| Age | Commit message (Collapse) | Author |
|---|
|
|
|
freed chunk is actually freeable immediately. catch more errors.
hints/ok otto
|
|
|
|
While there, sort headers.
ok tedu@
|
|
ok miod
|
|
|
|
|
|
|
|
required. try to document this fact and some of the history.
with feedback from deraadt guenther millert
|
|
simply say all other combinations are behaviour undefined;
ok guenther, who reminded me to change these too;
|
|
fix null deref spotted by Seth Hanford, pinpointed by dtucker@
ok florian@
|
|
|
|
|
|
while changing things, add a crypt_checkpass wrapper that handles most of
the edge cases. (not quite ready for production, though.)
ok deraadt
|
|
It's not a standard interface, so it doesn't belong in libc.
I hate duplicating the code in client programs, so do beck@, kettenis@,
schwarze@, millert@, miod@... and they agree with libutil.
|
|
(mostly use a calloc function to avoid potential integer overflow)
|
|
deterministic behavior. four selected because it's more than three, less
than five. i.e., no particular reason.
|
|
ok sperreault@
|
|
|
|
ok jmc@
|
|
reminder that the return value is int...
|
|
can avoid reinventing the wheel
ok guenther schwarze
|
|
ok crickets@
|
|
local traffic is not optional.
ok mikeb@, stsp@, jca@
|
|
arc4random_buf() to avoid lots of arc4random() calls with a getpid()
syscall for each one. We fetch 32 bytes of random data at a time
which can handle up to 16 Xs. 16 Xs should be enough for anyone.
Requested and OK deraadt@
|
|
|
|
|
|
ok deraadt stsp
|
|
|
|
|
|
|
|
wherever it decides it would like them. first step. ok deraadt dlg djm
|
|
|
|
|
|
the /var/crash/programname/ directory, as root. For instance,
# mkdir /var/crash/bgpd/
# chmod 700 /var/crash/bgpd/ # If you skip this step, you are a moron
# sysctl kern.nosuidcoredump=3
# bgpd
# pkill -ABRT bgpd
# ls /var/crash/bgpd/
14764.core 23207.core 6423.core
Of course, in real life the idea is that you don't kill the daemon but it
crashes and you collect parallel cores. Careful you don't fill your /var.
Further tuneables are being considered.
Sorry to be picking on bgpd for this example. I've watched the "too
difficult to debug privsep code" angst for far too long.
ok guenther
|
|
switch to generating them by default. prodded by deraadt and sthen
|
|
2. Pull up the actual minor processing code into the switch that
parses it.
3. atoi is actually simpler than strtonum in this case, but check the
input beforehand so we don't get unexpected results.
4. Slightly more consistent style between various parse and check and
increment operations on salt.
ok deraadt
|
|
so stop rejecting them in our citrus UTF-8 parser.
This is a common misinterpretation of the Unicode standard which resulted
in a corrigendum last year: http://www.unicode.org/versions/corrigendum9.html
Pointed out by jilles@freebsd (via pfg@freebsd), thanks!
|
|
don't use disable %n ourselves. But Google's Android libc is based
on our libc.... Giving them an easy knob to disable this dangerous
feature easily make their job easier without making our job any harder.
Request from Elliott @ google
|
|
|
|
|
|
|
|
errno EOVERFLOW is returned and error is set on the FILE.
ok kettenis miod beck
|
|
a free chunk at random and may allow to increase delayed chunk array.
ok otto
|
|
default and the new 'j' option to disable this; ok jmc@
|
|
prodded by naddy, confirmed by Mark Kettenis
|
|
This is a getaddrinfo() flag that is defined thusly in RFC 3493:
If the AI_ADDRCONFIG flag is specified, IPv4 addresses shall be
returned only if an IPv4 address is configured on the local system,
and IPv6 addresses shall be returned only if an IPv6 address is
configured on the local system. The loopback address is not
considered for this case as valid as a configured address.
For example, when using the DNS, a query for AAAA records should
occur only if the node has at least one IPv6 address configured
(other than IPv6 loopback) and a query for A records should occur
only if the node has at least one IPv4 address configured (other
than the IPv4 loopback).
The flag is set by default when hints is NULL.
ok Eric Faurot, Jason McIntyre
|
|
|
|
OK from jmc@, and thanks to sthen@ for pointing out my mistake in the first
version of the diff.
|
|
|
