On Friday 15 May 2015, Kyle Thompson wrote:
Very basic patch to turn on server cipher preference in libtls. This
will allow us to always use our cipher preference over what the client
thinks is best. Tested with httpd as the server and openssl as the
client with two ciphers selected.
Should
On 2015-05-14 Thu 11:24 AM |, Todd C. Miller wrote:
On Thu, 14 May 2015 17:48:49 +0100, Stuart Henderson wrote:
Even not allowing for TOCTOU problems I'd be wary of running fstat
automatically.
If it is only used to detect when a file is in use that we would
otherwise delete it seems
This is essentially the opposite of this fix by Holger Mikolon, which
was never merged: http://marc.info/?l=openbsd-techm=127765978812199
cwmrc(5) autogroup takes the windowname and windowclass in the opposite
order than specified in the man page. Fix the man page.
Index: app/cwm/cwmrc.5
If we change the rcvif pointer of a packet we need to run if_input()
again otherwise we might skip the handlers on the new interface.
Ultimately it would be nice to only assign rcvif in if_input(), but
that's for another diff.
This fix one case I left out in my previous conversion, ok?
Index:
I have one setup with multiple interfaces in a bridge and on some of
these interfaces some vlan(4)s. But there's currently a bug that
prevent us to send (receive is fine) VLAN packets in such config.
Diff below fixes that.
The problem is that vlan_output() does not pass its parent interface
to
Diff is applied. So far no problems.
Unfortunately I can’t test this fully - no vlans on my side.
//mxb
On 15 maj 2015, at 13:14, Martin Pieuchot m...@openbsd.org wrote:
I have one setup with multiple interfaces in a bridge and on some of
these interfaces some vlan(4)s. But there's
I have found a peculiar behaviour in ospfd when the physical link of the
parent carp interface is down. The carp interface net is then announced
with it's regular metric.
An example:
The cable of em2, parent of carp2 (192.168.254.0/23), is unplugged. Here
is what is announced, seen by another
No regression on my side.
//mxb
On 15 maj 2015, at 12:54, Martin Pieuchot m...@openbsd.org wrote:
If we change the rcvif pointer of a packet we need to run if_input()
again otherwise we might skip the handlers on the new interface.
Ultimately it would be nice to only assign rcvif in
Hey tech@ --
Let's get rid of some more #defines that aren't being used.
Someone should also look at the list of prototypes and make sure
all are being used. I can do this eventually, but probably not for
a few weeks in case someone else wants to beat me to it.
OK?
~Brian
Index: def.h
On May 13, 2015 3:37:39 AM GMT+02:00, David Higgs hig...@gmail.com wrote:
On May 11, 2015, at 9:02 PM, David Higgs hig...@gmail.com wrote:
On May 11, 2015, at 8:21 PM, David Higgs hig...@gmail.com
mailto:hig...@gmail.com wrote:
On Mon, May 11, 2015 at 8:07 PM, Alexander Hall
On Mon, Apr 20, 2015 at 07:35:58PM +0059, Jason McIntyre wrote:
On Wed, Apr 15, 2015 at 05:13:13PM +0200, Vincent Gross wrote:
Hello,
iked.conf's man page is a bit fuzzy on how local and peer ip defaults
are set. This patch below attempts to fix that.
Also, can you take a look at my
Here is an updated diff with some configuration added.
Index: lib/libtls/tls.h
===
RCS file: /cvs/src/lib/libtls/tls.h,v
retrieving revision 1.12
diff -u -p -r1.12 tls.h
--- lib/libtls/tls.h31 Mar 2015 14:03:38 - 1.12
On Sat, Apr 18, 2015 at 04:28:17PM +0800, Nathanael Rensen wrote:
The tls_init(3) man page states:
The tls_close(), tls_read() and tls_write() functions, along with the
tls_accept() and tls_connect() function families, have two special return
values:
On Mon, May 04, 2015 at 08:24:44PM -0400, trondd wrote:
Fix a contradiction in the relayd.conf man page in the Protocols, tls
section. The definition of TLS client and server is the opposite of what is
stated in the forward and listen on descriptions, and the TLS Relays
section.
Tim.
14 matches
Mail list logo
