src - OpenBSD base system

Age	Commit message (Collapse)	Author
2006-06-04	print time offsets much nicer	Theo de Raadt

2006-06-03	Use ifconfig delete/alias conforming with the man page.	Marco Pfatschbacher
	OK krw@
2006-06-03	better synopsis for -g; ok mpf	Jason McIntyre

2006-06-03	groups are specified using -g, not -m; ok mpf	Jason McIntyre

2006-06-03	Do not set newaddr to 1 if "delete" was specified beforhands. In this case	Claudio Jeker
	doalias is < 0. This fixes the problem where ifconfig em0 delete 10.0.0.1 created a 0.0.0.0/0 route entry and created a total mess because of that. Diff from markus@ OK beck@ markus@
2006-06-03	kill trailing whitespace;	Jason McIntyre

2006-06-02	Introduce attributes to interface groups.	Marco Pfatschbacher
	As a first user, move the global carp(4) demotion counter into the interface group. Thus we have the possibility to define which carp interfaces are demoted together. Put the demotion counter into the reserved field of the carp header. With this, we can have carp act smarter if multiple errors occur. It now always takes over other carp peers, that are advertising with a higher demote count. As a side effect, we can also have group failovers without the need of running in preempt mode. The protocol change does not break compability with older implementations. Collaborative work with mcbride@ OK mcbride@, henning@
2006-06-02	Big spelling cleanup, no binary change. From david@	Hans-Joerg Hoexer

2006-06-02	correct spelling of specified	David Krause

2006-06-02	Big whitespace cleanup.	Hans-Joerg Hoexer

2006-06-02	exit(2) when loading of rules did work partially. ok markus@	Hans-Joerg Hoexer

2006-06-02	document port modifiers in ike rules	Christian Weisgerber

2006-06-02	support tcp/udp port modifiers in ike rules	Christian Weisgerber
	"put it in if it doesn't break regress" hshoexer@
2006-06-02	backoff-cutoff defaults to 15 seconds; ok henning@	Kevin Steves

2006-06-02	print full information about tcpmd5 and ipcomp SAs, too	Markus Friedl

2006-06-02	add trailing \ when printing multiple lines for an SA, this way	Markus Friedl
	the output of ispecctl matches its input
2006-06-02	- sort options	Jason McIntyre
	- sync usage() - clean up
2006-06-02	mark up keywords using .Ic; ok hshoexer	Jason McIntyre

2006-06-02	allow to specify phase 1 and 2 lifetimes. Right now, these values	Hans-Joerg Hoexer
	can only be set globally (ie. Default-phase-[12]-lifetime).
2006-06-02	simplify handling of peers.	Hans-Joerg Hoexer

2006-06-02	Fix comment to reflect updated st(4) verbiage.	Kenneth R Westerback

2006-06-02	some more cleanup and simplification, no functional change.	Hans-Joerg Hoexer

2006-06-02	put src and dst host in dedicated structure. Make the API more	Hans-Joerg Hoexer
	compact which will soon simplify my life.
2006-06-02	Change LMCCTL to LMCCONTROL. It is lmccontrol(8), after all.	Ray Lai
	``yeah!'' jmc@
2006-06-02	tiny style cleanup and white spaces	Hans-Joerg Hoexer

2006-06-02	fix the formatting for sadb_register messages in monitor mode.	Mathieu Sauve-Frankel
	put back one mistakenly deleted newline. ok hshoexer@
2006-06-02	Simplify main/quick mode parsing and generation of the actual ike config.	Hans-Joerg Hoexer

2006-06-02	Generalize parsing of main/quick mode specification. Preparation	Hans-Joerg Hoexer
	for lifetime support.
2006-06-02	Prepare for parsing lifetimes for ike main and quick mode. Not enabled yet.	Hans-Joerg Hoexer

2006-06-01	Final bits for SA grouping.	Hans-Joerg Hoexer

2006-06-01	pfkey bits needed for SA grouping	Hans-Joerg Hoexer

2006-06-01	address has two `d', and i had to use a dictionary to check ;)	Jason McIntyre

2006-06-01	Revert last commit. Modifing a interface does a remove and then an add.	Claudio Jeker
	We need to figure out a better way to fix this. Brought up by markus@ OK beck@
2006-06-01	document port matching in flows; ok hshoexer@	Christian Weisgerber

2006-06-01	'-alias' is deprecated. Use 'delete' in ifconfig statements.	Kenneth R Westerback
	ok beck@
2006-06-01	ifconfig should be either deleting an interface address, or adding one in one	Bob Beck
	invocation, not both. This change ensures that a delete does not also do an add. Fixes stupid problem where deleting the last address with ifconfig delete addr worked differently than ifconfig addr delete where the first way would re-add an address of 0.0.0.0/0 after deleting the address. ok claudio@, krw@
2006-06-01	change the local-ID section name to always be unique as we may want to use ↵	Mathieu Sauve-Frankel
	more than one ISAKMP ID on the local peer. ok hshoexer@
2006-06-01	Support flows with port modifiers for proto tcp/udp, e.g.	Christian Weisgerber
	flow proto udp from 1.2.3.4 port ntp to 5.6.7.8 ok hshoexer@ msf@
2006-06-01	delint	David Hill
	ok moritz
2006-06-01	more to free, needed for SA grouping.	Hans-Joerg Hoexer

2006-06-01	Don't treat the addition of a dhclient.conf 'alias{}' address as an	Kenneth R Westerback
	external modification when the RTM_NEWADDR message arrives from the routing socket. Now dhclient will not exit if 'alias{}' is specified in dhclient.conf. Mentioned many times, most recently by Matthias Bertschy on misc@. ok henning@ beck@
2006-06-01	convert pfkey to ipsec_rule and use ipsecctl_print_rule() when dumping	Markus Friedl
	the in-kernel SAs. this way we produce the same output as rule loading ok hshoexer
2006-06-01	Add members dst2, proto2 and spi2 to struct ipsec_rule and define	Hans-Joerg Hoexer
	rule type "group". Needed for grouping.
2006-06-01	Prepare for SA grouping.	Hans-Joerg Hoexer

2006-06-01	print actual key size when warning about the wrong key size; ok hshoexer	Markus Friedl

2006-06-01	read the full reply from PFKEY even if sadb_errno is set; ok hshoexer	Markus Friedl

2006-06-01	spacing	Theo de Raadt

2006-06-01	knf	Hans-Joerg Hoexer

2006-06-01	correct error messages to match calloc where appropriate	Todd T. Fries
	ok hshoexer@
2006-06-01	permit feeding isakmpd.fifo IPv6 addresses	Todd T. Fries
	ok hshoexer@