Re: rpki-client cleanup

2020-10-23 Thread Theo Buehler
On Fri, Oct 23, 2020 at 03:49:23PM +0200, Claudio Jeker wrote: > This diff reduces the number of rsync_uri_parse() calls to one. > > The cert parser just checks for rsync:// and a file extension of .mft. > This is done similar to the way the notification URL is checked and is > streight forward. >

Re: Correctly set SSL error if x509_verify fails

2020-10-23 Thread Jeremy Evans
On 10/23 09:13, Theo Buehler wrote: > On Thu, Oct 22, 2020 at 08:44:29PM -0700, Jeremy Evans wrote: > > I was trying to diagnose a certificate validation failure in Ruby's > > openssl extension tests with LibreSSL 3.2.2, and it was made more > > difficult because the verification error type was dro

rpki-client cleanup

2020-10-23 Thread Claudio Jeker
This diff reduces the number of rsync_uri_parse() calls to one. The cert parser just checks for rsync:// and a file extension of .mft. This is done similar to the way the notification URL is checked and is streight forward. Additonally all the extra check for RTYPE_MFT / RTYPE_CERT in the main pr

amap: introduce amap_adjref_anons()

2020-10-23 Thread Martin Pieuchot
More refactoring. This time let's introduce a helper to manipulate references. The goal is to reduce the upcoming diff adding locking. This is extracted from a bigger diff from guenther@ as well as some bits from NetBSD. ok? Index: uvm/uvm_amap.c ===

Re: add support for AMD 17h/3xh HD Audio

2020-10-23 Thread Robert Nagy
On 23/10/20 10:24 +1100, Jonathan Gray wrote: > On Thu, Oct 22, 2020 at 04:34:11PM +0200, Robert Nagy wrote: > > The diff below makes azalia(4) work on my new shiny chromium build box: > > You have a 17-31-00 epyc or threadripper? > > This id also shows up on > B550, Ryzen 9 3900X 17-71-00 > X570

Re: Correctly set SSL error if x509_verify fails

2020-10-23 Thread Theo Buehler
On Thu, Oct 22, 2020 at 08:44:29PM -0700, Jeremy Evans wrote: > I was trying to diagnose a certificate validation failure in Ruby's > openssl extension tests with LibreSSL 3.2.2, and it was made more > difficult because the verification error type was dropped, resulting > in a SSL_R_CERTIFICATE_VER