Mention -N to shutdown(2) network socket after EOF in man nc(1)

2021-03-29 Thread Robert Scheck
on, which covers the 'client' side only. Feel free to adjust my proposal as necessary. Thanks, Robert --- nc.12020-02-12 14:46:36.831500390 + 1.95 +++ nc.12021-03-30 02:22:34.545148296 +0200 @@ -414,7 +414,7 @@ .Pq or a second machine , connect to the machine and por

Re: Add if_mreqn support to IP_MULTICAST_IF

2021-01-15 Thread Robert Nagy
On 15/01/21 14:53 +0100, Claudio Jeker wrote: > I forgot to add ip_mreqn support to IP_MULTICAST_IF and so the > IP_ADD_MEMBERSHIP change is not fixing all the issues I have. > > Linux supports calling IP_MULTICAST_IF with a struct in_addr, a struct > ip_mreq, or a struct ip_mreqn. FreeBSD only

Re: behaviour of openssl s_server and certificate chains on 6.8

2021-01-14 Thread Robert Nagy
On 14/01/21 14:50 +0100, Theo Buehler wrote: > On Thu, Jan 14, 2021 at 02:37:20PM +0100, Robert Nagy wrote: > > On 14/01/21 14:27 +0100, Robert Nagy wrote: > > > On 14/01/21 14:20 +0100, Theo Buehler wrote: > > > > On Thu, Jan 14, 2021 at 01:32:41PM +0100, Matt

Re: behaviour of openssl s_server and certificate chains on 6.8

2021-01-14 Thread Robert Nagy
On 14/01/21 14:27 +0100, Robert Nagy wrote: > On 14/01/21 14:20 +0100, Theo Buehler wrote: > > On Thu, Jan 14, 2021 at 01:32:41PM +0100, Matthieu Herrb wrote: > > > Hi, > > > > > > I'm trying to debug strange beahaviour changes with certificates on a >

Re: behaviour of openssl s_server and certificate chains on 6.8

2021-01-14 Thread Robert Nagy
On 14/01/21 14:20 +0100, Theo Buehler wrote: > On Thu, Jan 14, 2021 at 01:32:41PM +0100, Matthieu Herrb wrote: > > Hi, > > > > I'm trying to debug strange beahaviour changes with certificates on a > > systemc after upgrading it from 6.7 to 6.8... > > > > On 6.7, If I run : > > > > openssl

Re: rpki-client: reject bad URLs in cert files

2020-12-02 Thread Robert Scheck
ample.net is never going to happen? Not that it likely would work in the portable currently, but I'm still thinking about. Btw, ACE of above: xn--eda7ay6d6p.idna2008.example.net. I did not yet check if delegated RPKI allows ACE-only or even the UTF-8 representation... Regards, Robert pgp_PRMK

Re: add support for AMD 17h/3xh HD Audio

2020-10-23 Thread Robert Nagy
On 23/10/20 10:24 +1100, Jonathan Gray wrote: > On Thu, Oct 22, 2020 at 04:34:11PM +0200, Robert Nagy wrote: > > The diff below makes azalia(4) work on my new shiny chromium build box: > > You have a 17-31-00 epyc or threadripper? > > This id also shows up on > B550

add support for AMD 17h/3xh HD Audio

2020-10-22 Thread Robert Nagy
The diff below makes azalia(4) work on my new shiny chromium build box: Index: dev/pci/azalia_codec.c === RCS file: /cvs/src/sys/dev/pci/azalia_codec.c,v retrieving revision 1.178 diff -u -p -u -r1.178 azalia_codec.c ---

Re: ldapd: adding bsd.schema

2020-09-14 Thread Robert Klein
On Thu, 10 Sep 2020 17:03:28 -0400 Aisha Tammy wrote: > On 9/10/20 2:03 AM, Robert Klein wrote: > > On Sat, 5 Sep 2020 18:47:08 -0400 > > Aisha Tammy wrote: > > > >> Sorry for the late reply. > >> > >> On 8/12/20 8:19 AM, Robert Klein wrote:

Re: ldapd: adding bsd.schema

2020-09-10 Thread Robert Klein
On Sat, 5 Sep 2020 18:47:08 -0400 Aisha Tammy wrote: > Sorry for the late reply. > > On 8/12/20 8:19 AM, Robert Klein wrote: > > Hi, > > > > On Wed, 12 Aug 2020 09:00:18 +0200 > > Theo Buehler wrote: > > > >> On Tue, Aug 11, 2020 at 10:22:5

fix check of return value

2020-09-03 Thread Robert Klein
ro). Best regards Robert Index: uuid_to_string.c === RCS file: /cvs/src/lib/libc/uuid/uuid_to_string.c,v retrieving revision 1.2 diff -u -p -r1.2 uuid_to_string.c --- uuid_to_string.c10 Sep 2015 18:13:46 - 1.2 +++ uuid_t

