CVS: cvs.openbsd.org: src

2014-01-28 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2014/01/28 07:48:53

Modified files:
usr.sbin/nginx/conf: nginx.conf 

Log message:
Do not send Nginx version number in error pages and Server header by default. 
OK robert@, sthen@ and jasper@.

CVS: cvs.openbsd.org: www

2010-12-31 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/12/31 01:10:22

Modified files:
.  : anoncvs.html 

Log message:
anoncvs.ini.uzh.ch is down and won't be restored, at least not at INI.

CVS: cvs.openbsd.org: src

2010-12-16 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/12/16 04:11:18

Modified files:
sys/net: Tag: OPENBSD_4_8 pf_ioctl.c 

Log message:
MFC, original commit from claudio@:
- - - - - - - - - - - - - - - - - -
Be more careful when copying the pf rule from userland into the kernel.
All pointers in the struct need to be cleared and reset. So instead of
bcopy the struct and clear some fields start with a clean struct and
assign the values that need to be copied.
Fixes a local vulnerability but only root can issue the problematic ioctl().
Reported by Jean Sigwald, has been in snaps for a while and OK deraadt@
- - - - - - - - - - - - - - - - - -

requested by and ok claudio@

CVS: cvs.openbsd.org: src

2010-12-16 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/12/16 23:13:48

Modified files:
sys/net: Tag: OPENBSD_4_7 pf_ioctl.c 

Log message:
MFC, original commit from claudio@:
- - - - - - - - - - - - - - - - - -
Be more careful when copying the pf rule from userland into the kernel.
All pointers in the struct need to be cleared and reset. So instead of
bcopy the struct and clear some fields start with a clean struct and
assign the values that need to be copied.
Fixes a local vulnerability but only root can issue the problematic ioctl().
Reported by Jean Sigwald, has been in snaps for a while and OK deraadt@
- - - - - - - - - - - - - - - - - -

requested by and ok claudio@

CVS: cvs.openbsd.org: www

2010-11-16 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/11/16 09:40:21

Modified files:
.  : errata48.html 

Log message:
errata 001 and 002, ok jasper@, sthen@, kettenis@, claudio@

CVS: cvs.openbsd.org: www

2010-11-16 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/11/16 10:03:10

Modified files:
.  : errata48.html 

Log message:
add errata 003, ok deraadt@, kettenis@, jasper@

CVS: cvs.openbsd.org: src

2010-11-15 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/11/15 07:15:47

Modified files:
usr.sbin/bgpd  : Tag: OPENBSD_4_8 session.c rde.c 

Log message:
MFC, original commit from claudio@
(r1.300 of rde.c and r1.313 of session.c):
- - - - - - - - - - - - - -
Make sure that the initial configuration of the child is zeroed out
by using calloc(). This fixes an issue where the RDE would start up
as route-collector because uninitialized memory made the RDE switch
to that mode.
OK henning@, sthen@, phessler@
- - - - - - - - - - - - - -

ok claudio@

CVS: cvs.openbsd.org: src

2010-10-06 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/10/06 03:38:02

Modified files:
libexec/spamd  : grey.c 

Log message:
do not pass GREY entries to pf's spamd-white table if already TRAPPED.
Fixes pr/6467. (from boudewijn at indes dot com) - ok beck@

CVS: cvs.openbsd.org: www

2010-09-02 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/09/02 08:18:47

Modified files:
.  : donations.html 

Log message:
Dalco AG Switzerland has donated a nice ports building machine. Thank you very 
much!

CVS: cvs.openbsd.org: src

2010-08-24 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/08/24 03:10:14

Modified files:
sys/scsi   : Tag: OPENBSD_4_7 scsi_base.c 

Log message:
MFC, original commit from dlg:
--
if we're going to set ITSDONE when an xfer is done cos the adapter expects
it, we should clear it before we issue it to the adapter too. retried
commands would have ITSDONE still set otherwise.
--

ok krw@

CVS: cvs.openbsd.org: src

2010-08-19 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/08/19 04:48:53

Modified files:
sys/dev/ic : Tag: OPENBSD_4_7 gdt_common.c 

Log message:
MFC, original commits from a) krw@:
--
Fix two problems in gdt, introduced in 4.7. Eliminate a use-after-free
of xs for xs-flags. Avoid calling scsi_done() twice when sync'ing
disks during shut down.

scsi_done() problem found by Federico Giannici. Feedback and fixes
from matthew@ and d...@. Testing of various versions by Federico and
sthen@ via Pierre Berthier.

ok matthew@ deraadt@
--

.. and b) matthew@:
--
Initialize xs to NULL in gdt_intr() since it now might be used before
otherwise assigned.

ok krw@
--

ok matthew@ and krw@, re-tested by me.

