openbsd/src
1
0
Fork 0
mirror of https://github.com/openbsd/src.git synced 2026-06-18 07:13:36 +02:00
Code Activity

Commit Graph

  • 1675bd6d03 warn if hw.smt is used, and recommend hw.blockcpu deraadt 2026-03-31 16:46:46 +00:00
  • 7ce80b6577 Some new intel machines have a new 3rd tier of cpus called LP-E which are E-core (Atom) without L3 cache. These cpus are Lethargic, and it sucks when processes migrate to them. This introduces sysctl hw.blockcpu= which takes a sequence of 4 letters. S (for SMT), P (regular performance cpu), E (efficient cpu) generally 80% to 50% as fast), and L (lethargic cpu) which are even slower. By setting this, you can select cpus to kick out of the scheduler. The default is SL. The hw.smt sysctl remains for now but we will eventually delete it. hw.smt changes and follows hw.blockcpu=S. ok kettenis mlarkin deraadt 2026-03-31 16:46:21 +00:00
  • 9f2496a895 add ci_cputypes field which will be needed by an upcoming MI change ok kettenis deraadt 2026-03-31 16:37:48 +00:00
  • 26388c13bd Attempt to power on attached USB hubs. Add support for SpacemiT K1. kettenis 2026-03-31 14:42:54 +00:00
  • b2cd6d50b9 Recognize SpacemiT X60 and X100 cores. kettenis 2026-03-31 14:41:15 +00:00
  • e9af5eb5a6 Fix an off-by-one error in the X.509 verifier depth checking. jsing 2026-03-31 13:58:05 +00:00
  • e22d54a186 Add additional X.509 verifier test cases. jsing 2026-03-31 13:39:48 +00:00
  • 7d5b0b9756 Run new test certificate bundles through Go's verifier. jsing 2026-03-31 13:37:45 +00:00
  • 2af75b58ad Add additional certificate test bundles. jsing 2026-03-31 13:37:11 +00:00
  • 38b2e9b49e Generate two additional certificate test scenarios which have deep chains. jsing 2026-03-31 13:34:25 +00:00
  • 8852b28943 Reorganize structure of key_code so that it can be built directly by bitshifts rather than a load of huge switches, from Dane Jensen in GitHub issue 4953. nicm 2026-03-31 11:46:43 +00:00
  • 702ae470df Correctly align and space queue info in 'show neighbor' command. OK tb@ claudio 2026-03-31 09:32:12 +00:00
  • 077f28b4c6 access ida under spltty() jsg 2026-03-31 08:54:14 +00:00
  • 9f74635ce2 rpki-client regress: align guard with portable tb 2026-03-31 06:25:39 +00:00
  • 07249334be sys/net80211: announce 160MHz channels only when driver supports it kirill 2026-03-30 13:59:19 +00:00
  • 0a71aa187b When in copy mode with a large scroll offset and the window is resized so that history shrinks, data->oy can exceed screen_hsize causing an unsigned integer underflow in the py computation. Clamp data->oy in window_copy_resize and window_copy_cmd_refresh_from_pane before the subtraction. From futpib at gmail dot com in GitHub issue 4958. nicm 2026-03-30 09:23:40 +00:00
  • 9b8c7086ba add a regression test for ProxyJump/-J; ok dtucker djm 2026-03-30 07:19:02 +00:00
  • 5700c4436f apply the same validity rules to usernames and hostnames set for ProxyJump/-J on the commandline as we do for destination user/host names. djm 2026-03-30 07:18:24 +00:00
  • d3e6ebe0e9 libssl regress: adjust golden numbers for RSASSA-PSS tb 2026-03-30 06:23:33 +00:00
  • 337a5c045a libssl: announce support for RSASSA-PSS signature schemes tb 2026-03-30 06:20:08 +00:00
