mpi [Sun, 25 Oct 2015 12:05:40 +0000 (12:05 +0000)]
arp_ifinit() is no longer required.
miod [Sun, 25 Oct 2015 11:59:37 +0000 (11:59 +0000)]
Missing initializer; spotted by coverity.
mpi [Sun, 25 Oct 2015 11:58:11 +0000 (11:58 +0000)]
Introduce if_rtrequest() the successor of ifa_rtrequest().
L2 resolution depends on the protocol (encoded in the route entry) and
an ``ifp''. Not having to care about an ``ifa'' makes our life easier
in our MP effort. Fewer dependencies between data structures implies
fewer headaches.
Discussed with bluhm@, ok claudio@
deraadt [Sun, 25 Oct 2015 11:44:30 +0000 (11:44 +0000)]
backout; many issues remain...
semarie [Sun, 25 Oct 2015 11:09:28 +0000 (11:09 +0000)]
reorder some checks in pledge_namei() in order to properly work.
mainly move read/write whitelisted paths that should be *before* checking if
you have PLEDGE_WPATH.
with and ok deraadt@
deraadt [Sun, 25 Oct 2015 10:52:48 +0000 (10:52 +0000)]
the DNS process was not discarding & redirecting stdin/out/err to
/dev/null. copy the code from the ntp engine.
deraadt [Sun, 25 Oct 2015 10:30:58 +0000 (10:30 +0000)]
ps(1) needs sysctl KERN_PROC_CWD exposed as well in the pledge "ps" set.
hit by czarkoff
bluhm [Sun, 25 Oct 2015 10:22:09 +0000 (10:22 +0000)]
The only thing that was translated into multiple languages in OpenBSD
are the errno messages and signal names. Everything else is in
English. We are not planning to translate more text. Running a
mixed system with less than 1% of the text in native language makes
no sense. So remove the NLS support from libc messages. The
catopen(3) functions stay as they are.
OK stsp@ mpi@
krw [Sun, 25 Oct 2015 10:20:51 +0000 (10:20 +0000)]
Use 'fdisk -i', instead of 'fdisk -e' with a here document of
'reinit;update;write;quit'. They've done the same thing for some
time now.
Tweaks & test from rpe@.
ok rpe@ deraadt@
bluhm [Sun, 25 Oct 2015 10:05:09 +0000 (10:05 +0000)]
Instead of doing the the if_get() dance for rt_missmsg(), change the
function to take an interface index.
discussed with mpi@; OK claudio@
miod [Sun, 25 Oct 2015 09:59:08 +0000 (09:59 +0000)]
sync
deraadt [Sun, 25 Oct 2015 09:39:00 +0000 (09:39 +0000)]
need "getpw" pledge; spotted by matthieu
deraadt [Sun, 25 Oct 2015 09:37:08 +0000 (09:37 +0000)]
route flush cannot pledge before sysctl for NET_RT_DUMP; defer the act.
issue spotted by matthieu
tedu [Sun, 25 Oct 2015 09:34:49 +0000 (09:34 +0000)]
just dump the help on stdout with messing about with a pager.
makes pledge much simpler.
from jan stary
nicm [Sun, 25 Oct 2015 08:59:26 +0000 (08:59 +0000)]
Pass output from jobs through format_expand() so they are expanded again
(this was the previous behaviour).
ajacoutot [Sun, 25 Oct 2015 08:39:26 +0000 (08:39 +0000)]
No need to declare pwd_gensalt; it's unused and gone.
ok tedu@
deraadt [Sun, 25 Oct 2015 08:07:31 +0000 (08:07 +0000)]
pledge the main usage patterns similar to arp(8). Some akkorokamui
prevent doing this better, someone should try to refactor this more
like arp... also figure out what dawn-of-ipv6 options can be removed.
ok benno
deraadt [Sun, 25 Oct 2015 07:48:16 +0000 (07:48 +0000)]
Let's see if anyone screams about not being able to specify $TMPDIR
for their tmux sockets.
(Over the years, I have seen $TMPDIR set up worse than /tmp many times,
and don't know how this practice infected other parts of the system.
Nothing uses tmpdir(3), nor a huge-temporary-file program like sort.)
ok nicm
deraadt [Sun, 25 Oct 2015 07:44:42 +0000 (07:44 +0000)]
pledge bind(1), dig(1), and nslookup(1). This modifies the underlying
ISC library to use socket(2) with the SOCK_DNS flag. As a result, the
port commands are disabled (such practice is rare in the wild these days,
and pretty incompatible with the DNS vs regular socket concept in pledge..)
ok bluhm phessler reyk, etc
guenther [Sun, 25 Oct 2015 04:13:59 +0000 (04:13 +0000)]
Use sigaction() instead of signal() to avoid pulling in unnecessary
wrappers. To keep uses from crawling back in, mark signal() as
deprecated inside libc.
ok deraadt@
guenther [Sun, 25 Oct 2015 04:11:00 +0000 (04:11 +0000)]
Use dprintf() instead of fprintf() in the signal handler
guenther [Sun, 25 Oct 2015 03:40:58 +0000 (03:40 +0000)]
POSIX says that you can't capture the return value of sigsetjmp().
Fortunately, we don't need it as we only pass siglongjmp() a single value.
ok deraadt@
millert [Sun, 25 Oct 2015 01:57:09 +0000 (01:57 +0000)]
For SYS_open let the /dev/null special case match if any TMN_RPATH,
TMN_WPATH or both are set in p_pledgenote. Matches the style used
for /dev/tty special cases (among others). From deraadt@
renato [Sun, 25 Oct 2015 00:43:35 +0000 (00:43 +0000)]
Fix some bugs in the detection of when an interface can be enabled.
renato [Sun, 25 Oct 2015 00:42:02 +0000 (00:42 +0000)]
When converting the real bandwidth to the composite bandwidth, truncate
before applying the scaling factor.
When converting the composite bandwidth to the real bandwidth, apply
the scaling factor before the division and only then truncate.
This is to keep consistent with what Cisco does, the draft is unclear
on this point.
renato [Sun, 25 Oct 2015 00:39:14 +0000 (00:39 +0000)]
Add a few more overflow protections in the DUAL state
machine.
nicm [Sun, 25 Oct 2015 00:02:00 +0000 (00:02 +0000)]
Allow getsockopt(IP_OPTIONS) (with inet), needed by portmap (for RPC).
ok deraadt
mmcc [Sat, 24 Oct 2015 23:07:41 +0000 (23:07 +0000)]
typo
djm [Sat, 24 Oct 2015 22:56:19 +0000 (22:56 +0000)]
fix keyscan output for multiple hosts/addrs on one line when
host hashing or a non standard port is in use; bz#2479 ok dtucker@
djm [Sat, 24 Oct 2015 22:52:22 +0000 (22:52 +0000)]
skip "Could not chdir to home directory" message when chrooted
patch from Christian Hesse in bz#2485 ok dtucker@
matthieu [Sat, 24 Oct 2015 20:41:40 +0000 (20:41 +0000)]
chlim has been removed from the nd_ifinfo structure.
ok kettenis@
miod [Sat, 24 Oct 2015 19:47:44 +0000 (19:47 +0000)]
Move removal of "getpw" pledge after all setusercontext() calls, for yp sake.
Noticed by matthieu@
miod [Sat, 24 Oct 2015 19:23:48 +0000 (19:23 +0000)]
setusercontext() may still need "getpw" pledge rights; unbreaks doas on yp
accounts after 1.43; found the hard way by matthieu@
mmcc [Sat, 24 Oct 2015 18:51:40 +0000 (18:51 +0000)]
Cast toupper()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:49:39 +0000 (18:49 +0000)]
Cast ctype functions' argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:39:05 +0000 (18:39 +0000)]
Cast ctype functions' argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:37:23 +0000 (18:37 +0000)]
Cast ctype functions' argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:35:08 +0000 (18:35 +0000)]
Cast ctype functions' argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:33:22 +0000 (18:33 +0000)]
Cast ctype functions' argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:29:15 +0000 (18:29 +0000)]
Cast ctype functions' argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:26:13 +0000 (18:26 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:16:40 +0000 (18:16 +0000)]
Cast ctype functions' argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:14:09 +0000 (18:14 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
guenther [Sat, 24 Oct 2015 18:13:18 +0000 (18:13 +0000)]
Move #includes from private.h to the .c files that need them, getting rid of
several. Switch from FILENAME_MAX to PATH_MAX (it's for open(), not fopen()).
ok deraadt@ tedu@ krw@
mmcc [Sat, 24 Oct 2015 18:10:47 +0000 (18:10 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:04:06 +0000 (18:04 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 18:02:28 +0000 (18:02 +0000)]
Cast isdigit()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:56:42 +0000 (17:56 +0000)]
Cast isdigit()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:55:02 +0000 (17:55 +0000)]
Cast islower()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:51:59 +0000 (17:51 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:48:36 +0000 (17:48 +0000)]
Cast isprint()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:46:19 +0000 (17:46 +0000)]
Cast toupper()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:44:49 +0000 (17:44 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:43:28 +0000 (17:43 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:40:38 +0000 (17:40 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:37:56 +0000 (17:37 +0000)]
Cast isdigit()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:36:06 +0000 (17:36 +0000)]
Cast isalpha()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:34:16 +0000 (17:34 +0000)]
Cast isblank()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:33:05 +0000 (17:33 +0000)]
Cast isdigit()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:31:00 +0000 (17:31 +0000)]
Cast isblank()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:29:03 +0000 (17:29 +0000)]
Cast toupper()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:27:06 +0000 (17:27 +0000)]
Cast islower()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:23:14 +0000 (17:23 +0000)]
Cast islower()'s argument to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:20:17 +0000 (17:20 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
mmcc [Sat, 24 Oct 2015 17:13:27 +0000 (17:13 +0000)]
Cast ctype functions' arguments to unsigned char.
ok guenther@
jmc [Sat, 24 Oct 2015 17:08:36 +0000 (17:08 +0000)]
some minor tweaks; ok ajacoutot
florian [Sat, 24 Oct 2015 16:59:15 +0000 (16:59 +0000)]
Inline trivial myechoreply function in the one place it's used; like
ping(8).
mpi [Sat, 24 Oct 2015 16:57:46 +0000 (16:57 +0000)]
Convert to rt_ifidx.
ok bluhm@
claudio [Sat, 24 Oct 2015 16:42:18 +0000 (16:42 +0000)]
Filter our RTM_GET messages which are not from us.
florian [Sat, 24 Oct 2015 16:41:11 +0000 (16:41 +0000)]
nonce is unused.
sthen [Sat, 24 Oct 2015 16:32:52 +0000 (16:32 +0000)]
Carry out additional length/size checks in DECnet packet printing, avoiding a
segfault with malformed packets. Adapted from
f61639179282 in tcpdump.org git
by Kevin Reay, but not including the header no-copy optimization that was in
the upstream patch. ok benno@
florian [Sat, 24 Oct 2015 16:32:26 +0000 (16:32 +0000)]
Sync ping6 output to ping. ping has been around for longer and so
defines the canonical output format. Having different output is
getting in the way of a merge.
This moves the output of the src address to the -v option. With the
overly complicated IPv6 address selection it's sometimes usefull to
have this information.
OK benno@, sthen@ can live with it.
mpi [Sat, 24 Oct 2015 16:24:21 +0000 (16:24 +0000)]
Convert to rt_ifidx.
ok bluhm@
mpi [Sat, 24 Oct 2015 16:08:48 +0000 (16:08 +0000)]
Ignore Router Advertisment's current hop limit.
Appart from the usual inet6 axe murdering exercise to keep you fit, this
allows us to get rid of a lot of layer violation due to the use of per-
ifp variables to store the current hop limit.
Imputs from bluhm@, ok phessler@, florian@, bluhm@
benno [Sat, 24 Oct 2015 16:02:04 +0000 (16:02 +0000)]
clarify use of "bgpctl show rib in|out neighbor FOO"
feedback from jmc@
tedu [Sat, 24 Oct 2015 15:59:51 +0000 (15:59 +0000)]
the last user of gensalt has been removed. remove the file.
reyk [Sat, 24 Oct 2015 15:46:10 +0000 (15:46 +0000)]
Add CAVEATS section and explain why pair(4) is not like vether(4).
With OK and input from jmc@
zhuk [Sat, 24 Oct 2015 15:32:50 +0000 (15:32 +0000)]
Make it more obvious what exact csplit commands will do.
With much help & okay from jmc@
jca [Sat, 24 Oct 2015 15:31:00 +0000 (15:31 +0000)]
Fix pledge request to allow for setgroups.
setgroups needed "proc" before the introduction of "id" on 2015/10/17.
Initial patch from Gregor Best, from which I further removed "proc".
millert [Sat, 24 Oct 2015 15:19:01 +0000 (15:19 +0000)]
The default modifier should be copied for empty keys even if -b is
specified. From Cedric Krier.
millert [Sat, 24 Oct 2015 15:16:53 +0000 (15:16 +0000)]
Add test for -b and -r when -k is specified.
benno [Sat, 24 Oct 2015 15:15:55 +0000 (15:15 +0000)]
"bgpctl sh rib in" and "bgpctl sh rib out" require a neighbor argument
to work. send an error if none is given.
ok claudio@
stsp [Sat, 24 Oct 2015 14:01:40 +0000 (14:01 +0000)]
Wait a short while between setting a USB device's address and reloading
its descriptor. Fixes flaky attach of USB devices (most importantly the
detachable keyboard) on the Thinkpad Helix 2, and perhaps elsewhere.
Problem diagnosed by mpi; ok mpi@
ajacoutot [Sat, 24 Oct 2015 13:57:24 +0000 (13:57 +0000)]
"enable" and "disable" are here to stay now that they have a real added value
(possibility to pass several enable|disable daemons at once); so document them.
While here, add a check to make sure a service|daemon exists when running "order".
"Yay" and ok sthen@
ajacoutot [Sat, 24 Oct 2015 13:53:20 +0000 (13:53 +0000)]
Don't compile pwd_gensalt, it's not needed since we use crypt_checkpass.
ok tedu@
jmc [Sat, 24 Oct 2015 13:35:33 +0000 (13:35 +0000)]
various fixes;
jmc [Sat, 24 Oct 2015 13:32:45 +0000 (13:32 +0000)]
various clean up;
bentley [Sat, 24 Oct 2015 13:32:18 +0000 (13:32 +0000)]
nl_langinfo(3) conforms to POSIX.
ok jmc@
bluhm [Sat, 24 Oct 2015 12:58:32 +0000 (12:58 +0000)]
Handling of bogus CA file has changed in syslogd. Adapt tests to
new error messages.
bluhm [Sat, 24 Oct 2015 12:49:37 +0000 (12:49 +0000)]
If loading the CA certificates at startup had failed, the syslogd
child tried to load the default CA file when it was connecting to
a TLS server. The latter has never worked as the child is chrooted
to /var/empty. Set the CA storage to an empty string to avoid this
behavior. As a benefit pledge "rpath" can be removed.
OK benno@
mpi [Sat, 24 Oct 2015 12:33:16 +0000 (12:33 +0000)]
Convert some if_ref() to if_get().
ok claudio@
mpi [Sat, 24 Oct 2015 11:58:46 +0000 (11:58 +0000)]
Some rt_ifp to rt_ifidx conversions.
ok bluhm@
claudio [Sat, 24 Oct 2015 11:54:50 +0000 (11:54 +0000)]
Implement the missing bits to parse the other MRT message types.
Printing bgp messages is still missing lots but at least it is a start.
I onced abused tcpdump's bgp protocol handler for this but that is an ugly hack.
bluhm [Sat, 24 Oct 2015 11:53:41 +0000 (11:53 +0000)]
Removing xresolve from generating script has been forgotten.
OK mpi@
mpi [Sat, 24 Oct 2015 11:47:07 +0000 (11:47 +0000)]
Define ``rt_ifidx'' as rt_ifp->if_index to ease the transtion towards
getting rid of interface pointers in route entries.
ok bluhm@
claudio [Sat, 24 Oct 2015 11:41:03 +0000 (11:41 +0000)]
Print if a route is redistributed or not at least for static & connected.
With phessler@
jung [Sat, 24 Oct 2015 11:38:39 +0000 (11:38 +0000)]
add -h flag to SYNOPSIS as well
prodded and ok jmc
benno [Sat, 24 Oct 2015 11:37:17 +0000 (11:37 +0000)]
clarify where "with tls" can be used.
ok jmc@
reyk [Sat, 24 Oct 2015 11:01:39 +0000 (11:01 +0000)]
Remove superfluous assignment.
Pointed out by and OK mikeb@
reyk [Sat, 24 Oct 2015 10:52:05 +0000 (10:52 +0000)]
Add pair(4), a vether-based virtual Ethernet driver to interconnect
rdomains and bridges on the local system. This can be used to route
through local rdomains, to create L2 devices (like trunks) between
them, and many other things.
Discussed with many, with input from mpi@
OK sthen@ phessler@ yasuoka@ mikeb@
projects / openbsd / log