Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
163,278 Commits 606 Branches 0 Tags 3.1 GiB
2ef45bfade
Commit Graph

1421 Commits

Author SHA1 Message Date
drochner
427fb19923 Back out local NetBSD changes (removal of _U_ which expands to 
attribute(unused)), to reduce diffs to upstream.
While that is ugly, we have the _U_ left in at other places.
 2007-07-28 16:02:17 +00:00
drochner
68aa07a617 Back out local NetBSD change (addition of #include files), to reduce 
diffs to upstream.
Compiles fine without for me, and there is no CVS commit message
telling why it should be necessary.
 2007-07-28 15:59:39 +00:00
plunky
55e2ff23b1 fix build for the "USE_INET6=no" case, the two variables 'nxt' and 'len32' 
are only used in the inet6 code.
 2007-07-26 18:15:12 +00:00
dogcow
1ad9ad78c6 fix compilation on 64-bit platforms by avoiding spurious EXTRACT_32BITS 2007-07-25 06:31:32 +00:00
christos
5b94024b59 Import bind 9.4.1-P1 
2206.   [security]      "allow-query-cache" and "allow-recursion" now
                        cross inherit from each other.

                        If allow-query-cache is not set in named.conf then
                        allow-recursion is used if set, otherwise allow-query
                        is used if set, otherwise the default (localnets;
                        localhost;) is used.

                        If allow-recursion is not set in named.conf then
                        allow-query-cache is used if set, otherwise allow-query
                        is used if set, otherwise the default (localnets;
                        localhost;) is used.

                        [RT #16987]

2203.   [security]      Query id generation was cryptographically weak.
                        [RT # 16915]

2202.   [security]      The default acls for allow-query-cache and
                        allow-recursion were not being applied. [RT #16960]

2193.   [port]          win32: BINDInstall.exe is now linked statically.
                        [RT #16906]

2192.   [port]          win32: use vcredist_x86.exe to install Visual
                        Studio's redistributable dlls if building with
                        Visual Stdio 2005 or later.
 2007-07-24 23:52:54 +00:00
christos
92b1ea3abe Import bind 9.4.1-P1 2007-07-24 23:32:11 +00:00
drochner
2e9d41b4db merge in NetBSD changes 2007-07-24 12:41:07 +00:00
drochner
7ef8b6e9b2 avoid a pointer signedness warning 2007-07-24 11:55:13 +00:00
drochner
d8f5b90097 merged tcpdump-3.9.7 2007-07-24 11:53:36 +00:00
drochner
57e6a30fe7 import tcpdump-3.9.7 (after running the tcpdump2netbsd script and 
defusing NetBSD id strings used as reference)
 2007-07-24 11:42:50 +00:00
rumble
23622f237e Ensure that the special host token '*SMBSERVER' is not automatically 
hyphenated, as this can lead to some confusion (e.g.: '*SMB-SERVER' isn't
valid).

(Thanks Wiz!)
 2007-07-21 22:41:09 +00:00
drochner
adf4078381 Fix a possible integer overflow in buffer length calculation due to 
insufficient check of snprintf()'s return value, see gentoo bug #184815.
The exploit provided appearently doesn't trigger the overflow in
NetBSD; this might be due to different error return behavior of snprintf
implementations, or due to the fact that out tcpdump is still 3.8.3
while the bug was reported against 3.9.x. The fix looks correct in any
case.
The exploit caused an endless loop at another place instead, due
to an obvious bug, so fix this too.
Also apply another patch which was applied to the 3.8 branch upstream
but never released: rev. 1.72.2.5, infinite loop protection for ldp and bgp

We should update tcpdump to 3.9.x.
 2007-07-20 17:12:37 +00:00
christos
8f80c199b2 remove uucp references; from Anon-Ymous 2007-07-18 18:36:57 +00:00
joerg
700b744d72 Remove files accidently commited in first import of pkg_install 2007-07-18 14:27:12 +00:00
joerg
764d59fb69 Import fix for the download-vulnerability-list script forgotten 
in the original merge and remove a created file accidently added.
 2007-07-18 14:23:32 +00:00
joerg
d243200850 Import of pkg_install-20070715 from pkgsrc. 
This is part one of moving the authoritive version from
src/usr.sbin/pkg_install to pkgsrc/pkgtools/pkg_install/files.

