summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2018-11-24only attach pvclock(4) inside a KVM guestPeter Hessler
tested by brynet@ OK reyk@
2018-11-24zap 10 tab leading whitespace before 'struct evp_pkey_ctx_st {'Theo Buehler
2018-11-24Improve error handling and logging in qcow2ori
This turns most warn + returns that should never happen into hard failures, and improves the user directed error messages. ok @mlarkin, @reyk
2018-11-24Store and return the locking callbacks, restoring previous behaviour.Joel Sing
The previous code meant that a caller could set the locking callback, after which CRYPTO_get_locking_callback() would return non-NULL. Some existing code depends on this behaviour, specifically to identify if lock handling has been configured. As such, always returning NULL from CRYPTO_get_locking_callback() can result in unexpected application behaviour. ok bcook@
2018-11-23When a font escape appears in the middle of a string,Ingo Schwarze
make sure it doesn't cause output of bogus whitespace. Fixing a bug reported by Pali dot Rohar at gmail dot com.
2018-11-23syncTheo de Raadt
2018-11-23add missing closing quote;Jason McIntyre
2018-11-23Change rtable_mpath_reprio() to take the prefixlen as argument instead ofClaudio Jeker
the network mask. This saves converting the prefixlen to a mask and back. OK phessler@, benno@
2018-11-23Install pvclock(4)Reyk Floeter
2018-11-23Add the pvclock(4) guest driver for paravirtual clocksReyk Floeter
This improves timekeeping on KVM guests as it runs much better than the virtualized acpihpet or acpitimer timecounters and the invtsc is not always available. Many thanks to Janne Johansson, landry@, and benno@ for testing amd64/i386. OK mlarkin@ phessler@
2018-11-23tweak previous;Jason McIntyre
2018-11-23add a ssh_config "Match final" predicateDamien Miller
Matches in same pass as "Match canonical" but doesn't require hostname canonicalisation be enabled. bz#2906 ok markus
2018-11-23Remove now-unneeded ifdef SIGINFO around handler since it is now alwaysDarren Tucker
used for SIGUSR1 even when SIGINFO is not defined. This will make things simpler in -portable.
2018-11-22Make alpha less special: _dl_boot_bind() is written to completePhilip Guenther
relocation of ld.so's GOT without using it, so _reloc_alpha_got() merely made the call to _dl_boot_bind() from asm simpler...while itself being a call that required special handling. diff and muild baking by miod@ ok guenther@
2018-11-22Our *int_fast{8,16}_t types are int/unsigned int, so SCN*FAST{8,16}Philip Guenther
shouldn't include 'hh' or 'h'. problem noted by Andreas Kusalananda Kähäri (andreas.kahari(at)abc.se) ok deraadt@ martijn@
2018-11-22Use em0 instead of vmx0 to clarify the parent interface example.Reyk Floeter
Pointed out by Josh Grosse OK deraadt@
2018-11-22Remove useless assignment, value is overwritten right after being set.Frederic Cambus
Both assignements are in our tree since the driver got imported from FreeBSD in 2001 and remained untouched since import. The second assignment in its current form got introduced in FreeBSD in 1997 with r29233 [1], when syncinc the driver. The first assignment got removed in 2017 with r314147 [2]. [1]: https://svnweb.freebsd.org/base?view=revision&revision=29233 [2]: https://svnweb.freebsd.org/base?view=revision&revision=314147 Coverity CID 1453008. OK deraadt@
2018-11-22Correct and shorten the description of the sort order of apropos(1)Ingo Schwarze
results. As a matter of fact, which manpath the page comes from does not matter in that context. That only matters for the priority of pages in man(1) mode (without -a, -f, and -k). Noticed while working on a patch from Yuri Pankov <yuripv at FreeBSD>.
2018-11-22In apropos(1) output, stop sorting .Nm search results by nameIngo Schwarze
priorities (bits). The obscure feature wasn't documented and merely confused people - for example Edward Tomasz Napierala <trasz at FreeBSD>, see https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=227408. Smaller patch provided by Yuri Pankov <yuripv at FreeBSD>, but i'm also retiring the now unused "bits" member from struct manpage. Simplification is good.
2018-11-22In -T locale (the default), -T ascii, and -T utf8 mode, provide a newIngo Schwarze
output option -O tag[=term] to move right to the definition of "term" when opening the manual page in a pager, effectively porting the -T html fragment name feature - https://man.openbsd.org/ksh#ulimit - to the terminal. Try: $ man -O tag uvm_sysctl $ man -O tag=ulimit ksh $ man -O tag 3 compress Feature development triggered by a question from kn@. Klemens also tested, provided feedback that resulted in improvements, and provided an OK.
2018-11-22Do not use PWD unless it actually matches the real working directory.Nicholas Marriott
2018-11-22Output info on SIGUSR1 as well as SIGINFO to resync with portable.Darren Tucker
2018-11-22Append pid to temp files in /var/run and set a cleanup trap for them.Darren Tucker
This allows multiple instances of tests to run without colliding.
2018-11-22add missing make dependencyanton
2018-11-21syncTheo de Raadt
2018-11-21In unp_internalize() check the length more carefully preventing anClaudio Jeker
underflow in a later calcuation. Using the same CMSG_LEN(0) check that other cmsghdr handlers implemented. Probelm found by anton@ OK anton@, deraadt@, visa@
2018-11-21When using MSG_PEEK to peak into packets skip control messages holdingClaudio Jeker
SCM_RIGHTS from being sent to the userland since they hold kernel internal data and it does not make sense to externalize it. OK deraadt@, guenther@, visa@
2018-11-21free(9) sizes for bread_cluser().Martin Pieuchot
ok mikeb@, visa@
2018-11-21Fix DTLS transcript handling for HelloVerifyRequest.Joel Sing
If DTLS sees a HelloVerifyRequest the transcript is reset - the previous tls1_init_finished_mac() function could be called multiple times and would discard any existing state. The replacement tls1_transcript_init() is more strict and fails if a transcript already exists. Provide an explicit tls1_transcript_reset() function and call it from the appropriate places. This also lets us make DTLS less of a special snowflake and call tls1_transcript_init() in the same place as used for TLS. ok beck@ tb@
2018-11-21add st. andrew's day and put the entry for st. patrick's day in a formatJason McIntyre
similar to the others;
2018-11-21avoid unwanted double space;Jason McIntyre
2018-11-21Add support for "local inet6" interfaces.Reyk Floeter
ok & test ccardenas@, additional review from kn@
2018-11-21Allow rad(8) to watch interface groups; e.g. "interface tap" in rad.conf.Reyk Floeter
OK florian@, additional review from kn@
2018-11-21no more malloc.conf - it's contents are now in malloc(3) itself,Jason McIntyre
and sysctl(2); ok otto deraadt
2018-11-21fold the contents of malloc.conf.5 into malloc.3 and sysctl.2,Jason McIntyre
now that there is essentially no malloc.conf; text tweaked by deraadt; ok otto deraadt
2018-11-21syncTheo de Raadt
2018-11-21Introducing malloc_usable_size() was a mistake. While some otherOtto Moerbeek
libs have it, it is a function that is considered harmful, so: Delete malloc_usable_size(). It is a function that blurs the line between malloc managed memory and application managed memory and exposes some of the internal workings of malloc. If an application relies on that, it is likely to break using another implementation of malloc. If you want usable size x, just allocate x bytes. ok deraadt@ and other devs
2018-11-20when printing essids return the number of chars we printed, like printfPeter Hessler
OK stsp@
2018-11-20fix whitespace in debugging functionPeter Hessler
2018-11-20split up long lineanton
2018-11-20test getownanton
2018-11-20Add support for TIOCGPGRP ioctl commands to wscons.anton
ok visa@
2018-11-20No need for wscons to handle FIOSETOWN ioctl requests since sys_ioctl()anton
translates such requests into TIOCSPGRP. ok visa@
2018-11-20test fcntl(F_SETOWN)anton
2018-11-20DNS goes over both udp and tcp, so reflect that in example pf.conf line;Otto Moerbeek
ok reyk@
2018-11-20Revert free sizes for `subdevs' array, it is incorrect.Martin Pieuchot
Reported by anton@ and Natasha Kerensikova
2018-11-20Make rtable_satoplen() a bit more strict when parsing netmasks. EnsureClaudio Jeker
that the mask is contiguous and not longer then the prefixlen is not bigger then the maximum. Make the function behave a bit more like the similar netmask handling code in the old patricia codebase. Fixes a problem reyk@ reported regarding IPv6 masks and the fact that sin6_scope_id is after sin6_addr. OK mpi@
2018-11-20The first packet received from each AP in each QoS class would bePatrick Wildt
dropped as the sequence number matches the initial value of the cached last sequence number (zero). On some APs (notably Android WIFI hotspots) this hits the first packet of the WPA2 4-way handshake. This causes connection delays and in some cases connection to the AP fails completely. Initialize the cached last sequence numbers for received packets to an invalid value instead. From Christian Ehrhardt ok gerhard@ stsp@
2018-11-20Fix spelling of kettenis' email addressReyk Floeter
"just fix" deraadt@
2018-11-20Convert the pledge call to idiomatic format 'cause we love grep.Theo de Raadt