Re: ldapd(8): fix, simplify UUID timestamp code

2020-09-03 Thread Robert Klein
Hi, On Fri, 21 Aug 2020 22:34:35 +1000 Jonathan Matthew wrote: > On Wed, Aug 19, 2020 at 09:28:41PM -0500, Scott Cheloha wrote: > > Hi, > > > > I was auditing the tree for odd-looking time structure usage and I > > came across the UUID code in ldapd(8), uuid.c. > > > > time_cmp() is

Re: ldapd: adding bsd.schema

2020-08-12 Thread Robert Klein
in the MUST and both in the MAY clause. The “both MAY” version is imho more flexible. The original mail proposing bsd.schema seems to have added both “shadowPassword” and “bsdaccount” more as an afterthought, it seems. Best regards Robert > > Ind

Re: userland clock_gettime proof of concept

2020-07-03 Thread Robert Nagy
On 02/07/20 00:31 +0100, Stuart Henderson wrote: > running on 38 of these, btw. been running with this on all my workstations and laptops and on 3 build servers as well

Re: userland clock_gettime proof of concept

2020-06-24 Thread Robert Nagy
On 22/06/20 19:12 +0300, Paul Irofti wrote: > New iteration: > > - ps_timekeep should not coredump, pointed by deraadt@ > - set ps_timekeep to 0 before user uvm_map for randomization > - map timekeep before fixup. confirmed by naddy@ that it fixes NULL init > - initialize va. clarified by

Re: lfence for rdtsc

2020-06-21 Thread Robert Nagy
it definitely got better: cpu0: TSC skew=0 observed drift=0 cpu0: TSC skew=0 observed drift=0 cpu1: TSC skew=51 observed drift=0 cpu2: TSC skew=68 observed drift=0 cpu3: TSC skew=68 observed drift=0 cpu4: TSC skew=0 observed drift=0 cpu5: TSC skew=0 observed drift=0 cpu6: TSC skew=85 observed

Re: userland clock_gettime proof of concept

2020-06-12 Thread Robert Nagy
On 11/06/20 20:10 +0200, Mark Kettenis wrote: > > Date: Thu, 11 Jun 2020 19:38:48 +0200 > > From: Christian Weisgerber > > > > Theo de Raadt: > > > > > The diff is growing complexity to support a future which wouldn't > > > exist if attempts at *supporting all* architectures received priority.

Re: userland clock_gettime proof of concept

2020-05-30 Thread Robert Nagy
On 30/05/20 10:40 +0200, Mark Kettenis wrote: > > Date: Sat, 30 May 2020 10:32:15 +0200 > > From: Robert Nagy > > > > On 29/05/20 17:51 +0300, Paul Irofti wrote: > > > On Fri, May 29, 2020 at 03:00:50PM +0200, Mark Kettenis wrote: > > > > > Date

Re: userland clock_gettime proof of concept

2020-05-30 Thread Robert Nagy
On 29/05/20 17:51 +0300, Paul Irofti wrote: > On Fri, May 29, 2020 at 03:00:50PM +0200, Mark Kettenis wrote: > > > Date: Fri, 29 May 2020 13:45:37 +0100 > > > From: Stuart Henderson > > > > > > On 2020/05/29 13:50, Paul Irofti wrote: > > > > +struct __timekeep { > > > > + uint32_t major;

Re: userland clock_gettime proof of concept

2020-05-16 Thread Robert Nagy
On 16/05/20 20:14 +0300, Paul Irofti wrote: > Make sure you clean your /usr/share/relink directory before compiling > and installing this! Robert's machine was picking up old objects and > creating a broken library on every reboot becuase his directory was not > clean. It was actually an old .so

Minor change in rpki-client.8

2020-05-13 Thread Robert Scheck
usr.sbin/rpki-client/rpki-client.8 +++ b/src/usr.sbin/rpki-client/rpki-client.8 @@ -76,7 +76,7 @@ instead of .Xr openrsync 1 to fetch repositories. It must accept the -.Fl rlt , +.Fl rt , .Fl -address and .Fl -delete Regards, Robert [1] https://github.com/rpki-client/rpki-c

Re: userland clock_gettime proof of concept

2020-05-13 Thread Robert Nagy
On 13/05/20 17:05 +0200, Mark Kettenis wrote: > > The update currently does the work of clock_gettime(), but it can > > probably be changed to only update the timehands and move the logic > > elsewhere. Note that if we expose only the timehands to userland, most > > of the bintime functionality

Re: userland clock_gettime proof of concept

2020-05-13 Thread Robert Nagy
with organization I have not had the time to look at it and > I am thus getting back to it just now due to robert@ prodding me again > on the subject. The proposed diff is mine, not the student's. > > > The technical bits. > > Please keep in mind that this is only proof of c

Re: ldapd: fix return values for illegal passwords

2020-03-17 Thread Robert Klein
ping... On Sun, 8 Mar 2020 12:18:39 +0100 Robert Klein wrote: > Hi, > > I thought a bit more about using LDAP resultCode values and I think > some intermediate values are needed so it is clearer what happens. > > Also, I found out a clients connection hangs in the

Re: ldapd: fix return values for illegal passwords

2020-03-08 Thread Robert Klein
Database is being reopened": the old code did not lead to a "return ldap_respond" in bind_ldap(), so nothing is returned to the client which is trying to bind and the client hangs. Best regards Robert diff 403185e43a653dece6518a28d0750f212ff40fc5 /usr/src blob - f6f542e4e4

Re: ldapd: fix return values for illegal passwords

2020-03-07 Thread Robert Klein
On Fri, 6 Mar 2020 21:50:34 +0100 Robert Klein wrote: > Hi, > > > sorry, I simply forgot ldap_auth_sasl. > > LDAP_OTHER is a good return code for imsg failure and I really like > the idea of using the LDAP return codes right away instead of the > extra mapping. > &

Re: ldapd: fix return values for illegal passwords

2020-03-06 Thread Robert Klein
), because sent_auth_request *never* returns LDAP_SUCCESS (this happens via imsg) but LDAP_SASL_BIND_IN_PROGRESS. See comment inline. After changing the one line bind with SASL works, too. All tests using ldap_auth_simple worked ok. Best regards Robert On Tue, 3 Mar 2020 20:33:41 +0100 Martijn van

Re: BIRD 1.x/2.x support at rpki-client

2020-03-06 Thread Robert Scheck
D 1 and 2 during the weekend explicitly and provide specific feedback or suggest diffs. Regards, Robert

Re: BIRD 1.x/2.x support at rpki-client

2020-03-06 Thread Robert Scheck
On Fri, 06 Mar 2020, Job Snijders wrote: > I believe Robert is referring to this snippet of code: > > > https://patch-diff.githubusercontent.com/raw/kristapsdz/rpki-client/pull/21.patch Exactly. Regards, Robert

Re: fix ldapd/ldapctl data directory handling

2020-03-04 Thread Robert Klein
look into fixing the actual issue? this patch fixes only the two issues. I de-const'd "char * datadir" in ldapd to get rid of the new warning. Best regards Robert diff 1813335e849f285a868ea3d474b4704812b1843e /usr/src blob - c8564c5543f518a720e049c559556f87edda6b8a file + usr.sbin/ldapc

Re: BIRD 1.x/2.x support at rpki-client

2020-03-03 Thread Robert Scheck
o require some restructuring. I see. Honestly, my downstream needs would be satisfied with "-B" leading to BIRD 2.x compatible output only (avoiding new options and restructuring), but I don't want to behave like a bull in a china shop. Thus in the end it's your decision as upstream... Regards, Robert

BIRD 1.x/2.x support at rpki-client

2020-03-02 Thread Robert Scheck
ntly leads to "bird" file with BIRD 1.x support only. However, I'm not sure if the current options -B, -c, -j and -o are that great. Maybe something like "-o " would be more powerful and more flexible? Opinions? Regards, Robert

fix ldapd/ldapctl data directory handling

2020-03-02 Thread Robert Klein
ays opened in the default directory for indexing. The patch below removes the command line argument and corresponding global variable and instead uses a configuration file directive "datadir". Incidentally removes the global 'datadir' variable used before.

ldapd: fix return values for illegal passwords

2020-03-01 Thread Robert Klein
Credentials) on bind attempts. Best regards Robert --- commit e9fe05bf15bf216ea7759cd64f17103008e1b69e (master) from: Robert Klein date: Sun Mar 1 15:49:40 2020 UTC ldapd: fix return values for illegal passwords diff

Re: ld.so speedup (part 2)

2019-04-28 Thread Robert Nagy
On 28/04/19 12:01 +0200, Matthieu Herrb wrote: > On Sun, Apr 28, 2019 at 08:55:16AM +0100, Stuart Henderson wrote: > > > >> > On Sat, Apr 27, 2019 at 09:55:33PM +0800, Nathanael Rensen wrote: > > > >> > > The diff below speeds up ld.so library intialisation where the > > > >>dependency > > > >> >

Re: sbin/wsconsctl: show more data

2019-01-06 Thread Robert Curry
Thank you Frederic for the new console font. I agree with Mischa and Paul and find it very clean and readable, a definite improvement. -- Robert W. Curry

xenocara tarball

2018-11-11 Thread Robert Urban
, or the tarball is wrong. Does anyone think it worthwhile fixing this? Regards, Robert Urban

Re: libunwind: fix register numbering on OpenBSD/i386 (again)

2018-10-31 Thread Robert Nagy
On 31/10/18 09:54 +0100, Patrick Wildt wrote: > Hi, > > during the libunwind update to 6.0 we lost a particular patchset that > fixes register numbering for OpenBSD/i386, thus breaking exception > handling on that platform. Looks like no one noticed until now. > > ok? > > Patrick > > diff

Re: fdformat: reformat usage()

2018-09-17 Thread Robert Klein
cify sector size, 0=128, 1=256, 2=512 > bytes\n"); > - printf("\t-s #\tspecify number of sectors per track, 9, 10, > 15 or 18\n"); > - printf("\t-t #\tnumber of steps per track\n"); > + printf("usage: %s [-nqv] [-c cyls] [-F fillbyte]

Re: fdformat: reformat usage()

2018-09-17 Thread Robert Klein
; - printf("\t-r #\tspecify data rate, 250, 300 or 500 kbps\n"); > - printf("\t-S #\tspecify sector size, 0=128, 1=256, 2=512 > bytes\n"); > - printf("\t-s #\tspecify number of sectors per track, 9, 10, > 15 or 18\n"); > - prin

Re: unveil(2) for spamlogd(8)

2018-07-18 Thread Robert Nagy
Hi I think you should call unveil before pledge, so that you don't need to pledge unveil. This will prevent futher calls to unveil. On 18/07/18 12:59 +0100, Ricardo Mestre wrote: > Hi, > > Are there any brave souls out there with unveil(2) enabled already? > > If yes please test this diff for

Re: next step in synchronizing ber.c and ber.h

2018-06-28 Thread Robert Klein
y. ber_free_element() is my fault; I introduced it for LDAP attribute value deletion (in ldapd, attributes.c:ldap_del_values(). I simply copied the code from ber_free_elements() and removed the “offending” line. Your code sharing example is the better way. Not sure about ber_free_element returning root->be_next, though the calling could would indeed look nice: ber_link_elements(prev, ber_free_element(ber_unlink_elements(prev)); Best regards, Robert > > > + free(root); [rest deleted]

Re: mpii support for sas3.5 controllers

2018-06-17 Thread Robert Nagy
Hi Obviously I am ok with this since it makes my controller work ;) mpii0 at pci6 dev 0 function 0 "Symbios Logic MegaRAID SAS3408" rev 0x01: msi scsibus3 at mpii0: 640 targets st0 at scsibus3 targ 5 lun 0: SCSI4 1/sequential removable naa.5000e111c457f001 ch0 at scsibus3 targ 5 lun 1: SCSI3

Re: Installer support to fetch/verify bsd.rd for release upgrade

2018-06-03 Thread Robert Peichaer
On Sun, Oct 08, 2017 at 09:56:15AM +, Robert Peichaer wrote: > Up to now, the upgrade procedure from one to the next release meant > that you had to manually download and verify the new ramdisk kernel. > > What about if you just needed to boot into the existing bsd.rd and > i

Re: Allow disks to be specifid by duid in install.sub

2018-06-02 Thread Robert Peichaer
On Fri, May 18, 2018 at 12:14:36PM +0200, Theo Buehler wrote: > On Thu, May 17, 2018 at 06:42:15PM -0600, Aaron Bieber wrote: > > On Thu, May 17, 2018 at 06:37:56PM -0600, Aaron Bieber wrote: > > > On Fri, Mar 02, 2018 at 07:32:04AM -0700, Aaron Bieber wrote: > > > > Hi, > > > > > > > > Currently

Re: ksh.kshrc: Fix quoting in {add,pre,del}_path() to work with spaces

2018-02-18 Thread Robert Peichaer
On Sun, Feb 18, 2018 at 12:36:43PM +0100, Klemens Nanni wrote: > On Tue, Nov 21, 2017 at 08:30:25PM +0100, Klemens Nanni wrote: > > On Sun, Nov 12, 2017 at 10:43:46PM +0100, Klemens Nanni wrote: > > > On Sun, Nov 12, 2017 at 09:04:22PM +, Robert Peichaer wrote:

Re: [patch] config(8) and KARL usage

2018-01-17 Thread Robert Nagy
On 17/01/18 11:40 +0100, Martin Pieuchot wrote: > Hello Sebastien, > > On 17/01/18(Wed) 10:19, Sebastien Marie wrote: > > [...] > > kernel modification is desirable in some cases, at least for disabling > > ulpt(4) when using cups with USB printer. > > Sorry to hijack your thread, but if

Re: [patch] upon install of new operating system version, do not set root password to empty string

2017-12-03 Thread Robert Peichaer
On Wed, Nov 29, 2017 at 08:06:39AM +0100, Otto Moerbeek wrote: > On Tue, Nov 28, 2017 at 06:59:06PM -0500, Ian Sutton wrote: > > > This is a highly theoretical and experimental mitigation which stops the > > root password on newly upgraded/installed systems from being an empty > > string. The

Re: xf86-video-intel patch to test

2017-11-14 Thread Robert
q Am 13. November 2017 17:56:19 MEZ schrieb Stefan Sperling : >On Sat, Nov 11, 2017 at 07:57:16PM +0100, Matthieu Herrb wrote: >> Hi, >> >> the patch below should not affect the intel(4) X.Org driver >> functionality. It's sole purpose is to make it compatible with the >> future

Re: ksh.kshrc: Fix quoting in {add,pre,del}_path() to work with spaces

2017-11-12 Thread Robert Peichaer
On Sun, Nov 12, 2017 at 12:22:27AM +0100, Klemens Nanni wrote: > On Sat, Nov 11, 2017 at 08:03:36PM +0000, Robert Peichaer wrote: > > On Sat, Nov 11, 2017 at 08:11:25PM +0100, Klemens Nanni wrote: > > > pre_path()ing directories with spaces is broken due to bad quoting. >

Re: ksh.kshrc: Fix quoting in {add,pre,del}_path() to work with spaces

2017-11-11 Thread Robert Peichaer
On Sat, Nov 11, 2017 at 08:11:25PM +0100, Klemens Nanni wrote: > pre_path()ing directories with spaces is broken due to bad quoting. > > This diff takes care of that by properly passing double quotes through > eval and quoting the arguments for no_path() individually. > > Feedback? What is

Re: armv7: newfs efi-partition in when choosing manual-fdisk mbr

2017-11-10 Thread Robert Peichaer
On Fri, Nov 10, 2017 at 10:27:36AM +0200, Artturi Alm wrote: > Hi, > > currently, just editing the mbr to give more room for u-boot env growth, > will result in unbootable system, as the installer will fail to mount it, > and naturally things won't work beyond u-boot after reboot either. > > i'm

Re: /etc/netstart diff

2017-11-09 Thread Robert Peichaer
On Wed, Nov 08, 2017 at 10:47:43PM +0100, Holger Mikolon wrote: > The veriable $HN_DIR is set in /etc/netstart on line 166 but used only > once (line 78). The diff below makes use of $HN_DIR in the other cases > where netstart cares of ip address configuration. > > With below change I can

Re: Installer support to fetch/verify bsd.rd for release upgrade

2017-10-09 Thread Robert Peichaer
On Sun, Oct 08, 2017 at 09:56:15AM +, Robert Peichaer wrote: > Up to now, the upgrade procedure from one to the next release meant > that you had to manually download and verify the new ramdisk kernel. > > What about if you just needed to boot into the existing bsd.rd and > i

Installer support to fetch/verify bsd.rd for release upgrade

2017-10-08 Thread Robert Peichaer
Up to now, the upgrade procedure from one to the next release meant that you had to manually download and verify the new ramdisk kernel. What about if you just needed to boot into the existing bsd.rd and it would support downloading and verifying the bsd.rd of the next release? This diff changes

Re: preliminary kabylake support for inteldrm

2017-09-26 Thread Robert Nagy
Hi This is an updated diff for preliminary kabylake support for 6.2, this needs extensive testing on all inteldrm variants. This diff is also in snapshots now so please, test, test test! Thank you Index: sys/dev/pci/drm/i915_pciids.h

preliminary kabylake support for inteldrm

2017-09-07 Thread Robert Nagy
Hi! It turns out that the changes to get kabylake to work are quiet minimal so I took a stab at it and backported all the relevant kabylake commits from linux-4.8.y to our drm tree. I did not touch anything outside of dev/pci/drm/i915 on purprose, so that the update work of kettenis@ is only

[PATCH] update links to USB audio specs.

2017-08-29 Thread Robert Klein
Hi, the USB audio specs seem to have changed their location. Below is a patch to update the links to the currentlocation of the specs. Best regards Robert --- sys/dev/usb/uaudio.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/sys/dev/usb/uaudio.c b/sys/dev/usb

Re: avoid scan_dmesg in armv7 md_installboot

2017-08-22 Thread Robert
hi seems to make sense and reads fine but I'm not able to check it before tonight. cheers Robert Am 22. August 2017 05:04:22 MESZ schrieb Jonathan Gray <j...@jsg.id.au>: >If there is whitespace in the pattern sed returns scan_dmesg will sort >all of the words. As hw.product

Re: Dynamic interfaces broken in 1.1028 of distrib/miniroot/install.sub

2017-08-08 Thread Robert Peichaer
On Tue, Aug 08, 2017 at 03:40:03AM +0200, Pontus Lundkvist wrote: > Hi, > > This change introduced in version 1.1028 of distrib/miniroot/install.sub seems > wrong or incomplete. (Pardon the lack of tabs): > > for _hn in $_trunks $_svlans $_vlans; do > - ifstart $_hn > + ifstart

Re: [PATCH] run security(8) on first boot

2017-07-30 Thread Robert Peichaer
On Sat, Jul 29, 2017 at 05:25:51PM -0400, Joe Gidi wrote: > I did a couple of fresh installs the other day, which reminded me of a > minor irritation and prompted me to think about a possible solution. > > The first run of security(8) on a fresh install is not terribly helpful. > It produces a

Re: install.sub: zap space between function name and parens

2017-07-20 Thread Robert
OK Am 20. Juli 2017 10:50:24 MESZ schrieb Anton Lindqvist : >Hi, >Minor inconsistency noticed in install.sub. No intended functional >change. > >Comments? OK? > >Index: install.sub >=== >RCS file:

Move {install,upgrade}.site script to the end of installs/upgrades (again)

2017-07-18 Thread Robert Peichaer
Originally, the installer executed the {install,upgrade}.site script at the end of installs and upgrades. Over time, code was after this step and now a list of things happen AFTER this script is executed. - make underlying device nodes for softraid devices - install the boot-block on disk -

Re: rc: Use IFS when looking for carp interfaces

2017-07-17 Thread Robert Peichaer
On Mon, Jul 17, 2017 at 03:39:29PM +0200, Klemens Nanni wrote: > The Internal Field Seperator is meant for this so use it instead of > reading and stripping ':' again. > > Feedback? Comments? > > Index: rc > === > RCS file:

