88be1e7aRemove unecessary line continuation markers after || and && by
rpe2018-02-18 18:52:02 +0000
e21736f3- Add descriptions for the new functions ifcreate() and vifscreate() - In ifcreate() use the exit code of the {} block directly - In vifscreate(), use the ifconfig -C output directly in the for _vif loop - Remove superfluous and somewhat confusing comment by
rpe2018-02-17 13:11:03 +0000
2c571a29Fix function argument names, from Abel Abraham Camarillo Ojeda via jmc@. by
nicm2018-02-16 07:42:07 +0000
29613cf7create virtual interfaces before starting all interface config. by
dlg2018-02-14 22:08:45 +0000
ed838896Remove some special IPv4 in IPv6 mapped prefixes that are already rejected by the ::0.0.0.0/96 reject route added to deny all IPv4 mapped addresses. Makes the inet6 routing table almost fit in one screen. OK benno@ by
claudio2018-02-10 08:46:10 +0000
f95d9f00Load RFC 7217 key material and generate if it does not already exist. by
florian2018-02-10 05:56:47 +0000
e06d7bccuse consistent style for for loop in unmap(), no functional change by
otto2018-02-07 18:58:30 +0000
448ced64Print an explicit error if the backup volume is not present in hw.disknames. This can only happen due to a failure or user error. In either case, silent failure makes it hard to discover and debug. Now it will be easy to spot in the daily mail. by
tb2018-02-06 19:57:37 +0000
a191b4c4If -n is given, the netstart script should not (try to) set the default route(s). Simply print the command(s) to be issued instead. by
tb2018-02-06 19:53:50 +0000
ff4f4e92Remove . from $PATH since it seems there is no strong reason to keep it and many people prefer to remove it. Pointed out by m-asou at soum.co.jp. by
yasuoka2018-02-02 02:29:54 +0000
be364528keep in sync with ld.so malloc.c by
otto2018-01-30 17:46:41 +0000
b78237bfword fix; from edgar pettijohn by
jmc2018-01-30 11:37:58 +0000
22e45465- An error in the multithreaded case could print the wrong function name - Start with a full page of struct region_info's - Save an mprotect in the init code: allocate 3 pages with none and make the middle page r/w instead of a r/w allocation and two calls to make the guard pages none by
otto2018-01-28 13:41:48 +0000
fbdda17f- do not junk pages returned by free_bytes(), all freed chunks are already junked - freezero(): only clear requested size by
otto2018-01-26 19:14:51 +0000
4c830fd2Provide a simpler example ifstated.conf. The existing example was written over a decade ago, when carp(4) was not supporting carpdemote and did not track it's interfaces link state itself. OK jmc@, rob@ by
mpf2018-01-20 23:07:58 +0000
62392fcc/etc/snmpd.conf may contain passwords or other sensitive data. diff provided by alf <a.schlichting at lemarit.com> ok millert by
gsoares2018-01-19 00:19:58 +0000
d4715726Zap the rotor, it was a wrong idea. Cluebat applied by kshe who came also up with this diff. Simple, no bias and benchmarks show the extra random calls disappear in te measurement noise. by
otto2018-01-18 20:06:16 +0000
a1c70a66Move to ffs(3) for bitmask scanning. I played with this earlier, but at that time ffs function calls were generated instead of the compiler inlining the code. Now that ffs is marked protected in libc this is handled better. Thanks to kshe who prompted me to look at this again. by
otto2018-01-18 08:37:28 +0000
5c76f998Instead of trying to handle ffs() with the normal rename-mark-hidden-and-alias dance, mark it protected. This works better for both gcc and clang: gcc blocks overriding of internal calls, while clang permits inlining again. by
guenther2018-01-18 08:23:44 +0000
3bfb6d03Adjust references for sysctl(3) to sysctl(2) by
deraadt2018-01-12 04:36:44 +0000
