openbsd/src
1
0
Fork 0
mirror of https://github.com/openbsd/src.git synced 2026-06-18 07:13:36 +02:00
Code Activity

Commit Graph

  • bc22b0de19 Add extkeys feature to tmux itself so nested tmux works, GitHub issue 4960. nicm 2026-04-05 14:29:04 +00:00
  • dfa9e9637e Set less crazy limits (than INT_MAX) for pad and trim, makes ossfuzz happier. nicm 2026-04-05 13:24:02 +00:00
  • f907228fda Hoist mips64 CPU accounting to get multiple softnet threads on MP systems kn 2026-04-05 13:11:58 +00:00
  • 401a1d0147 Implement support for the Zicbom and Svpbmt extensions. Rework the cache flushing code to operate on virtual addresses instead of physical addresses. Seems the Zicbom implementation on the SpacemiT X60 cores doesn't flush the caches if the mapping is non-cachable. So adjust _pmap_kenter_pa() to use a temporary cachable mapping to clean a page we want to map non-cachable. kettenis 2026-04-05 11:48:17 +00:00
  • 9092a47d4d Add smtclock(4), a driver for the clock/reset controller on the SpacemiT K1 SoC. kettenis 2026-04-05 11:40:50 +00:00
  • 1d8b087cfc netgroup_mkdb(8) calls abort() when _ng_parse() returns _NG_ERROR for a malformed netgroup entry. Make this code exit via the same paradigm as other errors (errx). mlarkin 2026-04-04 21:20:42 +00:00
  • d929a90643 sync deraadt 2026-04-04 21:07:37 +00:00
  • 9340cd4a2b Fix hw.blockcpu sysctl variable name jca 2026-04-04 19:26:32 +00:00
  • aa01551487 Use proc-name, instead of command name for a filter's default syslog tag. martijn 2026-04-04 19:18:37 +00:00
  • 91e11a7d89 Cache user from getpwuid because it can be very expensive on some platforms. From Ben Maurer in GitHub issue 4973. nicm 2026-04-04 17:13:07 +00:00
  • 361a42094f Add remain-on-exit key to keep pane around until a key is pressed, from Michael Grant. nicm 2026-04-04 17:00:33 +00:00
  • 2a0de18b8a Bring some new formats from the floating panes work: pane_zoomed_flag, pane_flags, pane_floating_flag. By Michael Grant. nicm 2026-04-04 16:40:27 +00:00
  • ff124e2ac9 smtgpio(4) kettenis 2026-04-04 14:12:50 +00:00
  • bf327798d5 Document control ranges, from Dane Jensen. nicm 2026-04-04 11:48:00 +00:00
  • 9e3dfc0792 Set up default and last cell before clearing padding, reported by someone on GitHub. nicm 2026-04-04 11:39:49 +00:00
  • c374aa19a7 Do not read off end of buffer if it ends in \ when expanding \c, found by ossfuzz. nicm 2026-04-04 11:32:05 +00:00
  • 4791559ae8 Clamp width to terminal width, also change calculation of end of screen (it is OK to be outside the screen). Fixes problem reported by Dane Jensen in GitHub issue 4969. nicm 2026-04-04 11:20:01 +00:00
  • 1329367c83 fix previous bound check in dname_expand() op 2026-04-04 11:01:41 +00:00
  • 1ac8d6c943 ksh: yank on 'change' in vi-mode jtt 2026-04-04 09:33:18 +00:00
  • 3f02b625e6 match on Intel 800 Series ok mlarkin@ jsg 2026-04-04 09:01:13 +00:00
  • 50c69bf41c sys/octeon: interrupts and barier cleanup kirill 2026-04-04 09:00:20 +00:00
  • ebfb438939 regen jsg 2026-04-04 08:59:07 +00:00
  • bd8cabee06 add Intel 800 Series ids jsg 2026-04-04 08:58:26 +00:00
  • 7f3953d504 Fix order of cpus in CPU_INFO_FOREACH sf 2026-04-03 22:01:46 +00:00
