Pull up following revision(s) (requested by riastradh in ticket #1277):
tests/net/if_wg/t_misc.sh: revision 1.17
tests/net/if_wg/t_misc.sh: revision 1.18
sys/net/if_wg.c: revision 1.136
tests/net/if_wg/t_basic.sh: revision 1.7
sys/net/if_wg.c: revision 1.137
tests/net/if_wg/t_basic.sh: revision 1.8
sys/net/if_wg.c: revision 1.138
tests/net/if_wg/t_basic.sh: revision 1.9
tests/net/if_wg/common.sh: revision 1.2
wg(4): Add test case for bad peer public keys.
wg(4) should not crash on an assertion if they are used -- it should
just gracefully accept them, with degraded security, since a peer
that maliciously provides an invalid public key is no worse than a
peer that voluntarily exposes all its plaintext anyway.
PR kern/60106: wg(4) should properly handle invalid or insecure
[45 lines not shown]
Pull up following revision(s) (requested by riastradh in ticket #329):
tests/net/if_wg/t_misc.sh: revision 1.17
tests/net/if_wg/t_misc.sh: revision 1.18
sys/net/if_wg.c: revision 1.136
tests/net/if_wg/t_basic.sh: revision 1.7
sys/net/if_wg.c: revision 1.137
tests/net/if_wg/t_basic.sh: revision 1.8
sys/net/if_wg.c: revision 1.138
tests/net/if_wg/t_basic.sh: revision 1.9
tests/net/if_wg/common.sh: revision 1.2
wg(4): Add test case for bad peer public keys.
wg(4) should not crash on an assertion if they are used -- it should
just gracefully accept them, with degraded security, since a peer
that maliciously provides an invalid public key is no worse than a
peer that voluntarily exposes all its plaintext anyway.
PR kern/60106: wg(4) should properly handle invalid or insecure
[45 lines not shown]
textproc/rumdl: update to 0.2.24
v0.2.24
Added
MD043: report expected and actual headings at first mismatch (#696) (57f0902) - thanks @mkowen1
MD013: add semantic-link-understanding to flag long-URL links in stern mode (#691) (f17e3f7) - thanks @chandlerc
Fixed
MD013: extend standalone-link reflow boundary to blockquotes (74e79f6)
MD013: treat standalone links as paragraph boundaries in reflow (#697) (39ea2b2) - thanks @chandlerc
MD013: associate paragraph reflow fix with all violating lines (#698) (f17be35) - thanks @chandlerc
fix-coordinator: honor inline rumdl-configure-file overrides when applying fixes (c347ab6)
MD013: exempt standalone links with trailing punctuation and wrappers (#694) (d7a3c2e) - thanks @chandlerc
MD013: keep the space after an inline code span before punctuation (#693) (13745db) - thanks @chandlerc
lsp: iterate formatting fixes to a fixpoint so one format pass converges (#695) (78c42ad) - thanks @chandlerc
MD028: make blockquote-merge autofix opt-in by default (cffadef)
MD036: make emphasis-to-heading autofix opt-in by default (9b145a9)
[13 lines not shown]
devel/feluda: update to 1.14.0
What's Changed
feat(java): add Maven/Gradle license scanning with transitive deps by @anistark in #217
build(deps): bump the maven group across 1 directory with 2 updates by @dependabot[bot] in #219
fix(examples): switch rust-example reqwest to rustls to drop openssl by @anistark in #220
feat(watch): add feluda watch for continuous license scanning by @anistark in #221
feat(ruby): add Ruby/Bundler license scanning by @anistark in #222
build(deps): bump the bundler group across 1 directory with 4 updates by @dependabot[bot] in #223
refactor(licenses): unify license-text detection on shared SPDX engine by @anistark in #224
feat(licenses): add local license-file fallback across analyzers by @anistark in #225
build(deps): bump nokogiri from 1.19.3 to 1.19.4 in /examples/ruby-example in the bundler group across 1 directory by @dependabot[bot] in #227
Pull up following revision(s) (requested by jdc in ticket #328):
sys/arch/alpha/conf/INSTALL: revision 1.123
Add bge (3X-DEGXA-T*) to the INSTALL configuration too.
Requested by Janne Ramstedt.
Pull up following revision(s) (requested by mlelstv in ticket #326):
sys/dev/scsipi/sd.c: revision 1.346
For SPC-3 devices try READ_CAPACITY_16 first and fall back to older
READ_CAPACITY_10.
This fixes SCSI drivers like mpt(4) that announce SPC-3 conformity but
don't support READ_CAPACITY_16 in all configurations.
Add support for MPC5200B SoC, including:
- BestComm DMA controller
- Clock Distribution Module
- Fast Ethernet Controller, utilizing BestComm DMA
- AC97 controller, utilizing BestComm DMA
- ATA controller (PIO-only, hardware DMA is too broken)
- On-chip SRAM (needed for BestComm)
- PSC UART (for console)
- PCI along with bus mater DMA support
All of this is based on previous work by Robert Swindells and would not
be possible if it wasn't for his effort.
(math/R) Updated 4.6.0 to 4.6.1, build with clang (21.1.18) may be OK for now.
Changes in R 4.6.1:
New Features:
* The LaTeX class 'jss' bundled in
'share/texmf/tex/latex/jss.cls' has been updated to work
with 'hyperref' version 7.01q (2026/04/24).
