Re: py-openssl breakage

2014-04-21 Thread Stuart Henderson
On 2014/04/21 20:36, Jérémie Courrèges-Anglas wrote: Speaking of py-openssl, here's a diff to remove the EGD methods. OK, please go ahead. There's one test that fails, I haven't investigated it. == FAIL: test_digest

Re: AI_ADDRCONFIG

2014-04-23 Thread Stuart Henderson
On 2014/04/23 08:09, Simon Perreault wrote: + else if (ifa-ifa_addr-sa_family == PF_INET6 so... family is ipv6 + !IN6_IS_ADDR_LOOPBACK( + ((struct sockaddr_in6 *)ifa-ifa_addr) +

Re: [patch src/usr.bin/mg/undo.c] replace malloc memset with calloc

2014-04-24 Thread Stuart Henderson
On 2014/04/24 04:26, Miod Vallat wrote: Same as the others, this time with src/usr.bin/mg/undo.c You are now losing a memset() in the `rec doesn't come from malloc' code path. From the number and types of diff being sent, I am guessing these are tool-generated (coccinelle?); while this is a

Re: [patch usr.sbin/snmpd/mib.c] replace malloc memset with calloc

2014-04-24 Thread Stuart Henderson
On 2014/04/24 09:40, Vadim Lebedev wrote: Peter Malone peter at petermalone.org writes: Hi, Same as the others. Replace malloc memset with calloc in usr.sbin/snmpd/mib.c Index: mib.c === RCS file:

Re: iked + isakmpd on the same machine

2014-04-24 Thread Stuart Henderson
On 2014/04/24 20:30, Mike Belopuhov wrote: On 24 April 2014 20:25, Chris Cappuccio ch...@nmedia.net wrote: Mike Belopuhov [m...@belopuhov.com] wrote: more like it's not supported and is not supposed to work. it's like running nginx and apache at the same time hey, nginx and httpd run

Re: iked + isakmpd on the same machine

2014-04-24 Thread Stuart Henderson
On 2014/04/24 22:28, Mike Belopuhov wrote: On 24 April 2014 22:25, Alexander Hall alexan...@beard.se wrote: On 04/24/14 21:53, Stuart Henderson wrote: On 2014/04/24 20:30, Mike Belopuhov wrote: On 24 April 2014 20:25, Chris Cappuccio ch...@nmedia.net wrote: Mike Belopuhov [m

Re: Kill in_localaddr()

2014-04-25 Thread Stuart Henderson
On 2014/04/24 16:41, Martin Pieuchot wrote: in_localaddr() is used only once in our tree and only if the sysctl net.inet.ip.mtudisc is set to 0. It is used to optimize the size of the MSS if the forward address correspond to a host on one of our subnets. Since it's an optimization for a

Re: nginx.conf file limits

2014-04-25 Thread Stuart Henderson
On 2014/04/21 19:10, Johnw wrote: Hi, would you like to add RLIMIT_NPROC setting to nginx.conf? Because I do not want/need nginx child run any command/fork so, I want set RLIMIT_NPROC=0 to nginx child process, but nginx ignore /etc/login.conf setting. While I think this is a nice idea, it

Re: p2p interfaces and route to loopback

2014-04-28 Thread Stuart Henderson
This breaks my setup, # /sbin/route add -inet6 default -ifp pppoe1 fe80:: route: writing to routing socket: Network is unreachable add net default: gateway fe80::: Network is unreachable

Re: p2p interfaces and route to loopback

2014-04-28 Thread Stuart Henderson
On 2014/04/28 17:15, Stuart Henderson wrote: This breaks my setup, # /sbin/route add -inet6 default -ifp pppoe1 fe80:: route: writing to routing socket: Network is unreachable add net default: gateway fe80::: Network is unreachable hmmm... actually it seems something that was committed

Re: p2p interfaces and route to loopback

2014-04-28 Thread Stuart Henderson
On 2014/04/28 18:39, Martin Pieuchot wrote: On 28/04/14(Mon) 17:32, Stuart Henderson wrote: On 2014/04/28 17:15, Stuart Henderson wrote: This breaks my setup, # /sbin/route add -inet6 default -ifp pppoe1 fe80:: route: writing to routing socket: Network is unreachable add net

Re: p2p interfaces and route to loopback

2014-04-28 Thread Stuart Henderson
On 2014/04/28 19:09, Martin Pieuchot wrote: On 28/04/14(Mon) 17:53, Stuart Henderson wrote: On 2014/04/28 18:39, Martin Pieuchot wrote: On 28/04/14(Mon) 17:32, Stuart Henderson wrote: On 2014/04/28 17:15, Stuart Henderson wrote: This breaks my setup, # /sbin/route add

Re: IPv6 by default

2014-04-29 Thread Stuart Henderson
On 2014/04/28 18:05, Simon Perreault wrote: Tech, Now that my AI_ADDRCONFIG diff is in, it's time to reveal my evil master plan: make getaddrinfo() return IPv6 results first by default. The diff below would be the end goal. I guess people will have valid objections to it. I'd like to

Re: IPv6 by default

2014-04-29 Thread Stuart Henderson
On 2014/04/29 10:52, Giancarlo Razzolini wrote: Em 29-04-2014 04:51, Stuart Henderson escreveu: Too soon I think. Wait a little longer and more major ISPs will turn IPv4 into the second class citizen as they fumble with their cgnat deployments then this will make a lot more sense. Now

Re: IPv6 by default

2014-04-29 Thread Stuart Henderson
On 2014/04/29 22:25, Paul de Weerd wrote: Disabling IPv6 should not be necessary: it shouldn't be enabled by default, even link-local addresses. If doing this, then we need a way to enable link-local, like the opposite of ifconfig $if -inet6. Current process to re-enable just the link-local is

Re: IPv6 by default

2014-04-30 Thread Stuart Henderson
On 2014/04/29 23:12, Stuart Henderson wrote: On 2014/04/29 22:25, Paul de Weerd wrote: Disabling IPv6 should not be necessary: it shouldn't be enabled by default, even link-local addresses. If doing this, then we need a way to enable link-local, like the opposite of ifconfig $if -inet6

Re: previous errata

2014-05-01 Thread Stuart Henderson
On 2014/05/01 20:00, Jon Tibble wrote: On 01/05/2014 18:10, Ted Unangst wrote: Starting today, we're going to try sending patches out via email so you don't miss them. Several previous errata have also been recently published for OpenBSD 5.4 and 5.5. We won't be mailing them out

Re: tmpfs vs mfs

2014-05-06 Thread Stuart Henderson
On 2014/05/06 09:28, Janne Johansson wrote: dd would perhaps not be the end goal for any memory filesystem, but the major point is that when you remove files, tmpfs will (try to) return the memory to the OS, where mfs will not. When used for things like port build directories or cvs /tmp,

Re: amd64 support for AR9485

2014-05-08 Thread Stuart Henderson
On 2014/05/08 22:57, Sébastien Morand wrote: Hi, My wireless card AR9485 is not recognized by kernel (5.5). I'm having the error following error message: Atheros AR9485 rev 0x01 at pci2 dev 0 function 0 not configured As far as I understand it means it's not supported but I can find a

Re: amd64 support for AR9485

2014-05-08 Thread Stuart Henderson
On 2014/05/08 23:43, Sébastien Morand wrote: You could try adding the ID to the athn driver to get it to match: Index: if_athn_pci.c === RCS file: /cvs/src/sys/dev/pci/if_athn_pci.c,v retrieving revision 1.14 diff -u

Re: NOINET6 by default

2014-05-14 Thread Stuart Henderson
On 2014/05/15 00:02, Paul de Weerd wrote: Hi Henning, Thanks, I really like this. On Wed, May 14, 2014 at 11:29:20PM +0200, Henning Brauer wrote: | the only use case that needs config adoption: people ONLY using | link-local, they will need to put +inet6 in the corresponding |

Re: NOINET6 by default

2014-05-14 Thread Stuart Henderson
On 2014/05/15 00:13, Mark Kettenis wrote: Date: Wed, 14 May 2014 23:29:20 +0200 From: Henning Brauer lists-openbsdt...@bsws.de this diff fixes that. well, really two independent parts. one: set the NOINET6 flag by default on each and every interface. ok on that bit two: implement

Re: What platforms grow the stack upwards?

2014-05-14 Thread Stuart Henderson
On 2014/05/15 00:47, Juan Francisco Cantero Hurtado wrote: I have not found a complete list with this information. Can someone tell me what OpenBSD platforms grow the stack upwards? hppa

Re: NOINET6 by default

2014-05-14 Thread Stuart Henderson
On 2014/05/14 23:47, Stuart Henderson wrote: On 2014/05/15 00:13, Mark Kettenis wrote: Date: Wed, 14 May 2014 23:29:20 +0200 From: Henning Brauer lists-openbsdt...@bsws.de this diff fixes that. well, really two independent parts. one: set the NOINET6 flag by default on each

Re: NOINET6 by default

2014-05-15 Thread Stuart Henderson
On 2014/05/15 09:41, Claudio Jeker wrote: On Thu, May 15, 2014 at 05:48:16AM +0200, Henning Brauer wrote: * Reyk Flöter reyk.floe...@googlemail.com [2014-05-15 01:04]: On 15.05.2014, at 00:46, Henning Brauer lists-openbsdt...@bsws.de wrote: * Mark Kettenis mark.kette...@xs4all.nl

Re: ifconfig segmentation fault

2014-05-16 Thread Stuart Henderson
On 2014/05/16 17:12, Giancarlo Razzolini wrote: As I mentioned, I'm running 5.5 stable. So this might got fixed in current, I'm taking a look at the CVS commits right now to see if it was fixed. But, funny thing, I've managed to get another segmentation fault, this time from command line.

Re: ifconfig segmentation fault

2014-05-16 Thread Stuart Henderson
On 2014/05/16 17:26, Giancarlo Razzolini wrote: Em 16-05-2014 17:18, Stuart Henderson escreveu: On 2014/05/16 17:12, Giancarlo Razzolini wrote: As I mentioned, I'm running 5.5 stable. So this might got fixed in current, I'm taking a look at the CVS commits right now to see if it was fixed

Re: rsh vs net/ipcad - problems on 5.5

2014-05-20 Thread Stuart Henderson
On 2014/05/20 16:41, viq wrote: I encountered a strange problem when trying to communicate with net/ipcad: rsh localhost stats rsh: poll: Undefined error: 0 Same thing on 5.1: rsh localhost stats connect to address ::1: Connection refused Trying 127.0.0.1... Interface vlan123: received

Re: rsh vs net/ipcad - problems on 5.5

2014-05-20 Thread Stuart Henderson
On 2014/05/20 12:36, Philip Guenther wrote: On Tue, May 20, 2014 at 8:29 AM, Stuart Henderson st...@openbsd.org wrote: On 2014/05/20 16:41, viq wrote: I encountered a strange problem when trying to communicate with net/ipcad: rsh localhost stats rsh: poll: Undefined error: 0

Re: [PATCH SET] malloc + memset = calloc

2014-05-25 Thread Stuart Henderson
On 2014/05/25 09:08, Benjamin Baier wrote: There are a couple like this: - pre_comp = malloc(num_points * 17 * 3 * sizeof(felem)); + pre_comp = calloc(num_points * 17 * 3, sizeof(felem)); Wouldn't they be better like this? pre_comp = calloc(num_points,

Re: c_rehash doesn't exist.

2014-05-25 Thread Stuart Henderson
On 2014/05/25 21:33, Jérémie Courrèges-Anglas wrote: Jason McIntyre j...@kerhand.co.uk writes: On Sun, May 25, 2014 at 03:02:18PM +0200, Alexander Schrijver wrote: c_rehash doesn't exist in OpenBSD and remove a history lesson which is either not aplicable anymore or was never true.

Re: new OpenSSL flaws

2014-06-05 Thread Stuart Henderson
On 2014/06/05 20:43, Martin, Matthew wrote: That's exactly my though. Specially, because FreeBSD and NetBSD were warned, but not OpenBSD. If this was only a rant or any childish behavior from them, it's something stupid and, of course, not the right thing to do. But hey, we're all human.

Re: ANONCVS MIRROR MAINTAINERS PLEASE READ!

2014-06-06 Thread Stuart Henderson
On 2014/06/06 11:17, Bob Beck wrote: If you or someone you love runs an anoncvs server, they need to see this. We recently added commitid support to our cvs repo. all works fine with cvs and this. However, we ran into a problem with cvsync in ports. Most mirror maintianers use cvsync to

Re: mfi(4) vs WT and WB

2014-06-06 Thread Stuart Henderson
On 2014/06/06 20:54, Otto Moerbeek wrote: This volumes feel pretty fast, so I suspect caching mode is OK. From experience, you definitely wouldn't be saying pretty fast if it was in WT. :)

Re: ANONCVS MIRROR MAINTAINERS PLEASE READ!

2014-06-06 Thread Stuart Henderson
On 2014/06/07 00:04, Alexander Hall wrote: Care to mention the fixed package version, so one knows when it's available at the favourite mirror? cvsync-0.24.19p3, yes? That is correct. There is a -current snapshot package for i386 at

Re: ANONCVS MIRROR MAINTAINERS PLEASE READ!

2014-06-07 Thread Stuart Henderson
On 2014/06/07 01:02, Alexander Hall wrote: If you use a scanfile, it should be removed and re-created when updating. If I update my package before my upstream does, do I have to keep removing the scanfile (or disable it) until the upstream mirror has been fully fixed too? Sorry I have no

Re: ANONCVS MIRROR MAINTAINERS PLEASE READ!

2014-06-07 Thread Stuart Henderson
An additional note: this doesn't just apply to mirror maintainers. If you are using cvsync to update a local repository, you need the updated version of cvsync too.

Re: libressl compilation issues (?)

2014-06-08 Thread Stuart Henderson
On 2014/06/08 11:49, Loganaden Velvindron wrote: Hey guys, I downloaded the latest snapshot, and attempted to build from sources. However, i'm getting those errors: /usr/src/lib/libssl/ssl/../../libssl/src/ssl/s23_clnt.c: In function 'ssl_fill_hello_random':

Re: libressl compilation issues (?)

2014-06-08 Thread Stuart Henderson
On 2014/06/08 20:58, Stuart Henderson wrote: On 2014/06/08 11:49, Loganaden Velvindron wrote: Hey guys, I downloaded the latest snapshot, and attempted to build from sources. However, i'm getting those errors: /usr/src/lib/libssl/ssl/../../libssl/src/ssl/s23_clnt.c: In function

Re: Typo in macro name for ASN

2014-06-09 Thread Stuart Henderson
On 2014/06/08 22:49, Loganaden Velvindron wrote: On Fri, Jun 06, 2014 at 09:47:03AM +0200, Miod Vallat wrote: From Quanah Gibson-Mount: UNKOWN-UNKNOWN Index: crypto/asn1/asn1_err.c Please refrain from sending diffs you obviously didn't test. Miod Compiled and tested: $

Re: nsd and unbound flags

2014-06-12 Thread Stuart Henderson
On 2014/06/12 21:58, Martin, Matthew wrote: Since /var/nsd/etc/nsd.conf is the default path for nsd's config file, I see no reason to break from the convention, for normal use: . Same for unbound. -Matthew Martin Index: rc.conf

Re: pfctl: stricter redirect specs

2014-06-24 Thread Stuart Henderson
On 2014/06/24 15:07, Mike Belopuhov wrote: I propose to avoid the confusion by flagging such situations as errors, e.g.: % echo 'pass out nat-to { ::1 1.1.1.1 }' | ./obj/pfctl -o none -vnf - stdin:1: translation spec contains addresses with different address families stdin:1: skipping

Re: nsd rc script check returns strange exit code when nsd not running.

2014-06-25 Thread Stuart Henderson
On 2014/06/24 20:56, b...@tilderoot.com wrote: The nsd rc script returns an exit code other than 1 when nsd is not running. A problem arises when using a configuration management (CM) system such as ansible to control system services. With this non-standard exit code, the CM system cannot

Re: nsd rc script check returns strange exit code when nsd not running.

2014-06-25 Thread Stuart Henderson
On 2014/06/25 13:04, Stuart Henderson wrote: On 2014/06/24 20:56, b...@tilderoot.com wrote: The nsd rc script returns an exit code other than 1 when nsd is not running. A problem arises when using a configuration management (CM) system such as ansible to control system services

Re: ANONCVS MIRROR MAINTAINERS.. YOU NEED TO READ THIS!

2014-06-26 Thread Stuart Henderson
On 2014/06/26 11:02, Mike Belopuhov wrote: On 26 June 2014 08:53, patrick keshishian sids...@boxsoft.com wrote: On Wed, Jun 25, 2014 at 10:01:06PM -0700, patrick keshishian wrote: On Thu, Jun 26, 2014 at 06:37:00AM +0200, Alexander Hall wrote: On 06/25/14 20:52, Bob Beck wrote: If you

Re: ANONCVS MIRROR MAINTAINERS.. YOU NEED TO READ THIS!

2014-06-26 Thread Stuart Henderson
On 2014/06/26 06:37, Alexander Hall wrote: On 06/25/14 20:52, Bob Beck wrote: If you or someone you love runs an anoncvs server, they need to see this. As you know we recently added commitid support to cvs, and we had you update your cvsync binary. Unfortunately, the fix wasn't quite

Re: increase netcat's buffer...

2014-06-26 Thread Stuart Henderson
On 2014/06/26 08:13, sven falempin wrote: trim lots of pointless lines + close(net_fd); + return; + } + /* listen and net in gone, queues empty, done */ + if (lflag pfd[POLL_NETIN].fd == -1 lflag

Re: increase netcat's buffer...

2014-06-26 Thread Stuart Henderson
On 2014/06/26 08:33, sven falempin wrote: i have Zero idea if it is right or wrong, just warn because the symbol was lonely. A diff only tells part of the story, it is also necessary to look at the surrounding code.

Re: ANONCVS MIRROR MAINTAINERS.. YOU NEED TO READ THIS!

2014-06-26 Thread Stuart Henderson
On 2014/06/26 20:20, Christian Weisgerber wrote: As everybody noticed, there was another problem. Please update to cvsync-0.25.0pre0p0 for the latest bug fix. Sorry for all the inconvenience. At least the following anoncvs mirrors have this as of now: anon...@anoncvs.spacehopper.org:/cvs

Re: idea to block some scanners

2014-06-27 Thread Stuart Henderson
On 2014/06/27 09:58, Leclerc, Sebastien wrote: Hi, Would this piece of code be useful to someone else than me? Not sure about base, but it may make sense to add to ports. +/* Stolen from ftp-proxy */ Old version of ftp-proxy I guess. It hasn't used DIOCNATLOOK for several releases, it has

openssl smime -sign broken

2014-06-29 Thread Stuart Henderson
Does anyone have ideas about this before I start digging to find when it got broken? On -current: | $ echo test message | openssl smime -sign -signer mail.cert -inkey mail.key | Enter pass phrase for mail.key: | MIME-Version: 1.0 | Content-Type: multipart/signed;

Re: sort(1) updates

2014-06-30 Thread Stuart Henderson
On 2014/06/29 18:48, Jared Yanovich wrote: Hi, sort(1) does some funky things and isn't hard to break: $ perl -e 'print \nx117000,x\n' | sort | sort -c This patch contains a few changes from NetBSD to correct the behavior regarding ordering of appending bins to output in certain

Re: daily(8) scratch and junk files removal

2014-07-02 Thread Stuart Henderson
I think this is correct. Any nay-sayers? On 2014/07/01 19:07, Rafael Zalamena wrote: I noticed a problem in one of my OpenBSD installation where tmux(1) would lose its session socket after a few inactive days. Every time that happened I quickly fixed it by sending a SIGUSR1 (as suggested by

Re: anoncvs errors

2014-07-04 Thread Stuart Henderson
On 2014/07/04 04:31, Vijay Sankar wrote: Here is a copy of my cvs-syncfile and I had upgraded to cvsync-0.25.0pre0 You need cvsync-0.25.0pre0p0

Re: bpf_mtap_stripvlan

2014-07-10 Thread Stuart Henderson
On 2014/07/10 13:11, Henning Brauer wrote: I committed the bpf chunk, but nothing is using it yet. pls give the if_vlan.c chunk a spin. I think weerd@ might need something similar for bridge for his tv... Index: net/if_vlan.c

Re: lynx: disable old protocols

2014-07-11 Thread Stuart Henderson
On 2014/07/11 01:18, Theo de Raadt wrote: I too use gopher in lynx regularly, and would miss support. There is = still a surprisingly active community using gopher. (floodgap, et al.) So install a package. Should we just move lynx to packages?

Re: lynx: disable old protocols

2014-07-11 Thread Stuart Henderson
On 2014/07/11 18:51, Brett Mahar wrote: On Fri, 11 Jul 2014 09:48:12 +0100 Stuart Henderson st...@openbsd.org wrote: | On 2014/07/11 01:18, Theo de Raadt wrote: | I too use gopher in lynx regularly, and would miss support. There is = | still a surprisingly active community using gopher

Re: lynx: disable old protocols

2014-07-11 Thread Stuart Henderson
On 2014/07/11 05:05, Ted Unangst wrote: On Fri, Jul 11, 2014 at 09:56, Stuart Henderson wrote: On 2014/07/11 18:51, Brett Mahar wrote: On Fri, 11 Jul 2014 09:48:12 +0100 Stuart Henderson st...@openbsd.org wrote: | On 2014/07/11 01:18, Theo de Raadt wrote: | I too use gopher in lynx

Re: sshd add back hmac-sha1

2014-07-11 Thread Stuart Henderson
On 2014/07/11 05:32, Ted Unangst wrote: I think the proposal rampaging went one algorithm too far. sha1 is the best algorithm supported by many clients and it's still pretty secure. without it, a lot of clients have stopped working. temporarily alieve the pain? Re-adding SHA1 will fix things

Re: [PATCH] rdomain support on rc.d

2014-07-11 Thread Stuart Henderson
On 2014/07/11 13:49, Mike Belopuhov wrote: as far as i can tell the daemon_rdomain bit that goes into the rc script is fine, however i'm not quite sure how can i start two daemons in different rdomains via rc.conf.local. looks like this diff doesn't handle this and allows only one instance in

Re: CVS: cvs.openbsd.org: src

2014-07-11 Thread Stuart Henderson
On 2014/07/11 15:21, Bob Beck wrote: CVSROOT: /cvs Module name: src Changes by: b...@cvs.openbsd.org2014/07/11 15:21:59 Modified files: lib/libssl/src/crypto: opensslv.h Log message: Provide LIBRESSL_VERSION_NUMBER for people who use such things to detect versions

Re: CVS: cvs.openbsd.org: src

2014-07-11 Thread Stuart Henderson
I'm worried that bogus codepaths will be taken in software that expects a certain openssl version - things failing to build we can cope with in ports easily enough, I'm more concerned about software that does build but behaves incorrectly at runtime.

Re: [PATCH] libressl: add dummy egd functions

2014-07-11 Thread Stuart Henderson
On 2014/07/12 01:13, Hanno Böck wrote: I didn't know what egd was up until today, but reading what it is I completely understand that consideration. However, this breaks a number of packages (wget, python, ruby). There's probably a simple solution: Just add dummy functions that always return

Re: CVS: cvs.openbsd.org: src

2014-07-12 Thread Stuart Henderson
On 2014/07/12 14:04, Martijn van Duren wrote: Hello tech@, I just saw the commit message below. Currently I use the source functionality to determine whether I'm in my home network or not and use it to customize sndiod_flags to redirect sound to my main server. Is there an alternative to

crash, stopped at uao_reference+0x88: movq %rcx,0x8(%rax)

2014-07-12 Thread Stuart Henderson
trace - stopped at uao_reference+0x88: movq %rcx,0x8(%rax) uao_reference at ..+0x88 uao_set_swslot at ..+0x55 uvmpd_scan_inactive at ..+0x681 uvmpd_scan at ..+0x23c uvm_pageout at ..+0x5b active process is pagedaemon screenshots at

Re: DNS control port additions to /etc/services

2014-07-15 Thread Stuart Henderson
On 2014/07/15 15:51, Antoine Jacoutot wrote: On Tue, Jul 15, 2014 at 12:22:37PM +0100, Craig R. Skinner wrote: Suggestion of add NSD, Unbound BIND control ports to /etc/services: Makes sense to me. Anyone want to OK this? I'll discuss tweaks to the diff below but I'm in two minds about

Re: DNS control port additions to /etc/services

2014-07-15 Thread Stuart Henderson
On 2014/07/15 16:35, Antoine Jacoutot wrote: I'll discuss tweaks to the diff below but I'm in two minds about whether we want it. We don't enable the control socket in unbound by default at present (there is a diff somewhere to move this to unix domain sockets which we'd much prefer over

/etc/services additions for quagga

2014-07-15 Thread Stuart Henderson
If this is no longer a user editable config file ... Index: services === RCS file: /cvs/src/etc/services,v retrieving revision 1.87 diff -u -p -r1.87 services --- services12 Jul 2014 14:51:07 - 1.87 +++ services15

/etc/services conserver

2014-07-15 Thread Stuart Henderson
conserver changed port to allow running as non-root. ok? Index: services === RCS file: /cvs/src/etc/services,v retrieving revision 1.87 diff -u -p -r1.87 services --- services12 Jul 2014 14:51:07 - 1.87 +++ services

Re: /etc/services additions for quagga

2014-07-15 Thread Stuart Henderson
On 2014/07/15 16:41, Stuart Henderson wrote: If this is no longer a user editable config file ... fix spaces/tabs Index: services === RCS file: /cvs/src/etc/services,v retrieving revision 1.87 diff -u -p -r1.87 services

Re: Changing a running process' cmd name/argv[0]

2014-07-16 Thread Stuart Henderson
On 2014/07/16 09:53, Gustav Fransson Nyvell wrote: Hm, no, .xinitrc itself is the process that calls fork etc since it uses a lib that does this. Do you mean that you have replaced .xinitrc, which is documented as a file that should be a shell script, with binary object code? If so, the

Re: DNS control port additions to /etc/services

2014-07-16 Thread Stuart Henderson
On 2014/07/16 11:02, Craig R. Skinner wrote: On 2014-07-15 Tue 16:04 PM |, Theo de Raadt wrote: On Tue, Jul 15, 2014 at 12:22:37PM +0100, Craig R. Skinner wrote: Suggestion of add NSD, Unbound BIND control ports to /etc/services: Makes sense to me. Anyone want to OK this?

Re: don't include CFLAGS in CXXFLAGS

2014-07-17 Thread Stuart Henderson
On 2014/07/18 00:10, Jonathan Gray wrote: sys.mk automatically gets included by make(1) and sets CXXFLAGS to CFLAGS. If a Makefile defines additional CFLAGS they will then be passed to the C++ compiler. Which creates problems with flags that should only be used by the C compiler in Makefiles

Re: lynx: disable old protocols

2014-07-19 Thread Stuart Henderson
On 2014/07/19 01:29, Ville Valkonen wrote: what would you suggest for situations where installXX.iso is burned to a CD to avoid downloading sets from the net due a slow Internet connection? When sets are installed from the CD it doesn't set PKG_PATH. I couldn't find any mirror list from the

Re: lynx: disable old protocols

2014-07-19 Thread Stuart Henderson
On 2014/07/19 12:28, Stuart Henderson wrote: On 2014/07/19 01:29, Ville Valkonen wrote: what would you suggest for situations where installXX.iso is burned to a CD to avoid downloading sets from the net due a slow Internet connection? When sets are installed from the CD it doesn't set

Re: route(8) -sa

2014-07-22 Thread Stuart Henderson
On 2014/07/22 11:01, Martin Pieuchot wrote: Anybody is using the -sa modifier of route(8)? A sockaddr in hexa, really? What's your use case? That only seems useful in situations where modifying route(8) would be a better choice.. Otherwise, ok to kill it? Obviously wait for other

Re: [PATCH, libressl] discuss: removal of padding extension?

