Build date: 1743631202 - Wed Apr 2 22:00:02 UTC 2025 Build cvs date: 1743587502 - Wed Apr 2 09:51:42 UTC 2025 Build id: 2025-04-03.1 Build tags: amd64-regress sysupgrade Applied the following diff(s): /home/anton/tmp/robsd/src-regress-usr.sbin-bgpd.diff /home/anton/tmp/robsd/src-sys-em.diff /home/anton/tmp/robsd/src-sys-uhidev-sispm.diff /home/anton/tmp/robsd/src-sysupgrade.diff P usr.bin/ssh/Makefile.inc P usr.bin/ssh/sshkey.h P usr.bin/tmux/mode-tree.c P usr.bin/tmux/popup.c P usr.bin/tmux/tmux.h P usr.bin/tmux/window-tree.c P usr.bin/tmux/window.c P usr.sbin/bgpctl/json.c P usr.sbin/rpki-client/gbr.c P usr.sbin/rpki-client/json.c P usr.sbin/rpki-client/print.c P usr.sbin/rpki-client/tak.c commit XOwSLnGYOLxOsaSZ Author: tb Date: 2025/04/02 09:51:42 Minimal gbr validation and printing fixes Job noticed a while back that one of the two .gbr in the ecosystem is malformed. Worse, it made filemode error out in json_do_string() when dumping JSON because its vCard is an empty octet string (which means it is the byte string 0x04 0x00, so it contains a control character): SEQUENCE { # rpkiGhostbusters OBJECT_IDENTIFIER { 1.2.840.113549.1.9.16.1.35 } [0] { OCTET_STRING { OCTET_STRING {} } } } A valid vCard contains a printable UTF-8 string and looks like this: SEQUENCE { # rpkiGhostbusters OBJECT_IDENTIFIER { 1.2.840.113549.1.9.16.1.35 } [0] { OCTET_STRING { "BEGIN:VCARD VERSION:4.0 ..." } } } Now vCards are crazy complicated (despite the simplifications RFC 6493 added to the full RFC 6350 madness) since the format is overly flexible and they are defined to contain a subset of UTF-8 (for which no sane portable C API exists). As a minimal sanity check/validation, verify that it starts as expected, and strvisx() the whole thing. Again this is an ugly kludge, but better than more complicated logic right now. ok claudio usr.sbin/rpki-client/gbr.c commit MABJQXbDGlXuBl28 Author: tb Date: 2025/04/02 09:42:57 tak: strvis the UTF-8 comment section This is an ugly kludge until we can do better validation. Now is not the right time in the release cycle to fiddle with even more complicated and more broken legacy messes than we already have to deal with in here. ok claudio usr.sbin/rpki-client/tak.c commit ZW0FZ1hT5UJfTIYB Author: nicm Date: 2025/04/02 09:31:00 Only align panes and windows, not sessions, from David Mandelberg in GitHub issue 4444. usr.bin/tmux/mode-tree.c usr.bin/tmux/tmux.h usr.bin/tmux/window-tree.c commit X36OGhNWip4jSMQ0 Author: tb Date: 2025/04/02 09:27:16 takey_print: don't emit empty line between comments and URIs It was probably an oversight in RFC 8630 that TALs don't allow an empty line between the comment section and the URI section. Or maybe a comment of only one or two lines was intended rather than the ugly blob we now have in arin.tal. Be that as it may, the output is supposed to be a TAL and it should conform to the RFC. ok claudio usr.sbin/rpki-client/print.c commit DNCQ9mkugk8hRJ9b Author: tb Date: 2025/04/02 09:16:26 json.c: sync with bgpctl/json.c r1.11: escape ASCII control characters ok claudio usr.sbin/rpki-client/json.c commit xLrWFvUAep6syLlo Author: tb Date: 2025/04/02 09:15:04 Properly escape ASCII control characters in JSON rather than erroring shared pain with/ok claudio usr.sbin/bgpctl/json.c commit AD0ae0Gh2ra1dqLI Author: nicm Date: 2025/04/02 09:12:05 Popup window should not be draggable while mouse still pressed, and do not try to work out theme if no pane. From Michael Grant in GitHub issue 4330. usr.bin/tmux/popup.c usr.bin/tmux/window.c commit oCtnKZGUMNb0Dmdr Author: tb Date: 2025/04/02 04:28:03 Wrap #include in #ifdef WITH_DSA ok djm usr.bin/ssh/sshkey.h commit VBIGnySwnOwjh6cy Author: djm Date: 2025/04/01 23:23:20 remove ability to enable DSA support. Actual code will be g/c'd separately. ok deraadt@ usr.bin/ssh/Makefile.inc