| Age | Commit message (Collapse) | Author |
|---|
|
closed. e.g. dhcpd has been killed.
ok henning@
|
|
Benjamin Baier <ben at netzbasis dot de>
|
|
Found by Benjamin Baier with llvm/scan-build; OK florian@
|
|
driver should just say it's not installed and not try to install it.
|
|
|
|
|
|
|
|
|
|
wondering... :)
|
|
|
|
maximum syslog message size to 8192 octets. Restrict UDP sending
to 1180 octets payload to avoid fragmentation. This is more than
the 1024 we supported before.
Also truncate the line in printline() to exactly 8192 bytes regardless
of visual encoding. That is a more predictable behavior and makes
testing easier.
Although syslog(3) does not support long messages yet, make sure
that /dev/log can receive them.
OK deraadt@
|
|
- Fix 0x20 capsforid fallback to omit gratuitous NS and additional
section changes.
ok sthen@
|
|
Increase it to 256 bytes and call it ebuf everywhere.
OK sthen@
|
|
OK jmc@
|
|
callback when the connected socket is writable. This avoids calling
a NULL error callback.
OK deraadt@
|
|
Actually testing it caused me to write correct (and simpler) code...
|
|
of ports. It is now possible to use "listen on * port www" again.
Found by ajacoutot@
OK ajacoutot@ blambert@
|
|
ensures that a LSA withdrawal is not acked by a previous update.
From Florian Riehm; OK claudio@
|
|
and hostname of the TLS server before sending any messages to it.
Per default /etc/ssl/cert.pem is used as CA file.
OK deraadt@
|
|
caused a conflict with a new function in LibreSSL but wasn't even used
by ldapd. No functional change.
OK deraadt@
|
|
|
|
|
|
- Synthesize CNAMEs with same TTL as DNAME.
ok sthen@
|
|
|
|
|
|
|
|
friends. So long and thanks for all the fish.
ok deraadt@
|
|
help legibility. (unix system calls use 0 for ok, but hundreds of
other projects use 1 to indicate success.) Despite the name, many
system calls (e.g., open) also return not OK values for success.
It also cleans up some weird code like int crontab_fd = OK - 1;
This diff is mechanical in nature. Later I will fix the bugs it reveals.
ok deraadt
|
|
|
|
I think the level of debug code in cron is excessive for a program
that has reached feature complete. If cron needs to provide more
information to the user about its operational status, I think syslog
would be more appropriate. (The debug flags also disable forking
into the background, so they aren't even that useful for debugging a
live system.)
ok deraadt millert
|
|
|
|
static. noticed by florian riehm
|
|
positive during grep'ing.
OK reyk
|
|
manual review. Based on common practice, relayd.h now includes the
necessary headers for itself.
OK benno@
|
|
|
|
|
|
Repeat after me: "Lines are not longer than 80 characters long" and
"mg(1) is the only true editor, I'll use ESC-q to wrap the lines".
|
|
Pointed out by dickman@.
ok sthen@ phessler@
|
|
the internal and long-serving ssl_ctx_load_verify_memory() function
with a call to the SSL_CTX_load_verify_mem() API function. The
ssl_privsep.c file with hacks for using OpenSSL in privsep'ed
processes can now go away; portable versions of smtpd and relayd
should start depending on LibreSSL or they have to carry ssl_privsep.c
in openbsd-compat to work with legacy OpenSSL. No functional change.
Based on previous discussions with gilles@ bluhm@ and many others
OK bluhm@ (as part of the libcrypto/libssl/libtls diff)
|
|
Regenerate the amd's NFS RPC stubs with a current rpcgen, automating the
post-generation tweaks to the svc stubs. However, do follow the modern
naming style where the svc stubs have a _svc suffix.
As a side benefit, this eliminates the need to #include <nfs/nfsproto.h>
This is all a prelude to updating amd to talk NFSv3 with the kernel for
its own "toplvl" mounts, to squash another y2038 issue.
|
|
Pointed out by florian@
|
|
needed by its ancestor. jsg@, include-what-you-use, and some manual
review helped to cleanup the headers (take iwyu with a grain of salt).
Based on common practice, httpd.h now also includes the necessary
headers for itself.
OK florian@
|
|
ports is ready, <net/pfvar.h> will stop including a pile of balony.
|
|
one run out of inetd.
the libexec tftp-proxy had the same problems as the libexec tftpd, in that
it didnt scale as well as we needed. it also had a bunch of interesting
races with states and addresses on sockets.
manpage is coming.
ok deraadt@ sthen@ henning@ matthew@
|
|
ABI change, so roll the RPC protocol version; how about 57 for OpenBSD 5.7?
|
|
|
|
correct the texinfo validation errors, then re-enable validation
|
|
post-processing of the server stub to match previous local changes.
This corrects the type handling of mt_mounttime, so "amq /mountpoint"
doesn't segv trying to treat a time_t as a pointer.
With the file (re)generation fixed, we can more easily update the
protocol to support 64bit time_t...
|
|
|
|
If the network is unreachable when ntpd starts and host_dns fails, be sure
that we still close the HOST_DNS imsg.
Thanks to Paul de Weerd <weerd at weirdnet dot nl> for reporting this.
ok beck@
|
