src - OpenBSD base system

Age	Commit message (Collapse)	Author
2009-12-31	use the same arg name for -k as the man page;	Jason McIntyre

2009-12-31	Add support for key disks. This allows a crypto volume to be constructed	Joel Sing
	without using a passphrase - instead the encryption mask key is stored on the specified key disk partition (ideally being one on a removable device). This also enables automatic assembly of crypto volumes at boot time. ok marco@
2009-12-25	A couple more device types.	Miod Vallat

2009-12-24	spelling fixes, from Brad Tilley; we will not fix src/sbin/dump/dump.h	Igor Sobrado
	as neither arrayified not arrayfied exist -- sanctioned dictionaries like Merriam-Webster ones suggest a few alternatives (e.g., arrayed), however these made up words are easy to understand and we are not certain that current ones are not ok. ok jmc@
2009-12-24	add support to pf for filtering a packet by the interface it was received	David Gwynne
	on. use the received-on IFNAME filter option on a pf.conf rule to restrict which packet the interface had to be received on. eg: pass out on em0 from $foo to $bar received-on fxp0 ive been running this in production for a week now. i find it particularly usefull with interface groups. no objections, and a few "i like"s from henning, claudio, deraadt, mpf
2009-12-23	partion -> partition. First one (mkfs.c) noted by Brad Tilley on tech@.	Kenneth R Westerback

2009-12-22	re-adding a group that exists is not an error	Theo de Raadt
	ok claudio
2009-12-20	First shot at making this manual page not look like a black sheep. Been	Theo de Raadt
	looking at it with claudio since I started doing more routing stuff.
2009-12-19	Explain what 'noauto' really does.	Joel Sing
	ok marco@
2009-12-15	Remove an untrue statement about the packetsize being	Marco Pfatschbacher
	8 bytes smaller when a raw socket is used. OK jmc, deraadt.
2009-12-15	Let ping handle truncated echo replies.	Marco Pfatschbacher
	Instead of a false data mismatch report, we now print (TRUNC!). This also fixes two out of bounds accesses. The "wrong data byte #XXX" counter was also wrong and off by 8 bytes. OK djm@ on an earlier version, OK deraadt@.
2009-12-14	use warn() and warnx() instead of incorrect stderr printing.	Theo de Raadt
	get rid of EX_* since ifconfig(8) is not sysexits program. discussed with claudio
2009-12-14	make ifconfig return with failure of bridge_rule; ok claudio	Theo de Raadt

2009-12-14	use strtonum() instead of atoi(). idea from Vladimir Kirillov, but had	Theo de Raadt
	to rewrite it because it was another mangled diff in mail. When will people learn that the tabs and spaces are important?
2009-12-14	fix sticky-address - by pretty much re-implementing it. still following	Henning Brauer
	the original approach using a source tracking node. the reimplementation i smore flexible than the original one, we now have an slist of source tracking nodes per state. that is cheap because more than one entry will be an absolute exception. ok beck and jsg, also stress tested by Sebastian Benoit <benoit-lists at fb12.de>
2009-12-11	be a little more specific about -ifp; from Doran Mori	Jason McIntyre

2009-12-10	do not leak memory, found by parfait, ok millert otto	Theo de Raadt
	(one case was a false positive, but one is a modified copy of the other)
2009-12-10	plug some memory leaks; found by parfait, ok henning	Theo de Raadt

2009-12-09	off by one in carp configuration; found by parfait, ok jsg	Theo de Raadt

2009-12-03	Adjust pflog BPF descriptions, problem pointed out by jmc@	Stuart Henderson
	- sync actions with PF changes (pass/block/match not just pass/block, and remove some binat/nat/rdr entries) - list all reason codes in tcpdump(8) ok henning jmc
2009-12-01	Add the new exec command to run a process and its children in a	Reyk Floeter
	non-default rdomain/rtable. route will change the default rdomain using the new setrdomain() syscall and execute the supplied command, eg. "route -T1 exec /usr/sbin/named". Tested by many including michele@, phessler@ ok claudio@, deraadt@
2009-12-01	add "exec" keyword	Reyk Floeter
	ok jsg@
2009-11-28	remove unused variables	Charles Longeau
	ok claudio@
2009-11-26	Silence dhclient by immediately exiting if the interface doesn't exist	Kenneth R Westerback
	or can't return important flags via ioctl. Excess verbiage pointed out by deraadt@. ok henning@
2009-11-25	Move the -p option to the correct place.	Joel Sing
	ok jmc@
2009-11-24	Preserve rawmode when setting scale. ok miod@, oga@.	Matthieu Herrb