  • 97142c6557 ssl_sigalg_pkey_ok: allow RSASSA-PSS with pubkey OID RSASSA-PSS tb 2026-03-30 06:02:21 +00:00
  • a8b0d4d0a7 ssl_sigalgs: whitespace tweak tb 2026-03-30 05:49:31 +00:00
  • 03db75a2bd Improve OpenBSD::Unveil POD afresh1 2026-03-30 00:00:04 +00:00
  • b6590ac202 sys/iwx: enable 160Mhz window at 5Ghz kirill 2026-03-29 21:17:50 +00:00
  • a17ca92d14 sys/net80211: support of 160Mhz window at 5Ghz kirill 2026-03-29 21:16:21 +00:00
  • 751ff169a1 Remove useless memory barriers in igmp and mld6 timer. bluhm 2026-03-29 18:08:07 +00:00
  • 7ab78e8bd0 FNM_CASEFOLD (and its synonym FNM_IGNORECASE) are now part of POSIX.1-2024 daniel 2026-03-29 14:08:46 +00:00
  • 2bea9c5040 sys/tmpfs: use getnanotime() like FFS and MFS kirill 2026-03-29 09:37:33 +00:00
  • 6b1826a526 ML-KEM: ensure that key_768 is only dereferenced with 768-bit keys tb 2026-03-29 06:31:07 +00:00
  • 98d16a20cf Add missing include path required to reach newly added crypto_assembly.h include. anton 2026-03-29 06:19:12 +00:00
  • e0872ad225 Fix typo. mglocker 2026-03-29 05:29:02 +00:00
  • 8c0bc7d7b0 switch from int to long long for bandwidth calculations; fixes rate display when rate > 2GB/s; based on patch from Cyril Servant feedback/ok deraadt@ djm 2026-03-29 01:08:13 +00:00
  • 69012ea1b2 After the kernel-writes-the-buffer changes to profil(2) a year ago, the profil(2) call only works for stop/restart of profiling. So pledge no longer interferes and it is available in "stdio". deraadt 2026-03-28 17:12:01 +00:00
  • 2ec97aa487 Remove pthread rwlocks from vmd(8)'s qcow code. dv 2026-03-28 16:22:04 +00:00
  • b39c1312a5 Include crypto_assembly.h instead of manually ensuring _CET_ENDBR exists. jsing 2026-03-28 13:11:28 +00:00
  • 8a6c24b7af Provide a crypto_assembly.h internal header. jsing 2026-03-28 13:09:55 +00:00
  • cc88cbeddb libtls: const workarounds for X509_NAME in OCSP for OpenSSL 4 tb 2026-03-28 11:49:31 +00:00
  • 99d6452825 libtls: simple cases of const for X509_NAME * tb 2026-03-28 11:33:33 +00:00
  • dca08cedf0 Test that __pledge_open can bypass unveil. dgl 2026-03-28 07:23:57 +00:00
  • 41316900b8 ensure c->local_window doesn't underflow during updates; similar to checks performed elsewhere. From Renaud Allard djm 2026-03-28 05:16:18 +00:00
  • 102666c504 fix base16 parsing; currently unused. From Renaud Allard djm 2026-03-28 05:10:25 +00:00
  • 27d8b97729 mention that RevokedKeys is read by the server at each authentication time and should only ever be replaced atomically. djm 2026-03-28 05:07:12 +00:00
  • a02abb8f37 fix potential hang if /etc/moduli doesn't contain the requested DH group values; from 77c9ca, ok dtucker@, markus@ djm 2026-03-28 05:06:16 +00:00
  • 1f66bff071 improve explanation of when it __pledge_open works deraadt 2026-03-28 04:13:52 +00:00
  • 70d21af179 wcwidth(3): fix return value for L'\0' daniel 2026-03-27 20:35:08 +00:00
  • 9d790fdba9 catgets(3): set errno when a message isn't found as per POSIX. daniel 2026-03-27 20:05:58 +00:00
  • ddc5737dc1 rpki-client regress: initial plumbing to make this work with OpenSSL 4.0 tb 2026-03-27 19:55:35 +00:00
  • f43b20dd87 rpki-client regress: drop unused EOPENSSL_PATH tb 2026-03-27 19:54:10 +00:00
  • a05c290d1b rpki-client regress: drop another hardcoded eopenssl35 tb 2026-03-27 19:52:38 +00:00
  • b9b707e00d Fix unveil in NFS daemon. bluhm 2026-03-27 19:19:41 +00:00
  • 09b639a88d rpki-client regress: avoid hardcoding eopenssl35 tb 2026-03-27 18:00:17 +00:00
  • 7f72b710e6 after a report from 'K r' on bugs that the manual page section rfc868 '-o' option has incorrect dates, let's recognize that this is no longer a good way to get time information and only the ntp interface is needed. ok sthen florian henning deraadt 2026-03-27 14:33:58 +00:00
  • ceb7e02c45 Make pthread_mutex_destroy() not error out for mutexes that were initalized with PTHREAD_MUTEX_INITIALIZER but not used. claudio 2026-03-27 12:26:58 +00:00
  • f3ad7971a2 Ql -> Fl, from arza at arza dot us in GitHub issue 4949. nicm 2026-03-27 08:41:54 +00:00
  • f7baf5c87e Add a format flag for bracket paste, from George Nachman in GitHub issue 4951. nicm 2026-03-27 08:40:26 +00:00
  • cdc47337d7 Properly reset accounting in HTTP gzip compression detection job 2026-03-27 08:10:46 +00:00
  • e75afad489 stat() and access() become "rpath", this is safe because pledge_namei no longer has a special case for these two system calls. With this change pledge "stdio" no longer lets user code reach namei(). dgl 2026-03-27 05:15:25 +00:00
  • 081c22237c incremental improvement documenting recent changes ok beck dgl deraadt 2026-03-27 05:14:38 +00:00
  • 30d294c44e Hook up __pledge_open regress. dgl 2026-03-27 05:07:02 +00:00
  • 69556c7634 Add __pledge_open regress. dgl 2026-03-27 05:06:33 +00:00
  • 019066103c acpidmar(4): Recognize reserved 4-byte IVHD device entry hshoexer 2026-03-27 03:56:15 +00:00
  • 45720098d5 shm_open(3): align the type of the mode_t parameter with POSIX daniel 2026-03-26 21:46:24 +00:00
  • 2f434a4256 Bump version to 9.1 claudio 2026-03-26 19:29:07 +00:00
  • 1388771ffa table_proc: ensure the request does not contain newlines op 2026-03-26 18:43:53 +00:00
  • 3d6043dede reject usernames (or passwords) with line feeds in it op 2026-03-26 18:43:40 +00:00
  • d0edea5c70 Fix a fatal firmware error during association on non-MIMO iwx(4) devices. stsp 2026-03-26 15:39:04 +00:00
  • dc89590874 sys/iwx: move interface into SCAN after CSA or eCSA/XCSA from AP kirill 2026-03-26 12:15:48 +00:00
  • eb89943cc2 sys/net80211: skip AP which announces CSA or eCSA/XCSA kirill 2026-03-26 12:15:01 +00:00
  • 596398d5de mention RK3528 support jmatthew 2026-03-26 06:12:38 +00:00
  • 9c6370df4f Add support for the RK3528 variant of the combo phy, currently only in PCIe mode, though USB3 may follow later. jmatthew 2026-03-26 05:59:38 +00:00
  • bf91cc2988 Drop PLEDGE_CPATH from SYS_open, the flags passed result in rpath or wpath pledge always being checked. cpath alone is not enough. dgl 2026-03-26 05:21:06 +00:00
  • 613b296197 fstatat, faccessat, readlinkat, lstat, and __getcwd should not be permitted by "wpath", they are exclusively in the "wpath" catagory. discussions with dgl deraadt 2026-03-26 00:55:20 +00:00
  • f55f49bc63 drm/i915/gt: Check set_default_submission() before deferencing jsg 2026-03-25 23:54:30 +00:00
  • 1a54a6c701 drm/amd: fix dcn 2.01 check jsg 2026-03-25 23:52:19 +00:00
  • bf229d989d drm/amd/display: Fix DisplayID not-found handling in parse_edid_displayid_vrr() jsg 2026-03-25 23:50:06 +00:00
