| Age | Commit message (Collapse) | Author |
|---|
|
firmware and the efifb(4) framebuffer address matches one of the BARs
associated with the inteldrm(4) device, make inteldrm(4) the console and
prevent efifb(4) from attaching. Make sure that we do a full clear of the
framebuffer when inteldrm(4) attaches to prevent the contents of the old
framebuffer from showing up.
Based on an earlier diff from yasuoka@
ok yasuoka@
|
|
just the process limits - show that, in particular, environment variables and
scheduling priority can be set in this way. Discussed with ajacoutot, robert,
schwarze, I went with wording suggested by schwarze@ which was much better
than mine.
|
|
ping6 does.
OK benno@
|
|
potential loops between bridges and pairs.
OK jmc@ sthen@
|
|
|
|
"make sure to update the manpage too" mpi@
|
|
OK mpi@
|
|
|
|
- for calling ioctl(2), we need "stdio" now: change test_request_tty
- for calling kill(2), we need "stdio" now: change test_kill
|
|
been out of sync for 13 years.
ok daniel@, millert@
|
|
ok millert@
|
|
- delete the commented out setgrfile bits, as well as the MLINK
- rename getgr{nam,gid}_r()'s 'buffer' parameters to 'buf' to be
consistent with getpwnam(3) and practically all other section 3 manpages
- we have sysconf(_SC_GETGR_R_SIZE_MAX) now, so uncomment and revise the text
For getpwnam.3:
- rename buflen to bufsize for consistency
- rewrite the description of the getpw{nam,uid}_r functions to
match the better getgr{nam,gid}_r() description, adding sysconf() bits
Add sysconf(3) to SEE ALSO for both
encouraged by schwarze@
ok millert@
|
|
|
|
|
|
|
|
|
|
OK nicm@
|
|
|
|
Use env_find() in both env_get() and env_set() to find a var in envp.
Remove now-unused strcmp_until() function.
|
|
Remove unneeded limits.h include.
|
|
the mg source now.
|
|
and make the error more useful when there is a problem opening a
directory. Reported by and ok jasper@
|
|
a single value
|
|
|
|
ABI form for the sake of existing programs. no programs from that era have
been able to run for quite some time. Kill it all.
ok deraadt florian millert mpi
(I believe this is my first IPv6 diff. Future, here I come!)
|
|
|
|
|
|
longer true.
|
|
Poly1305 is a one-time authenticator designed by Daniel J. Bernstein.
This is a slightly adjusted public domain implementation by Andrew Moon
found at https://github.com/floodyberry/poly1305-donna
ok jsing, previous version ok djm, looked at by reyk@
|
|
|
|
|
|
|
|
|
|
an f_event() handler may remove an entry.
Currently knote_processexit() calls knote() with NOTE_EXIT, knote() walks
the list and calls f_event(), one of these happens to be filt_proc(), which
happily SLIST_REMOVEs the NOTE_EXIT note from the same list that knote() is
currently walking, then we get back to knote() and go boom...
Flushed out by bluhm@'s invalidation change to sys/queue.h and found the
hard way by naddy@.
ok doug@ nicm@ tedu@
|
|
|
|
It's getting in the way of the merge and it's not supposed to pull in
a private header.
Prodding deraadt@
|
|
|
|
and similar usage cases. Should provide abit more clarity for those
who read the kernel code.
|
|
|
|
discover subcommand schedules envelopes manually moved to the queue.
It triggers a queue walk searching for envelopes with the given id,
schedules them and informs the user number of envelopes scheduled.
Admins no longer would need to restart the daemon to discover
manually moved messages.
Ok gilles@
|
|
make the cpath test more strict.
|
|
|
|
|
|
|
|
This is needed for machines where Intel graphics isn't the primary graphics
device and on systems with UEFI firmware that put the device in non-VGA mode.
ok jsg@
|
|
|
|
|
|
|
|
|
|
crazy packet parsing, then do something requiring privilege at the
end" program. Simplistic pledge would be "stdio rpath wpath inet dns
settime", which is not very useful. Imagine if it was exploited? It
could still change your time backwards or write to your passwd file -
game over. However the pledge "categorization" is educational, and
quickly leads to a priv-sep solution of sorts.
Create a pipe and fork. child pledges "stdio inet dns", and talks the
time protocols, then writes error message + timeinfo to the pipe.
parent pledges "stdio rpath wpath settime" and reads error
message/timeinfo from pipe. If error message, spit it out. Otherwise
handle the time, then pledge "stdio rpath", and finally report how the
time was adjusted.
A bit more complicated. Now observe that the pledges help test if
it is right...
(Now that privsep processing is in place, the child could be modified
to chroot + change to a different uid... problem is: which uid..)
ok millert
|
