Pull up following revision(s) (requested by nia in ticket #349):
crypto/external/bsd/openssh/dist/sshd-auth.c: revision 1.7
sshd(8): Restore rlimit sandbox from portable openssh.
This is used as an alternative to pledge sandboxing.
PR security/60367
pmap(9): Clarify obligations around pmap_update.
Note: pmap_kenter_pa does not specify for now, because there is still
some disagreement over what the rule SHOULD be, and current usage is to
use pmap_update.
Prompted by:
PR kern/60377: x86 cpu_uarea_alloc: pmap_update before freeing
redzone pages
Part of fix for PR lib/58282
Redo the logic for erasing lines when we have the capability, it was
broken and caused blanks to be written when clearing the screen instead
which caused thrashing and large outputs.
Part of fix for PR lib/58282
Force the type of the hash to be an unsigned int, the PJW hash was
written expecting 32bit integers so ensure this is so.
Also, don't hash NULL bytes, they mess up the hashing which, in turn,
messes up quickch().
Be truly pedantic about UTF-8 encodings
If we're not going to be accepting "legacy" UTF-8
(5 and 6 byte encodings for code points >= 0x00200000 which the
standards don't allow, as they won't fit in UTF-16) then we
certainly should never be able to generate them, and even more
should certainly be pedantic about not allowing the various
forms of mis-coded strings for which there is no justification
but have been known to be used to attempt to violate security.
This, I believe, now enforces all the current restrictions, eg,
it will no longer be possible to encode ascii in 2 bytes (0xc0 '.')
and similar, the shortest legal encoding is all that will be
accepted (and all that will be generated, but that was always true).
It is quite possible that this will break things, probably many
tests, as now random garbage won't be accepted as valid, things
must be properly encodedd.
Pull up following revision(s) (requested by riastradh in ticket #348):
usr.sbin/npf/npftest/libnpftest/npf_rid_test.c: revision 1.4
adjust to holding the softnet_lock now that the kernel has changed to not do it.
Make sysinst intercept kernel console messages using TIOCCONS at all
times, not just when running an external command, and discard those
that occur when not running an external command so that they don't
mess up the display when running sysinst on the console. Fixes
PR install/54932.
Pull up following revision(s) (requested by isaki in ticket #347):
sys/arch/virt68k/virt68k/bus_dma.c: revision 1.5
Fill in bus_dmamap_sync() for 68030. Since 68030 caches are write-through,
this is pretty trivial: just invalidate the on-chip + any external D cache
in the PREREAD case. (See comment in code for why PREREAD is preferred
over POSTREAD.)
PR kern/60144
Pull up following revision(s) (requested by kbowling in ticket #2023):
sys/uvm/uvm_km.c: revision 1.168
uvm_km_pgremove: pmap_update before freeing pages
Update the commentary in uvm_km_free to reflect this reality while here
Reviewd by skrll@
PR kern/60376
Pull up following revision(s) (requested by kbowling in ticket #1293):
sys/uvm/uvm_km.c: revision 1.168
uvm_km_pgremove: pmap_update before freeing pages
Update the commentary in uvm_km_free to reflect this reality while here
Reviewd by skrll@
PR kern/60376
Pull up following revision(s) (requested by kbowling in ticket #346):
sys/uvm/uvm_km.c: revision 1.168
uvm_km_pgremove: pmap_update before freeing pages
Update the commentary in uvm_km_free to reflect this reality while here
Reviewd by skrll@
PR kern/60376
