| Age | Commit message (Collapse) | Author |
|---|
|
ok jmc@ millert@ deraadt@
|
|
|
|
|
|
|
|
Also get rid of a spurious local initialization in pmap_remove_mapping().
|
|
|
|
|
|
|
|
other errors, continue too use the "is not a bridge" mantra.
|
|
|
|
|
|
Based upon patch/report from Marc Olzheim <marcolz at stack.nl>
|
|
amd64 (in 32 bit mode) and the new transmeta cpus want this, and lock
up otherwise. very odd.
|
|
|
|
exist and has no recovery file that vi shall present an error and edit
foo as a new file. This change makes the behavior match the documentation;
previously it just spat out an error and quit. Problem found by jmc@
|
|
|
|
|
|
|
|
mark up new ioctls a little better;
|
|
commands;
feedback and ok millert@ naddy@
|
|
|
|
1) PF should do the right thing when unplugging/replugging or cloning/
destroying NICs.
2) Rules can be loaded in the kernel for not-yet-existing devices
(USB, PCMCIA, Cardbus). For example, it is valid to write:
"pass in on kue0" before kue USB is plugged in.
3) It is possible to write rules that apply to group of interfaces
(drivers), like "pass in on ppp all"
4) There is a new ":peer" modifier that completes the ":broadcast"
and ":network" modifiers.
5) There is a new ":0" modifier that will filter out interface aliases.
Can also be applied to DNS names to restore original PF behaviour.
6) The dynamic interface syntax (foo) has been vastly improved, and
now support multiple addresses, v4 and v6 addresses, and all userland
modifiers, like "pass in from (fxp0:network)"
7) Scrub rules now support the !if syntax.
8) States can be bound to the specific interface that created them or
to a group of interfaces for example:
- pass all keep state (if-bound)
- pass all keep state (group-bound)
- pass all keep state (floating)
9) The default value when only keep state is given can be selected by
using the "set state-policy" statement.
10) "pfctl -ss" will now print the interface scope of the state.
This diff change the pf_state structure slighltly, so you should
recompile your userland tools (pfctl, authpf, pflogd, tcpdump...)
Tested on i386, sparc, sparc64 by Ryan
Tested on macppc, sparc64 by Daniel
ok deraadt@ mcbride@
|
|
|
|
in the libc rpc code. The main difference between this and the previous
version is the use of a simple free list that simplifies the logic when
adding a socket to svc_pollfd. I've also added code to pack svc_pollfd
when the free list gets too big. The idea general idea is to keep
svc_pollfd as tightly packed as possible to make poll(2) efficient.
Tested by many people and OK deraadt@
|
|
ok tedu@
|
|
support) and discard proposed new password. corrections/ok markus@
|
|
|
|
|
|
|
|
|
|
|
|
From: Patrick Latifi <pat@eyeo.org>
|
|
ok tedu@
|
|
settings - even though they are the same for all six configurations, they
differ from Interphase's factory settings.
|
|
cards. The original code would only work with the first configuration,
as the etherbuf addresses grow _downwards_ from 0xfd6c0000 with Motorola's
jumper configuration.
Reference: MVME376 Ethernet Communication Controller User's Manual (MVME376/D1)
While there, do not panic() on failure to attach, but simply print an
error message and return.
XXX Proper care of the memory mapping still needs to be written, as the memory
XXX space of the MVME376 is always outside extio.
|
|
|
|
all three) after buf_open failure. as this does not happen normally (except
for in out of memory cases) it wasn't noticed.
|
|
From: Patrick Latifi <pat@eyeo.org>
|
|
detected a closed connection which caused an fsm call which causes a
deallocation of said ressources
(that was long for "missing return")
|
|
o Document and warn that seeding the random generator is no longer supported
since arc4random is used as the RG.
ok jose@ millert@
|
|
SSL errors by recognizing them as EOF. Otherwise, sendmail can get into
an infinite loop logging "STARTTLS: read error=generic SSL error (0)"
This was causing problems on the mailing list server...
|
|
|
|
TAILQ_REMOVE is a no-no within a TAILQ_FOREACH loop.
also free the symbol itself after removal.
all found while hacking bgpd which incorporates pfctl's sym code (macros).
ok cedric@
|
|
tests after we're done
|
|
run OpenBSD.
|
|
|
|
|
|
|
|
|
|
|
