Displaying 1 50 of 5,129,304 commits (0.238s)

LLVM — llvm/trunk/lib/Target/X86 X86SpeculativeLoadHardening.cpp

[x86/SLH] Major refactoring of SLH implementaiton. There are two big
changes that are intertwined here:

1) Extracting the tracing of predicate state through the CFG to its own
   function.
2) Creating a struct to manage the predicate state used throughout the
   pass.

Doing #1 necessitates and motivates the particular approach for #2 as
now the predicate management is spread across different functions
focused on different aspects of it. A number of simplifications then
fell out as a direct consequence.

I went with an Optional to make it more natural to construct the
MachineSSAUpdater object.

This is probably the single largest outstanding refactoring step I have.
Things get a bit more surgical from here. My current goal, beyond
generally making this maintainable long-term, is to implement several
improvements to how we do interprocedural tracking of predicate state.
But I don't want to do that until the predicate state management and
tracing is in reasonably clear state.

Differential Revision: https://reviews.llvm.org/D49427

FreeBSD Ports — head/science/quantum-espresso distinfo pkg-plist, head/science/quantum-espresso/files patch-environment__variables patch-Makefile

science/quantum-espresso: Add pseudo potential files because they are used in all 
calculations

Port changes:
* Download and install all pseudo potential files that are mentioned in any examples
* Remove ALL_TARGET - it had a default value
* Merge post-patch target into post-extract target
* Add the run-examples target
* Add DIST_SUBDIR because there are many distfiles

FreeBSD — head/sys/xen/interface/arch-x86/hvm start_info.h

xen: add missing file from r336474

FreeBSD Ports — head/devel Makefile R-cran-fansi, head/devel/R-cran-fansi Makefile pkg-descr

- Add new port: devel/R-cran-fansi

  Counterparts to R string manipulation functions that account for
  the effects of ANSI text formatting control sequences.

  WWW: https://cran.r-project.org/web/packages/fansi/

FreeBSD Ports — branches/2018Q3 UPDATING MOVED, branches/2018Q3/www Makefile gitlab-ce

MFH: r473910 r473925 r474258 r474906

Updated gitlab to 11.0.2.
For detailed list of changes please see here:
https://about.gitlab.com/2018/06/22/gitlab-11-0-released/
Please make sure before you upgrade you read the entry in UPDATING.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Renamed gitlab to gitlab-ce in Makefile.

PR:                229519
Reported by:        Trond.Endrestol at ximalas.info
Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Upgrade gitlab to 11.0.3 and fix problem with sidekiq-cron reported by swills which 
requires rubygem-rufus-scheduler version 3.4.0, alle other newer versions are failing.

PR:                229557
Reported by:        swills
Reviewed by:        tz (mentor)

    [10 lines not shown]

FreeBSD Ports — branches/2018Q3/www/gitlab-workhorse distinfo Makefile

MFH: r473908

Update to 4.3.1 which is required for gitlab 11.0.2.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Approved by:        ports-secteam (miwi)

FreeBSD Ports — branches/2018Q3/devel/gitlab-shell distinfo Makefile

MFH: r473907

Update to 7.1.4 which is required for gitlab 11.0.2.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Approved by:        ports-secteam (miwi)

FreeBSD Ports — branches/2018Q3/devel/gitaly Makefile distinfo, branches/2018Q3/devel/gitaly/files patch-ruby_Gemfile patch-config.toml.example

MFH: r473905 r474905

Update to 0.105.0 which is required for gitlab 11.0.2.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Made it possible to use another PREFIX for gitlab-ce.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16266

Approved by:        ports-secteam (miwi)

FreeBSD Ports — branches/2018Q3/net/rubygem-gitaly-proto distinfo Makefile

MFH: r473904 r474740

Update to 0.101.0 which is required for gitlab 11.0.2.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Take maintainer as port is only used by gitlab-ce which I maintain, so I can sync the 
updates with the gitlab-ce updates.

