Re: siginfo_t.si_addr should be void*

On 2016-05-30 08:59, Martin Pieuchot wrote: On 27/04/16(Wed) 18:52, i80...@foxquill.com wrote: On 2016-04-27 18:20, Joerg Sonnenberger wrote: >This >[...snip...] >and this disagree? I... am so sorry. You're right of course; I don't know how that patch happened. ok mpi@ Regenerated the

comsat: prefer pread() over lseek+read

...and open() only needs the mode argument if O_CREAT is present. ok? Index: libexec/comsat/comsat.c === RCS file: /cvs/src/libexec/comsat/comsat.c,v retrieving revision 1.45 diff -u -p -r1.45 comsat.c --- libexec/comsat/comsat.c

Re: httpd/libtls: TLS client certificate revocation checking

On Sat, 01 Apr 2017 18:22:17 + Bob Beck wrote: > There will be some libtls api additions post 6.1 to get the peer cert > in PEM format Thanks Bob. That sounds like exactly what's needed. Happy to wait. > In the meantime, testing snaps prior to 6.1 should be the priority. >

Re: httpd/libtls: TLS client certificate revocation checking

There will be some libtls api additions post 6.1 to get the peer cert in PEM format In the meantime, testing snaps prior to 6.1 should be the priority. not a talkathon. On Sat, Apr 1, 2017 at 10:49 Joerg Sonnenberger wrote: > On Sat, Apr 01, 2017 at 07:53:05PM +1030, Jack Burton

Re: httpd/libtls: TLS client certificate revocation checking

On Sat, Apr 01, 2017 at 07:53:05PM +1030, Jack Burton wrote: > One common example of that happening is when a cert gets revoked because > its private key has been lost/stolen and the user needs a new cert > associated with the same identity. An even more common example is when > a cert expires &

Re: sync root.mail

Marc Espie writes: > On Thu, Mar 30, 2017 at 09:00:41PM +0200, Jeremie Courreges-Anglas wrote: >> Marc Espie writes: >> >> > On Wed, Mar 29, 2017 at 09:40:32PM +0200, Christian Weisgerber wrote: >> >> Antoine Jacoutot: >> >> >> >> > Why not just: >> >> > >>

Re: httpd/libtls: TLS client certificate revocation checking

On Fri, 31 Mar 2017 22:21:38 +0200 Joerg Sonnenberger wrote: > On Fri, Mar 31, 2017 at 01:03:44PM -0700, William Ahern wrote: > > Basically, anything short of passing through the entire certificate > > is going to be severely limiting and frustrating, to the point of > >

Re: httpd/libtls: TLS client certificate revocation checking

On Fri, 31 Mar 2017 13:03:44 -0700 William Ahern wrote: > On Thu, Mar 30, 2017 at 10:31:06PM +1030, Jack Burton wrote: > > > Personally, I'm leaning towards either local CRL file checking in > > httpd (with minimal changes to libtls), or passing through enough > >

Re: Another arm64 pmap cleanup diff

On Sat, Apr 01, 2017 at 06:08:23PM +1100, Jonathan Gray wrote: > On Fri, Mar 31, 2017 at 02:03:37PM +0200, Mark Kettenis wrote: > > On ARMv8, the translation table walk is fully coherent so there is no > > reason to explicitly flush the cache before invalidating the TLB. The > > barrier that is

Re: Another arm64 pmap cleanup diff

On Fri, Mar 31, 2017 at 02:03:37PM +0200, Mark Kettenis wrote: > On ARMv8, the translation table walk is fully coherent so there is no > reason to explicitly flush the cache before invalidating the TLB. The > barrier that is included in out TLB flushing code should be enough to > guarantee that