2009-11-24	put -P in the right place;	Jason McIntyre

2009-11-24	Allow the passphrase to be changed on softraid crypto volumes. Ensure that	Joel Sing
	you backup your data and lock up your pets prior to using this. Tested by todd@ ok marco@
2009-11-23	since "nat/rdr pass" are history natpass can go	Henning Brauer

2009-11-23	rewrite the bridge "rule" option for clarity; tweaks/ok deraadt	Jason McIntyre

2009-11-23	correct bridge rule descriptions	Theo de Raadt

2009-11-22	brconfig(8) functionality is now in ifconfig(8)	Theo de Raadt

2009-11-22	cleanup after the NAT changes. we used to have multiple rulesets (scrub,	Henning Brauer
	NAT, filter). now we only have one. no need for an array any more. simplifies the code quite a bit. in the process fix the abuse of PF_RULESET_* by (surprise, isn't it) the table code. written at the filesystem hackathon in stockholm, committed from the hardware hackathon in portugal. ok gcc and jsing
2009-11-22	The spanning priority is conflicting with the interface priority so it	Claudio Jeker
	got renamed to spanpriority.
2009-11-22	Move information describing the bridge and brconfig behaviour into	Theo de Raadt
	the relevant manual pages. Functionality is described in the (4) pages, controlling the functionality in ifconfig(8), and the hostname.if gains the old bridgename.if(5) functionality. ok claudio jmc
2009-11-22	Merge brconfig into ifconfig. It is annoying that it is impossible to do	Claudio Jeker
	ifconfig bridge0 add em0 add gif0 add vether0 up instead you need to ifconfig bridge0 create brconfig bridge0 add em0 add gif0 add vether0 up This is working for everything now but we may do some changes when needed. Manpages and startup scripts are following soon. OK deraadt@, henning@
2009-11-22	Fix ifconfig -a vs. ifconfig -A and make ifconfig without any arg behave	Claudio Jeker
	like ifconfig -a by setting the aflag to 1. Found with and OK deraadt@
2009-11-21	tweak previous;	Jason McIntyre

2009-11-21	Add new option tunneldomain to ifconfig to specify the routing table	Claudio Jeker
	to be used for sending out gre/gif encoded packets. OK deraadt@, henning@
2009-11-16	pflogd no longer needs libutil; ok deraadt@	Otto Moerbeek

2009-11-15	vether(4) interfaces can be created too; ok deraadt	Jason McIntyre

2009-11-13	fix a few memory leaks found by parfait; ok hshoexer	Theo de Raadt

2009-11-13	Don't use [] in function arguments when dealing with arrays	Jonathan Gray
	we don't know the size of, otherwise gcc >= 4 will error. ok markus@ deraadt@
2009-11-12	free flagsp if flags variable indicates it was not used, found by parfait; ↵	Theo de Raadt
	ok millert
2009-11-12	4 memory leaks found by parfait; ok millert	Theo de Raadt

2009-11-12	reading off the end of table bug, found by parfait	Theo de Raadt

2009-11-12	memory leak found by parfait; ok jsg	Theo de Raadt

2009-11-12	Make sure we have enough space for the trailing \0 on prepend/append	Jonathan Gray
	of dhcp options. found by parfait. ok krw@
2009-11-09	pfsync devices can be dynamically created too; from vladimir kirillov	Jason McIntyre
	ok henning
2009-11-09	A few more places to be updated for the route pool change.	Jonathan Gray
	expanded version of a diff from Vadim Zhukov. ok henning@ claudio@