mischief/openbsd-src
1
0
Fork 0
mirror of https://github.com/openbsd/src.git synced 2025-01-10 06:47:55 -08:00
Code
175,733 Commits 1 Branch 0 Tags 812 MiB
c8dab64c7c
Commit Graph

175733 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
kettenis
c8dab64c7c If the argument of -o specifies a directory, dump the files without using a 
prefix.

ok deraadt@
 2016-09-26 19:58:26 +00:00
sthen
d2ba3035c2 typo in comment 2016-09-26 19:39:24 +00:00
tedu
e4c55632f2 there's a hidden feature to infer the public key from the signature 
comment, but it doesn't work well because it encodes the full path.
signature creaters don't usually keep the secret keys in /etc/signify,
but that's where we look for public keys.
switch to saving only the basename, and have the verifier add the path.
should make it easier to start using this feature.
anybody depending on the current behavior may have to adjust, but
there's a reason this was never officially documented.
 2016-09-26 17:49:52 +00:00
otto
9b6b395bbe + _ping 2016-09-26 17:42:09 +00:00
rzalamena
5f14684e14 Teach ntpd(8) constraint process to use exec*() instead of just forking, 
with this change we get the pledge() ability back to the parent process.

some tweaks from and ok reyk@
 2016-09-26 17:17:01 +00:00
jca
ec8c174284 Exit early from rdaemon() is the passed fd is invalid. 
fd == -1 check suggested by deraadt@, ok florian@
 2016-09-26 17:15:19 +00:00
jca
d1a35d0a71 Pass the flags argument of recvfromto down to the underlying recvmsg 
Doesn't matter in iked as recvfromto is only called with flags = 0, but
this code tends to be copied.  ok sthen@ florian@
 2016-09-26 16:55:21 +00:00
rzalamena
785412490b Teach ntpd(8) how to use socket status to shutdown the daemon. While at 
it, remove some verbose shutdown messages that we had before with pipe
close.

ok reyk@
 2016-09-26 16:55:02 +00:00
jca
80864ce5fe Regen 2016-09-26 16:43:58 +00:00
florian
6511bc547d Drop privileges to newly added _ping user/group. 
It does not buy us much when called as a unpriv user. But if run as
root we can now lose privileges.
OK natano@, deraadt@ is happy
 2016-09-26 16:42:46 +00:00
jca
370af6943b unbalenced->unbalanced 2016-09-26 16:42:34 +00:00
florian
d3fe350612 Add _ping user/group. 
OK natano on a previous diff which used a different uid/gid.
naddy@ pointed out that uid/gid was already taken on "important" systems.
Turns out we cannot easily recycle freed up uids/gids so settle on 51.
 2016-09-26 16:39:51 +00:00
reyk
2166201edd spacing 2016-09-26 16:25:16 +00:00
kettenis
d3eddb10b4 Now that vax has been removed, nothing defined MD_NO_CLEANUP anymore. 
ok guenther@
 2016-09-26 15:43:26 +00:00
rzalamena
86c8866c8f Fix compilation warning by using the correct cast/format. 
improved by sthen@
ok reyk@
 2016-09-26 14:00:05 +00:00
kettenis
e9461e4bd0 Remove xscale support. Properly distinguish between ARMv7 and ARMv8. 
ok patrick@, jsg@
 2016-09-26 13:34:11 +00:00
rzalamena
f749684899 Teach switchd(8) how to create flows for new connections using OpenFlow 
1.3.5, implement the OXM filters to use with flow matching and Set-Action,
prepare code to receive group management and add dummy flow_removed handler
to avoid closing the connection on idle flows.
 2016-09-26 12:33:04 +00:00
nicm
0c735ec4f5 Support set -a (append) with user options, suggested by Xandor Schiefer. 2016-09-26 09:02:34 +00:00
rzalamena
7885131f82 Set pkt_buf variable on incoming packet_in messages. 
small style correction and ok reyk@
 2016-09-26 08:55:43 +00:00
rzalamena
fa6a7592f9 Fix a memory leak and a loop in the ofp_read() that happens every time a 
message is received or a socket is closed.

This is just a temporary fix to avoid switchd(8) from hogging the cpu and
leaking memory while testing.

ok reyk@
 2016-09-26 08:48:05 +00:00
rzalamena
b4fa60ea54 Enable more debug messages to help developing flow modification messages. 
ok reyk@
 2016-09-26 08:46:00 +00:00
kettenis
dd74e43831 Mark the static inline functions defined by RBT_PROTOTYPE as __unused. The 
way these functions are generated through a macro makes clang think they're
defined in the .c file.  Since some of these function may be unused, clang
issues a warning.  Marking them as __unused suppresses the macro.

ok visa@, deraadt@, dlg@
 2016-09-26 08:08:51 +00:00
fcambus
ba0dab33d9 Move the net/bpf.h include within the #if NBPFILTER directive 
OK deraadt@
 2016-09-26 07:09:32 +00:00
ajacoutot
d4c26090ec Add /etc/acme-client.conf to mtree/special and changelist. 
ok deraadt@ sthen@ florian@
 2016-09-26 06:51:23 +00:00
guenther
4bb51dcdc5 sigsetmask() and sigblock() are no longer used by any setjmp implementation 
so the internal hidden names are unused; switch to PROTO_DEPRECATED()
and drop the DEF_WEAK()s
 2016-09-26 05:57:58 +00:00
otto
7d80a706bf no overstrikes in -i mode; ok millert@ guenther@ 2016-09-26 05:32:35 +00:00
guenther
e9f7678b8d Check cpuid_level before using CPUID(). 
Problem noted by Sami (sami.tikkanen (at) haxaa.net)
ok deraadt@
 2016-09-26 03:33:03 +00:00
deraadt
582f75e77f Document the dependency on sysctl kern.allowkmem 
ok tb
 2016-09-25 23:31:50 +00:00
jsg
d3290ae04f Correct the flag listing for switchd(8) and add a files section for the 
configuration file.  Sync usage() with the result.

With feedback from and ok jmc@
 2016-09-25 23:05:29 +00:00
bluhm
689ad0f31e Adapt more places where binutils-2.17 has changed the format of the 
linker warning massages.
 2016-09-25 21:35:12 +00:00
tb
7b28dfbbb3 Install the copyright notice as ${MANOWN}:${MANGRP} with ${MANMODE} and 
use ${INSTALL_COPY}; chown root:wheel mandoc.db for noperm builds.

ok natano
 2016-09-25 20:44:18 +00:00
natano
079c8b176b Some ownership fixes for /usr/share/. 
feedback and tweaks rpe
ok tb
 2016-09-25 17:43:11 +00:00
natano
94888cee0e Fix /usr/lib/locate/src.db owner for noperm release builds. 
ok millert tb
 2016-09-25 17:32:22 +00:00
rpe
892253beb0 Tweak/add comments. 
with input from and OK tb
OK halex krw
 2016-09-25 15:48:15 +00:00
otto
d5fd71e7fa add ul 2016-09-25 15:42:40 +00:00
deraadt
19aedf2361 Make a move towards ending 4 decades of kernel snooping. 
Add sysctl kern.allowkmem (default 0) which controls the ability to open
/dev/mem or /dev/kmem at securelevel > 0.  Over 15 years we converted 99%
of utilities in the tree to operate on sysctl-nodes (either by themselves
or via code hiding in the guts of -lkvm).

pstat -d and -v & procmap are affected and continued use of them will
require kern.allowkmem=1 in /etc/sysctl.conf.  acpidump (and it's
buddy sendbug) are affected, but we'll work out a solution soon.

There will be some impact in ports.

ok kettenis guenther
 2016-09-25 15:23:36 +00:00
fcambus
4b3ecf2817 Remove more duplicated includes 
OK jca@, deraadt@
 2016-09-25 14:58:00 +00:00
florian
0b49aa452d consistently use MAX_ prefix 
OK jca
 2016-09-25 13:54:39 +00:00
florian
eebc451e67 Interval calculations are perfectly fine with ints. 
OK jca@
 2016-09-25 13:54:00 +00:00
mlarkin
25914eeeea refactor vmcs flush and reload into one function, and remove another 
flush that wasn't needed
 2016-09-25 08:20:40 +00:00
mlarkin
457aafc8bb remove an extraneous vmcs flush 2016-09-25 07:45:02 +00:00
rpe
2714b0590f Tweak addel(), rmel() and bsort() to not emit a leading/trailing blank. 
OK tb krw
 2016-09-25 06:06:52 +00:00
patrick
be8a232610 Stick the thread control block pointer into a CPU register on ARMv7. 
ok guenther@
 2016-09-24 21:02:31 +00:00
afresh1
5271000b44 Build install Config_heavy.pl during build not install 
Needed for noperm builds

OK natano@
 2016-09-24 19:47:37 +00:00
phessler
5f2ede6cf5 print a BFD route message. 
protected with #ifdef BFD while we still figure out some of the
mechanisms.

OK mpi@
 2016-09-24 19:36:49 +00:00
phessler
a43d1a5de2 a route message for BFD, so we can notify userland about the status. 
currently used on state-transitions.

OK mpi@
 2016-09-24 19:29:55 +00:00
phessler
6715f67c24 a route message for BFD, so we can notify userland about the status. 
currently used on state-transitions.

OK mpi@
 2016-09-24 19:27:10 +00:00
kettenis
a37d86464e On sparc64 we need "retl" not "ret" to do an immediate return. 
ok deraadt@, tedu@
 2016-09-24 19:20:37 +00:00
kettenis
8a71349c78 Add -Wno-pointer-sign to all our gcc4 architectures. 
ok patrick@ (for armv7), deraadt@
 2016-09-24 19:13:03 +00:00
tedu
7f32dcbfbc jmc noticed a chunk failed to apply. actually document hashfree. 
from natano via Mathieu -
 2016-09-24 18:59:04 +00:00