9c629f7d- change [] tests to [[]] - change -a, -o to &&, || inside [[]] - remove unecessary quoting inside [[]] - remove X"" constructs inside [[]] - remove \ (line continuation) in case of &&, || and pipes - replace backticks with $() by
rpe2018-01-11 21:09:26 +0000
933f0d8aChange the shebang line from /bin/sh to /bin/ksh in all base rc.d daemon scripts. by
rpe2018-01-11 19:52:12 +0000
bb8baa37optimization and some cleanup; mostly from kshe (except the unmap() part) by
otto2018-01-08 12:20:23 +0000
58ab0794Only init chunk_info once, plus some moving of code to group related functions. by
otto2018-01-01 12:41:48 +0000
28aa9f8cstep one in avoiding unneccesary init of chunk_info; some cleanup; tested by sthen@ on a ports build by
otto2017-12-27 10:05:23 +0000
8b61b576memcpy from the right place. at this point, the used variable is not relevant. from Mark Karpilovskij. ok millert by
tedu2017-12-25 02:11:19 +0000
e1517c2cFix one possible buffer overflow and one underflow. Also some minor cleanups. From Jan Kokemueller. OK deraadt@ by
millert2017-12-24 01:50:50 +0000
ef03f4daMove __cxa_thread_atexit* to its own .c file to avoid pulling the code (w/ _dlctl reference) into static executables. It's all Mark's code so put his preferred copyright on it. by
guenther2017-12-16 20:06:56 +0000
0566b094Make a few internal symbols static and add a Symbols.map version script to control which symbols are exported from the shared library. by
kettenis2017-12-14 09:27:44 +0000
3329807apledge()'s 2nd argument becomes char *execpromises, which becomes the pledge for a new execve image immediately upon start. Also introduces "error" which makes violations return -1 ENOSYS instead of killing the program ("error" may not be handed to a setuid/setgid program, which may be missing/ignoring syscall return values and would continue with inconsistant state) Discussion with many florian has used this to improve the strictness of a daemon by
deraadt2017-12-12 01:12:34 +0000
8d939859It's the imsg_compose(3) who accepts 'fd' argument, not imsg_create(3). by
zhuk2017-12-06 12:07:08 +0000
29bb9a95Remove DEF_STRONG(__cxa_thread_atexit_impl). This produces an unwanted _libc___cxa_thread_atexit_impl reference on gcc architectures that breaks the build. by
kettenis2017-12-05 21:11:10 +0000
901caa27Implement __cxa_thread_atexit to support C++11 thread_local scope. The interface is also made available as __cxa_thread_atexit_impl to satisfy the needs of GNU libstdc++. by
kettenis2017-12-05 13:45:31 +0000
151d945dDisallow the _pbuild user from making TCP/UDP connections in the default PF ruleset. This is not a complete block on _pbuild being able to communicate (e.g. non-TCP/UDP protocols don't have a PCB with userid, so PF can't restrict in those cases) but avoids some cases, and in particular makes it more obvious when a port does things like download extra distfiles or dependencies as part of the build process. Slight tweak from a diff by espie@. by
sthen2017-12-03 20:40:04 +0000
66221a5aImport updated moduli. by
dtucker2017-11-29 05:49:54 +0000
06875abbclang doesn't propagate attributes like "asm labels" and "visibility(hidden)" to builtins like mem{set,cpy,move} and __stack_smash_handler. So, when building with clang, instead mark those as protected visibility to get rid of the PLT relocations. We can't take the address of them then, but that's ok: it's a build-time error not a run-time error. by
guenther2017-11-29 05:13:57 +0000
6d5248e0Document NAT and DNS forwarding rules for vmd(8) by
mlarkin2017-11-29 00:15:34 +0000
0e3a7a3dAdd a member to be used by __cxa_thread_atexit(). Remove padding which would now misalign things. by
kettenis2017-11-28 18:57:02 +0000
f82a07efImplement a DL_REFERENCE dlctl. To be used by the upcoming __cxa_thread_atexit() implementation. by
kettenis2017-11-28 17:19:47 +0000
3bd9248dGNU ld has prefixed the contents of .gnu.warning.SYMBOL sections with "warning: " since 2003, so the messages themselves need not contain the prefix anymore. by
tb2017-11-28 06:55:49 +0000
e818628cRemove deprecated agreement url. "nice" deraadt@ OK benno by
florian2017-11-27 01:59:55 +0000
c70ea1df (OPENBSD_6_2)MFC, ok florian@ by
benno2017-11-15 21:01:18 +0000
17bfed7aUpdate agreement URL; pointed out by sthen. OK benno, sthen by
florian2017-11-15 12:22:45 +0000
8f334ac9Remove /dev/arandom symlink. Nothing in base, xenocara, or ports uses /dev/arandom any longer. ok deraadt@ by
naddy2017-11-14 20:21:29 +0000
1899183cRemove HN_DIR variable and expand it in the only place it was used. It currently serves no purpose. by
tb2017-11-12 21:58:00 +0000
f3bb25bdupdate switch handling in vmd(8). vmd now gets switch information (rdomain, etc) from underlying switch interface instead of handling this on its own. by
mlarkin2017-11-11 02:50:07 +0000
a31160a2kill trailing whitespace introduced in previous commit by
tb2017-11-09 11:02:10 +0000
f6b274d4Use a variable for /usr/share/relink by
rpe2017-11-06 09:04:18 +0000
7f400936Remove the ':' at the beginning of ksh.kshrc. by
rpe2017-11-05 10:58:39 +0000
88c4af67Consolidate lib.so.*.a, ld.so.a and the kernel relink kit into one location under /usr/share/relink. by
rpe2017-11-05 10:29:24 +0000
c18926b3Revert recent changes to unbreak ports/net/samba by
jca2017-11-04 22:53:57 +0000
210ce1b3Switch DEC 3000 (TURBOchannel) alpha serial code to MI z8530 code. by
mpi2017-11-02 14:04:24 +0000
d5460018's' should include 'f'; from Jacqueline Jolicoeur by
otto2017-11-02 14:01:50 +0000
1decb82fReplace ps | grep with pgrep and use && instead of if-then-fi. From Raf Czlonka. by
tb2017-11-02 10:19:06 +0000
88624e3eChange pthread_cleanup_{push,pop} to macros that store the cleanup info on the stack instead of mallocing the list and move the APIs from libpthread to libc so that they can be used inside libc. by
guenther2017-10-28 21:23:14 +0000
5630e21fPartially revert rev 1.457 of /etc/rc. The pipe introduced in sysctl_conf() spawns a subshell. This prevents that the new process limits affect the daemons started during boot. OK rpe@ halex@ by
bluhm2017-10-25 10:42:51 +0000
97fa8ef4Don't let close(2) clobber errno. Some calls were already protected but not all. From Peter J. Philipp. by
millert2017-10-23 14:33:07 +0000
edffe314Restore a return that was inadvertently removed from freezero() in r1.234, which results in an internal double free when internal functions are not in use. by
jsing2017-10-19 16:34:33 +0000
51cd26e7<elf.h> should make it easier to port our ELF-related tools to other Unices. by
mpi2017-10-17 09:34:52 +0000
eba45324Remove stray, pointless and potentially confusing line. by
krw2017-10-16 23:43:41 +0000
601dbc08Make it explicit that there is only one type of random device: Create only /dev/urandom as device. Create /dev/random and /dev/arandom as symlinks. Drop /dev/srandom, which has been unused for a long time. /dev/arandom will go away at a later point. by
naddy2017-10-16 20:26:52 +0000
3986062cMove the thread-related .h files to /usr/src/include/, since the implementation is now spread between libc and librthread. No changes to the content by
guenther2017-10-15 23:40:33 +0000
863fd0a0The testprogram for ld.so reordering is executed in tmpdir. Move tmpdir for reordering library from /tmp to /usr/lib. This allows to have /tmp mounted noexec. by
rpe2017-10-12 18:14:05 +0000
7fd11d9fAdd STANDARDS: denis@ spotted that it was missing. OK deraadt@ jca@ jmc@ by
schwarze2017-10-12 15:22:32 +0000
bcb95775Move comment line and spacing. by
rpe2017-10-10 19:07:50 +0000
0def5ff2Make cacheflush(3) and get_fpc_csr(3) manual pages available on octeon. by
visa2017-10-08 15:14:17 +0000
0b0d57feUse the modern POSIX idiom "-exec ... {} +" instead of find|xargs and combine the two find(1) invocations into one. From Klemens Nanni; ok tb@ by