  • c9c58e0235 Stop printing the riscv,isa string; our code to do so is broken and the string is now deprecated. Instead change hw.model to be the CPU core name for cpu0 like we do on other architectures. kettenis 2026-04-03 17:44:32 +00:00
  • 6159827a9d Add hw.blockcpu support for arm64. Here we classify CPU cores based on their "capacity". This a concept borrowed from the device tree standard that indicates the nominal performance of a CPU core. For ACPI machines we use similar information from ACPI's Collaborative Processor Performance Control (CPPC). If performance is less than 30% of the fastest cores in the same we classify them as L. Between 30% and 80% we classify them as E. And above 80% we classify them as P. The CPU capacity is communicated to userland though kstat(4). kettenis 2026-04-03 14:20:23 +00:00
  • a9ecf4b7f2 Remove lib/libssl/test. jsing 2026-04-03 14:16:38 +00:00
  • a0d451d3eb fix memory leak in config_purge() when dealing CONFIG_PROTOS op 2026-04-03 13:21:00 +00:00
  • 760e21a767 Remove workaround for SSL 3.0/TLS 1.0 CBC vulnerability. jsing 2026-04-03 13:11:00 +00:00
  • 2fe63a4b3d usr.bin/patch: fix fd leak kirill 2026-04-03 12:58:40 +00:00
  • 8da299b8d4 Ensure that we cannot negotiate TLSv1.1 or lower. jsing 2026-04-03 12:58:19 +00:00
  • c37df6e24f Add smtgpio(4), a driver for the GPIO controller found on SpacemiT K1 SoCs. kettenis 2026-04-03 12:47:06 +00:00
  • 130baa166a smtpd: fix using modifiers with partial expansion in format specifiers jtt 2026-04-03 10:18:58 +00:00
  • e33be6833f Add some new mouse ranges called "control0" to "control9", will be used for controls on floating panes, from Dane Jensen, with some bits from Michael Grant. nicm 2026-04-03 10:13:20 +00:00
  • 39c267db61 remove dup block that tries to close tls client ca fd op 2026-04-03 09:36:21 +00:00
  • d23a905203 Missed a line from previous. nicm 2026-04-03 09:18:24 +00:00
  • 8dc426a4b6 Handle OSC 9;4 progress bar sequence and store in format variables, from Eric Dorland in GitHub issue 4954. nicm 2026-04-03 09:14:27 +00:00
  • 05efa5c0da Increase b64_pton buffer to allow for Base64 without padding, from Michal Majchrowicz. nicm 2026-04-03 08:23:10 +00:00
  • 97bf1c6c43 Fix min vs max in failure output. jsing 2026-04-03 07:40:14 +00:00
  • 3a30f3e4e9 Use DTLS_client_method() instead of DTLSv1_client_method(). jsing 2026-04-03 07:37:52 +00:00
  • ac993068e4 Remove ssl_server_legacy_first_packet() jsing 2026-04-03 07:26:20 +00:00
  • 432cf71846 Mop up mac_packet. jsing 2026-04-03 07:17:36 +00:00
  • cbee47e0be rpki-client: stop aligning variables in cert_parse_extensions() tb 2026-04-03 02:41:03 +00:00
  • cfe3850a6c rpki-client: const for ext and OID in cert_parse_extensions() tb 2026-04-03 02:36:38 +00:00
  • 8155187ede rpki-client: cast extension passed to X509_EXTENSION_get_object() tb 2026-04-03 02:33:21 +00:00
  • de6be2070b rpki-client: const correct cert extension handlers tb 2026-04-03 02:23:33 +00:00
  • 03bf51787e rpki-client: cast extension passed to X509V3_EXT_d2i() tb 2026-04-03 02:20:03 +00:00
  • 9bf5475c8f rpki-client: rename certificate_policies() into cert_policies() tb 2026-04-03 02:11:43 +00:00
  • 163ad7a20f rpki-client: cast away const for X509_get_X509_PUBKEY() tb 2026-04-03 02:10:10 +00:00
  • b751ae36c1 rpki-client: make the X509_NAME *xissuer const tb 2026-04-03 02:07:15 +00:00
  • 5934184e11 Fix a memory leak in handling radius configuration. Diff from iij. yasuoka 2026-04-03 00:09:24 +00:00
  • 00994d152b Fix leap year detection. kili 2026-04-02 18:22:24 +00:00
  • 877bcf024a If a fd satisfies both POLLIN and POLLOUT in the same cycle, but the POLLIN resulted in a file close, the POLLOUT runs incorrectly which matters in the TLS context which attempts to read after free. from James J. Lippard ok millert deraadt 2026-04-02 17:23:04 +00:00
  • cb64dfb359 Prevent integer overflow in regex repetition count millert 2026-04-02 14:45:03 +00:00
  • 38cd3ff5d2 relay_tls_ctx_create: plug tls_cfg leak tb 2026-04-02 13:38:24 +00:00
  • 6515c4104f relayd: error check bsearch in relay_httperror_byid() tb 2026-04-02 13:35:36 +00:00
  • 97281f0902 relayd: fix NULL check for strdup() tb 2026-04-02 13:28:22 +00:00
  • c055930d45 Add regress test for TCP Selective ACK packets. bluhm 2026-04-02 11:54:06 +00:00
  • 88e30ec869 sys/iwx: align antenna patterns and STBC with iwlwifi kirill 2026-04-02 11:19:45 +00:00
  • bd9eac5a7a Do not leak command in list-keys, reported by tb@. Also tidy up some function names while here. nicm 2026-04-02 09:58:14 +00:00
  • 4245707926 Do not leak trimmed string when expanding, found by ossfuzz. nicm 2026-04-02 09:35:46 +00:00
  • 3c769161d8 Use INT_MIN + 1 as strtonum lower limits in formats so -ve works, found by ossfuzz. nicm 2026-04-02 09:28:22 +00:00
  • b47f74b422 Limit argc to between 0 and 1000 to prevent fatal from MSG_COMMAND, from Michal Majchrowicz. nicm 2026-04-02 09:11:39 +00:00
  • dac62aa1e0 Handle empty regular expression in substitution, found by ossfuzz. nicm 2026-04-02 08:45:35 +00:00
  • 228dbe0fa0 Check for \0 after skipping # not before in format_expand1, from ossfuzz. nicm 2026-04-02 08:37:14 +00:00
  • 012a125b6d Fix NULL dereference in sort.c, from Dane Jensen. nicm 2026-04-02 08:01:47 +00:00
  • 32cc01e8dc adapt to username validity check change djm 2026-04-02 07:52:15 +00:00
  • 14539578db openssh-10.3 djm 2026-04-02 07:51:12 +00:00
  • 572646d530 move username validity check for usernames specified on the commandline to earlier in main(), specifically before some contexts where a username with shell characters might be expanded by a %u directive in ssh_config. djm 2026-04-02 07:50:55 +00:00
  • f68503eaa6 correctly match ECDSA signature algorithms against algorithm allowlists: HostKeyAlgorithms, PubkeyAcceptedAlgorithms and HostbasedAcceptedAlgorithms. djm 2026-04-02 07:48:13 +00:00
  • aaf4b0e819 when downloading files as root in legacy (-O) mode and without the -p (preserve modes) flag set, clear setuid/setgid bits from downloaded files as one might expect. djm 2026-04-02 07:42:16 +00:00
  • b171efd1c6 add missing askpass check when using ControlMaster=ask/autoask and "ssh -O proxy ..."; reported by Michalis Vasileiadis djm 2026-04-02 07:39:57 +00:00
  • e58fa79f4b Fix possible sshd crash when sshd_config set MaxStartups to a value <10 using the single-argument form of MaxStartups (e.g. MaxStartups=3). This doesn't affect the three-argument form of the directive (e.g. MaxStartups 3:20:5). djm 2026-04-02 07:38:14 +00:00
  • ac4a125d9e match recent Intel parts ok deraadt@ mlarkin@ jsg 2026-04-02 07:33:15 +00:00
  • 51b8af5964 match on Panther Lake ok deraadt@ mlarkin@ jsg 2026-04-02 07:31:09 +00:00
  • 2e263234e2 regen jsg 2026-04-02 07:26:45 +00:00
  • 3d1960dc6e add Intel Panther Lake ids jsg 2026-04-02 07:25:48 +00:00
  • 8c0eb659e2 sync deraadt 2026-04-02 01:11:00 +00:00
  • 8eafb9a57f Update to perl 5.42.2 afresh1 2026-04-01 23:20:53 +00:00
  • 3eaa2c8301 If we receive a response it must have the exact same msgid as the last request we sent, so make sure they match exactly rather than allowing higher msgids. We can't handle out of order responses and if we don't receive a response in time we retransmit our request until we get one or run into a timeout. tobhe 2026-04-01 19:04:22 +00:00
  • 0ea06f527d iked only ever handles one exchange at a time so we can drop the entire fragment queue instead of doing a lookup based on the msgid tobhe 2026-04-01 18:58:15 +00:00
  • 4b14e38b97 Add ikev2_validate_ef() to validate fragment payload header size field as we do for other IKEv2 payloads. tobhe 2026-04-01 18:43:20 +00:00
  • 77eba9704e Add SA state check for CREATE_CHILD_SA exchange, similar to what we do for INFORMATIONAL exchanges. iked currently assumes that IKE_AUTH always results in valid child SAs, so IKEV2_STATE_ESTABLISHED means we have successfully completed the IKE_AUTH exchange for the SA. tobhe 2026-04-01 18:36:49 +00:00
  • 7c6b5cdc9f chars[] array needs to be sized 256 because it is indexed at many places by (unsigned char) from input data. from Renaud Allard deraadt 2026-04-01 17:49:40 +00:00
  • 2092d1748e Use an unsigned sum value to provide deterministic overflow behaviour, for input to the hash. from Renaud Allard deraadt 2026-04-01 17:47:46 +00:00
  • dc8703adcd Range-check fields inside the file to ensure they don't exceed the size of the file and cause later crashes. from renaud allard deraadt 2026-04-01 16:58:22 +00:00
  • 471a995e78 Do the unveil() after the daemon() call, because otherwise we wouldneed "/dev/null" "rw" and "/" "r", in particular the second is ugly. pointed out by bluhm, discussion also with dgl. deraadt 2026-04-01 15:39:05 +00:00
  • 0d123a3a59 Adjust depth check to match change in verifier. jsing 2026-04-01 14:39:11 +00:00
  • 63d3a7e33d Restore the previous behaviour with maximum verification depth. jsing 2026-04-01 14:38:26 +00:00
  • 9532dfe990 fix possible out of bound in text_to_netaddr op 2026-04-01 11:20:58 +00:00
  • 76af690f2b fix possible out of bound access in dname_expand() op 2026-04-01 11:19:01 +00:00
  • ffc378411d Fixed missing drag end detection and mouse button detection with modifiers. From Dane Jensen, reported by Joseph Tyson and Mark Kelly. nicm 2026-04-01 08:10:02 +00:00
  • f7a3fa387c mdoc fixes jsg 2026-04-01 02:34:37 +00:00
  • 215c0970ab add .Nm for __pledge_open, makes 'man __pledge_open' work jsg 2026-04-01 02:32:49 +00:00
  • 57871d3766 sys/iwx: increase maximal VHT A-MPDU from 64K to 1024K kirill 2026-04-01 02:29:37 +00:00
  • 8716a8b212 remove whitespace at eol jsg 2026-04-01 02:08:38 +00:00
  • 9efff6d8cc spelling jsg 2026-04-01 02:05:06 +00:00
  • c0f9fe8338 make ddb output visible when entering ddb from X on amdgpu jsg 2026-04-01 01:29:25 +00:00
  • c9b2dc6761 Clean up vmctl, remove use of vmd's log.c. dv 2026-04-01 00:51:50 +00:00
  • aaea3278ec delete AMD smt related line accidentally deleted deraadt 2026-03-31 16:53:02 +00:00