| Age | Commit message (Collapse) | Author |
|---|
|
|
|
OK millert@
|
|
ok millert@, ok jung@
|
|
ok millert@, ok sunil@, ok jung@
|
|
ok nicm@
|
|
"sendfd" is dropped after first message from the server.
|
|
files that need it. No binary change.
"This looks fine" -nicm@
|
|
|
|
tested and ok gilles@
|
|
Ok millert@ gilles@
|
|
Ok millert@ gilles@
|
|
|
|
ok semarie@
|
|
|
|
|
|
the logic is already in aresize().
"Sure" nicm@
|
|
|
|
Suggested by nicm@.
|
|
to build boot blocks.
ok miod@
|
|
behaviour as ping(8).
|
|
OK gilles@ eric@
|
|
with ping.
No object change.
|
|
|
|
ok jung@, ok millert@
|
|
Pointed out by, input & OK jmc
|
|
daemon by sending corrupted imsgs to snmpd. This is especially
important for the optional world-writeable restricted socket that is
used for AgentX. In particular, don't fatal() in the daemon when imsg
size checks on control messages fail, do stricter validation of
expected messages (even assert zero-length imsgs), don't continue and
close the control socket on suspicious input, print a debug log
message on error.
OK gilles@ "the rationale behind it is quite clear"
|
|
OK krw@ halex@
|
|
it is needed in order to let libssl UI_* function plays with echo on/off when
asking for password on terminal.
passwd subcommand needs additionnal "wpath cpath" in order to let it calls
fopen("/dev/tty", "w") (O_WRONLY with O_CREAT | O_TRUNC).
problem reported by several
with and ok doug@
|
|
early on, then a set of getpwnam/setresuid/... before quickly dropping to
"stdio recvfd". It receives fd's and runs the magic code on them in a
chroot'd "stdio" jail. We can do better than that.
Before the recent change, "proc" contained both the concepts of "forking"
and "setuid". "id" is now split out as a seperate request, and it is
exactly what this process needs momentarily. So this loses another window
of opportunity, in case we have a major bug in .... hmm, it'd have to be
in getpwnam....
ok tedu doug semarie gilles
|
|
in mind that a gigantic group is already < ~50% of POSIX). It then
grinds these down bit by bit as it sets up privsep for the various
processes. At startup, smtpd will need the new "id" request as well.
ok gilles tedu
|
|
setgid/setegid/setresgid, setgroups, setlogin, and setpriority.
setrlimit and getpriority are also allowed (they are also in "proc")
some of these were previously permitted in "proc" but have been removed.
this seperation is intentional. "proc" is intended for reasoning about
the relationship of a process "with other processes", whereas "id" deals
the powerful/dangerous concept of unix ids. "id" will see some action
very soon.
ok gilles tedu semarie doug
|
|
ok deraadt@
|
|
ok deraadt@
|
|
|
|
in .Bl -column; it took me more than a day to get this right.
Triggered by a loosely related bug report from tim@.
The lesson for you is: Use .Ta macros in .Bl -column, avoid tabs,
or you are in for surprises: The last word before a tab is not
interpreted as a macro (unless there is a blank in between), the
first word after a tab isn't either (unless there is a blank in
between), and a blank after a tab causes a leading blank in the
respective output cell. Yes, "blank", "tab", "blank tab" and "tab
blank" all have different semantics; if you write code relying on
that, good luck maintaining it afterwards...
|
|
and to silence a compiler warning. Also remove its prototype, which is
directly above its definition.
ok tedu@
|
|
never bite us.
Suggested by Theo Buehler, inspired by Bitrig's natano@.
ok tedu@
|
|
|
|
ok deraadt@
|
|
|
|
|
|
|
|
needs killing before the installed user base excedes 6. Minus 745 LOC.
This is getting in the way of a merge since it has it's tentacles all
over the place.
OK jca@, deraadt@
|
|
diffie-hellman-group-exchange to 2048 bits; ok markus@
|
|
pledge "stdio rpath fattr proc exec tty".
|
|
program was called as mandoc(1) in the first place, remove "flock"
from our pledge(2) before entering the parsers and formatters.
OK millert@ deraadt@
|
|
version used for the connection, the latter gives "the SSL/TLS protocol version
that first defined the cipher". Fixes "TLS version=TLSv1/SSLv3" in received/log
lines.
ok millert@ "I was going to commit this today, so yes definitely" ok gilles@
|
|
ok millert@
|
|
Instead of breaking sendmsg(2) by adding unneeded space to its cmsg
item, add space to the cmsg used by recvmsg(2), where it will be used
to get the incoming packet hop limit.
Reported by several over the last years, and more recently by 'bsdsx',
who tested it against NetBSD route6d. Also works against Quagga ripng.
ok deraadt@ sthen@
|
|
|
