Age | Commit message (Collapse) | Author |
|
c99 6.11.5:
"The placement of a storage-class specifier other than at the beginning
of the declaration specifiers in a declaration is an obsolescent
feature."
ok guenther@
|
|
Long time ago pipex(4) sessions can't be deleted until pipex(4) queues
become empty. Such dead sessions stay linked to the stack and the
session `ip_forward' flag was used to prevent packets processing. But
now pipex(4) session could be closed just after close request. This
logic became unnecessary.
PIPEXCSESSION ioctl(2) will be removed from kernel with upcoming diff.
ok yasuoka@
|
|
jmc@ dislikes a comma before "then" in a conditional, so leave those
untouched.
ok jmc@
|
|
|
|
In the upcoming libcrypto bump, EVP_MD_CTX will become opaque, so
all EVP_MD_CTX variables will need to be moved from the stack to
the heap. This is a mechanical conversion which also switches
from EVP_Digest{Init,Final}() to their _ex() versions as suggested
by millert.
We cannot do error checking since this code is structured in
several layers of void functions. This will have to be fixed
by someone else.
ok millert
|
|
From Jan Stary. OK deraadt@
|
|
functions that take "char *" arguments. Where such chars are
assigned to int or passed to ctype functions, explicitly cast them
to unsigned char.
For OpenBSD's clang, -Wpointer-sign has been disabled by default,
but when the parse.y code was built elsewhere, the compiler would
complain.
With help from millert@
ok benno@ deraadt@
|
|
from npppd(8). They had been disabled for long time.
|
|
suggested by jsg
|
|
couldn't handle ICCN message which has a ProxyAuthenChallenge AVP
longer than 24 octets. Juniper actually send such challenges.
Reported and tested by Ryan Freeman.
|
|
ok yasuoka@
|
|
|
|
OpenBSD 6.7 npppd(8) can't work over tun(4).
ok yasuoka@
|
|
and were kept only for backward compatibility reasons.
ok mpi@ yasuoka@
|
|
ok mvs@ kn@
|
|
before accessing anything in ifa_addr.
ok claudio@
|
|
pipex(4) sessions. We did this for prevent use after free issue caused
by pipex_timer(). By default "idle-timeout" is not set in
npppd.conf(5) and I guess this is reason for we forgot to describe this
exception in npppd.conf(5).
Since it's pppx(4) related bug description was added to BUGS section of
pppx(4) man page.
npppd.conf(5) has this exception described in "idle-timeout" section.
ok jmc@ yasuoka@
|
|
store radius passwords and nothing requires it to be group readable.
ok yasuoka@
|
|
and advised by dlg;
|
|
use them separately. Actually a version of CISCO does and expects the
peer does the same. Also fix some typos.
|
|
|
|
This is necessary to not silently continue if pppx_ioctl() returns an
error.
Found out by and diff from Vitaliy Makkoveev.
ok yasuoka@
|
|
|
|
|
|
|
|
getcap->cgetent. pwcache->user_from_uid. And then repair references.
ok jmc
|
|
ok krw@, jsg@
|
|
|
|
|
|
OK yasuoka@
|
|
|
|
|
|
larger types really is a range reduction...
Almost any cast to (unsigned) is a bug.
ok millert tb benno
|
|
where the "wrong" #define was used.
ok dlg@
|
|
ok deraadt@
|
|
(and other lexers too)
This commit rectifies earlier change:
in the lex... even inside quotes, a \ followed by space or tab should
expand to space or tab, and a \ followed by newline should be ignored
(as a line continuation). compatible with the needs of hoststated
(which has the most strict quoted string requirements), and ifstated
(where one commonly does line continuations in strings).
OK deraadt@, OK millert@
|
|
failure of assigning requested IP address on IPCP, it was mistakenly "-1"
on little endians. Found by IIJ.
|
|
calloc or strdup), we just need to log that we ran out of memory in a
particular function.
Recommended by florian@ and deraadt@
ok benno@ henning@ tb@
|
|
running out of memory.
Next step, be correct *and* consistent.
ok dennis@ tb@ benno@ schwarze@
|
|
use a more general text for the sections, and avoid the catchup issue
that was trying to document how many there were;
ok benno rob
|
|
From Raf Czlonka, ok sthen@
|
|
ok kettenis@, visa@, claudio@, deraadt@
|
|
be fixed at 1.16, but it wasn't fixed. Fix it again.
|
|
It can set limits on different max-sessions if there're using several protocols
such as PPPoE and L2TP/IPsec.
ok yasuoka@
|
|
It can set limits on different user-max-sessions if there're using several
protocols such as PPPoE and L2TP/IPsec.
ok yasuoka@
|
|
ok yasuoka@
|
|
very ugly output in man -k; after some discussion with ingo, we feel
the simplest fix is to remove such SYNOPSIS sections: the info is hardly
helpful at page top, is contained already in FILES, and there are
sufficiently few that just zapping them is simple;
ok schwarze, who also helpfully ran things through a build to check
output;
|
|
instead of CLEANFILES += y.tab.h
okay millert@
|
|
parameters in modern way.
|
|
|