| Age | Commit message (Collapse) | Author |
|---|
|
requested by claudio@ and mpi@
|
|
Fixes a gcc warning. No binary change.
Found by and OK deraadt@
|
|
ok mikeb
|
|
noticed by deraadt@
|
|
OK sthen@
|
|
|
|
help/ok claudio
|
|
to random memory so when the sysctl-estimate is too small, the realloc() fails.
Problem reported by Ze Loff, ok claudio
|
|
kvm_getfiles. This allows to run netstat without any extra privileges
and removes another setgid program from base..
There is still kvm reader code in there which is used for debugging
purposes (crashdump). netstat should still behave mostly the same.
deraadt@ and sthen@ agree that it is time to get this puppy in.
|
|
the new sysctls. Looks good deraadt@
|
|
listen queue (backlog) limit or the memory shortage in syn-cache.
ok henning reyk claudio
|
|
|
|
Nobody complained about it missing. It is time to kill it for real.
OK phessler, henning, deraadt
|
|
OK deraadt@
|
|
OK deraadt@
|
|
delete <sys/param.h> if now possible
ok guenther
|
|
under _KERNEL, and adjust the one consumer (netstat) so that it requests
the exposure. Will take a few more rounds to get this right.
ok mikeb
|
|
|
|
possible. Annotate <sys/param.h> lines with their current reasons. Switch
to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_NAME_MAX, etc. Change
MIN() and MAX() to local definitions of MINIMUM() and MAXIMUM() where
sensible to avoid pulling in the pollution. These are the files confirmed
through binary verification.
ok guenther, millert, doug (helped with the verification protocol)
|
|
|
|
|
|
|
|
gets only allocated when needed. This way struct socket shrinks
from 472 to 392 bytes on amd64. When splicing gets active, another
88 bytes are allocated for struct sosplice.
OK dlg@
|
|
ok schwarze@
|
|
In particular, do not call getnetbyaddr(3), use gethostbyaddr(3) only.
Do not call setnetent(3) and the dummy sethostent(3).
OK henning@; and deraadt@ agrees with the general direction.
|
|
|
|
|
|
|
|
pools struct out. however, struct pool in the kernel contains lots
of things that userland probably isnt interested in, like actual
mutexes, and probably shouldnt get easy access to, like pointers
to kernel memory via all the lists/trees.
this implements a kinfo_pool structure that has only the data that
userland needs to know about. it cuts the sysctl code over to
building it from struct pool as required and copying that out
instead, and cuts userland over to only handling kinfo_pool.
the only problem with this is vmstat, which can read kernel images
via kvm, which needs some understanding of struct pool. to cope,
the struct pool definition is guarded by if defined(_KERNEL) ||
defined(_LIBKVM) as inspired by sysctl which needs to do the same
thing sometimes. struct pool itself is generally not visible to
userland though, which is good.
matthew@ suggested struct kinfo_pool instead of struct pool_info.
the kinfo prefix has precedent.
lots of people liked this.
|
|
inconsistent usage in route(8) noted by Gregor Best (gbe (at) ring0.de)
|
|
ok guenther
|
|
Nothing use them for the moment, but here is the plan:
Since a route lookup is always necessary to output a packet it makes
sense to store all the information regarding how the packet should be
sent in the routing entry. This will save us some expensive lookups
on address lists.
But once we have all the information about our addresses in the routing
table, we can even use it in the input path with the hope that the number
of lookups in the forwarding case can be reduce to one.
ok henning@, chris@
|
|
still not identical. OK sthen@ mpi@ jca@
|
|
|
|
Found by csszep (at) gmail.
|
|
|
|
OK benno@ deraadt@
|
|
ok deraadt@
|
|
the previous value again and checking prev.next is still next.
maybe ok guenther
|
|
pointer is forthcoming.
|
|
|
|
in the base. Ports fixes to follow shortly for the two ports (gkrellm
and net-snmp) affected.
ok zhuk@ millert@
|
|
hideroot to show them only to root.
OK deraadt@
|
|
which allows us to modify ifnet structure in a relatively safe way;
discussed with deraadt, ok mpi
|
|
ok benno
|
|
|
|
update the printf format for them. While here, delete a now unused variable.
problem pointed out by Scott McEachern (scott (at) blackstaff.ca)
|
|
|
|
They do not indicate a problem with the reduction of namespace export,
but got suckered into the 1999 plan.
ok benno
|
|
- convert netstat from kvm_getfiles() to kvm_getfile2() using that
- delete kvm_getfiles() and KERN_FILE as no longer used (bump libkvm's major)
- rename kvm_getfile2() to kvm_getfiles(), kinfo_file2 to kinfo_file
and KERN_FILE2 to KERN_FILE.
ok deraadt@, millert@
ports scan sthen@
|
