Make it clear that DenyUsers/DenyGroups overrides AllowUsers/AllowGroups.
Previously we specified the order in which the directives are
processed but it was ambiguous as to what happened if both matched.
OK djm@
Adds basic implementation of the low-level FUSE API.
This is sufficient to compile and run lowntfs-3g.
In this patch the low and high-level APIs are independent. The next
patch will modify the high-level API to make use of the low-level API
so that there is no longer any code duplication.
The libfuse changes are mostly additions and should be self-explanatory.
There are also some kernel changes required, which are:
- A fusefs dir vnode now keeps a reference to its parent vnode so that ".." is
resolves in fusefs_lookup rather than sending the lookup request to the FUSE
file system. This is consistent with Linux.
- Added sanity checks for the attributes returned from FBT_GETATTR. These
belong in the kernel and not in libfuse.
- fusefs_readdir needed some tweaking to handle full buffers.
- Set the vnode type from the attributes returned from FBT_MKDIR and
FBT_MKNOD.
[6 lines not shown]
wycheproof regress: wycheproof-testvectors was renamed to wycheproof
Installed packages will update and pkg_add wycheproof-testvectors will
continue to work.
libsndio: Increase the length of display strings and control names
Fixes truncated uaudio(4) device names. As we're at it, increase other
strings and add padding in the sioctl_desc structure, for future use.
libsndio: Add the new sio_onxrun(3) function to report underruns
libsndio recovers after underruns, so in most cases they should just
be ignored. However there are cases where a program may use an external
audio clock (ex. an RTP stream) and resample to make the local audio
rate match the remote rate to keep the latency constant. To do so, the
program must measure continuously the clock drift and calculate the
resampling ratio. Upon underrun, such programs must restart the
measurements, hence the need for this new interface.
ok armani
ML-KEM: improve the EncapsTest
New testvectors want some more detailed handling, which brings these
Wycheproof encapsulation tests about on par with our existing tests.
ML-KEM: don't treat API failure as test failure for invalid test cases
An update to the test vectors adds tests which verifies that the API
correctly rejects some inputs.
Revert the rest of commit 1.3.1 and revert commit 1.3.8
This reverts both of these commits in the current tree.
this will be follwed up with changes to re-add the atomic
operations on uvmexp.paging
ok claudio@, kettenis@, (possibly deraadt@?)
In ssh(1), don't try to match certificates held in an agent to
private keys.
This matching is done to support certificates that were
loaded without their private key material, but is unnecessary for
agent-hosted certificate which always have private key material
loaded in the agent. Worse, this matching would mess up the
request sent to the agent in such a way as to break usage of these
keys when the key usage was restricted in the agent.
Patch from Thibault Cools via bz3752, ok dtucker@
If editline has been switched to vi mode (i.e. via "bind -v" in .editrc),
setup a keybinding so that command mode can be entered. Diff originally
from Walter Alejandro Iglesias with tweaks. Feedback from Crystal Kolipe.
ok djm
Revert revision 1.379
Rewrite m_getuio() to better align data in the mbufs
...
Allowing m_getuio() to use m_clget() with sizes up to MAXMCLBYTES (64k)
puts too much pressure on the pmemrange allocator. Right now the
physical pages for mbufs need to be in a single contiguous segment. On
top of this pool multiplies the size by 8 and in pool headers may add an
additional alignment restriction on pysical memory on __HAVE_PMAP_DIRECT
archs. For 64k clusters half a megabyte of contiguous physical memory is
needed, for 12k clusters the use of in page headers result in a 128k
allocation on a 128k boundary (so in the worst case a 252k area is needed).
Both of those requests cause issues on landisk. With 64MB of RAM there is
little room and after some time the physical memory is so fragmented that
the allocations for such large contiguous segements fail. Even dropping
the buffercache to its minimum and paging out all pageable memory does
not help to recover.
[2 lines not shown]
drm/amdkfd: Fix improper NULL termination of queue restore SMI event string
From Brian Kocoloski
47206d70d1fba05470a2bd00ae3d66d27487c195 in linux-6.12.y/6.12.66
969faea4e9d01787c58bab4d945f7ad82dad222d in mainline linux
drm/amd/display: Fix DP no audio issue
From Charlene Liu
f609041424d56f673e278f38ebbc71e05564b2ea in linux-6.12.y/6.12.66
3886b198bd6e49c801fe9552fcfbfc387a49fbbc in mainline linux
drm/amd/display: shrink struct members
From Rosen Penev
e83af97d5c3913c5d0bb81dcf0188f7c48731215 in linux-6.12.y/6.12.66
7329417fc9ac128729c3a092b006c8f1fd0d04a6 in mainline linux
drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[]
From Alex Deucher
7500ab83bad207341916950bb21248af0a1ee21e in linux-6.12.y/6.12.66
19158c7332468bc28572bdca428e89c7954ee1b1 in mainline linux
drm/amdgpu: Fix query for VPE block_type and ip_count
From Alan Liu
90b4b130a20d80decfc9b115c187f818ab83a30a in linux-6.12.y/6.12.66
72d7f4573660287f1b66c30319efecd6fcde92ee in mainline linux
Fill entropy in a single operation instead of hundreds.
The sntrup761 code we use from SUPERCOP fills entropy arrays 4 bytes at
a time. On some platforms each of these operations has a significant
overhead, so instead fill it in a single operation and as a precaution
zero that array after it's used.
Analysis and code change is from Mike Frysinger via Github PR#621 with
feedback from djm@ and sed-ification from me. ok djm@ beck@.
This change was submitted by Mike to SUPERCOP upstream so hopefully
future versions will already have it.
rpki-client: use spki/spkisz for the SPKI in a TAL
This used to use pkey, which is very confusing since this is the standard
name for an EVP_PKEY *.
ok job (part of a larger diff)
