| Age | Commit message (Collapse) | Author |
|---|
|
|
|
If processes are already dead, reduce wait times between SIGTERM and
SIGKILL and wait time after SIGKILL. The reboot syscall will cause
another sync later on, therefore the long wait times are not necessary
for disk i/o, either.
"makes sense" deraadt@
|
|
* add clarifications and bread_cluster() buffercache(9)
* add some comments to vfs_bio.c
ok tedu@
|
|
adjust port multiplier detection so it doesn't call ahci_port_portreset
again directly, but instead restarts the loop for the current call.
During attach, poll for device detection across all ports until either all
ports have detected a device, or one second has passed, rather than doing
them sequentially. Devices are still attached in order of port number,
so disk unit numbers won't change.
ok visa@
|
|
in case the parent process was started with a dangling child. This style
ensures any potential parent:child interlock isn't disrupted due to the
"wrong" child being waited on first. Then the other other childs can safely
zombie.
ok millert jca brynet
|
|
/usr/libexec/reorder_kernel. Requested by ajacoutot@ to be able to
relink the kernel from within syspatch(8).
OK deraadt@ tb@
|
|
|
|
For now, expose the clock speed of the Cortex-A53 cores through the
hw.cupseed sysctl.
|
|
will instead move to the margin left.
|
|
requested by ajacoutot@
OK tb@
|
|
properties in the /chosen node of the FDT. The properties match the ones
used by Linux (see Documentation/arm/uefi.txt in the Linux kernel source
tree) but with the "linux," prefix replaced by "openbsd,".
While there, reduce the diffs to the arm64 efiboot.
ok tom@, jsg@
|
|
Ok jca@
|
|
host name. Adapted from a MirBSD diff by Thorsten Glaser.
|
|
|
|
any more input files, and it would be misleading to start a parser,
because that would show randomly truncated text.
Instead, print an error message and exit the program.
Issue found by Leah Neukirchen <leah at vuxu dot org>, who was
surprised to see half a manpage when her /tmp/ overflew.
|
|
(Pod::Man adds the current date to the manuals).
ok robert@
|
|
more.
|
|
places. While here do not compile it for the ramdisk.
|
|
|
|
neighbor-as, as it is dynamic.
|
|
pledge("route"). These are read only and expose only minimal kernel
code.
slaacd(8) needs this on startup and when an interface gains the
autoconf6 flag to get lifetime and autoconf information about already
configured addresses.
OK deraadt
|
|
Coverity CIDs 1452970 1453305.
|
|
|
|
|
|
* Delete bogus error message and correct exit status when dying from SIGKILL.
* Prefer warn(3) over perror(3) for clarity.
* Return from main() rather than exit(3).
* Simplify kill(getpid(), ...) to raise(...).
* Drop obvious /* NOTREACHED */.
No objections raised when shown on tech@.
|
|
OK kettenis@
|
|
|
|
from Paul Yang <yang dot yang at baishancloud dot com>
via OpenSSL commit 190b9a03 Jun 28 15:46:13 2017 +0800
|
|
from Matt Caswell <matt at openssl dot org>.
In particular, stop talking about SSL 2.0 and SSL 3.0,
but do not start talking about TLS 1.3 just yet.
|
|
up properly.
|
|
The syspatch(8) utility will be modified accordingly to relink the kernel at the
end of its run (not done yet, still WIP). That will give us KARL and much
smaller patches.
Idea from deraadt@
OK robert@
|
|
|
|
that are deprecated no-ops in LibreSSL, but that OpenSSL explicitly
documented on April 19, 2017, without deprecating them.
|
|
man(1) page but until things settle and the framework is robust, this file will
be used as a quick reminder.
ok robert@
|
|
|
|
from Rich Salz <rsalz at openssl dot org>
via OpenSSL commit 1722496f Jun 8 15:18:38 2017 -0400.
|
|
clarify that SSL_CTX_remove_session(3) marks the session as non-resumable.
From Rich Salz <rsalz at openssl dot org>
via OpenSSL commit 1722496f Jun 8 15:18:38 2017 -0400
and from Matt Caswell <matt at openssl dot org>
via OpenSSL commit b8964668 Apr 26 15:16:18 2017 +0100.
|
|
ok kettenis@ stsp@
|
|
My previous commit to restrict vm migration broke vmd for i386. This fixes it.
ok mlarkin@
|
|
from the OpenSSL manual and from code inspection.
Use my own Copyright and license because no Copyright-worthy amount
of text from OpenSSL remains.
And, no, these functions do *NOT* check private keys, not at all.
|
|
|
|
|
|
from Richard Levitte <levitte at openssl dot org>
via OpenSSL commit e9c9971b Jul 1 18:28:50 2017 +0200
|
|
|
|
This restricts receiving vms from hosts with more cpu features.
Tested on
broadwell -> skylake (works)
skylake -> broadwell (don't work)
ok mlarkin@
|
|
from Emilia Kasper <emilia at openssl dot org>
via OpenSSL commit 1e3f62a3 Jul 17 16:47:13 2017 +0200.
|
|
stating that RSA_padding_check_PKCS1_type_2(3) is weak by design;
from Emilia Kasper <emilia at openssl dot org>
via OpenSSL commit 1e3f62a3 Jul 17 16:47:13 2017 +0200.
|
|
dropping the secmem stuff that we don't want
|
|
reverse order on shutdown.
OK aja@ tb@
|
|
now also documents it, in OPENSSL_malloc.pod
|
