src - OpenBSD base system

Age	Commit message (Collapse)	Author
2014-07-25	Add support for "virtual hosts" aka. server blocks aka. multiple	Reyk Floeter
	servers with the same or "overlapping" IP address but a different name. ok beck@
2014-07-25	Rewrite http_parse() completely:	Ingo Schwarze
	1. Make sure the last occurrence of each key is used, even if it is empty, in which case it resets the value to the default. 2. When there is an HTTP encoding error, skip the affected key-value pair only, but not all subsequent key-value pairs. 3. Do not modify a string returned from getenv(3). 4. Do not assume the NULL pointer is all null bits.
2014-07-25	Add and document 'root' configuration option for the docroot.	Reyk Floeter

2014-07-25	Add missing year to copyright.	Joel Sing

2014-07-25	Split server and server_config.	Reyk Floeter

2014-07-25	Rename a field, needed later, no functional change.	Reyk Floeter

2014-07-25	Move the docroot into the server block.	Reyk Floeter

2014-07-25	BIO_free() returns immediately when the sole input is NULL.	doug
	Remove unnecessary NULL check. ok miod@
2014-07-25	document the scheduler types and how to specify them.	David Gwynne
	some pointers from schwarze@
2014-07-24	Mention UNIX-domain socket forwarding too. OK jmc@ deraadt@	Todd C. Miller

2014-07-24	Speed up the boot sequence by deferring the scan of xt keyboard code set.	Martin Pieuchot
	If you were wondering why there's a pause of 5 seconds after loading the kernel and before seeing the copyright in blue when booting some of your machines, well this is for you! mlarkin@ found that this delay is caused by some code probing for xt scan code tables when pckbd(4) initialize the console keyboard. So this diff implements an idea from deraadt@ to only do the scan once, either during *attach() or if we enter ddb> or ukc> before that! ok miod@, mlarkin@, deraadt@, shadchin@
2014-07-24	Sort result pages first by section number, then by name.	Ingo Schwarze
	By moving the sort from cgi.c to mansearch.c, we get two advantages: Easier access to the data needed for sorting, in particular the section number, and the apropos(1) command line utility profits as well. Feature requested by deraadt@.
2014-07-24	Provide eeprom(8) on the sparc installation media. Intended to help diagnosing	Miod Vallat
	installation problems. ``if it fits go for it'' deraadt@ (and it fits)
2014-07-24	+ eeprom	Miod Vallat

2014-07-24	Build machinery to build eeprom(8) for the installation media on arches where	Miod Vallat
	it matters.
2014-07-24	Shunt hwupdate property decoding in sparc's old prom (sun4 only) if	Miod Vallat
	defined(SMALL).
2014-07-24	Unbreak ''route flush'': the kernel now adds local (RTF_LOCAL) routes	Jeremie Courreges-Anglas
	for addresses configured on the system, and prevents userland from deleting them. Just skip those routes when flushing. Problem noticed by mlarkin@, ok henning@ mpi@ claudio@ sthen@ deraadt@
2014-07-24	Revert ssp-strong on arm. This has been exposing one or more bugs in GCC that	Pascal Stumpf
	kill large portions of the ports tree. Most notably, it broke devel/gperf at runtime. ok martynas@, "make a decision" deraadt@
2014-07-24	Plug a memleak by correctly free'ing the HTTP descriptor that contains	Reyk Floeter
	all the headers etc. of a connection.
2014-07-24	Provide a dropdown entry "All Architectures" and make it the default.	Ingo Schwarze
	Still, amd64 remains the default in the following sense: If a man(1) mode search returns more than one page of the same name, prefer amd64 over other architectures for immediate display. ok deraadt@ daniel@
2014-07-24	Fix debug printf, from Nathanael Rensen and chris@.	Martin Pieuchot

