| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-11-04 | Reenable test-tal since problem is now fixed. | Claudio Jeker | |
| 2019-11-04 | Adjust code to work with the new tal API functions (tal_read_file and | Claudio Jeker | |
| changed tal_parse). | |||
| 2019-11-04 | The argument to the ctype functions needs to be representable as an | Claudio Jeker | |
| unsigned char or EOF. Cast the char to unsigned char as required. Reminded by Hiltjo Posthuma | |||
| 2019-11-04 | Refactor tal code a bit. Move the file reader back into tal.c so that the | Claudio Jeker | |
| regress test is able to use it. OK deraadt@ | |||
| 2019-11-04 | in vlan_clone_destroy take NET_LOCK when calling vlan_down and mark it dead. | David Gwynne | |
| 2019-11-04 | make the parent promisc when a promisc vlan interface is brought up. | David Gwynne | |
| this has been reported by a bunch of people including chris@, jon williams on bugs@, and ze loff on misc@ | |||
| 2019-11-04 | Fix previous commit: missed a ds_copyin() moved in rev 1.72 | Philip Guenther | |
| 2019-11-04 | fix a possible crash when combining "from rdns", nested virtual aliases and | Gilles Chehade | |
| a particular sequence of rules causing "from rdns" to be hit again from the expanded aliases. this requires crafting a specific configuration. | |||
| 2019-11-03 | 6.6.0 -> 6.6.1 | Gilles Chehade | |
| 2019-11-03 | Merge sys_shmctl() and shmctl1() again, as we no longer have a need for | Philip Guenther | |
| the copyin/copyout compat shims. ok deraadt@ millert@ anton@ | |||
| 2019-11-03 | Also use stdio for TLS connections | Jeremie Courreges-Anglas | |
| Set up two wrappers around tls_read/write to be used along with the not-very-portable funopen(). This kills a bunch of local code, always a nice thing for an utility which ends up in bsd.rd. "seems legit" deraadt@, ok kn@ | |||
| 2019-11-03 | Our version numbers go | Florian Obser | |
| m.n-beta -> m.n not m.n-beta -> m.n + 0.1 Handle this correctly for the -r case to stick to a release after beta. OK sthen | |||
| 2019-11-03 | When we are talking to an upstream nameserver we should not refuse to | Florian Obser | |
| forward queries for certain reverse zones (e.g. RFC1918 space). The local network might use them and it's the policy of the upstream nameserver what should be done with these. Of course if we are recursively resolving ourselves these should not leak to the global internet so we continue to synthesize NXDOMAIN ourselves. For now we also always synthesize NXDOMAIN for special use domains like test and onion. Pointed out by henning. Input & OK sthen | |||
| 2019-11-03 | kern_timeout.c: style(9), misc. cleanup | cheloha | |
| - Move mutex to top of file, annotate locking for module - Group module-local prototypes below globals but above function defs - __inline -> inline - No static without inline - Drop extra parentheses around return values Compiler input from visa@. ok visa@ | |||
| 2019-11-03 | rework kubsan_state into simpler boolean named kubsan_cold | anton | |
| 2019-11-03 | add missing handler for float cast overflow; caused by code in | anton | |
| sys/dev/pci/drm/amd/display/dc/calcs/dcn_calc_auto.c | |||
| 2019-11-03 | Opportunistic DoT support and name forwarder "forwarder" instead of "static; | Otto Moerbeek | |
| joint work and ok florian@ | |||
| 2019-11-03 | *** empty log message *** | Otto Moerbeek | |
| 2019-11-03 | Don't talk about uvm_km_alloc(9), pool_get(9) is what we need. | Martin Pieuchot | |
| ok deraadt@, guenther@ | |||
| 2019-11-03 | Correctly re-initialize the nameinfo struct that is re-used for | Bob Beck | |
| vn_open when vnconfig'ing from a read-only filesystem. This bug has been with us for a long time and was spotted by Kawamata Yoshihiro <kaw@on.rim.or.jp> after recent changes making vn_open more picky about the structure it is called with. | |||
| 2019-11-03 | Add RSA-PSS test for genpkey in appstest.sh | Kinichiro Inoguchi | |
| 2019-11-02 | unused global | Florian Obser | |
