BSD Commit Log Search

system(3): Unwrap execve()

There is no need to call execl(), which will allocate an array and copy
our arguments into it, when we can use a static array and call execve()
directly.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    kevans
Differential Revision:  https://reviews.freebsd.org/D55648

textproc/libxml2: update to 2.15.2

Changelog: https://gitlab.gnome.org/GNOME/libxml2/-/blob/v2.15.2/NEWS
(cherry picked from commit 0734d7476a36a67f16580afb65b79375a3ae9fc9)

net-im/flare: update to 0.18.8

Changelog: https://gitlab.com/schmiddi-on-mobile/flare/-/releases/0.18.8

While here, use databases/sqlcipher instead of bundled

PR: 293450
Approved by: nxjoseph (maintainer)

textproc/libxml2: update to 2.15.2

Changelog: https://gitlab.gnome.org/GNOME/libxml2/-/blob/v2.15.2/NEWS

ichwd: address unused function warning by marking as __unused

Reported by:    markj, bz
Approved by:    markj (mentor)
Fixes:  2b74ff5fceb6 ("ichwd: introduce i6300esbwd watch dog driver")
Differential Revision: https://reviews.freebsd.org/D52476

(cherry picked from commit 3449a3abab892a0a1124ee4edbc10d6d28b87af3)

lpd: Add timeout option

Set a 120-second receive timeout on all client connections, and add a
command-line option to change that value.

MFC after:      1 week
Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D55400

(cherry picked from commit 56fbfd1ecdc78fc99b3a2e381c355ce8980de39d)

lpd: Add -F flag to prevent daemonizing

This is necessary for use with supervision, e.g. runit.

I chose -F simply because that is what the folks at LPRng use.

Approved by:            pfg, gad, ngie
Differential Revision:  https://reviews.freebsd.org/D29566

(cherry picked from commit 3c6366067036d4573528309a0a4d3b52e2a76ae7)

lpd: Update SYNOPSIS with new flag

Reported by:    0mp

(cherry picked from commit cebcca89f1b059438cc329bde4d8ad254a303623)

lpd: Improve robustness

* Check for integer overflow when receiving file sizes.

* Check for buffer overflow when receiving file names, and fully
  validate the names.

* Check for integer overflow when checking for available disk space.

* Check for I/O errors when sending status codes.

* Enforce one job per connection and one control file per job (see
  code comments for additional details).

* Simplify readfile(), avoiding constructs vulnerable to integer
  overflow.

* Don't delete files we didn't create.


    [11 lines not shown]

lpr: Remove trailing semicolon

Signed-off-by: Elyes Haouas <ehaouas at noos.fr>
Reviewed by: imp
Pull Request: https://github.com/freebsd/freebsd-src/pull/654
(cherry picked from commit 365348f66a47df247b5289b8a86fb20b36d778c1)

lpd.8: Chase Dd-- took old value when merging

(cherry picked from commit 56b0f5f360b6039c6a696aa241aaa02a16ff6a0a)

system(3): Clarify return values

Our manual page currently states that system() will return 127 if it
fails to execute the shell.  The actual return value is, to quote POSIX,
“as if the command language interpreter had terminated using exit(127)
or _exit(127)”.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    bnovkov, kevans
Differential Revision:  https://reviews.freebsd.org/D55483

(cherry picked from commit 7305604b29d3db29c9bb5de6e7a25829fb541d1e)

lpd: Add timeout option

Set a 120-second receive timeout on all client connections, and add a
command-line option to change that value.

MFC after:      1 week
Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D55400

(cherry picked from commit 56fbfd1ecdc78fc99b3a2e381c355ce8980de39d)

lpd: Improve robustness

* Check for integer overflow when receiving file sizes.

* Check for buffer overflow when receiving file names, and fully
  validate the names.

* Check for integer overflow when checking for available disk space.

* Check for I/O errors when sending status codes.

* Enforce one job per connection and one control file per job (see
  code comments for additional details).

* Simplify readfile(), avoiding constructs vulnerable to integer
  overflow.

* Don't delete files we didn't create.


    [11 lines not shown]

system(3): Clarify return values

Our manual page currently states that system() will return 127 if it
fails to execute the shell.  The actual return value is, to quote POSIX,
“as if the command language interpreter had terminated using exit(127)
or _exit(127)”.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    bnovkov, kevans
Differential Revision:  https://reviews.freebsd.org/D55483

(cherry picked from commit 7305604b29d3db29c9bb5de6e7a25829fb541d1e)

system(3): Write our own tests

Replace the somewhat perfunctory NetBSD tests with our own.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    bnovkov, kevans
Differential Revision:  https://reviews.freebsd.org/D55482

(cherry picked from commit 7a1ade5109ac57d1f59eaa75b5d0f13fabecf6ba)

lpd: Add timeout option

Set a 120-second receive timeout on all client connections, and add a
command-line option to change that value.

MFC after:      1 week
Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D55400

(cherry picked from commit 56fbfd1ecdc78fc99b3a2e381c355ce8980de39d)

lpd: Improve robustness

* Check for integer overflow when receiving file sizes.

* Check for buffer overflow when receiving file names, and fully
  validate the names.

* Check for integer overflow when checking for available disk space.

* Check for I/O errors when sending status codes.

* Enforce one job per connection and one control file per job (see
  code comments for additional details).

* Simplify readfile(), avoiding constructs vulnerable to integer
  overflow.

* Don't delete files we didn't create.


    [11 lines not shown]

system(3): Fix null case

Our manual page states that if given a null pointer, system() returns
non-zero if the shell is available and zero if it is not.  This is
consistent with the C standard's description of system(), but it is not
what we actually do.  What we actually do is always return non-zero, as
required by POSIX.

As the POSIX rationale explains, implementing the logic required by the
C standard does not violate POSIX, since a conforming system always has
a shell, therefore the logic will always return non-zero.

Since our libc is commonly used in non-conforming situations such as
chroots or thin jails, we should implement the full logic required by
the C standard.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    obiwac, bnovkov, kevans

    [3 lines not shown]

system(3): Clarify return values

Our manual page currently states that system() will return 127 if it
fails to execute the shell.  The actual return value is, to quote POSIX,
“as if the command language interpreter had terminated using exit(127)
or _exit(127)”.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    bnovkov, kevans
Differential Revision:  https://reviews.freebsd.org/D55483

(cherry picked from commit 7305604b29d3db29c9bb5de6e7a25829fb541d1e)

system(3): Improve signal handling

Ignore SIGINT and SIGQUIT and block SIGCHLD, as POSIX requires.

To deal with the concurrency problem described in POSIX, we keep track
of the count of concurrent invocations.  We ignore and block signals
only when the counter was zero before we incremented it, and restore
them only when the counter reaches zero after we decrement it.

Note that this does not address the issue of thread cancellation.

MFC after:      1 week
Sponsored by:   Klara, Inc.
Reviewed by:    bnovkov, sef, kevans
Differential Revision:  https://reviews.freebsd.org/D55471

(cherry picked from commit 6e589e6e8e64793adb437c561ec084dbb6ad1ced)

sysutils/cpupdate: minor update

Update Intel Pack upto microcode-20260227 and
platomav/CPUMicrocodes upto r348. Bump PORTREVISION.

lang/cbqn: Update pkg-descr

PR:             293247
Reported by:    mew14930xvi <mew14930xvi at inbox.lv>
Approved by:    lwhsu (mentor, implicitly)

bsd.port.mk: run pkg-create with MAKE_JOB_NUMBER threads

Following the same as https://reviews.freebsd.org/D53053
in the src tree.

Reviewed by:    portmgr (bapt)
Approved by:    lwhsu (mentor, implicitly)
Differential Revision:  https://reviews.freebsd.org/D55232

devel/py-proxmoxer: Update 2.2.0 => 2.3.0

Changelog:
https://github.com/proxmoxer/proxmoxer/releases/tag/2.3.0

PR:     293578

vmm: Support INOUT manual decode.

The inout instruction in AMD SVM requires DecodeAssist feature to decode the
segment override prefix. However, without that feature, we are still
able to decode by fetching the instruction directly.

Approved by:    markj (mentor)
MFC after:      2 weeks
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D51256

(cherry picked from commit c18c521c79b6160ce43bb2ca4c2eb42ccf7e6e57)

multimedia/libbluray: Fix build

Fix build if non-default option JAVA disabled - default build:
restore %%JAVA%% in plist.

PR:             293577
Approved by:    portmgr (blanket - fix build)
Fixes:          a45aee313be6 (Update to 1.4.1)

sysutils/auto-admin: Update to 0.8.4.24

auto-update-system:
    Don't use -DBATCH, user may need to accept license
auto-chromium+widevine-install:
    Tag linux-widevine-cdm as install-from-source so
    auto-update-system can update it automatically.

devel/py-python-gitlab: Update 8.0.0 => 8.1.0

Changelog:
https://github.com/python-gitlab/python-gitlab/releases/tag/v8.1.0

PR:     293573

smp: Use bitwise operation to count cpu number

Previously, we iterated over all CPUs using CPU_FOREACH and checked
individual bits to count valid CPUs. Refactor this to use a bitwise AND
and popcount to count the number of enabled bits directly.

Approved by:    markj (mentor)
MFC after:      2 weeks
Differential Revision: https://reviews.freebsd.org/D54474

(cherry picked from commit e387d9438ba0258b88ebe03ef139bc6fd70b5a46)