pool: Check early that we can sleep
Check early that we actuallly are in a sleepable context in pool_get().
There is an equivalent check in malloc().
from jsg@, ok jca@
rpki-client: add experimental support for P-256 TA keys
This reuses a subset of the checks in cert_check_spki() and passes regress.
It will make sure we revisit this if we add support for other key types and
resolves an XXX (while adding another one).
discussed with job
rpki-client: add more smarts to filemode file type detection
If the file extension doesn't indicate what file type we have, attempt to
parse the file's content as DER for CMS content, a cert or a CRL. For CMS
we can check if we deal with signedData and inspect its eContentType.
h/t jsing
ok job
Fix a regression introduced in rev. 1.152:
Initialize the right variable (max_sz, not this_sz).
Caught by jsg@ with smatch, which correctly complained:
term_strlen() error: uninitialized symbol 'max_sz'.
virtio: Allow DMA mem above 4G
Allow to use memory above 4G on amd64 for virtio rings and
descriptors. This may reduce pressure on dma-able memory a bit.
For the virtio ring address, virtio 0.9 has a 2^44 limit. Use
bus_dmamem_alloc_range there.
With input from kettenis@
ok mlarkin@
Split io_read_str() in two. One version that requires a string (default)
and one that allows optional strings (aka NULL pointers).
Also split io_str_buffer() in two. To enforce that we don't pass a NULL
pointer in a place where we don't expect a NULL pointer.
On top of this just error out in io_read_buf() if the sz passed in is 0.
Adjust all io_read_str() calls to follow this. This way it is obvious
where we accept a NULL as a string pointer.
OK tb@ job@
Inherit PS_NOBTCFI at fork(2)
Else the forked children could get killed by our BTCFI safeguards.
PS_NOBTCFI is supposed to be set/unset at exec time.
Spotted by tb@ and landry@ with recent firefox.
ok claudio@ sthen@ deraadt@ tb@
Update to a recent git checkout.
Unbreak build when databases/qdbm is installed.
Fix @sample for /etc/dt/config/ (it's a directory, not a file); from pascal@
Better fix for power-button event handling during resume
Reset resume_time once we have passed the sleep_state() function.
With this we can keep using the 10 seconds power button timeout
we had before I bumped it to 15 seconds.
Suggested by deraadt@