naddy2017-10-06 19:58:37 +0000
437fad26do not return f() where f is a void function; loop var type fix by
otto2017-10-05 04:44:49 +0000
09620f72Use dprintf instead of snprintf/write by
otto2017-10-05 04:41:43 +0000
f8314720 (tag: OPENBSD_6_2_BASE)SPI values 0-255 are reserved, so change the example to use a valid one. fixes parsing of the example configuration by
phessler2017-09-29 11:00:39 +0000
3b6bc929Make delayed free non-optional and make F do an extensive double free check. ok tb@ tedu@ by
otto2017-09-23 15:13:12 +0000
c08be5b5fix the example neighbor configurations by
phessler2017-09-22 09:28:47 +0000
4a127add (tag: openntpd-6.2p3)mapalign returns MAP_FAILED for failuer; from George Koehler by
otto2017-09-12 18:36:30 +0000
d1f95e32check double free before canary for chunks; ok millert@ by
otto2017-09-11 18:32:31 +0000
2aa0509bstr[n]casecmp_l(3) appeared in POSIX 2008, not in XPG 4; phessler@ reported that this oversight broke an armv7 bulk build; OK guenther@ by
schwarze2017-09-10 21:50:36 +0000
a333c412ntpd has been on by default for over two years now, so rework the text about enabling it; by
jmc2017-09-06 19:43:46 +0000
371b6573New POSIX xlocale implementation written from scratch. Complete in the sense that all POSIX *locale(3) and *_l(3) functions are included, but in OpenBSD, we of course only really care about LC_CTYPE and we only support ASCII and UTF-8. by
schwarze2017-09-05 03:16:14 +0000
909afec9delete pointless .Tn ASCII found by jca@ with mandoc -Tlint by
schwarze2017-09-02 13:56:44 +0000
4d8e6735Remove the miniroot for the OMAP3 BeagleBoards. Ethernet is on USB and USB isn't supported. The installer turns out to have been broken on BeagleBoard for over a year and no one noticed. The existing support for OMAP3 in the kernel remains though it isn't clear if anyone has tried it after the fdt changes went in. by
jsg2017-09-01 04:40:40 +0000
74793c89Mention strtok_r in STANDARDS by
jca2017-08-31 10:57:47 +0000
54754f0cBased on previous work from deraadt, add relinking of ld.so to reorder_libs() resulting in a unique ld.so on every system start. by
rpe2017-08-29 16:56:13 +0000
93980c1bDisplay that we are running the upgrade scripts when they exist. On slowish machines, running sysmerge(8) can take a little while so don't let people wonder about why the output seems stuck. by
ajacoutot2017-08-28 06:56:54 +0000
d0b27502Sync emacs package version by
jca2017-08-25 22:13:26 +0000
0bcaa61eadd new firmware key by
sthen2017-08-25 19:40:46 +0000
74a8628dadd 6.3 packages key by
naddy2017-08-22 19:33:03 +0000
aed0f4a7Move the kernel relinking code from /etc/rc into a seperate script /usr/libexec/reorder_kernel. Requested by ajacoutot@ to be able to relink the kernel from within syspatch(8). by
rpe2017-08-21 21:24:11 +0000
32a541ebadd basedir of the kernel link-kit by
rpe2017-08-21 20:52:06 +0000
b29dfecf5.9 pubkeys no longer needed by
deraadt2017-08-21 14:20:32 +0000
1cf47b06add 6.3 base key by
deraadt2017-08-21 14:08:40 +0000
a28bfc15Simplify the code for stopping daemons listed in pkg_scripts in reverse order on shutdown. by
rpe2017-08-20 19:45:37 +0000
a8805d8fcrank to 6.2-beta by
deraadt2017-08-20 16:56:43 +0000
83cbddd7two MALLOC_STATS only tweaks; one from David CARLIER, the other found by clang by
otto2017-08-20 11:06:16 +0000
d1415daccrank memory limits by
deraadt2017-08-16 18:06:55 +0000
f3645329Use sendsyslog() directly instead of syslog_r() for the "backwards memcpy" messages, to avoid pulling in piles of other machinery unnecessarily by
guenther2017-08-14 17:10:02 +0000
2f8ee43f (tag: openntpd-6.2p2)Minimize #includes, particularly to avoid thread_private.h by
guenther2017-08-12 22:59:52 +0000
a92396dcAdd manpage update for new grouping feature '{from,to} {i,e}bgp' by
job2017-08-12 17:39:51 +0000