wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

	Commit message (Collapse)	Author	Files	Lines
2019-03-22	back out 1.28	dlg	1	-4/+5
	i misread the doco, having promisc vlan reception is what we want.
2019-03-22	use a cond in ixl_atq_exec to wait for a command to be completed.	dlg	1	-22/+7
	the main change is to not run ixl_atq_done, cos the interrupt handler is supposed to do that for us.
2019-03-22	don't blindly complete admin queue entries	dlg	1	-1/+3
	there's a bit in the flags field that the firmware sets when the command is done, so check to decide if the command is ready to be completed. this in turn makes ixl_iff work. "oh" jmatthew@
2019-03-21	Test that "calendar -A 0" on a Friday doesn't include weekend events.	millert	2	-2/+7
	From Andy Bradford
2019-03-21	Fix typo in usage and comment.	bluhm	3	-6/+6

2019-03-21	Reference permissions in the canonical plural.	rob	1	-3/+3
	ok jmc@
2019-03-21	Remove struct intrhand. It is no longer used on octeon.	visa	1	-21/+1

2019-03-21	Remove an unused header.	visa	1	-60/+0

2019-03-21	sync	deraadt	1	-0/+3

2019-03-21	Start in the daemon configured routing table and not in the one we're currently	ajacoutot	1	-2/+2
	in. This fixes the case where one would be in a non default rdomain shell then run an rdomain 0 rc.d daemon. reported by YASUOKA Masahiko and Pierre Emeriaud ok sthen@ claudio@ benno@
2019-03-21	import EVP_camellia_128_cbc(3) from OpenSSL 1.1.1,	schwarze	4	-3/+156
	still under a free license, tweaked by me
2019-03-21	space before punct;	jmc	1	-3/+3

2019-03-21	Split EVP_rc4(3) out of EVP_EncryptInit(3) to reduce clutter.	schwarze	4	-21/+116
	The algorithm is insecure and yet its description would spread over three paragraphs in the cipher list, including remarkable advice like using a 40 bit key length.
2019-03-21	Split EVP_des_cbc(3) out of EVP_EncryptInit(3) to reduce clutter:	schwarze	4	-55/+230
	this moves a large number of functions out of the way that are no longer the latest and greatest. Also mention a few that were missing.
2019-03-21	don't set VLAN things when configuring promisc	dlg	1	-5/+3
	the doco says vlan things should only be set if you're manipulating something on a specific vlan, otherwise the config applies to everything, which is how the stack wants things to work at the moment. there's still something wrong in here, but let's get this out of the way first.
2019-03-21	Do not run keyboard and mouse device detection during make clean,	bluhm	1	-1/+3
	cleandir, obj. Eliminates a X11 keyboard problem seen by claudio@ during make build. OK anton@ deraadt@
2019-03-21	run event callbacks directly in the atq processing	dlg	1	-10/+3
	previously events were queued on an SLIST, but multiple link state events could fire with the same callback. this corrupted the SLIST and effectively caused an infinite loop. ok jmatthew@
2019-03-21	add a handful of missing functions	schwarze	1	-5/+38
	that are also documented in OpenSSL 1.1.1 (still under a free license)
2019-03-21	Fix IPv6 address parsing and skipping of comment lines followed by blank	otto	1	-2/+5
	lines; Found while investigating a diff from Michal Koc; ok kn@
2019-03-21	punctuation needs to be preceeded by a space, in Scots;	jmc	1	-2/+2

2019-03-21	Bring back EVP_chacha20 list item that was accidentally removed	tb	1	-2/+3
	in r1.28 when the AES ciphers were split into their own manual.
2019-03-21	Clarify verbiage. If we could just write it in Scots then	krw	1	-4/+4
	it would be so much easier.
2019-03-21	Simplify merge_option_data() with strpbrk().	krw	1	-3/+3
	Zap insidious trailing space.
2019-03-20	Document additions to the lang/python module that support pytest.	remi	1	-3/+24
	from Kurt Mosiejczuk ok kn@
2019-03-20	Do not accept dhclient.conf(5) "prepend" or "append" statements when	krw	5	-62/+90
	the option data cannot be prepended or appended to. Instead, treat "prepend" as "supersede" and "append" as "default". This preserves the safe aspects of current behaviour. Issue a parsing warning when appropriate to encourage people to fix their configuration files. Eliminate egregious repeated code by abstracting merge_option_data().
2019-03-20	States in pf(4) let ICMP and ICMP6 packets pass if they have a	bluhm	1	-4/+24
	packet in their payload that matches an exiting connection. It was not checked whether the outer ICMP packet has the same destination IP as the source IP of the inner protocol packet. Enforce that these addresses match, to prevent ICMP packets that do not make sense. Issue found by Nicolas Collignon, Corentin Bayet, Eloi Vanderbeken, Luca Moro at Synacktiv.com OK sashan@
2019-03-20	Improve cursor positioning after reflow by storing the position as an	nicm	3	-73/+80
	offset into the entire history before reflow and restoring it aftewards.
2019-03-20	fix examples (libtls uses its own error reporting mechanism)	espie	1	-4/+4
	okay tb@
2019-03-20	regen	jsg	2	-4/+49

2019-03-20	add more intel graphics pci ids with known marketing names	jsg	1	-2/+11

2019-03-20	Include function name in logging.	nicm	1	-5/+7

2019-03-20	Do not leak ranges on error.	nicm	1	-2/+5

2019-03-20	Ignore invalid styles rather than throwing away the whole format, this	nicm	1	-2/+3
	matches what we used to do.
2019-03-20	Bit more logging to show drawing errors.	nicm	1	-2/+6

2019-03-20	remove bogus escaping of < and >	schwarze	1	-4/+4

2019-03-20	remove incorrect escaping of '+', correctly escape '-', and garbage collect .Tn	schwarze	1	-9/+6

2019-03-20	fix serious markup error: \B -> \fB to select bold font	schwarze	1	-1/+1

2019-03-20	escape backslashes;	schwarze	2	-11/+11
	patch from Peter Piwowarski <peterjpiwowarski at gmail dot com>
2019-03-20	regen	jsg	2	-23/+408

2019-03-20	add radeondrm pci ids missing from pcidevs but present in drm_pciids.h	jsg	1	-12/+89

2019-03-19	Parsing error messages display only the first 80 characters of the	krw	1	-2/+2
	offending line. It is fruitless to try to position the "^" at a character more than 80 characters from the start of the line.
2019-03-19	delay dropping privs a bit when root so that setrtable works.	tedu	2	-6/+17
	traceroute bits from benno. ok benno claudio
2019-03-19	Remove old X proto documentation directories.	matthieu	1	-39/+1

2019-03-19	Include window-status-style and window-status-current style in the format.	nicm	1	-13/+31

2019-03-19	correct LOCATION_REPORTED mask	anton	1	-2/+2

2019-03-19	Document the flag EVP_CIPHER_CTX_FLAG_WRAP_ALLOW needed for the EVP	schwarze	2	-4/+71
	AES wrap modes, the function EVP_CIPHER_CTX_set_flags(3) needed to set it, and the companion functions EVP_CIPHER_CTX_clear_flags(3) and EVP_CIPHER_CTX_test_flags(3). With help and an OK from tb@.
2019-03-19	Add a cursor_character format.	nicm	2	-2/+20

2019-03-19	Avoid an internal 2 byte overread in ssl_sigalgs().	jsing	1	-7/+2
	Found by oss-fuzz, fixes issue #13797. ok beck@ tb@
2019-03-19	Revert TLS1_get{,_client}_version simplification because DTLS.	jsing	4	-14/+15

2019-03-19	When the last line of the input is empty and the previous line reduced	schwarze	1	-1/+3
	the line input buffer to a length of one byte, do not write one byte past the end of the line input buffer. Minimal code to show the bug: printf ".ds X\n.X\n\n" \| MALLOC_OPTIONS=C mandoc Bug found by bentley@ in the sysutils/rancid par(1) manual page.