Reviewed by:        tz (mentor)
Approved by:        sunpoet (maintainer by email), tz (mentor)
Differential Revision:        https://reviews.freebsd.org/D16267

Approved by:        ports-secteam (miwi)

FreeBSD Ports — branches/2018Q3/devel/rubygem-sprockets3 Makefile distinfo

MFH: r473903

Update to 3.7.2 which is required for gitlab 11.0.2.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Approved by:        ports-secteam (miwi)

FreeBSD Ports — branches/2018Q3/devel/rubygem-sdoc Makefile distinfo

MFH: r473902

Update to 1.0.0 which is required for gitlab 11.0.2.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Approved by:        ports-secteam (miwi)

FreeBSD Ports — branches/2018Q3/devel/rubygem-rdoc Makefile distinfo

MFH: r473900

Update to 6.0.4 which is required for gitlab 11.0.2.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16127

Approved by:        ports-secteam (miwi)

FreeBSD Ports — branches/2018Q3/devel Makefile rubygem-grape-path-helpers

MFH: r473897

Created new ports required for gitlab 11.x.

Reviewed by:        swills (mentor)
Approved by:        swills (mentor)
Differential Revision:        https://reviews.freebsd.org/D16094

Approved by:        ports-secteam (miwi)
Delta File
+3 -0 branches/2018Q3/devel/Makefile
+0 -0 branches/2018Q3/devel/rubygem-grape-path-helpers/
+0 -0 branches/2018Q3/devel/rubygem-graphiql-rails/
+0 -0 branches/2018Q3/devel/rubygem-graphql/
+3 -0 4 files

FreeBSD Ports — head/textproc/yali Makefile pkg-descr

- Add license (BSD variant not specified)
- Add NO_ARCH
- Update WWW

Approved by:        portmgr blanket

LLVM — llvm/trunk/test/CodeGen/AArch64 rotate-extract.ll, llvm/trunk/test/CodeGen/X86 rotate-extract-vector.ll rotate-extract.ll

[DAGCombiner] Add rotate-extract tests

Add new tests from D47681 to current codegen. Also added i686 codegen tests.

pkgsrc — doc CHANGES-2018

Updated security/py-cryptography_vectors, security/py-cryptography
Delta File
+3 -1 doc/CHANGES-2018
+3 -1 1 file

pkgsrc — security/py-cryptography distinfo Makefile, security/py-cryptography_vectors PLIST distinfo

    py-cryptography[_vectors]: updated to 2.3
    
    2.3:
    
    SECURITY ISSUE: 
:meth:~cryptography.hazmat.primitives.ciphers.AEADDecryptionContext.finalize_with_tag 
allowed tag truncation by default which can allow tag forgery in some cases. The method 
now enforces the min_tag_length provided to the 
:class:~cryptography.hazmat.primitives.ciphers.modes.GCM constructor. CVE-2018-10903
    Added support for Python 3.7.
    Added :meth:~cryptography.fernet.Fernet.extract_timestamp to get the authenticated 
timestamp of a :doc:Fernet </fernet> token.
    Support for Python 2.7.x without hmac.compare_digest has been deprecated. We will 
require Python 2.7.7 or higher (or 2.7.6 on Ubuntu) in the next cryptography release.
    Fixed multiple issues preventing cryptography from compiling against LibreSSL 2.7.x.
    Added 
:class:~cryptography.x509.CertificateRevocationList.get_revoked_certificate_by_serial_number 
for quick serial number searches in CRLs.
    The :class:~cryptography.x509.RelativeDistinguishedName class now preserves the order 
of attributes. Duplicate attributes now raise an error instead of silently discarding 
duplicates.
    :func:~cryptography.hazmat.primitives.keywrap.aes_key_unwrap and 
:func:~cryptography.hazmat.primitives.keywrap.aes_key_unwrap_with_padding now raise 
:class:~cryptography.hazmat.primitives.keywrap.InvalidUnwrap if the wrapped key is an 
invalid length, instead of ValueError.

LLVM — llvm/trunk/include/llvm/Support ErrorOr.h Error.h

Use std::reference_wrapper instead of llvm::ReferenceStorage

Reviewed By: Bigcheese
Differential Revision: https://reviews.llvm.org/D49298

FreeBSD Ports — head/devel/kore Makefile, head/devel/kore/files patch-src_cli.c

devel/kore: Fix patch

Last commit broke the flavored kodev-notls due to running make
makepatch without thinking.

LLVM — llvm/trunk/lib/Target/X86 X86InstrSSE.td

Fix spelling mistake in comments. NFCI.

pkgsrc — doc CHANGES-2018

Updated textproc/py-sphinx, devel/py-pylint-plugin-utils
Delta File
+3 -1 doc/CHANGES-2018
+3 -1 1 file

pkgsrc — devel/py-pylint-plugin-utils distinfo Makefile

py-pylint-plugin-utils: updated to 0.4

0.4:
Bug fixes.

pkgsrc — textproc/py-sphinx distinfo Makefile

py-sphinx: 1.7.6

Release 1.7.6:

Bugs fixed
* LaTeX \sphinxupquote{} breaks in Russian
* sphinx.testing uses deprecated pytest API; Node.get_marker(name)
* crashed when recommonmark.AutoStrictify is enabled
* latex: crashed with docutils package provided by Debian/Ubuntu
* latex: a label for table is vanished if table does not have a caption
* crashed with numbered toctree
* C, render empty argument lists for macros.
* C++, fix lookup of full template specializations with no template arguments.
* C++, fix assertion on missing references in global scope when using
  intersphinx. Thanks to Alan M. Carroll.
* autodoc: crashed by Form Feed Character
* autodoc: loses the first staticmethod parameter for old styled classes
* quickstart: Typing Ctrl-U clears the whole of line
* html: "relations" sidebar is not shown by default
* latex: curly braces in index entries are not handled correctly
* epub: Wrong internal href fragment links
* apidoc: Interface of sphinx.apidoc:main() has changed
* PDF builds of French projects have issues with XeTeX
* napoleon raises RuntimeError with python 3.7
* sphinx-build: Interface of sphinx:main() has changed

    [15 lines not shown]

FreeBSD Ports — head/devel/p5-IPC-System-Simple Makefile

- Add LICENSE
- Add NO_ARCH

Approved by:        portmgr blanket

FreeBSD Ports — head/devel/kore distinfo Makefile, head/devel/kore/files patch-src_cli.c patch-src_domain.c

devel/kore: Update to 3.1.0

Changes:        https://www.kore.io/releases/3.1.0#changelog

pkgsrc — doc CHANGES-2018 TODO

Updated www/apache24, math/py-numexpr
Delta File
+3 -1 doc/CHANGES-2018
+1 -2 doc/TODO
+4 -3 2 files

pkgsrc — math/py-numexpr distinfo Makefile

py-numexpr: updated to 2.6.6

Changes from 2.6.5 to 2.6.6:
Fix to the thread barrier that occassionally suffered from spurious wakeups on MacOSX.

pkgsrc — www/apache24 distinfo Makefile, www/apache24/patches patch-aa

    apache24: updated to 2.4.34
    
    Apache 2.4.34
    *) SECURITY: CVE-2018-8011 (cve.mitre.org)
       mod_md: DoS via Coredumps on specially crafted requests
    *) SECURITY: CVE-2018-1333 (cve.mitre.org)
       mod_http2: DoS for HTTP/2 connections by specially crafted requests
    *) Introduce zh-cn and zh-tw (simplified and traditional Chinese) error
       document translations.
    *) event: avoid possible race conditions with modules on the child pool.
    *) mod_proxy: Fix a corner case where the ProxyPassReverseCookieDomain or
       ProxyPassReverseCookiePath directive could fail to update correctly
       'domain=' or 'path=' in the 'Set-Cookie' header.
    *) mod_ratelimit: fix behavior when proxing content.
    *) core: Re-allow '_' (underscore) in hostnames.
    *) mod_authz_core: If several parameters are used in a AuthzProviderAlias
       directive, if these parameters are not enclosed in quotation mark, only
       the first one is handled. The other ones are silently ignored.
       Add a message to warn about such a spurious configuration.
    *) mod_md: improvements and bugfixes
       - MDNotifyCmd now takes additional parameter that are passed on to the called 
command.
       - ACME challenges have better checks for interference with other modules
       - ACME challenges are only handled for domains managed by the module, allowing
         other ACME clients to operate for other domains in the server.