CVS: cvs.openbsd.org: www

2010-07-08 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/07/08 04:46:17

Modified files:
.  : errata47.html 

Log message:
- add 006_scsi.patch
- update copyright to 2010

ok sthen@

CVS: cvs.openbsd.org: src

2010-07-06 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/07/06 02:48:50

Modified files:
sys/scsi   : Tag: OPENBSD_4_7 cd.c sd.c st.c 

Log message:
MFC, original commit from krw@:

Restore an unusual XS_SENSE semantic that inadvertantly got lost
in the great re-write. If the scsi device *_interpret_sense()
function returns 0 that means there was no error.

Fixes restore(8) problems seen on certain tape drives.

Found and fix tested by Percey Piper. Suggestions from Matthew
Dempsky. Thanks!

ok dlg@


ok krw@ and dlg@

CVS: cvs.openbsd.org: src

2010-06-29 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/06/29 04:25:13

Modified files:
etc: newsyslog.conf 

Log message:
zap superfluous newline. ok sthen@

CVS: cvs.openbsd.org: src

2010-05-14 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/05/14 03:02:41

Modified files:
sys/net: Tag: OPENBSD_4_7 if_pfsync.c 

Log message:
MFC, original commit by claudio@:

bzero() the full compressed update struct before setting the values.
This is needed because pf_state_peer_hton() skips some fields in certain
situations which could result in garbage beeing sent to the other peer.
This seems to fix the pfsync storms seen by stephan@ and so dlg owes me
a whiskey.
OK dlg@, stephan@


ok claudio@ and sthen@

CVS: cvs.openbsd.org: src

2010-05-14 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/05/14 03:08:34

Modified files:
sys/net: Tag: OPENBSD_4_6 if_pfsync.c 

Log message:
MFC, original commit by claudio@:

bzero() the full compressed update struct before setting the values.
This is needed because pf_state_peer_hton() skips some fields in certain
situations which could result in garbage beeing sent to the other peer.
This seems to fix the pfsync storms seen by stephan@ and so dlg owes me
a whiskey.
OK dlg@, stephan@


ok claudio@ and sthen@

CVS: cvs.openbsd.org: src

2010-05-14 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/05/14 05:54:15

Modified files:
sys/net: Tag: OPENBSD_4_6 trunklacp.c 

Log message:
MFC, original commit from claudio@:
---
Wrap trunk_enqueue() calls in splnet() since sending out lacp packets
starts in a timeout handler which runs at a lower spl.
This fixes the problems with lacp trunks where some interfaces suddenly
fail for no obvious reason. Problem report and fix tested by Stephan A.
Rickauer. OK henning, reyk, mpf
---

ok claudio@

CVS: cvs.openbsd.org: www

2010-05-14 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/05/14 09:02:17

Modified files:
.  : errata47.html 

Log message:
add recent pfsync issue.

ok jasper@

CVS: cvs.openbsd.org: www

2010-05-03 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/05/03 08:51:05

Modified files:
.  : events.html 

Log message:
add missing br

CVS: cvs.openbsd.org: www

2010-04-27 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:www
Changes by: step...@cvs.openbsd.org 2010/04/27 07:27:16

Modified files:
.  : orders.html 

Log message:
update StarTek's shop URL, ok sthen@

CVS: cvs.openbsd.org: src

2010-04-26 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/04/26 06:42:56

Modified files:
sys/dev/usb: usbdevs 

Log message:
add Logitech Webcam C500, ok sthen@

CVS: cvs.openbsd.org: src

2010-04-26 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/04/26 06:44:33

Modified files:
sys/dev/usb: usbdevs.h usbdevs_data.h 

Log message:
sync

CVS: cvs.openbsd.org: src

2010-04-26 Thread Stephan A. Rickauer 
CVSROOT:/cvs
Module name:src
Changes by: step...@cvs.openbsd.org 2010/04/26 06:46:34

Modified files:
share/man/man4 : uvideo.4 

Log message:
+Logitech Webcam C500, ok sthen@