8082e340zero out sockaddr_in before use; fixes use of stack garbage as port number in "query from"; ok phessler@ job@ by
naddy2017-08-11 19:12:21 +0000
90b07573naddy@ reported confusion on why "query from" seemed to be ignored in some cases. by
job2017-08-10 22:59:42 +0000
1188ef2cfix typo in comment by
guenther2017-08-10 13:35:18 +0000
bf5a7be1___errno (three underbars) is long gone by
guenther2017-08-10 13:34:46 +0000
0c990700add /usr/X11R6/share/libdrm for recent libdrm versions by
jsg2017-08-05 14:13:39 +0000
93246168add missing and correct misspelled names, most in NAME sections; found with regress/usr.bin/mandoc/db/dbm_dump; OK jmc@ by
schwarze2017-08-01 14:57:02 +0000
50924906Finally remove backwards compat code to support the 'rtsol' keyword in hostname.if(5) by
rpe2017-07-25 21:17:11 +0000
2ee23961zap trailing whitespace; by
jmc2017-07-22 06:39:54 +0000
bce15ce0rework the page a bit, clarify a few things, maybe better wording by
tedu2017-07-22 03:23:48 +0000
d4e0fc8cAlign ifstart() in netstart and install.sub. by
rpe2017-07-21 20:22:13 +0000
303b18a3Multiple virtualization layers may be available at the same time reachable through different pvbus device nodes. by
mikeb2017-07-21 19:15:07 +0000
29483b4cUse a bit better idiom to get most recent version of the library being reordered. by
zhuk2017-07-18 19:31:20 +0000
806147abUse numerical sysctl output to check for nfs mounts. by
rpe2017-07-18 16:29:44 +0000
1f2252a3Tweak previous. by
rpe2017-07-17 18:52:26 +0000
f9b7ee64Use a more compact way to compose the initial pf ruleset. by
rpe2017-07-17 18:37:42 +0000
af7a0fc7Now that choosing the library versions is much faster, we can do it after remounting the filesystem containing /usr/lib as rw: the former is pointless if the latter should happen to fail. by
tb2017-07-17 18:16:14 +0000
33c5e851Optimize and simplify the selection of the latest library version in reorder_libs(). by
tb2017-07-17 12:02:53 +0000
c29a36dbReplace some `eval` with $(eval) for consistency and use parameter expansion instead of basename(1). From Raf Czlonka by
tb2017-07-15 07:11:42 +0000
86bc4f22 (tag: openntpd-6.2p1)Test if an acct file exists before trying to rename it. This silences false warnings in the frist three daily mails after process accounting has been turned on. from Raf Czlonka by
bluhm2017-07-10 11:18:48 +0000
131bcbfdone more instance of the previous commit; also initialize ->offset to a definite value in the size == 0 case by
otto2017-07-10 09:44:16 +0000
2b5d6b8aIncrease size to make slaacd fit. Size problem noted by me, correct fix from deraadt@ by
florian2017-07-08 15:39:11 +0000
4a550fa7Only access offset if canaries are enabled *and* size > 0, otherwise offset is not initialized. Problem spotted by Carlin Bingham; ok phessler@ tedu@ by
otto2017-07-07 19:14:46 +0000
c212aaddThe 0x (or 0X) prefix in base 16 is optional so only skip over the prefix if the character following it is a valid hex char. The C99 standard is clear that given the string "0xy" zero should be returned and endptr set to point to the "x". OK deraadt@ espie@ by
millert2017-07-06 16:23:11 +0000
5d484dd9void functions don't return 0 by
tb2017-07-05 11:44:35 +0000
1f01084eSwitch reorder_kernel() from sending emails to logging via syslog and to write the logfile inside the kernel compile dir. by
rpe2017-07-04 19:02:11 +0000
e4399200Add GRACEFUL_SHUTDOWN example to bgpd.conf by
job2017-07-04 09:33:36 +0000
a17bb5c1Improve reorder_kernel() by
rpe2017-06-30 17:06:03 +0000
13f8fe77remove some old cruft. by
tedu2017-06-27 03:42:00 +0000
e2ce21fcImport regenerated moduli. by
dtucker2017-06-23 03:30:42 +0000
c6e01217Adjust relink procedure to use new targets. Better use semantics for users and developers. diff from rpe, ok tb by
deraadt2017-06-22 16:03:36 +0000
6bd77c2dcompile.tgz no longer needs to contain machine/ subdir, instead it needs makegap.sh ok tb by
deraadt2017-06-22 16:02:42 +0000
4f14619aWhen building a snapshot, install the compile.tgz file to builder's /usr/share/ so that next boot will find it and perhaps use it. ok tb rpe by
deraadt2017-06-21 23:52:55 +0000
8ba7cdbeAs early as possible, create a link /bsd.booted to the /bsd kernel we presume we booted from. If you boot from another kernel, we cannot help you later with hibernate, sorry -- The kernel does not get a useable filename from the bootblocks. by
deraadt2017-06-19 22:50:50 +0000
b4e0da4eport the RBT code to userland by making it part of libc. by
dlg2017-06-19 03:06:26 +0000
caf9e7cbAdd a new function reorder_kernel() that relinks and installs the new kernel in the background on system startup. It stores the hash of the new kernel and sends a notification email to the admin or root user. If it finds /usr/share/compile.tgz, it removes the existing compile dir and replaces it with the content of (new) archive. If the hash of /bsd does not match the stored one, no relinking happens. by
rpe2017-06-14 21:39:53 +0000
a4a39bd6Grow sgi iso, to account for base containing compile.tgz. SGI has 8 kernels, so the file is 113MB! by
deraadt2017-06-14 16:36:10 +0000
d37bfa62no need for branding in .Nd line by
deraadt2017-06-13 19:41:55 +0000
79f54021For KARL, include a linkkit into the base set, as usr/share/compile.tgz. This contains the relevant pieces from all the GENERIC* compile directories (*.o ld.script Makefile gap.S). It also includes the machine/ subdir for now, to support re-randomizing of gap.S, though other methods are being investigated. (Any binutils ld.script hackers out there?) collaboration with rpe by
deraadt2017-06-13 17:09:52 +0000
25f6ca2eThe KARL compile.tgz linkkit adds some growth to the base set. Prepare the install*.fs files for this growth. by
deraadt2017-06-13 16:28:06 +0000
b48e5dd0destroy lint remnants. okay millert@ deraadt@ by
espie2017-06-12 18:49:33 +0000
d8441d1aReport processes that were killed due to pledge or memory access violations in the daily mail. OK millert@ jmc@ by
bluhm2017-06-10 11:28:30 +0000
8aadf669start slaacd as early as possible, right after pf and sysctl.conf are setup. Input & OK deraadt@ by
florian2017-06-06 13:59:37 +0000
f3d0ecf9Mention that the special files are created in the current working directory. Suggested by Scott Cheloha. by
tb2017-06-06 08:11:23 +0000
28ef4166Temporarily disable the second call to rc_check until I figure out what is going on. Should fix another case of false negative reported by sthen (redis). by
ajacoutot2017-06-05 18:31:23 +0000
7fe3ad83Fix logic in _rc_wait to properly cope with setproctitle(3) daemons. It was a regression from my recent rc.subr changes. by
ajacoutot2017-06-05 15:24:57 +0000
6e9df4edWe have been running a small awk program before installing the relinked libc. Perform the same kind of test for relinked libcrypto, using an openssl sequence (proposed by sthen) by
deraadt2017-06-03 22:59:09 +0000
35c873feImmediately after mounting / read-write, chmod og-rwx the kernel. Remote prying eyes were already been hindered at determining kernel addresses, now local prying eyes are also hindered. ok tb rpe by
deraadt2017-06-03 22:33:36 +0000
7c455ed0kernels in compile dirs are og-rwx, so need to make them readable in $RELEASEDIR ok tb rpe by
deraadt2017-06-03 22:23:47 +0000
53a0d120Move slaacd to /sbin jca points out that all the other interface configuration tools live there (like ifconfig or dhclient). Furthermore it starts so early in the boot process that /usr might not be mounted yet if it's a nfs filesystem. sthen and deraadt agree by
florian2017-06-03 10:00:29 +0000
20dd9015tweak previous; by
jmc2017-05-31 06:23:19 +0000
184c157eadd option "query from <ip>" to ntpd.conf, to specify a local IP address for outgoing ntp queries. From Job Snijders, thanks! with feedback and ok henning@ by
benno2017-05-30 23:30:48 +0000
f55fd6c8Don't fall back to heapsort() if we would otherwise switch to insertion sort (when the number of elements is < 7). by
millert2017-05-30 14:54:09 +0000
658b6fe5Introduce a scary rc.conf(8) knob library_aslr=(YES|NO) to turn off the reordering of libraries by rc(8). This way machines with very slow disk I/O have a chance of booting within reasonable time now that libcrypto is also randomized. by
tb2017-05-30 12:04:26 +0000
4ee95bfcEnable slaacd(8) by default and disable router solicitation and advertisement processing in the kernel. Go for it!!! deraadt@ additional encouragement to push forward from at least mpi and henning special thanks to naddy for being an early adopter and finding bugs. by
florian2017-05-30 08:58:34 +0000
fe7d6b20rc.d(8) for slaacd OK phessler, deraadt by
florian2017-05-29 10:24:06 +0000
64e2dc97Randomize link-order of libcrypto as we do with libc. This library has many small functions without significant local storage, therefore less tail protection from -fstack-protector-strong to prevent their use as ROP gadgets. It is used in security contexts. Also many functions dribble pointers onto the stack, allowing discovery of gadgets via the fixed relative addresses, so let's randomly bias those. ok tedu jsing by
deraadt2017-05-29 09:44:01 +0000
3cbf7235Move check later to mitigate a possible race. by
ajacoutot2017-05-28 18:51:27 +0000
c555c5ecIndent and rename var; no functional change. by
ajacoutot2017-05-28 10:12:42 +0000
3c9cd3dbWhen a daemon reaches its timeout when starting, display "timeout" instead of "ok" so the user is warned and has a chance to fix it (most of the time due to bogus flags). Daemons reaching the timeout without being able to start are still marked as "failed" (which should also give a clue to the user that some investigation is needed). by
ajacoutot2017-05-28 09:31:45 +0000
b6d8d015Drop useless lines continuation; no functional change. by
ajacoutot2017-05-28 08:38:10 +0000
3abe3b2detc/netstart: use colon separator instead of dot with chown by
awolk2017-05-28 08:07:33 +0000
6f1669a9Ok turns out we still want to keep the rc_bg variable around but we need to know which daemon cannot background themselves (actually we want to know the opposite, but there are much more). However, it's only needed in _rc_wait and rc.subr still does its magic without the need to add `&'. by
ajacoutot2017-05-27 19:55:48 +0000
0f799024move sha224_initial_hash_value[] under !SHA2_SMALL; ok deraadt@ millert@ by
naddy2017-05-27 15:32:51 +0000
01a49fe6Add an ALRM timer to cope with 2 annoying issues in rc.d(8): - prevent a daemon from hanging the boot (typo in your flagsm e.g. httpd_flags=-d) - make sure we can get the status of a backgrounded daemon instead of always returning success by
ajacoutot2017-05-27 13:51:52 +0000
fe11de23Support swapping 32-bit aligned elements on 64-bit platforms. Previously they would be swapped a byte at a time when sizeof(int) != sizeof(long). Idea from FreeBSD. by
millert2017-05-24 21:18:25 +0000
d34d1e7cEnable radeondrm(4) on loongson to get accelerated graphics with the RS780E chipset. by
visa2017-05-21 13:00:53 +0000
2476875aDocument that qsort falls back to heapsort() if the recursion depth exceeds 2 lg N and add a reference to the introsort paper. by
millert2017-05-20 13:09:01 +0000
e8374291Use David Musser's introsort algorithm to fall back to heapsort(3) when the recursion depth reaches 2*lg(n + 1). This avoids quicksort's quadratic behavior for pathological input without appreciably changing the average run time. by
millert2017-05-20 12:48:56 +0000
3791eca4The BSD qsort() performs tail recursion elimination on the second side of the array being partitioned to save on stack space. Greater savings can be gained by choosing recursion for the smaller side of the partition and eliminating recursion for the larger side. This also results in a small but measurable performance gain. OK otto@ schwarze@ by
millert2017-05-17 16:58:20 +0000
1badcf62Typo: freezeo -> freezero by
tb2017-05-15 18:05:34 +0000
0c8e3f2e- fix bug wrt posix_memalign(3) of blocks between half a page and a page - document posix_memalign() does not play nice with reacallocarray(3) and freezero(3) by
otto2017-05-13 07:11:29 +0000
5d14e6afarc4random_buf should be bounded buffer, not bounded string by
tom2017-05-11 11:52:18 +0000
60759aa9Add bounded attribute to freezero(). OK tom@ by
millert2017-05-10 21:48:29 +0000
473642c0Change test from [] to [[]] and simplify pattern. by
rpe2017-05-07 09:40:15 +0000
9b095682Replace hardcoded script name with ${0##*/} by
rpe2017-05-07 07:55:17 +0000
9b036c42spacing (in EXAMPLES code) by
reyk2017-05-03 15:49:10 +0000
fc35552aadd vm.conf to changelist and mtree/special OK reyk mlarkin by
gsoares2017-05-03 11:55:36 +0000
04829b62Revert r1.170 and remove the id==0 check. The id binary is not available in nfs diskless setups at this point. by
rpe2017-05-01 16:23:42 +0000
6b0ae6efRemove last remnants of rtsol. IPv6 autoconfiguration of interfaces is now done in ifstart(). Remove ipv6autoconf() and replace rtsolif with a boolean variable V6_AUTOCONF. Replace dhcpif with a boolean variable V4_DHCPCONF. Both are later used in defaultroute() to decide whether or not to configre defaultroutes from /etc/mygate. by
rpe2017-05-01 14:23:29 +0000
e407e54bComments and spacing. by
rpe2017-05-01 14:01:47 +0000
6dd8be9eDo not try to delete a default route before adding it. by
mpi2017-04-30 19:37:13 +0000
34625b7e (tag: openntpd-6.1p1, OPENBSD_6_1)MFC: Switch Linux getrandom() usage to non-blocking mode, continuing to use fallback mechanims if unsuccessful. by
beck2017-04-29 18:57:00 +0000
0e208737Switch Linux getrandom() usage to non-blocking mode, continuing to use fallback mechanims if unsuccessful. by
beck2017-04-29 18:43:31 +0000
8880a83fInstall arm64 manpages: eeprom(8), MAKEDEV(8). ok phessler kettenis by
sthen2017-04-26 14:53:11 +0000
15ac759fUnbreak netstart for multiple inteface configurations like trunk or carp. Ensure that the noglob option is disabled at the end of parse_hn_line() and ifstart(). by
rpe2017-04-25 19:17:33 +0000
e160122cIntroduce a new function parse_hn_line() that replaces the existing hostname.if(5) parsing code in ifstart(). Add a -n option to netstart to only print the interface configuration commands instead of executing them. Add a HN_DIR variable, that points to the directory of the hostname.if files (default /etc) that allows for future regression tests. by
rpe2017-04-24 20:31:48 +0000
75d99259Rearrange text a bit to make it clear what "discarded" means; ok jmc@ deraadt@ by
otto2017-04-23 06:36:36 +0000
6a32bb1cFor small allocations (chunk) freezero only validates the given size if canaries are enabled. In that case we have the exact requested size of the allocation. But we can at least check the given size against the chunk size if C is not enabled. Plus add some braces so my brain doesn't have to scan for dangling else problems when I see this code. by
otto2017-04-22 09:12:49 +0000
e4714031add previous to NAME; by
jmc2017-04-20 19:30:42 +0000
cddf1b0fAdd getptmfd(), fdopenpty(), fdforkpty() functions. These allow programs to separate the open(/dev/ptm) from the ioctl(PTMGET) for privilege separation or pledge(). by
nicm2017-04-20 17:48:30 +0000
8838f5e9Get TCB address using the RDHWR instruction instead of __get_tcb(). This gives fast access to the address on systems that implement the UserLocal register. TCB caching is still used when running in the single-threaded mode in order not to penalize old systems. by
visa2017-04-20 16:07:52 +0000
877650b5Simplify patching of motd(5), also making it agree better with the documentation if the first line of the file is blank. Quirk reported by Anthony Coulter <bsd at anthonycoulter dot name>. OK rpe@ by
schwarze2017-04-18 23:06:50 +0000
979a770edon't forget to fill in canary bytes for posix_memalign(3); reported by and ok jeremy@ by
otto2017-04-18 15:46:44 +0000
6d540f61installation of the compiler creates include/g++ if needed; mtree does not need to do this. by
deraadt2017-04-18 15:15:09 +0000
f94fcc6euse freezero() instead of explicit_bzero+free by
deraadt2017-04-18 04:06:21 +0000
2811f9b1skip mtree creation of two include dirs. gcc3 may still use them, but if so gcc3 should create them itself. by
deraadt2017-04-17 21:45:34 +0000
6746db08consictently use .Dv NULL and a few other tweaks; ok schwarze@ by
otto2017-04-17 18:07:15 +0000
f7bddd98whitespace fixes by
otto2017-04-17 16:36:35 +0000