Commit Graph

  • 88be1e7a Remove unecessary line continuation markers after || and && by rpe 2018-02-18 18:52:02 +0000
  • e21736f3 - Add descriptions for the new functions ifcreate() and vifscreate() - In ifcreate() use the exit code of the {} block directly - In vifscreate(), use the ifconfig -C output directly in the for _vif loop - Remove superfluous and somewhat confusing comment by rpe 2018-02-17 13:11:03 +0000
  • 2c571a29 Fix function argument names, from Abel Abraham Camarillo Ojeda via jmc@. by nicm 2018-02-16 07:42:07 +0000
  • 29613cf7 create virtual interfaces before starting all interface config. by dlg 2018-02-14 22:08:45 +0000
  • ed838896 Remove some special IPv4 in IPv6 mapped prefixes that are already rejected by the ::0.0.0.0/96 reject route added to deny all IPv4 mapped addresses. Makes the inet6 routing table almost fit in one screen. OK benno@ by claudio 2018-02-10 08:46:10 +0000
  • f95d9f00 Load RFC 7217 key material and generate if it does not already exist. by florian 2018-02-10 05:56:47 +0000
  • e06d7bcc use consistent style for for loop in unmap(), no functional change by otto 2018-02-07 18:58:30 +0000
  • 448ced64 Print an explicit error if the backup volume is not present in hw.disknames. This can only happen due to a failure or user error. In either case, silent failure makes it hard to discover and debug. Now it will be easy to spot in the daily mail. by tb 2018-02-06 19:57:37 +0000
  • a191b4c4 If -n is given, the netstart script should not (try to) set the default route(s). Simply print the command(s) to be issued instead. by tb 2018-02-06 19:53:50 +0000
  • ff4f4e92 Remove . from $PATH since it seems there is no strong reason to keep it and many people prefer to remove it. Pointed out by m-asou at soum.co.jp. by yasuoka 2018-02-02 02:29:54 +0000
  • be364528 keep in sync with ld.so malloc.c by otto 2018-01-30 17:46:41 +0000
  • b78237bf word fix; from edgar pettijohn by jmc 2018-01-30 11:37:58 +0000
  • 22e45465 - An error in the multithreaded case could print the wrong function name - Start with a full page of struct region_info's - Save an mprotect in the init code: allocate 3 pages with none and make the middle page r/w instead of a r/w allocation and two calls to make the guard pages none by otto 2018-01-28 13:41:48 +0000
  • fbdda17f - do not junk pages returned by free_bytes(), all freed chunks are already junked - freezero(): only clear requested size by otto 2018-01-26 19:14:51 +0000
  • 4c830fd2 Provide a simpler example ifstated.conf. The existing example was written over a decade ago, when carp(4) was not supporting carpdemote and did not track it's interfaces link state itself. OK jmc@, rob@ by mpf 2018-01-20 23:07:58 +0000
  • 62392fcc /etc/snmpd.conf may contain passwords or other sensitive data. diff provided by alf <a.schlichting at lemarit.com> ok millert by gsoares 2018-01-19 00:19:58 +0000
  • d4715726 Zap the rotor, it was a wrong idea. Cluebat applied by kshe who came also up with this diff. Simple, no bias and benchmarks show the extra random calls disappear in te measurement noise. by otto 2018-01-18 20:06:16 +0000
  • a1c70a66 Move to ffs(3) for bitmask scanning. I played with this earlier, but at that time ffs function calls were generated instead of the compiler inlining the code. Now that ffs is marked protected in libc this is handled better. Thanks to kshe who prompted me to look at this again. by otto 2018-01-18 08:37:28 +0000
  • 5c76f998 Instead of trying to handle ffs() with the normal rename-mark-hidden-and-alias dance, mark it protected. This works better for both gcc and clang: gcc blocks overriding of internal calls, while clang permits inlining again. by guenther 2018-01-18 08:23:44 +0000
  • 3bfb6d03 Adjust references for sysctl(3) to sysctl(2) by deraadt 2018-01-12 04:36:44 +0000
  • dfb78716 Comments by rpe 2018-01-11 22:44:44 +0000
  • 9c629f7d - change [] tests to [[]] - change -a, -o to &&, || inside [[]] - remove unecessary quoting inside [[]] - remove X"" constructs inside [[]] - remove \ (line continuation) in case of &&, || and pipes - replace backticks with $() by rpe 2018-01-11 21:09:26 +0000
  • 933f0d8a Change the shebang line from /bin/sh to /bin/ksh in all base rc.d daemon scripts. by rpe 2018-01-11 19:52:12 +0000
  • bb8baa37 optimization and some cleanup; mostly from kshe (except the unmap() part) by otto 2018-01-08 12:20:23 +0000
  • 58ab0794 Only init chunk_info once, plus some moving of code to group related functions. by otto 2018-01-01 12:41:48 +0000
  • 28aa9f8c step one in avoiding unneccesary init of chunk_info; some cleanup; tested by sthen@ on a ports build by otto 2017-12-27 10:05:23 +0000
  • 8b61b576 memcpy from the right place. at this point, the used variable is not relevant. from Mark Karpilovskij. ok millert by tedu 2017-12-25 02:11:19 +0000
  • e1517c2c Fix one possible buffer overflow and one underflow. Also some minor cleanups. From Jan Kokemueller. OK deraadt@ by millert 2017-12-24 01:50:50 +0000
  • ef03f4da Move __cxa_thread_atexit* to its own .c file to avoid pulling the code (w/ _dlctl reference) into static executables. It's all Mark's code so put his preferred copyright on it. by guenther 2017-12-16 20:06:56 +0000
  • 0566b094 Make a few internal symbols static and add a Symbols.map version script to control which symbols are exported from the shared library. by kettenis 2017-12-14 09:27:44 +0000
  • 3329807a pledge()'s 2nd argument becomes char *execpromises, which becomes the pledge for a new execve image immediately upon start. Also introduces "error" which makes violations return -1 ENOSYS instead of killing the program ("error" may not be handed to a setuid/setgid program, which may be missing/ignoring syscall return values and would continue with inconsistant state) Discussion with many florian has used this to improve the strictness of a daemon by deraadt 2017-12-12 01:12:34 +0000
  • 8d939859 It's the imsg_compose(3) who accepts 'fd' argument, not imsg_create(3). by zhuk 2017-12-06 12:07:08 +0000
  • 29bb9a95 Remove DEF_STRONG(__cxa_thread_atexit_impl). This produces an unwanted _libc___cxa_thread_atexit_impl reference on gcc architectures that breaks the build. by kettenis 2017-12-05 21:11:10 +0000
  • 901caa27 Implement __cxa_thread_atexit to support C++11 thread_local scope. The interface is also made available as __cxa_thread_atexit_impl to satisfy the needs of GNU libstdc++. by kettenis 2017-12-05 13:45:31 +0000
  • 151d945d Disallow the _pbuild user from making TCP/UDP connections in the default PF ruleset. This is not a complete block on _pbuild being able to communicate (e.g. non-TCP/UDP protocols don't have a PCB with userid, so PF can't restrict in those cases) but avoids some cases, and in particular makes it more obvious when a port does things like download extra distfiles or dependencies as part of the build process. Slight tweak from a diff by espie@. by sthen 2017-12-03 20:40:04 +0000
  • 66221a5a Import updated moduli. by dtucker 2017-11-29 05:49:54 +0000
  • 06875abb clang doesn't propagate attributes like "asm labels" and "visibility(hidden)" to builtins like mem{set,cpy,move} and __stack_smash_handler. So, when building with clang, instead mark those as protected visibility to get rid of the PLT relocations. We can't take the address of them then, but that's ok: it's a build-time error not a run-time error. by guenther 2017-11-29 05:13:57 +0000
  • 6d5248e0 Document NAT and DNS forwarding rules for vmd(8) by mlarkin 2017-11-29 00:15:34 +0000
  • 0e3a7a3d Add a member to be used by __cxa_thread_atexit(). Remove padding which would now misalign things. by kettenis 2017-11-28 18:57:02 +0000
  • f82a07ef Implement a DL_REFERENCE dlctl. To be used by the upcoming __cxa_thread_atexit() implementation. by kettenis 2017-11-28 17:19:47 +0000
  • 3bd9248d GNU ld has prefixed the contents of .gnu.warning.SYMBOL sections with "warning: " since 2003, so the messages themselves need not contain the prefix anymore. by tb 2017-11-28 06:55:49 +0000
