| Age | Commit message (Collapse) | Author |
|---|
|
|
|
|
|
When efibooting amd64, the boot loader rewrites the page table built
by EFI firmware to ensure that there are no read-only mappings.
The rewrite is needed for some HP EFI BIOS, that maps computrace
section read-only.
When efibooting on SEV enabled QEMU, we would have to ensure the
crypt bit is set when changing page tables. However, there is no
need for the HP workaround when booting on QEMU (or any other VM),
so just do not modify the page table, when SEV gest mode is detected.
from Sebastian Sturm; via hshoexer@; OK kettenis@
|
|
When booting an OpenBSD kernel on Linux QEMU with SEV enabled, the
hypervisor does not forward the SME feature, only the SEV bit is
set. Therefore do not depend on SME when checking for SEV guest
mode in locore0.
from Sebastian Sturm; via hshoexer@; OK jsg@
|
|
|
|
|
|
On EPYC 9124 psp(4) seems to need more to time to respond. Otherwise
it will not attach. Increase timeouts for both polling during
autoconf and interrupt during normal operation.
from hshoexer@ OK mlarkin@
|
|
|
|
Also move PCI ops registration ahead. That way the ops will be registered
if any subsequent operations within the case processing require the ops to
See Linux commit fbb2a14afe00a5691b43cd19c946472e59e16fc6 and
515bcdf587f9911f2d5de51524cb7e048d295052
ok stsp@
|
|
that flags may be detected propertly rather than just looking for
strings ("-O" and so on). Also add -C and -P flags to the copy commands:
-C prevents the commands from sending the text to the clipboard and -P
prevents them from adding the text as a paste buffer.
Note some of the default key bindings change to add "--" and any similar
custom key bindings using "send-keys -X" may need a similar change.
GitHub issue 4153.
|
|
along with the interrupt and ethernet address details.
ok dlg@
|
|
support. diff from naito.yuichiro at gmail.com
ok jan jmatthew
|
|
runtime of the process. Also this no longer needs the SCHED_LOCK().
OK mpi@
|
|
use the proper way to read tu_runtime.
OK mpi@
|
|
bluhm found that using bigger rx mbufs helps tcp splice performance if
lro is enabled. Use 4k in that case.
Also fix confusion in rx dmamap segment count. Even with lro/tso, we
only put unfragmented mbufs into the rx queue. Therefore we only need
max. 2 segments, one for the mbuf and one for the separate header for
legacy virtio devices.
OK bluhm@
|
|
This was only used by the NIST method. For all other group methods it's
an uninitialized pointer (as EC_GROUP_new() still uses the malloc + set
all members to 0 idiom).
ok jsing
|
|
Stanislav Kljuhhin in GitHub issue 4146.
|
|
They aren't used outside of this file.
|
|
ok deraadt
|
|
Same issue/leak as for BN_to_ASN1_INTEGER(). Stop reusing the elliptic
curve parameters a and b for order and cofacter. It's confusing.
ok jsing
|
|
ok jsing
|
|
You can either let this API reuse an existing ASN1_INTEGER or you can let
it allocate a new one. If you try to do both at the same time, you'll leak.
ok jsing
|
|
The brilliant idea of installing a fragile non-idempotent cleanup atexit
handler as a library has bitten many people over time. This gets particularly
exciting when you can't control who dlopens the lib first (don't we all love
Python bindings) or if you are in a threaded context. Fake OpenSSL clones
chose not to do this but now get to carry a noop flag since people start
opting out of this madness (there's a good old tradition at work here).
ok beck joshua jsing millert miod
|
|
|
|
USB controllers have an I2cSerialBusV2() (possibly defining a connection
to some sort of eUSB2 to USB2 redriver chip) but are not i2c devices
themselves. So check if a device has MMIO resources and assume it isn't
a proper i2c device if it has those. Makes the Type-A ports on my
vivobook work in acpi mode.
ok patrick@, mlarkin@
|
|
Simplifies some of the recent INVEPT changes and mirrors the design
of other pmap tlb shootdown functions that provide simplified non-MP
implementations.
ok mlarkin@
|
|
o Improve historical data for Mexico, Mongolia, and Portugal.
o System V names are now obsolescent.
o The main data form now uses %z.
|
|
vmm(4) doesn't need this information anymore. vmd(8) is the only
consumer of this information.
ok mlarkin@
|
|
Reorder functions so that things are somewhat more logical, moving internal
functions towards the top (and removing now unnecessary prototypes).
|
|
Like all good OpenSSL code, errors was built to be completely extensible.
Thankfully, the ERR_{get,set}_implementation() functions were removed in
r1.127 of err.c, which means that the extensibility can no longer be used.
Take the first of many steps to clean up this code - remove err_fns and
associated machinery, calling functions directly. Rename so that we have
an 'err_' prefix rather than 'int_' (or nothing).
ok joshua@ tb@
|
|
|
|
|
|
It was previously possible to call CRYPTO_get_ex_new_index() with either
a negative index or a positive index that equaled or exceeded
CRYPTO_EX_INDEX__COUNT. The reimplementation of exdata treats these as
error cases.
|
|
size that the ctftools ctfconvert uses and I think we should do as well.
Fixes regress/usr.bin/ctfdump on i386.
OK miod@
|
|
|
|
more easily (for Cgywin).
|
|
ok kettenis@
|
|
Remove a change introduced in NetBSD to pageout 4 times as many pages as
required to meet the low water mark of free pages. With todays' Gbs of
RAMs, it makes the pagedaemon hog the CPU for too long when the amount of
free pages is close to none.
ok sthen@, kettenis@
|
|
ok kettenis@
|
|
Reduce differences between pmaps & allow us to remove another deprecated
allocator.
ok phessler@, miod@
|
|
Remove the extra checks in the caller and simplify some code because of that.
OK tb@
|
|
we inherited from the initial implemention on FreeBSD which has
made no sense in years.
prompted by a diff by Johannes Thyssen Tishman
from espie
|
|
from Stanislav Kljuhhin.
|
|
In order to support privsep in tags, we need to be able to pass some
code values in child/parent.
from espie, tested by sthen, ok giovanni
|
|
|
|
initialized in the SE so bgpctl did always see 0, auth_conf.method
is on the other hand properly shared.
OK tb@
|
|
since that one is kept.
OK tb@
|
|
OK tb@
|
|
OK tb@
|
|
Instead use struct auth_config and struct auth_state in the pfkey calls
and those tcp_md5 calls where it matters.
This is preparation work to allow RTR to use TCP MD5 as well.
OK tb@
|
