Commit Graph

1275 Commits

Author SHA1 Message Date
agc
a43651f235 Modify netmask calculation so that /0 is fast-tracked, and so that network
addresses with bit 31 set are processed properly.

Fix from Hiroshi Nakamoto in PR 34578.

	[22:09:17] agc@inspiron1300 ...dist/iscsi/src 26 > ./n 10.4/16 10.4.0.29 10.4/16 10.5.0.29 10.4/0 10.4.0.19 10.4 10.4.0.19 10.4.3/8 10.4.3.7 10.4.3/24 10.4.3.7
	addr 10.4.0.29 00000a04, mask 10.4.0.0 00000a04, slash 16
	mask 10.4/16 matches addr 10.4.0.29

	addr 10.5.0.29 00000a05, mask 10.4.0.0 00000a04, slash 16
	No match for mask 10.4/16 from addr 10.5.0.29

	mask 10.4/0 matches addr 10.4.0.19

	addr 10.4.0.19 0a040013, mask 10.4.0.0 0a040000, slash 32
	No match for mask 10.4 from addr 10.4.0.19

	addr 10.4.3.7 0000000a, mask 10.4.3.0 0000000a, slash 8
	mask 10.4.3/8 matches addr 10.4.3.7

	addr 10.4.3.7 000a0403, mask 10.4.3.0 000a0403, slash 24
	mask 10.4.3/24 matches addr 10.4.3.7

	[22:09:20] agc@inspiron1300 ...dist/iscsi/src 27 > ./n any 192.168.0.1
	mask any matches addr 192.168.0.1
2006-11-27 22:24:27 +00:00
christos
c0179c282a spell precede; from Zafer 2006-11-25 16:48:31 +00:00
martin
be008341cd Hopping through a void* is not enough to get rid of alignment requirements.
Do a memcpy to a properly aligned local variable instead.
2006-11-23 13:07:17 +00:00
christos
83293ad752 back to casting to long since we think that the openssl version dropping the
'L' suffix was an accident.
2006-11-14 21:54:24 +00:00
christos
65811b35f5 openssl changed its version number from long to int; compensate. 2006-11-14 19:23:47 +00:00
martin
9013d7c51c Remove a strange #if that broke libmagic for most 64 bit archs.
OK'd by christos.
2006-11-14 14:12:24 +00:00
dogcow
499ac5cbee Looks like OpenSSL now uses an int instead of a long for its version
number (!?), so explicitly cast to long in case they change it back.
2006-11-14 02:41:40 +00:00
christos
5b239d0be1 PR/35039: jklowden: Fix example to include -i or -p for ipf or pf. 2006-11-12 06:24:08 +00:00
apb
a45cd5c0e1 In the description of the -y option, add a pointer to the -L option. 2006-11-11 10:36:56 +00:00
christos
c9f5e8dae9 don't use a variable array on the stack for a stupid reason. 2006-11-09 20:12:29 +00:00
kardel
9a3db19511 track NTP bug 734: setsockopt(..., IP_MULTICAST_IF, ...) fails on 64 bit platforms 2006-11-06 12:19:30 +00:00
martin
956703a5a2 Patch from Christos Zoulas:
rework syslog handling to fix PR 33926.
2006-11-05 09:16:20 +00:00
pooka
1231a9a93e renamed to bflt in upstream
keen-eyed source-changes reader was Jed Davis
2006-11-03 10:10:39 +00:00
dogcow
3429d8a242 Sprinkle llx -> PRIx64 around; fixes compilation on 64 bit platforms. 2006-11-01 00:33:40 +00:00
pooka
91e9593f57 file 4.18 last-minute conflix 2006-10-31 21:50:54 +00:00
pooka
26e338dcb4 readd winzip 2006-10-31 21:47:24 +00:00
pooka
2a4995fe7b this is file 4.18 already, bump patchlevel 2006-10-31 21:39:08 +00:00
pooka
74d6dfb485 errno is in 2 2006-10-31 21:17:15 +00:00
pooka
910040d09f welcome to file 4.18. have a nice day. 2006-10-31 21:16:23 +00:00
pooka
0968f96e37 file 4.18
changes since 4.16: bugfixes, magic improvements, other minor improvements
2006-10-31 20:34:42 +00:00
christos
336eaa9131 comment out impossible code. 2006-10-24 20:45:33 +00:00
christos
2933708c6a remove 3d magic. 2006-10-20 15:54:45 +00:00
wiz
d72654d9e5 Fix spacing issue, reported by anonymous. 2006-10-19 20:28:45 +00:00
christos
5b106e45c5 kill empty else. 2006-10-16 03:38:08 +00:00
christos
7631e65b9f fix an incomplete initializer. 2006-10-15 19:52:40 +00:00
christos
cdb23ba9fb add a volatile variable to prevent vfork/longjmp clobbering. 2006-10-15 19:27:21 +00:00
peter
dd191f37f3 Merge the peter-altq branch.
(sync with KAME & add support for using ALTQ with pf(4)).
2006-10-12 19:59:07 +00:00
rpaulo
1921cb5602 PR 30870: Add user ``_proxy'' and make pf's ftp-proxy use it.
Initial patch by rivo nurges, thanks!
2006-10-07 15:10:17 +00:00
tron
66ac2330dc Teach dhclient(8) to exit gracefully if another instance is already
running instead of overwriten the PID file, removing IPv4 address
from the network interface(s) and leaving the system in a broken state.

