autogen: unbreak build with llvm22, ok jca
The {,sig}setjmp() detection was broken. They want a sigjmp_buf, not a
sigjmp_buf *, so change from &bf to bf twice to avoid a configure time
error due to a -Wincompatible-pointer-types error.
As naddy points out, this port could be only one decade outdated rather
than almost two. I may deal with this when I find myself very bored.
smtpd was already fork+exec privsep, and starts 6 copies which are
the same binary.
I first decided to random-relink smtpd because of some recent close
calls (in the IPC codepaths, which could have played part in lateral
movement following a primary hole). Then it dawned on me that I can
random relink each of the privsep binaries to be unique, in the same
style as sshd.
Each binary now contains a lot of code it does not need (and is not
reached, but the code remains). That can be refactored as a later
step.
The new /etc/rc relink code will automaticall pick these up.
vague approval martijn, gilles, millert
httpd worries me a bit, so I want to random-relink it at boot.
The new /etc/rc relinking components will automatically pick up this
new directory and process it.
amd64: Place the direct map at a random location
Places the direct map at a 512GB-aligned random location selected from
a 16TB VA window.
With help and suggestions from deraadt@. Tested by many.
add signature malleability and pubkey validity checks to ed25519
verification (SSH doesn't depend on these properties)
Pointed out by Soatok Dreamseeker
Add an explicit-seed variant of the keygen function.
feedback / "looks fine" tb@
update 2024.02.1 -> 2026.01.3
most notably adding support for HackRF Pro, that I tested with
with a number of consumers, as well as got reports for HackRF One.
Maintainer timeout