Discussed with and agreed by: jlam@, agc@, adrianp@
Raised issue to and not objected by: core@
 2007-07-16 13:01:43 +00:00
dsl
71edd4968d Add new 'data_len' parameter to mount(). 2007-07-14 16:03:05 +00:00
kardel
d370a3332c sync with release 2007-07-06 21:20:25 +00:00
kardel
d7d9fc60cc sync with release / removes debug NULL deref 2007-07-06 21:19:33 +00:00
kardel
db56afd343 compile fix for amd64 2007-06-24 19:39:06 +00:00
kardel
9238104d09 resolve merge conflicts of 4.2.4p2 import 2007-06-24 16:55:11 +00:00
kardel
d3063e9f3c Import ntp 4.2.4p2 2007-06-24 15:47:02 +00:00
agc
ad9b63f6fb Move my own code from a 4 clause to a 3 clause licence. 2007-06-16 23:13:25 +00:00
martin
c77a3f5aad Upgraded IPFilter to v4.1.23 2007-06-16 10:52:24 +00:00
martin
03f2531d69 Import IPFilter 4.1.23 2007-06-16 10:33:08 +00:00
agc
bcf774971d Re-generate autoconf parts. 
No change to NetBSD distribution, since it is made using reachover Makefiles.
 2007-06-16 10:02:23 +00:00
agc
e6bf177ae1 Apply the fix from PR 36354, from yamt. 
yamt's reading of RFC 3720 is correct (see section 12.10, InitialR2T).

The desired transfer length in the initial ready to transmit
negotiation should not include any immediate data.
 2007-06-15 19:57:30 +00:00
pooka
86146f9e2e put LP64 SIZE_T_MAX on a diet: 17 f's is too much, trim it down to 16 2007-06-14 19:26:17 +00:00
pooka
549f6b16d1 Make this match the distributing by removing some extra goo that was 
added a few years back when battling AM_MAINTAINER_MODE and has been
lugged around ever since.

from adrianp
 2007-06-14 19:10:54 +00:00
christos
6f5be32dbf print millis too. 2007-06-09 19:52:36 +00:00
christos
419556ce9d Instead of printing the priority, print the time before each message which 
is more useful.
 2007-06-09 17:10:59 +00:00
pooka
9afe6367b3 crunch cornflakes 2007-06-07 11:32:44 +00:00
pooka
40ad27db84 file 4.21. bugfixes 2007-06-07 11:24:27 +00:00
martti
fff7fd04df s/iplattach/ipfattach/ and s/ipldetach/ipfdetach/ 2007-06-04 12:38:58 +00:00
christos
f84135414c don't make bogus assumptions about struct alignment. 2007-05-31 02:58:10 +00:00
tls
67fcd29261 Do not include internal header files from libpcap without setting the 
feature-test macros they use.  Really, of course, this code should not
include such header files at all.
 2007-05-28 11:55:19 +00:00
cube
62e0f430f0 p needs to be const. [hi christos!] 2007-05-28 00:39:00 +00:00
tls
ac016a7fc2 Changes required for FORTIFY_SOURCE: don't rely on #define read (etc.) 
before system header file inclusion magically causing what "read" is
#defined to to pick up a read-like prototype.  For sanity's sake, put
prototypes for revolting trace_mr stuff in their own header file (instead
of nowhere at all and using the trick referenced above).
 2007-05-27 16:27:57 +00:00
martti
657382d62b Added missing .TP 2007-05-23 05:18:45 +00:00
christos
67f0e23f0f coverity CID 4418: Don't call strlen() with NULL. 2007-05-16 20:53:49 +00:00
martin
6718c86598 Merge IP-Filter 4.1.22 2007-05-15 22:52:20 +00:00
martin
29fd0d9db1 Import IPFilter 4.1.22 2007-05-15 22:26:02 +00:00
dyoung
e096ddfc8a Document state policy flags for 'nat' and 'rdr' rules. 2007-05-10 23:03:22 +00:00
dyoung
f7748bc6aa pfctl: extend pf.conf(5) syntax. Let the operator supply an optional 
"state lock" flag (if-bound, gr-bound, floating) at the end of a
NAT rule.  The new syntax is backwards-compatbile with the old
syntax.

