src - OpenBSD base system

Age	Commit message (Collapse)	Author
2018-04-10	Check that a file descriptor's plegde flag is correctly propagated.	Alexander Bluhm
	The test covers the system calls dup, dup2, dup3, open /dev/fd, and file descriptor passing. The fstat(1) output is analysed.
2018-04-10	Add subdir filedescriptor.	Alexander Bluhm

2018-04-10	Check that a file descriptor's plegde flag is correctly propagated.	Alexander Bluhm
	The test covers the system calls dup, dup2, dup3, open /dev/fd, and file descriptor passing. The fstat(1) output is analysed.
2018-04-09	Add regress test for stack pivot mitigation	mortimer
	ok @deraadt
2018-02-27	Do not expect an eui64 link-local source address during duplicate	Alexander Bluhm
	address detection. The remote side may have soii, so match ICMP6 packets from any fe80::/64 address.
2018-02-05	typos	anton

2018-01-23	Add a smarter test that opens a file, unlinks it, and remounts the	Alexander Bluhm
	file system read-only. After unmounting this should result in a dirty file system that is not marked clean. Disable both tests with dangling vnodes for now as they fail.
2018-01-16	Enable traceroute test for incoming reply-to rule.	Alexander Bluhm

2018-01-15	Add tests that unmount a file system while it is busy. On a vnd	Alexander Bluhm
	device "cp -r" and "rm -rf" are working in the background while "umount -f" or "mount -ur" are executed. Then "fsck -f" is used to verify that the file system is clean. Currently this triggers a bug quite reliably. After the mount point has been changed to read-only, the file system check shows that not everything was flushed and synced properly.
2018-01-15	Enable traceroute test for incoming route-to rule.	Alexander Bluhm

2018-01-14	Fix after recent mutex change.	Martin Pieuchot

2018-01-11	Add tests for incoming route-to and outgoing reply-to rules. Disable	Alexander Bluhm
	the cases that currently fail.
2017-12-26	As the divert-to pf state is not connected, it is not linked to the	Alexander Bluhm
	incpb and so not removed when the socket is closed. Packets matching reply and reply-to states are linked to the sockets immediately. So these states must go away when the socket is closed. Check this with the output of "pfctl -s states" after running the Perl scripts.
2017-12-21	Add some comments what the tests are doing.	Alexander Bluhm

2017-12-20	Skip this regress test if no remote test machine is specified as	Alexander Bluhm
	environment variable.
2017-12-18	When setting KTRACE in the environment, client and server write	Alexander Bluhm
	ktrace files. This simplifies debugging as system calls can be inspected with kdump.
2017-12-16	hookup execpromise	Florian Obser

2017-12-16	execpromise regress	Florian Obser

2017-12-15	The pledge(2) regress tests fail since the second parameter has	Alexander Bluhm
	been converted from paths to execpromises. Remove the test fragments for the non-existing paths feature. OK semarie@ florian@
2017-11-30	Add regress to ensure that execve bypasses pledgepath checks (for now)	Bob Beck

2017-11-28	copyright	Bob Beck

2017-11-27	decriptor relative openat() and chmod	Bob Beck

2017-11-27	readlink and friends	Bob Beck

2017-11-27	symlink and a couple more...	Bob Beck

2017-11-27	access and chflags	Bob Beck

2017-11-27	Add the start of regression tests for upcoming pledgepath stuff.	Bob Beck
	still some more to add, and we won't link into regress until later ok deraadt@
2017-11-27	lenght->length, mostly in comments	Stuart Henderson

2017-11-24	Do not run sysctl and pfctl by != during make clean and make obj.	Alexander Bluhm
	requested by miod@
2017-11-20	Skip the test and print a warning if pf does not process packets	Alexander Bluhm
	on additional loopback devices.
2017-11-20	Now pledge("inet") allows socket option IPV6_V6ONLY. Adapt test.	Alexander Bluhm

