Improve checking of ELF notes. This adds checks for overflow when rounding
sizes up to be a multiple of the ELF word size and adds checks to prevent
out of bounds access.
Based on a report and diff from Andrew Griffiths.
ok jsg@, deraadt@
Default 'announce as-4byte' to 'enforce' for all peers
After close to 20 years of 4-byte AS support in bgpd it is time to enforce
it. The fall back code from 2-byte AS to 4-byte AS is non-trivial and
the RFC is way to optimistic and ignores many possible error conditions.
All relevant BGP implementations support 4-byte ASnums so it is a
misconfiguration to not use this by default. Most implementations do this
by default.
In the unlikely cases where 2-byte AS support is still needed one can
fall back to the previous default by using 'announce as-4byte yes'.
OK tb@ job@
Reimplement aspath_merge() in a more cynical fashion
Mergin AS4_PATH into ASPATH can be done a bit simpler by using the fact
that AS4_PATH must be a subset of ASPATH. The resulting path has the same
size and layout as the ASPATH. bgpd inflates the 2-byte ASPATH to 4-byte
representation early on so this simplifies the merge.
When mering the path be strict and any difference in the two paths triggers
a treat-as-withdraw error. Something is off so refuse to work with this path.
This is harsher than RFC 6793 but the concerns then no longer matter.
Use ibuf for all the buffers to have memory safety during this merge operation.
OK tb@
Prevent daily(8) from deleting /tmp/run/user/* direct subdirectories
These are directories that are created by
setusercontext(LOGIN_SETXDGENV) and should be available as long as
a session with the XDG_RUNTIME_DIR env variable pointing at them exists.
Since we don't track such sessions, we can't have daily(8) remove such
directories blindly. This looks like an oversight in the initial commit.
Diff proposed by dah4ae (at) posteo (dot) de, ok ajacoutot@
Fix border colour bug in the floating panes branch where inactive
floating pane borders incorrectly use the active colour at intersections
with tiled pane borders. From Michael Grant.
drm/i915/dp: Fix readback for target_rr in Adaptive Sync SDP
From Ankit Nautiyal
ad8e3d096fa1e2f8b1009731c6e0cdae7ebedf79 in linux-6.18.y/6.18.34
f87abd0c6604fb6cc31cc86fc7ccc6a576924352 in mainline linux
drm/amd/display: Validate payload length and link_index in dc_process_dmub_aux_transfer_async
From Harry Wentland
1ecde19bfce6535bffddad1139ff466b6d401b8e in linux-6.18.y/6.18.34
6c92f6d9600efa3ef0d9e560a2b52776d9803c29 in mainline linux
drm/amd/display: Validate GPIO pin LUT table size before iterating
From Harry Wentland
7ca695b3122297b06a3ed605bbe1cd32c85d9f5a in linux-6.18.y/6.18.34
86d2b20644b11d21fe52c596e6e922b4590a3e3f in mainline linux
drm/amd/display: Fix integer overflow in bios_get_image()
From Harry Wentland
6bbd703ea1c141d7ac0e7f7e82ff5fd237b67a17 in linux-6.18.y/6.18.34
cd86529ec61474a38c3837fb7823790a7c3f8cce in mainline linux
drm/amdgpu/vpe: Force collaborate sync after TRAP
From Alan Liu
3ed448c1dc78ddbf2e1f29dc00788c028ccdbb82 in linux-6.18.y/6.18.34
b6074630a461b1322a814988779005cbc43612ea in mainline linux
drm/vblank: Fix kernel docs for vblank timer
From Thomas Zimmermann
141ffb83abe97db88df8822c82cd53ae5e38221a in linux-6.18.y/6.18.34
3946d3ba99342f3b9996e621f05e7003d4308171 in mainline linux
drm/atomic: Increase timeout in drm_atomic_helper_wait_for_vblanks()
From Thomas Zimmermann
ed39ecd3a96cdf94589aef46f2f711cf93baa0d3 in linux-6.18.y/6.18.34
79ae8510b5b81b9500370f89c619b50ca9c0990f in mainline linux
drm/vblank: Add CRTC helpers for simple use cases
From Thomas Zimmermann
60918357456d39f640de25845890614caa44a30a in linux-6.18.y/6.18.34
d54dbb5963bdbdf8559903fe2b2343e871adcb30 in mainline linux
drm/vblank: Add vblank timer
From Thomas Zimmermann
fa4b91eea4331e7c24aa2d7855583d062a73e4ea in linux-6.18.y/6.18.34
74afeb8128502a529041a2566febd26053a7be11 in mainline linux