PF (kernel): change the macro BOUND_IFACE() to the inline function
bound_iface(), and add a new argument, the applicable NAT rule.
Use both the flags on the applicable filter rule and on the applicable
NAT rule to decide whether or not to bind a state to the interface
or the group where it is created.
 2007-05-10 22:30:54 +00:00
christos
2d0d2fc81d merge conflicts 2007-05-01 22:15:12 +00:00
christos
5f9b8877e1 Import bind 9.4.1 2007-05-01 21:51:06 +00:00
martti
872147fef7 Upgraded IPFilter to 4.1.20 2007-05-01 19:08:03 +00:00
martti
68eb121d73 Import IPFilter 4.1.20 2007-05-01 19:00:58 +00:00
dsl
8767590c76 On amd64 U_QUAD_T is (probably) 'unsigned long', but "%qd" expects to see 
a "long long" - giving a compilation warning.
Check for the presence of PRIu64 and use that in preference.
Adjust code to avoid multiple printf() calls.
Use unsigned format specifiers in all cases.
 2007-04-21 11:16:53 +00:00
dogcow
65febf04fc fix build on arches with chars that're by default unsigned. 
(patch supplied by martin.)
 2007-04-16 02:36:24 +00:00
martin
8ebafcc992 Update IPFilter to version 4.1.19 2007-04-14 20:34:18 +00:00
martin
993d757ec6 Import IPFilter 4.1.19 2007-04-14 20:17:19 +00:00
christos
99a3390caf Coverity CID/4421: Add extra check for NULL before deref. 2007-04-04 21:40:48 +00:00
ghen
94364b1084 Resolve conflicts. 2007-03-30 19:40:47 +00:00
ghen
cc483ecacb Import bind-9.4.0. 2007-03-30 19:15:20 +00:00
christos
a5346961e8 use memcpy instead of strlcpy because we want to truncate the string. 2007-03-27 01:29:44 +00:00
joerg
cc1b813618 Don't segfault during decoding of unlimited strings in PPPoE. 2007-03-24 23:20:12 +00:00
dogcow
f790a123d5 unbork openssl import borkage. 2007-03-07 03:18:53 +00:00
pooka
000760c6d5 make print format specifiers match types printed 2007-03-04 21:50:43 +00:00
jnemeth
9f5aa7f07f fallout from caddr_t -> void * change 2007-03-04 20:04:14 +00:00
pooka
7a41045ba4 squelch gcc warnings 2007-03-04 15:25:10 +00:00
pooka
17dbe768ca apply conflict therapy for 4.20 import 2007-03-04 15:22:07 +00:00
pooka
67e9db49c9 file 4.20, contains fixes to the magic parser, new syntax and a 
buffer overflow fix
 2007-03-04 14:54:42 +00:00
dogcow
53d226486b An incredibly grody hack to save a few more precious bytes: in dhclient, 
don't include the unknown-{nn,mm} strings ifdef SMALL.
 2007-03-01 01:02:33 +00:00
matt
75a9720952 #include <machine/lock.h> before _KERNEL is defined to bypass 
lossage when including it when _KERNEL is defined in userland.
 2007-02-20 15:40:08 +00:00
dyoung
2d212326ef Use the new ifnet->if_output signature, the one with a const 
argument, when __NetBSD__Version >= 499001100.
 2007-02-18 04:01:27 +00:00
dogcow
51701d90f7 constify struct sockaddr for no_output and write_output, due to if.h 1.122 2007-02-18 03:22:03 +00:00
christos
f987814949 include <types.h> 2007-01-30 18:12:48 +00:00
christos
03f10a71aa provide non-atomic versions so that things compile for now. 2007-01-30 00:46:52 +00:00
christos
fd07b4b277 handle resolv_mt.h 2007-01-27 23:02:37 +00:00
christos
d7aeceb511 deal with base64.c 2007-01-27 22:28:22 +00:00
christos
4455b59ff4 Use __inline consistently so that we avoid unused warnings. 2007-01-27 21:30:22 +00:00
christos
4674124bb1 resolve conflicts 2007-01-27 21:24:09 +00:00
christos
c1a4ad93e3 Import bind-9.4.0-rc2 from ftp.isc.org 2007-01-27 21:02:43 +00:00
kardel
24e8b498bd track NTP bug 768: opening of bcast if, misleading error message 2007-01-27 09:02:38 +00:00
kardel
8acf6049c0 Use the portable version to declare the type of the length argument 
for the recv*() functions. Fix queued with the NTP project.
 2007-01-21 07:59:31 +00:00
kardel
54a07e0f01 PR/25482 
reinstate NTP html pages (sans gif's/img tags).
The important man pages are now generated by autogen and
thus match again the code again.
 2007-01-20 16:50:29 +00:00
kardel
9e57eb45fe track ntp bug #760 - support DYNAMIC flags in async resolver 2007-01-13 11:41:05 +00:00
agc
b734ab10f3 Use the proper tracing functionality 2007-01-11 22:59:53 +00:00
agc
766d3d66b8 Get rid of some magic constants. 2007-01-11 19:57:23 +00:00
agc
977a3071b2 Explain what's happening when a target is not exporting any iSCSI 
targets to the initiator rather than a cryptic message about a portal
group tag not being present.
 2007-01-11 19:14:32 +00:00
agc
9f740696e2 Pass the target hostname to the iscsi_sock_connect() call, so that it's 
available for getaddrinfo.

Use the correct IQN name for the NetBSD iSCSI initiator.
 2007-01-11 18:56:57 +00:00
agc
0b68869633 Use getaddrinfo(3) to get the required information about the host. Use this 
explicitly in iscsi_socket_connect(), and ignore the port argument to this
function for just now.
 2007-01-11 18:54:58 +00:00
agc
524517b593 Make the code a bit smarter, and dynamically allocate the buffers that are 
used to cache the data for the read and write operations. This will reduce the
resident set size down from 80+ MB to something much more manageable.
 2007-01-10 22:40:31 +00:00
agc
f980d4284c Move away from magic constants for the SCSI return codes. 
Give the appropriate size bound when filling in data for the extended
INQUIRY command.
 2007-01-10 18:04:31 +00:00
agc
b0ab3a15b9 Return the correct length of the T10 identifier and uuid in the VPD page 83 
response.

Found by the embryonic NetBSD initiator.
 2007-01-09 19:08:08 +00:00
agc
e1d88c5d14 read the values of max_lba and blocklen, and byte swap them if necessary, 
before printing out their values.
 2007-01-08 22:05:47 +00:00
agc
c0040e78f5 various enhancements to make this compile with WARNS=4 2007-01-08 21:46:00 +00:00
agc
eaf1b66230 Export the function to split a config file entry up into parts, 
conffile_split(), and make it work in the presence of a NULL conffile
descriptor (i.e. from stdin).
 2007-01-08 21:44:47 +00:00
kardel
dbbbd5d806 import NTP 4.2.4 2007-01-06 19:45:21 +00:00
kardel
d1d4526d02 Import ntp 4.2.4 2007-01-06 16:04:26 +00:00
alc
980fc49cd5 CID-3325: don't leak `fd' 
Also, check for the return value of malloc(3)

ok christos@
 2006-12-27 18:13:53 +00:00
alc
b68a85a32f CID-4282: dies if we can't allocate memory for `peer->hba' 
CID-2488: `t' is uninitialized
 2006-12-26 00:08:44 +00:00
alc
0fd99769e3 CID-3224: check the return value of strtok() before use 
ok christos@
 2006-12-25 23:55:47 +00:00
reed
93b5694767 Remove () from end of the BIND 9 ARM as it is not a man page. 
(I am not committing the fix to dist/bind/bin/named/named.conf.docbook
as we don't use that docbook file.)
 2006-12-14 02:17:14 +00:00
christos
7b1864c5ec fix byte-swapping code. 2006-12-11 22:05:38 +00:00
agc
a43651f235 Modify netmask calculation so that /0 is fast-tracked, and so that network 
addresses with bit 31 set are processed properly.

Fix from Hiroshi Nakamoto in PR 34578.

	[22:09:17] agc@inspiron1300 ...dist/iscsi/src 26 > ./n 10.4/16 10.4.0.29 10.4/16 10.5.0.29 10.4/0 10.4.0.19 10.4 10.4.0.19 10.4.3/8 10.4.3.7 10.4.3/24 10.4.3.7
	addr 10.4.0.29 00000a04, mask 10.4.0.0 00000a04, slash 16
	mask 10.4/16 matches addr 10.4.0.29

	addr 10.5.0.29 00000a05, mask 10.4.0.0 00000a04, slash 16
	No match for mask 10.4/16 from addr 10.5.0.29

	mask 10.4/0 matches addr 10.4.0.19

	addr 10.4.0.19 0a040013, mask 10.4.0.0 0a040000, slash 32
	No match for mask 10.4 from addr 10.4.0.19

	addr 10.4.3.7 0000000a, mask 10.4.3.0 0000000a, slash 8
	mask 10.4.3/8 matches addr 10.4.3.7

	addr 10.4.3.7 000a0403, mask 10.4.3.0 000a0403, slash 24
	mask 10.4.3/24 matches addr 10.4.3.7

	[22:09:20] agc@inspiron1300 ...dist/iscsi/src 27 > ./n any 192.168.0.1
	mask any matches addr 192.168.0.1
 2006-11-27 22:24:27 +00:00
christos
c0179c282a spell precede; from Zafer 2006-11-25 16:48:31 +00:00
martin
be008341cd Hopping through a void* is not enough to get rid of alignment requirements. 
Do a memcpy to a properly aligned local variable instead.
 2006-11-23 13:07:17 +00:00
christos
83293ad752 back to casting to long since we think that the openssl version dropping the 
'L' suffix was an accident.
 2006-11-14 21:54:24 +00:00