| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2009-06-02 | Also match on 'master.passwd.byuid'. Fixes a problem with lookup by uid. | Bernd Ahlers | |
| ok pyr@ | |||
| 2009-06-02 | Make show rib as and show rib community use the same dump code as the other | Claudio Jeker | |
| show rib commands. This makes the output sorted by prefix and not some rather randomly output. | |||
| 2009-06-02 | Move the rest of the rib dump functions into rde_rib.c where it belongs. | Claudio Jeker | |
| 2009-06-01 | Use only one list to queue the dump contextes on. Use the list in struct | Claudio Jeker | |
| rib_context instead of the ctl specific rde_dump_ctx to make it more general. | |||
| 2009-06-01 | no endpwent | Henning Brauer | |
| 2009-06-01 | no we don't need endpwent | Henning Brauer | |
| i remember we already had the confusion and bgpd doesn't have the endpwent | |||
| 2009-06-01 | yet another cleanup in mfa/lka, don't roll their own loops to release maps | Gilles Chehade | |
| and rules when config.c provides us with purge_config(), PURGE_MAPS and PURGE_RULES. kills lots of lines with no functionnal change. ok jacekm@ | |||
| 2009-06-01 | Do not call the upcall twice on some prefixes. Move the upcall back to | Claudio Jeker | |
| where it was beforhands. | |||
| 2009-06-01 | add new file ruleset.c with code related to the ruleset matching, and kill | Gilles Chehade | |
| the two or three "almost" identical versions of ruleset matching loops from lka and mfa by having one unified function in ruleset.c; ok jacekm@ while at it, bring maildir support back to life; trivial one-liner by me | |||
| 2009-06-01 | Holy simplification batman. Use the per rib entry flags to lock entries | Claudio Jeker | |
| when interrupting rib dumps and now we no longer need evil RB magic to find the next entry on restart. | |||
| 2009-06-01 | Instead of storing a pointer to the RIB head in the RIB element use that | Claudio Jeker | |
| space for a flags field and the RIB id. In the end bgpd will be able to lock RIB elements and therefore make it possible to interrupt all tree walks. | |||
| 2009-06-01 | propagate the recipient domain through aliases expansion, this fixes a bug | Gilles Chehade | |
| that would trigger when smtpd.conf does not have an "accept for local" rule and we attempt to deliver to a domain for which we are a destination. spotted by jacekm@, fix by me and ok jacekm@ | |||
| 2009-06-01 | Welcome ldpd, the Label Distribution Protocol daemon. | Michele Marchetto | |
| Built using the imsg/three process framework, its main aim is to redistribute MPLS labels between peers. Right now it has some really basic functionalities, the basic protocol works and peers are able to exchange labels and insert them in the kernel. It still does not react to changes of topology. Not yet connected to the builds. ok claudio@ deraadt@ | |||
| 2009-06-01 | Fix NULL dereference in aml_name.c (acpidump) | Mike Larkin | |
| ok jordan@ | |||
| 2009-06-01 | No need for save_getpwuid and such functions which call endpwent. | Theo de Raadt | |
| endpwent is not needed unless setpwent (with stayopen = 1) or getpwent was used. getpwuid/getpwnam do not use getpwent; i think people must be assuming this. we are going to improve the man pages for this. ok gilles | |||
| 2009-06-01 | fix function name in log_debug | Jacek Masiulaniec | |
| 2009-06-01 | display ssl negociation information in the received line of incoming | Gilles Chehade | |
| sessions; ok jacekm@ | |||
| 2009-06-01 | Don't destroy listening socket when pause/resume request is received, | Jacek Masiulaniec | |
| use event_del/event_add instead; ok gilles@ | |||
| 2009-06-01 | Fix EV_READ/EV_WRITE testing inside IMSG handlers. Based on similar change | Jacek Masiulaniec | |
| to the routing daemons by claudio@; ok gilles@ | |||
| 2009-05-31 | Remove redundant imsg_event_add calls; ok claudio@ | Jacek Masiulaniec | |
| 2009-05-31 | Remove redundant imsg_event_add calls; ok claudio@ | Jacek Masiulaniec | |
| 2009-05-31 | Don't define NFS before including kernel header files, | Thordur I. Bjornsson | |
| besides it being gnarly its useless since no magic is done if it is define. pointed out by deraadt@ | |||
| 2009-05-31 | Remove redundant imsg_event_add calls; ok claudio@ | Jacek Masiulaniec | |
| 2009-05-31 | when entering mta_connect() reset session fd to -1 | Gilles Chehade | |
| when connect timesout and we close the fd, reset session fd to -1 in session_destroy(), only attempt to close session fd if != -1 fixes a fatal in session_destroy() which happened because we closed a fd after a timeout, but the session still assumed the fd to be opened. | |||
| 2009-05-31 | More libevent callback fixes. While there make n also ssize_t as in all | Claudio Jeker | |
| other daemons. | |||
| 2009-05-31 | Better EV_READ and EV_WRITE handling in the libevent callbacks. Again mostly | Claudio Jeker | |
| the same ospfd diff applied with some fuzz. | |||
| 2009-05-31 | libevent handler fix to allow EV_READ and EV_WRITE to be set at the same | Claudio Jeker | |
| time in the callback. Same diff that went into ospfd applied with some fuzz. | |||
| 2009-05-31 | The libevent callback function may be called with EV_READ and EV_WRITE | Claudio Jeker | |
| set at the same time so using a switch to do read or write is a bad idea. Problem noticed by Eygene Ryabinkin on FreeBSD for some reasons it is not triggered on OpenBSD. Fix aggreed by a most other libevent hackers | |||
| 2009-05-31 | use the SCM_TIMESTAMP socket option to get the time we received the | Henning Brauer | |
| reply instead of doing it in ntpd itself by getting the time we read from the socket. based on a diff from mickey hacked in shape by me, lots of testing and review from ckuethe and sthen, theo and claudio like it too | |||
| 2009-05-30 | It is now possible to specify a certificate to use when relaying to another | Gilles Chehade | |
| host which requests client certificates: accept [...] relay via [...] ssl certificate "mycert" diff from Josh Elsasser <josh@elsasser.org>, tested and okayed by me with no change but the addition of status 554 to the state machine to deal with remote host telling us it doesn't like our certificate. | |||
| 2009-05-30 | fatal on setsockopt() failures | Gilles Chehade | |
| 2009-05-30 | Only use a single tree for all address families. There is no need for multiple | Claudio Jeker | |
| trees and the rib trees are also not split. Looks good henning@ | |||
| 2009-05-30 | increment mta.sessions in when we allocate a new session in mta | Gilles Chehade | |
| 2009-05-30 | - increment stats.mta.sessions_active when session is allocated in mta | Gilles Chehade | |
| - reorder alphabetically and add mta to the statistics | |||
| 2009-05-30 | fix a bug where sessions_active counter, used to compute accept limits, was | Gilles Chehade | |
| decremented below 0 after the recent change that moved stats to shared mmap memory. session_destroy() which is called from mta and smtp processes didnt differentiate between them and decremented the counter when we had outgoing sessions destroyed. | |||
| 2009-05-28 | Log the incoming message size; ok gilles@ | Jacek Masiulaniec | |
| 2009-05-28 | Log the "for <foo@bar.com>" part in the Received field; ok gilles@ | Jacek Masiulaniec | |
| 2009-05-28 | Match SMTPAUTH documentation with reality; ok gilles@ | Jacek Masiulaniec | |
| 2009-05-27 | temporary fix to a ruleset processing bug that stems from the fact | Jacek Masiulaniec | |
| that the ip address/subnet parsing isn't done in the same way as in other daemons. fix by gilles@ | |||
| 2009-05-27 | Insert Received: at receive time instead of delivery time; ok gilles@ | Jacek Masiulaniec | |
| 2009-05-27 | After a successful AUTH command completes, reject any further AUTH commands. | Jacek Masiulaniec | |
| ok gilles@ | |||
| 2009-05-27 | request flood mitigation: | Jacek Masiulaniec | |
| 1) each state may have 2 responses sent quickly; 2) more responses are delayed exponentially, up to a defined limit. Delay count is user visible (smtp.errors.delays). ok gilles@ | |||
| 2009-05-27 | Move update and withdraw code into own functions to simplify the necessary | Claudio Jeker | |
| changes to make multiple RIB functional. Also change the way we account the prefixes per peer (for maxprefix check). Every prefix that was added to any RIB is counted. OK henning@ | |||
| 2009-05-27 | add an option to change the "connect-retry" timer which defaults to 120s. | Reyk Floeter | |
| this can be used to decrease the failover time in specific carp'ed IBGP setups. ok henning@ | |||
| 2009-05-25 | merge smtp_listener_setup into its only caller; ok gilles@ | Jacek Masiulaniec | |
| 2009-05-25 | Recent event masking scheme change turned the S_GREETED and S_HELO cases | Jacek Masiulaniec | |
| in session_pickup into unreached code, so remove them; ok gilles@ | |||
| 2009-05-25 | In dispatch_rtmsg_addr() don't fatal on missing multipath deletes. Not 100% | Claudio Jeker | |
| sure why it happens but it is not a fatal condition. A warning should still be logged because it is not good to miss updates. | |||
| 2009-05-25 | Disallow submission using /usr/sbin/sendmail while the server is | Jacek Masiulaniec | |
| paused, configuring, or exiting; ok gilles@ | |||
| 2009-05-25 | add a missing check for truncated dport in the returned UDP header for | Stuart Henderson | |
| ICMP_UNREACH_PORT. from Peter J. Philipp, ok jsing@. Closes system/6149. | |||
| 2009-05-24 | Parent process shouldn't be base64-decoding untrusted strings, move | Jacek Masiulaniec | |
| this code to privsep smtp process; ok gilles@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |