| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-12-31 | According to pf_scrub_ip6() pf does not support the scrub options | Alexander Bluhm | |
| no-df, random-id, set-tos for IPv6 rules. Check this in pfctl and document it in pf.conf(5). ok henning@ jmc@ | |||
| 2010-12-29 | Fix swapctl -A with DUIDs in /etc/fstab, and plug a small memory leak. | Stefan Sperling | |
| ok jsing@ (who also pointed out a DPADD tweak missing from my diff) | |||
| 2010-12-23 | pick netmask instead of address when we mean it; found by dhill, ok reyk | Mike Belopuhov | |
| 2010-12-23 | always add a none payload, should fix ike sa rekeying for responders; ok reyk | Mike Belopuhov | |
| 2010-12-23 | spelling fixes; from Daniel Dickman | Jason McIntyre | |
| 2010-12-22 | move and rename util.c:print_id() to ikev2.c:ikev2_print_id() because | Reyk Floeter | |
| it is too specific to be in util.c. This will allow to link util.c into ikectl later without all the other dependencies of pritn_id(). | |||
| 2010-12-22 | split util.c into two files: imsg_util.c for ibuf/imsg stuff and util for | Reyk Floeter | |
| everything else. we might need to include util.c in ikectl later. sure mikeb@ | |||
| 2010-12-22 | ikev2 rfc was recently updated, so list the newer one; ok reyk | Mike Belopuhov | |
| 2010-12-22 | Tweak the grammar a little bit by requiring a "bytes" keyword before the | Reyk Floeter | |
| bytes value ("lifetime 123 bytes 456" instead of "lifetime 123 456"). | |||
| 2010-12-22 | Fix a little control socket bug, as discussed with mikeb@ | Reyk Floeter | |
| 2010-12-22 | -s carries the same caveat as -p; from Jiri B. | Jason McIntyre | |
| ok krw | |||
| 2010-12-22 | child sa rekeying revamp plus numerous bugfixes; | Mike Belopuhov | |
| with suggestions and OK from reyk | |||
| 2010-12-21 | Convert netmask from sockaddr to prefixlen correctly as noticed | Mike Belopuhov | |
| by axel rau, axel dot rau at chaos1 dot de. The actual convert functions are taken from bgpd(8). OK reyk | |||
| 2010-12-21 | fixup log_warn and log_debug arguments; ok reyk | Mike Belopuhov | |
| 2010-12-18 | remove david as author. he is not to blame for the current C implementation. | Ted Unangst | |
| ok david | |||
| 2010-12-18 | add some off_t and ssize_t love; ok stsp millert | Theo de Raadt | |
| 2010-12-17 | Add missing util.h include for opendev() | Todd C. Miller | |
| 2010-12-15 | make the "invalid probability:" yyerror suck less | Henning Brauer | |
| From: Thomas Pfaff <tpfaff@tp76.info> | |||
| 2010-12-13 | stray tabs and spaces | Marco Peereboom | |
| 2010-12-13 | stray tab | Marco Peereboom | |
| 2010-12-09 | When looking up an SA based on peer address, also check the port | Martin Hedenfal | |
| number. Without this, isakmpd deletes SAs from the same IP on an INITIAL-CONTACT message, possibly deleting unrelated NATed tunnels. Fixes PR 5562. Verified by Mikolaj Kucharski. ok mikeb@ | |||
| 2010-12-03 | disklabel now uses "duid", not "uid"; | Jason McIntyre | |
| 2010-12-01 | Allow add a -s switch to make bioctl read the passphrase from stdin. Handy | Chris Kuethe | |
| for scripting a big batch of remote unlocks. ok marco | |||
| 2010-12-01 | Clarify the internal ibuf API: rename ibuf_copy() to ibuf_get() because | Reyk Floeter | |
| it returns a new buffer from the internal read offset like stdio get functions do and not the same buffer when it is called multiple times. Also rename the old ibuf_get() to ibuf_getdata() because it returns a "special" data type and it matches the stdio get* conventions. pointed out by mikeb@ | |||
| 2010-12-01 | remove some unused tokens | Jonathan Gray | |
| ok henning@ mcbride@ | |||
| 2010-11-29 | make key exchange faster by not checking the predefined groups with DH_check() | Markus Friedl | |
| ok mikeb@, djm@ | |||
| 2010-11-29 | make "fsck -p" respect fs_passno > 2, as implied by the manual. This can | Chris Kuethe | |
