83aa569ca0
allow to escape newline in string literals.
...
(being compatible with solaris /usr/xpg4/bin/awk and GNU awk.)
2005-01-13 12:10:02 +00:00
0e59802be5
Fail closed for NetBSD. If /etc/pam.d and /etc/pam.conf are missing, then
...
return PAM_SYSTEM_ERR. This is done by checking that chains have at least
one member.
2005-01-12 01:38:23 +00:00
c6f2cec0b0
include <isc/net.h> so that -UWANT_IPV6 compiles correctly.
2005-01-10 02:14:46 +00:00
a546e7bfc2
Fix compilation with -UUSE_INET6
2005-01-10 02:08:51 +00:00
edd9734813
Fix debugging compilation.
2005-01-08 07:58:02 +00:00
4ce4e7d229
Fixed ifdef logic
2005-01-04 12:36:02 +00:00
a6336417c1
openpam_dynamic(): If the pathname provided is not an absolute pathname,
...
prepend PAM_SOPREFIX to the name before dlopen()'ing it. On NetBSD, define
PAM_SOPREFIX as "/usr/lib/security/".
2005-01-03 17:21:48 +00:00
36dcc3119d
more size_t casts
2004-12-30 16:22:45 +00:00
92ee66b8a1
Note also src/regress/sys/kern/ipf
2004-12-30 13:12:01 +00:00
32b2d1458b
undo this last change, it did match fil.c - bad me.
2004-12-30 12:07:07 +00:00
34a5ffc74e
Use src/sys/dist/ipf/netinet instead of src/sys/netinet
2004-12-30 10:09:32 +00:00
760d20de7a
the bitmask array in this file should be the same as the one in fil.c if
...
rules with v6hdr options are going to match packets. this sorts the array
by incrementing value of the v6 option.
2004-12-30 08:29:09 +00:00
28b908ca06
add size_t casts to silence up lint where size_t is unsigned long.
2004-12-30 02:25:51 +00:00
bc7b47989b
a bug fix from OPENBSD_3_6.
...
> revision 1.2.2.1
> date: 2004/12/17 02:51:35; author: brad; state: Exp; lines: +2 -2
> MFC:
> Fix by frantzen@
>
> &&/|| inversion would try to merge IP addresses with non-addresses into a
> single table causing a ruleset load error and eventually a double-free.
>
> ok deraadt@ mcbride@ henning@ frantzen@ dhartmei@
2004-12-19 10:27:46 +00:00
f314fbb0f1
Expand out an unused byte to give each NAT rule a protocol version field,
...
allowing rules to be set to match only ipv4/ipv6. And so ipnat must be updated
to actually set this field correctly but to keep things working for old
versions of ipnat (that will set this to 0), make the ioctl handler "update"
the 0 to a 4 to keep things working when people just upgrade kernels. This
forces NAT rule matching to be limited to ipv4 only, here forward, fixing
kern/28662
2004-12-16 17:01:02 +00:00
db6316d151
fix a merge botch. pointed by Pavel Cahyna.
2004-12-16 02:08:29 +00:00
47d5603068
don't build magic and doc in toolbuild => makes build work again
2004-12-14 16:56:56 +00:00
0127e87a6e
regen with AM_MAINTAINER_MODE enabled to get rid of autoconfusion
...
rebuild mania
2004-12-14 16:08:01 +00:00
0e5822b090
seems like AM_MAINTAINER_MODE was disabled for this release;
...
re-enable it to avoid ./configure rebuild hell
2004-12-14 15:56:10 +00:00
8d312437e8
wage holy war on autoconf to attempt to make the toolbuild work
...
After receiving the magic 10-line incantation from Christos for
re-building the autoconf stuff, attempt to do so. This might fix
the problem, or might not. That is why this stuff is so fun.
2004-12-13 23:57:44 +00:00
f5200852b4
python has wriggled itself in here, yank it out to make the toolbuild work.
2004-12-13 10:43:39 +00:00
ebbb05cb75
munge conflicts
2004-12-13 10:35:03 +00:00
16e0e52b61
file 4.12
...
+ assorted bug fixes
+ switch to 2-clause license
2004-12-13 10:24:25 +00:00
c7df97ab82
Another linted comment about empty macro decl.
2004-12-12 19:44:46 +00:00
980de1e92d
s/__function__/__func__/
2004-12-12 08:29:56 +00:00
80184d2e85
Add a linted comment for an unused variable
2004-12-12 08:16:41 +00:00
a97ddb0609
s/__FUNCTION__/__function__/
2004-12-12 08:06:42 +00:00
a2078b09d1
- link set NetBSD changes from thorpej
...
- lint silencing comments
2004-12-12 06:19:35 +00:00
78a16257c7
Lint silencing comments
2004-12-12 06:18:52 +00:00
3c33f5d161
- unsigned char casts for ctype macros.
...
- lint silencing comments.
2004-12-12 06:18:17 +00:00
d316c2d956
Don't look in /usr/local for pam configuration files. NetBSD does not
...
have them. XXX: maybe look in /usr/pkgsrc?
Unsigned char casts for ctype macros.
2004-12-12 06:17:31 +00:00
e9803b264c
prevent double-free by setting variable to NULL after it has been freed.
...
Avoids problem when shared library is not found during configuration.
2004-12-12 06:15:58 +00:00
fe57a1b812
NetBSD specific link set changes.
2004-12-12 06:14:58 +00:00
3c39f8e35c
- add LINTED comments.
...
- prevent alarm of negative numbers.
- size_t lint casts
- avoid shadowing of variables.
2004-12-12 06:14:06 +00:00
dead717d6a
size_t cast for lint
2004-12-12 06:12:26 +00:00
b73b054f62
import openpam "eelgrass" released on 20040210
2004-12-12 06:07:19 +00:00
d1f40c5512
Make bpf use the cloning device
2004-12-01 23:51:36 +00:00
f63af1b624
Use the cloning device if that is available
2004-12-01 23:49:27 +00:00
9ab78e153b
use /dev/bpf
2004-12-01 23:45:12 +00:00
e9e8578a0e
fix configure too.
2004-12-01 23:26:13 +00:00
4d31f227c2
only mention /dev/bpf
2004-12-01 23:24:38 +00:00
aad48c44a7
One bpf is enough.
2004-12-01 23:23:39 +00:00
be07a6cfdb
One bpf is enough
2004-12-01 23:22:42 +00:00
496146dda9
Work around the fact opaque_t gets defined by sys/properties.h and could be
...
pulled in via MD includes from sys/param.h.
2004-11-28 11:15:26 +00:00
b81f308085
Fix typo in formatting.
2004-11-27 23:23:26 +00:00
ccc24aa67e
fix merge botches.
2004-11-27 01:39:50 +00:00
763bdaa346
Resolve conflicts.
2004-11-27 01:24:35 +00:00
f8d5cae651
from 20040916 from ftp.am-utils.org
2004-11-27 01:00:29 +00:00
f7da5a456d
Apply a patch from the OPENBSD_3_6 branch, ok itojun.
...
MFC:
Fix by dhartmei@
do not assume entries in pf_timeouts[] are ordererd like PFTM_* in pfvar.h
reported by Alexey E. Suslikov
2004-11-21 18:01:14 +00:00
f3736130c9
Fix a regression from 3.4 behaviour where the destination of a redirect rule
...
could be either a hostname or an IP address (now it can only be an IP#)
2004-11-21 03:44:59 +00:00
yamt