where appropriate.  Among other things makes the symbols consistent
across all architectures (notably where ldbl mantissa is 53 bits).
While at it, kill unused LINTLIBRARY/PROTOLIB1 cruft which was there
to trick lint into recording the right prototypes for aliased
functions.  Most of the work done at the awesome n2k13 hackathon.
Agreed by kettenis@, guenther@, matthew@.

reported by ajacoutot and (much earlier, sorry) by Alexey Suslikov

corner cases.  OK millert@.

expanded, but not enough due to precedence error. Spotted by Thorsten Glaser.

ok guenther millert kettenis

text.  OK deraadt@

grantpt() and unlockpt() using /dev/ptm.  Man pages from FreeBSD.
OK kettenis@ deraadt@ beck@ ajacoutot@ naddy@

not going to fix in order to stay compatible with legacy password data.
Nobody should use DES crypt anyway these days.
See http://www.freebsd.org/security/advisories/FreeBSD-SA-12:02.crypt.asc
for details about this bug.
Discussed with deraadt and beck about half a year ago (I'm pruning Ms
from my tree).

or the special value of 0.
ok deraadt@ otto@

Should make coredumps from abort() easier to debug too.
ok kurt@

unmapping of freed allocations without disabling chunk randomisation
like the "Freeguard" ('F') option does. Make security 'S' option
use 'U' and not 'F'.
Rationale: guarding with no chunk randomisation is great for debugging
use-after-free, but chunk randomisation offers better defence against
"heap feng shui" style attacks that depend on carefully constructing a
particular heap layout so we should leave this enabled when requesting
security options.

references into a STANDARDS section;

an empty name, NULL pointer, or a name containing an '=' character.
OK millert@, guenther@

in working condition anymore (assuming there would be interest in running on
it).

equal, but it is more correct)
from Michal Mazurek

Okay otto@.
Found by Michal Mazurek <akfaew at jasminek dot net>, thanks!

variants) for URLs, allowing mandoc -Thtml to properly generate links;
(sendmail.8 changes are simply using Lk, which i somehow missed in previous)
ingo reminded me to verify that gnu groff recognises %U: 1.20.1 does not,
but 1.21 does;

ok guenther@

ok deraadt@ tedu@, wording tweaks jmc@

character after the '\0'; ok guenther@

param.h symbol reduction.
ok guenther

Pointed out by Joachim Schipper (joachim at joachimschipper.nl)

Based on a note from Steffen Daode Nurpmeso (sdaoden at googlemail.com)
ok jmc@

scanning for free space if the hint isn't available.
also, on further inspection, this will prevent pmap_prefer from "improving"
our hint.

``-upper_bound % upper_bound''.  Simplifies the code and makes it the
same on both ILP32 and LP64 architectures, and also slightly faster on
LP64 architectures by using a 32-bit remainder instead of a 64-bit
remainder.
Pointed out by Jorden Verwer on tech@
ok deraadt; no objections from djm or otto

clear out the entire requested area, not just a perfect fit.  second,
use mquery to check for room to avoid getting an address we don't like
and having to send it back.

in order to span the the entire cache.  second, on free use the same offset
to put things in the cache instead of always starting at zero.
ok otto

overallocating and then releasing unneeded memory pages.
ok otto

Update SYNOPSIS for setkey() to show it's in <stdlib.h>
ok jmc@, millert@

and valloc() are not in the current version, while posix_memalign() mkstemp(),
and mkdtemp() are, and setstate()'s argument has lost a bogus 'const'.
ok millert@ jmc@ espie@ kettenis@; ports build testing by naddy@

ok deraadt

effective result.  its use is NOT discouraged -- it is not
common, but when you need it, there is nothing else that will do.

explaining of "what a C string is", and make it more clear that these
functiosn BEHAVE EXACTLY LIKE snprintf with "%s"!  (anyone who wants
to write a 'strlcpy considered harmful' paper should probably write a
'strlcpy and snprintf considered harmful' paper instead).
note to those from other projects reading this commit message: It would
be very good if this new manual was picked up in your project.
ok jmc millert krw

ok jmc@

ok millert@

with 0.  Use 1 and not 0 as the first element of the state array,
similar to what glibc does.  OK nicm@

into an bogus pointer error instead of a segfault.
- Document that we use the assumption that a non-MAP_FIXED mmap() with
hint 0 never returns NULL.

the last node is deleted.  Instead, resolve the Coverity warning
by returning (node *)1 when you delete the root node.
based an idea from millert@.  ok otto@

Includes friendly linker warning to wake up those dumb enough to use it.
Committing for kettenis@, who ran away to the hills after writing it