summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Expand)Author
2024-03-02Trigger retransmission only for fragment 1/x, otherwise each receivedTobias Heider
2024-03-02Bump to OpenIKED 7.4Tobias Heider
2024-03-01Allow fdisk(8) to add GPT partitions of protected types.Kenneth R Westerback
2024-02-25Let some missing missing RFC 1918 reverse zones through.Florian Obser
2024-02-15Introduce new IMSG_CTL_PROCREADY which is used to signal that all pipesTobias Heider
2024-02-15Delay enabling sockets until ikev2 process is ready.Tobias Heider
2024-02-15Remove unused control_socks queue.Tobias Heider
2024-02-13Fix for CVE-2023-50387 and CVE-2023-50868.Florian Obser
2024-02-13Only generate a new xid at the start of getting a new lease.Florian Obser
2024-02-13Control startup of PROC_CERT and PROC_IKEV2.Tobias Heider
2024-02-11Remove needless includes of netinet6/ip6_var.h header in userland.Alexander Bluhm
2024-02-07fix anchortypes bounds testJonathan Gray
2024-02-06Pass struct iked directly to ca_reset() instead of passing it via psTobias Heider
2024-02-06Tweak previous. Passing "dns" to pledge(2) is suitable for the purpose.YASUOKA Masahiko
2024-02-03Remove Softdep.Bob Beck
2024-02-03Stop spamming syslog when the network does something silly.Florian Obser
2024-02-03fix off-by-one in bounds testJonathan Gray
2024-02-03correct buffer size argument to snprintf in print_proto()Jonathan Gray
2024-02-02The fix to pfctl_kill_src_nodes() comes from Olivier Croquin.Alexandr Nedvedicky
2024-01-29Open /etc/{services,protocols} before pledge(2).YASUOKA Masahiko
2024-01-26Put checksum flags in bpf_hdr to use them in userland dhcpleased.Jan Klemkow
2024-01-24Use per connection peerid for control repliesTobias Heider
2024-01-19Rename WSDISPLAY_TYPE_RKDRM to WSDISPLAY_TYPE_KMS such that we can use itMark Kettenis
2024-01-17Convert to use imsg_get_fd()Claudio Jeker
2024-01-15Add debug message for no policy found.Jan Klemkow
2024-01-15Include cert_partial_chain in iked_static instead of sending a separateTobias Heider
2024-01-15Currently 'pfctl -a "*" -sr' recursively walks anchor tree and showsAlexandr Nedvedicky
2024-01-11ifconfig.8: reorder hwfeature listJan Klemkow
2024-01-09Delete support for FFS filesystems before the in-inode symlinkPhilip Guenther
2023-12-21Fix a few unchecked allocations; ok millert@ miod@Otto Moerbeek
2023-12-20Don't unset the SA tag set by ipsec_sa_tag in ipsec_sa_iface.Tobias Heider
2023-12-18Check if calloc calls succeeded; ok millert@Otto Moerbeek
2023-12-14Use imsg_get_fd() to access the fd passed with the imsg.Claudio Jeker
2023-12-12ibuf_getdata() abuses the rpos from the ibuf. This is no longer allowedClaudio Jeker
2023-11-25whitespace; spotted by knFlorian Obser
2023-11-25First stab at IPv6-only preferred from RFC8925.Florian Obser
2023-11-24Empty IKEv2 DPD messages should not contain extra NONE payloadsTobias Heider
2023-11-23add an endpoint command for "bridges" that use addresses as endpoints.David Gwynne
2023-11-23add support for specifying ports on the src address in tunnel endpoints.David Gwynne
2023-11-18Scan past whitespace before checking if flag string startsKenneth R Westerback
2023-11-17Do not log errors form pcap_dispatch() caused by signals.Claudio Jeker
2023-11-12fix the signal numbers passed to siginterrupt.David Gwynne
2023-11-10GPT partitions have many attributes. Don't stomp on them all whenKenneth R Westerback
2023-11-10Enhance 'flag' to accept hex values in addition to the current 0Kenneth R Westerback
2023-11-10Always prefer group from initial KE payload as responder if supported.Tobias Heider
2023-11-10MNT_SOFTDEP and mount -o softdep no longer have any effectIngo Schwarze
2023-11-09avoid restartable syscalls with siginterrupt() against all our handlers.David Gwynne
2023-11-09sort .xr after previous; from jmcKlemens Nanni
2023-11-09link to showmount(8); OK deraadtKlemens Nanni
2023-11-03typo: ignorning -> ignoringTheo Buehler
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 18:59:56 +0000