summaryrefslogtreecommitdiff
path: root/usr.sbin
AgeCommit message (Collapse)Author
2007-03-13Don't call rtlabel_unref() twice on RTM_DELETE. kroute_remove() does itClaudio Jeker
so don't unref before calling kroute_remove() or we end up with wrong reference counts.
2007-03-13Same problem as in ospfd's kroute.c don't check rtm_tableid without verifyingClaudio Jeker
that rtm_type is one of RTM_ADD, RTM_CHANGE or RTM_DELETE.
2007-03-13rtm_tableid is only valid for RTM_ADD, RTM_CHANGE and RTM_DELETE but notClaudio Jeker
for stuff like RTM_IFINFO or RTM_IFANNOUNCE. So move check to a save location. Always check rtm_type before accessing some random value inside the route message.
2007-03-13er,, no, we don't compile everything with -gHenning Brauer
2007-03-13typos in comments; ok millert@Kevin Steves
2007-03-13allow to specify the IP_TTL and IP_MINTTL options for the relays toReyk Floeter
support the Generalized TTL Security Mechanism (GTSM) according to RFC 3682. this is especially useful with inbound connections and a fixed distance to the backend servers. ok pyr@
2007-03-12When running show commands that are restarted make sure that we eitherClaudio Jeker
have pending imsgs to send or that we reduce the poll timout to 0. This fixes hanging and extrem slow performing bgpctl show rib commands. Found by Jon Morby additional testing by Stuart Henderson. OK henning@
2007-03-12hoststated.conf is not a program.Reyk Floeter
thanks to Sebastian Reitenbach, closes pr 5409
2007-03-07- fix the hoststatectl host disable/enable commands to work with relayReyk Floeter
layer 7 loadbalancing. - allow to run relays with tables without depending on services - show hosts and tables assigned to relays in hoststatectl show commands ok pyr@ deraadt@ with some input from mcbride@
2007-03-07support "bgpctl show rib peer-as NN", From: Armin Wolfermann <aw@osn.de>Henning Brauer
ok theo
2007-03-07fix size checks for good. Since we want deletion to happen `right now'Marc Espie
but size accounting to happen later, just mark the size to delete `for later', do not take them into account for avail(), and synchronize() at the right time, e.g., after addition when updating, and right away for straight deletion. okay deraadt@
2007-03-07revert size check tweak, the fix does break other stuff. this is harderMarc Espie
than I thought...
2007-03-06get vfs size snapshotted and restored so that pkg_add -u has a harderMarc Espie
time overflowing the disk. let stem work at the end of urls. test sturm@ and bernd@, okay deraadt@
2007-03-06fix the health checks when using the retry optionReyk Floeter
2007-03-06add support for handling simple HTTP cookies (no per-path/domainReyk Floeter
cookies yet), for example: cookie hash "JSESSIONID" tested by some people ok pyr@
2007-03-06allow filtering on peer-as (leftmost AS in path), ok claudioHenning Brauer
2007-03-06prepare, but leave disabled, verbose operation so that you can see what isHenning Brauer
going on (helps when the damn thing runs for hours). will be enabled with a -v somewhen in the future
2007-03-06mention log to pipe in the blurb here. the details are all in syslog.conf.5,Henning Brauer
the syslogd.8 blurb has just a list.
2007-03-06tidy up synopsis, usage(), and options list; from Igor SobradoJason McIntyre
2007-03-06minor tweak;Jason McIntyre
2007-03-06- Pass full buffer to fgets().Ray Lai
- Use sizeof(buf) instead of BUFSIZ. - Only overwrite '\n'. From Charles Longeau. OK millert@ and moritz@.
2007-03-06Remove code that's been commented out since '96.Ray Lai
From Charles Longeau. OK millert@.
2007-03-06another completely bogus route entry, this time openface in their own RR:Henning Brauer
route: 198.73.251.0 no prefixlen... overhaul error handling in prefixset_addmember(). for prefixes without prefixlen or ones where inet_net_pton reports an invalid format, complain and ignore the prefix, but don't err out completely.
2007-03-05RPSL spec says route: is single-valued... nontheless, in the APNIC db:Henning Brauer
route: 203.94.216.0/21, origin: AS17813 so we need to cut trailing ',' away
2007-03-05better diagnostics on inet_net_pton failingHenning Brauer
2007-03-05correctly deal with hierarchical as-set names.Henning Brauer
everything we run into as members that is hierarchical (contains :) has to be an as-set. RPSL requires one component to have the AS- prefix; we check that. now the huge AS-TELIANET correctly resolves - into 15128 unique ASes, takes 12m47.11s real 0m8.62s user 0m1.07s system
2007-03-05Remove _err() calls from getnetgrent.c. This is a minor API changeTodd C. Miller
as _ng_sl_add() now returns a value. The only consumer of that interface is netgroup_mkdb(8). Adapted from NetBSD. OK deraadt@
2007-03-05convert all members of an as-set to uppercase on the fly.Henning Brauer
do the same in asset_expand() for the head as-set or aut-num reference from the policy. fixes duplicate ASes with mixed case seen after set resolution and saves some str(n)casecmp on the way (or rather allows a whole bunch of strcmp to stay)
2007-03-05KNFHenning Brauer
2007-03-05need to eat whitespace at both ends of valHenning Brauer
2007-03-05KNFHenning Brauer
2007-03-05gremlins keep putting tiny KNF violations in my code in the hope I don'tHenning Brauer
spot 'em
2007-03-05better error msgHenning Brauer
2007-03-05loop over the list calling prefix_aggregate until nothing can be aggregatedHenning Brauer
any more. since aggregated entries might be further aggregatable... shaves of another 1200 lines (of ~16900) from the generated ruleset for my AS
2007-03-05lint happinessHenning Brauer
2007-03-05unused vars, lintHenning Brauer
2007-03-05in prefix_aggregate(), when we look at two neighbor prefixes, see wetherHenning Brauer
they can be expressed as one with shorter prefixlen. if so, adjust the first prefix accordingly and return 1 so the second gets removed. shrinks the ruleset for my AS from 19533 to 16892 rules.
2007-03-05do the prefix masking in network byte orderHenning Brauer
2007-03-05sort out more specifics and mark the less specific covering them in a wayHenning Brauer
that the resulting rule allows more specifics. i. e. 10.0.0.0/16, 10.0.1/24, 10.0.128/17 -> prefix 10.0.0.0/16 prefixlen <= 24 implementation: sort prefixes per AS by address family, prefix, prefixlen. for every entry, check wether the prefix with the previous entry's mask applied matches the previous entry's prefix & mask. Only move the previous pointer forward if not so. Fill the holes we create in the process on the fly; shrink the array afterwards. shrinks the generated filters for our AS from over 100k to under 20k lines.
2007-03-05switch to whois.radb.net. The RIPE whois server shows problems, indefinatelyHenning Brauer
hanging connection for a specific query (which works find against radb, investigating with ripe pplz), and ripe doesn't mirror some important RRs like ALTDB.
2007-03-05do not strip the header for expect, hash, and log actions.Reyk Floeter
since we have a tristate in relay_handle_http(), use nicer return codes defined to make it better readble (no function change).
2007-03-05store a maxlen with each prefix. if that is set, this prefix coversHenning Brauer
multiple route objects (i. e. is the result of maksing out longer prefixes or aggregation we'll do later). if maxlen is > prefixlen, generate rules accordingly (prefixlen <= maxlen)
2007-03-05prevent re-use of shit in pbuf from previous rulesHenning Brauer
2007-03-04correct include orderTheo de Raadt
2007-03-04rename struct prefix -> irr_prefixHenning Brauer
2007-03-04store prefixes in binary format. we'll need that for aggregation.Henning Brauer
discussed with pyr
2007-03-04for import rules, filter by source-as tooHenning Brauer
2007-03-04store peer AS numericallyHenning Brauer
2007-03-04pass pointer to struct policy_item down to print_rule() instead of 3 of itsHenning Brauer
members
2007-03-04document include, and commentsHenning Brauer
stolen from hostapd.conf.5
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-13 13:37:31 +0000