There is a warning next to the authorized_keys command="" flag that
forcing a command doesn't automatically disable forwarding. Add one
next to the sshd_config(5) ForceCommand directive too.
feedback deraadt@
drm/i915/dp: Initialize the source OUI write timestamp always
From Imre Deak
e656ba6ca534743960f66f70adac9246243fd9e9 in linux-6.12.y/6.12.61
5861258c4e6a829a10200b41ba3fb4d7d1a4054f in mainline linux
drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup
From Thomas Zimmermann
482330f8261b4bea8146d9bd69c1199e5dfcbb5c in linux-6.12.y/6.12.61
eb76d0f5553575599561010f24c277cc5b31d003 in mainline linux
drm/amd/display: Don't change brightness for disabled connectors
From Mario Limonciello
901a8766734b6eab3994740906830f66749261d5 in linux-6.12.y/6.12.61
81f4d4ba509522596143fd5d7dc2fc3495296b0a in mainline linux
drm/amd/display: Check NULL before accessing
From Alex Hung
f7cf491cd5b54b5a093bd3fdf76fa2860a7522bf in linux-6.12.y/6.12.61
3ce62c189693e8ed7b3abe551802bbc67f3ace54 in mainline linux
drm/amd/amdgpu: reserve vm invalidation engine for uni_mes
From Michael Chen
204d3bb80c9272b23b111884dd6a3a750e45c844 in linux-6.12.y/6.12.61
971fb57429df5aa4e6efc796f7841e0d10b1e83c in mainline linux
Revert "drm/amd/display: Move setup_stream_attribute"
From Alex Deucher
a2b16ee991df0e12a492046352833052faac2364 in linux-6.12.y/6.12.61
3126c9ccb4373d8758733c6699ba5ab93dbe5c9d in mainline linux
drm/amdgpu: fix cyan_skillfish2 gpu info fw handling
From Alex Deucher
b46aaeafd6da945c4370538ae8a24b34333fb231 in linux-6.12.y/6.12.61
7fa666ab07ba9e08f52f357cb8e1aad753e83ac6 in mainline linux
Add missing bdep on x11/qt6/qtmultimedia
No idea whether a build dep is enough. Runtime testing left as an
exercise for ${MAINTAINER}.
Spotted in my ongoing riscv64 bulk build and in the last three builds on
exopi.
Document the usage of --daemon in the openvpn rc script
Hardcoding --daemon is necessary so that openvpn goes into the
background by default, whatever the admin sets in openvpn_flags or their
config file. So document how to pass an optional argument to --daemon,
which is mainly useful when you're running multiple instances (eg IPv4
vs IPv6 and/or UDP vs TCP).
Since there's another ambiguity in the cli arguments parsing,
explicitely tell users to use --config before the config file. Setting
only "openvpn_flags=/config/file" in rc.conf.local cannot work because
the file name would be misinterpreted as the optional argument
to --daemon.
Ambiguity pointed out by and argued with kn@ who proposed a different
approach.
"I think that's fine" sthen@
Remove last internal use of ASN1_STRING_data()
PKCS5_pbe_set0_algor() is no longer public, but its parameters are
provided directly via public API, namely the wonderful PKCS8_encrypt()
and PKCS12_pack_p7encdata().
Muppetry abounds. To wit:
If saltlen < 0, the call to ASN1_STRING_set(pbe->salt, NULL, saltlen)
would error. Let's do that up front in a more obvious way. We don't
care about side-effects to pbe->salt since we free it on error anyway.
If saltlen == 0, we default it to PKCS5_PBE1_SALT_LEN. This is
particularly funky in case the caller passed in salt != NULL, in
which case we can only hope and pray this buffer is long enough.
If the caller passed a salt, copy it to pbe->salt via ASN1_STRING_set().
If there's no salt, allocate a buffer of the appropriate length, fill it
[9 lines not shown]
