spelling fixes; from paul tagliamonte
any changes not taken noted on tech, but chiefly here i did not take the
cancelation - cancellation changes;

Add support for timeconting in userland.

This diff exposes parts of clock_gettime(2) and gettimeofday(2) to
userland via libc eliberating processes from the need for a context
switch everytime they want to count the passage of time.

If a timecounter clock can be exposed to userland than it needs to set
its tc_user member to a non-zero value. Tested with one or multiple
counters per architecture.

The timing data is shared through a pointer found in the new ELF
auxiliary vector AUX_openbsd_timekeep containing timehands information
that is frequently updated by the kernel.

Timing differences between the last kernel update and the current time
are adjusted in userland by the tc_get_timecount() function inside the
MD usertc.c file.

This permits a much more responsive environment, quite visible in
browsers, office programs and gaming (apparently one is are able to fly
in Minecraft now).

Tested by robert@, sthen@, naddy@, kmos@, phessler@, and many others!

OK from at least kettenis@, cheloha@, naddy@, sthen@

Prefer _MUTEX_*LOCK over _THREAD_PRIVATE_MUTEX_*LOCK() when thread-specific
data isn't necessary.

ok mpi@, ok&tweak natano@

Wrap <resolv.h> so that internal calls go direct

ok millert@

force reseeding if pid has changed.

ok deraadt@

From ISO/IEC 9899:1999 and 9899:201x,
6.11.5 - Storage-class specifiers:
The placement of a storage-class specifier other than at the
beginning of the declaration specifiers in a declaration is
an obsolescent feature.

Diff from Jean-Philippe Ouellet (jean-philippe (at) ouellet.biz)

permute15() should be static. Not cranking libc now, because it is
not urgent.

use CLOCK_MONOTONIC, and repair future time_t overflow
ok millert guenther

protect the PRG state with a mutex in res_randomid().

ok deraadt@ guenther@ djm@

Improve the libc DNS resolver ID generation algorithm to be more
resistant to prediction atacks by wrapping the existing LCG in a
random permutation generator based on a Luby-Rackoff block cipher.

lots of discussion and final ok deraadt@

ansify. ok deraadt@ moritz@

niels kindly dropped clause 3/4 from the license. tnx!

we can skip arc4random() call here. markus

correct non-repetitive ID code, based on comments from niels provos.
- seed2 is necessary, but use it as "seed2 + x" not "seed2 ^ x".
- skipping number is not needed, so disable it for 16bit generator (makes
the repetition period to 30000)

%d -> %u. mostly in #ifdef DEBUG.

We live in an ANSI C world. Remove lots of gratuitous #ifdef __STDC__ cruft.

Part one of userland __P removal. Done with a simple regexp with some minor hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.

grammer/spelling

add an inner xor to make prediction attacks against the ids harder, due
to an attack pointed out by David Wagner.

#if __STDC__ --> #ifdef __STDC__

Be more careful about possible type promotion

skipped too many ids

pmod to u_int16_t, Angelos kindly reminded me

change time() to gettimeofday()

make things more complicated.

the before mentioned random number generator.

Add support for timeconting in userland.

This diff exposes parts of clock_gettime(2) and gettimeofday(2) to
userland via libc eliberating processes from the need for a context
switch everytime they want to count the passage of time.

If a timecounter clock can be exposed to userland than it needs to set
its tc_user member to a non-zero value. Tested with one or multiple
counters per architecture.

The timing data is shared through a pointer found in the new ELF
auxiliary vector AUX_openbsd_timekeep containing timehands information
that is frequently updated by the kernel.

Timing differences between the last kernel update and the current time
are adjusted in userland by the tc_get_timecount() function inside the
MD usertc.c file.

This permits a much more responsive environment, quite visible in
browsers, office programs and gaming (apparently one is are able to fly
in Minecraft now).

Tested by robert@, sthen@, naddy@, kmos@, phessler@, and many others!