This fixes PR bin/26504 by Jun-ichiro itojun Hagino. Patch supplied
by Rivo Nurges during NetBSD's second Bugathon.
2006-10-07 14:14:06 +00:00
christos
40a354528b Coverity CID 3692: Prevent use after free (from Arnaud Lacombe) 2006-10-03 19:06:05 +00:00
christos
1bb7c537ad Coverity CID 3013: Don't check for NULL after deref! (from Arnaud Lacombe) 2006-10-03 18:18:18 +00:00
christos
a5239739d0 PR/34656: Geoff C. Wing: pppd has stuffed up wtmpx code 2006-09-29 15:44:46 +00:00
christos
5e4126c34c Coverity CID 3498: Don't return after yyerror(); cleanup first. 2006-09-27 15:35:12 +00:00
christos
e9506eb74b PR/34284: Gene ENonymous: Fix the userland copy of ip_lookup.c. Why do we
have 2 copies?
2006-09-17 14:49:46 +00:00
wiz
e89f828c3b From jmc@openbsd:
revision 1.352
date: 2006/08/02 11:45:56;  author: dhartmei;  state: Exp;  lines: +2 -2
in the BNF section, note that a comma is optional, closes PR 5191
2006-09-17 13:53:33 +00:00
adrianp
ee74a1421a Fixes for CVE-2006-4095 and CVE-2006-4096 from bind-9.3.2-P1
* Assertion failure in ISC BIND SIG query processing (CVE-2006-4095)

- Recursive servers
Queries for SIG records will trigger an assertion failure if more
than one RRset is returned. However exposure can be minimized by
restricting which sources can ask for recursion.

- Authoritative servers
If a nameserver is serving a RFC 2535 DNSSEC zone and is queried
for the SIG records where there are multiple RRsets, then the
named program will trigger an assertion failure when it tries
to construct the response.

* INSIST failure in ISC BIND recursive query handling code (CVE-2006-4096)

It is possible to trigger an INSIST failure by sending enough
recursive queries such that the response to the query arrives after
all the clients waiting for the response have left the recursion
queue. However exposure can be minimized by restricting which sources
can ask for recursion.

ok'ed christos@
2006-09-05 19:31:47 +00:00
seb
4a00cfc811 Typo. 2006-08-28 21:21:52 +00:00
christos
18b025cbc8 PR/34286: Gene ENonymous: Increase YYSTACKSIZE so that we can handle huge
pools.
2006-08-26 23:20:56 +00:00
jnemeth
50fe2341d5 force all assertions on when __COVERITY__ is set 2006-08-23 04:10:51 +00:00
thorpej
5da5f197c5 Use "unsigned int" rather than "u_int" to be consistent with the rest
of file(1).
2006-08-20 19:49:31 +00:00
christos
95ee253760 Print rejected rpc packet reason. 2006-08-11 19:01:18 +00:00
peter
a916e7d758 Document the "tos" keyword. Spotted by maxim bourmistrov, patch supplied by
jared r r spiegel and forwarded by Thomas Klausner via Jason McIntyre.
2006-08-10 12:30:49 +00:00
pavel
5145dd52fa Belatedly Bump date after my not-so-recent changes. 2006-08-07 20:57:56 +00:00
dyoung
cc94fcb6e9 Correct units on IEEE80211_RADIOTAP_DBM_ANTSIGNAL,
IEEE80211_RADIOTAP_DBM_ANTNOISE.
2006-08-06 17:52:17 +00:00
agc
9410ca204b mark VPD 0x80 (Unit Serial Number VPD Page) as being done 2006-08-03 20:50:45 +00:00
agc
72a3c3e7b9 Add support for Vital Product Data 0x80, Unit Serial Number, reported to be
used by the beta FreeBSD initiator by Paul Dekkers.
2006-08-03 20:49:11 +00:00
agc
66644e0749 + add support for IPv6 in the target (CIDR scoping has still to be
implemented for IPv6, but works fine for IPv4)

+ now poll any connections opened in the target.  select is used if
poll is not available

+ remove ramdisk type of backing store, since it was never used, and
is of no use for our needs

+ bump version to 20060727
2006-08-03 20:21:59 +00:00
christos
a6fd778155 don't zerodivide when "backoff-cutoff 0;" tested by zafer 2006-08-03 20:17:43 +00:00
kardel
a1291ab337 cope with struct timeval tv_sec being defined as long instead
of the SUS mandated time_t.
2006-07-29 19:22:25 +00:00
kardel
55fde488db using the correct type makes it compile on alpha too - found by Kurt Schreiner 2006-07-29 14:56:57 +00:00