Age | Commit message (Collapse) | Author |
|
It seems that the filter is obsolete, the default method is sufficient.
Simplify and clean up some related code in wsmouse.
ok mpi@
|
|
posix file locks is defined. Also, detect overflows when dealing with positive
lengths.
ok millert@ visa@
|
|
m_leadingspace() and m_trailingspace(). Convert all callers to call
directly the functions and remove the defines.
OK krw@, mpi@
|
|
rdomain now and are therefor rdomain save.
OK mpi@
|
|
|
|
reported by Masanobu SAITOH
|
|
platforms.
From miod@
|
|
Feedback and OK jmc
|
|
|
|
ok mpi@
|
|
The maximum is ICMP_MINLEN (8) + max IPv4 header size (60) + IPv6 header (40)
for the IPv6 over IPv4 transition case. By having up to this amount of data
consequtive in an mbuf makes the rest of the code simpler and no more extra
m_pullup calls are needed. Only length checks are now required.The maximum
size is also big enough for all other ICMP types that don't embed the IP
heaader. This ensures that all data has been m_pullup-ed before calling the
ctlinput function which can look that deep into the header.
OK bluhm@ markus@
|
|
check. This code was never reached as ICMP length was truncated
before, but fix the wrong calculation anyway.
OK claudio@
|
|
|
|
OK mpi
|
|
the end of the cluster (there is no M_ALIGN version for clusters so it is
hard coded). Also make the sanity check more general by using m_leadingspace.
Not a security issue since the cluster code is not reachable, there is enough
space in an mbuf.
OK bluhm@
|
|
a fixed socket send buffer size for TCP. tcp_update_sndspace()
could overwrite the value as the algorithms were not in sync.
OK benno@ claudio@
|
|
ok patrick
|
|
These have served no useful purpose in practice; all reported instances were
legitimate group key retransmissions by the AP, e.g. after laptop suspend.
We fixed KRACK long ago; re-used group key messages are nothing to worry about.
|
|
in fact use the ATA_DELAY macro directly.
Coverity CID 1453008.
OK sthen@, kn@
|
|
|
|
|
|
intel_ringbuffer.h which previously had no license text.
|
|
which previously had no license text.
|
|
Jumbo frames on ure(4).
ok kevlo@
|
|
functions
ok kettenis@
|
|
ok deraadt@, mortimer@, visa@
|
|
|
|
inteldrm driver to add support for the I915_MMAP_WC flag.
ok deraadt@, jsg@
|
|
is void* so no need to cast; ok ratchov@
|
|
structures and function prototypes that we need. The original file doesn't
even a suitable license even though the associated drm_mipi_dsi.c file is
MIT-licensed. Probably a mistake upstream, but better safe than sorry.
ok deraadt@
|
|
and .data segments that have the X (executable) flag set when using lld.
This doesn't result in those sections being mapped executable in the bsd
kernel, but it does result in the X flag being set on those sections in
the final kernel binary, which confuses some scanning tools for (ROP)
gadgets.
Fix this by tweaking the generated gapdummy.c file that is used for
building gap.o. It now defines the .rodata section using inline asm.
This also fixes .data as it will inherit its flags from .rodata.
ok deraadt@, mortimer@
|
|
and .data segments that have the X (executable) flag set when using lld.
This doesn't result in those sections being mapped executable in the bsd
kernel, but it does result in the X flag being set on those sections in
the final kernel binary, which confuses some scanning tools for (ROP)
gadgets.
Fix this by tweaking the generated gapdummy.c file that is used for
building gap.o. It now defines the .rodata section using inline asm.
This also fixes .data as it will inherit its flags from .rodata.
ok deraadt@, mortimer@
|
|
binary so it should bypass unveil restrictions. This is similar
(but different...) to how the ELF linker (ld.so) is loaded (after
unveils get dropped). Discovered in doas, due to more accurate unveil
semantics.
ok guenther tedu beck
|
|
default when no feature test defines are given to be C11 instead of C99
headers.
ok kettenis@ millert@
naddy@ doesn't think ports needs any pretesting for this
|
|
|
|
back rev 1.90.
----
mbufs and mbuf clusters are now backed by large pools. Because of this
we can relax the oversubscribe limit of socketbuffers a fair bit.
Instead of maxing out as sb_max * 1.125 or 2 * sb_hiwat the maximum is
increased to 8 * sb_hiwat -- which seems to be a good compromise between
memory waste and better socket buffer usage.
OK deraadt@
----
ok benno@
|
|
|
|
|
|
unveil for each unveil in the process at unveil() time, and refactoring the
handling of current directory and ISDOTDOT to be much more sensible.
Worked out at ns2k18 with guenther@.
ok deraadt@
|
|
of rediscovering them (possibly badly).
OK stsp@
|
|
based on the state of the joinlist
OK stsp@
|
|
OK stsp@
|
|
ok deraadt@ visa@ (as part of a larger diff)
|
|
While here, improve existing lockf debug routines and sprinkle some more logging
related to list manipulation.
ok deraadt@ visa@ (as part of a larger diff)
|
|
runs. This is a second attempt in which the lockf structure is turned into a
doubly linked list which makes it easier to ensure correctness during list
insertion and deletion.
ok deraadt@ visa@
|
|
|
|
we already do on arm64. Prevents using the framebuffer on the cubox-i as
regular memory for example.
|
|
method to let the ACPI implementation know what features we support.
|
|
LOADADDR(.text) is only available after the description of the text
section. Instead simply use ENTRY(start) like we do on amd64. The
bootloader strips the high bits from the entry point address already,
so using the virtual address as the entry point address works.
with/ok kettenis@
|
|
by making all handlers consistent.
ok bluhm@, visa@
|