summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2019-12-05No need for 'byte2' parameter to scsi_mode_sense[_big]() since weKenneth R Westerback
always pass 0. i.e. never disable block descriptors, never accept long LBA values.
2019-12-05Move prototypes for scsi_mode_sense(), scsi_mode_sense_big(),Kenneth R Westerback
scsi_mode_sense_page() and scsi_mode_sense_big_page() into scsi_base.c. They are just internal helper functions for scsi_do_mode_sense().
2019-12-05tweak previous;Jason McIntyre
2019-12-05be less verbose in debug logging; ok florian@Otto Moerbeek
2019-12-05Move uvmexp_print() to a better place.Martin Pieuchot
ok mlarkin@
2019-12-05Split uvm(9) into smaller manuals.Martin Pieuchot
ok jmc@, deraadt@, schwarze@
2019-12-05Tell a little bit how "preference" works these days; ok florian@Otto Moerbeek
2019-12-05revert previous; ingo said itJason McIntyre
2019-12-05Document X509_STORE_CTX_set_flags() which is a handy way to change theClaudio Jeker
verification param flags of a context. While this function is marked as likely to be deprecated in OpenSSL it seems that this may not happen. This is why we decided to still document it. OK and input from ingo@ tb@
2019-12-05replace "Pf < ... Ns >" with Aq; tidy up lists a little;Jason McIntyre
2019-12-05tweak the FILTERING text a little; ok gillesJason McIntyre
2019-12-05Remove clause #3 from mrg@NetBSD license.Martin Pieuchot
In May 29 2008, Matthew R. Green removed it in NetBSD: github.com/IIJ-NetBSD/netbsd-src/commit/7ea20401d535da9996394136ef ok deraadt@
2019-12-05No need to unveil(NULL, NULL) right before pledge "stdio rpath".Theo Buehler
From George Brown. ok benno
2019-12-05Convert infinite sleeps to tsleep_nsec(9).Martin Pieuchot
ok jca@
2019-12-05Fix #ifndef NOSSL vs SMALL inconsistenciesJeremie Courreges-Anglas
from Hiltjo Posthuma
2019-12-04use return x; instead of return (x);, like all other files here.Sebastian Benoit
ok deraadt@
2019-12-04reduce includes to the required minimum.Sebastian Benoit
ok deraadt@
2019-12-04When we detect that a resolver strategy is not validating because theFlorian Obser
time is wrong enable a timer to check it again later. ntpd might have corrected the time. input & OK otto
2019-12-04Add sizes for free() in autri(4).Frederic Cambus
OK mpi@
2019-12-04Use NI_MAXHOST like everywhere else instead of a wrong number.Florian Obser
2019-12-04some minor tweaks;Jason McIntyre
2019-12-04I accidentally smashed wrong contents into this file.Theo de Raadt
Repair from Martin @ academicsolutions.ch
2019-12-04Rework rpki-client documentationjob
OK Ingo Schwarze
2019-12-04Insert missing &&job
OK claudio@
2019-12-04Attempt to smear out stampedes on the RPKI rsync serversjob
OK claudio@ benno@
2019-12-04If we see a validated result, we can (must!) assume the resolver isOtto Moerbeek
validating; ok florian@
2019-12-04typos don't help aproposMarc Espie
2019-12-04split output management code into seperate file. iterate over outputTheo de Raadt
methods using a table. detect output truncation (for instance filesystem full) and don't overwrite previous output ok claudio
2019-12-04document special names that exist in the package systemMarc Espie
2019-12-04explicitly say you're not allowed to insert most of these yourselfMarc Espie
2019-12-04document DEBUG_PKG_CACHEMarc Espie
2019-12-04add DEBUG_PKG_CACHE functionality. Doesn't interfere with normal operation.Marc Espie
Basically, if you set DEBUG_PKG_CACHE to a directory, pkg_add will download debug packages "on the sly" any time it installs packages. It is mostly silent (apart from fetching error or directory non existent). It *won't* download packages that are already installed, but this allows keeping debug packages "just in case" in synch with your current snapshot, as some people (mpi@) have worried that by the time you get to debugging something, the snapshots will have moved too much.