2017-11-17	Let packets jump between routing domains until the ttl is used up.	Alexander Bluhm
	Use tcpdump to check that the ttl decrements to one.
2017-11-17	Link loopback test to build.	Alexander Bluhm

2017-11-17	Set up two loopback interfaces in different routing domains. Try	Alexander Bluhm
	to ping existing and non existing addresses in these domains. Also test pinging to different rdomains via pf. Create routing loops and check that the packet vanishes.
2017-11-15	Makefile cleanup, avoid DNS lookups, add copyright.	Alexander Bluhm

2017-11-15	Do not unconfigure vnd1, the test did not configure it.	Alexander Bluhm

2017-11-14	Add more checks helping to set up the test environment.	Alexander Bluhm

2017-11-08	Wait for the splicing syscall by grepping it in the relay log. This	Alexander Bluhm
	ensures that scapy's SYN+ACK packet hits the TCP stack when it hurts.
2017-11-07	Test more variations of TCP packets in the scapy splicing tests.	Alexander Bluhm
	Delay connect and SYN+ACK to splice data into a connecting socket.
2013-01-03	Reengineer the socket splicing regression tests:	Alexander Bluhm
	- Move the tests from splice to new sosplice directory for consistent naming. - Split the API tests and the TCP splicing tests into separate directories. - Create some tests for the upcoming UDP splicing. - Tests can be run in obj directories now. - The API tests can run both on a local and on a remote machine now. - Fix the forking TCP tests which splice and read or write simultaneously. - Bunch of little fixes for races in the tests. - Deduplicate code, move checks into common functions.
2017-11-05	Fix some comments and dependencies in this regress test.	Alexander Bluhm

2017-11-05	Insert a rule into pf regress anchor that passes all packets without	Alexander Bluhm
	state. The default pf rules interfere with this scapy test.
2017-10-27	Fix the glob to find all scapy test scripts.	Alexander Bluhm

2017-10-27	I am trying to find a bug that seems to be triggered by a combination	Alexander Bluhm
	of TCP timing and socket splicing. Add tests that use Scapy scripts as client and server. That allows to drop, delay and retransmit single TCP packets to execute various code paths in the remote OpenBSD stack.
2013-01-03	Reengineer the socket splicing regression tests:	Alexander Bluhm
	- Move the tests from splice to new sosplice directory for consistent naming. - Split the API tests and the TCP splicing tests into separate directories. - Create some tests for the upcoming UDP splicing. - Tests can be run in obj directories now. - The API tests can run both on a local and on a remote machine now. - Fix the forking TCP tests which splice and read or write simultaneously. - Bunch of little fixes for races in the tests. - Deduplicate code, move checks into common functions.
2017-10-18	Move the test implementation into the Makefile. Then we have only	Alexander Bluhm
	one place to look at. Make prints the commands it executes to assist debugging and analysis. If the test fails, there are simple regress targets that can be run to reproduce the error easily.
2017-10-12	Use a regex(3) to find the new pledge violation string in the dmesg.	Alexander Bluhm

2017-10-09	The divert-packet socket option IP_DIVERTFL, IPPROTO_DIVERT_RESP,	Alexander Bluhm
	IPPROTO_DIVERT_INIT feature is gone. Remove the corresponding tests.
2017-09-16	The copyin(9) family of functions should return EFAULT for all memory	Philip Guenther
	protection issues. So make amd64 do that instead of passing through uvm_fault()'s return value, which lead to other possible errors (particularly EACCES) being returned to userspace. Clean up a vestige on arm64 too. ok bluhn@ deraadt@
2017-09-15	Clean up pf rules and states on remote machine so that they do not	Alexander Bluhm
	interfere with later tests.
2017-09-07	Copy IPv6 fragment test cases to IPv4 and adapt to the different	Alexander Bluhm
	behavior. All tests are run once with pf fragment reassembly and once with pf disabled and IP input reassembly. Three sub tests are currently disabled as the IP stack behaves differently than pf.