summaryrefslogtreecommitdiff
path: root/usr.sbin
AgeCommit message (Expand)Author
2019-11-29Use the AKI embedded in the CRL to store the crls. This way the AKI fromClaudio Jeker
2019-11-29If run as root, priv-drop to _rpki-client.Theo de Raadt
2019-11-29fchmod 0644 the output roa file, since it is public information andTheo de Raadt
2019-11-29Shuffle the desk chairs on this ocean linerClaudio Jeker
2019-11-29valid_as() should be as strict as valid_ip() when it comes to not-coveredClaudio Jeker
2019-11-29fix io_simple_read() change from earlier 'fix warnings' commitSebastian Benoit
2019-11-29Fix at least one cause of VMs spinning at 100% host CPUMike Larkin
2019-11-28enable more warning flags and fix a few issues noticed.Sebastian Benoit
2019-11-28improve snprintf overflow test; noted by bennoTheo de Raadt
2019-11-28Convert the auths array into an RB tree indexed by SKI. For fast lookupsClaudio Jeker
2019-11-28The root certs do not have a CRL distribution point extension so don'tClaudio Jeker
2019-11-28Output to a temporary file, which gets renamed on success. This willTheo de Raadt
2019-11-28convert the return code to be 0 for success and 1 for failure.Sebastian Benoit
2019-11-28intentionally fclose output file, rather than relying on exit() to do it.Theo de Raadt
2019-11-28add missing prototypeSebastian Benoit
2019-11-28Remove -r flag and associated plumbing. We are always checking CRLs from now on.Sebastian Benoit
2019-11-28Use scan_scaled(3) for memory in ldom.confkn
2019-11-28improve on previous to only use the required CRLs.Sebastian Benoit
2019-11-28Add console commandkn
2019-11-28Print guest domain vcctty(4) devices in status outputkn
2019-11-28build with -Wall, more -W coming, ok claudio@Sebastian Benoit
2019-11-28Check for failure of X509_get_ext_d2i() in x509_get_crl()Claudio Jeker
2019-11-28Use x509_get_crl() to get the crl distribution point out of the x509 cert.Claudio Jeker
2019-11-28Document x509_get_crl()Claudio Jeker
2019-11-28show median RTT in unwindctl statusFlorian Obser
2019-11-28Track all elements of a forwarder configuration individually:Florian Obser
2019-11-28Usage on excessive select, delete, download, start, stop, panic argumentskn
2019-11-28some whitespace invaded this island, and deraadt@ demanded its removal.Sebastian Benoit
2019-11-28To verify a manifest, a roa, or a certificate, we check its signatureSebastian Benoit
2019-11-27Add list-io commandkn
2019-11-27use _PATH_ names for unveil if possibleTheo de Raadt
2019-11-27OpenFlow 1.3 defines packet header patterns of interest using TLVs (OXMs)akoshibe
2019-11-27swap some comparisonsTheo de Raadt
2019-11-27whitespaceSebastian Benoit
2019-11-27Instead of only considering if a resolving strategy is dead, works orFlorian Obser
2019-11-27Nuke http captive portal detection; something better is coming.Florian Obser
2019-11-27Only store ta certs in the trust store and build chains of theSebastian Benoit
2019-11-27knf, make types grepable. ok claudio@Sebastian Benoit
2019-11-27rename a variable to show it's a CRL. ok claudio@Sebastian Benoit
2019-11-27Document ILOM command to reset hardwarekn
2019-11-27Adjust after changing the struct ctl_show_rib (removal of aspath_len)Claudio Jeker
2019-11-27struct ctl_show_rib does not need aspath_len since this information isClaudio Jeker
2019-11-26remove stray Oc;Jason McIntyre
2019-11-26document that listen on socket can have filters attachedGilles Chehade
2019-11-26in mail.lmtp.c, split LMTP connection fd into two FILE * streamsGilles Chehade
2019-11-26timeout(9): switch to tickless backendcheloha
2019-11-26allow using 'auth' as an origin:Gilles Chehade
2019-11-26whitespacesGilles Chehade
2019-11-26mail-from and rcpt-to already carry origin and destination, so we can makeGilles Chehade
2019-11-25Honour DEBUGkn
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-28 14:28:07 +0000