| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-12-17 | allow default blowfish rounds to be tweakable by arch, no behavioral change | Ted Unangst | |
| ok deraadt | |||
| 2010-12-16 | - since inetd(8) and inetd.conf(5) are one and the same, let's not list them | Jason McIntyre | |
| both in SEE ALSO - standard options blurb | |||
| 2010-12-16 | small cleanup ioctl WSKBDIO_GETLEDS | Alexandr Shadchin | |
| ok miod@ | |||
| 2010-12-16 | tweak previous; | Jason McIntyre | |
| 2010-12-16 | avoid pointer arithmetic on void * | David Hill | |
| tested for a while by me. ok otto@ | |||
| 2010-12-16 | Add IANA officially assigned numbers for zabbix. | Antoine Jacoutot | |
| ok sthen@ deraadt@ | |||
| 2010-12-16 | move CRYPTO_VIAC3_MAX out of cryptodev.h and into the only | Jonathan Gray | |
| file it will be used from. requested by/ok mikeb@ | |||
| 2010-12-16 | no need to poke the vmspace, uvm_map_hint does what we want. ok oga | Ted Unangst | |
| 2010-12-16 | The VIA ciphers are added to an array of CRYPTO_ALGORITHM_MAX length | Jonathan Gray | |
| which should have been declared as CRYPTO_ALGORITHM_MAX + 1, fix this and reserve enough space for the VIA additions as well. ok/comments from mikeb & deraadt | |||
| 2010-12-15 | Bring CBC oracle attack countermeasure from r1.32 of cryptosoft.c to | Mike Belopuhov | |
| the hardware crypto accelerator land. This fixes aes-ni, via xcrypt, glxsb(4), hifn(4), safe(4) and ubsec(4) drivers. Original commit message by angelos: Don't keep the last blocksize-bytes of ciphertext for use as the next plaintext's IV, in CBC mode. Use arc4random() to acquire fresh IVs per message. with and ok deraadt, ok markus, djm | |||
| 2010-12-15 | attach the Hercules HWGUn-54 to rsu(4) | Damien Bergamini | |
| from pea@ | |||
| 2010-12-15 | Add USB ID for the Hercules HWGUn-54; from pea@ | Damien Bergamini | |
| Use a better name for the Hercules HWNUm-300 while I'm here. | |||
| 2010-12-15 | - the firmware download succeeded message should be wrapped in DPRINTF(). | Jasper Lievisse Adriaanse | |
| ok jsg@ | |||
| 2010-12-15 | - add CAVEATS section and mention that on multiport devices, only the first | Jasper Lievisse Adriaanse | |
| port can be used. ok jsg@ | |||
| 2010-12-15 | - attach to the startech ICUSB232X, though only the first port can be used | Jasper Lievisse Adriaanse | |
| on this multiport device. ok jsg@ | |||
| 2010-12-15 | We run getopt() twice to know if dhcp-sync is used. To make this work | Claudio Jeker | |
| both getopt calls need the same optstring or the first getopt() call will end before parsing all arguments. Problem found and fixed supplied by m_athias OK millert@, deraadt@ | |||
| 2010-12-15 | Be more careful when copying the pf rule from userland into the kernel. | Claudio Jeker | |
| All pointers in the struct need to be cleared and reset. So instead of bcopy the struct and clear some fields start with a clean struct and assign the values that need to be copied. Fixes a local vulnerability but only root can issue the problematic ioctl(). Reported by Jean Sigwald, has been in snaps for a while and OK deraadt@ | |||
| 2010-12-15 | - clarify the "probability" text; based on a diff from Thomas Pfaff | Jason McIntyre | |
| ok henning - while here, knock out a bad .Pp | |||
| 2010-12-15 | make the "invalid probability:" yyerror suck less | Henning Brauer | |
| From: Thomas Pfaff <tpfaff@tp76.info> | |||
| 2010-12-15 | enable uticom(4) now it is known to work | Jonathan Gray | |
| 2010-12-15 | make this not panic on attach | Jonathan Gray | |
| from Daniel Gracia | |||
| 2010-12-15 | Security fix for CVE-2010-4180 as mentioned in ↵ | Jasper Lievisse Adriaanse | |
| http://www.openssl.org/news/secadv_20101202.txt. where clients could modify the stored session cache ciphersuite and in some cases even downgrade the suite to weaker ones. This code is not enabled by default. ok djm@ | |||
| 2010-12-15 | as of 1989, fread/fwrite take void *, so there's no need to cast to char *. | Ted Unangst | |
| 2010-12-15 | oops, i forgot to check in the BRKSIZ define in uvm, but deraadt thinks | Ted Unangst | |
| its better as a per arch MD define anyway. all default to MAXDSIZ as before. | |||
| 2010-12-15 | add a BRKSIZ define and use it for the heap gap constant, decoupling | Ted Unangst | |
| heap gap from max data size. nothing else changes yet. ok deraadt | |||
| 2010-12-15 | revert the malloc change, as it meant dropping events before the device is | Ted Unangst | |
| opened. keep the array expansion. ok deraadt | |||
| 2010-12-15 | don't delay if the device is dying | Jacob Meuser | |
| ok krw@ | |||
| 2010-12-15 | fix ControlMaster=ask regression | Damien Miller | |
| reset SIGCHLD handler before fork (and restore it after) so we don't miss the the askpass child's exit status. Correct test for exit status/signal to account for waitpid() failure; with claudio@ ok claudio@ markus@ | |||
| 2010-12-14 | Use _exit() not exit() after forking. OK deraadt@ | Todd C. Miller | |
| 2010-12-14 | Treat a missing spool dir like an empty one. OK deraadt@ | Todd C. Miller | |
| 2010-12-14 | Match the Sitecom WL-349 v1. | Mark Kettenis | |
| ok damien@ | |||
| 2010-12-14 | There is no "struct filesystem"; uncovered by gcc4. | Mark Kettenis | |
| ok miod@ | |||
| 2010-12-14 | disable access to the crypto(4) device from userland; ok deraadt | Mike Belopuhov | |
| 2010-12-14 | "Implement fast path TLB miss handling. Walk the page table without | Jasper Lievisse Adriaanse | |
| creating a trapframe, with exceptions disabled and using only BANK1 registers. If a valid pte is found, load it and return. Otherwise create a trapframe and proceed to the full-blown C handler." from uwe@netbsd, ok miod@ speed-ups measured by miod@ and me were between 44% and 50%... | |||
| 2010-12-14 | use the dying flag in struct usbd_bus instead of a private dying flag | Miod Vallat | |
| in *hci_softc | |||
| 2010-12-14 | regen | Damien Bergamini | |
| 2010-12-14 | bunch of Atheros AR9271 product ids. | Damien Bergamini | |
| 2010-12-14 | sync | Theo de Raadt | |
| 2010-12-14 | use the dying flag in struct usbd_bus instead of a private dying flag | Jacob Meuser | |
| in *hci_softc ok miod@, krw@ | |||
| 2010-12-14 | don't mention key type in key-changed-warning, since we also print | Markus Friedl | |
| this warning if a new key type appears. ok djm@ | |||
| 2010-12-14 | - make HUGE_VAL, HUGE_VALF, HUGE_VALL, INFINITY, NAN expand to the | Martynas Venckus | |
| constant expressions with the help of gcc post-3.3. ok millert@, mikeb@. been in snaps for weeks. | |||
| 2010-12-13 | Read ${X} environment variables in strings and $HOME from the global | Nicholas Marriott | |
| environment rather than getenv, this allows them to be updated during the configuration file. | |||
| 2010-12-13 | same bug, should have guessed this would come from gnu portability stupidity. | Marc Espie | |
| as noted by deraadt@ | |||
| 2010-12-13 | rename() is the atomic operation, unlink() is just there to create | Marc Espie | |
| races between ldconfig and ld.so (simple commit, hours of bug hunt...) okay kettenis@, deraad@, miod@ | |||
| 2010-12-13 | the 3Com 3CRUSBN275 is an otus(4). | Damien Bergamini | |
| 2010-12-13 | fixed urtwn-license. | Damien Bergamini | |
| the firmware image does not change, hence the p0. | |||
| 2010-12-13 | #undef RSU_DEBUG | Damien Bergamini | |
| print the firmware diagnostic messages only if IFF_DEBUG is set. | |||
| 2010-12-13 | Prefer '-l' over '-' which is deprecated. | Antoine Jacoutot | |
| Also noticed and agreed by eric@ ok robert@ | |||
| 2010-12-13 | simulate a full login with su, now that the environment is fine after | Robert Nagy | |
| the last su(1) commit | |||
| 2010-12-13 | Call setusercontext() with the LOGIN_SETENV flag for "su -l" to pick up | Todd C. Miller | |
| environment variables specified in login.conf. Based on a diff from robert@. OK robert@ otto@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |