| Age | Commit message (Collapse) | Author |
|---|
|
This adds an HMAC protected synchronization protocol for use by spamd and
spamlogd.
- spamd can receive updates from other hosts for GREY, WHITE, and TRAPPED db
entries, and will update the local /var/db/spamd accordingly.
- spamd can send updates when it makes changes to the GREY or TRAPPED
entries in the db to other hosts running spamd. (Note it does not send
WHITE entries because the other spamd will see the GREY changes and have
complete information to make appropritate decisions)
- spamlogd can send updates for WHITE db entries that it performs on the local
db to other hosts running spamd, which will then apply them on remote hosts.
note that while this diff provides synchronization for changes made to the
spamd db by the daemons, it does *not* provide for sychonizing changes
to the spamd db made manually with the spamdb command.
Synchronization protocol and most of the work by reyk@,
with a bunch of the spamd, and spamlogd stuff by me.
testing mostly at the U of A, running happily there under big load.
ok reyk@ jmc@
|
|
sparc*.
OK deraadt
|
|
from Igor Sobrado, tweaked by myself
|
|
|
|
|
|
|
|
|
|
|
|
- kill a raft of unneeded .Bk/.Ek
mostly from Igor Sobrado
|
|
with suggestsion from kettenis. ok miod@
|
|
|
|
|
|
|
|
with CACert certificates) so don't require the reported length to be
exactly equal to the length of the data, but accept it if it's <=
the length of the data (i.e. we just use the first alt name). The
purpose of the check is to make sure we don't try to read beyond the
data we actually have.
ok cloder@ hshoexer@
|
|
|
|
|
|
series ThinkPads with acpidock(4) enabled.
|
|
RPSL spec and enforced by the IRR databases.
teach asset_get this fact. only send queries for the as-set members for
as-sets.
since we now always fake an as-set for aut-nums, we don't need to
escape the recursive as-set resolution process when we run into aut-num
members.
complain about and then ignore unresolvable as-set members.
|
|
for object found with n matched attributes. this way we can distinguish
between no object found and object without relevant attributes
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
generates bgpd filter rules from the Internet Routing Registry aka IRR aka
the aut-num, as-set and route objects in the RIPE, ARIN, APNIC ... databases
accessed via whois, using the Routing Policy Specificaion Language RPSL.
implement the whois query interface, an RPSL parser (of course only the
parts we need), recursive as-set resolver, prefixes per AS lookup,
and an ouput module to make up the rules.
work in progress, not ready for general consumption yet.
import agreed by theo & claudio
|
|
to the attach function and set a flag in the mounthook to start
accepting interrupts (there are possible problems with establishing
interrupts after the ioapics are enabled in i386 GENERIC.MP).
also suggested by kettenis
tested by mcbride, me, and some others
ok dlg@
|
|
by message_add_payload(), since we are no longer responsible for it.
ok cloder@ hshoexer@ moritz@
|
|
from brad@
|
|
|
|
From brad@, tested by brad on i386/amd64/sparc64 and by maja@ and ian@
on i386.
|
|
|
|
|
|
(ifm_data isn't updated) and lead to a panic in mii_phy_setmedia(),
or reading past the end mii_media_table[].
- make sure the dma_map matches the mbuf in the rx structures. We would
sync/unload the wrong map, leading to a DIAGNOSTIC panic, or eventually
leaking memory when bounce buffers are needed.
From NetBSD
ok marco@, brad@
|
|
the code here is slightly different, but also has the overfow in both cases
|
|
input buffer, we call the new callback to handle the remaining data.
this change makes sure that we only do this after the read callback
was actually changed (read header -> read content, read content ->
read header, read chunks...) to avoid a possible loop which could
happen in some rare cases.
|
|
|
|
way...
|
|
outside of the `spaces' array when trying to print the caret marker
found by "Matthew R. Dempsky" <mrd@alkemio.org>, fix inspired by
a.velichinsky@gmail.com. discussed with krw
|
|
|
|
|
|
|
|
|
|
always saved upon context switches, as FPU registers are heavily used for
long long computations (don't ask). Gcc default to -m4.
Credits to drahn@ otto@ and deraadt@ for feedback and help testing.
Upgrade procedure if you don't want to use the damn snapshots:
- build and install new kernel, reboot off it
- build new gcc, do not install it yet
- make includes
- install new gcc
- build and install lib/csu and lib/libc
- make build
|
|
OK niallo@ and xsa@.
|
|
OK moritz@.
|
|
OK millert@.
|
|
routines.
OK millert@.
|
|
the 'D' editor command and has not been written to disk when the user
issues the 'q' editor command, ask if the label should be written to
disk before exiting.
|
