| Age | Commit message (Collapse) | Author |
|---|
|
diff From: Navan Carson
confirmed/ok mikeb
|
|
with autoconf enabled.
If one is doing SLAAC one does already trust link local icmp6 so the
policy for icmp6 redirects should be the same.
pointed out by & OK bluhm@; OK henning@
|
|
in OpenSSH. The "private use" DH group 1034 is based on the value
that was picked by strongswan recently.
OK mikeb@ markus@
|
|
either iked or isakmpd should be synced to the other daemon. The
previous changes from iked include: plug two memory leaks, verify EC
points and add the Brainpool curves. All tests in
regress/sbin/isakmpd/dh passed OKAY.
ok markus@ mikeb@
|
|
previously been added to LibreSSL's libcrypto.
ok markus@ mikeb@
|
|
The latter close is from a sweep of the tree looking for fdopen problems.
While reviewing the patch, gerhard@ fixed another leak.
ok gerhard@
|
|
concept ok deraadt@
diff looks ok tedu@
|
|
This bug was reported by Julian Hsiao.
ok concept deraadt@, miod@
mountd.8 diff is from jmc@. ok doug@
mountd.c diff is from me. ok miod@
|
|
ok jca@
|
|
DIOCADDRULE EBUSY turns into an error message that pfctl -n catches.
DIOCXCOMMIT EINVAL after the kernel rejected the rules was reported
to occur, possibly from hfsc.c: this should be fixed as well.
ok henning mikeb sthen
|
|
ok gerhard@ (also corrected first version)
|
|
|
|
|
|
entries.
ok florian@, mikeb@, henning@
|
|
now instead of terminating the process.
ok mikeb@
|
|
512 bytes. As a result, it stopped working...
ok miod
|
|
ok krw@
|
|
|
|
|
|
From Maurice Janssen (maurice (at) z74.net)
|
|
From "Vigdis" via misc@
can go in deraadt@
|
|
|
|
halex@ and krw@ pointed out that a NULL check before free can go, too.
ok deraadt@, halex@, krw@
|
|
Fix very hard to reach DoS attack vector, which would involve more than
8 billion network packets. Mixture of many many malformed and proper
packets could result in a division by zero.
ok krw@
|
|
for addresses configured on the system, and prevents userland from
deleting them. Just skip those routes when flushing.
Problem noticed by mlarkin@, ok henning@ mpi@ claudio@ sthen@ deraadt@
|
|
From natano@bitrig, ok deraadt@
|
|
being-standardized <endian.h>
ok deraadt@ millert@ beck@
|
|
the errno of an intervening cleanup operation like close/unlink/etc.
Diff from Doug Hogan (doug (at) acyclic.org)
|
|
Don't put a format string that's only used once in a variable.
|
|
From: Maximilian Fillinger
|
|
The child after fork() should use _exit() instead of exit().
Fix comment typo.
ok millert@
|
|
|
|
in case of catastropy. But it is so poorly documented that any admin
is more likely to store the labels elsewhere, so let's stop bothering
with providing the directory. Discussed a bit, no objections.
|
|
rather than adding "net" to the -o list, claudio points out that
-o net and -o noauto are really noops, so remove "noauto";
help/ok claudio
|
|
allocation failure; ok krw@
|
|
ok deraadt
|
|
corresponding comment in Makefile;
ok claudio deraadt
|
|
|
|
The reason being that ext2 structures are little-endian but JBD2 journal
is big-endian. Don't confuse readers by talking about "file system endian".
While here, nuke the copy of bswap.c and link it against the kernel's like
fsck_ext2fs has done, for better maintainability.
ok guenther
|
|
The reason being that ext2 structures are little-endian but JBD2 journal
is big-endian. Don't confuse readers by talking about "file system endian".
ok guenther
|
|
tight renew loop. Caused by recent reshuffling of code in
bind_lease().
|
|
|
|
|
|
selection of file systems with option 'net'. Again this will be used
by the rc script to fsck iscsi file systems before mounting them.
Again by default file systems with the net option are ignored when
scanning fstab.
"Get it in" deraadt@
|
|
File systems marked with net will not be mounted by default.
mount -a -N will mount all those file systems instead.
This will be used to mark file systems needing network to work -- in
other words which depend on iscsid.
"Get it in" deraadt@
|
|
investigators some clue why dhclient may have gotten confused when
some RTM_ messages vanish.
sthen@ thinks this is a good start.
|
|
no breakage involved, but wasn't correct in the SMALL case either
|
|
From: Josh Grosse
i've actually just whacked the titles to keep it brief
and avoid the mess of the punctuation added by these macros.
|
|
Please note that proc.c should be kept identical in relayd, iked and
snmpd (currently without the includes).
ok benno@
|
|
|