Re: rc: reorder_libs: [1/2] Drop unused _l, exit early on failure

2017-07-17 Thread Robert Peichaer
On Mon, Jul 17, 2017 at 03:00:34PM +0200, Klemens Nanni wrote: > On Sun, Jul 16, 2017 at 09:09:44AM +0000, Robert Peichaer wrote: > > The rationale to picking the library versions before remounting was > > to keep the time window having rw /usr as small as possible. > > If

Re: rc: Use here document for temporary pf rule set

2017-07-16 Thread Robert Peichaer
On Sun, Jul 16, 2017 at 03:24:19PM +0200, Klemens Nanni wrote: > On Sun, Jul 16, 2017 at 12:41:09PM +0000, Robert Peichaer wrote: > > On Sun, Jul 16, 2017 at 02:28:59PM +0200, Klemens Nanni wrote: > > > On Sun, Jul 16, 2017 at 12:11:55PM +, Robert Peichaer wrote: > >

Re: rc: Use here document for temporary pf rule set

2017-07-16 Thread Robert Peichaer
On Sun, Jul 16, 2017 at 02:28:59PM +0200, Klemens Nanni wrote: > On Sun, Jul 16, 2017 at 12:11:55PM +0000, Robert Peichaer wrote: > > On Sun, Jul 16, 2017 at 01:37:56PM +0200, Klemens Nanni wrote: > > > This removes on level of indent, avoids the ugly RULES="$RULES ..."

Re: rc: Use here document for temporary pf rule set

2017-07-16 Thread Robert Peichaer
On Sun, Jul 16, 2017 at 01:37:56PM +0200, Klemens Nanni wrote: > This removes on level of indent, avoids the ugly RULES="$RULES ..." > repitition and spares a print. > > We could do a 'pfctl -ef -' right away but I kept changing and enabling > clearly seperated. Regarding the leading newlines and

Re: rc: reorder_libs: [2/2] Pick archive versions more efficiently

2017-07-16 Thread Robert Peichaer
On Sun, Jul 16, 2017 at 01:55:02PM +0200, Klemens Nanni wrote: > On Sun, Jul 16, 2017 at 10:26:25AM +0000, Robert Peichaer wrote: > > But I'd like to stay strict matching the filenames. > > > > + for _liba in /usr/lib/lib{c,crypto}; do > > + _libas=&qu

Re: rc: reorder_libs: [2/2] Pick archive versions more efficiently

2017-07-16 Thread Robert Peichaer
On Sun, Jul 16, 2017 at 01:23:00PM +0200, Klemens Nanni wrote: > On Sun, Jul 16, 2017 at 10:26:25AM +0000, Robert Peichaer wrote: > > On Sun, Jul 16, 2017 at 03:37:15AM +0200, Klemens Nanni wrote: > > > Why looping over all existing archives, picking the latest version of > &g

Re: rc: reorder_libs: [2/2] Pick archive versions more efficiently

2017-07-16 Thread Robert Peichaer
On Sun, Jul 16, 2017 at 03:37:15AM +0200, Klemens Nanni wrote: > Why looping over all existing archives, picking the latest version of > the current archive, skipping it in case it's already in our list of > selected latest versions or adding it otherwise? > > The current code runs ls|sort|tail

Re: rc: reorder_libs: [1/2] Drop unused _l, exit early on failure

2017-07-16 Thread Robert Peichaer
On Sun, Jul 16, 2017 at 07:18:00AM +0200, Theo Buehler wrote: > On Sun, Jul 16, 2017 at 03:34:07AM +0200, Klemens Nanni wrote: > > $_l is not used and picking the latest archive versions is of no use > > if /usr/lib cannot be written to. > > > > This patch applies cleanly before my next one but

Re: RFC 7217: /etc/{rc,netstart} [4/8]

2017-07-15 Thread Robert Peichaer
On Sat, Jul 15, 2017 at 05:09:43PM +, Florian Obser wrote: > netstart & simplification suggested by naddy > > OK? > > diff --git etc/netstart etc/netstart > index 71890bc7a5b..047eef1ab83 100644 > --- etc/netstart > +++ etc/netstart > @@ -190,6 +190,8 @@ if $PRINT_ONLY && (($# == 0)); then >

Re: RFC 7217: installer support [8/8]

2017-07-15 Thread Robert Peichaer
On Sat, Jul 15, 2017 at 05:16:04PM +, Florian Obser wrote: > OK? > > diff --git distrib/miniroot/install.sub distrib/miniroot/install.sub > index 26cecd81cbc..52360686b38 100644 > --- distrib/miniroot/install.sub > +++ distrib/miniroot/install.sub > @@ -2988,6 +2988,9 @@ do_upgrade() { >

Re: RFC 7217 installer bits

2017-07-14 Thread Robert Peichaer
On Fri, Jul 14, 2017 at 03:43:52PM +, Florian Obser wrote: > diff --git distrib/miniroot/install.sub distrib/miniroot/install.sub > index 26cecd81cbc..bf6c562c882 100644 > --- distrib/miniroot/install.sub > +++ distrib/miniroot/install.sub > @@ -2988,6 +2988,9 @@ do_upgrade() { >

Re: RFC 7217: random but stable addresses (take 3)

2017-07-14 Thread Robert Peichaer
On Fri, Jul 14, 2017 at 11:56:02AM +, Florian Obser wrote: > next try > - sha512 > - fixed key size > - /etc/soii.key > - man page tweaks from sthen & jmc and rewording by me to get rid of 48 bits > - link local address is updated when soii flag is toggled > > If this is the final version I

Re: install.sub: Fix scrambled address list in v6_defroute()

2017-07-10 Thread Robert Peichaer
On Sun, Jul 09, 2017 at 09:42:32AM +0200, Klemens Nanni wrote: > On Wed, Jun 14, 2017 at 03:00:11AM +0200, Klemens Nanni wrote: > > Installing -current the other day showed a broken list when picking > > the IPv6 default route just like reported on bugs@ five days ago[1]. > 1:

Re: [PATCH] etc/ksh.kshrc - unify command substitution

2017-07-10 Thread Robert Peichaer
On Fri, Jul 07, 2017 at 05:47:46AM +0100, Raf Czlonka wrote: > Hi all, > > I've noticed that etc/ksh.kshrc uses both types of command substitution > `command` and $(command). The below diff unifies it and uses > $(command) notation consistently. > > While there: > > - remove ':' (null utility)

Re: install.sub: Typo/whitespace nit

2017-07-07 Thread Robert Peichaer
On Tue, Jul 04, 2017 at 02:14:58AM +0200, Klemens Nanni wrote: > Remove duplicate full stop and add space after function name. > > Feedback/OK? > > Index: install.sub > === > RCS file: /cvs/src/distrib/miniroot/install.sub,v >

Re: install.sub: Clean v[46]_info() ouput

2017-07-03 Thread Robert Peichaer
On Wed, Jun 14, 2017 at 05:37:07PM +0200, Klemens Nanni wrote: > With this patch, v[46]_info() both output exactly what their description > says. > > As of now, these functions are only used through > set -- $(v4_info $_if) > which gracefully handles any constellation of whitespaces in the

Re: install.sub: ieee80211_{scan,config}: Allow quoted SSIDs

2017-07-02 Thread Robert Peichaer
On Thu, Jun 15, 2017 at 12:09:20AM +0200, Klemens Nanni wrote: > Instead of ignoring SSIDs containing whitespaces, slightly adjust the > commands to take everything in between 'nwid ' and ' chan' as SSID; if > it has double quotes at start *and* end, simply remove those. > > This enables users to

Re: kernel relinking at install/upgrade time

2017-06-30 Thread Robert Peichaer
On Mon, Jun 26, 2017 at 02:35:55PM -0600, Theo de Raadt wrote: > There is a diff in snapshots which does kernel relinking during > install or upgrade. > > Really amazing... This is now committed to the tree. -- -=[rpe]=-

Re: Update list of invalid users in install.sub

2017-05-06 Thread Robert Peichaer
On Fri, May 05, 2017 at 07:04:55PM +, Callum R. Davies wrote: > Hi tech@, was looking through the tree for the providence of the > amusing "No really..." message in the installer and saw that the list > of invalid users needed updating. Names are in the order found in > passwd, with the

fix a typo in lib/libtls/man/tls_config_verify.3

2017-03-02 Thread Robert Klein
Hi, this is just a small fix for a typo in the manpage for tls_config_verify. Best regards Robert Index: tls_config_verify.3 === RCS file: /cvs/src/lib/libtls/man/tls_config_verify.3,v retrieving revision 1.3 diff -u -p -r1.3

Re: Xorg stipple

2017-02-26 Thread Robert Peichaer
On Sun, Feb 26, 2017 at 10:43:50AM +0100, Landry Breuil wrote: > On Wed, Mar 09, 2016 at 05:09:13PM -0600, joshua stein wrote: > > Is anyone seriously finding video/Xorg bugs through the default X > > stipple pattern anymore? Xorg changed the default to draw a black > > background a while ago

ldpad(8): fix deletion of individual attribute values

2017-02-05 Thread Robert Klein
sub && - vals->be_sub->be_type == BER_TYPE_SET) +vals->be_sub->be_type == BER_TYPE_OCTETSTRING) { ldap_del_values(a, vals); - else +} + else { ldap_del_attribute(entry, attr); + } break; case LDAP_MOD_REPLACE: if (vals->be_sub != NULL && Best Regards Robert

Re: add empty /root/.ssh/authorized_keys to mtree/sets ?

2017-02-05 Thread Robert Peichaer
On Sun, Feb 05, 2017 at 10:46:41AM +0100, Landry Breuil wrote: > Hi, > > when installing 'throwaway' VMs (manually, not always using autoinstall for > $REASONS) i've often found myself having to do right after the install: > install -d -m 700 /root/.ssh > install -m 600 /dev/null

Re: clean up and modernize test calls in bsd.obj.mk

2017-01-23 Thread Robert Peichaer
On Tue, Jan 24, 2017 at 01:01:57PM +1000, Theo Buehler wrote: > We're currently using several idioms for conditionally executing code in > bsd.obj.mk. I'd like to unify them for the sake of readability and > consistency. This was done joint with rpe. OK rpe@ > Index: share/mk/bsd.obj.mk >

Re: Installer error

2017-01-11 Thread Robert Peichaer
On Wed, Jan 11, 2017 at 01:21:30PM +0100, Theo Buehler wrote: > On Wed, Jan 11, 2017 at 01:10:12PM +0100, Theo Buehler wrote: > > On Wed, Jan 11, 2017 at 11:52:02AM +, Pedro Caetano wrote: > > > Hi tech@ > > > > > > I was running an headless installation via serial using today's snapshot > >

ldpad(8): fix LDAP_MOD_DELETE operation

2017-01-09 Thread Robert Klein
urrent installation at the moment. Will make up asap.) Best Regards Robert Index: attributes.c === RCS file: /cvs/src/usr.sbin/ldapd/attributes.c,v retrieving revision 1.3 diff -u -p -r1.3 attributes.c --- attributes.c 19 Oct 2010 09

Re: Improve error message in rcctl(8)

2016-09-06 Thread Robert Peichaer
> Hi tech@, > > Daemon names historically match Antoine's alphanumeric proposal, and I > think underscore is a bit too much, if it's present use minus instead. > The logic behind this? Match this to word termination symbols in ksh. > > Kind regards, > Anton $ find /usr/ports -name '*_*.rc'

Style update for some files in arch/arm

2016-07-28 Thread Robert Tate
I found a few files that could use updated function declarations. Here is my diff: Index: sys/arch/arm/arm/conf.c === RCS file: /cvs/src/sys/arch/arm/arm/conf.c,v retrieving revision 1.46 diff -u -r1.46 conf.c ---

Updating arm/mem.c

2016-07-27 Thread Robert Tate
Hey all, I noticed that mem.c for ARM could use a little style updating. Below is my diff: Index: sys/arch/arm/arm/mem.c === RCS file: /cvs/src/sys/arch/arm/arm/mem.c,v retrieving revision 1.14 diff -u -r1.14 mem.c ---

Website HTTPS

2016-06-02 Thread Robert Tate
It looks like the cert used when you access the site with openbsd.org is only good for www.openbsd.org and so browsers will give warnings when accessing https://openbsd.org/.

Re: anti-ROP mechanism in libc

2016-04-25 Thread Robert Peichaer
On Mon, Apr 25, 2016 at 10:57:37AM -0400, Ted Unangst wrote: > Theo de Raadt wrote: > > + cp -p /usr/lib/$_lib /usr/lib/$_tmplib > > + install -o root -g bin -m 0444 $_lib /usr/lib/$_lib && > > + rm -f /usr/lib/$_tmplib || > > +

Re: [PATCH] make 'set +o' useful and POSIX compatible

2016-03-06 Thread Robert Peichaer
On Sun, Mar 06, 2016 at 10:56:45AM +0100, Martin Natano wrote: > On Sun, Mar 06, 2016 at 05:32:16AM +0100, Martijn Dekker wrote: > > The command 'set -o' shows the current shell options in an unspecified > > format. Less well-known is the variant 'set +o', which should output the > > current shell

Re: netstart: only call ifautoconf is rtsolif is populated

2015-09-13 Thread Robert Peichaer
On Sun, Sep 13, 2015 at 01:35:02PM +0100, Stuart Henderson wrote: > On 2015/09/13 13:19, Stuart Henderson wrote: > > Avoid printing "IPv6 autoconf:" if you have no v6 rtsol interfaces. > > OK? > > As suggested by rpe, just do the check once in ifautoconf. > (I was trying to avoid the indent, but

Re: Update afterboot(8) for new PermitRootLogin default

2015-08-01 Thread Robert Peichaer
On Sat, Aug 01, 2015 at 08:25:06AM +0100, Jason McIntyre wrote: On Fri, Jul 31, 2015 at 07:20:36PM -0400, Michael Reed wrote: Hi all, I noticed that the default for the sshd_config option PermitRootLogin changed from yes to no [1], but afterboot(8) still refers to it as if yes is the

Re: sed -i

2015-07-17 Thread Robert Peichaer
On Fri, Jul 17, 2015 at 06:10:46PM +0200, Jasper Lievisse Adriaanse wrote: Hi, Here's a diff to add the '-i' flag to sed to do inplace edits. It's mostly from FreeBSD with some adjustments to prevent a race with unlink() and fopen() during the tempfile creation. It's been tested in a full

Re: autoinstall(8) tweaks

2015-04-07 Thread Robert Peichaer
On Mon, Apr 06, 2015 at 09:01:51PM +0100, Robert Peichaer wrote: On Mon, Apr 06, 2015 at 09:48:58PM +0800, Nathanael Rensen wrote: A couple of autoinstall(8) tweaks that I find useful. I find it convenient to be able to specify a path to the response file. I also prefer to use the DHCP

  1   2   >