  • 9dcb779ade drm/i915/psr: Compute PSR entry_setup_frames into intel_crtc_state jsg 2026-03-25 23:47:39 +00:00
  • 5aafb9241b drm/i915/dmc: Fix an unlikely NULL pointer deference at probe jsg 2026-03-25 23:44:32 +00:00
  • d4530f2f4c drm/amdgpu: Limit BO list entry count to prevent resource exhaustion jsg 2026-03-25 23:42:23 +00:00
  • 4bf88bbb0b drm/amdgpu: apply state adjust rules to some additional HAINAN vairants jsg 2026-03-25 23:37:59 +00:00
  • 5c5da28dcf drm/radeon: apply state adjust rules to some additional HAINAN vairants jsg 2026-03-25 23:36:20 +00:00
  • cec8f58773 drm/amdgpu/mmhub4.1.0: add bounds checking for cid jsg 2026-03-25 23:33:57 +00:00
  • 173a72450c drm/amdgpu/mmhub3.0: add bounds checking for cid jsg 2026-03-25 23:32:12 +00:00
  • 81b944a8f8 drm/amdgpu/mmhub3.0.2: add bounds checking for cid jsg 2026-03-25 23:30:48 +00:00
  • a87dfe1590 drm/amdgpu/mmhub3.0.1: add bounds checking for cid jsg 2026-03-25 23:29:33 +00:00
  • 1148f5939d drm/amdgpu/mmhub2.3: add bounds checking for cid jsg 2026-03-25 23:28:10 +00:00
  • ee6f1d582d drm/amdgpu/mmhub2.0: add bounds checking for cid jsg 2026-03-25 23:26:44 +00:00
  • 00c02f8868 drm/amdgpu/gmc9.0: add bounds checking for cid jsg 2026-03-25 23:24:14 +00:00
  • 84b7e477fd drm/amd/display: Wrap dcn32_override_min_req_memclk() in DC_FP_{START, END} jsg 2026-03-25 23:22:48 +00:00
  • 3d0374cbf3 drm: Fix use-after-free on framebuffers and property blobs when calling drm_dev_unplug jsg 2026-03-25 23:20:35 +00:00
  • 9a6fb9a4d2 drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL jsg 2026-03-25 23:17:42 +00:00
  • d06a33969a drm/i915/vrr: Move HAS_VRR() check into intel_vrr_set_transcoder_timings() jsg 2026-03-25 23:15:02 +00:00
  • da96c44cc2 drm/i915/psr: Write DSC parameters on Selective Update in ET mode jsg 2026-03-25 23:12:30 +00:00
  • 3e149d2cd1 drm/i915/dsc: Add helper for writing DSC Selective Update ET parameters jsg 2026-03-25 23:09:56 +00:00
  • 8500e6a1b0 drm/i915/dsc: Add Selective Update register definitions jsg 2026-03-25 23:07:05 +00:00
  • 35138522e9 Simplify ro/rw overwrite in munge_fstab() kn 2026-03-25 21:24:29 +00:00
  • 01ab9fa9b6 drop in-line comments repeating munge_fstab() function description kn 2026-03-25 21:07:46 +00:00
  • 94c603bf46 Use \- for hyphens in tmux.1 to cause newer groff versions to render them correctly (ASCII hyphen rather than Unicode) which aids copy and paste. From Keith Thompson in GitHub issue 4948. nicm 2026-03-25 10:08:50 +00:00
  • ee1bf64f5b In the namei callback for __pledge_open() invert the logic of checking pledge/namei modes and then checking for the path. Now, first identify the path with array bsearch then check the pledge/namei modes. Since this is __pledge_open(), if the path is not known, terminate with an EACCES abort. If the path is known but the pledge/namei modes don't suggest an unveil bypass, allow the code to fallthrough to the rpath/wpath checks, and then back into namei for unveil validation. ok dgl deraadt 2026-03-25 05:14:10 +00:00
  • 0d3e0c9264 Wrap the pledge-related sysctl code in SMALL_KERNEL, because it is big and the ramdisk does not need it ok mlarkin, discussed with dgl deraadt 2026-03-25 05:05:41 +00:00
  • 2734781db3 Use ~/.shosts for Hostbased test. dtucker 2026-03-24 12:31:35 +00:00