Build date: 1751666402 - Fri Jul 4 22:00:02 UTC 2025 Build cvs date: 1751656402 - Fri Jul 4 19:13:22 UTC 2025 Build id: 2025-07-05.1 Build tags: amd64-regress sysupgrade Applied the following diff(s): /home/anton/tmp/robsd/src-sys-em.diff /home/anton/tmp/robsd/src-sys-uhidev-sispm.diff /home/anton/tmp/robsd/src-sysupgrade.diff P distrib/sets/lists/comp/mi P etc/group P etc/master.passwd P etc/mail/aliases P lib/libcrypto/man/EC_GROUP_check.3 P regress/usr.bin/ssh/Makefile U regress/usr.bin/ssh/connect-bigconf.sh P sys/arch/amd64/amd64/ghcb.c P sys/arch/amd64/amd64/vmm_machdep.c P sys/arch/m88k/include/atomic.h P sys/arch/m88k/m88k/m88100_fp.c P sys/dev/pci/pcidevs P sys/dev/pci/pcidevs.h P sys/dev/pci/pcidevs_data.h P sys/dev/pci/pucdata.c P sys/kern/kern_pledge.c P sys/kern/kern_timeout.c P usr.bin/mandoc/term.h P usr.bin/mandoc/term_tab.c P usr.bin/ssh/monitor_wrap.c P usr.bin/ssh/monitor_wrap.h P usr.bin/ssh/mux.c P usr.bin/ssh/sshd.c M usr.sbin/bgpd/session.c P usr.sbin/rpki-client/cert.c P usr.sbin/vmd/vm.conf.5 commit LHuH6PNCEmhxYEPn Author: schwarze Date: 2025/07/04 19:13:22 delete the unused function term_tab_iset(); even tbl(7) no longer needs it usr.bin/mandoc/term.h usr.bin/mandoc/term_tab.c commit rKFnJjMV7pGswQel Author: tb Date: 2025/07/04 16:22:07 rpki-client: introduce cert_parse_internal() End entity certificates have been checked only in a rather minimalistic way for no good reason. A certificate is a certificate and while there are some differences in the details of the extensions, there should only be a single parsing function. Factor some checks for CA/TA certificates into helpers and handle the logic in such a way that it can be read next to RFC 6487 and checked for completeness. Some items are left for later. input/ok job usr.sbin/rpki-client/cert.c commit JwZX59dlUHTKmRoK Author: miod Date: 2025/07/04 13:22:29 Move declaration of __membar() outside of a !gcc4 conditional block. sys/arch/m88k/include/atomic.h commit MRlakjYTlXsRKQec Author: jsg Date: 2025/07/04 10:11:28 spelling sys/arch/amd64/amd64/ghcb.c sys/arch/amd64/amd64/vmm_machdep.c commit xcBxjPxO6dSC8UKU Author: djm Date: 2025/07/04 09:51:01 Fix mistracking of MaxStartups process exits in some situations. At worst, this can cause all MaxStartups slots to fill and sshd to refuse new connections. Diagnosis by xnor; ok dtucker@ usr.bin/ssh/sshd.c commit k41DFqh6jxYKnz1Y Author: jsg Date: 2025/07/04 09:34:48 fix unintended double words in comments sys/arch/amd64/amd64/vmm_machdep.c sys/arch/m88k/m88k/m88100_fp.c sys/kern/kern_timeout.c commit iiWrErLqEcPp1fFJ Author: djm Date: 2025/07/04 07:52:17 add a regress test for configurations > 256KB mostly by Dmitry Belyavskiy regress/usr.bin/ssh/Makefile regress/usr.bin/ssh/connect-bigconf.sh commit pGsQHE2TAEL216KC Author: djm Date: 2025/07/04 07:47:35 the messaging layer between sshd-session and sshd-auth had a maximum message size of 256KB. Some people apparently have configurations larger than this and would hit this limit. Worse, there was no good logging that could help diagnose what was going wrong. So this bumps the maximum message size to 4MB and implements an early check (usable via the sshd -t test mode) that will report it to the user where it is hopefully more visible. bz3808, reported by Dmitry Belyavskiy, ok dtucker@ usr.bin/ssh/monitor_wrap.c usr.bin/ssh/monitor_wrap.h usr.bin/ssh/sshd.c commit UWmsojG8vpebkS40 Author: jsg Date: 2025/07/04 05:16:56 fix double word; ok tb@ lib/libcrypto/man/EC_GROUP_check.3 commit gYUgKa6o3u0QCFrL Author: tb Date: 2025/07/04 04:36:25 regen sys/dev/pci/pcidevs.h sys/dev/pci/pcidevs_data.h commit s1uleqPARoMcTSta Author: tb Date: 2025/07/04 04:35:58 Actually add PCI Id for NetMos 9912 (previous had a copy/paste error) From Geoff Steckel, tweak/ok sthen sys/dev/pci/pcidevs commit YiuYhYt2nWlTz3f1 Author: tb Date: 2025/07/04 04:34:06 Add PCI Id for NetMos 9912 From Geoff Steckel, tweak/ok sthen sys/dev/pci/pcidevs commit lnXc0OA8jrLYNH9R Author: tb Date: 2025/07/04 04:31:48 Teach puc(4) about my Nm9900 which attaches as puc0 at pci3 dev 0 function 0 "NetMos Nm9900" rev 0x00: ports: 16 com com4 at puc0 port 0 apic 2 int 16: st16650, 32 byte fifo ok deraadt kettenis sthen sys/dev/pci/pucdata.c commit 30QagK220O2ikpba Author: bentley Date: 2025/07/04 04:31:41 Allocate a uid/gid for future ownership of the fontconfig cache. ok sthen@ deraadt@ etc/group etc/master.passwd etc/mail/aliases commit E0nBmkfn9MBFizKH Author: tb Date: 2025/07/04 04:29:36 regen sys/dev/pci/pcidevs.h sys/dev/pci/pcidevs_data.h commit ELFyOSYj3BA0pHAZ Author: tb Date: 2025/07/04 04:29:15 Add PCI Id for NetMos 9900 on my Dell Presicion's serial card ok deraadt kettenis sthen sys/dev/pci/pcidevs commit EFL9czgpSRJQ8J8r Author: tb Date: 2025/07/04 04:24:37 pledge: allow IPV6_DONTFRAG optname in setsockopt() This is used by the latest version of quinn, firefox's QUIC implementation. ok deraadt sys/kern/kern_pledge.c commit jlWdAn9pceLyZxKq Author: jsg Date: 2025/07/04 01:32:02 fix double word usr.sbin/vmd/vm.conf.5 commit GJZOxRw4ArObkm4T Author: djm Date: 2025/07/04 00:17:55 mux: fix incorrect return value check in local forward cancellation channel_cancel_lport_listener() returns 1 on success and 0 on failure. The previous code incorrectly checked for `== -1`, a value the function never returns, so failure was not detected and the "port not found" error message was never shown when cancelling dynamic or local port forwards. From: Boris Tonofa usr.bin/ssh/mux.c commit BRIBl4O5AxmGxcD8 Author: deraadt Date: 2025/07/03 23:25:10 sync distrib/sets/lists/comp/mi