ok nicm

This variable is only used in the parent context so there is no issue.
ok kettenis

to control which symbols are exported from the shared library.
ok guenther@, deraadt@, jca@

to separate the open(/dev/ptm) from the ioctl(PTMGET) for privilege
separation or pledge().
Based on a diff from reyk@.
ok deraadt millert

In our privsep model, imsg is often used to transport sensitive
information between processes.  But a process might free an imsg, and
reuse the memory for a different thing.  iked uses some
explicit_bzero() to clean imsg-buffer but doing it in the library with
the freezero() is less error-prone and also benefits other daemons.
OK deraadt@ jsing@ claudio@

more portable. Add stdint.h to the headers in imsg_init(3).
No objections from millert@.

the standard realloc*() functions can leave behind.  imsg buffers are
sometimes used in protocol stacks which require some secrecy, and layering
violations would be needed to resolve this issue otherwise.
Discussed with many.

on additions.  This allows scan_scaled to work up to +/-LLONG_MAX (LLONG_MIN
will still be flagged as a range error).  ok millert@

ok djm@ millert@

ok deraadt@ djm@

using AFL against ssh_config. ok deraadt@ millert@

error cases for -1 and 0 explicitly (it initially only checked for -1,
I updated it to also check for 0, and rzalamena@ figured out that 0
has to be checked in a differently).
OK millert@ rzalamena@

ok krw@ millert@

ok jca@ krw@

ok deraadt@

remove some references to differences between versions 6 and 7.
ok jmc, millert, tedu

correctly - logically complete that now by removing MLINKS from base;
authors need only to ensure there is an entry in NAME for any function/
util being added. MLINKS will still work, and remain for perl to ease
upgrades;
ok nicm (curses) bcook (ssl)
ok schwarze, who provided a lot of feedback and assistance
ok tb natano jung

ok and slight improvement, mmcco@
ok semarie@ and encouragement tedu@ krw@

if the data is needed.  Use O_CLOEXEC on the internal fd as MT paranoia.
Fix cast in offset calculation; delete register keyword;
prefer memset() over bzero()
ok millert@

From Craig Rodrigues.
ok tedu@

caller and let him do another poll loop. This fixes spinning relayd
processes seen on busy TLS relays. OK benno@ henning@

OK deraadt@ beck@

or otherwise change Dt to reflect the name of an existing function;
feedback/ok schwarze

ok millert

development of a cargo cult in case people look at existing files
for examples.  This achieves a consistent .Fo and .Fn quoting style
across the whole tree.

through all existing pseudo-tty devices in /dev.

platforms) by explicitly making imsg->data = NULL when there is no
data. ok deraadt

ok jsing@

ok gilles claudio doug

henning@ "sure"

Fix one occurence in imsg_flush() and clarify it the man page.
Discussed with at least blambert@ jsg@ yasuoka@.
OK gilles@

is non-portable.  Also add missing asprintf() return value checks.
OK deraadt@ guenther@ doug@