  • e818628c Remove deprecated agreement url. "nice" deraadt@ OK benno by florian 2017-11-27 01:59:55 +0000
  • c70ea1df (OPENBSD_6_2) MFC, ok florian@ by benno 2017-11-15 21:01:18 +0000
  • 17bfed7a Update agreement URL; pointed out by sthen. OK benno, sthen by florian 2017-11-15 12:22:45 +0000
  • 336ba197 sync by naddy 2017-11-14 20:22:04 +0000
  • 8f334ac9 Remove /dev/arandom symlink. Nothing in base, xenocara, or ports uses /dev/arandom any longer. ok deraadt@ by naddy 2017-11-14 20:21:29 +0000
  • 1899183c Remove HN_DIR variable and expand it in the only place it was used. It currently serves no purpose. by tb 2017-11-12 21:58:00 +0000
  • f3bb25bd update switch handling in vmd(8). vmd now gets switch information (rdomain, etc) from underlying switch interface instead of handling this on its own. by mlarkin 2017-11-11 02:50:07 +0000
  • a31160a2 kill trailing whitespace introduced in previous commit by tb 2017-11-09 11:02:10 +0000
  • f6b274d4 Use a variable for /usr/share/relink by rpe 2017-11-06 09:04:18 +0000
  • 7f400936 Remove the ':' at the beginning of ksh.kshrc. by rpe 2017-11-05 10:58:39 +0000
  • 88c4af67 Consolidate lib.so.*.a, ld.so.a and the kernel relink kit into one location under /usr/share/relink. by rpe 2017-11-05 10:29:24 +0000
  • c18926b3 Revert recent changes to unbreak ports/net/samba by jca 2017-11-04 22:53:57 +0000
  • 0d9e55fc sync by mpi 2017-11-02 14:06:00 +0000
  • 210ce1b3 Switch DEC 3000 (TURBOchannel) alpha serial code to MI z8530 code. by mpi 2017-11-02 14:04:24 +0000
  • d5460018 's' should include 'f'; from Jacqueline Jolicoeur by otto 2017-11-02 14:01:50 +0000
  • 1decb82f Replace ps | grep with pgrep and use && instead of if-then-fi. From Raf Czlonka. by tb 2017-11-02 10:19:06 +0000
  • 88624e3e Change pthread_cleanup_{push,pop} to macros that store the cleanup info on the stack instead of mallocing the list and move the APIs from libpthread to libc so that they can be used inside libc. by guenther 2017-10-28 21:23:14 +0000
  • 5630e21f Partially revert rev 1.457 of /etc/rc. The pipe introduced in sysctl_conf() spawns a subshell. This prevents that the new process limits affect the daemons started during boot. OK rpe@ halex@ by bluhm 2017-10-25 10:42:51 +0000
  • 97fa8ef4 Don't let close(2) clobber errno. Some calls were already protected but not all. From Peter J. Philipp. by millert 2017-10-23 14:33:07 +0000
  • edffe314 Restore a return that was inadvertently removed from freezero() in r1.234, which results in an internal double free when internal functions are not in use. by jsing 2017-10-19 16:34:33 +0000
  • 51cd26e7 <elf.h> should make it easier to port our ELF-related tools to other Unices. by mpi 2017-10-17 09:34:52 +0000
  • eba45324 Remove stray, pointless and potentially confusing line. by krw 2017-10-16 23:43:41 +0000
  • ef4eecc5 sync by naddy 2017-10-16 20:33:41 +0000
  • 601dbc08 Make it explicit that there is only one type of random device: Create only /dev/urandom as device. Create /dev/random and /dev/arandom as symlinks. Drop /dev/srandom, which has been unused for a long time. /dev/arandom will go away at a later point. by naddy 2017-10-16 20:26:52 +0000
  • 3986062c Move the thread-related .h files to /usr/src/include/, since the implementation is now spread between libc and librthread. No changes to the content by guenther 2017-10-15 23:40:33 +0000
  • 863fd0a0 The testprogram for ld.so reordering is executed in tmpdir. Move tmpdir for reordering library from /tmp to /usr/lib. This allows to have /tmp mounted noexec. by rpe 2017-10-12 18:14:05 +0000
  • 7fd11d9f Add STANDARDS: denis@ spotted that it was missing. OK deraadt@ jca@ jmc@ by schwarze 2017-10-12 15:22:32 +0000
  • bcb95775 Move comment line and spacing. by rpe 2017-10-10 19:07:50 +0000
  • 0def5ff2 Make cacheflush(3) and get_fpc_csr(3) manual pages available on octeon. by visa 2017-10-08 15:14:17 +0000
  • 0b0d57fe Use the modern POSIX idiom "-exec ... {} +" instead of find|xargs and combine the two find(1) invocations into one. From Klemens Nanni; ok tb@ by naddy 2017-10-06 19:58:37 +0000
