Commit Graph

247119 Commits

Author SHA1 Message Date
ozaki-r
aeb848823f Fix typo 2016-12-26 01:26:25 +00:00
knakahara
52f944e4de pserialize_perform() is required an additionally serialization. see pserialize(9).
ok by ozaki-r@n.o.
2016-12-26 00:30:07 +00:00
khorben
22024d321d Typo 2016-12-26 00:11:14 +00:00
nat
160e0571ac Add mulaw to audio device for auconv_set_converter.
This should address PR kern/51707.
2016-12-25 23:23:46 +00:00
nat
b0396bf5c6 Fix suspend/resume logic. 2016-12-25 22:44:24 +00:00
christos
9388ae5cb6 put also MAKEFILES in the MKREPRO section since they vary since they contain
paths.
2016-12-25 16:44:39 +00:00
kim
ca8ef46246 Make precedence between {cat,man}[39]{,lua} logical:
- Search man3 right after cat3, before cat3lua (and man3lua).
- Search man9 right after cat9, before cat9lua (and man9lua).
2016-12-25 12:10:52 +00:00
wiz
d2bf829be4 Whitespace, sort, remove some superfluous macros/quoting. 2016-12-25 11:10:53 +00:00
mlelstv
015f574c37 Lock correctly around CV calls.
Fix handling of session termination.
Enable MPSAFE processing for scsipi.
2016-12-25 06:55:28 +00:00
abhinav
b2f786d04e As per the IEEE 1003.1-2008 standard, the range of values for the %S
format specifier is [0,60].
2016-12-25 06:37:50 +00:00
cherry
6b706f8888 Make uvm_physseg_set_avail_start(9) available unconditional to UVM_HOTPLUG 2016-12-25 06:30:58 +00:00
christos
16a824ca6b fix printf format 2016-12-25 04:35:30 +00:00
christos
6419995e46 Provide a set_available_start method for the non UVM_HOTPLUG case. 2016-12-25 03:39:26 +00:00
christos
7404e8f3e1 new OpenSSH 2016-12-25 00:10:33 +00:00
christos
a54d067ee5 bump libssh 2016-12-25 00:09:20 +00:00
christos
ee85abc417 merge conflicts 2016-12-25 00:07:46 +00:00
christos
210ad7912c Import OpenSSH-7.4
OpenSSH 7.4 has just been released. It will be available from the
mirrors listed at http://www.openssh.com/ shortly.

OpenSSH is a 100% complete SSH protocol 2.0 implementation and
includes sftp client and server support. OpenSSH also includes
transitional support for the legacy SSH 1.3 and 1.5 protocols
that may be enabled at compile-time.

Once again, we would like to thank the OpenSSH community for their
continued support of the project, especially those who contributed
code or patches, reported bugs, tested snapshots or donated to the
project. More information on donations may be found at:
http://www.openssh.com/donations.html

Future deprecation notice
=========================

We plan on retiring more legacy cryptography in future releases,
specifically:

 * In approximately August 2017, removing remaining support for the
   SSH v.1 protocol (client-only and currently compile-time disabled).

 * In the same release, removing support for Blowfish and RC4 ciphers
   and the RIPE-MD160 HMAC. (These are currently run-time disabled).

 * Refusing all RSA keys smaller than 1024 bits (the current minimum
   is 768 bits)

 * The next release of OpenSSH will remove support for running sshd(8)
   with privilege separation disabled.

 * The next release of portable OpenSSH will remove support for
   OpenSSL version prior to 1.0.1.

This list reflects our current intentions, but please check the final
release notes for future releases.

Potentially-incompatible changes
================================

This release includes a number of changes that may affect existing
configurations:

 * This release removes server support for the SSH v.1 protocol.

 * ssh(1): Remove 3des-cbc from the client's default proposal. 64-bit
   block ciphers are not safe in 2016 and we don't want to wait until
   attacks like SWEET32 are extended to SSH. As 3des-cbc was the
   only mandatory cipher in the SSH RFCs, this may cause problems
   connecting to older devices using the default configuration,
   but it's highly likely that such devices already need explicit
   configuration for key exchange and hostkey algorithms already
   anyway.

