openbsd/src
1
0
Fork 0
mirror of https://github.com/openbsd/src.git synced 2026-04-24 14:14:37 +00:00
Code Issues Projects Releases Wiki Activity
243,562 Commits 1 Branch 0 Tags
94c603bf46d009ae268746bacdfbd316d28487ef
Commit Graph

243562 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
nicm
94c603bf46 Use \- for hyphens in tmux.1 to cause newer groff versions to render 
them correctly (ASCII hyphen rather than Unicode) which aids copy and
paste. From Keith Thompson in GitHub issue 4948.
 2026-03-25 10:08:50 +00:00
deraadt
ee1bf64f5b In the namei callback for __pledge_open() invert the logic of checking 
pledge/namei modes and then checking for the path.  Now, first
identify the path with array bsearch then check the pledge/namei modes.
Since this is __pledge_open(), if the path is not known, terminate with
an EACCES abort.  If the path is known but the pledge/namei modes don't
suggest an unveil bypass, allow the code to fallthrough to the rpath/wpath
checks, and then back into namei for unveil validation.
ok dgl
 2026-03-25 05:14:10 +00:00
deraadt
0d3e0c9264 Wrap the pledge-related sysctl code in SMALL_KERNEL, because it is big 
and the ramdisk does not need it
ok mlarkin, discussed with dgl
 2026-03-25 05:05:41 +00:00
dtucker
2734781db3 Use ~/.shosts for Hostbased test. 2026-03-24 12:31:35 +00:00
dtucker
87dc1fa973 Ensure known_hosts file exists when setting up. 2026-03-24 10:21:14 +00:00
cludwig
7348976a6a dt: Deny enabling probes after recording starts 
Enabling more probes after recording starts using the DTIOCRECORD ioctl
only puts these probes onto the ds_pcbs list, but not on the dtp_pcbs.
Stopping the recording afterwards crashes.

Do not allow to add more probes after recording started. For symmetry,
also do not allow to remove probes either.

ok mpi@

Reported-by: syzbot+1ee7b3d649b3fd543300@syzkaller.appspotmail.com
 2026-03-24 09:11:56 +00:00
deraadt
75dd82699d the array must be sorted for bsearch 2026-03-24 05:48:09 +00:00
dgl
61b46e47fb Stop allowing stat("/etc/hosts") in pledge "dns". 
Only libc can read /etc/hosts under pledge "dns" now, so stat() succeeding
based on the pledge is misleading.

ok deraadt
 2026-03-24 05:38:44 +00:00
dgl
d7e4396e01 Remove outdated comment. BYPASSUNVEIL is used inside __pledge_open only now. 2026-03-24 01:03:11 +00:00
daniel
b75055f7ac psignal(3): align the type of the signal parameter with POSIX 
POSIX uses an int for the signal number instead of an unsigned int. NetBSD
made this change in 2010 and FreeBSD made this change in 2016. Follow suit
with the other BSDs and match what POSIX specifies.

This should not have an impact on the ABI and therefore no bump is needed.

Flagged by Sortix os-test.

ok deraadt@, millert@
 2026-03-23 21:33:43 +00:00
jsg
2084961b94 refereced -> referenced; ok bluhm@ 2026-03-23 13:12:39 +00:00
jsg
b25f4bf90b isolaved -> isolated; ok dlg@ 2026-03-23 10:31:56 +00:00
dtucker
caeb49275d Check if host keys exist before adding them, and expand on the warning 
about modifying the system config.
 2026-03-23 09:53:52 +00:00
jsg
e8352b3bec ENONBLOCK -> EWOULDBLOCK, former does not exist 
ok tb@
 2026-03-23 09:11:44 +00:00
dtucker
5c3052f12c Add special handling of TEST_SSH_HOSTBASED_AUTH=setupandrun. 
This will MODIFY THE CONFIG OF THE SYSTEM IT IS RUNNING ON to enable
hostbased authentication to/from itself and run the hostbased tests.  It
won't undo these changes, so don't do this on a system where this matters.
 2026-03-23 09:09:36 +00:00
nicm
2f8889346b Check lastgc is not NULL before using it, GitHub issue 4935 from Pavel 
Lavrukhin.
 2026-03-23 09:05:59 +00:00
nicm
3cce094050 Fix a NULL dereference and use after free, GitHub issue 4936 from Pavel 
Lavrukhin.
 2026-03-23 09:03:43 +00:00
nicm
26ebd2a62b Use window options for cursor-style to avoid crash when no pane, from 
Arden Packeer in GitHub issue 4942.
 2026-03-23 08:58:39 +00:00
nicm
875a5c2723 Fix issue where popup window gets overwritten by background updates, 
from Conor Taylor in GitHub issue 4920.
 2026-03-23 08:48:32 +00:00
nicm
1fe9e23244 Protect against overflow when scrollbar is off screen, from san65384 at 
gmail dot com in GitHub issue 4933.
 2026-03-23 08:45:30 +00:00
jsg
0a6ed9a34c Circiut -> Circuit 2026-03-23 08:42:22 +00:00
jsg
0eec633452 reveresal -> reversal 2026-03-23 08:37:35 +00:00
bentley
ac4ca98774 Declare font media types as specified in RFC 8081. 
application/vnd.oasis.opendocument.formula-template is now associated
with the file extension odft rather than otf.

ok tb@
 2026-03-23 07:51:08 +00:00
djm
b993bf76c5 clarify that Authorized(Keys|Principals)(File|Command) are only 
consulted for valid users.

clarify that TOKENS are expanded without sanitisation or escaping
and that it's the user's reponsibility to ensure their usage is
safe.

prompted by bz3936; feedback/ok deraadt@
 2026-03-23 01:33:46 +00:00
bluhm
ccfcb3e6ef Protect IGMP and MLD6 fast timer with rwlock. 
Multicast interface addresses for IPv4 and IPv6 get their own per
interface lock.  Protect the TAILQ if_maddrlist with rwlock
if_maddrlock.  Also struct in_multi and in6_multi use this lock for
their state and timer.  Sleeps in malloc(9) are possible.  Run IGMP
and MLD6 fast timeout with shared instead of exclusive net lock.

To prevent calling ip_output() or ip6_output() while holding the
multicast lock, delay igmp_sendpkt() and mld6_sendpkt().  All
information that is needed to create and send a multicast packet
is stored in igmp_pktinfo or mld6_pktinfo.  If necessary, multiple
pktinfo are queued.  After the lock has been released, packes are
sent based on pktinfo.

OK mvs@
 2026-03-22 23:14:00 +00:00
millert
7a2bcefe64 The maximum S/Key sequence number is 10,000 not 1,000. 
From Andy Bradford
 2026-03-22 15:17:09 +00:00
sthen
33c7e43e4e tweak MODPY_PYBUILD section, avoid some duplication, give a hint about 
setting MODCARGO_CARGOTOML for maturin ports
 2026-03-22 13:56:06 +00:00
deraadt
b62a05dc00 Found another deeply hidden open /dev/null O_RDWR which was happening 
in awk -safe mode.  Reproducer is awk -safe '{ close("/dev/stdin"); }
Rerrange the pledges and unveils to make it work.
ok millert dgl
 2026-03-22 05:07:06 +00:00
sthen
906998b9b3 merge nsd 4.14.2 2026-03-21 21:36:36 +00:00
sthen
96b824a918 import nsd 4.14.2 2026-03-21 21:34:31 +00:00
daniel
67e6794a9e SIGWINCH is now part of POSIX.1-2024 
From Lennart Jablonka; ok guenther@, deraadt@
 2026-03-21 01:56:51 +00:00
deraadt
8aa14d77a9 The percentage heuristic has failed for me on 40% of the machines 
I run, so it is clear it is going to fail for many more people when
the next release comes out.  It is wrong, back it out.
 2026-03-21 01:34:25 +00:00
bluhm
0e8206e596 Ignore TCP SACK packets with invalid sequence numbers. 
Due to an integer overflow, sequence numbers in selective ACK packets
were accepted.  Such packets caused a NULL pointer dereference in
the TCP stack, resulting in a kernel crash.

Reported by Nicholas Carlini at anthropic dot com
with deraadt@; OK markus@
 2026-03-20 19:44:48 +00:00
jsg
a71bcab410 sync dma-resv with linux 6.18 2026-03-20 10:15:56 +00:00
sthen
65032adb49 Fix display of bandwidth >=1000G. Found by Crystal Kolipe, ok sashan@ 2026-03-20 09:37:23 +00:00
stsp
e1a9c1b938 switch iwx(4) MA devices to -89 firmware images 
Also fix the firmware filename for MA HR devices, and do not try to
load a non-existent .pnvm file for these devices.

tested by + ok kettenis@
 2026-03-20 08:38:21 +00:00
jsg
a9b792a8dc drm/amd: Fix a few more NULL pointer dereference in device cleanup 
From Mario Limonciello
38f1640db7f8bf57b9e09c5b0b8b205a598f1b3e in linux-6.18.y/6.18.19
72ecb1dae72775fa9fea0159d8445d620a0a2295 in mainline linux
 2026-03-20 00:35:31 +00:00
jsg
97062d1108 drm/i915/psr: Repeat Selective Update area alignment 
From Jouni Hogander
0189bf176dbe6e07cde08a6121108eda3bd18b06 in linux-6.18.y/6.18.19
1be2fca84f520105413d0d89ed04bb0ff742ab16 in mainline linux
 2026-03-20 00:32:26 +00:00
jsg
2c4ecfc8b1 drm/i915: Fix potential overflow of shmem scatterlist length 
From Janusz Krzysztofik
eae4bf4107571283031db96ce132e951615e2ae4 in linux-6.18.y/6.18.19
029ae067431ab9d0fca479bdabe780fa436706ea in mainline linux
 2026-03-20 00:30:08 +00:00
jsg
b3f1d4030f drm/amd: Fix NULL pointer dereference in device cleanup 
From Mario Limonciello
43025c941aced9a9009f9ff20eea4eb78c61deb8 in linux-6.18.y/6.18.19
062ea905fff7756b2e87143ffccaece5cdb44267 in mainline linux
 2026-03-20 00:27:58 +00:00
jsg
a72d42b017 drm/amd: Set num IP blocks to 0 if discovery fails 
From Mario Limonciello
57579312e0e87dffa2aeca9acd4ba2ec25da999d in linux-6.18.y/6.18.19
3646ff28780b4c52c5b5081443199e7a430110e5 in mainline linux
 2026-03-20 00:25:56 +00:00
jsg
058345d356 drm/amdgpu: Fix use-after-free race in VM acquire 
From Alysa Liu
7885eb335d8f9e9942925d57e300a85e3f82ded4 in linux-6.18.y/6.18.19
2c1030f2e84885cc58bffef6af67d5b9d2e7098f in mainline linux
 2026-03-20 00:19:58 +00:00
jsg
495d758465 drm/amd/pm: remove invalid gpu_metrics.energy_accumulator on smu v13.0.x 
From Yang Wang
33c3a4db31719d414f0622659ca086b708270c9f in linux-6.18.y/6.18.19
68785c5e79e0fc1eacf63026fbba32be3867f410 in mainline linux
 2026-03-20 00:17:43 +00:00
jsg
02a30f831b drm/amd/display: Fallback to boot snapshot for dispclk 
From Dillon Varone
1a34999922ba6c95df6e3ba5c82624f61323f82b in linux-6.18.y/6.18.19
30d937f63bd19bbcaafa4b892eb251f8bbbf04ef in mainline linux
 2026-03-20 00:15:43 +00:00
jsg
49462b4032 drm/i915/alpm: ALPM disable fixes 
From Jouni Hogander
32cca65189823f93ba89677a96b106e902b2dc9b in linux-6.18.y/6.18.19
eb4a7139e97374f42b7242cc754e77f1623fbcd5 in mainline linux
 2026-03-20 00:13:59 +00:00
jsg
aa414d5064 drm/amd: Disable MES LR compute W/A 
From Mario Limonciello
06ef2ba582c68daa6bdaaef82827734d9f07b8fd in linux-6.18.y/6.18.19
6b0d812971370c64b837a2db4275410f478272fe in mainline linux
 2026-03-20 00:11:51 +00:00
jsg
146ab64e54 drm/amdgpu: add upper bound check on user inputs in wait ioctl 
From Sunil Khatri
b1d10508da559da2e0ca9cca6505094a7df948e1 in linux-6.18.y/6.18.19
64ac7c09fc44985ec9bb6a9db740899fa40ca613 in mainline linux
 2026-03-20 00:07:44 +00:00
jsg
cb74c4842c drm/amdgpu/userq: Fix reference leak in amdgpu_userq_wait_ioctl 
From Tvrtko Ursulin
762f47e2b824383d5be65eee2c40a1269b7d50c8 in linux-6.18.y/6.18.19
49abfa812617a7f2d0132c70d23ac98b389c6ec1 in mainline linux
 2026-03-20 00:05:14 +00:00
jsg
04c9db8ff7 drm/amdgpu: add upper bound check on user inputs in signal ioctl 
From Sunil Khatri
6fff5204d8aa26b1be50b6427f833bd3e8899c4f in linux-6.18.y/6.18.19
ea78f8c68f4f6211c557df49174c54d167821962 in mainline linux
 2026-03-20 00:02:55 +00:00
jsg
78e474a414 drm/amdgpu: ensure no_hw_access is visible before MMIO 
From Perry Yuan
1051eb2f53886ec7e36896dfa356884d7212443a in linux-6.18.y/6.18.19
31b153315b8702d0249aa44d83d9fbf42c5c7a79 in mainline linux
 2026-03-20 00:00:26 +00:00