2014-07-24	Remove unused fields from structure	Reyk Floeter

2014-07-24	sync	Theo de Raadt

2014-07-24	tweak previous: use .Er for ENXIO	Ingo Schwarze

2014-07-24	this is start on documenting bufqs. it covers the bits disk drivers need	David Gwynne
	to know. the grubby bits the midlayer touches on them will get written up soon. ok deraadt@
2014-07-24	Steven Roberts sent me a patch updating the various setperf thresholds.	Ted Unangst
	But instead of continuing to overdocument internal behavior, provide a high level description of the modes and their purpose.
2014-07-23	When canonicalizing the path, it is better to fail on truncation.	Reyk Floeter
	Pointed out by Doug Hogan.
2014-07-23	I wanted to know if people pay attention.	Reyk Floeter
	Doug Hogan found an off-by-one. More improvements will follow.
2014-07-23	The default index page shouldn't be a directory. It's a 500.	Reyk Floeter

2014-07-23	Don't expose the docroot on error.	Reyk Floeter

2014-07-23	The media_encoding is not used in parse.y but stack garbage could lead	Reyk Floeter
	to a double free; set it to NULL. This should fix a problem that was found by deraadt@
2014-07-23	First attempt at verifying the request path and the access	Reyk Floeter
	permissions. We also have to redirect with 301 if a directory name was requested without the trailing slash.
2014-07-23	Make queries using the search list for hostname lookups fail with	Eric Faurot
	NO_DATA/EAI_NODATA when the hostname param is an empty string. So far, they were using the entries in the search list with no additional component, which is not really expected. reported by jsing@ and a few others ok deraadt@, "makes sense" jsing@
2014-07-23	Set the console input in polling mode before entering ukc.	Martin Pieuchot
	ok miod@, deraadt@, shadchin@
2014-07-23	level_add_node(): if a memory allocation failure causes us to attempt to clean	Miod Vallat
	up and return failure, be sure the cleanup work does NOT free objects which are still being referenced by other objects. ok guenther@
2014-07-23	Make sure PEM_def_callback() correctly handles negative buffer sizes; all uses	Miod Vallat
	within libcrypto are safe, but until we can change this function prototype to use size_t instead of int, better be safe than sorry. tweaks and ok guenther@
2014-07-23	delinked from tree, now it goes to the bit bucket	Theo de Raadt

2014-07-23	Add canonicalize_path() to canonicalize the requested URL path.	Reyk Floeter

1998-03-11	Lynx 2.8	Mats O Jansson

2014-07-23	typo; patch from Timo dot Myyra at wickedbsd dot net	Ingo Schwarze

2014-07-23	Security fix:	Ingo Schwarze
	After decoding numeric (\N) and one-character (\<, \> etc.) character escape sequences, do not forget to HTML-encode the resulting ASCII character. Malicious manuals were able to smuggle XSS content by roff-escaping the HTML-special characters they need. That's a classic bug type in many web applications, actually... :-( Found myself while auditing the HTML formatter for safe output handling.
2014-07-23	document format changes, including the new @ts annotation that pkg_create	Marc Espie
	will generate after 5.6.
2014-07-23	move misleading comment	Marc Espie

2014-07-23	Correctly shutdown the servers when the process is terminating;	Reyk Floeter
	prevents a crash on exit. With debugging help from blambert@.
2014-07-23	always enable DPRINTF with compiled with DEBUG	Reyk Floeter

2014-07-23	httpd.conf can be installed 0644 instead of 0600 like relayd.conf.	Reyk Floeter
	ok ajacoutot@ benno@
2014-07-23	Add httpd.conf.	Antoine Jacoutot

2014-07-23	rephrase multi-packaged LIB_DEPENDS description to match fixed semantics.	Marc Espie

2014-07-23	correctly drain and destroy the bufq upon detach	Jasper Lievisse Adriaanse
	ok dlg@
2014-07-23	Subtraction usually decrements the value	Philip Guenther
	ok dlg@