src - OpenBSD base system

Age	Commit message (Collapse)	Author
2017-02-06	Postpone pledge call until after the getopt switch and hoist the call to	Theo Buehler
	readlabelfs over it. This avoids a pledge abort due to the fact that the ioctl DIOCGDINFO may not be allowed on the given file: mount /dev/tty /tmp. ok benno
2017-02-03	Stop assuming that in_{addr,port}_t are typedefed in <sys/types.h> and	Philip Guenther
	instead pull in <netinet/in.h> or <arpa/inet.h> when those are needed. ok florian@ beck@ millert@
2017-02-02	grammar fix; from tinker	Jason McIntyre

2017-01-26	one more fix i requested for previous;	Jason McIntyre

2017-01-26	Select the routing domain to be used for kill states by host or by	Sebastian Benoit
	label, by adding a -V <rdomain> option. written by Bertrand Provost, provost DOT bertrand AT gmail DOT com, thanks. ok florian@, with feedback from florian and jmc.
2017-01-25	Some simple cleanup:	Theo Buehler
	* check strdup for malloc failure * remove obvious /* NOTREACHED / return instead of exit from main * err(1, NULL) instead of err(1, "malloc") * mark usage as __dead ok deraadt
2017-01-24	whitespace	Theo Buehler

2017-01-23	Keep socket open from startup, and reuse for SIOCGIFFLAGS later on,	Theo de Raadt
	rather than opening a fresh socket on the fly. ok krw
2017-01-23	Split pledge "ioctl" into "tape" and "bpf", and allow SIOCGIFGROUP only	Theo de Raadt
	upon "inet". Adjust the 4 programs that care about this.
2017-01-23	pflogd will need pledge(proc), still disabled because of bfd	Sebastian Benoit
	ok deraadt@
2017-01-23	Zap some bad whitespace.	Kenneth R Westerback

2017-01-22	tedu@ didn't take the getcode() prototype with the getcode() implementation.	Kenneth R Westerback
	Restore gcc's equanimity by tedu@'ing the prototype.
2017-01-21	Nuke whitespace foolish enough to expose itself during the great	Kenneth R Westerback
	"warning:" rectification.
2017-01-20	Add a warning when the address pool is exhausted	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Constify the data argument for ibuf_new	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Reset various pointers in ikev2_msg_cleanup	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Make sure to free reference to the public key after decoding	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Closed SAs should never be treated as valid	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Check bounds of the flows array when configuring traffic selectors	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Verify the certificate imsg payload size	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Include only found SPIs into the PAYLOAD_DELETE message	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	Minor formatting fix	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-20	New RFC7383 define	Mike Belopuhov
	From and OK markus@, OK reyk
2017-01-19	add hooks so we can query the current state of a BFD session	Peter Hessler
	bfd session details are visible with "route -n get 192.0.2.1 -bfd" OK mpi@ deraadt@ claudio@
2017-01-17	Nuke some whitespace that keeps poking me in the eye as I try to	Kenneth R Westerback
	steal code.
2017-01-17	In monitor mode, also print the interface mtu of RTM_IFINFO messages.	Jeremie Courreges-Anglas
	ok deraadt@ millert@ mpi@
2017-01-09	Stop accessing verbose and debug variables from log.c directly.	Reyk Floeter
	This replaces log_verbose() and "extern int verbose" with the two functions log_setverbose() and log_getverbose(). Pointed out by benno@ OK krw@ eric@ gilles@ (OK gilles@ for the snmpd bits as well)
2017-01-09	Replace hand-rolled for(;;) traversal of ctl_conns TAILQ with	Kenneth R Westerback
	TAILQ_FOREACH(). No intentional functional change. ok reyk@
2017-01-08	Sync log.c with the latest version from vmd/log.c that preserves errno	Reyk Floeter
	so it is safe calling log_* after an error without loosing the it.
2017-01-05	Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQ	Kenneth R Westerback
	with more modern TAILQ_FOREACH(). This what symget() was already doing. Add paranoia '{}' around body of symget()'s TAILQ_FOREACH(). No intentional functional change. ok bluhm@ otto@
2017-01-04	Remove modular exponential groups specified in RFC5114	Mike Belopuhov
	Brought up by doug@, ok reyk, djm, doug
2017-01-03	Fix pledge of the ca process by calling the right function on startup.	Reyk Floeter
	As a related change, load the local.pub and local.key keys after privsep and reload them on SIGHUP/reload. OK mikeb@
2017-01-01	Hyphenate compound adjectives 'up-to-date', 'out-of-date' and 'well-known'	Theo Buehler
	if they precede the noun and omit hyphens otherwise. ok tj
2016-12-27	The "disk too large" and "only LBA values saved" messages are more	Kenneth R Westerback
	often confusing than useful these days. Stop emitting them. Prompted by bugs@ report of the 8TB disk travails of Jiri. ok deraadt@ tom@
2016-12-26	Put some variable declarations under appropriate #if/#endif protection	Kenneth R Westerback
	so gcc doesn't complain about defining but not using them. typo correction & ok jca@
2016-12-25	gcc says "if you define labels and don't use them, I will whine."	Kenneth R Westerback
	ok tom@
2016-12-22	Remove PIM support from the multicast stack.	Rafael Zalamena
	ok mpi@
2016-12-20	This commit removes bio_status() calls after a BIOCLOCATE since the	Patrick Wildt
	bio status will never be updated on a BIOCLOCATE. In addition with missed zeroing of the passed bio struct, this could lead to a print of uninitialized memory. While there, properly zero the bio struct before passing it to ioctl(). ok mikeb@
2016-12-20	Document our new WPA default settings. Discourage use of TKIP.	Stefan Sperling