2019-12-04allow error to be passed along, in case we need to save $? for laterMarc Espie
2019-12-04Convert infinite sleeps to {m,t}sleep_nsec(9).Martin Pieuchot
ok krw@, jca@
2019-12-04libc's authentication privsep layer performed insufficient usernameTheo de Raadt
validation. Repair work mostly by markus and millert, first of all solving the primary problem, then adding some additional validation points. And then futher validation in login and su. This will be 6.5/021_libcauth.patch.sig and 6.6/010_libcauth.patch.sig Reported by Qualys
2019-12-04Fix a bad offset calculation in uvm_share.Mike Larkin
Syzkaller found a bug in uvm_share when using a vmd(8) mmap region with an offset that ended up making an overlap with a previous vmm(4) uvm_map range. This diff reworks the range and offset calculation in uvm_share. Only vmm(4) uses this, so there should be no visible effects outside vmm(4) environments. Syzkaller also went sorta crazy on this one, finding multiple reproducers for the same bug with just slightly different parameters, thus the multiple "Reported-by" lines below. ok stefan@, anton@ Reported-by: syzbot+2c625ab1b8e964da644a@syzkaller.appspotmail.com Reported-by: syzbot+1300829862412751462d@syzkaller.appspotmail.com Reported-by: syzbot+27cfad3394f34528cbec@syzkaller.appspotmail.com Reported-by: syzbot+3e700c5698177f91cce1@syzkaller.appspotmail.com
2019-12-04Fix uvm_unmap_remove panic when tearing down VMs.Mike Larkin
Type confusion when tearing down a vmm(4) VM's vm_map led UVM to interpret the vm_map as a struct uvmspace, and occasionally fail. stefan@ pointed out the root cause a while back but I never had time to look at this until now. Syzkaller also found a reproducer for this, so the "Reported by" line below is a clue to let it know to close that bug. idea by, and ok stefan@ also ok anton@ Reported-by: syzbot+dbd6e2a7583e958e69f8@syzkaller.appspotmail.com
2019-12-04libc's authentication privsep layer performed insufficient usernameTheo de Raadt
validation. Repair work mostly by markus and millert, first of all solving the primary problem, then adding some additional validation points. And then futher validation in login and su. This will be 6.5/021_libcauth.patch.sig and 6.6/010_libcauth.patch.sig Reported by Qualys
2019-12-03"variable name=value" can be used multiple timeskn
2019-12-03don't crash with *NULL if user does not existTheo de Raadt
from discussion with jsg
2019-12-03nicer learned resolver formatingFlorian Obser
OK otto
2019-12-03Cleanup query logging.Florian Obser
Debug log level 1 gives us basic query progress, level 2 writes out packages. looks good to otto
2019-12-03Cleanup check_resolver_done() debug logging.Florian Obser
Log answer packet only at debug level 2. looks good to otto
2019-12-03Add one more debug level and enable very detailed libunbound loggingFlorian Obser
with this. Currently only available as a command line flag (-vvv). With this we now have two debug levels available in unwind proper, to be used shortly. looks good to otto
2019-12-03No need to store "why_bogus" with the resolver, we are no longerFlorian Obser
showing it in unwindctl. But log it with level warn for check_resolver so that one can find out what's wrong with a resolver strategy. looks good to otto
2019-12-03Remove useless log_debug() calls.Florian Obser
Looks good to otto
2019-12-03update to-do listTheo Buehler
2019-12-03Run Wycheproof ECDSA P1363 test vectors against libcrypto.Theo Buehler
2019-12-03Add an EcPoint variant and pass it to the ECDH test runner.Theo Buehler
2019-12-03Annotate test vector files with an enum which we can then pass to theTheo Buehler
run*Test programs as needed.
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-02 19:21:42 +0000