summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2016-09-03Simplify shutdown process.Renato Westphal
On shutdown, there's no need to use kill(2) to kill the child processes. Just closing the IPC sockets will make the children receive an EOF, break out from the event loop and then exit. Tha advantages of this "pipe teardown" are: * simpler code; * no need to pledge "proc" in the parent process; * removal of a (hard to trigger) PID reuse race condition. ok benno@ claudio@
2016-09-03Make error handling in config_getvm() more robustStefan Kempf
Open all fds first before sending messages to the vmm process. This prevents some intermediate state from being generated that will confuse vmm if it gets further messages. Also make sure that vmctl gets the right error reason later by saving errno upon a failure. ok reyk@ mlarkin@
2016-09-03Remove routes added by the kernel before userland ones.Martin Pieuchot
This is a correctness change that will allow us to check that nothing happend with kernel added routes.
2016-09-03Tests about TLS relocations that should only apply when building aPhilip Guenther
shared library need to test for 'shared && !executable' so that PIE files can optimize to initial-exec and local-exec models ok kettenis@
2016-09-03Use DPRINTF instead of #ifdef DEBUG + log_debug().Reyk Floeter
Pointed out by benno@
2016-09-03Use per-ifp tasks to process incoming packets.Martin Pieuchot
Reduce the number of if_get/if_put from one per packet to one per ring since we now know that all the packets are coming from the same interface. Improve forwarding performances by 10Kpps in Hrvoje Popovski's test setup. ok bluhm@, henning@, dlg@
2016-09-03Revert rev 1.15: RELRO is working so we no longer need special handlingPhilip Guenther
for __{got,plt}_{start,end} symbols ok kettenis@
2016-09-03Add the missing bits to have NAT on enc(4) support in iked.Vincent Gross
Ok mikeb@
2016-09-03Remove mention of nonexistent flagsMichal Mazurek
OK florian@
2016-09-03add wxneeded to the proc flags print listTed Unangst
2016-09-03RELRO Just Works on m88k so remove the #if: RELRO everywhere!Philip Guenther
ok and testing aoyama@
2016-09-03Mark the PLT as RWX so that ld.so's generic RWX->RW->RX logic can bePhilip Guenther
used and the m88k-specific logic can be retired ok and testing aoyama@
2016-09-02fix format stringCharles Longeau
ok guenther@
2016-09-02style polishingTed Unangst
2016-09-02replace exit() with err() and errx() so user knows what happenedTed Unangst
2016-09-02In preparation for merging of ping(8) and ping6(8) the -n flag needs toFlorian Obser
become the default. That means no DNS reverse look ups per default. In practice this doesn't change anything since ping(8) only did reverse DNS look ups per for weird corner cases: 1) Something that's not an echo reply and -v was specified 2) LSRR or RR IP options With this pr_addr() can become the default address printing mechanism and can be made AF independent. With that we get ping(8)'s -H option for free. OK sthen@, benno@ OK deraadt@ for the -H a long time ago when this were two diffs. man page tweak jmc@ a long time ago deraadt@ softened up and has no objections to -n per default beck@ is in favor of no look ups per default.
2016-09-02use err() instead of errx when an errno is setTed Unangst
2016-09-02for an upgrade disk selection, present a default alternative of 'auto',Alexander Hall
which will scan the available disks, selecting the first disk with an 'a' partition of type 4.2BSD ok deraadt@ krw@ phessler@
2016-09-02Fix 'c'hange command handling if last line of a file is removed.Tobias Stoeckmann
If the last line of a file is removed, the line cache is erroneously considered empty, which means that changed lines are added at the top. spotted by and okay otto@
2016-09-02the old check for when verify needed to create files (affecting pledge)Ted Unangst
was slightly wrong, but it didn't matter. new gzip mode however falls into the gap. the zsig code will default to stdout, therefore it needs much fewer privileges if msgfile is not specified.
2016-09-02Print SKIPPED if a regress test cannot be executed for some reason.Alexander Bluhm
This allows to identify such tests by looking at their output.
2016-09-02combine the pledge switch with the execution switch. no changes yet,Ted Unangst
but we can do a little better in some cases.
2016-09-02-e and -z cannot be combinedTed Unangst
2016-09-02space out the exampleTed Unangst
2016-09-02document new ioctls for verified authTed Unangst
2016-09-02Remember the number of lines scrolled into the history (versus clearedNicholas Marriott
into the history) and when resizing only use scrolled lines and not cleared lines (which are probably not intended to reappear). From Chaoren Lin.
2016-09-02clarify that -L will exit without running a command.Ted Unangst
2016-09-02shorten s_server;Jason McIntyre
2016-09-02finish the sentence;Jason McIntyre
2016-09-02remove one more reference to the recently removed hash(9);Jason McIntyre
2016-09-02add support for the verified auth ioctls using 'persist' rules.Ted Unangst
ok deraadt henning
2016-09-02add a concept of 'verified auth' to sessions. When set via ioctl,Ted Unangst
the user and parent process are recorded. Later, this info may be tested and used to bypass authorization requirements. ie, doas won't ask for your password again. Great idea from henning. ok deraadt guenther henning
2016-09-02_PASSWORD_LEN is length that comes out of crypt(), not a meaningfulTed Unangst
length for user entered passwords. And the +1 is just superstitious nonsense inherited from getpass() guts. Switch to a pleasing fixed size of 1024. ok millert
2016-09-02forgot to actually remove file, thanks jmcTed Unangst
2016-09-02work on making log.c similar in all daemons:Sebastian Benoit
move daemon-local functions into new logmsg.c, and reduce the (mostly whitespace) differences so that log.c's can be diffed easily. ok claudio@
2016-09-02more jmc tweaksMarc Espie
2016-09-02LIB=crypto, kind of neccessaryTheo de Raadt
2016-09-02rm xr to hash.9Ted Unangst
2016-09-02kettenis discovered a man page for a long deleted file. hash.h is gone.Ted Unangst
2016-09-02Fix build of regress after source movesBob Beck
2016-09-02syncKazuya Goda
2016-09-02document the new stuff, usage nits.Marc Espie
some input by jmc@, to be polished later "get it in now" tedu@ deraadt@
2016-09-02Fix small memleak on error path.Renato Westphal
2016-09-02Make tcpdump print details about association requests in verbose mode.Stefan Sperling
Refactor such that we can share some of the code for beacon printing. ok sthen@
2016-09-02Enable SGI for iwn(4).Stefan Sperling
The maximum 11n data rate should go up from 65Mbit/s to 72Mbit/s. ok sthen@
2016-09-02lde() and ldpe() should return void.Renato Westphal
Remove these leftovers from the pre-fork+exec era. Spotted by and ok rzalamena@ ok claudio@
2016-09-02Enable SGI for iwm(4).Stefan Sperling
The maximum 11n data rate should go up from 65Mbit/s to 72Mbit/s. ok sthen@
2016-09-02Process incoming com data asynchronously to running VCPUStefan Kempf
This registers a handler with libevent that is triggered on incoming data on the com port. ok mlarkin@
2016-09-02Process incoming host->guest packets asynchronously to running VCPUStefan Kempf
This registers a handler with libevent that is called on incoming packets for the guest. If they cannot be handled immediately (because the virtq is full), make sure they are handled on VCPU exits. ok mlarkin@
2016-09-02Improve logging of sent and received messages.Renato Westphal
* Standardize the logging format of sent and received messages: "msg-[in|out]: message type: lsr-id A.B.C.D [additional info]"; * Log sent label messages as well, not only the received ones; * Move the logging of sent notification messages from send_notification_nbr() to send_notification_full(), this way notification triggered by the lde process are logged as well; * Minor clean-up.