2014-07-23 Thread Stuart Henderson
On 2014/07/23 10:36, Hanno Böck wrote: On Wed, 23 Jul 2014 01:28:45 -0700 Loganaden Velvindron lo...@elandsys.com wrote: On Wed, Jul 23, 2014 at 10:20:23AM +0200, Hanno B?ck wrote: Quick background: Some router firmwares from F5 have a bug that they fail if the SSL handshake is between

Re: [PATCH, libressl] discuss: removal of padding extension?

2014-07-24 Thread Stuart Henderson
On 2014/07/23 18:36, Claus Assmann wrote: On Wed, Jul 23, 2014, Ted Unangst wrote: On Wed, Jul 23, 2014 at 10:20, Hanno Böck wrote: Quick background: Some router firmwares from F5 have a bug that they fail if the SSL handshake is between 256 and 511 bytes. Is this the same problem

recent ipv6 changes: how to pick up rtadv without an autoconf address?

2014-07-25 Thread Stuart Henderson
Following the recent IPv6 changes, what method should now be used to have a statically configured ipv6 address but accept router advertisements to pick up a default route?

Re: bgpctl: enlarge columns for 4-byte ASN display

2014-07-27 Thread Stuart Henderson
On 2014/07/27 11:15, Claudio Jeker wrote: Not a big fan since this makes the bgpctl show output no longer fit 80 chars and so will wrap lines on default terminals. While it is OK to increase the size it should be taken away from other fields in some whay. An option would be to drop the OutQ

Re: bgpctl: enlarge columns for 4-byte ASN display

2014-07-27 Thread Stuart Henderson
On 2014/07/27 17:24, Gregor Best wrote: On Sun, Jul 27, 2014 at 03:36:06PM +0100, Stuart Henderson wrote: On 2014/07/27 11:15, Claudio Jeker wrote: Not a big fan since this makes the bgpctl show output no longer fit 80 chars and so will wrap lines on default terminals. While it is OK

Re: Typo in Tetris

2014-08-04 Thread Stuart Henderson
http://en.m.wikipedia.org/wiki/If_and_only_if

Re: Small geoloc daemon

2014-08-10 Thread Stuart Henderson
On 2014/08/10 17:20, Gustav Fransson Nyvell wrote: On 08/10/14 14:28, Jérémie Courrèges-Anglas wrote: Gustav Fransson Nyvell gus...@nyvell.se writes: [...] No. You begin with an RFC. Huh? Really? Besides, an RFC for what, imsg communication? Again I can't see the point of your

Re: Print strings with double quotes safely in ifconfig(8)

2014-08-11 Thread Stuart Henderson
On 2014/08/11 03:03, Vadim Zhukov wrote: 2014-08-11 2:06 GMT+04:00 patrick keshishian pkesh...@gmail.com: On 8/10/14, Vadim Zhukov persg...@gmail.com wrote: This changes the way ifconfig(8) to print lines like 'crazy nwid', i.e., containing double quotes inside the data being output. At

Re: Does athn - Atheros IEEE 802.11a/g/n wireless supports 802.11n mode?

2014-08-14 Thread Stuart Henderson
On 2014/08/14 16:08, Denis Lapshin wrote: Does athn driver support 802.11n mode for all Atheros devices which has N mode implemented? OpenBSD does not currently support 802.11n on any device.

Re: jumbo support for bnx(4)

2014-08-14 Thread Stuart Henderson
On 2014/08/14 17:09, Brad Smith wrote: On 13/08/14 6:42 AM, David Gwynne wrote: ive had this for 2 years or so. updated to current again. its been tested on the following: bnx0 at pci4 dev 0 function 0 Broadcom BCM5708 rev 0x12: apic 8 int 16 bnx1 at pci13 dev 0 function 0 Broadcom

Re: jumbo support for bnx(4)

2014-08-14 Thread Stuart Henderson
On 2014/08/14 22:38, Stuart Henderson wrote: On 2014/08/14 17:09, Brad Smith wrote: On 13/08/14 6:42 AM, David Gwynne wrote: ive had this for 2 years or so. updated to current again. its been tested on the following: bnx0 at pci4 dev 0 function 0 Broadcom BCM5708 rev 0x12: apic 8

Re: arp(8) output and expire timer

2014-08-15 Thread Stuart Henderson
On 2014/08/12 15:46, Martin Pieuchot wrote: I find arp(8) output really difficult to read, but more importantly it does not print the expire time of non permanent entries like ndp(8). So the diff below change arp(8)'s output to be more similar to ndp(8)'s one. Personally I like the extra

