| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-06-15 | document pfctl -ss -R <rule>, ok mikeb@ | Stuart Henderson | |
| 2015-06-12 | Allow rule ID filter to be specified for show states output | Mike Belopuhov | |
| Tweak pfctl to respect the rule ID parameter (-R) specified along with the show states (-s states) option to filter out states that are not associated with a given rule from the output. ok sthen, benno | |||
| 2015-06-11 | Use "compliant" header guards by avoiding the reserved '_' namespace. | Reyk Floeter | |
| Pointed out by Markus Elfring OK mikeb@ millert@ | |||
| 2015-06-05 | Fix coupling and decoupling operations. | vgross | |
| With help and ok from mikeb@ | |||
| 2015-06-03 | Do not assume that asprintf() clears the pointer on failure, which | Todd C. Miller | |
| is non-portable. Also add missing asprintf() return value checks. OK deraadt@ guenther@ doug@ | |||
| 2015-05-30 | fix usage(); | Jason McIntyre | |
| 2015-05-29 | do not need non-NULL-check before free(p), other minor refactoring | Theo de Raadt | |
| from Benjamin Baier | |||
| 2015-05-29 | remove duplicate assignments; from Benjamin Baier | Theo de Raadt | |
| 2015-05-29 | Initial addition of ``Patrol Read'' support in bio(4), biocto(8), and | Masao Uebayashi | |
| mfi(4). Based on FreeBSD, but done without mfiutil(8). OK deraadt@ | |||
| 2015-05-26 | build wsconsctl and wsconscfg on armv7 | Jonathan Gray | |
| 2015-05-25 | bump up the default Diffie-Hellman group to modp3072; ok mikeb@ djm@ | Christian Weisgerber | |
| 2015-05-23 | Canonicalize all devices to DUIDs in order to make -w and -W output consistent. | Philip Guenther | |
| Based on diff from Manuel Giraud (manuel (at) ledu-giraud.fr) Thanks! | |||
| 2015-05-19 | improve spacing in disklabel template. | Igor Sobrado | |
| 2015-05-18 | Tweak parsing so that hostnames starting with 0-9 are accepted. | Kenneth R Westerback | |
| Reported long ago by matthieu@. Also Jacob Berkman via the lists. Tests and suggestions from Jacob and Matthieu. | |||
| 2015-05-18 | Stop rejecting leases with a subnet that overlaps a subnet already | Kenneth R Westerback | |
| present. The latest routing stack code can now handle these situations. Much requested by beck@ and others. Detailed discussion at s2k15 identified required routing changes. ok claudio@ | |||
| 2015-05-17 | nope, ioctl has not been used for a while | Theo de Raadt | |
| 2015-05-11 | explicit_bzero(3) on private data, in case of core dumps (and being a good ↵ | Martin Pelikan | |
| example) ok florian jsing | |||
| 2015-05-08 | Add a new `don't read back' flag for variables, to prevent reading their value | Miod Vallat | |
| after modifying them. Give this flag to `display.focus', since screen switching is asynchronous, and reading back will return the screen we are switching from if the switch has not completed yet. Also, disallow -= and += syntax for display.focus, as it doesn't make any sense. | |||
| 2015-05-08 | Separately track the number of items in alloc_table in a variable. With | Stuart Henderson | |
| the changes for handling template files in r1.293, alloc_table became a pointer to an array of structs (rather than the array itself), so nitems(alloc_table) no longer returns the number of elements. As found by sebastia@, autosize would only try the first allocation scheme, so installation would fail on small disks. ok henning@ | |||
| 2015-05-06 | Document that priority 1 is reserved for kernel use. | Martin Pieuchot | |
| 2015-05-03 | Eliminate the -U flag and make usage of DUID in /etc/dumpdates the default. | Philip Guenther | |
| Correct old style entries so nothing has to be done for the admin. diff from Manuel Giraud (manuel (at) ledu-giraud.fr) Thanks! | |||
| 2015-05-02 | de-castify strtonum to make it consistent again. | Florian Obser | |
| Pointed out by bluhm@; no object change. OK bluhm@, krw@ | |||
| 2015-05-02 | Use IPV6_MAXHLIM instead of 255; pointed out by bluhm@ | Florian Obser | |
| No object change. | |||
| 2015-05-02 | A ttl of 0 is valid. While here use MAXTTL instead of 255. | Florian Obser | |
| Input bluhm@, OK krw@ | |||
| 2015-05-02 | Hoist common assignments out of a series of if/if-else statements | Kenneth R Westerback | |
| in get_token(). Simplifies code and shrinks future diff. No intentional functional change. | |||
| 2015-05-02 | Correct switch between current and previous line buffers when | Kenneth R Westerback | |
| encountering a carriage return in the input. Found by jsg@ a long time ago in a respository far, far away. | |||
| 2015-05-02 | Use strtonum() when parsing argument list, as ping(8) does. Give | Kenneth R Westerback | |
| or take a cast. Tweak error messages to also be consistant with ping(8). Change lower bound of '-h' to 0 from -1 at the request of florian@. Tweaks and suggestions from, ok florian@ | |||
| 2015-04-29 | some fine-tuning in SYNOPSIS, usage, and order of options, with jmc | Henning Brauer | |
| 2015-04-29 | g/c unneeded second char * var, ok benno | Henning Brauer | |
| 2015-04-29 | support passing a template file for the auto-allocation to disklabel. | Henning Brauer | |
| template gives mountpoints, min-max size ranges and percentage of disk foremost intended for autoinstalls, installer bits to follow soon. with input from many, ok theo | |||
| 2015-04-28 | Someone went to the trouble of vertically aligning a set of parameters but | Mike Larkin | |
| missed one. This diff is only a spacing change. | |||
| 2015-04-27 | route show does not need to filter unwanted af itself, the sysctl does | Sebastian Benoit | |
| that for us. approach seems sound deraadt@ ok claudio@ mpi@ henning@ phessler@ | |||
| 2015-04-26 | Fix glitches in previous commit: strip the \n and only complain on failure | Philip Guenther | |
| ok deraadt@ | |||
| 2015-04-23 | error in strtonum() conversion; found by Nathanael Rensen | Theo de Raadt | |
| 2015-04-21 | Improve divert-to specification parsing w.r.t. rule address family. | Mike Belopuhov | |
| ok henning | |||
| 2015-04-21 | No need to do "size = (size_t)sb.st_size" both before and after | Jonathan Gray | |
| a fstat() call. ok mikeb@ markus@ | |||
| 2015-04-20 | Log if we refuse to continue the exchange when another one that corresponds | Mike Belopuhov | |
| to the same policy is already active. OK markus, hshoexer | |||
| 2015-04-20 | port src/sbin/ping/ping.c r1.119 and r1.121 to ping6: | David Gwynne | |
| > add a mac to the timestamp payload and calculate it with siphash. > > this lets us have some confidence that the timestamp hasnt been > damaged or tampered with in transit. > > discussed with jp aumasson > ok florian@ | |||
| 2015-04-20 | fold the icmp seq number into the mac. | David Gwynne | |
| i dont know why i missed this before. | |||
| 2015-04-19 | by default fill the ping payload with a chacha stream instead of | David Gwynne | |
| an unvarying payload. each ping process generates a random key, and each packet then uses the timestamps mac as the IV for the stream. this allows us to have a different payload per packet that we can recalculate and compare in the same was as the static payload was checked before. by aggressively varying the payload we hope to generate more opportunities for dodgy network equipment to show errors. note that we do siphash before chacha because we want to be strict about the timestamp payload, but we want to be able to recognise errors in the rest of the payload and where those errors were. doing chacha before siphash would have us than fail the whole packet if a checksum doesnt match. discussed with jp aumasson ok florian@ | |||
| 2015-04-19 | add a mac to the timestamp payload and calculate it with siphash. | David Gwynne | |
| this lets us have some confidence that the timestamp hasnt been damaged or tampered with in transit. discussed with jp aumasson ok florian@ | |||
| 2015-04-18 | Convert many atoi() calls to strtonum(), adding range checks and failure | Theo de Raadt | |
| handling along the way. Reviews by Brendan MacDonell, Jeremy Devenport, florian, doug, millert | |||
| 2015-04-17 | Remove unsupported SADB_X_IDENTTYPE_CONNECTION; OK markus, hshoexer | Mike Belopuhov | |
| 2015-04-16 | Tweak error output. | Gleydson Soares | |
| ok krw@ | |||
| 2015-04-14 | Remove support for storing credentials and auth information in the kernel. | Mike Belopuhov | |
| This code is largely unfinished and is not used for anything. The change leaves identities as only objects referenced by ipsec_ref structure and their handling requires some changes to support more advanced matching of IPsec connections. No objections from reyk and hshoexer, with and OK markus. | |||
| 2015-04-11 | Re-enable the RAID 5 discipline for softraid(4). | Joel Sing | |
| The RAID 5 implementation has been largely rewritten during the last two hackathons in Dunedin - it now needs further testing and usage. | |||
| 2015-04-04 | banished the attic | Theo de Raadt | |
| 2015-04-02 | Don't printf("offset: ...) before every call to MBR_print(). Do it | Kenneth R Westerback | |
| once inside MBR_print(). | |||
| 2015-03-30 | Even better -- readsector() and writesector() become DISK_readsector() and | Kenneth R Westerback | |
| DISK_writesector() and live in disk.[ch]. | |||
| 2015-03-30 | Nuke declaration of unused and non-existant function MBR_print_disk(). | Kenneth R Westerback | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |