src - OpenBSD base system

Age	Commit message (Collapse)	Author
2003-03-03	Update to Sendmail 8.12.8; fixes a buffer overflow in the envelope	Todd C. Miller
	comments processing which may allow an attacker to gain root privileges.
2003-03-02	Add Net::Netmask, ok deraadt	Bob Beck

2003-03-01	add two missing escapes, remove one spurious .Nm; ok espie@	Wilbern Cobb

2003-03-01	flesh out a bit more.	Marc Espie

2003-03-01	Partial documentation for table data.	Marc Espie

2003-03-01	Draft for a real tbl manpage, okay deraadt@, millert@	Marc Espie

2003-03-01	Disable mmalloc on all openbsd systems. It was disabled on some before.	Dale Rahn
	ok miod@ pvalchev@
2003-02-28	changes to fold the frame address of a setjmp insn	Hiroaki Etoh

2003-02-28	Don't trick the user into believing bugs can be confidential; OK tholo@	Todd C. Miller

2003-02-28	Convert to mdoc and customize further for OpenBSD	Todd C. Miller

2003-02-27	Change things back such that defining WANT_LIBMILTER in mk.conf	Todd C. Miller
	will build with libmilter support since that appears to be what people do (though it was not actually intended to work that way). Also add WANT_SMTPAUTH for SASL support and WANT_LDAP for LDAP map support. These last two from Chuck Yerkes.
2003-02-27	add -trace-ctors-dtors option to collect2.	Marc Espie
	Very useful for figuring out what's wrong with C++ shared libraries on a.out platforms.
2003-02-27	typo; Sebastian Stark	Todd C. Miller

2003-02-26	repeated words; millert ok ok	Theo de Raadt

2003-02-26	preserve the addressing using frame pointer at the cse2 phase.	Hiroaki Etoh

2003-02-26	fix the bison problem on alpha, it uses the pointer that initialzes the ↵	Hiroaki Etoh
	outside address of a character array.
2003-02-21	push_frame_in_operand: add the setup and restore code for setjmp on powerpc ↵	Hiroaki Etoh
	and alpha
2003-02-21	sweep_string_in_operand: properly sweep inline function frame.	Hiroaki Etoh

2003-02-21	mark the top address of inline function frame with integrated flag for the ↵	Hiroaki Etoh
	propolice protection
2003-02-21	In the case of no optimization, fix the problem that the first argument ↵	Hiroaki Etoh
	doesn't copy to the region of local variables.
2003-02-19	Give milter the ghost of a chance of working; still not supported in any way.	Todd C. Miller

2003-02-19	oops	Marc Espie

2003-02-17	fix trampoline support on hppa. Tested by mickey@	Marc Espie
	(does not solve the C++ ctor problem, sorry)
2003-02-16	place ro data into .rodata and not .text (now that it's handled special. 10x ↵	Michael Shalayeff
	to dale); espie@ ok
2003-02-16	import texinfo 4.8 into the tree.	Theo de Raadt
	(okay theo, kettenis)
2003-02-16	a few missing man pages converted from info documents; work done by jmc	Theo de Raadt

2003-02-16	typo	Theo de Raadt

2003-02-16	Synch cxxfilt man page with reality and arrange for it to get built and	Marc Espie
	installed. Noticed by jmc@
2003-02-15	use real registers to propagete frame offset for powerpc.	Hiroaki Etoh

2003-02-09	cosmetic clean-up: use ${.TARGET} extensively, instead of hard-coding	Marc Espie
	target names.
2003-02-08	When creating > 1 files with mktemp(1), make sure that if the creation	Peter Valchev
	of the n'th (n>1) file fails, the previous ones get removed before exit(1) Idea by jason; ok millert deraadt
2003-02-06	use common elf.sc instead of own hppaobsd.sc, catch up w/ dale's elf work ↵	Michael Shalayeff
	for hppa; drahn@ lots of helps and ok
2003-02-05	typos; isakmpd(8) ok niklas@, mailwrapper(8) help kjell@	Jason McIntyre

2003-02-03	disable a stack protection when the arch doesn't have stack_grows_downward.	Hiroaki Etoh

2003-02-03	add contains_fp declaration to examine whether the input contains frame ↵	Hiroaki Etoh
	pointer addressing.
2003-02-03	prepare_stack_protection: add validate_insns_of_varrefs to validate insns of ↵	Hiroaki Etoh
	inline function for processors, which doesn't have long integer addition. push_frame_of_insns: validate insns to use powerpc specific addressing and alpha specific addressing.
2003-02-03	modify general_induction_var not to generate the address of frame pointer ↵	Hiroaki Etoh
	plus minus constant as an induction variable.
2003-02-03	delete unused "protector.h" inclusion.	Hiroaki Etoh

2003-02-03	modify assign_stack_local to move the addressing of frame pointer plus zero ↵	Hiroaki Etoh
	to the function plus_constant_wide. modify assign_stack_temp_for_type for allocating a space to return a structure.
2003-02-03	modify expand_expr not to modify the addressing form of local variables: ↵	Hiroaki Etoh
	frame pointer plus constant.
2003-02-03	modify plus_constant_wide to provide the address of frame pointer plus zero ↵	Hiroaki Etoh
	constant.
2003-02-03	modify simplify_plus_minus not to assign the address of frame pointer plus ↵	Hiroaki Etoh
	no constant.
2003-02-03	allocate a space (keep=5) to return a structure, not protecting it as a ↵	Hiroaki Etoh
	character string.
2003-02-02	pass BSDSRCDIR in environment to submakes.	Marc Espie
	This `repairs' setting up BSDSRCDIR in /etc/mk.conf and nowhere else.
2003-02-02	I've been guaranteed that guaranteed is better than guarenteed.	Miod Vallat

2003-02-01	typos;	Jason McIntyre
	chat(8): removed reference to uucico(8) ok deraadt@
2003-01-30	Again this comment was not updated. now we have 7 load sections.	Dale Rahn

2003-01-30	ELF security enhancement: put .rodata into it's own load section instead	Dale Rahn
	of putting it with the text. This removes the execute permission from readonly data. This constrains the executable region to portions of the executable which need to be executable. Note: not all processors or mmus are capable of -X protection at the page level, but should handle ELF images which specify specific RWX protections on each section.
2003-01-24	This is a project to modify executables so that they do not have any	Dale Rahn
	executable regions which are writable. If a section of an executable is writable and executable, it is much easier for errant code to modify the executable's behavior. Two current areas in shared library environments which have this critical problem are the GOT (Global Offset Table) and PLT (Procedure Linkage Table). The PLT is required to be executable and both GOT and PLT are writable on most architectures. On most ELF architecture machines this would cause shared libraries to have data and BSS marked as executable. Padding to the linker script for programs and shared libraries/objects to isolate the GOT and PLT into their own load sections in the executables. This allows only the text(readonly) region and the PLT region to be marked executable with the normal data and BSS not marked as executable. The PLT region is still marked executable on most architectures because the PLT lives in the "data" or "BSS" regions and the dynamic loader will need to modify it. Since the GOT and PLT should only ever be written by the dynamic linker, it will be modified to mprotect those regions so that they are not writable during normal execution. If the dynamic linker needs to modify the regions later, (eg for lazy binding), it will mprotect the region, make the necessary changes, and mprotect it back. Since it is possible to receive a signal which would interrupt the program flow and perhaps cause the dynamic linker to modify the same (or nearby) PLT references, it is now necessary for signals to be blocked for the duration of the mprotect. This diff was omitted from the original commit, this implements the -Z option to produce traditional (non protected) executables.
2003-01-23	Add a "DisableXProg" option to CVSROOT/config that can be used to	Todd C. Miller
	disable support for Update-prog and Checkin-prog. This is a good idea for anonymouse cvs servers or anyone who doesn't need this feature. From Stefan Esser.