CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: v...@cvs.openbsd.org2022/01/20 00:49:25 Modified files: sys/dev/dt : dt_dev.c Log message: dt: Add frame skip parameters for octeon OK mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2022/01/19 23:33:03 Modified files: sys/dev/pci/drm: drm_linux.c Log message: xa_pool is protected by xa_lock mtx so drop pool ipl to IPL_NONE
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2022/01/19 20:43:31 Modified files: sys/kern : kern_pledge.c sys/sys: file.h sys/dev/pci/drm: drm_linux.c sys/dev/pci/drm/i915/gem: i915_gem_shmem.c sys/dev/pci/drm/include/linux: file.h sync_file.h Log message: initial support for drm sync files, fences associated with file descriptors for explicit fencing tested with libdrm's amdgpu_test syncobj timeline tests and vkcube on intel broadwell with Mesa 21.3 (which hangs without sync file support after the 'anv: Assume syncobj support' Mesa commit) feedback and ok visa@
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: t...@cvs.openbsd.org2022/01/19 18:59:17 Modified files: . : ftp.html ftplist httpslist build : mirrors.dat openbgpd : ftp.html openntpd : portable.html openssh: ftp.html portable.html rpki-client: portable.html Log message: comment out exonetric.net mirror since it's giving NXDOMAIN right now, which also prevents me from contacting the maintainer about it...
CVS: cvs.openbsd.org: src
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/19 13:28:06
Modified files:
lib/libcrypto/man: CMS_verify.3 PKCS7_verify.3
Log message:
Document the bizarre fact that {CMS,PCKS7}_get0_signers() needs some
freeing of what they return despite being get0 functions: the stack
of X509s that they return must be freed with sk_X509_free(). The get0
thus probably refers to the individual certs, but not to the stack
itself.
The libcrypto and libssl APIs never cease to amaze with new traps.
ok inoguchi
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2022/01/19 12:39:42 Modified files: sys/arch/amd64/amd64: vmm.c Log message: Only invoke the underlying cpuid instruction if the real CPU might support the leaf (<=cpuid_level) and always pass the subleaf. Delete the CPUID_LEAF() calls made superfluous by always passing the subleaf. ok mlarkin@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2022/01/19 10:15:08 Modified files: usr.sbin/rpki-client: main.c Log message: Add -f to usage in main routine OK tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2022/01/19 09:33:36 Modified files: usr.sbin/rpki-client: rpki-client.8 Log message: Document the -f file inspection function
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: bl...@cvs.openbsd.org 2022/01/19 09:20:25 Modified files: . : errata69.html errata70.html Log message: Release libexpat and vmm errata.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2022/01/19 08:50:31 Modified files: usr.sbin/rpki-client: extern.h main.c parser.c Log message: Implement a filemode where the passed file from the command line is printed in human readable form and is also verified against the valid cache of rpki-client. To validate the file the chain is explored backwards by looking at the Authority Information Access URI and X509v3 CRL Distribution Point of the cert. Once the trust anchor is found this chain can be verified. Feedback and OK job@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: inogu...@cvs.openbsd.org2022/01/19 06:47:44 Modified files: lib/libcrypto/cms: cms_pwri.c Log message: Check return value from EVP_CIPHER_CTX_new in cms_pwri.c CID 345137 ok jsing@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: v...@cvs.openbsd.org2022/01/19 06:45:22 Modified files: share/man/man4 : sdmmc.4 Log message: Mention more controllers that provide sdmmc(4) bus. Initial diff from and OK jmc@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: inogu...@cvs.openbsd.org2022/01/19 04:10:55 Modified files: lib/libtls : tls_server.c Log message: Check function return value in libtls EVP_EncryptInit_ex, EVP_DecryptInit_ex and HMAC_Init_ex are possible to fail and return error. Error from these functions will be fatal for the callback, and I choose to return -1. SSL_CTX_set_tlsext_ticket_key_cb.3 explains the return value of callback. This also could fix Coverity CID 345319. ok jsing@ tb@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 04:05:36 Modified files: regress/usr.bin/snmp: Makefile Log message: Mark regress set requests as expected failure now that snmpd(8) doesn't support set requests anymore. Fix up multi-varbind bulkget requests now that the new application layer returns the correct order. OK jmatthew@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 04:02:38 Modified files: regress/usr.sbin/snmpd: snmpd.sh Log message: Disable regress for set requests after dropping support in new application layer. OK jmatthew@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 04:00:56 Modified files: usr.sbin/snmpd : Makefile snmpe.c Log message: Hook up the new application layer. OK jmatthew@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 03:59:35 Added files: usr.sbin/snmpd : application.c application.h application_legacy.c Log message: Add the new application layer. Changes include: - Asynchronous design, which should allow us to cleanly implement agentx support. - Cluster requests when sending them to backends - Return a better error code in a lot of cases. - Allow bulkget to return row by row instead of column by column (as per RFC3416) - Better SNMPv1 mapping as per RFC3584 - Allow registration of overlapping regions. - Stricter OID comparison. - We loose write support. Previous write support didn't guarantee atomicity, wasn't persistent across restarts and didn't implement anything useful. This can be added later if it's missed. - This is quite a bit slower, but this should clear up once the current mps.c and mib.c code gets pushed out. Other tricks could help speed things up, but I don't want to resort to extra tricks if it's not needed. - More detailed debugging output. This commit is stand-alone and gets hooked in with the following commit. "Looks good at first glance" benno@ minor issues pointed out by and OK jmatthew@ Performance loss aceptable to sthen@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: patr...@cvs.openbsd.org 2022/01/19 03:51:04 Modified files: sys/dev/sdmmc : sdhc.c Log message: On SDHC version 3.0 controllers the divisor doesn't have to be a power of two, but can be a multiple of two. Make use of this to achieve card clock frequencies closer to the target frequency. ok visa@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: k...@cvs.openbsd.org2022/01/19 03:43:48 Modified files: sys/uvm: uvm_mmap.c Log message: Grab the kernel lock in uvm_wxcheck() when aborting the process kern.wxabort=1 logs and kills programs after W^X violations. At least sigexit() -> coredump() as well as the non-atomic increment of ps_wxcounter require protection, so grab the big lock for the entire block. This is part of the effort to unlock mmap(2)'s MAP_ANON case. Feedback mvs claudio kettenis deraadt OK kettenis
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 03:36:35 Modified files: usr.sbin/snmpd : snmpe.c snmpe.h Log message: Implement snmpe_send to allow to allow the new application layer to send messages through the current transport mapping code. OK jmatthew@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 03:28:13 Modified files: usr.sbin/snmpd : snmpe.c Log message: Make sure that we ASN1 verify the varbindlist as soon as we unpack it. OK jmatthew@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 03:26:37 Modified files: usr.sbin/snmpd : mib.h Log message: Add definitions for SNMP-TARGET-MIB. These are needed for the new application layer. OK jmatthew@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 03:25:04 Modified files: usr.sbin/snmpd : snmpd.h Added files: usr.sbin/snmpd : smi.h Log message: Move some smi.c functions to their own header. These are needed for a new application layer, where a lot of the snmpd.h stuff just clutter. OK jmatthew@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 03:22:48 Modified files: usr.sbin/snmpd : snmpe.c Added files: usr.sbin/snmpd : snmpe.h Log message: Move some snmpe.c functions to their own header. These functions are needed from the new application layer and don't really belong in snmpd.h. OK jmatthew@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: mart...@cvs.openbsd.org 2022/01/19 03:19:27 Modified files: usr.sbin/snmpd : snmpd.h Added files: usr.sbin/snmpd : log.h Log message: Move log.c functions to their own header. This is needed for a new application layer where, where a lot of the snmpd.h stuff just clutter. Requested by benno@ OK jmatthew@ tested as part of larger diff by sthen@ and Joel Carnat
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2022/01/19 02:22:51 Modified files: usr.sbin/rpki-client: main.c Log message: rpki-client: don't leak nfile if no repo is found. ok claudio
Re: CVS: cvs.openbsd.org: src
On Wed, Jan 19, 2022 at 07:44:12AM +0100, Anton Lindqvist wrote: > On Tue, Jan 18, 2022 at 06:06:43AM -0700, Claudio Jeker wrote: > > CVSROOT:/cvs > > Module name:src > > Changes by: clau...@cvs.openbsd.org 2022/01/18 06:06:43 > > > > Modified files: > > usr.sbin/rpki-client: cert.c extern.h gbr.c mft.c parser.c roa.c > > x509.c > > > > Log message: > > Cleanup the scattered OBJ_txt2obj() calls and move them into > > x509_init_oid() to initalize all necessary OID objects at start. > > OK tb@ > > Seeing a bunch segfaults in regress. Looks like the test utilities must > call x509_init_oid() at this point. > Yes, indeed, I fixed the tests that failed now. Thanks for the heads up. -- :wq Claudio
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: clau...@cvs.openbsd.org 2022/01/19 01:24:43 Modified files: regress/usr.sbin/rpki-client: test-cert.c test-gbr.c test-mft.c test-roa.c Log message: Add missing x509_init_oid() calls in regress tests. Found by anton@