| 2019-11-02 | softclock: move softintr registration/scheduling into timeout module | cheloha | |
| softclock() is scheduled from hardclock(9) because long ago callouts were processed from hardclock(9) directly. The introduction of timeout(9) circa 2000 moved all callout processing into a dedicated module, but the softclock scheduling stayed behind in hardclock(9). We can move all the softclock() "stuff" into the timeout module to make kern_clock.c a bit cleaner. Neither initclocks() nor hardclock(9) need to "know" about softclock(). The initial softclock() softintr registration can be done from timeout_proc_init() and softclock() can be scheduled from timeout_hardclock_update(). ok visa@ | |||
| 2019-11-02 | Revert previous, a race is present and can be triggered with golang. | Martin Pieuchot | |
| Found by jsing@ | |||
| 2019-11-02 | Sort standard_methods by pkey_id. | Kinichiro Inoguchi | |
| ok jsing@ | |||
| 2019-11-02 | sync | Theo de Raadt | |
| 2019-11-02 | CMS didn't make the 6.6 release: adjust the text in the HISTORY sections | Ingo Schwarze | |
| 2019-11-02 | Hook cms regress. | Joel Sing | |
| 2019-11-02 | Include cms.h. | Joel Sing | |
| 2019-11-02 | Initial regress for cms. | Joel Sing | |
| 2019-11-02 | .Xr CMS_ContentInfo_new 3 | Ingo Schwarze | |
| 2019-11-02 | .Xr BIO_new_CMS 3 | Ingo Schwarze | |
| 2019-11-02 | document PEM_read_CMS(3), PEM_read_bio_CMS(3), PEM_write_CMS(3), and | Ingo Schwarze | |
| PEM_write_bio_CMS(3) which jsing@ just enabled in Symbols.list rev. 1.91 | |||
| 2019-11-02 | In Symbols.list rev. 1.91, jsing enabled many CMS functions. | Ingo Schwarze | |
| Install the new manual pages documenting the majority of them. | |||
| 2019-11-02 | Bring back some icky buffer allocation code so that pkey_rsa_print() | Joel Sing | |
| works again with the horrific API that is ASN1_bn_print(). Issue spotted by inoguchi@ | |||
| 2019-11-02 | Add tls_conn_cipher_strength() to gotls regress. | Joel Sing | |
| 2019-11-02 | Disable test-tal since it currently fails to build. | Joel Sing | |
| 2019-11-02 | Use LibreSSL for rpki-client regress tests. | Joel Sing | |
| 2019-11-02 | Sync. | Joel Sing | |
| 2019-11-02 | Bump libcrypto, libssl and libtls minors due to symbol additions. | Joel Sing | |
| 2019-11-02 | Provide RSA_PKCS1_OpenSSL(). | Joel Sing | |
| Prompted by inoguchi@ | |||
| 2019-11-02 | Make RSA_padding_{add,check}_PKCS1_OAEP_mgf1() public. | Joel Sing | |
| 2019-11-02 | Make RSA_OAEP_PARAMs public. | Joel Sing | |
| 2019-11-02 | Document tls_conn_cipher_strength(). | Joel Sing | |
| ok schwarze@ | |||
| 2019-11-02 | Build rpki-client with LibreSSL. | Joel Sing | |
| 2019-11-02 | Enable CMS in LibreSSL. | Joel Sing | |
| ok bcook@ deraadt@ inoguchi@ job@ tb@ | |||
| 2019-11-02 | Provide tls_conn_cipher_strength(). | Joel Sing | |
| This returns the strength in bits of the symmetric cipher used for the connection. Diff from gilles@ ok tb@ | |||
| 2019-11-02 | Add a few more PCIe capability registers and bits. As usual, the names | Mark Kettenis | |
| are taken from Intel chipset documentation. Prompted by a diff from kurt@. ok kurt@ | |||
| 2019-11-02 | Start documenting which locking primitives apply to uvm_map members. | Martin Pieuchot | |
| ok kettenis@ | |||
| 2019-11-02 | When we are behind a captive portal we very likely need to use the asr | Florian Obser | |
| strategy to get past it. This is also true when we don't know yet if we are behind a captive portal. However, when the nameserver dhcp hands us are unreachable (e.g. because they are down) asr is dead, we are still using it and we are now stuck. Only force to asr if we know that it is working. If we are behind a captive portal and the dhcp nameserver are dead we probably won't get past it. But if we are in a network with unreachable dhcp nameservers we will make progress. Stumbled upon by remi while blocking port 53 in pf. OK remi | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |