src - OpenBSD base system

Age	Commit message (Collapse)	Author
2019-11-10	Consistently use _rcctl enable foo_ in examples, it's simpler and less	Landry Breuil
	error prone than manually editing rc.conf.local, and also works to enable ipsec and accounting. tweak from schwarze@ to use the \(dq\(dq syntax for quotes in '.Dl foo_flags="" lines' instead of \&"\&". while at it, fix a reference to a bogus /dev/dhclient.conf file that recently snuck in. ok jmc@ deraadt@ schwarze@
2019-10-18	Plug mem leak in error path; ok florian@ who also spotted the rad case	Otto Moerbeek

2019-09-07	Do not try to send router advertisements on interfaces that have no link.	Florian Obser
	Keeps log noise down on carp backup interfaces. Reported by matthieu Previous version OK deraadt Input & OK benno
2019-09-06	this bit about soii and link-local addresses is no longer needed since	Sebastian Benoit
	florian@ removed soii for link-local adresses in sys/netinet6/in6_ifattach.c rev 1.114 ok florian@ sthen@ kn@
2019-08-08	Fix a bunch of typos in various man pages.	Frederic Cambus

2019-06-28	When system calls indicate an error they return -1, not some arbitrary	Theo de Raadt
	value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if this strictness helps us in the future.
2019-05-10	Delete superfluous #includes of <ifaddrs.h>, <net/if_dl.h>, and <net/if_enc.h>	Philip Guenther
	ok krw@, jsg@
2019-04-12	Unbreak listening for prefix changes.	Florian Obser
	Found the hard way by naddy OK deraadt, phessler
2019-03-31	Avoid calling dup2(oldd, newd) when oldd == newd. In that case the	YASUOKA Masahiko
	descriptor keeps CLOEXEC flag then it will be closed unexpectedly by exec(). ok tedu florian
2019-03-15	Only accept one ICMPv6 and one route socket.	Florian Obser
	This caught a missing break where the ICMPv6 socket was also used as the route socket for a short while. OK pamela
2019-03-15	Correctly interlock config reloads imsgs.	Florian Obser
	Only accept a new config reload if it's not currently running and on accept a config reload end if one is currently running. OK pamela
2019-03-15	Do not accept a control socket if we already have one.	Florian Obser
	OK pamela
2019-03-12	fix line break	pamela
	OK florian@
2019-03-12	In the manner of recent changes to unwind(8) and slaacd(8), make imsg	pamela
	processing more paranoid. Call fatalx() for imsg size mismatches or unexpected/missing imsg fd. OK florian@
2019-03-11	Change fatal() to fatalx() where errno is not set.	pamela
	tweak and OK florian@
2019-03-02	Introduce the IMSG_DATA_SIZE() macro to replace recurring math on ↵	pamela
	imsg.hdr.len to shorten and simplify code. OK florian@
2019-03-01	trailing whitespace	Florian Obser

2019-02-13	(unsigned) means (unsigned int) which on ptrdiff_t or size_t or other	Theo de Raadt
	larger types really is a range reduction... Almost any cast to (unsigned) is a bug. ok millert tb benno
2019-01-29	We don't need IMSG_SHUTDOWN, we can just close the sockets.	Florian Obser
	pointed out by deraadt
2019-01-22	PF_ROUTE -> AF_ROUTE in the scattered sock()/setsockopt() calls	Kenneth R Westerback
	where the "wrong" #define was used. ok dlg@
2019-01-02	minor tweaks;	Jason McIntyre

2018-11-28	Discovered prefixes should not override explicitly configured	Florian Obser
	prefixes. That way one can have multiple prefixes configured on an interface and set "autonomous address-configuration no" in rad.conf to tell clients to not form addresses from some of these prefixes. Pointed out by Ross L Richardson (openbsd AT rlr.id.au), thanks! OK phessler
2018-11-21	Allow rad(8) to watch interface groups; e.g. "interface tap" in rad.conf.	Reyk Floeter
	OK florian@, additional review from kn@
2018-11-16	Don't fatal if IPV6_LEAVE_GROUP fails.	Reyk Floeter
	The underlying interface might have been destroyed or detached and rad(8) will just cope with that. OK florian@
2018-11-09	Document interactions of rad(8), carp(4), and SOII:	Stefan Sperling
	When running rad(8) on top of carp(4), ifconfig carp0 -soii is a good idea. ok florian@ jmc@
2018-11-01	- odd condition/test in PF lexer	Alexandr Nedvedicky
	(and other lexers too) This commit rectifies earlier change: in the lex... even inside quotes, a \ followed by space or tab should expand to space or tab, and a \ followed by newline should be ignored (as a line continuation). compatible with the needs of hoststated (which has the most strict quoted string requirements), and ifstated (where one commonly does line continuations in strings). OK deraadt@, OK millert@
2018-09-16	If a prefix without length was specifed in the config file, then	Alexander Bluhm
	128 was used. This does not make much sense for rad(8). Change the default prefixlen to 64. OK florian@
2018-09-16	With prefixlen 128, mask_prefix() in rad(8) caused a stack overflow	Alexander Bluhm
	in the config parser. Add an out of bounds check for the in6_addr. OK florian@
2018-09-07	replace malloc()+strlcpy() with strndup() in cmdline_symset().	miko
	"looks good" gilles@ halex@
2018-08-15	SIOCGIFNETMASK_IN6 failing just means that someone delete the address	Florian Obser
	we are currently looking at. No need to fatal. Found the hard way by naddy
2018-08-05	Since -s argument is no longer checked, during reexec, the argv size then must	Ricardo Mestre
	be shortened by 1. OK florian@
2018-08-04	Leave the control socket behind on shutdown. It doesn't hurt anyone.	Florian Obser
	On the other hand it is much more powerful to get rid of cpath; rad is no longer allowed to change anything on the filesystem. Triggered by mestre@'s work to fix unlinking in other daemons and a question from deraadt@ OK mestre
2018-08-03	advertise slaacd.8;	Jason McIntyre

2018-08-03	sort; ok florian	Jason McIntyre

2018-08-03	Move dns settings to global options so that they don't need to be	Florian Obser
	repeated in every interface block - they can still be overwritten on a per interface basis. Pointed out by, tweaks & OK sthen
2018-07-21	sort;	Jason McIntyre

2018-07-20	No need to copy rdns_lifetime around with an IMSG, it gets send to the	Florian Obser
	engine end frontend as part of ra_iface_conf. Spotted after explaining to bket@ that a similar pattern is not needed for the mtu option.
2018-07-20	Fix mem leaks on config reload:	Florian Obser
	- always free struct ra_iface_conf with free_ra_iface_conf() - free_ra_iface_conf() needs to free the recently added nameserver and search list
2018-07-20	fix mem leak: missing freeifaddrs	Florian Obser

2018-07-20	Introduce MTU option.	bket
	The MTU option is used in Router Advertisement messages to ensure that all nodes on a link use the same MTU value in those cases where the link MTU is not well known. Feedback (thank you!) and OK from florian@
2018-07-20	We need to track the auto prefix in ra_prefix_conf otherwise we can't	Florian Obser
	configure its options. Trying so lead to a crash. Found the hard way by & OK sthen
2018-07-20	Rename "resolver" to "nameserver" in the configuration file.	Florian Obser
	resolv.conf(5) and dhclient(8) are using the term nameserver for many years, there is no good reason to be different here. Pointed out by deraadt
2018-07-18	Stop our own router advertisements from looping back to us.	Florian Obser
	Pointed out by semarie@
2018-07-18	Don't log_warn on normal conditions, it should be log_debug.	Florian Obser
	Pointed out by semarie@
2018-07-15	tweak previous;	Jason McIntyre

2018-07-15	Implement RFC 8106: IPv6 Router Advertisement Options for DNS	Florian Obser
	Configuration.
2018-07-15	mark up managed / other configuration	Florian Obser

2018-07-15	It's a packet, not package.	Florian Obser

2018-07-15	nuke newd leftover	Florian Obser

2018-07-13	Monitor the route socket and regenerate the list of interfaces and	Florian Obser
	messages to send when an interface shows up or disappears or and address shows up or disappears.