  • 437fad26 do not return f() where f is a void function; loop var type fix by otto 2017-10-05 04:44:49 +0000
  • 09620f72 Use dprintf instead of snprintf/write by otto 2017-10-05 04:41:43 +0000
  • f8314720 (tag: OPENBSD_6_2_BASE) SPI values 0-255 are reserved, so change the example to use a valid one. fixes parsing of the example configuration by phessler 2017-09-29 11:00:39 +0000
  • 3b6bc929 Make delayed free non-optional and make F do an extensive double free check. ok tb@ tedu@ by otto 2017-09-23 15:13:12 +0000
  • c08be5b5 fix the example neighbor configurations by phessler 2017-09-22 09:28:47 +0000
  • 4a127add (tag: openntpd-6.2p3) mapalign returns MAP_FAILED for failuer; from George Koehler by otto 2017-09-12 18:36:30 +0000
  • d1f95e32 check double free before canary for chunks; ok millert@ by otto 2017-09-11 18:32:31 +0000
  • 2aa0509b str[n]casecmp_l(3) appeared in POSIX 2008, not in XPG 4; phessler@ reported that this oversight broke an armv7 bulk build; OK guenther@ by schwarze 2017-09-10 21:50:36 +0000
  • a333c412 ntpd has been on by default for over two years now, so rework the text about enabling it; by jmc 2017-09-06 19:43:46 +0000
  • 371b6573 New POSIX xlocale implementation written from scratch. Complete in the sense that all POSIX *locale(3) and *_l(3) functions are included, but in OpenBSD, we of course only really care about LC_CTYPE and we only support ASCII and UTF-8. by schwarze 2017-09-05 03:16:14 +0000
  • 909afec9 delete pointless .Tn ASCII found by jca@ with mandoc -Tlint by schwarze 2017-09-02 13:56:44 +0000
  • 4d8e6735 Remove the miniroot for the OMAP3 BeagleBoards. Ethernet is on USB and USB isn't supported. The installer turns out to have been broken on BeagleBoard for over a year and no one noticed. The existing support for OMAP3 in the kernel remains though it isn't clear if anyone has tried it after the fdt changes went in. by jsg 2017-09-01 04:40:40 +0000
  • 74793c89 Mention strtok_r in STANDARDS by jca 2017-08-31 10:57:47 +0000
  • 54754f0c Based on previous work from deraadt, add relinking of ld.so to reorder_libs() resulting in a unique ld.so on every system start. by rpe 2017-08-29 16:56:13 +0000
  • 93980c1b Display that we are running the upgrade scripts when they exist. On slowish machines, running sysmerge(8) can take a little while so don't let people wonder about why the output seems stuck. by ajacoutot 2017-08-28 06:56:54 +0000
  • d0b27502 Sync emacs package version by jca 2017-08-25 22:13:26 +0000
  • 0bcaa61e add new firmware key by sthen 2017-08-25 19:40:46 +0000
  • 74a8628d add 6.3 packages key by naddy 2017-08-22 19:33:03 +0000
  • aed0f4a7 Move the kernel relinking code from /etc/rc into a seperate script /usr/libexec/reorder_kernel. Requested by ajacoutot@ to be able to relink the kernel from within syspatch(8). by rpe 2017-08-21 21:24:11 +0000
  • 32a541eb add basedir of the kernel link-kit by rpe 2017-08-21 20:52:06 +0000
  • b29dfecf 5.9 pubkeys no longer needed by deraadt 2017-08-21 14:20:32 +0000
  • 1cf47b06 add 6.3 base key by deraadt 2017-08-21 14:08:40 +0000
  • a28bfc15 Simplify the code for stopping daemons listed in pkg_scripts in reverse order on shutdown. by rpe 2017-08-20 19:45:37 +0000
  • a8805d8f crank to 6.2-beta by deraadt 2017-08-20 16:56:43 +0000
  • 83cbddd7 two MALLOC_STATS only tweaks; one from David CARLIER, the other found by clang by otto 2017-08-20 11:06:16 +0000
  • d1415dac crank memory limits by deraadt 2017-08-16 18:06:55 +0000
  • f3645329 Use sendsyslog() directly instead of syslog_r() for the "backwards memcpy" messages, to avoid pulling in piles of other machinery unnecessarily by guenther 2017-08-14 17:10:02 +0000
  • 2f8ee43f (tag: openntpd-6.2p2) Minimize #includes, particularly to avoid thread_private.h by guenther 2017-08-12 22:59:52 +0000
  • a92396dc Add manpage update for new grouping feature '{from,to} {i,e}bgp' by job 2017-08-12 17:39:51 +0000