CVS: cvs.openbsd.org: src

[Jason McIntyre]

CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2016/11/29 00:29:52

Modified files:
lib/libcrypto/man: CRYPTO_set_ex_data.3 EVP_PKEY_set1_RSA.3 
   OPENSSL_malloc.3 PEM_read.3 
   PEM_read_bio_PrivateKey.3 

Log message:
minor cleanup;

CVS: cvs.openbsd.org: src

[Jason McIntyre]

CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2016/11/29 00:18:23

Modified files:
usr.sbin/switchd: switchd.8 

Log message:
article fix; from rob pierce

CVS: cvs.openbsd.org: src

[Jonathan Gray]

CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2016/11/28 20:59:31

Modified files:
usr.sbin/user  : group.8 groupadd.8 groupdel.8 groupinfo.8 
 groupmod.8 main.c user.8 user.c useradd.8 
 userdel.8 userinfo.8 usermgmt.h usermod.8 

Log message:
Alistair Crooks rescinded the advertising clause of his user(8)
license in 2005 in NetBSD.

https://mail-index.netbsd.org/source-changes/2005/11/25/0002.html

CVS: cvs.openbsd.org: src

[Darren Tucker]

CVSROOT:/cvs
Module name:src
Changes by: dtuc...@cvs.openbsd.org 2016/11/28 20:54:50

Modified files:
usr.bin/ssh: sshd.c sshpty.c sshpty.h 

Log message:
Factor out code to disconnect from controlling terminal into its own
function.  ok djm@

CVS: cvs.openbsd.org: src

[Theo de Raadt]

CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2016/11/28 20:21:33

Modified files:
distrib/sets/lists/comp: mi 

Log message:
sync

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 17:45:36

Modified files:
lib/libcrypto/man: RAND_load_file.3 

Log message:
Add Copyright and license.
Adjust RETURN VALUES to match reality.
Delete the useless SEE ALSO section.

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 17:26:23

Modified files:
lib/libcrypto/man: RAND_bytes.3 

Log message:
Add Copyright and license.
Add deprecation notice.
Delete useless cross references.

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 17:07:45

Modified files:
lib/libcrypto/man: Makefile RAND_add.3 RAND_set_rand_method.3 
Removed files:
lib/libcrypto/man: RAND_cleanup.3 

Log message:
No text remains from OpenSSL, so use the standard OpenBSD license.
Mention the true author (Miod 2014).

Merge the useless page RAND_cleanup(3) into RAND_add(3).
Fix the return type of RAND_set_rand_method(3).
Mention the constant return values.

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 16:27:55

Modified files:
lib/libcrypto/man: PKCS5_PBKDF2_HMAC.3 PKCS7_decrypt.3 
   PKCS7_encrypt.3 PKCS7_sign.3 
   PKCS7_sign_add_signer.3 PKCS7_verify.3 

Log message:
Copyright and license

CVS: cvs.openbsd.org: src

[Alexander Bluhm]

CVSROOT:/cvs
Module name:src
Changes by: bl...@cvs.openbsd.org   2016/11/28 16:19:18

Modified files:
regress/sys/net/pf_forward: Makefile 

Log message:
Enable the pmtu and traceroute subtests with af-to.  pf has been
fixed now.

CVS: cvs.openbsd.org: src

[Alexander Bluhm]

CVSROOT:/cvs
Module name:src
Changes by: bl...@cvs.openbsd.org   2016/11/28 16:15:31

Modified files:
sys/net: pf.c 
sys/netinet: ip_input.c ip_var.h 

Log message:
Path MTU discovery and traceroute did not always work with pf af-to.
If an incoming packet is directly put into the output path, sending
the icmp error packet is never done.  As this is basically forwarding,
calling ip_forward() for such packets does everything that is needed.
OK mikeb@

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 16:02:16

Modified files:
lib/libcrypto/man: Makefile 
Added files:
lib/libcrypto/man: PKCS12_newpass.3 

