src - OpenBSD base system

Age	Commit message (Collapse)	Author
2015-07-14	Use volatile sig_atomic_t for requested_transition since it is	Todd C. Miller
	modified inside signal handlers. Instead of returning a function pointer, the state functions now return an enum for the next state. This is used as an index into an array of function pointers to do the actual state change in transition(). OK deraadt@
2015-07-14	clarification from trondd;	Jason McIntyre
	ok mikeb
2015-07-09	Nuke unused variable.	Kenneth R Westerback

2015-07-08	Do not attempt to read a disk sector worth of data from the file	Kenneth R Westerback
	containing the MBR template. Most especially don't get upset when the 512-byte file does not contain a full 4096 byte disk sector. Allows 4096-byte disks to be fdisk'ed once more. Problem reported and fix tested by Gerald Hanuer via bugs@. ok deraadt@
2015-07-07	repair policy-ikesa-linking by replacing the broken RB_TREE w/TAILQ	Markus Friedl
	(e.g. the policy might be used-after-free on 'ikectl reconfig') ok mikeb@
2015-07-03	Terminate 'config' keyword array with a NULL element.	Mike Belopuhov
	Reported by trondd at kagu-tsuchi ! com, thanks!
2015-06-15	document pfctl -ss -R <rule>, ok mikeb@	Stuart Henderson

2015-06-12	Allow rule ID filter to be specified for show states output	Mike Belopuhov
	Tweak pfctl to respect the rule ID parameter (-R) specified along with the show states (-s states) option to filter out states that are not associated with a given rule from the output. ok sthen, benno
2015-06-11	Use "compliant" header guards by avoiding the reserved '_' namespace.	Reyk Floeter
	Pointed out by Markus Elfring OK mikeb@ millert@
2015-06-05	Fix coupling and decoupling operations.	vgross
	With help and ok from mikeb@
2015-06-03	Do not assume that asprintf() clears the pointer on failure, which	Todd C. Miller
	is non-portable. Also add missing asprintf() return value checks. OK deraadt@ guenther@ doug@
2015-05-30	fix usage();	Jason McIntyre

2015-05-29	do not need non-NULL-check before free(p), other minor refactoring	Theo de Raadt
	from Benjamin Baier
2015-05-29	remove duplicate assignments; from Benjamin Baier	Theo de Raadt

2015-05-29	Initial addition of ``Patrol Read'' support in bio(4), biocto(8), and	Masao Uebayashi
	mfi(4). Based on FreeBSD, but done without mfiutil(8). OK deraadt@
2015-05-26	build wsconsctl and wsconscfg on armv7	Jonathan Gray

2015-05-25	bump up the default Diffie-Hellman group to modp3072; ok mikeb@ djm@	Christian Weisgerber

2015-05-23	Canonicalize all devices to DUIDs in order to make -w and -W output consistent.	Philip Guenther
	Based on diff from Manuel Giraud (manuel (at) ledu-giraud.fr) Thanks!
2015-05-19	improve spacing in disklabel template.	Igor Sobrado

2015-05-18	Tweak parsing so that hostnames starting with 0-9 are accepted.	Kenneth R Westerback
	Reported long ago by matthieu@. Also Jacob Berkman via the lists. Tests and suggestions from Jacob and Matthieu.
2015-05-18	Stop rejecting leases with a subnet that overlaps a subnet already	Kenneth R Westerback
	present. The latest routing stack code can now handle these situations. Much requested by beck@ and others. Detailed discussion at s2k15 identified required routing changes. ok claudio@
2015-05-17	nope, ioctl has not been used for a while	Theo de Raadt

2015-05-11	explicit_bzero(3) on private data, in case of core dumps (and being a good ↵	Martin Pelikan
	example) ok florian jsing
2015-05-08	Add a new `don't read back' flag for variables, to prevent reading their value	Miod Vallat
	after modifying them. Give this flag to `display.focus', since screen switching is asynchronous, and reading back will return the screen we are switching from if the switch has not completed yet. Also, disallow -= and += syntax for display.focus, as it doesn't make any sense.
2015-05-08	Separately track the number of items in alloc_table in a variable. With	Stuart Henderson
	the changes for handling template files in r1.293, alloc_table became a pointer to an array of structs (rather than the array itself), so nitems(alloc_table) no longer returns the number of elements. As found by sebastia@, autosize would only try the first allocation scheme, so installation would fail on small disks. ok henning@
2015-05-06	Document that priority 1 is reserved for kernel use.	Martin Pieuchot