Re: it happends

2014-08-18 Thread Stuart Henderson
Your bug report is incomplete and I can't replicate it here, do you have any more information about what happens? This is how it looks to me .. $ sudo pkg_add -v p5-Net-SMTP-SSL Update candidates: quirks-2.9 - quirks-2.9 (ok) quirks-2.9 signed on 2014-07-31T22:37:55Z No change in quirks-2.9

Re: sk(4): jumbo mbufs and rxring accounting

2014-08-19 Thread Stuart Henderson
From what I remember from last attempt to convert sk(4) to MCLGETI, there were problems which only showed up under load (possibly also involved NFS, I don't remember for sure) - I probably used netrate with something like netblast 11.22.33.44 12345 1 30 to generate a bunch of packets over it

Re: sk(4): jumbo mbufs and rxring accounting

2014-08-19 Thread Stuart Henderson
, Brad Smith b...@comstyle.com wrote: On 19/08/14 2:43 PM, Stuart Henderson wrote: From what I remember from last attempt to convert sk(4) to MCLGETI, there were problems which only showed up under load (possibly also involved NFS, I don't remember for sure) - I probably used netrate

Re: openospfd router-priority

2014-08-19 Thread Stuart Henderson
On 2014/08/19 18:32, Tim Epkes wrote: Agree with once elected a DR he stays that way (eliminates a lot of bouncing). My issue was that both sides became FULL/OTHER. I get this sometimes, usually after a link has gone away for a bit but hasn't lost link, normally restarting ospfd on one router

Re: let vlan(4) mtu be limited by the parents hardmtu instead of current mtu

2014-08-21 Thread Stuart Henderson
On 2014/08/20 17:17, Chris Cappuccio wrote: David Gwynne [da...@gwynne.id.au] wrote: sthen@ says this is likely a bit optimistic. while most of our drivers unconditionally configure their max mru, there's some stupid ones that still interpret the configured mtu as a what the mru should

Re: let vlan(4) mtu be limited by the parents hardmtu instead of current mtu

2014-08-21 Thread Stuart Henderson
On 2014/08/21 08:45, Chris Cappuccio wrote: Stuart Henderson [st...@openbsd.org] wrote: On 2014/08/20 17:17, Chris Cappuccio wrote: David Gwynne [da...@gwynne.id.au] wrote: sthen@ says this is likely a bit optimistic. while most of our drivers unconditionally configure their max mru

Re: arp(8) output and expire timer

2014-08-22 Thread Stuart Henderson
can we go back to the standard MAC address formatting that's used everywhere except ndp? Index: arp.c === RCS file: /cvs/src/usr.sbin/arp/arp.c,v retrieving revision 1.59 diff -u -p -r1.59 arp.c --- arp.c 21 Aug 2014 10:23:47

Re: arp(8) output and expire timer

2014-08-22 Thread Stuart Henderson
On 2014/08/23 00:00, Martin Pieuchot wrote: On 22/08/14(Fri) 22:54, Stuart Henderson wrote: can we go back to the standard MAC address formatting that's used everywhere except ndp? Fine with me, any reason not to do it for ndp too? None that I know of ... Index: ndp.c

Re: finally nuke sys/dkstat.h

2014-09-08 Thread Stuart Henderson
On 2014/09/06 16:15, Mark Kettenis wrote: Date: Sat, 6 Sep 2014 10:04:08 + From: Miod Vallat m...@online.fr sys/dkstat.h has not contained disk statistics since 17 years. The remaining defines from this file can already be found in sys/sched.h, and the variable declarations would

Re: apmd hangs

2014-09-09 Thread Stuart Henderson
On 2014/09/08 23:35, Mark Kettenis wrote: The more code documentation I read, the more I'm convinced that coordinating state changes between logical processors isn't necessary and actually is responsible for the hangs people have been seeing. So here is a diff that does away with it all.

Re: PATCH: fix iwn(4) scan hangs

2014-09-09 Thread Stuart Henderson
On 2014/09/09 12:38, Fabian Raetz wrote: Hi, below is a patch for iwn(4) which hopefully fixes a problem where iwn(4) does not return from a scan, if the interface is up. This works nicely for me, same device as one of your previous testers I think: iwn0 at pci2 dev 0 function 0 Intel

Re: PATCH: fix iwn(4) scan hangs

2014-09-09 Thread Stuart Henderson
On 2014/09/09 16:38, David Coppa wrote: On Tue, Sep 9, 2014 at 4:30 PM, Erling Westenvik erling.westen...@gmail.com wrote: On Tue, Sep 09, 2014 at 12:38:04PM +0200, Fabian Raetz wrote: Devices tested so far: Inter WiFi Link 5100 (Marcin Piotr Pawlowski) Intel Centrino

  1   2   3   4   5   6   7   8   9   10   >