok miod@
|
|
|
|
from Brad
|
|
Based on a report by cjt (melissa_cjt at 163.com)
OK tb@
|
|
|
|
|
|
except alpha. This will put the stack at a random location in the upper
1/4th of the userland virtual address space providing up to 26 additional
bits of randomness in the address. Skip alpha for now since it currently
puts the stack at a (for a 64-bit architecture) very low address. Skip
32-bit architectures for now as well since those have a much smaller
virtual address space and we need more time to figure out what a safe
amount of extra randomizations is. These architectures will continue to
use a mildly randomized stack address through the existing stackgap random
mechanism. We will revisit this after 7.3 is released.
This should make it harder for an attacker to find the stack.
ok deraadt@, miod@
|
|
It is simpler to compute the length based on the start and end
pointers and pass that value to memcpy(), adding an explicit NUL
terminator after copying. OK op@
|
|
|
|
|
|
The driver in principle supports bifurcation but this is (largely) untested.
ok dlg@
|
|
for SoCs that can provide multiple instances of rkclock, let them
provide a name that will be printed during attach so you can tell
which one is doing what.
when rkclock_set_frequency isn't handling a clock, have it print
which rkclock instance isn't handling a clock. while here, print
the clock index the same way the #define refers to them.
ok kettenis@
|
|
ok jmatthew@
|
|
|
|
0x7483 rev 0xcf is Radeon RX 7600M according to
Radeon Software for Linux version 22.40.3 (5.4.3) libdrm-amdgpu-common
|
|
ok dlg@
|
|
ok jmatthew@
|
|
ok deraadt@
|
|
It is not legal to use %{mda} in anything but an mda wrapper.
mda_expand_token() will now return an error when %{mda} is used and
mda_command is NULL. OK op@
|
|
|
|
- show that -ifp and "address" do not mix
- show how to reset value (from claudio)
- tweak text
ok claudio
|
|
|
|
Its is fully covered by bn_mod_exp_zero now.
|
|
This exercises the same corner cases as bn_mod_exp and a few more.
With input from jsing
|
|
ok tb@
|
|
|
|
|
|
|
|
Only print the sourceaddrs if no argument was passed. If arguemnts
are set make sure that either and address is present or that an ifp
was given. This make the command behave a more like other route commands.
OK deraadt@
|
|
the rtr_aspa struct so access them directly from the buf using offset
as the address of the first element.
OK tb@
|
|
warning appeared in dmesg on renoir:
[drm] psp gfx command LOAD_TA(0x1) failed and response status is (0x7)
[drm] psp gfx command INVOKE_CMD(0x3) failed and response status is (0x4)
psp_securedisplay_parse_resp_status *ERROR* Secure display: Generic Failure.
psp_securedisplay_initialize *ERROR* SECUREDISPLAY: query securedisplay TA failed. ret 0x0
This is likely related to not implementing all the HDCP paths.
Return early in psp_securedisplay_initialize() to avoid this.
I suspect the newer renoir firmware adds a TA_FW_TYPE_PSP_SECUREDISPLAY
component the older one didn't have.
reported by jmc@
|
|
ok dlg@
|
|
stops if there is a permanent error. Add EACCES generated by pf
to the list of transient errors. This restores pre-6.5 behavior
and continues logging after pf.conf has been fixed.
OK millert@ deraadt@ mvs@
|
|
|
|
|
|
manpage
with and OK tb@
|
|
|
|
|
|
This is essentially the original text with a few tweaks and fixes by me,
removing parts inapplicable to LibreSSL. There are dangling references to
EVP_CIPHER_CTX_copy(3) and EVP_CIPHER_CTX_get_cipher_data(3). This all
isn't great, but it's better than nothing. Probably good enough for these
rarely used functions.
|
|
OK tb@
|
|
|
|
|
|
|
|
based on an initial diff by jsg@
brokenness pointed out by kn@
ok jsg@
|
|
- remove "-inet|-inet6" as it is not generally meaningful
- remove the qualifier "if set": sourceaddr now works nicely in cases
where no "address is given
|
|
Originally from djm@. OK deraadt@ florian@ bluhm@
|
