src - OpenBSD base system

Age	Commit message (Collapse)	Author
2019-05-08	convert system() calls to an execv() like interface.	Ted Unangst
	avoids sh difficulties, etc. from Matthew Martin. ok deraadt reyk
2019-05-08	Fix and tweak websocket upgrade handling.	Reyk Floeter
	- Don't expect the Connection header to equal Upgrade, it may include Upgrade - Reshuffle the code to check the Upgrade/Connection headers in one place Reported and tested by Rivo Nurges OK and input from benno@ Cvs: ----------------------------------------------------------------------
2019-05-08	Switch domain-search parsing from hand rolled hex string to	Kenneth R Westerback
	human readable list of strings. Slightly tweaked version of a diff from William Ahern via tech@. Long silence on all fronts leads to community based testing.
2019-05-08	The QUERY_STRING macro is not actually URL encoded, so fix the manual.	Theo Buehler
	Add a QUERY_STRING_ENC macro that is URL encoded. Patch from Tim Baumgartner ok reyk
2019-05-08	Set the REQUEST_URI CGI variable to the requested URI and query string	Theo Buehler
	instead of the rewritten path and query string. Patch from Tim Baumgard, reminded by Mischa Peters. ok benno, reyk
2019-05-08	spacing	Reyk Floeter

2019-05-08	when passing objects to imsg use the for 'obj, sizeof(*obj)' instead of	Claudio Jeker
	'obj, sizeof(struct object)' OK benno@
2019-05-08	It is not an error condition if no new snapshot is available.	Christian Weisgerber
	ok jasper@ florian@
2019-05-08	better signatures.	Marc Espie
	- pass state along to be able to do proper errsay instead of raw printing. - compare VERSION markers first, because they're supposed to trump everything else. (todo: evaluate -v diagnostics for version bumps) okay sthen@
2019-05-08	Rework the TCP md5sig and IKE handling. Move the pfkey socket to the parent	Claudio Jeker
	process in this process. The refreshing of the keys is done whenever the session state is changes to state IDLE or ACTIVE. This should behave better when reloading configs with auth changes. OK benno@
2019-05-08	fix pkg_info -S bug: multiple inheritance tricks signature into actually	Marc Espie
	ignoring version elements.
2019-05-06	not do -> do not; ok jmc@	Otto Moerbeek

2019-05-06	Fix reloading of network statements that have no fixed prefix specification.	Claudio Jeker
	The return value of kr_net_redist_add() was not as intended and so kr_redistribute() removed those networks on config reloads. Bug reported by openbsd (at) kene.nu OK benno@
2019-05-06	double macro snuck in;	Jason McIntyre

2019-05-06	vmctl.8 : man page cleanup	Mike Larkin
	input from jmc@
2019-05-05	switchd(8) will sometimes not save a copy of a packet needing forwarding	akoshibe
	even when a switch(4) instance requires it to supply it. Cases where this can happen are: if the copy of the packet recieved from the switch is too short (source/destination pairs can't be recovered), is non-unicast, or when switchd has to fall back to flooding traffic. Factor out the check for short packets, stopping before forwarding decisions are made if the full packet is needed by the switch. Set the packet buffer early for cases where it is needed otherwise. Also replace a few bzero's with memset's. Diff based on one by guenther@ OK phessler@
2019-05-05	For "unpriv -f file", chown file back to root once the command finishes,	Antoine Jacoutot
	like install.sub and sysupgrade(8) do.
2019-05-05	Initialise variable.	Antoine Jacoutot

2019-05-05	Change variable name.	Antoine Jacoutot

2019-05-05	sentences start with capitals;	Jason McIntyre

2019-05-04	oops, fix unpriv() argument handling; from install.sub	Christian Weisgerber

