disruptive amd64 snapshot coming

2023-10-26 Thread Theo de Raadt
There is a pretty disruptive amd64 snapshot coming, so anyone who is using snapshots for critical stuff should take a pause. (This warning about a development step is unusual, I won't make it common practice).

Re: snmpd: Fix close after protocol error case

2023-10-26 Thread Theo Buehler
On Thu, Oct 26, 2023 at 10:47:36AM +0200, Martijn van Duren wrote: > So here's an elusive one that can be triggered every now and then by the > new regression test. Once an AgentX session is opened and we send an > invalid packet appl_agentx_recv() goes to appl_agentx_free(), since > there's no

Re: snmpd; Fix use after free for appl_request_upstream

2023-10-26 Thread Theo Buehler
On Thu, Oct 26, 2023 at 11:51:00AM +0200, Martijn van Duren wrote: > This case is covered by the new regress' backend_get_toofew and > backend_get_toomany tests. However, even with MALLOC_OPTIONS cranked > to the max it's really hard to trigger (I had to run > backend_get_wrongorder,

Re: Prevent off-by-one accounting hang in out-of-swap situations

2023-10-26 Thread Martin Pieuchot
On 26/10/23(Thu) 07:06, Miod Vallat wrote: > > I wonder if the diff below makes a difference. It's hard to debug and it > > might be worth adding a counter for bad swap slots. > > It did not help (but your diff is probably correct). In that case I'd like to put both diffs in, are you ok with

Re: relayd.conf.5: less SSL

2023-10-26 Thread Klemens Nanni
On Tue, Oct 24, 2023 at 09:09:21AM +0200, Peter N. M. Hansteen wrote: > On Tue, Oct 24, 2023 at 06:54:30AM +, Klemens Nanni wrote: > > - parse.y still accepting undocumented "ssl" with a warning since 2014 > > - more "SSL/TLS" instead of "TLS" in manual and code comments > > my take would be

snmpd; Fix use after free for appl_request_upstream

2023-10-26 Thread Martijn van Duren
This case is covered by the new regress' backend_get_toofew and backend_get_toomany tests. However, even with MALLOC_OPTIONS cranked to the max it's really hard to trigger (I had to run backend_get_wrongorder, backend_get_toofew, backend_get_toomany sequentially in a tight loop killing snmpd

snmpd: Fix close after protocol error case

2023-10-26 Thread Martijn van Duren
So here's an elusive one that can be triggered every now and then by the new regression test. Once an AgentX session is opened and we send an invalid packet appl_agentx_recv() goes to appl_agentx_free(), since there's no recovery. appl_agentx_free() tries to neatly close all open sessions by

apu4 real com0 boot - not working to install 7.4

2023-10-26 Thread harold felton
apologies for crossposting - feel free to direct me to the correct place and/or ignore other versions... i started a reddit-thread HERE which didnt specify which list specifically - but provided a

Re: Prevent off-by-one accounting hang in out-of-swap situations

2023-10-26 Thread Miod Vallat
> I wonder if the diff below makes a difference. It's hard to debug and it > might be worth adding a counter for bad swap slots. It did not help (but your diff is probably correct). > Index: uvm/uvm_anon.c > === > RCS file: