| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-01-03 | Remove obsolete and undocumented "-carpdev" option, from Fabian Raetz. | Martin Pieuchot | |
| ok benno@, claudio@ | |||
| 2016-01-01 | rmeove unused noprint variable | Joerg Jung | |
| from Fabian Raetz via tech@ ok krw | |||
| 2015-12-30 | Remove use of sysexits.h. OK guenther@ | Todd C. Miller | |
| 2015-12-30 | Revert r1.59's over-enthusiatic MBR zero'ing in MBR_init(). It was | Kenneth R Westerback | |
| killing the macppc MSDOS partition created by '-i'. Should fix the macppc install problems reported by Brian Conway on bugs@. Date of breakage found by rpe@. | |||
| 2015-12-27 | Use 'standard' gpt_chk_mbr() to check for protective MBR. | Kenneth R Westerback | |
| 2015-12-24 | tweak auto-allocation description, with and ok jmc@ | Otto Moerbeek | |
| 2015-12-23 | Remove unnecessary SIGSYS/ENOSYS handling for getfh(2). | Tim van der Molen | |
| Encouragement from deraadt@ | |||
| 2015-12-23 | Add privilege separation and pledge(). | Tim van der Molen | |
| A privileged (that is, unpledged) child is forked that makes the "unpledgable" getfh(2) and mount(2) calls. It also takes care of writing /var/db/mountdtab so that the parent does not have to pledge "cpath wpath". This, then, allows the parent to pledge "stdio rpath inet dns". Suggestions and OK deraadt@ | |||
| 2015-12-23 | Use NULL rather than 0 for pointers. No binary change. | mmcc | |
| 2015-12-22 | assign pointers to NULL rather than 0, remove a needless cast | mmcc | |
| 2015-12-19 | Don't exit if a route can't be added. Just log particulars and | Kenneth R Westerback | |
| let someone else figure it out. ok mpi@ | |||
| 2015-12-19 | Delete superfluous "continue;" just before end of loop. | Kenneth R Westerback | |
| 2015-12-19 | Delete superfluous "close(s);return" just before "close(s);<function | Kenneth R Westerback | |
| exit>". | |||
| 2015-12-18 | Check ioctl() result with == -1, not < 0. Break long line. | Kenneth R Westerback | |
| 2015-12-18 | pledge "stdio rpath wpath cpath dpath fattr", as long as the -m option | Theo de Raadt | |
| wasn't used | |||
| 2015-12-15 | Include RFC number in reference. While here, improve formatting of another | Tim van der Molen | |
| reference. | |||
| 2015-12-15 | Document /var/db/mountdtab | Tim van der Molen | |
| 2015-12-15 | When (re)reading /etc/exports, handle the case where the mount point of an | Tim van der Molen | |
| export is not also the mount point of a local filesystem. In this case, the local filesystem would not be removed from the "unexport list", causing the export to be "unexported" again. This fix then also allows us to actually delete an export that has been removed from /etc/exports, by passing the MNT_DELEXPORT export flag to mount(2). Makes sense to millert@. | |||
| 2015-12-12 | Send DECLINE messages in response to ACK messages that turn out to | Kenneth R Westerback | |
| have inadequate or invalid leases. In particular leases for addresses that are already configured on a different interface. After the DECLINE, return to INIT state and start looking for a valid lease. This conforms much closer to the relevant RFC's. Avoids 'hanging' dhclient(8) during boot when the attempt to configure the address fails without dhclient(8) realizing it. Issue found and various fixes tested by mpi@. Feedback from beck@ and reyk@. ok mpi@ | |||
| 2015-12-12 | add keyboard backlight variable | Joerg Jung | |
| tested by Bryan Vyhmeister, krw, tb, and myself ok jcs krw tb | |||
| 2015-12-12 | In olden times (i + u + e) was considered a clever way to 'or' | Kenneth R Westerback | |
| together three boolean values. In today's englightened world we know about '||'. Pointed out by naddy@ | |||
| 2015-12-12 | Open disk READONLY if none of i, e or u are specified. | Kenneth R Westerback | |
| Suggestion, original diff and ok naddy@ | |||
| 2015-12-11 | there are no boot_ pages for armish or landisk that i can see, | Jason McIntyre | |
| so remove their references; while here undo a predefined string (as mandoc_char(7) calls them); | |||
| 2015-12-11 | Add '-v' flag that forces the display of both GPT's and the MBR. | Kenneth R Westerback | |
| Useful for seeing exactly what is currently on the disk. Suggested by a request from kettenis@. Man page & usage ok jmc@ | |||
| 2015-12-10 | Pledge. | Kenneth R Westerback | |
| Diff from Ricardo Mestre. ok deraadt@ | |||
| 2015-12-10 | Remove NULL-checks before free(). ok tb@ | mmcc | |
| 2015-12-10 | comment typo | mmcc | |
| 2015-12-09 | Remove plain DES encryption from IPsec. | Christian Weisgerber | |
| DES is insecure since brute force attacks are practical due to its short key length. This removes support for DES-CBC encryption in ESP and in IKE main and quick mode from the kernel, isakmpd(8), ipsecctl(8), and iked(8). ok mikeb@ | |||
| 2015-12-09 | Revert SIOCDIFADDR_IN6 fix. | Martin Pieuchot | |
| It's not possible to fix this issue in ifconfig(8) because in_control() and in6_control() have a subtle semantic difference which result in breaking alias for IPv4. in_control() always select the first address on the list of an interface whereas in6_control() doesn't. That's why ifconfig(8) passes an empty "struct in_aliasreq" and that fails in netinet6. Breakage reported by deraadt@ | |||
| 2015-12-09 | add braces to correct pledge logic | Jonathan Gray | |
| ok deraadt@ | |||
| 2015-12-08 | spaces to tabs | Ted Unangst | |
| 2015-12-07 | Add imsg "peerid" to debug messages (only within -DDEBUG). | Reyk Floeter | |
| 2015-12-07 | Sync proc.c, use shorter proc_compose[v]() | Reyk Floeter | |
| 2015-12-07 | sync with vmd | Reyk Floeter | |
| 2015-12-07 | Convert to arc4random_uniform. | tb | |
| ok krw@ | |||
| 2015-12-06 | remove trailers option that was already obsolete when this code was imported. | Ted Unangst | |
| ok benno krw | |||
| 2015-12-06 | remove txpower option. only relevant to the now irrelevant wi driver. | Ted Unangst | |
| (several other drivers misleadingly claim generic 802.11 txpower, but do not in fact do anything. the knob is not connected to the radio.) ok benno jsg krw reyk | |||
| 2015-12-06 | Use __progname instead of manually handling argv[0]. | Tobias Stoeckmann | |
| ok deraadt, mmcc, tedu | |||
| 2015-12-06 | Avoid out of boundary access on illegal command line arguments. | Tobias Stoeckmann | |
| ok deraadt, mmcc, tedu | |||
| 2015-12-05 | EAGAIN handling for imsg_read. OK henning@ benno@ | Claudio Jeker | |
| 2015-12-03 | No need to continuously check the current rdomain of the interface | Kenneth R Westerback | |
| using the SIOCGIFRDOMAIN ioctl. If the rdomain is changed an RTM_IFINFO message is generated on the old rdomain indicating the interface is down. This will cause dhclient to exit, just like our manual check did but even faster! Should make pledging easier. Behaviour confirmed by phessler@ | |||
| 2015-12-03 | Document etherip(4) as another tunnel interface. | Stuart Henderson | |
| 2015-12-03 | Print the interface index which is part of the route msg header. | Claudio Jeker | |
| mpi@ and benno@ agree | |||
| 2015-12-02 | remove unimplemented PF_KEY algorithms; ok sthen@ mpi@ mikeb@ | Christian Weisgerber | |
| 2015-12-01 | Send solbourne to where the ........... | Theo de Raadt | |
| 2015-12-01 | Send Aviion to same place as Nova II | Theo de Raadt | |
| discussed with jsg | |||
| 2015-12-01 | Fix inexplicable use of 'disk' instead of 'disk.name' when trying to | Kenneth R Westerback | |
| print the disk's name in an error message. | |||
| 2015-12-01 | Make '-i' set 'reinited' flag so that the initial Xwrite() will zap | Kenneth R Westerback | |
| any undesirable GPT hanging around. i.e. same as 'reinit' from the fdisk(8) command line. Noticed now that install media relies on '-i' rather than issuing 'reinit' in a script. | |||
| 2015-11-29 | use ping6(8)'s engine; next step in unification | Florian Obser | |
| OK benno@ | |||
| 2015-11-29 | Reimplement source address selection. Inspired by the previous | Florian Obser | |
| traceroute / traceroute6 merge. Next step in unification. OK benno@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |