| Age | Commit message (Collapse) | Author |
|---|
|
|
|
|
|
instead, pass a more specific error back and handle the errors in
relay_test() instead.
reported by Arto Jonsson and Hiltjo Posthuma, thanks!
ok bluhm@ reyk@
|
|
With input from bluhm@
|
|
route because of PMTU.
otto@ reported the issue and helped me tracking it down during more
than one month, he is the man!
mikeb@ figured out the bug was in the forwarding path.
ok mikeb@, deraadt@, claudio@
|
|
|
|
other similar level. bz#2599, patch from cgallek at gmail.com, ok markus@
|
|
|
|
behaviour on strict compilers; reported by Jakub Jelen bz#2581
|
|
more intuitive and document
reported by and manpage bits naddy@
|
|
|
|
passphrase section a little; move the DER|PEM stuff in there to help
avoid text repetition, and prefer the lowercase (less keys to press);
adjust ENVIRONMENT to format a little more nicely;
|
|
and move any relevant text into the main body;
|
|
no FLOW_MOD yet.
|
|
|
|
|
|
Instead bring the session down and wait for admin help.
OK henning@, benno@, phessler@
|
|
write size in the client. pledge setup can be made tighter but that will be
done in a second step.
OK benno@, henning@, markus@ and some man page input by jmc@
|
|
i.e. == 0 and != 0 as appropriate. No intentional functional change.
Suggested by & ok tom@
|
|
|
|
|
|
ok mpi@
|
|
similar approach like iked: first validate the packet, then parse it,
and execute actions. debug logging is a side effect of validation.
|
|
we felt chroot-containment was also necessary for off-line analysis. Today
use of pledge "stdio" for the packet parser acts as an even better sandbox.
We can therefore silently ignore chroot setup failure, and regain tcpdump -r
support.
Result of a discussion with tedu -- which probably happened because we
became aware of the laughable retarded -Z option in upstream tcpdump.
ok tedu sthen guenther stsp
|
|
ok patrick@
|
|
by sending very long passwords, causing it to spend CPU hashing them.
feedback djm@, ok markus@.
Brought to our attention by tomas.kuthan at oracle.com, shilei-c at
360.cn and coredump at autistici.org
|
|
|
|
|
|
|
|
Problem found by Michael McConville.
Tested & ok stsp@
|
|
|
|
ports, but later versions switched to 32bit ports (for the case that a
virtual switch has more than 65535 switch ports, of course).
|
|
no action yet.
|
|
relevant counters with netstat -s -p tcp.
OK henning@
|
|
intentional functional change.
Diff from Miod.
ok millert@ deraadt@
|
|
it to do less. Discussion with guenther.
ok krw
|
|
systems throw away bits upon chown). Not in this case, but code gets
copied..
ok krw
|
|
convert in_selectsrc() prototype to match.
Ok bluhm@ mpi@.
|
|
the stack while associated, which in turn makes it possible to keep track of
HT protection changes.
ok mpi@
|
|
Makes running monitor mode over extended periods of time much less annoying.
ok benno@
|
|
bytes). This is what other OS have been doing for years. In our stack this
feature was present but disabled at compile-time by an #ifdef.
This is a low risk change because drivers were already required to use RTS
whenever the AP set the USE_PROTECTION flag in ERP elements of its beacons.
This change allows for reasonable throughput on loaded 11g networks
whereas before they were practically unusable.
tests and ok phessler@
|
|
- rearrange the descriptions of -V and -v to read more logically
- move the cipherlist text into the cipherlist description
- zap examples
|
|
|
|
|
|
|
|
correctly, as parse.y's $$ is not zero-initialized.
Found by Rene Ammerlaan
OK markus@ florian@
|
|
all the other daemons do.
ok reyk@
|
|
configuration. ok djm@
|
|
of HT protection changes while associated.
HT protection affects behaviour on Tx but is configured along with Rx settings
(because Intel likes it that way). And our previous iwn_update_htprot()
implementation had a bug where it would accidentally clear bits which enable
CCK rates for Rx. The Intel Wireless-N 2200 chip accordingly stopped receiving
some frames (most notably broadcast frames) and the link broke down.
Also, restore the power-saving level after updating the Rx config (like
Linux does), and add some DELAYs for good measure to ensure the firmware
has time to process asynchronous commands we send.
tested by myself and mlarkin@
ok mlarkin@
|
|
the IFF_RUNNING flag was set since last November (r1.138).
Apparently nobody is using this driver, except for martijn@.
Fix tested by martijn@ and myself.
ok dlg@
|