2016-12-20	Make 'ifconfig if0 wpa' and 'ifconfig if0 -wpa' reset WPA params (does not	Stefan Sperling
	include the wpakey) to their defaults. And make 'ifconfig if0 wpaprotos' reset WPA crypto parameters to settings which are appropriate for the specified WPA protocol version.
2016-12-16	Eliminate some gcc warnings about 'unused variables', mostly by	Kenneth R Westerback
	adding appropriate #ifdef's around declarations. ok millert@ (with a tweak I will commit separately)
2016-12-13	Print the correct netmask instead of /0 when flushing routes to networks.	Martin Pieuchot
	Issue reported by jsing@, ok stsp@
2016-12-13	make setting and getting tunnel addresses wrt to ipv6 scope handling.	David Gwynne
	setting a tunnel addresses uses a sockaddr_in6 from getaddrinfo, which sets sin6_scope_id for scoped addresses. this is nice and portable. reading a tunnel address assumed the scope was embedded in link local addresses in sin6_addr, and unpacked the scope back into sin6_scope_id. this is inconsistent with the code that sets tunnel addresses. this fixes the read path so it assumes the kernel sets sin6_scope_id like it it assumes the kernel will read on the set side. noone likes the kame hack of embedding the scope id in the addreses. ok mpi@
2016-12-08	move the text describing the % and & units to a better place;	Jason McIntyre
	diff from jerome frgacic, tweaked by myself ok krw millert
2016-12-03	provide missing unit suffixes; from ross l richardson	Jason McIntyre

2016-11-28	ikelifetime time spec is the same the one for lifetime	Mike Belopuhov

2016-11-28	Rename "flowmax" to "maxflow" and give each switch(4) ioctl a	Reyk Floeter
	dedicated number. Both changes for consistency. OK rzalamena@
2016-11-27	Document bioctl -d as a "detach" rather than a "delete" operation.	Stefan Sperling
	ok tb@ danj@ deraadt@
2016-11-26	Remove leftovers of line disciplines that are no more.	Martin Pieuchot
	ok mikeb@
2016-11-25	Nuke the DHO_ROUTERS and DHO_STATIC_ROUTES options from the effective	Kenneth R Westerback
	lease when DHO_CLASSLESS_[MS_]STATIC_ROUTES are present. RFC 3442 says the client must ignore the former if the latter is present. The information was already ignored but was still written to the 'effective' section of the pseudo-lease file created by the -L option. This incorrectly implied that these options were 'effective'. Problem noted by Ed Fochler. Thanks!