    [62 lines not shown]

FreeBSD — head/sys/amd64/amd64 xen-locore.S, head/sys/x86/xen pv.c hvm.c

xen: implement early init helper for PVHv2

In order to setup an initial environment and jump into the generic
hammer_time initialization function. Some of the code is shared with
PVHv1, while other code is PVHv2 specific.

This allows booting FreeBSD as a PVHv2 DomU and Dom0.

Sponsored by:        Citrix Systems R&D

HardenedBSD — sys/amd64/amd64 xen-locore.S, sys/x86/xen pv.c hvm.c

xen: implement early init helper for PVHv2

In order to setup an initial environment and jump into the generic
hammer_time initialization function. Some of the code is shared with
PVHv1, while other code is PVHv2 specific.

This allows booting FreeBSD as a PVHv2 DomU and Dom0.

Sponsored by:        Citrix Systems R&D

FreeNAS — src/freenas/usr/local/etc syslog-ng.conf.freenas

Enable /var/log/console.log for easier tracking and debugging of console issues

FreeBSD Ports — head/sysutils/puppet-lint distinfo Makefile

Update to 2.3.6

While here pet portlint

With hat:        puppet

FreeBSD Ports — head/databases/puppetdb-terminus5 distinfo Makefile, head/databases/puppetdb5 distinfo Makefile

Update to 5.2.4

Release notes:
https://puppet.com/docs/puppetdb/5.2/release_notes.html

With hat:        puppet

FreeBSD Ports — head/sysutils/puppetserver Makefile, head/sysutils/puppetserver/files puppetserver.in

Do not overwrite the log file on server startup.

With hat:        puppet

FreeBSD Ports — head/sysutils/puppetserver5 distinfo Makefile, head/sysutils/puppetserver5/files puppetserver.in

Update to 5.3.4

Release notes:
https://puppet.com/docs/puppetserver/5.3/release_notes.html#puppet-server-534

While here, do not overwrite the log file on server startup.

With hat:        puppet

FreeBSD Ports — head/sysutils/puppet5 distinfo Makefile

Update to 5.5.3

Release notes:
https://puppet.com/docs/puppet/5.5/release_notes.html#puppet-553

With hat:        puppet

FreeBSD Ports — head/sysutils/puppet4 distinfo Makefile

Update to 4.10.12

Release notes:
https://puppet.com/docs/puppet/4.10/release_notes.html#puppet-41012

With hat:        puppet

HardenedBSD — sys/x86/xen hvm.c, sys/xen hvm.h

xen: allow very early initialization of the hypercall page

Allow the hypercall page to be initialized very early, even before
vtophys is functional. Also make the function global so it can be
called by other files.

This will be needed in order to perform the early bringup on PVHv2
guests.

Sponsored by: Citrix Systems R&D
Delta File
+53 -41 sys/x86/xen/hvm.c
+8 -0 sys/xen/hvm.h
+61 -41 2 files

FreeBSD — head/sys/x86/xen hvm.c, head/sys/xen hvm.h

xen: allow very early initialization of the hypercall page

Allow the hypercall page to be initialized very early, even before
vtophys is functional. Also make the function global so it can be
called by other files.

This will be needed in order to perform the early bringup on PVHv2
guests.

Sponsored by: Citrix Systems R&D
Delta File
+53 -41 head/sys/x86/xen/hvm.c
+8 -0 head/sys/xen/hvm.h
+61 -41 2 files

FreeBSD Ports — head/sysutils/facter Makefile distinfo

Update to 3.11.3

While here pet portlint

With hat:        puppet

FreeBSD Ports — head/www/py-falcon Makefile distinfo

- Update to 1.4.1
- Add LICENSE and LICENSE_FILE
- Add do-test

PR:                229870
Approved by:        lichray <at> gmail <dot> com (maintainer)

FreeBSD — head/sys/dev/xen/pvcpu pvcpu.c

xen: attach the PV CPU if no CPU device is present

When booted as PVHv2, there's no ACPI CPU object, so attach the PV CPU
device in order to take it's place.

This is required in case some device or driver tries to poke at the
PCPU device field.

Sponsored by: Citrix Systems R&D
Delta File
+2 -2 head/sys/dev/xen/pvcpu/pvcpu.c
+2 -2 1 file

HardenedBSD — sys/dev/xen/pvcpu pvcpu.c

xen: attach the PV CPU if no CPU device is present

When booted as PVHv2, there's no ACPI CPU object, so attach the PV CPU
device in order to take it's place.

This is required in case some device or driver tries to poke at the
PCPU device field.

Sponsored by: Citrix Systems R&D
Delta File
+2 -2 sys/dev/xen/pvcpu/pvcpu.c
+2 -2 1 file

HardenedBSD — sys/dev/xen/console xen_console.c

xen: do not limit PV console usage to PV guests

The Xen PV console is also available to HVM and PVHv2 guests, so don't
limit the console usage to PV guests only.

Sponsored by: Citrix Systems R&D
Delta File
+3 -8 sys/dev/xen/console/xen_console.c
+3 -8 1 file

FreeBSD — head/sys/dev/xen/console xen_console.c

xen: do not limit PV console usage to PV guests

The Xen PV console is also available to HVM and PVHv2 guests, so don't
limit the console usage to PV guests only.

Sponsored by: Citrix Systems R&D

FreeBSD Ports — head/devel/leatherman Makefile distinfo

Update to 1.4.2

While here, pet portlint

With hat:        puppet

FreeBSD Ports — head/devel/cpp-hocon distinfo Makefile

Update to 0.1.7

With hat:        puppet

HardenedBSD — sys/dev/xen/balloon balloon.c, sys/dev/xen/console xen_console.c

xen: remove direct usage of HYPERVISOR_start_info

HYPERVISOR_start_info is only available to PV and PVHv1 guests, HVM
and PVHv2 guests get this data from HVM parameters that are fetched
using a hypercall.

Instead provide a set of helper functions that should be used to fetch
this data. The helper functions have different implementations
depending on whether FreeBSD is running as PVHv1 or HVM/PVHv2 guest
type.

This helps to cleanup generic Xen code by removing quite a lot of
xen_pv_domain and xen_hvm_domain macro usages.

Sponsored by:        Citrix Systems R&D

FreeBSD — head/sys/dev/xen/balloon balloon.c, head/sys/dev/xen/console xen_console.c

xen: remove direct usage of HYPERVISOR_start_info

HYPERVISOR_start_info is only available to PV and PVHv1 guests, HVM
and PVHv2 guests get this data from HVM parameters that are fetched
using a hypercall.

Instead provide a set of helper functions that should be used to fetch
this data. The helper functions have different implementations
depending on whether FreeBSD is running as PVHv1 or HVM/PVHv2 guest
type.

This helps to cleanup generic Xen code by removing quite a lot of
xen_pv_domain and xen_hvm_domain macro usages.

Sponsored by:        Citrix Systems R&D

HardenedBSD — sys/amd64/amd64 xen-locore.S, sys/xen/interface elfnote.h

xen: add PVHv2 entry point

The PVHv2 entry point is fairly similar to the multiboot1 one. The
kernel is started in protected mode with paging disabled. More
information about the exact BSP state can be found in the pvh.markdown
document on the Xen tree.

This entry point is going to be joined with the native entry point at
hammer_time, and in order to do so the BSP needs to be bootstrapped
into long mode with the same set of page tables as used on bare metal.

Sponsored by:        Citrix Systems R&D