2015-05-03	Eliminate the -U flag and make usage of DUID in /etc/dumpdates the default.	Philip Guenther
	Correct old style entries so nothing has to be done for the admin. diff from Manuel Giraud (manuel (at) ledu-giraud.fr) Thanks!
2015-05-02	de-castify strtonum to make it consistent again.	Florian Obser
	Pointed out by bluhm@; no object change. OK bluhm@, krw@
2015-05-02	Use IPV6_MAXHLIM instead of 255; pointed out by bluhm@	Florian Obser
	No object change.
2015-05-02	A ttl of 0 is valid. While here use MAXTTL instead of 255.	Florian Obser
	Input bluhm@, OK krw@
2015-05-02	Hoist common assignments out of a series of if/if-else statements	Kenneth R Westerback
	in get_token(). Simplifies code and shrinks future diff. No intentional functional change.
2015-05-02	Correct switch between current and previous line buffers when	Kenneth R Westerback
	encountering a carriage return in the input. Found by jsg@ a long time ago in a respository far, far away.
2015-05-02	Use strtonum() when parsing argument list, as ping(8) does. Give	Kenneth R Westerback
	or take a cast. Tweak error messages to also be consistant with ping(8). Change lower bound of '-h' to 0 from -1 at the request of florian@. Tweaks and suggestions from, ok florian@
2015-04-29	some fine-tuning in SYNOPSIS, usage, and order of options, with jmc	Henning Brauer

2015-04-29	g/c unneeded second char * var, ok benno	Henning Brauer

2015-04-29	support passing a template file for the auto-allocation to disklabel.	Henning Brauer
	template gives mountpoints, min-max size ranges and percentage of disk foremost intended for autoinstalls, installer bits to follow soon. with input from many, ok theo
2015-04-28	Someone went to the trouble of vertically aligning a set of parameters but	Mike Larkin
	missed one. This diff is only a spacing change.
2015-04-27	route show does not need to filter unwanted af itself, the sysctl does	Sebastian Benoit
	that for us. approach seems sound deraadt@ ok claudio@ mpi@ henning@ phessler@
2015-04-26	Fix glitches in previous commit: strip the \n and only complain on failure	Philip Guenther
	ok deraadt@
2015-04-23	error in strtonum() conversion; found by Nathanael Rensen	Theo de Raadt

2015-04-21	Improve divert-to specification parsing w.r.t. rule address family.	Mike Belopuhov
	ok henning
2015-04-21	No need to do "size = (size_t)sb.st_size" both before and after	Jonathan Gray
	a fstat() call. ok mikeb@ markus@
2015-04-20	Log if we refuse to continue the exchange when another one that corresponds	Mike Belopuhov
	to the same policy is already active. OK markus, hshoexer
2015-04-20	port src/sbin/ping/ping.c r1.119 and r1.121 to ping6:	David Gwynne
	> add a mac to the timestamp payload and calculate it with siphash. > > this lets us have some confidence that the timestamp hasnt been > damaged or tampered with in transit. > > discussed with jp aumasson > ok florian@
2015-04-20	fold the icmp seq number into the mac.	David Gwynne
	i dont know why i missed this before.
2015-04-19	by default fill the ping payload with a chacha stream instead of	David Gwynne
	an unvarying payload. each ping process generates a random key, and each packet then uses the timestamps mac as the IV for the stream. this allows us to have a different payload per packet that we can recalculate and compare in the same was as the static payload was checked before. by aggressively varying the payload we hope to generate more opportunities for dodgy network equipment to show errors. note that we do siphash before chacha because we want to be strict about the timestamp payload, but we want to be able to recognise errors in the rest of the payload and where those errors were. doing chacha before siphash would have us than fail the whole packet if a checksum doesnt match. discussed with jp aumasson ok florian@
2015-04-19	add a mac to the timestamp payload and calculate it with siphash.	David Gwynne
	this lets us have some confidence that the timestamp hasnt been damaged or tampered with in transit. discussed with jp aumasson ok florian@
2015-04-18	Convert many atoi() calls to strtonum(), adding range checks and failure	Theo de Raadt
	handling along the way. Reviews by Brendan MacDonell, Jeremy Devenport, florian, doug, millert
2015-04-17	Remove unsupported SADB_X_IDENTTYPE_CONNECTION; OK markus, hshoexer	Mike Belopuhov

2015-04-16	Tweak error output.	Gleydson Soares
	ok krw@