| Age | Commit message (Collapse) | Author |
|---|
|
enable dnssec validation, it's really useful for debug
|
|
No need to expose the tbl(7) syntax tree data structures everywhere.
Move them to their own include file, "tbl.h", and improve comments.
|
|
|
|
|
|
all memory at once without having to use a zero buffer.
OK mlarkin@
|
|
OK mlarkin@
|
|
|
|
ok djm
|
|
ok kn
|
|
|
|
- Unify the two hooks by passing the same argument
- Check for nullity before dereferencing `if_bridgeport', this will
matter when we go MP
- Use the same pattern to find a member in the ioctl path
ok bluhm@, visa@
|
|
ok bluhm@, visa@
|
|
ok bluhm@, visa@
|
|
|
|
More specifically, the set currently being installed won't be affected,
but shared libraries may be reached through a long dependency chain,
so they actually require "full" dependency ordering.
This fixes the libnettle issue reported by jca@ (see regress)
okay aja@, sthen@
|
|
means that they won't get their dependency information. But if they're
in kept, they're actually installed so make sure they have a location.
This will let pkg_add always follow dependencies for all sets even if
there's nothing to directly install
|
|
error happened within an SMTP transaction.
|
|
|
|
__sanitizer_cov_trace_pc() early in the boot process caused a subtle
crash while booting the secondary CPU(s). On amd64, accessing curcpu
during this period is not safe since its GSBASE register is yet not
written. After the CPU has been booted curproc can also be NULL for a
brief period of time before the idle thread tied to the same CPU has
started. The two problems can simply be avoided by postponing access to
curcpu and curproc until /dev/kcov has been opened at least once.
The end goal here is to allow fuzzing of MP kernels, which already is in
full swing.
This work has gone through many iterations before settling on the least
intrusive change; many thanks for visa@ for reviewing and providing
valuable input.
Issue originally reported by Greg Steuck on tech@ who also took the time
to test all iterations and providing me access to a virtualised OpenBSD
machine for easier testing.
ok mpi@ visa@
|
|
this will be mostly useful for virtual interfaces like vlan and
etherip, where they can bypass queueing on an ifq, and instead
encapsulate in on multiple cpus concurrently and push the packet
onto the next layer directly.
ok visa@
|
|
set community rules are merged into one big set block.
|
|
these exist so interfaces that want to do mpsafe work outside the
ifq machinery have a place to allocate and update stats in. the
generic ioctl handling for getting stats to userland knows how to
roll the new per cpu stats into the rest before export.
ok visa@
|
|
|
|
No functional change.
suggested by tb@; from Jan Klemkow
|
|
to avoid comparison of integers of different signs.
from Jan Klemkow; OK tb@
|
|
dumps with many many segments.
ok yasuoka@
|
|
|
|
remove "report" keyword, a proc filter gets report events
discussed with eric@
|
|
|
|
(This is the only code change in upstream release 1.8.3).
|
|
|
|
|
|
|
|
|
|
|
|
ok gilles@
|
|
|
|
roughly the same function here called match_aspath().
OK denis@
|
|
into struct aspath and pass that struct to aspath_match().
OK denis@
|
|
|
|
ok gilles@
|
|
Currently SeaBIOS will respect disk and cdrom and our kernel will
understand net.
OK ccardenas@, reyk@, mlarkin@
|
|
the request is pending (waiting for an async event) or not. Success
or failure is always reported through the callback function.
ok gilles@
|
|
ok naddy@
|
|
|
|
ok stsp@
|
|
ok stsp@
|
|
this gets the locks right, and returns 0 if there's no packet available.
ok stsp@
|
|
if if_output can be overridden on ethernet interfaces, it will allow
things like vlan to do it's packet encapsulation during output
before putting the packet directly on the underlying interface for
output.
this has two benefits. first, it can avoid having ether_output on
pseudo interfaces recurse, which makes profiling of the network
stack a lot clearer. secondly, and more importantly, it allows
pseudo ethernet interface packet encapsulation to by run concurrently
by the stack, rather than having packets unnecessarily serialied
by an ifq.
this diff just splits ether_output up, it doesnt have any interface
take advantage of it yet.
tweaks and ok claudio@
|
|
interface address of the route as source address. To avoid using
link-local addresses in ICMP6 packets sent into networks where they
are out of scope, use the regular IPv6 source selection algorithm
also in this icmp6_reflect() case.
reported by sthen@; fix from Arnaud BRAND; OK claudio@
|
