| Age | Commit message (Collapse) | Author |
|---|
|
OK tedu
|
|
OK jca, tedu
|
|
OK tedu
|
|
OK tedu, jca
|
|
OK jca, tedu
|
|
OK jca, tedu
|
|
OK jca, tedu
|
|
This bug caused sockets and character special devices to be accepted
as manual pages if they appeared inside manpaths, and
it caused incorrect file names to be entered into the database when
the manpath or one of its parent directories was a symbolic link.
This fixes the issues reported by <Andreas dot Kahari at abc dot se>
on ports@, but additional issues remain when symbolic links are
contained in a manpath that involves another symbolic link.
|
|
- reword MODKDE4_FIX_GETTEXT text to make it easier to read
with and ok schwarze@
|
|
during installation. This is the default value.
|
|
Noticed by sebastia@
|
|
in RFC8622; ok job@
|
|
ok jsg@
|
|
|
|
|
|
Discussed with jsing
|
|
behavior.
ok jsing
|
|
incoming method if it is a client.
This addresses the case where TLS_method() is used to initialise a SSL_CTX,
then a TLS_client_method() is then set, resulting in TLSv1.2 being used
instead of TLSv1.3. This is observable in smtpd.
ok beck@
|
|
handshake function pointer.
Fixes an isssue found by jca@ with OpenVPN.
ok beck@ tb@
|
|
traffic retries when not yet encrypting.
ok jsing@
|
|
is good enough to enable the Pinebook Pro's panel.
It would be nice to make use of the DRM's BSD-licensed panel code,
which has an extensive list of panels and its settings.
ok kettenis@
|
|
|
|
intended for shm/fd passing, but for programs that may otherwise like
filesystem access.
ok beck deraadt kettenis
|
|
|
|
|
|
no function change.
|
|
ok jsing@
|
|
ok jsing@
|
|
in OpenSSL's test suite.
|
|
in tls 1.3
Will be used in a follow on commit to enable tls1.3 client certificates
ok jsing@
|
|
|
|
Test vectors taken from OpenSSL 1.1.1d (under OpenSSL's old license).
|
|
ok jsing@
|
|
The new IV is 128 bit long and is actually the 64 bit counter followed
by 64 the bit initialization vector. This is needed by an upcoming
change in OpenSSH and is a breaking change for all current callers.
There are language bindings for Node.js, Rust and Erlang, but none of
our ports use them.
Note that EVP_chacha20() was first introduced in LibreSSL on May 1, 2014
while the entirely incompatible version in OpenSSL was committed on
Dec 9, 2015.
Initial diff from djm and myself, further refinements by djm.
Ports grepping by sthen
ok jsing
|
|
The will be replaced by a speculation barrier as soon as we teach the
kernel to skip over these two instructions when returning from a
system call.
ok patrick@, deraadt@
|
|
|
|
|
|
|
|
inducing. Rename scsi_adapter member 'scsi_minphys' to 'dev_minphys'
to reflect what it is supposed to do. Use consistent naming convention
(<dev>_minphys) for the actual device functions.
No functional change.
|
|
just ignore them. spotted by and ok dtucker@
|
|
as it was intended to be; spotted by dtucker@
|
|
have no interrupt handler registered.
Avoids interrupt storm on Matebook D reported by brynet@
From James Hastings. ok kettenis@ brynet@
|
|
|
|
there is actual work to do (nh->next_prefix != NULL). If next_prefix
is NULL there is a possibility that nexthop_unref() is called before
the nexthop is removed from the nexthop_runners queue resulting in a
use-after-free access in nexthop_runner().
For consistency add a debug message in nexthop_unlink() if the nexthop
is removed from the nexthop_runners queue because the last prefix is gone.
OK procter@
|
|
confirmation) and not just password prompts.
|
|
doesn't need SSHBUF_INTERNAL set
|
|
ssh-keygen be solely responsible for printing the error message and
convertint some more common error responses from the middleware to
a useful ssherr.h status code. more detail remains visible via -v
of course.
also remove indepedent copy of sk-api.h declarations in sk-usbhid.c
and just include it.
feedback & ok markus@
|
|
feedback and ok markus@
|
|
Do not abuse strstr(3) to check whether one long string starts with
another long string. Instead, use strncmp(3) with the proper length.
In set_basedir(), also reset *basedir in the error brances for extra safety.
While here, invert some more Yoda conditions in the neighbourhood.
|
|
requested by markus@
|