2019-05-04	* For "unpriv -f file", chown file back to root once the command finishes,	Christian Weisgerber
	like install.sub does. * Only verify the signature once. * Only checksum the newly downloaded files. ok florian@
2019-05-04	Require root to run (still allow access to usage).	Antoine Jacoutot
	ok naddy@ florian@
2019-05-03	Add a "forwarded" log format that extends the "combined" log format	Theo Buehler
	by including the contents of the X-Forwarded-For and X-Forwarded-Port headers. If httpd(8) runs behind a proxy like relayd(8), this allows tracking the origin of the requests. The format is compatible with log analyzers such as GoAccess and Webalizer. Patch from Bruno Flueckiger ok benno, reyk
2019-05-03	Adjust some comments that were misleading. Those flags are used by bgpd	Claudio Jeker
	but only on the request side of a bgpctl call.
2019-05-03	Bump SET_NAME_LEN to 128 since arouteserver produces names that are more	Claudio Jeker
	than 64 chars long.
2019-05-03	Rename -c to -s since the correct term is snapshot, not current. Also	Florian Obser
	implement -r for symetry reasons to force an upgrade to the next release. suggested by & OK deraadt, OK benno, kmos
2019-05-03	Make sure that the as-set name is not too long when parsing the config file.	Claudio Jeker
	Fixes an assertion caught in new_as_set() parsing some arouteserver config.
2019-05-03	typo in previous	Ian Darwin

2019-05-03	sysupgrade gains -n for no-reboot option. Accidentally duplicated benno's ↵	Ian Darwin
	diff, who graciously OK'd mine. Improvement from naddy; polishing and OKs from kn and ingo.
2019-05-03	Only fetch and upgrade if a new snapshot is available.	Florian Obser
	Based on a diff by Marco Bonetti (sid77 AT slackware.it). discussed with deraadt@, OK kn
2019-05-03	missing break	Jonathan Gray
	ok benno@
2019-05-02	Avoid opening log files on "no log"	kn
	When not logging anything, do not open files in the first place. This prevents startup failures on configurations where the log/ directory is missing but logging is disabled anyway. OK aja solene reyk
2019-05-02	Index 0 is out of range for hrStorageIndex.	Gerhard Roth
	ok reyk@
2019-05-02	Give filter programmers a more friendlier error message when returning a	Martijn van Duren
	filter-dataline in non-dataline phases and vice versa instead of crashing with "smtpd: tree_xpop(0x1e1a6b180b40, 0xc77804c6ba110977)" OK gilles@
2019-04-30	Restrict filesystem access with unveil(2):	Ricardo Mestre
	First it needs to open(2) `device' with read permissions, /dev/hotplug by default but can be changed via arguments. Then it needs read/execute on both _PATH_ETC_HOTPLUG_{ATTACH,DETACH} to access(2) and execl(3) them. ok deraadt@
2019-04-29	Install upgrade kernel with ln -f, as per kernel build. ok florian@	Ian Darwin

2019-04-29	Remove unnecessary end-of-contents octets.	rob
	ok claudio@
2019-04-29	Check that depend on interfaces are in the same rdomain. If they are not	remi
	the daemon wouldn't notice state changes for those interfaces. ok benno@
2019-04-28	Quiet down signify, seeing all the OKs scroll by is not helping.	Florian Obser

2019-04-27	Only apply sign extension when less than eight bytes have been consumed. This	rob
	fixes a problem when handling large negative integers. ok claudio@
2019-04-26	Fix default MIRROR.	Antoine Jacoutot
	ok florian@
2019-04-26	If we don't have a proper installurl, use cdn.openbsd.org.	Antoine Jacoutot
	Idea from sysupgrade(8).
2019-04-26	do not re-verify the signature for each file when checking the old files,	Christian Weisgerber
	sha256 is enough; ok florian@
2019-04-26	Use a different approach to determine the appropriate signing key:	Christian Weisgerber
	Read the first line "untrusted comment ..." from SHA256.sig. Use the key named there if it corresponds to the current or next OS version.
2019-04-26	check owner and permission of download directory	Florian Obser

2019-04-26	Dt is uppercase;	Jason McIntyre

2019-04-25	don't be overly specific in set selection and don't use an undefined	Christian Weisgerber
	variable
2019-04-25	hook up sysupgrade(8)	Florian Obser

2019-04-25	Add sysupgrade(8) a tool to upgrade OpenBSD to the next release or a	Florian Obser
	new snapshot. Cargo culted from bits and pieces of a script originally posted by naddy@ to misc, install.sub and syspatch(8) with & OK deraadt