summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2018-10-29needs sys/lock.hTheo de Raadt
2018-10-28Correctly deal with upper level unveil's by keeping track of the coveringBob Beck
unveil for each unveil in the process at unveil() time, and refactoring the handling of current directory and ISDOTDOT to be much more sensible. Worked out at ns2k18 with guenther@. ok deraadt@
2018-10-28Do not printf NULL.Nicholas Marriott
2018-10-28Do not check for a key again without an escape if only \033 is present.Nicholas Marriott
2018-10-28lld generates DT_RUNPATH elements instead of the older DT_RPATH.Christian Weisgerber
Handle both. From semarie@, tweaked by espie@ ok phessler@ espie@
2018-10-28Properly handle symlinks.Antoine Jacoutot
2018-10-27Update to tzdata2018g from ftp.iana.orgTodd C. Miller
2018-10-27SUBDIR is a remnant of the past.Antoine Jacoutot
ok robert@
2018-10-27pass around the ess and ni structures we plan to use directly, insteadPeter Hessler
of rediscovering them (possibly badly). OK stsp@
2018-10-27clean up accounting of the AUTO_JOIN flag by making sure it is set or clearedPeter Hessler
based on the state of the joinlist OK stsp@
2018-10-27don't join to a network where we expect cleartext, and the AP is using cryptoPeter Hessler
OK stsp@
2018-10-27Temporarily enable LOCKF_DIAGNOSTIC in order to catch potential bugs.anton
ok deraadt@ visa@ (as part of a larger diff)
2018-10-27Add assertions for lockf list manipulation, hidden behind LOCKF_DIAGNOSTIC.anton
While here, improve existing lockf debug routines and sprinkle some more logging related to list manipulation. ok deraadt@ visa@ (as part of a larger diff)
2018-10-27Rework previous lockf fix; bluhm@ noticed a regress failure during consecutiveanton
runs. This is a second attempt in which the lockf structure is turned into a doubly linked list which makes it easier to ensure correctness during list insertion and deletion. ok deraadt@ visa@
2018-10-27size for free(); ok ratchov@miko
2018-10-26Use EFI memory map to determine what memory regions are availble just likeMark Kettenis
we already do on arm64. Prevents using the framebuffer on the cubox-i as regular memory for example.
2018-10-26Add acpipci(4) on amd64. For now this only calls the PCI-specific _OSCMark Kettenis
method to let the ACPI implementation know what features we support.
2018-10-26If we pass `file' via args then we need to unveil(2) it with read permission,Ricardo Mestre
otherwise if omitted we need to unveil(2) both _PATH_UNIX and _PATH_KSYMS with same permissions. Unconditionally we need to also unveil(2) dbdir, which by default is _PATH_VARDB but can be changed via args (-o directory), with read/write/create permissions. There are a couple of temp files that will be created but it's inside dbdir so there's no need to unveil(2) them individually. Since we already call pledge(2) before, twice, we need to add "unveil" promise to both of them, and finally call pledge(2) once again with the needed promises except "unveil". OK millert@
2018-10-26The code path were we pass `pathname' in the arguments is already limitedRicardo Mestre
with pledge(2), but since we know exactly what it is then we can go further and also unveil(2) it with read permissions. OK millert@ deraadt@
2018-10-26Show how much memory is used for *-sets.Claudio Jeker
OK deraadt@
2018-10-26Track the amount of memory used for sets and tries (aka anything-set)Claudio Jeker
OK deraadt@
2018-10-26Update for default ruby version switch from 2.4 to 2.5.Jeremy Evans
2018-10-26With lld the calculation of the entry point was wrong sinceChristian Weisgerber
LOADADDR(.text) is only available after the description of the text section. Instead simply use ENTRY(start) like we do on amd64. The bootloader strips the high bits from the entry point address already, so using the virtual address as the entry point address works. with/ok kettenis@
2018-10-26Make it clear that `if_bridgeport' is dereferenced in the ioctl pathMartin Pieuchot
by making all handlers consistent. ok bluhm@, visa@
2018-10-26remove a misleading comment; ok ratchov@miko
2018-10-26Fix memory leak in setDolp() where dp is NULL. Based on a diff frommiko
netbsd, with help from martijn@ and millert@.
2018-10-26Correct linker emulation name for lld when building i386 kernels on amd64.Christian Weisgerber
ok kettenis@
2018-10-26I broke base images with my previous commit by missing a line.Reyk Floeter
The disk path wasn't updated so vmd tried to open the derived disk image for each base over and over again. OK ori@ mlarkin@
2018-10-26Use proper type in sizeof()Claudio Jeker
OK phessler@
2018-10-26show what went wrong with a unix domain socket, rather than fail silentlyDavid Gwynne
handy if you type the path wrong or don't have permission... ok deraadt@
2018-10-26When walking the list of ribs use continue instead of break after theClaudio Jeker
rib_valid() check. The list of ribs can have holes. OK benno@
2018-10-26Unveil should work because this only opens the configuration file,Theo de Raadt
and re-exec's itself. That locks the pledge 'exec' nicely.
2018-10-26regenMike Larkin
2018-10-26Add VirtualBox NVMeMike Larkin
From Andrew Daugherity
2018-10-26syncKevin Lo
2018-10-26Fix entry for Realtek RTL8723BE, from Stuart Shillington.Kevin Lo
2018-10-26mention ssh-ed25519-cert-v01@openssh.com in list of cert key typeDamien Miller
at start of doc
2018-10-25New mesa uses the I915_MMAP_WC flag which we advertise but don't actuallyMark Kettenis
implement. Knock out the I915_PARAM_MMAP_VERSION parameter that advertises this flag until we actually implement it. Fixes GPU hangs on GM45 chipset graphics. ok deraadt@
2018-10-25The compilers already put static arrays in .rodata when not written to;Philip Guenther
marking them const will keep a source change from silently moving them back to .data ok deraadt@ kettenis@
2018-10-25Calculate ASPATH_HEADER_SIZE correctly by using offsetof() instead of theClaudio Jeker
sizeof calculation that did not respect possible padding bytes. OK sthen@ denis@
2018-10-25Fix a resource leak in doaccept().Visa Hankala
If a connection that is being accepted gets aborted early, or if the user-supplied buffer is invalid, doaccept() leaks a socket. This is a regression caused by r1.153 of uipc_syscalls.c. Correct the issue by associating the socket with the file early enough. In case soaccept() or copyaddrout() fails, the socket will be freed as a result of the file closing. This logic was used by the pre-r1.153 code. closef() may block, so it is hoisted outside the fdp lock. OK bluhm@ mpi@
2018-10-25Add a "terminal" colour which can be used instead of "default" in styleNicholas Marriott
options for the terminal default colour, bypassing any inheritance from other options. Prompted by a discussion with abieber@.
2018-10-25tweak description to conform to reality.Marc Espie
2018-10-25add target fix-permissionssolene
enhance PORTS_PRIVSEP documentation ok espie@
2018-10-25When spamd(8) runs in greylist mode in the parent process (which runsRicardo Mestre
greywatcher()) we know that the only files that it will ever access are PATH_SPAMD_DB in rw mode, alloweddomains_file in r and that it will need to execute PATH_PFCTL so we can unveil(2) them with those permissions. OK deraadt@ millert@ beck@
2018-10-25The only file that spamlogd(8) needs to access after calling pledge(2) isRicardo Mestre
PATH_SPAMD_DB, so unveil(2) it with O_RDWR permissions. OK millert@ beck@
2018-10-25unveil(2) the following files for passwd(1) with their correspondingRicardo Mestre
permissions: _PATH_MASTERPASSWD_LOCK - write/create permissions _PATH_MASTERPASSWD - read permission _PATH_BSHELL - execute permission (required since we might need to spawn an external passwordcheck program if defined in /etc/login.conf) _PATH_PWD_MKDB - execute permission OK millert@ deraadt@
2018-10-25Implement the \f(CW and \f(CR (constant width font) escape sequencesIngo Schwarze
for HTML output. Somewhat relevant because pod2man(1) relies on this. Missing feature reported by Pali dot Rohar at gmail dot com. Note that constant width font was already correctly selected before this when required by semantic markup. Only attempting physical markup with the low-level escape sequence was ineffective.
2018-10-25start both the sc_ka_send and sc_ka_hold timeout whenDavid Gwynne
the timeout gets configured instead of gre_up(). this avoids complex gre_ioctl() ordering rules and enables the sc_ka_hold timeout before the first packet is received. from markus@
2018-10-24Generate __data_start symbol that marks the start of .data when __data_startMark Kettenis
is referenced from code being linked. ok deraadt@, naddy@, guenther@