Fix https://sourceware.org/bugzilla/show_bug.cgi?id=34033
- Deprecate loc_ntoa because it does not specify the size of the destination
buffer and replace it with loc_ntoa1
- Replace sprintf(3) with snprintf(3), checking for string overflow.
This removes all sprintf(3) uses in libc, except in compat/net/compat_ns_ntoa.c
Thanks to phone@ for reviewing and Florian Weimer for notifying us.
bsd.own.mk: sort various lists and expressions
Sort various lists of variables.
(Manually) sort various .if expressions on platform name.
Should be no functional change, but easier to cross-check mk.conf(5).
mk.conf(5): sync with bsd.own.mk 1.1473
Sort variables in the list: MKAUTOFS, MKKERNFS, MKNLS,
Update supported platforms per bsd.own.mk changes, including using
the tested variable (MACHINE vs MACHINE_ARCH):
MKAMDGPUFIRMWARE, MKCTF, MKDTB, MKFIRMWARE, MKLIBCXX, MKPIE, MKPROFILE,
MKRELRO, MKSLJIT, MKSOFTFLOAT, MKZFS, USE_SSP, USE_XZ_SETS.
Sort platforms in: MKXORG_SERVER.
Document MKGDBSERVER.
Add NetBSD 10 and NetBSD 11 to RUMP_NBCOMPAT.
USE_SSP is also controlled by NOFORT.
Cross reference npf(7) for MKNPF.
Editorial fixes, including consistent punctuation.
Import bind-9.20.22 (previous was 9.20.18)
Notes for BIND 9.20.22
Security Fixes
Fix crash when reconfiguring zone update policy during active updates.
We fixed a crash that could occur when running rndc reconfig to change a zone's
update policy (e.g., from allow-update to update-policy) while DNS UPDATE
requests were being processed for that zone. ISC would like to thank Vitaly
Simonovich for bringing this issue to our attention. [GL #5817]
Bug Fixes
Fix intermittent named crashes during asynchronous zone operations.
Asynchronous zone loading and dumping operations occasionally dispatched tasks
to the wrong internal event loop. This threading violation triggered internal
safety assertions that abruptly terminated named. Strict loop affinity is now
enforced for these tasks, ensuring they execute on their designated threads and
preventing the crashes. [GL #4882]
Count temporal problems with DNSSEC validation as attempts.
[160 lines not shown]
libc/softfloat: prevent undefined behavior in floating point conversions
See the previous commit for details.
The same code pattern occur in the bits32 implementation, as well as in
other copies of the same upstream code, for example in libkern.
lint: add query for negation of minimum signed value
This helped double-check that the remaining negations in the
softfloat/bits64 code are fine. There are some false positives, due to
int16 being typedef'd to int, thus being int32 realistically.