 * sshd(8): Remove support for pre-authentication compression.
   Doing compression early in the protocol probably seemed reasonable
   in the 1990s, but today it's clearly a bad idea in terms of both
   cryptography (cf. multiple compression oracle attacks in TLS) and
   attack surface. Pre-auth compression support has been disabled by
   default for >10 years. Support remains in the client.

 * ssh-agent will refuse to load PKCS#11 modules outside a whitelist
   of trusted paths by default. The path whitelist may be specified
   at run-time.

 * sshd(8): When a forced-command appears in both a certificate and
   an authorized keys/principals command= restriction, sshd will now
   refuse to accept the certificate unless they are identical.
   The previous (documented) behaviour of having the certificate
   forced-command override the other could be a bit confusing and
   error-prone.

 * sshd(8): Remove the UseLogin configuration directive and support
   for having /bin/login manage login sessions.
2016-12-25 00:00:13 +00:00
christos
895fd4ae8a sort codes for reproducibile builds. 2016-12-24 21:17:16 +00:00
christos
700b0bb18f For MKREPRO, don't print varying params. 2016-12-24 20:36:28 +00:00
cherry
7aac501b66 uvm_extern.h is has both a _KERNEL only, and a non _KERNEL only API.
Since we unconditionally expose the uvm_physseg.h API via uvm_extern.h
right now, and since uvm_physseg.h uses a kernel only datatype, viz
psize_t, we restrict exposure of uvm_physseg.h API exposure to kernel
only.

This is in conformance of its documentation via uvm_hotplug(9) as a
kernel internal API.
2016-12-24 19:21:29 +00:00
cherry
dac5688b8d Conform API use of uvm_hotplug(9) to documented behaviour:
When testing for an invalid uvm_physseg_t,
compare with UVM_PHYSSEG_TYPE_INVALID which is implementation agnostic.
2016-12-24 19:02:16 +00:00
cherry
2e9cf2b5f9 Tell mpc85xx about uvm_hotplug(9)
Should fix the evbppc build breakage.
2016-12-24 18:34:31 +00:00
cherry
3631b5f030 introduce evbppc pmap to the uvm_hotplug(9) API
Should fix build.
2016-12-24 18:07:31 +00:00
christos
ffa88d505d Add to lint flags for MKREPRO 2016-12-24 17:44:22 +00:00
christos
90c8a9f073 Add -R (source filename remapping) for MKREPRO 2016-12-24 17:43:45 +00:00
mlelstv
4eff3f7ab8 another physmem type change 2016-12-24 17:36:59 +00:00
cherry
dfb8e9c033 Use the correct page frame number to steal pages during boot.
Fixes the related sh3 kernel build breakage.
2016-12-24 17:18:00 +00:00
cherry
7a43b153e5 pass the bank handle to uvm_physseg_get_avail_start();
Should fix the acorn26 kernel build.
2016-12-24 17:11:31 +00:00
mlelstv
3ecac0ea7c add missing mutex/cv cleanup to error paths. 2016-12-24 16:39:55 +00:00
abhinav
842412540f Update the description of the -t option to bring it in sync with IEEE 1003.1 -2008.
The .SS field of the datetime argument of -t option can have range from 0 to 60
as per the 1003.1 2008 standard. POSIX has removed all mentions of double leap
seconds, therefore the allowed range of seconds is now [0,60].

Also, add an ENVIRONMENT section, as the interpretation of the datetime
argument in -t option depends on the TZ environment variable.

Add an xref for parsedate(3) in SEE ALSO.

ok wiz@
2016-12-24 15:49:18 +00:00
kamil
60b1976a76 Revert introduction of FIXME_PR_51139
This change introduced ABI incompatible change with older versions shipped
on NetBSD. This back out code that is currently not working correctly due
to TLS-based std::call_once implementation in GNU libstdc++.

Error when starting gnuchash:

/usr/pkg/lib/libwebkitgtk-1.0.so.0: Undefined symbol "_ZSt15__once_callable" (symnum = 1705)

PR 51139

Reported by <wiz>
2016-12-24 15:48:26 +00:00
riastradh
766531b9dd Guarantee no zero-size uao/kmem allocations via ttm.
It may be that all callers guarantee no zero-size ttm objects, but I
can't prove that in five minutes of browsing callers.  Rather than
add a KASSERT, lacking proof, we'll add a warning message so that if
it does happen then it happens noisily, but we'll also prevent the
bad consequences of passing zero into uao_create by rounding up to a
harmless nonzero allocation.

XXX pullup-7
2016-12-24 15:46:50 +00:00
maya
ab54d6b920 as a stopgap fix make all of uvm_physseg.h kernel-only. this file uses
paddr_t which isn't available to userland, breaking builds that use uvm
headers, like devel/libuv on pkgsrc.

pointed out by Carsten Kunze on pkgsrc-users.

ok riastradh
2016-12-24 15:42:05 +00:00
maya
177f6a3a05 don't use systm.h header, it's not available to userland.
as a side effect, this fixes the evbarm64 build, which was failing due
to a declaration of psize_t physmem in systm.h, while psize_t is
kernel-only.

ok riastradh
2016-12-24 15:23:06 +00:00
abhinav
9e3eb1e837 Add a missing .El, which is causing the rest of the text being
rendered indented. Patch provided by fox on IRC.

While there, remove a .Pp before .Bl.
2016-12-24 14:04:10 +00:00
skrll
eeb9bdf31e Call cv_broadcast with interlock held as per condvar(9) 2016-12-24 11:51:33 +00:00
skrll
fac99052c8 Fix VERBOSE_INIT_ARM build 2016-12-24 09:19:23 +00:00
abhinav
93422f00ef Remove xref to signal(7).
As noted by wiz, it is probably not a good idea to mention signal(7) in SEE ALSO
every time a signal name is used in a man page.
2016-12-24 08:26:57 +00:00
wiz
5aed204344 Fix SYNOPSIS. Fix xref. Avoid Xr for itself. 2016-12-24 08:05:47 +00:00
abhinav
d2ed5b2faa Fix a sentence
Make some makrup improvments to make mandoc -Tlint happy
Sort xrefs in SEE ALSO
2016-12-24 07:22:41 +00:00
mrg
e640aa5924 create sysmon nodes, so wdogctl works. 2016-12-24 07:07:06 +00:00
macallan
a8b2582939 avoid accessing condition variables which belong to a scsibus before actually
attaching the scsibus
now my SS20 boots again
2016-12-24 06:04:50 +00:00
kamil
38743855a4 Add new entry in TODO.ptrace
New entry:
 - add ATF tests for SIGCHLD
2016-12-24 05:43:31 +00:00
abhinav
96415509bf Fix a sentence. 2016-12-24 05:40:49 +00:00
abhinav
a4dca42e82 As per C99 the range of values for the %S format specifier is [0,60]
rather than [0,61]. The standard has removed mention of double leap seconds.
The standard has give the following rationale in the time.h man page:

"The range [0,60] seconds allows for positive or negative leap seconds.
The formal definition of UTC does not permit double leap seconds, so all
mention of double leap seconds has been removed, and the range shortened
from the former [0,61] seconds seen in previous versions of POSIX."
2016-12-24 05:33:51 +00:00
wiz
891f77d746 openssh-7.4 out. 2016-12-23 23:17:57 +00:00
christos
41f4de4258 Don't attempt to shorten resolved path names (via realpath) because it could
lead to inconsistencies between different builds.
2016-12-23 21:11:45 +00:00
nat
264caa09e9 Simplify. Handle draining of vc[0] differently.
Addresses PR kern/51710 audio playback works only once.
2016-12-23 21:01:00 +00:00
mrg
75ff26e817 note mips64 n64 binary fixes. 2016-12-23 20:49:02 +00:00
scole
3ac5d95c18 make kernel compilable after recent uvm changes 2016-12-23 17:26:43 +00:00