Displaying 1 50 of 394,410 commits (0.149s)

OpenBSD — usr.bin/ssh sshconnect2.c readconf.c

Add a ssh_config HostbasedKeyType option to control which
host public key types are tried during hostbased authentication.

This may be used to prevent too many keys being sent to the server,
and blowing past its MaxAuthTries limit.

bz#2211 based on patch by Iain Morgan; ok markus@

OpenBSD — usr.sbin/pkg_add/OpenBSD AddCreateDelete.pm Dependencies.pm

Fix the default interactive level to install the "default" dependencies.
Actually testing it caused me to write correct (and simpler) code...

OpenBSD — usr.bin/ssh ssh-keyscan.c

set a timeout to prevent hangs when talking to busted servers;
ok markus@
Delta File
+2 -1 usr.bin/ssh/ssh-keyscan.c
+2 -1 1 file

OpenBSD — usr.bin/ftp ftp.1 small.c

remove tenex transfer support. if you still have TOPS20 machines in
service, you'll need to stick with openbsd 5.6.
bonus: remove references to ebcdic.
ok deraadt

OpenBSD — usr.bin/mandoc tbl_term.c tbl_layout.c

Abolish struct tbl_head and replace it by an "int col" member in
struct tbl_cell.  No functional change, minus 40 lines of code.

OpenBSD — usr.bin/mandoc tbl_data.c tbl.c

Auditing the tbl(7) code for more NULL pointer accesses, i came out
empty-handed; so this is just KNF and some code simplifications,
no functional change.

OpenBSD — usr.bin/ssh packet.c opacket.c

avoid more fatal/exit in the packet.c paths that ssh-keyscan
uses; feedback and "looks good" markus@
Delta File
+143 -77 usr.bin/ssh/packet.c
+33 -16 usr.bin/ssh/opacket.c
+7 -5 usr.bin/ssh/packet.h
+3 -6 usr.bin/ssh/opacket.h
+4 -4 usr.bin/ssh/dispatch.c
+5 -1 usr.bin/ssh/ssherr.c
+9 -5 3 files not shown
+204 -114 9 files

OpenBSD — regress/usr.bin/ssh krl.sh

regression test for 'wildcard CA' serial/key ID revocations
Delta File
+44 -30 regress/usr.bin/ssh/krl.sh
+44 -30 1 file

OpenBSD — usr.bin/ssh krl.c ssh-keygen.c

permit KRLs that revoke certificates by serial number or key ID
without scoping to a particular CA; ok markus@

OpenBSD — usr.bin/ssh ssh-keygen.c

missing parentheses after if in do_convert_from() broke
private key conversion from other formats some time in 2010;
bz#2345 reported by jjelen AT redhat.com
Delta File
+3 -3 usr.bin/ssh/ssh-keygen.c
+3 -3 1 file

OpenBSD — regress/usr.bin/mandoc/tbl/layout emptyline.out_ascii emptyline.in, usr.bin/mandoc tbl_layout.c

Make sure every layout line contains at least one cell;
fixing a NULL pointer access in term_tbl() that jsg@ found with afl.

OpenBSD — usr.bin/ssh kex.c

fix ssh protocol 1, spotted by miod@
Delta File
+20 -9 usr.bin/ssh/kex.c
+20 -9 1 file

OpenBSD — usr.bin/mandoc roff.c

correctly handle table layout lines starting with a dot
Delta File
+2 -2 usr.bin/mandoc/roff.c
+2 -2 1 file

OpenBSD — lib/libc/gen vis.3

Rework vis.3 so it has standard sections.

Moved the return values from the description to a proper return values
section.  Broke up the description into function description followed
by a subsection for the range and encoding.  Replaced srclen with
strlen(src) when srclen isn't an argument.  Moved the common flag argument
to its own paragraph.

input schwarze@, input + ok jmc@
Delta File
+41 -38 lib/libc/gen/vis.3
+41 -38 1 file

OpenBSD — regress/usr.bin/mandoc/tbl/layout Makefile

reorg tbl(7) test suite

OpenBSD — regress/usr.bin/mandoc/tbl/data block_unclosed.in block_unclosed.out_ascii, regress/usr.bin/mandoc/tbl/layout span.in complex.in

reorg tbl(7) test suite

OpenBSD — sys/arch/arm/arm pmap.c pmap7.c, sys/arch/arm/include pmap.h

remove no-op simple locks
tested by jsg, ok miod

OpenBSD — sys/net bpf.c

back bpf.c down to 1.113, from before most recent timeout changes.
nmap is broken, as reported by kent fritz.
pending further investigation, we should keep nmap working until a
better fix is developed for the original problem.
Delta File
+4 -8 sys/net/bpf.c
+4 -8 1 file

OpenBSD — bin/pax tar.c

Correct buffer overflow in handling of pax extension headers, caught
by the memcpy() overlap check.

ok millert@ deraadt@
Delta File
+83 -38 bin/pax/tar.c
+83 -38 1 file

OpenBSD — distrib/miniroot upgrade.sh

At upgrade time delete sendmail,named,nginx,openssl binaries because
they may reside earlier in the path than a pkg.
prompted by tedu, with halex
Delta File
+5 -1 distrib/miniroot/upgrade.sh
+5 -1 1 file

OpenBSD — usr.sbin/httpd parse.y

Fix a regression that removed support for using service names instead
of ports.  It is now possible to use "listen on * port www" again.

Found by ajacoutot@
OK ajacoutot@ blambert@
Delta File
+13 -1 usr.sbin/httpd/parse.y
+13 -1 1 file

OpenBSD — share/man/man4 ipsec.4

manual SAs described in ipsec.conf(5) not ipsecctl(8);
from paul gorman
Delta File
+3 -3 share/man/man4/ipsec.4
+3 -3 1 file

OpenBSD — lib/libc/compat-43 killpg.3, lib/libc/gen statvfs.3 utime.3

Use .Rv where appropriate, and move it to RETURN VALUES;
remove .Tn, and a few minor macro adjustments.
Patch from Kaspars at Bankovskis dot net.

OpenBSD — share/man/man7 mdoc.7 roff.7, usr.bin/mandoc mandoc.1

Radical cleanup of COMPATIBILITY sections:
Remove lots of lies, dozens of irrelevant implementation details,
and all references to groff versions older than 1.17.  Move relevant
information to the pages where it belongs, and out of mandoc(1) in
particular.  Add some missing general remarks to roff(7), where it
fits the character and purpose of the page much better.

OpenBSD — lib/libc/crypt bcrypt.c

dial the time back to about 0.1s, closer to the original targets and
friendlier for users. requested by deraadt
Delta File
+4 -4 lib/libc/crypt/bcrypt.c
+4 -4 1 file

OpenBSD — regress/usr.sbin/syslogd args-tls-cipher-null.pl Server.pm

Add a test where the TLS handshake fails because of null ciphers.

OpenBSD — usr.bin/ssh auth2-pubkey.c sshconnect.c

update to new API (key_fingerprint => sshkey_fingerprint)
check sshkey_fingerprint return values;
ok markus

OpenBSD — sys/dev/pci if_em.c if_em_hw.h

- Add PCH2 and PCH LPT to the list of chips capable of only 9K jumbos.
- Updated PBA values for the 82574 controller (20KB) and ICH9/10 with
  jumbos (14KB).

Tested by a few on 82574, ICH9 and PCH LPT

From FreeBSD
Delta File
+10 -4 sys/dev/pci/if_em.c
+3 -1 sys/dev/pci/if_em_hw.h
+13 -5 2 files

OpenBSD — sys/net route.c, sys/netinet ip_icmp.c if_ether.c

Revert rtdeletemsg conversion.  It was not ok'd, I misunderstood bluhm@'s

OpenBSD — usr.bin/ssh dispatch.c

avoid fatal() calls in packet code
makes ssh-keyscan more reliable against server failures
ok dtucker@ markus@
Delta File
+15 -3 usr.bin/ssh/dispatch.c
+15 -3 1 file

OpenBSD — usr.sbin/ospf6d lsupdate.c, usr.sbin/ospfd lsupdate.c

When comparing the LSA with the Ack, also check the age field.  This
ensures that a LSA withdrawal is not acked by a previous update.
From Florian Riehm;  OK claudio@

OpenBSD — usr.bin/ssh packet.c opacket.c

avoid fatal() calls in packet code
makes ssh-keyscan more reliable against server failures
ok dtucker@ markus@

OpenBSD — regress/usr.bin/mandoc/eqn Makefile, regress/usr.bin/mandoc/eqn/define invalid.in invalid.out_ascii

Clean up eqn(7) error handling:
* When "define" fails, do not drop the whole equation.
* Free memory after "undef".
* Use standard mandoc error types instead of rolling our own.
* Delete obfuscating EQN_MSG() macro.
* Add function prototypes while here.

OpenBSD — sys/kern vfs_cache.c

revert back to initial vnodes again so we can be sure nfs likes it
Delta File
+2 -2 sys/kern/vfs_cache.c
+2 -2 1 file

OpenBSD — regress/usr.sbin/syslogd args-tls-cafile-default.pl args-tls-cafile-empty.pl

Test the x509 certificate validation of syslog over TLS.

OpenBSD — usr.sbin/syslogd syslogd.c

If not explicitly disabled, syslogd verifies the x509 certificate
and hostname of the TLS server before sending any messages to it.
Per default /etc/ssl/cert.pem is used as CA file.
OK deraadt@
Delta File
+60 -30 usr.sbin/syslogd/syslogd.c
+60 -30 1 file

OpenBSD — regress/usr.bin/mandoc/tbl block_unclosed.in block_unclosed.out_ascii, usr.bin/mandoc tbl.c tbl_data.c

* Polish tbl(7) error reporting.
* Do not print out macro names in tbl(7) data blocks.
* Like with GNU tbl, let empty tables cause a blank line.
* Avoid producing empty tables in -Tman.

OpenBSD — usr.sbin/ldapd ssl_privsep.c

Remove ssl_by_mem_ctrl() and x509_mem_lookup to unbreak the build.  It
caused a conflict with a new function in LibreSSL but wasn't even used
by ldapd.  No functional change.

OK deraadt@
Delta File
+1 -60 usr.sbin/ldapd/ssl_privsep.c
+1 -60 1 file

OpenBSD — regress/usr.bin/mandoc/tbl macro.in macro.out_lint, usr.bin/mandoc tbl.c libroff.h

For now, it can't be helped that mandoc tbl(7) ignores high-level macros,
but stop throwing away their arguments.  This fixes information loss in a
handful of Xenocara manuals, at the price of a small amount of formatting
noise creeping through.

OpenBSD — distrib/sets/lists/base mi

Delta File
+0 -1 distrib/sets/lists/base/mi
+0 -1 1 file

OpenBSD — usr.bin/ssh auth2-hostbased.c

remove obsolete comment
Delta File
+1 -2 usr.bin/ssh/auth2-hostbased.c
+1 -2 1 file

OpenBSD — sys/dev/pci/drm/radeon r600_cs.c r600_reg_safe.h, sys/dev/pci/drm/radeon/reg_srcs r600

drm/radeon: allow geom rings to be setup on r600/r700 (v2)

From Dave Airlie
7c4c62a04a2a80e3feb5d6c97aca1e413b11c790 in mainline linux

OpenBSD — sys/dev/pci/drm/radeon cayman_reg_safe.h evergreen_reg_safe.h, sys/dev/pci/drm/radeon/reg_srcs cayman evergreen

drm/radeon: fix VGT_GS_INSTANCE_CNT register

From Dave Airlie
b7bc799903bbae16795cb15705ddcab80c8f17f1 in mainline linux

OpenBSD — usr.sbin/apm apm.8

jcs found another remnant of cool running mode
Delta File
+4 -3 usr.sbin/apm/apm.8
+4 -3 1 file

OpenBSD — regress/usr.bin/mandoc/tbl layout_center.in layout_center.out_ascii, share/man/man7 tbl.7

implement the tbl(7) "center" layout option

OpenBSD — lib/libssl/src/crypto/asn1 x_algor.c a_verify.c, lib/libssl/src/crypto/dsa dsa_asn1.c

Fix a number of issues relating to algorithms in signatures, Mostly
from OpenSSL with a hint of boring and some things done here. Addresses
CVE-2014-8275 for OpenSSL fully
ok miod@ doug@

OpenBSD — sys/arch/amd64/amd64 pmap.c

Remove an unused macro and a stale comment. No functional change.
Delta File
+1 -5 sys/arch/amd64/amd64/pmap.c
+1 -5 1 file

OpenBSD — regress/usr.bin/mandoc/tbl expand.in expand.out_ascii, usr.bin/mandoc out.c

adjust formatting for the tbl(7) layout 'x' modifier (maximize column)
to match groff for up to six maximized columns

OpenBSD — sys/net bpf.c

when doing a blocking read with a timeout, after the sleep reset
the start time so the next read behaves the same.

from Simon Mages
Delta File
+2 -1 sys/net/bpf.c
+2 -1 1 file