OK from at least kettenis@, cheloha@, naddy@, sthen@

Prefer _MUTEX_*LOCK over _THREAD_PRIVATE_MUTEX_*LOCK() when thread-specific
data isn't necessary.

ok mpi@, ok&tweak natano@

Wrap <resolv.h> so that internal calls go direct

ok millert@

force reseeding if pid has changed.

ok deraadt@

From ISO/IEC 9899:1999 and 9899:201x,
6.11.5 - Storage-class specifiers:
The placement of a storage-class specifier other than at the
beginning of the declaration specifiers in a declaration is
an obsolescent feature.

Diff from Jean-Philippe Ouellet (jean-philippe (at) ouellet.biz)

permute15() should be static. Not cranking libc now, because it is
not urgent.

use CLOCK_MONOTONIC, and repair future time_t overflow
ok millert guenther

protect the PRG state with a mutex in res_randomid().

ok deraadt@ guenther@ djm@

Improve the libc DNS resolver ID generation algorithm to be more
resistant to prediction atacks by wrapping the existing LCG in a
random permutation generator based on a Luby-Rackoff block cipher.

lots of discussion and final ok deraadt@

ansify. ok deraadt@ moritz@

niels kindly dropped clause 3/4 from the license. tnx!

we can skip arc4random() call here. markus

correct non-repetitive ID code, based on comments from niels provos.
- seed2 is necessary, but use it as "seed2 + x" not "seed2 ^ x".
- skipping number is not needed, so disable it for 16bit generator (makes
the repetition period to 30000)

%d -> %u. mostly in #ifdef DEBUG.

We live in an ANSI C world. Remove lots of gratuitous #ifdef __STDC__ cruft.

Part one of userland __P removal. Done with a simple regexp with some minor hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.

grammer/spelling

add an inner xor to make prediction attacks against the ids harder, due
to an attack pointed out by David Wagner.

#if __STDC__ --> #ifdef __STDC__

Be more careful about possible type promotion

skipped too many ids

pmod to u_int16_t, Angelos kindly reminded me

change time() to gettimeofday()

make things more complicated.

the before mentioned random number generator.

Prefer _MUTEX_*LOCK over _THREAD_PRIVATE_MUTEX_*LOCK() when thread-specific
data isn't necessary.

ok mpi@, ok&tweak natano@

Wrap <resolv.h> so that internal calls go direct

ok millert@

force reseeding if pid has changed.

ok deraadt@

From ISO/IEC 9899:1999 and 9899:201x,
6.11.5 - Storage-class specifiers:
The placement of a storage-class specifier other than at the
beginning of the declaration specifiers in a declaration is
an obsolescent feature.

Diff from Jean-Philippe Ouellet (jean-philippe (at) ouellet.biz)

permute15() should be static. Not cranking libc now, because it is
not urgent.

use CLOCK_MONOTONIC, and repair future time_t overflow
ok millert guenther

protect the PRG state with a mutex in res_randomid().

ok deraadt@ guenther@ djm@

Improve the libc DNS resolver ID generation algorithm to be more
resistant to prediction atacks by wrapping the existing LCG in a
random permutation generator based on a Luby-Rackoff block cipher.

lots of discussion and final ok deraadt@

ansify. ok deraadt@ moritz@

niels kindly dropped clause 3/4 from the license. tnx!

we can skip arc4random() call here. markus

correct non-repetitive ID code, based on comments from niels provos.
- seed2 is necessary, but use it as "seed2 + x" not "seed2 ^ x".
- skipping number is not needed, so disable it for 16bit generator (makes
the repetition period to 30000)

%d -> %u. mostly in #ifdef DEBUG.

We live in an ANSI C world. Remove lots of gratuitous #ifdef __STDC__ cruft.

Part one of userland __P removal. Done with a simple regexp with some minor hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.

grammer/spelling

add an inner xor to make prediction attacks against the ids harder, due
to an attack pointed out by David Wagner.

#if __STDC__ --> #ifdef __STDC__

Be more careful about possible type promotion

skipped too many ids

pmod to u_int16_t, Angelos kindly reminded me

change time() to gettimeofday()

make things more complicated.

the before mentioned random number generator.