CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: flor...@cvs.openbsd.org 2016/09/26 23:33:46 Modified files: usr.sbin/traceroute: traceroute.c Log message: Drop privileges to newly added _traceroute user/group. It does not buy us much when called as a unpriv user. But if run as root we can now lose privileges. Input deraadt@ OK benno@, sthen@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: flor...@cvs.openbsd.org 2016/09/26 23:31:37 Modified files: etc: master.passwd group etc/mail : aliases Log message: Add unprivileged user for traceroute. Input deraadt@ OK benno@, sthen@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: dera...@cvs.openbsd.org 2016/09/26 23:01:29 Modified files: sys/arch/alpha/alpha: mem.c Log message: typo
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2016/09/26 22:57:17 Modified files: sys/net: if_pfsync.c pf.c pf_if.c pf_ioctl.c pf_lb.c pf_norm.c pf_ruleset.c pf_table.c pfvar.h Log message: roll back turning RB into RBT until i get better at this process.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2016/09/26 20:53:49 Modified files: sys/sys: hibernate.h sys/kern : subr_hibernate.c Log message: move from RB macros to RBT functions
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2016/09/26 20:51:12 Modified files: sys/net: if_pfsync.c pf.c pf_if.c pf_ioctl.c pf_lb.c pf_norm.c pf_ruleset.c pf_table.c pfvar.h Log message: move pf from the RB macros to the RBT functions.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2016/09/26 20:16:40 Modified files: usr.bin/signify: zsig.c Log message: can make function static now that it's living in a separate file. bye bye XXX!
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2016/09/26 20:13:27 Modified files: usr.bin/signify: signify.c Log message: the keytype checking is logically part of verify, and it's small, so always include it. but it can be made a bit simpler with zero malloc.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2016/09/26 20:02:47 Modified files: usr.bin/signify: signify.c Log message: no need to copy keypath if we already have one
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2016/09/26 19:37:38 Modified files: sys/nfs: nfs_node.c nfs_var.h nfs_vfsops.c nfsmount.h Log message: replace the use of RB macros with the RBT functions.
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: k...@cvs.openbsd.org2016/09/26 17:21:59 Modified files: . : want.html Log message: Retire 'wants' for Sparc equipment. dlg@ agrees.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: bl...@cvs.openbsd.org 2016/09/26 16:56:31 Modified files: regress/gnu/egcs: Makefile Removed files: regress/gnu/egcs: Makefile.inc regress/gnu/egcs/gcc: Makefile regress/gnu/egcs/libiberty: Makefile Log message: The gcc and libiberty regression tests seem to be broken since the gcc4 update. Delete this test wrapper, it does not add anything of value. OK deraadt@ kettenis@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2016/09/26 15:47:54 Modified files: usr.bin/signify: signify.c Log message: have to advance pointer past the / to get basename. noticed by naddy
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: bl...@cvs.openbsd.org 2016/09/26 15:34:38 Modified files: regress/usr.bin/ssh: agent-getpeereid.sh keys-command.sh principals-command.sh sftp-chroot.sh Log message: Allow to run ssh regression tests as root. If the user is already root, the test should not expect that SUDO is set. If ssh needs another user, use sudo or doas to switch from root if necessary. OK dtucker@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2016/09/26 15:19:02 Modified files: sbin/kbd : Makefile kbd_wscons.c Log message: Remove kvm groveling code. To restore the lost functionality we need to implement something like a WSKBDIO_GETENCODINGS ioctl that fetches a list of possible encodings for the specified keyboard from the kernel. Until that happens, kbd -l will simple show the same harcoded list of possible encodings as the installer does. Prompted by deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2016/09/26 15:16:11 Modified files: usr.bin/ssh: sshkey.c Log message: Avoid a theoretical signed integer overflow should BN_num_bytes() ever violate its manpage and return a negative value. Improve order of tests to avoid confusing increasingly pedantic compilers. Reported by Guido Vranken from stack (css.csail.mit.edu/stack) unstable optimisation analyser output. ok deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: fcam...@cvs.openbsd.org 2016/09/26 14:41:08 Modified files: sys/dev/rasops : rasops.c Log message: Avoid calculating offset several times. This was done for a few functions already, but not all of them. OK natano@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2016/09/26 13:58:26 Modified files: usr.sbin/acpidump: acpidump.8 acpidump.c Log message: If the argument of -o specifies a directory, dump the files without using a prefix. ok deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: st...@cvs.openbsd.org 2016/09/26 13:39:24 Modified files: sys/netinet6 : nd6_rtr.c Log message: typo in comment
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2016/09/26 11:49:52 Modified files: usr.bin/signify: signify.c Log message: there's a hidden feature to infer the public key from the signature comment, but it doesn't work well because it encodes the full path. signature creaters don't usually keep the secret keys in /etc/signify, but that's where we look for public keys. switch to saving only the basename, and have the verifier add the path. should make it easier to start using this feature. anybody depending on the current behavior may have to adjust, but there's a reason this was never officially documented.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: o...@cvs.openbsd.org2016/09/26 11:42:09 Modified files: etc/mail : aliases Log message: + _ping
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: rzalam...@cvs.openbsd.org 2016/09/26 11:17:01 Modified files: usr.sbin/ntpd : constraint.c ntpd.c ntpd.h Log message: Teach ntpd(8) constraint process to use exec*() instead of just forking, with this change we get the pledge() ability back to the parent process. some tweaks from and ok reyk@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2016/09/26 11:15:19 Modified files: usr.sbin/dhcrelay: dhcrelay.c usr.sbin/ftp-proxy: ftp-proxy.c usr.sbin/rtadvd: rtadvd.c usr.sbin/tftpd : tftpd.c Log message: Exit early from rdaemon() is the passed fd is invalid. fd == -1 check suggested by deraadt@, ok florian@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2016/09/26 10:55:21 Modified files: sbin/iked : util.c Log message: Pass the flags argument of recvfromto down to the underlying recvmsg Doesn't matter in iked as recvfromto is only called with flags = 0, but this code tends to be copied. ok sthen@ florian@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: rzalam...@cvs.openbsd.org 2016/09/26 10:55:02 Modified files: usr.sbin/ntpd : ntp.c ntp_dns.c ntpd.c Log message: Teach ntpd(8) how to use socket status to shutdown the daemon. While at it, remove some verbose shutdown messages that we had before with pipe close. ok reyk@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2016/09/26 10:43:58 Modified files: sys/sys: syscall.h syscallargs.h sys/kern : init_sysent.c syscalls.c Log message: Regen
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2016/09/26 10:42:34 Modified files: sys/kern : makesyscalls.sh Log message: unbalenced->unbalanced
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: flor...@cvs.openbsd.org 2016/09/26 10:42:46 Modified files: sbin/ping : ping.c Log message: Drop privileges to newly added _ping user/group. It does not buy us much when called as a unpriv user. But if run as root we can now lose privileges. OK natano@, deraadt@ is happy
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: flor...@cvs.openbsd.org 2016/09/26 10:39:51 Modified files: distrib/miniroot: group master.passwd etc: group master.passwd Log message: Add _ping user/group. OK natano on a previous diff which used a different uid/gid. naddy@ pointed out that uid/gid was already taken on "important" systems. Turns out we cannot easily recycle freed up uids/gids so settle on 51.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: r...@cvs.openbsd.org2016/09/26 10:25:16 Modified files: usr.sbin/relayd: control.c parse.y relay.c relay_http.c Log message: spacing
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2016/09/26 09:43:26 Modified files: lib/csu: crt0.c Log message: Now that vax has been removed, nothing defined MD_NO_CLEANUP anymore. ok guenther@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: rzalam...@cvs.openbsd.org 2016/09/26 08:00:05 Modified files: usr.sbin/snmpd : timer.c Log message: Fix compilation warning by using the correct cast/format. improved by sthen@ ok reyk@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2016/09/26 07:34:11 Modified files: sys/arch/arm/arm: cpu.c Log message: Remove xscale support. Properly distinguish between ARMv7 and ARMv8. ok patrick@, jsg@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: rzalam...@cvs.openbsd.org 2016/09/26 06:33:04 Modified files: usr.sbin/switchd: ofp.h ofp13.c Log message: Teach switchd(8) how to create flows for new connections using OpenFlow 1.3.5, implement the OXM filters to use with flow matching and Set-Action, prepare code to receive group management and add dummy flow_removed handler to avoid closing the connection on idle flows.
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: s...@cvs.openbsd.org2016/09/26 04:44:44 Modified files: . : events.html Added files: papers : eurobsdcon2016-openbsd-11n.pdf Log message: add slides for my eurobsdcon 2016 talk
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: n...@cvs.openbsd.org2016/09/26 03:02:34 Modified files: usr.bin/tmux : cmd-set-option.c options.c Log message: Support set -a (append) with user options, suggested by Xandor Schiefer.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: rzalam...@cvs.openbsd.org 2016/09/26 02:55:43 Modified files: usr.sbin/switchd: packet.c Log message: Set pkt_buf variable on incoming packet_in messages. small style correction and ok reyk@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: rzalam...@cvs.openbsd.org 2016/09/26 02:48:05 Modified files: usr.sbin/switchd: ofp.c Log message: Fix a memory leak and a loop in the ofp_read() that happens every time a message is received or a socket is closed. This is just a temporary fix to avoid switchd(8) from hogging the cpu and leaking memory while testing. ok reyk@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: rzalam...@cvs.openbsd.org 2016/09/26 02:46:00 Modified files: usr.sbin/switchd: ofp13.c ofp_map.h Log message: Enable more debug messages to help developing flow modification messages. ok reyk@
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: schwa...@cvs.openbsd.org2016/09/26 02:36:41 Modified files: . : events.html Added files: papers : eurobsdcon2016-utf8.pdf eurobsdcon2016-utf8.roff Log message: my Beograd UTF-8 talk
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: kette...@cvs.openbsd.org2016/09/26 02:08:52 Modified files: sys/sys: tree.h Log message: Mark the static inline functions defined by RBT_PROTOTYPE as __unused. The way these functions are generated through a macro makes clang think they're defined in the .c file. Since some of these function may be unused, clang issues a warning. Marking them as __unused suppresses the macro. ok visa@, deraadt@, dlg@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: fcam...@cvs.openbsd.org 2016/09/26 01:09:32 Modified files: sys/dev/usb: if_cdce.c Log message: Move the net/bpf.h include within the #if NBPFILTER directive OK deraadt@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: ajacou...@cvs.openbsd.org 2016/09/26 00:51:23 Modified files: etc: changelist etc/mtree : special Log message: Add /etc/acme-client.conf to mtree/special and changelist. ok deraadt@ sthen@ florian@
