IABSD.fr/src/etc

Branch :


Log

Author Commit Date CI Message
38120fc9 2022-01-07 01:16:26 regen
ab2206ec 2022-01-07 01:13:15 stop creating old drm device nodes
73ba3b68 2022-01-06 23:44:21 stop chowning old drm device nodes
7278d118 2022-01-05 18:34:23 increase lifetime of wtmp, since it is annoyingly short discussed with millert
29ec0a10 2022-01-04 13:43:14 - add LDAP - capitalise RADIUS when referring to the protocol - remove tis from raf czlonka ok sthen ajacoutot
5e4cfcb5 2021-12-08 20:18:43 wtmp doesn't need to reload syslogd. From Anton Kasimov <kasimov <dot> an <at> gmail <dot> com> OK bluhm@
5244225b 2021-11-15 12:56:11 Tidy up; no change.
b75a7fc8 2021-11-14 09:31:44 Improve and simplify timer handling in "stop" and "reload". Rename _rc_wait to _rc_wait_for_start since only "start" uses this now (to handle rc_bg daemons). In any situation, none of these actions should be able to hang boot or shutdown. We should now be able to manage most corner cases out there ("most" because it's unreasonable to assume we can cope with all the non-default rc_{start,stop,reload} crazyness). Several tests have been made and no obvious regression has been found. But that doesn't mean there isn't; if some behavior changed for the worst, talk to me. ok robert@ sthen@
6d2c6693 2021-11-12 15:40:19 Bump maxproc-cur to 512 for the pbuild user. This will prevent recurring failures in bulks ('cannot fork'). ok tb@ sthen@ deraadt@
59d16deb 2021-11-12 08:47:02 Consistency in test; no behavior change.
8c16dc0a 2021-11-12 08:44:05 Set SECONDS to 0 in _rc_wait. While this is not strictly required, it's a failsafe and more fair to daemon_timeout as we will effectively wait for the start/stop/reload sequence instead of the duration of the rc.d script itself.
1cf9a0a8 2021-11-12 08:38:02 Simplify _rc_exit.
ed6c56c5 2021-11-11 12:08:36 Run "_rc_wait stop" _before_ stopping the daemon and not after... This doesn't change the default behavior but fixes rc.d scripts with a home made rc_stop() function that can block and potentially hangs halt/reboot forever. ok robert@
6b329263 2021-11-11 10:37:36 Return 0 in case we reach KILL; this allows "restart" to work as expected in this situation. reported by and ok robert@
4402f70c 2021-11-11 09:49:29 Regen after switch(4) removal
31ee681f 2021-11-11 09:47:32 /dev/switch[0-4] is no longer needed.
26dd7583 2021-11-11 09:38:14 switch(4) and switchd(8) are retiering. Unhook them from various configuration files. OK sthen@ kn@ patrick@
32862450 2021-11-09 11:29:33 check that the rc script including rc.subr is using ksh; rc.subr uses ksh features and scripts will not work correctly with sh. tweak jca/ok kn/ ok with direction aja
f5ef07b7 2021-11-08 10:10:50 rc_reload_signal & rc_stop_signal are not rc.conf(8) variables; they're only for rc.d scripts.
cfbe1b2d 2021-11-07 15:50:15 increase ramdisk space for another driver
ae175667 2021-11-07 08:31:24 Speed up _rc_wait: only sleep 1/2 second between rc_check tries and make sure we have at least 1s for SIGTERM to do its job.
3df75499 2021-11-07 08:26:12 Use built-in SECONDS instead of hand roller timer. with a tweak from kn@ ok sthen@
af19f6cb 2021-11-06 13:33:10 Always run _rc_rm_runfile when process is sent a SIGKILL or rc_post fails (at this point the process has been terminated).
cabc2d54 2021-11-06 11:02:53 Drop uneeded sleep.
5a90631d 2021-11-06 10:38:04 Allow passing a different signal than SIGTERM in the default rc_stop() function. This will allow to simplify some rc.d script that cook there own function to gracefully stop a process (e.g. web servers). There are other use cases as well. And do the same for rc_reload because it's cheap and can also simplify a handful of rc.d scripts. Behave like shutdown and if the process is still not down after daemon_timeout (configurable; default to 30s), then send a SIGKILL. While here, factorise pkill invocations into a _rc_sendsig() function that can potentially be used by rc.d scripts instead of cooking pkill lines; this will benefit from the configured routing table etc. tested & ok robert@
db02e198 2021-10-31 17:46:23 Shuffle things around to have FUNCS_ONLY higher in the script so consummers source only what they really needs. Only expose the following which are used by /etc/rc, netstart and rcctl: _rc_parse_conf _rc_check_name _rc_err _rc_do _rc_quirk ok sthen@
701ca34a 2021-10-27 21:31:31 create directory for libxcvt headers
96dfa702 2021-10-23 19:40:29 btrace dir
b31e2d19 2021-10-13 20:34:03 Change syslog.conf comments relating to network logging to focus on client setup which is configured in the file itself, rather than talking partly about client (set in the file), command-line flags used for servers which are better suited to the syslogd(8) manual, and ISDN. In the commented-out examples, use tls rather than the plaintext protocol. If users don't need tls they can change it, but it's a sane default, and a good place to show that we have the feature. ok bluhm@
1f810a07 2021-10-12 16:39:22 make armv7 fit again after bootblock growth; discussed with jsg
0c7b2ed0 2021-10-09 01:01:07 grow media for additional firmwares
ca582519 2021-10-05 18:33:01 sync
8e3b310d 2021-10-05 18:32:46 wd(4) support ok kettenis
3780906a 2021-10-05 04:56:18 sync
74c06af1 2021-10-05 04:55:51 wd(4) device node support was missing, add it.
0a017508 2021-10-04 17:02:21 grow i386 media for new realtek firmwares
9c2cca60 2021-09-28 11:10:05 Import regenerated moduli.
aa3a487e 2021-09-20 16:43:38 Fix release day and emacs version ok deraadt
8e8a1d32 2021-09-19 18:56:08 adjust date
fd5df681 2021-09-19 18:49:09 login.conf: raise datasize-cur limits for pbuild on macppc to 1536MB Required at least by www/webkitgtk4. "commit right away" deraadt@
3a219b38 2021-09-13 15:05:44 no longer needed
b02e5619 2021-09-13 14:41:01 add 7.1 syspatch pubkey
ce828c77 2021-09-13 11:49:21 introduce /etc/bsd.re-config which can be used to configure the kernel using config(8); the contents of this configuration file will be fed to config(8) after kernel relinking is done, so on the next boot the new kernel will have all the configuration changes set by the user this comes handy if you still want to use KARL while making changes to the GENERIC kernel diff from Paul de Weerd with input from several developers
37db1d1c 2021-09-02 19:38:20 Do not create loopback interfaces lo1, lo2, ... upfront. They are automatically set up by the kernel when a routing domain is created. An existing lo1 in rdomain 0 would prevent to add any interfaces in rdomain 1. OK kn@
826ca7c5 2021-09-02 10:46:22 nameserver alias on domain (53) collided with true nameserver (42) which would be parsed earlier in any case. what a weird piece of history. from Raf Czlonka
07b5d8a3 2021-09-02 10:39:32 delete reference to X11 README file which is no longer installed. from Raf Czlonka
b26a609d 2021-09-01 08:15:53 quietly attempt mounting of /var/log early, in case someone creates such a partition to avoid /var overflow issues ok benno beck
09ec2297 2021-08-30 16:58:52 Improve dubgging in /etc/netstart. Enable print only in ifcreate. Add debugging output for ipv6 routes. Make localhost and multicast code aware of the print only switch. Allow netstart -n to work also if no interface is given. OK kn@
a29a9af8 2021-08-17 19:19:30 7.1 fw key
41d632e9 2021-08-17 15:25:27 7.1 packages key
fdf76a57 2021-08-17 15:11:48 7.1 base key
046082dc 2021-08-17 15:03:55 7.0-beta
2f98abb3 2021-08-08 13:43:10 Rework examples/snmpd.conf; show more things that people are likely to actually need, and fewer things that they won't need. In particular don't rely on default auth/enc settings; SNMPv3 isn't algorithm-agile, it must be defined on both ends, so relying on a default is going to cause some problems if it ever does change.
fddc8b88 2021-08-06 19:14:55 s/updatedb(8)/locate.updatedb(8)/ in comment OK schwarze@
816e0240 2021-08-06 07:06:34 As tim@ spotted, a use of V4_AUTOCONF crept in when the variable name was actually V4_DHCPCONF from previous use. Rename all of the V4_DHCPCONF to V4_AUTOCONF so everything uses the new name. ok and reminder about the installer from tb@
780f6900 2021-07-30 07:00:02 Add /etc/dhcpleased.conf OK florian@
1106a145 2021-07-28 20:48:36 A slightly less precise match on the ifconfig output lines works better for rdomain or metric tuned interfaces from leon fischer
b0fe20a2 2021-07-22 18:29:47 Only perform the default-route-pause if there are interfaces with the AUTOCONF flag set. This removes the delay for even more (strange) static configs. ok sthen
6041cb5b 2021-07-22 18:09:04 small tweak for default route checking, we don't care about the number of routes, only if at least one exists, so can avoid the subshell and just use grep -q. ok deraadt
4ba63a1b 2021-07-22 01:53:45 After netstart, dhcpleased, and resolved are running, spin up to 10 seconds waiting for a default route (v4 or v6) to exist, this increases the chance of DNS lookups working earlier. This is done before pf is configured, sorry we have good reasons. Static configurations are unaffected. dhclient previously did this kind of delay, and this is the lightest touch we can come up with which gives the same effect. While here, also start relinking earlier. ok benno florian sthen
2555728f 2021-07-16 15:21:41 switch to dhcpleased/resolvd in base OK deraadt
a998fadf 2021-06-30 12:19:00 grow ramdisk area due to increased firmware sizes.. ok jsg
dddd8a37 2021-06-29 22:03:30 build bsd.mp
663172c8 2021-06-26 00:48:28 sync
e0837408 2021-06-26 00:43:28 add /dev/dri/card0 and /dev/dri/renderD128 ok deraadt@
226e5ef2 2021-06-26 00:38:38 add /dev/dri/ ok deraadt@
39d47095 2021-06-20 08:31:03 Don't try to install a default route with route(8) later on if we are using inet autoconf, like we do with "dhcp" and "inet6 autoconf". OK kn
d364f0ea 2021-06-07 18:44:27 Add HTTPS URL for LACNIC TA OK deraadt@ claudio@
3bbd97cb 2021-05-25 00:35:28 sync
cebc78b8 2021-05-24 21:06:52 create audio devices for armv7 tested with an mp3 on a Tinkerboard OK sthen@ kettenis@
df3ba0ed 2021-05-19 16:57:02 Please sir, I want some more (ramdisk miniroot space)
2b983e2c 2021-05-17 07:22:45 Regenerate moduli.
3bab2c99 2021-05-12 06:50:33 The official service name of tcp/465 is "submissions" Keep "smtps" as an alias. https://datatracker.ietf.org/doc/html/rfc8314#section-7.3 ok sthen@ florian@ kmos@
3cefa2b3 2021-05-12 06:45:30 Drop swat (tcp/901) The Samba Web Administration Tool has been dropped by the samba project and TCP port 901 is not registered at IANA. ok sthen@ florian@ kmos@
4a79052f 2021-05-05 11:49:17 slight tidy-up of /etc/services: - remove a few UDP entries for protocols that are TCP-only - drop some obsolete protocols - move smtps/465 to the standards section (rfc8314) - move the talk about IANA's "reserve for both UDP/TCP even when you only use one" policy from a comment in /etc/services to the manual, and talk about how an entry in /etc/services prevents the associated port from being used for dynamic ports (via net.inet.udp|tcp.baddynamic sysctl). ok phessler@ florian@
bfc185c1 2021-05-01 16:10:29 Retire OpenBSD/sgi. OK deraadt@
49754ab7 2021-04-28 15:11:27 descend into riscv64 dirs ok deraadt@
564e83a3 2021-04-28 14:25:15 create riscv64 man dirs ok deraadt@
8d8246f6 2021-04-28 03:55:48 remove old drm devices
4ab8d4b9 2021-04-28 03:32:36 Sync
b34a0d0b 2021-04-28 03:26:25 riscv64 etc support copied from arm64 MAKEDEV.md contents are kinda partially there, needs more work.
af6a71fe 2021-04-25 16:36:56 Bump pbuild stacksize to 8M. Addresses a stack exhaustion issue with llvm11 and a small number of ports. ok kettenis@
904400d1 2021-04-17 21:19:40 Embiggen arm64 ramdisk kernel and miniroot/install img files. Provide U-Boot binaries that work on Raspberry Pi 3 and 4 (and possibly others) and firmware for Raspberry Pi 4. This allows the same installation method as used on Raspberry Pi 3 without separate UEFI firmware (although UEFI can still be used). Help from kettenis@ jsg@ deraadt@
eaa066d0 2021-04-11 17:18:15 Create a sparc64 install*.img file also tested by kettenis
39270a22 2021-04-09 05:54:00 Fix release time ok deraadt
a90aeaa9 2021-04-02 02:30:29 sync
f28e45a0 2021-04-02 02:29:54 don't put ptys onto the ramdisk media from miod
9ba8c2e1 2021-03-27 10:23:25 The ospf6d manpage states that the daemon laks support for multi area configurations. Fix the example config to only use one area instead of two. Issue brought up and OK danj@ claudio@ doesn't mind
bde6bd93 2021-03-25 19:10:39 mail(1) cares about whitespace
8fbafc91 2021-03-24 18:50:54 Add mouse.tp.tapping example. ok kn@
2434f299 2021-03-13 21:11:56 because the kernel has been replaced after last boot, run kvm_mkdb before the first consumer of kvm_bsd.db
c39ce09e 2021-03-11 07:57:18 grow media a little
fb510b1a 2021-03-10 06:32:27 Import regenerated moduli file.
f81d19e4 2021-03-09 07:12:15 dhcpleased wants /var (but contains code to handle when it isn't there). But in the nfs diskless case, we can do better by starting it a little later. This disrupts nfs diskless on dynamic addresses a little, if it ever actually worked with dhclient, but anyone doing that deserves the headache. ok florian
edee2434 2021-03-04 14:29:02 Update TAL files to offical versions that include a https:// URL for the trust anchor. rpki-client will then use the https:// URL first and fall back to rsync if the https request failed. OK job@ tb@
e0fed226 2021-03-01 07:25:07 resolvd and dhcpleased should not be enabled yet
e702688e 2021-02-28 18:09:18 install rc.d/resolvd
9cd4f3a5 2021-02-27 09:28:04 Add logger(1) support for daemons that are logging to stdout/stderr (mostly from the go ecosystem). Properly handle failing daemon startup now that we have pipefail. To take advantage of this new feature, just add foo_logger=facility to the daemon rc.d(8) script or in rc.conf.local(8) or use rcctl: rcctl set foo logger daemon.info tweak for checking flags in rcctl(8) from martijn@ "this looks pretty good" deraadt@ ok sthen@
f1951eea 2021-02-26 18:29:16 Ship resolvd service, enable it by default Starting right after unwind. OK deraadt
141a9a11 2021-02-26 17:19:21 Create /var/db/dhcpleased for lease files. OK deraadt@