| be used to schedule the check of softraid(4) disks after all the slices on the component disks have been checked. ok deraadt | |||
| 2010-11-24 | When dealing with disklabel UIDs (DUIDs) be specific and consistent with | Joel Sing | |
| naming. ok krw@ | |||
| 2010-11-22 | Update example disk partition info to more current reality. Noticed | Kenneth R Westerback | |
| by and diff from Roberth via tech@. ok jmc@ | |||
| 2010-11-20 | Explain how to start a rebuild in a more obvious way and add an example. | Stefan Sperling | |
| help and ok marco@ jsing@ jmc@ | |||
| 2010-11-17 | Allow the -D command line flag to actually define macros. | Chris Kuethe | |
| ok mikeb@ reyk@ | |||
| 2010-11-17 | Switch fsck_msdos(8) to opendev(3) so that it can handle disklabel UIDs. | Joel Sing | |
| 2010-11-17 | Try to determine file system type using readlabelfs(3) if fsck is given | Joel Sing | |
| a disklabel UID. | |||
| 2010-11-16 | - remove XXX here now that CMDBUFLEN is defined in scsiio.h | Jasper Lievisse Adriaanse | |
| ok krw@ | |||
| 2010-11-12 | The ioctl to show states returns a pfsync_state which is in network byte | Claudio Jeker | |
| order and therefore a ntohs is needed to show the rdomain correctly. OK henning@ dlg@ | |||
| 2010-11-09 | when setting the rdomain, use the same define as the kernel | Jonathan Gray | |
| for the maximum route-id instead of a currently incorrect number ok claudio@ | |||
| 2010-11-08 | fixup number rounding; ok reyk | Mike Belopuhov | |
| 2010-11-02 | expose the kernels network livelock counter | David Gwynne | |
| 2010-11-01 | bye bye wpa-psk. instead of using ifconfig wpapsk `wpa-psk password` you | Theo de Raadt | |
| can now simply use ifconfig wpakey password ok damien | |||
| 2010-11-01 | add support for (full length only) hex keys to the wpakey code. for the | Theo de Raadt | |
| remainder of the 4.8->4.9 transition, alias wpapsk to wpakey (since it swings both ways) ok damien halex tedu | |||
| 2010-10-25 | range check rtm_type more carefully against the known RTM_ values. | Theo de Raadt | |
| this is not the real solution to PR 6500; claudio is going to fix that properly in the kernel ok claudio | |||
| 2010-10-23 | make sure an interface is registered before we start using it | Peter Hessler | |
| found by clang OK claudio@, krw@ | |||
| 2010-10-19 | convert to fuse cast from the libcrypto. with a simplification nit from | Mike Belopuhov | |
| blambert, ok jsg, "seems ok" todd | |||
| 2010-10-18 | document the new wpakey option | Alexander Hall | |
| prodded by deraadt@ "tweak previous" expected... ;-) | |||
| 2010-10-18 | as determined 4 years ago, FortiGate needs DOI of 0 responses to DPD | Todd T. Fries | |
| so, copy a small bit of logic to make DPD interop with FortiGate function tested by me, ok mikeb@, silence from 'the usual suspects' | |||
| 2010-10-18 | Revert non-compatible and undocumented bullshit commited by 3 developers | Theo de Raadt | |
| who decided to just do it on their own. henning, mcbride, jsing -- shame on you -- if you had shown this diff to just 1 other network developer, the astounding mistake in it would have been noticed. Start practicing inclusionary development instead of going alone. ok claudio | |||
| 2010-10-18 | smm bits removal; whilst here, fix up aliases.5; | Jason McIntyre | |
| 2010-10-18 | Add wpakey/-wpakey options. This was originally written by halex and | Theo de Raadt | |
| has gone many times around now (it is smaller now). man page diff coming soon. Fits onto the media that need it. ok halex | |||
| 2010-10-17 | Add quirks support to operating system fingerprinting. tcpdump part | Joel Sing | |
| by mcbride@. ok mcbride@ henning@ | |||
| 2010-10-15 | fixup generation of suites string for isakmpd wrt "group none" | Mike Belopuhov | |
| bug noticed and fix tested by robert | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |