| Age | Commit message (Collapse) | Author |
|---|
|
enforce it for open(2) when used with O_CREAT and mode.
ok deraadt@
|
|
methods are present. Should fix the panic that occurs on older ThinkPads
(such as the x201) when you press the ThinkLight key.
|
|
Based on a diff from Mathieu <naabed AT poolp DOT org>.
|
|
to the verbose output when using tls - from rob@2keys.ca
ok mmcc@ jsing@ deraadt@
|
|
map. This removes the (hopefully) last case in which pool_put() might try
to grab the kernel lock for interrupt-safe pools. Note that pools that are
created with the PR_WAITOK flag will still grab the kernel lock.
ok mpi@, tedu@
|
|
Inspired by similar diffs by tobias@ and millert@.
"I like the concept" pjanzen@
ok tedu@
|
|
|
|
Inspired by similar diffs by tobias@ and millert@.
"I like the concept" pjanzen@
ok tedu@
|
|
The mark timeout event is not persistent, add the timer intervall
everytime it fires.
Bug report, analysis and fix from Einfach Jemand rru.142 at gmail.com
|
|
This allow us to get rid of one more "rt_node" usage with ART.
ok jmatthew@
|
|
for 802.11n capable wireless drivers.
ok mpi@
|
|
enforce it for mkfifo(2) and mknod(2) (with "dpath" promise).
ok deraadt@
|
|
|
|
ok millert
|
|
|
|
found via key dump diff, run by Bryan Vyhmeister
also remove 3 temperature keys which likely do not return useful values
verified with help from macbook pro output of tb (4,1 and 5,5),
kettenis (12,1), and Cristoph R. Murauer (9,1) via misc@
|
|
some time ago by phessler and IIRC also mikeb), and for qname-minimisation
|
|
Authority" (serial 3c:91:31:cb:1f:f6:d0:1b:0e:9a:b8:d0:44:bf:12:be) root
certificate from cert.pem. ok rpe@
Symantec/VeriSign say "Browsers/root store operators are encouraged to
remove/untrust this root from their root stores" and "hasn't been used to
generate new certificates in several years, and will now be repurposed to
provide transition support for some of our enterprise customers' legacy,
non-public applications" (https://www.symantec.com/page.jsp?id=roots,
http://www.scmagazine.com/google-will-remove-trust-of-symantecs-pca3-g1-certificate/article/459688/).
Also see
https://knowledge.symantec.com/support/ssl-certificates-support/index?page=content&id=ALERT1941
https://googleonlinesecurity.blogspot.co.uk/2015/12/proactive-measures-in-digital.html
|
|
encountered via key dump diff, run by Bryan Vyhmeister
|
|
Notable addition: implements optional support for qname minimisation
(a privacy improvement; see draft-ietf-dnsop-qname-minimisation-07)
|
|
hint from kettenis
|
|
|
|
Do this by introducing atcrandom_uniform(range) which returns
deterministic randomness or good randomness depending on whether
a seed was specified with the -r option.
Diff by Matthew Martin, reviewed by deraadt@ and me.
ok deraadt@
|
|
reference.
|
|
|
|
export is not also the mount point of a local filesystem. In this case, the
local filesystem would not be removed from the "unexport list", causing the
export to be "unexported" again.
This fix then also allows us to actually delete an export that has been removed
from /etc/exports, by passing the MNT_DELEXPORT export flag to mount(2).
Makes sense to millert@.
|
|
|
|
Make sure to always use the idiom 'if (pledge("'
such that it can easily be searched for.
No functional change.
Requested by deraadt@ some time ago.
|
|
|
|
These are the direct sources from NLnet Labs upstream, minus these:
compat contrib libunbound/python pythonmod testcode testdata winrc
ok deraadt@ jakob@
|
|
|
|
|
|
No longer expand tabs up front in get_line(), their width depends on the
width of characters earlier on the line. Always NUL-terminate the input
buffer for easier and safer handling. Get rid of the hand-rolled output
buffer, just let stdio do its work.
OK tedu@
|
|
This introduces the two header files v4l2-common.h and v4l2-controls.h
which were split off from videodev2.h (which corresponds to our videoio.h).
There will be a second commit just addressing whitespace and formatting. The
current version has only real changes whereas the second commit will bring
videoio.h in line with videodev2.h formatting so that potential syncs in the
future are easier to implement.
Bulk build by ajacoutot@; ok robert@, ajacoutot@
|
|
|
|
infrastructure that will be needed soon.
|
|
Reported by bluhm@, ok jmatthew@
|
|
From mxb at alumni chalmers se
|
|
|
|
|
|
The DB file being written is a temp file, so O_EXLOCK is unnecesary.
ok sunil@ gilles@
|
|
|
|
|
|
|
|
|
|
components as well.
ok deraadt@
|
|
later).
discussed with deraadt@ and reyk@ at length.
|
|
|
|
itself to work out the current pane. This is confusing in many cases
(particularly notable is that "tmux neww\; splitw" would not split the
new window), and the few advantages do not make up for the confusion.
So drop this behaviour and return to using the current window and pane;
keep the pty check but only use it to limit the list of possible current
sessions.
|
|
|
