summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2007-08-23more berry device typeTheo de Raadt
2007-08-23syncTheo de Raadt
2007-08-23blackberry pearlTheo de Raadt
2007-08-22Add bus_space_vaddr to i386 arch.Marco Peereboom
Comments and ok kettenis, art & miod
2007-08-22Allow ntpd to log sensor offsets and adjtime calls to syslog at LOG_DEBUGChris Kuethe
priority. ok gwk, mbalmer, weingart "explicit non-ok from" henning
2007-08-22add a ieee80211_get_txkey() function to determine the key to use forDamien Bergamini
transmitting a frame to a given node. change ieee80211_encrypt() so that it now takes the key as parameter. this change is required because drivers doing hardware crypto need to know what key is being used.
2007-08-22- add k_rxmic and k_txmic fields to struct ieee80211_key to store theDamien Bergamini
Tx/Rx MIC for TKIP. - add two functions to map a PTK and a GTK to an IEEE 802.11 key and use them in ieee80211_input.c instead of duplicating the same code. properly set Tx/Rx MIC in the IEEE 802.11 key in the case of TKIP. - add ic_psk to struct ieee80211com to store the pre-shared key. - fix setting of the SECURE bit in outgoing EAPOL-Key frames. - when receiving msg 2 of the 4-way handshake, deauthenticate the station if the RSN IE does not match that of the (Re)Association request. - before parsing an RSN or WPA IE, check that there's enough room for the version field (2 bytes) which is mandatory. - various tweaks while i'm here.
2007-08-22when running out of rx buffers, allocate a new mbuf and copy the rxDamien Bergamini
buffer into it using m_copym2() instead of just dropping the received frame. otherwise, it may happen that all rx buffers are queued by tcp_input() waiting for a frame that will never arrive because we are dropping it. when it happens, rx stop working and it is hard to recover from this. the problem is not visible when using WEP because WEP decryption is currently done by software and that rx buffers are copied into mbufs by the software decryption code. while i'm here, increase the number of rx buffers allocated by wpi(4) from 80 to 96 to limit the number of copies. problem and solution found by bluhm@ - thanks.
2007-08-22Subsequent address ranges start at index 1, not index 0.Mark Kettenis
2007-08-22Remove ``#define SDMMC_DEBUG''. Avoids redefinition error when compilingMarcus Glocker
a kernel and setting SDMMC_DEBUG option. ok deraadt@
2007-08-22Update to tzcode2007f grom elsie.nci.nih.gov; no actual code changesTodd C. Miller
2007-08-22err msg looks better with a \nMarc Espie
2007-08-22plural of ID is IDs, not ID's, ok mk jmcHenning Brauer
2007-08-22update to tzdata2007g from elsie.nci.nih.govTodd C. Miller
2007-08-22fix compilation with KDGBJasper Lievisse Adriaanse
from Nicholas Marriott ok deraadt@
2007-08-22kill trailing whitespace;Jason McIntyre
2007-08-22sort usage();Jason McIntyre
2007-08-21No need to keep RLOGIN_PORT and RSH_PORT defines hanging around since theirKenneth R Westerback
uses were eliminated five years ago. Spotted by Diego Casati. ok deraadt@ hshoexer@
2007-08-21Remove two out-of-date comments.Mark Kettenis
2007-08-21add AUTHORS sectionJasper Lievisse Adriaanse
no objections from kettenis@
2007-08-21Fix up the -s description, with help from tom@Todd C. Miller
2007-08-21http://openssl.org/news/patch-CVE-2007-3108.txt; ok pval, deraadtMarkus Friedl
2007-08-21Add a -s option to make the radix sort be a stable sort. Based onTodd C. Miller
a diff from Eric Gouyer. Closes PR 5553. OK deraadt@
2007-08-21Do not repeat device name in failure message printed during attachment.Mark Kettenis
2007-08-21unlock tree, move towards 4.2-currentMark Kettenis
requested by deraadt@
2007-08-21no need to include both sys/types.h and params.hHans-Joerg Hoexer
2007-08-21Treat Ldatafault_internal as having a trap frame.Mark Kettenis
2007-08-21don't access th_flags when it isn't available (only 8 bytes of theDaniel Hartmeier
header are required in the ICMP error). ok deraadt@, henning@
2007-08-20Align the packet after the ppp header.Can Erkin Acar
The earlier change was broken in sparc due to alignment problems. reported and tested by nady@, ok deraadt@ claudio@
2007-08-20update to match current ftp.html for 4.2 release, ok deraadt@Alexander von Gernler
2007-08-20put rlphy onto the standard ramdisk; spotted by jsgTheo de Raadt
2007-08-16I don't really know what I was thinking when I wrote this. Not only does theArtur Grabowski
"array" index start at 1, the code also abused index 0 to detect that we were doing a KERN_POOL_NPOOLS. Just look at *name == KERN_POOL_NPOOLS instead of using index == 0 for that. deraadt@ ok
2007-08-16back out part of last diff; breaks all hardware wep decryption.Theo de Raadt
from damien
2007-08-16- Don't fill spamd debug with bogus config errors if there are noRay Lai
traps. - Change count to size_t to avoid a size_t -> int conversion. - Since configure_spamd always returns 0, change to void. - Since configure_spamd now returns void, remove unreachable logging statement. OK ckuethe and deraadt, initial diff from fgsch@ and OKed by beck.
2007-08-15Remove a superflous debug fprintf.Hans-Joerg Hoexer
2007-08-15Kernel stacks can live beyond EINTSTACK now.Mark Kettenis
ok deraadt@
2007-08-15go slightly back to the older behaviour by writing out a default disk labelTheo de Raadt
only if 'i' is not found; by krw who is not around, looked at by drahn and otto and miod
2007-08-15Some servers / proxies out there like to open the data connectionCamiel Dobbelaar
immediately after the client sends the PORT command. The "normal" behaviour is to wait for the client to actually request a transfer. Make ftp-proxy add the active mode rules immediately too, so that both scenario's work. ok david pyr Tested by Frank Denis, Stephan A. Rickauer, Ingo Schwarze, Stuart Henderson. Thanks.
2007-08-15Update to sudo 1.6.9p4. Basically IPv6 support and improved man pages.Todd C. Miller
2007-08-15Simplify locking description: most things have nice default values theseMarc Espie
days, the casual user doesn't need more than defining LOCKDIR to get locks working on the ports tree.
2007-08-15tun device forwarding now honours ExitOnForwardFailure; ok markus@Kevin Steves
2007-08-15oops, forgot the print the intr string on attachDavid Gwynne
2007-08-15hook the interrupt upDavid Gwynne
2007-08-15Add sti@uturn; the C180 has it there. Tested by nick@.Mark Kettenis
2007-08-15openssh 4.7Markus Friedl
2007-08-15do NOT fall back to the trused x11 cookie if generation of an untrustedMarkus Friedl
cookie fails; from security-alert at sun.com; ok dtucker
2007-08-15implement nxe_start. this is enough to put packets on the wire. the sglDavid Gwynne
layout of this chip is extremely weird. there's only 4 sg entries in each tx descriptor, but theyre out of order. you can use multiple tx descriptors to tx more than 4 segments, but instead of letting you use all 64bytes that a tx descriptor uses you just use the same 4 sg entries, and up to 8 descs.
2007-08-15program the mac control thing according the the multicast or promiscDavid Gwynne
settings that we ask for. set these flags when the interface is brought up.
2007-08-15program the lladdr when the chip is brought up.David Gwynne
2007-08-15sync all the bits for use by the hardware, and then point the chip at them.David Gwynne
the firmware is now ready to send and recv packets.