| Age | Commit message (Collapse) | Author |
|---|
|
commands later.
part of a diff from Naoki Fukaumi
ok dlg@
|
|
- remove extra blank line
- call ifq_deq_rollback() when ugl_send() failed
- call ifq_clr_oactive() before splx()
ok mpi@
|
|
The check prevents incomming multicast packages from arriving at the gif
interface (eg. OSPF) when the traffic is protected by IPsec in transport
mode.
ok dlg@
|
|
both cases. Avoids race in the exit path. ok sthen@ florian@
|
|
|
|
After i improved their ASCII renderings in groff and mandoc some time
ago, mathematical symbols can now be used in specialised mathematical
manual pages like libm and some X libraries.
Tweaks and OK jmc@.
|
|
Otherwise, if syspatch exits 1 any subsequent output will end up on the same
line during boot. Discovered while upgrading from current today since we're in
release mode.
Discussed with and ok tb@
|
|
wrong function and fix the rest for consistency.
Diff from Michael W. Bombardieri with some cosmetic cleanup applied.
ok benno@ tb@
|
|
|
|
ok kettenis@ jsing@ deraadt@ - "Exquisitly disgusting" guenther@
|
|
|
|
cluebat tb@
|
|
We already provided the setters, so also provide the getters like
OpenSSL does. Addition prompted by the use of those functions in recent
openvpn releases.
manpage diff from schwarze@ (thanks!) with input from jsing@, ok tb@
jsing@
|
|
|
|
|
|
safely to disk. The subsystem seems to be working as intended! :)
|
|
ok deraadt@
|
|
the packet length.
found by Maxime Villard; from FreeBSD; OK procter@ markus@
|
|
ok gilles@
|
|
been the default for a long time now) but users still assume this is the
way to update aliases within the MTA.
when smtpctl is invoked as newaliases, have it notify the daemon that it
has had the aliases table updated, no matter what backend it uses, as it
will at worst be a noop and at best do what user expected.
ok eric@
|
|
port is stored in the listener structure using the network order.
ok eric@
|
|
prevent possible loops on badly configured spf records.
ok gilles@
|
|
|
|
feedback and ok jsg@
|
|
the SMBIOS table. Some machines even have IPMI defined in both tables.
This attachment driver makes ipmi(4) available via ACPI. There can only
attach one ipmi(4) device, either on ACPI or SMBIOS.
Akin to the SMBIOS-attached ipmi(4) this driver is disabled by default.
Feedback from jsg@
ok deraadt@
|
|
ok deraadt@
|
|
|
|
|
|
_MAX_PAGE_SHIFT)
Discussion with kettenis
|
|
|
|
certificate for some time.
While they stopped doing so it seems best to follow redirects anyway.
More status codes pointed out by & OK sthen
OK benno
|
|
Also changes an error message in vmctl to reflect same.
|
|
|
|
|
|
as the former is confusing wrt similar terminology in X.509;
pointed out by jsing@
|
|
getrandom(2)
Based on discussion here https://github.com/libressl-portable/openbsd/pull/82
Suggested fix from jsing@
|
|
continuous. The length of the hardware and protocol address are
provided in the network packet and have to be checked first. So
enforce that we only deal with internet over ethernet arp headers
with the address length filled correctly.
found by Maxime Villard; OK claudio@
|
|
while there, kill some Tn
|
|
slaacd(8).
RFC 7217 states (section 5, page 9):
| The Interface Identifier is finally obtained by taking as many
| bits from the RID value (computed in the previous step) as
| necessary, starting from the least significant bit.
Problem in slaacd pointed out by semarie@.
OK sthen, phessler
|
|
| The Interface Identifier is finally obtained by taking as many
| bits from the RID value (computed in the previous step) as
| necessary, starting from the least significant bit.
Copy bits from the end of the digest array, not from the beginning.
While here initialize iid.
Problem that IPv6 addresses change while they should not pointed out
by semarie@.
OK sthen, phessler
|
|
- provide a cpu_softc for cpu_attach() etc.
- replace per PCB TSS with per CPU TSS
The first change prepares for cpu_info being embedded in a
cpu_full_info. Therefore during autoconf/cpu_attach we hand down
a softc.
The second change removes the per PCB TSS. We now have one TSS per
CPU, thus in cpu_switchto() we only have to patch the ring 0 stack
pointer instead of loading a new TSS. This also allows for cleaning
up the GDT, so we only have a single slot for the TSS.
from hshoexer@; OK deraadt@
|
|
ok eric@ a while ago
|
|
From Kai-Heng Feng
5b7ed414974320d7ebda71d18c85f505f3d959c0 in linux 4.4.y/4.4.119
06998a756a3865817b87a129a7e5d5bb66dc1ec3 in mainline linux
|
|
From Harry Wentland
c088f7bc3310bb57e0aaea297c7e2f467015d215 in linux 4.4.y/4.4.94
6cecdf7a161d2b909dc7c8979176bbc4f0669968 in mainline linux
|
|
so inline the assignments, pushing them through the callers into
several other functions. This shows that pmap_free_ptp() was doing
a duplicate set of pmap_tlb_shootpage() calls: delete the extras.
ok deraadt@ mlarkin@
|
|
rather reset GS.base and restore FS.base to what was set via __tcb_set(),
so we can't really support the wr{fs,gs}base instructions by userspace.
Enabling CR4_FSGSBASE is therefore incorrect so stop doing so.
ok jsg@ krw@
|
|
|
|
if the mac address is not for the interface, it must be multicast
or broadcast. this is instead of if the packet is not
multicast/broadcast, it must be for the interface.
this allows ethernet interfaces to have multicast mac addresses
without having to special case it themselves. eg, carp load balancing
should become easier with this.
ok mpi@
|
|
previously it took a shortcut when emptying an mbuf by only setting
m_len to 0, but leaving m_data alone. this interacts badly with
m_pullup, which tries to maintain the alignment of the data
payload. if there was a 14 byte ethernet header on its own that was
m_adjed off, and then the stack wants an ip header, m_pullup
would put the ip header on the ethernet header alignment, which is
off by 2 bytes.
found by stsp@ with pair(4) on sparc64.
ok stsp@ too
|
|
From Artturi Alm.
|
