| Age | Commit message (Collapse) | Author |
|---|
|
* to mark opportunistic DoT forwarders; ok florian
|
|
(coincidentally, that's the pattern used for install from ports)
This just requires always passing pkgname thru parse to extract the right
name.
There's definitely a bit of code to clean up in pkg_add afterwards :/
|
|
help bootstrap the process
Clean the code:
- move the decision logic into individual may_grab_debug_for
- acknowledge the PkgAdd object doesn't matter in there, just use class
- for already installed stuff, we skip packages that already exist
|
|
This is beneficial since we prefer strategies according to their
performance.
Previously name servers were upgraded to opportunistic DoT if it was
available even if the round trip times went through the roof and there
was no way to got back to plain udp/53 DNS.
To make up a bit of space in the unwindctl status output, name servers
learned via DHCP or SLAAC are printed in a new subcommand.
The status output will be further improved shortly.
Input & OK otto
|
|
Fixes r1.15 "Document ILOM command to reset hardware".
|
|
|
|
|
|
rpki-client will use the defaults for cache and output directory. If not
started as root users need to provide both directories as arguments.
While there switch from absolute path names to relative ones. For this
the parser and rsync process do a chdir(2) to the cache directory on startup.
OK benno@
|
|
|
|
|
|
|
|
From George Brown.
ok benno
|
|
ok deraadt@
|
|
ok deraadt@
|
|
OK Ingo Schwarze
|
|
methods using a table. detect output truncation (for instance filesystem
full) and don't overwrite previous output
ok claudio
|
|
|
|
|
|
Basically, if you set DEBUG_PKG_CACHE to a directory, pkg_add will download
debug packages "on the sly" any time it installs packages. It is mostly
silent (apart from fetching error or directory non existent).
It *won't* download packages that are already installed, but this allows
keeping debug packages "just in case" in synch with your current snapshot,
as some people (mpi@) have worried that by the time you get to debugging
something, the snapshots will have moved too much.
|
|
|
|
|
|
from discussion with jsg
|
|
OK otto
|
|
|
|
ok deraadt@
|
|
it's nicely backwards compatible, so we can use the same code for
both vxlan and vxlan-gpe.
|
|
they were based on draft-ietf-dhc-dhcpv6-14, which was not what
ended up in the dhcpv6 rfc(s). the current printing code is a lot
smaller and self contained.
ok deraadt@
|
|
it looks like this code was using draft-ietf-dhc-dhcpv6-14 from
1999. there were 27 drafts, and by the time it got to draft 23 and
the rfc it was significantly different. this code for draft 14
cannot handle actual dhcpv6 messages. im kind of surprised
(disappointed?) that noone noticed before. i only noticed cos the
code was segfaulting on sparc64, and when i tried to fix it the
resulting messages looked nothing like what stock tcpdump produced.
the main difference between the early drafts and what ended up in
the rfc is that the base dhcpv6 messages in early drafts were large
structure with a lot of fixed fields, while the rfc settled on a 4
byte header that contains a 1 byte message type and a 3 byte
transaction id. the rest of the messages are built from dhcp options
fields.
this cuts all the old handling out, and fixes the fault in the
options handling by using EXTRACT_16BITS to get at the code and
length fields instead of using ntohs. dhcpv6 explicitly states that
it does not align options, so this is necessary to avoid faults on
strict alignment archs anyway. no options are pretty printed at the
moment, you just get a numeric type, a length, and a hexdump of the
value. this is still better than the garbage that the draft parsing
produced.
if someone is interested in making this easier to read, it would
be a straightforward and well contained project to better handle
option printing.
ok deraadt@
|
|
It appears to have caused major performance regressions all over the
network stack.
Reported by bluhm@
ok deraadt@
|
|
display; remove the why bogus status message; ok florian@
|
|
need to replay it.
|
|
|
|
|
|
It can now be a symlink.
ok naddy@ solene@ kn@
|
|
- man page is bgpd, not openbgpd
ok deraadt
|
|
will read from
OK kn@
|
|
`romfile' if -r is used, but since I'm only unveiling after that file is
actually opened there's no need to unveil it as well.
OK deraadt@ kn@
|
|
Analogue to amd64's vmctl create, this command creates sparse disk image
files of the given size.
This is less error prone than creating full files with dd(1), but comes
with other caveats - still, it is worth having around.
Further refinements yet to come; vmctl and ldomctl should also behave more
alike in the future, as briefly discussed with kettenis and deraadt.
|
|
|
|
compute, based upon flags. OpenBGPD compatible format by default if
no options, to integrate with bgpd.conf and bgpctl reload. Adapt
mtree and stuff. This will receive further refactoring...
ok benno job
|
|
we ended up accidentally breaking vmctl. This will need more thought.
ok ori@
|
|
in a much more complicated way.
OK benno@
|
|
|
|
Added back by accident when readding CRL checks.
ok claudio@
|
|
|
|
|
|
|
|
ok claudio@ deraadt@
|
|
|
|
|