* Plain-text (and legacy HTML) conversion for a simple Rd
\eqn{} now handles \geq, \leq, \neq and \ne in addition to
\ge and \le (PR#19070).
Bug Fixes:
* 'abbreviate(<non-ASCII>)' now works better, using
'iswlower()' and '*upper()' to treat "wide" characters,
thanks to Kevin's PR#19058.
[45 lines not shown]
Pull up following revision(s) (requested by riastradh in ticket #325):
tests/usr.sbin/inetd/t_accept_max.sh: revision 1.3
tests/usr.sbin/inetd/t_accept_max.sh: revision 1.4
inetd(8): Fix sh(1) trap save/restore in accept-max test.
Fixes mysterious
Failed: 1
failures like this one:
https://releng.netbsd.org/b5reports/i386/2026/2026.06.22.22.27.17/test.html#usr.sbin_inetd_t_accept_max_max2_kv
PR bin/59645: inetd `rate-limiting' algorithm is stupid
tests/usr.sbin/inetd/t_accept_max: Handle SIGKRE.
Fix some cleanup issues and simplify according to most of kre's
suggestions. Mostly this fixes the kill-background-jobs-on-trap
[13 lines not shown]
Pull up following revision(s) (requested by wiz in ticket #318):
lib/libc/time/strptime.c: revision 1.68
Fix day of week calculcation in strptime().
The bug was that the calculation used the raw year value without
adding the 1900 offset.
While here, switch to the current Wikipedia version of Gauss' algorithm,
like FreeBSD did, and simplify a loop, like FreeBSD did.
Pull up following revision(s) (requested by tls in ticket #317):
sys/dev/acpi/acpi.c: revision 1.305
sys/dev/acpi/acpi.c: revision 1.306
Hyper-V passes bootstrap entropy to guests via the ACPI OEM0 table. Use it.
We verify that the OEM0 table has the correct Microsoft IDs, skip the header,
feed the remaining contents to the kernel entropy pool, and wipe them in-place
to prevent later extraction via /dev/acpi (e.g. with acpidump). This interface
doesn't seem to be documented but we handle it the same way Microsoft's own
Linux driver does.
acpi(4): Leave Hyper-V rndsource attached.
This way, it will be reported through rndctl(8) rather than only by
grepping through dmesg, and rndctl(8) can control it, e.g. if it
turns out something is wrong with that but not with RDSEED on the
same virtual CPU, you can use `rndctl -Ed "Hyper-V OEM0"' to discount
[9 lines not shown]
Pull up the following, requested by christos in ticket #315:
external/mpl/bind/dist/bin/tests/system/class/ns1/chaos.db.in up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/ns1/named.conf.j2 up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/ns2/example.db.in up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/ns2/localhost.db.in up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/ns2/named.conf.j2 up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/setup.sh up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/tests_class_chaos.py up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/tests_class_update.py up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/class/ns3/named.conf.j2 up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/cap_glues/ns1/named.conf.j2 up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/cap_glues/ns1/root.db up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/cap_glues/ns2/named.conf.j2 up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/cap_glues/ns2/tld.db up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/cap_glues/tests_cap_glues.py up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/cap_glues/ns3/named.conf.j2 up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/cap_glues/ns3/root.hint up to 1.1.1.1
external/mpl/bind/dist/bin/tests/system/catz/ns1/catalog-bad6.example.db up to 1.1.1.1
[396 lines not shown]
Pull up following revision(s) (requested by christos in ticket #1274):
sys/kern/kern_exec.c: revision 1.533
Prevent a DoS attack by crafted binaries that trigger KASSERTS. Change the
KASSERTS into errors instead. Reported by Andrew Griffiths.
Pull up following revision(s) (requested by christos in ticket #314):
sys/kern/kern_exec.c: revision 1.533
Prevent a DoS attack by crafted binaries that trigger KASSERTS. Change the
KASSERTS into errors instead. Reported by Andrew Griffiths.
Pull up following revision(s) (requested by christos in ticket #1273):
sys/nfs/nfs_serv.c: revision 1.185
sys/nfs/nfs_srvsocket.c: revision 1.7
sys/nfs/nfs_syscalls.c: revision 1.165
sys/nfs/nfs.h: revision 1.83
Prevent a DoS attack by stuffing the server with too many fragments that
can lead to resource exhaustion and memory corruption. Reported by Andrew Griffiths
Validate the rpc readdir and readdirplus cnt, siz to prevent integer overflows
that will corrupt memory. Reported by Andrew Griffiths
Fix memory leak. ns_frag holds the unprocessed fragments that needs to be freed.
Reported by Andrew Griffiths
Pull up following revision(s) (requested by christos in ticket #313):
sys/nfs/nfs_serv.c: revision 1.185
sys/nfs/nfs_srvsocket.c: revision 1.7
sys/nfs/nfs_syscalls.c: revision 1.165
sys/nfs/nfs.h: revision 1.83
Prevent a DoS attack by stuffing the server with too many fragments that
can lead to resource exhaustion and memory corruption. Reported by Andrew Griffiths
Validate the rpc readdir and readdirplus cnt, siz to prevent integer overflows
that will corrupt memory. Reported by Andrew Griffiths
Fix memory leak. ns_frag holds the unprocessed fragments that needs to be freed.
Reported by Andrew Griffiths
