Add modal panes, created currently with new-pane -O. There is one modal
pane per window and it must be a floating pane. These are intended to
replace popups. Currently a modal pane will unzoom a zoomed window and
rezoom it when it is closed (a bit like modes do), but this is planned
to change when we get an always-on-top flag.
rework the force_update logic in the adj-rib-out
On initial connect the system needs to sync the adj-rib-out of a peer with
the Loc-RIB. This happens via peer_dump() and in this case the system
needs to push out all updates (but can drop any withdraw).
To do this a force_update flag was introduced but actually it is better to
use the mode argument and introduce EVAL_SYNC for this case.
If mode == EVAL_SYNC adjout_prefix_update needs to force the update and
adjout_prefix_withdraw can drop the withdraw.
The other user of peer_dump() is during config reloads where the RIB of a
peer is altered. In that case the adj-rib-out is first flushed. Because of
this flush peer_dump can be used to push out all updates.
This also removes the NOTYET block in peer_generate_update() and
replaces it with inside up_generate_addpath_all() with a call
up_generate_addpath().
OK tb@
cnmac: Fix packet corruption with veb(4)
Account for VLAN header when setting IP packet offset for TCP/UDP
checksum offload on transmit. Otherwise cnmac(4) can corrupt packets
that are sent through veb(4).
Initial patch from Sergii Rudchenko.
ether_extract_headers() usage added by me.
OK kirill@
Fix an inversed if-condition in ieee80211_michael_mic_failure()
Make the check for 60 seconds since the most recent previous MIC failure
work as intended. The code was enabling TKIP countermeasures if 60 seconds
have passed since the previous MIC failure. The intention is to enable
countermeasures only if less than 60 seconds have passed.
LLMS got very excited about this, even though nobody is expected to be
running an access point with WPA1 enabled in 2026.
TKIP is disabled by default. We keep it around just in case we need to
connect to the world via a forgotten 802.11g era AP out in a desert.
rpki-client: only output config files on successful run
While the suggested cronjob is 'rpki-client -v && bgpctl reload' and thus
only reloads bgpd if rpki-client completes successfully, the output logic
creates a config file that might still be loaded by an operator by hand.
If an error occurred in one of the subprocesses, only output ometrics (if
requested) and do not generate bgpd, bird, csv, json, and ccr.
ok claudio job
Fix a potential 1-byte buffer overflow in usbd_get_string_desc(). The code
allows for a transfer of up to 255 bytes but the struct behind the
usb_string_descriptor_t type is only 254 bytes. This is because USB
strings are UTF-16 and that leaves a single byte that can't be used in
a meaningful way. So truncating transfer to 254 bytes should not break
devices that are already broken. Found by Andrew Griffiths.
ok jsg@, deraadt@
link redis/main (8.8.0) to the build, but with a MESSAGE mentioning the
problems seen in tests. (I wasn't able to repeat the same problems with git
head yet, but it's painful to bisect via the ports tree as it needs some
manual fiddling to avoid over-long directory names...anyway this gets 8.x
into portroach so it'll be easier to pick up updates, and for anyone else
that wants to test/provide feedback).