Log message:
import PKCS12_newpass(3) from OpenSSL

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 15:41:38

Modified files:
lib/libcrypto/man: PKCS12_create.3 PKCS12_parse.3 

Log message:
Copyright and license

CVS: cvs.openbsd.org: src

[Alexander Bluhm]

CVSROOT:/cvs
Module name:src
Changes by: bl...@cvs.openbsd.org   2016/11/28 15:27:10

Modified files:
regress/sys/kern/setuid: Makefile 

Log message:
The setuid regression test builds and runs a binary that is setuid
or setgid nobody.  Since /usr/obj is 0770, user nobody cannot access
other files there anymore.  Install all programs into a temporary
directory and run them there.  Check that /tmp is mounted without
nosuid.

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 15:25:51

Modified files:
lib/libcrypto/man: CRYPTO_set_ex_data.3 

Log message:
Add Copyright and license.

Merge the documentation of six additional functions from OpenSSL.

There are some differences between OpenSSL and LibreSSL, for example
we don't have CRYPTO_free_ex_index(), CRYPTO_EX_INDEX_EC_KEY,
and CRYPTO_EX_INDEX_APP.  I hope i got the differences right.

"if you don;t get any feedback promptly i say just go ahead" jmc@

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 14:57:23

Modified files:
lib/libcrypto/man: PEM_write_bio_PKCS7_stream.3 

Log message:
Add Copyright and license.
Remove one needless #include from the SYNOPSIS (from OpenSSL).

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 14:50:44

Modified files:
lib/libcrypto/man: PEM_read_bio_PrivateKey.3 

Log message:
For unknown reasons, this summer, OpenSSL added an additional manual
page PEM_read_CMS(3) to document a bunch of functions unrelated
among themselves, but very similar to those documented here.
Information in that page is scantier than for the functions documented
here - and besides, it is mostly wrong.  Looks like they lost their
way in the vast forest of functions they autogenerated with chains
of macros...

Document those functions documented there which are relevant to us
in the present page instead, and with correct prototypes.  Given
that i know too little about PEM formats, information about semantics
is almost certainly incomplete, but at least better than what OpenSSL
provides.

While here, add Copyright and license.

CVS: cvs.openbsd.org: src

[Patrick Wildt]

CVSROOT:/cvs
Module name:src
Changes by: patr...@cvs.openbsd.org 2016/11/28 14:50:12

Modified files:
sys/sys: exec_elf.h 

Log message:
Add the ELF machine type for AArch64 as specified in the ELF spec for
the ARM 64-bit Architecture.

ok phessler@

CVS: cvs.openbsd.org: src

[Patrick Wildt]

CVSROOT:/cvs
Module name:src
Changes by: patr...@cvs.openbsd.org 2016/11/28 14:38:49

Modified files:
gnu/llvm/tools/clang/lib/Basic: Targets.cpp 

Log message:
Setup clang to use OpenBSD settings and defines for our AArch64
(little-endian) target.

ok phessler@

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 14:05:21

Modified files:
lib/libssl/man : Makefile 
Added files:
lib/libssl/man : PEM_read_SSL_SESSION.3 

Log message:
The OpenSSL file doc/man3/PEM_read_CMS.pod contains parts belonging
to libcrypto and parts belonging to libssl.  Extract the parts
relevant for our libssl and import them with some tweaks.

CVS: cvs.openbsd.org: src

[Alexander Bluhm]

CVSROOT:/cvs
Module name:src
Changes by: bl...@cvs.openbsd.org   2016/11/28 13:57:41

Modified files:
regress/usr.sbin/syslogd: Syslogd.pm 

Log message:
To test the pipe feature, a dd is started and writing into a log
file as user _syslogd.  Since /usr/obj is 0770 now, user _syslogd
cannot access this file there anymore.  Create pipe.log in temporary
directory in /tmp instead.

CVS: cvs.openbsd.org: src

[Theo de Raadt]

CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2016/11/28 12:41:17

Modified files:
distrib/sets/lists/comp: mi 

Log message:
sync

CVS: cvs.openbsd.org: src

[Rafael Zalamena]

CVSROOT:/cvs
Module name:src
Changes by: rzalam...@cvs.openbsd.org   2016/11/28 11:04:00

Modified files:
sys/net: switchofp.c 

Log message:
Implement more validations for switch(4) groups handling: check for invalid
group-mod message sizes and validate bucket sizes and actions lists.

Discussed with reyk@: we should get this in as it is better to have some
validation than having none at all.

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 10:55:26

Modified files:
lib/libcrypto/man: Makefile 
Added files:
lib/libcrypto/man: PEM_read.3 

Log message:
import from OpenSSL with minor tweaks

CVS: cvs.openbsd.org: src

[Theo de Raadt]

CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2016/11/28 10:53:37

Modified files:
distrib/sets/lists/comp: mi 

Log message:
sync

CVS: cvs.openbsd.org: src

[Nicholas Marriott]

CVSROOT:/cvs
Module name:src
Changes by: n...@cvs.openbsd.org2016/11/28 10:50:00

Modified files:
usr.bin/tmux   : tty.c 

Log message:
When comparing ocy to orlower in tty_cmd_cell, there is no need to add
yoff (because they are both already relative to the pane). Also fix some
other minor nits.

CVS: cvs.openbsd.org: src

[Jeremie Courreges-Anglas]

CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2016/11/28 10:47:15

Modified files:
usr.sbin/tcpdump: print-lldp.c print-ofp.c 

Log message:
ether_ntoa -> etheraddr_string, like elsewhere in tcpdump

openflow part tested by rzalamena@, ok deraadt@

CVS: cvs.openbsd.org: src

[Theo de Raadt]

CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2016/11/28 09:42:45

Modified files:
sys/arch/landisk/stand/boot: Makefile 
sys/arch/landisk/stand/xxboot: Makefile 

Log message:
need ashrdi3

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 09:40:28

Modified files:
lib/libcrypto/man: OpenSSL_add_all_algorithms.3 

Log message:
Copyright and license

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 09:33:48

Modified files:
lib/libcrypto/man: Makefile 
Added files:
lib/libcrypto/man: OPENSSL_malloc.3 

Log message:
Document and discourage those wrappers that we have and that OpenSSL
documents, too.  There are many additional undocumented ones in our
public OpenSSL headers, but advertising those would be a bad idea.

Nothing of the text from OPENSSL_malloc.pod remains, so use my own
Copyright and license.

CVS: cvs.openbsd.org: src

[Mike Belopuhov]

CVSROOT:/cvs
Module name:src
Changes by: mi...@cvs.openbsd.org   2016/11/28 09:27:32

Modified files:
sbin/iked  : iked.conf.5 

Log message:
ikelifetime time spec is the same the one for lifetime

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 08:08:58

Modified files:
lib/libcrypto/man: OPENSSL_load_builtin_modules.3 

Log message:
Add Copyright and license.
Garbage collect empty RETURN VALUES section.

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 07:52:20

Modified files:
lib/libcrypto/man: OPENSSL_config.3 

Log message:
Add Copyright and license.

There are many recommendations in this page, and most of them were
changed in OpenSSL.  I have no idea what makes sense, so i'm not
touching the content.

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 07:51:03

Modified files:
lib/libcrypto/man: OPENSSL_VERSION_NUMBER.3 

Log message:
Copyright and license

CVS: cvs.openbsd.org: src

[Ingo Schwarze]

CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2016/11/28 07:31:20

Modified files:
lib/libcrypto/man: lh_new.3 lh_stats.3 

Log message:
Add Copyright and license.

This documentation is obviously incomplete and unintelligible.
However, as the interfaces are utterly ill-designed and contorted
to the point of absurdity, i refuse to even attempt improvements,
at least for now.

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 07:14:39

Modified files:
sys/netinet: ip_icmp.c 
sys/netinet6   : icmp6.c in6.c nd6.c nd6_rtr.c 

Log message:
Explicitly initialize rti_ifa when automagically adding a route.

This will allow to strengthen checks when userland adds a route.

ok phessler@, bluhm@

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 06:59:51

Modified files:
sys/netinet6   : nd6.c nd6.h nd6_nbr.c nd6_rtr.c 

Log message:
Remove multiple recursive splsoftnet().

ok bluhm@

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 06:55:44

Modified files:
sys/kern   : uipc_syscalls.c 

Log message:
Remove NULL checks before m_free{m,}().

ok reyk@, rzalamena@

Re: CVS: cvs.openbsd.org: src

[Mike Belopuhov]

On Thu, Nov 24, 2016 at 10:39 -0700, Mike Belopuhov wrote:
> CVSROOT:  /cvs
> Module name:  src
> Changes by:   mi...@cvs.openbsd.org   2016/11/24 10:39:49
> 
> Modified files:
>   sys/dev/pci: files.pci if_ix.c ixgbe.c 
> 
> Log message:
> Enable support for the X550 family of 10 Gigabit controllers
> 
> Code was obtained from FreeBSD.  Make release testing by tb@ on i386
> and mikeb@ on amd64 and sparc64.  X552 SFP tested by Hrvoje Popovski,
> HUGE thanks!  X550T tested by mikeb@ on amd64 and sparc64.
> 
> ok kettenis, deraadt
> 

Forgot to mention that this wouldn't have been possible without
a hardware donation from Bryan Vyhmeister ,
thanks Bryan!  This was work started at the g2k16 in Cambridge,
continued on numerous train rides and late co-funded by donations
from Daniel Polak  and Esdenera Networks GmbH,
www.esdenera.com

CVS: cvs.openbsd.org: src

[Jason McIntyre]

CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2016/11/28 04:46:26

Modified files:
share/man/man4 : switch.4 

Log message:
catch up with ioctl rename; ok reyk

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 04:18:02

Modified files:
sys/net: if.c 

Log message:
Remove simple recursive splsoftnet() calls inside ifioctl().

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 04:12:45

Modified files:
sys/netinet: igmp.c ip_input.c tcp_timer.c 
sys/netinet6   : frag6.c 

Log message:
Assert that every slow/fast timeout routine is called at IPL_SOFTNET.

This removes multipe recursive splsoftnet()/splx() dances.

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 03:49:35

Modified files:
sys/netinet: udp_usrreq.c 

Log message:
Allow to build kernels without IPSEC but with PIPEX.

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 03:16:08

Modified files:
sys/net: bpf.c 

Log message:
Make sure the descriptor has been removed from the interface list
before we call ifpromisc() and possibly sleep.

ok bluhm@

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 03:14:00

Modified files:
sys/netinet: ip_output.c 

Log message:
Kill a micro optimization that no longer make sense since the two routing
blocks have been merged in r1.292.

ok claudio@

CVS: cvs.openbsd.org: src

[Reyk Floeter]

CVSROOT:/cvs
Module name:src
Changes by: r...@cvs.openbsd.org2016/11/28 03:12:50

Modified files:
sys/sys: sockio.h 
sys/net: if_switch.c switchofp.c 
sbin/ifconfig  : brconfig.c ifconfig.8 

Log message:
Rename "flowmax" to "maxflow" and give each switch(4) ioctl a
dedicated number.  Both changes for consistency.

OK rzalamena@

CVS: cvs.openbsd.org: src

[Martin Pieuchot]

CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2016/11/28 03:10:53

Modified files:
sys/netinet6   : ip6_input.c 

Log message:
Merge two "#ifdef MROUTING" blocks.

It's one more step towards splitting ip6_input() in two and it reduces
differences with v4.

ok bluhm@