summaryrefslogtreecommitdiff
path: root/libexec
AgeCommit message (Collapse)Author
2008-10-03beef up the description of -D a little, and don;t imply theJason McIntyre
option somehow terrorises spamd-setup;
2008-10-03-D before -d;Jason McIntyre
2008-10-03New option -D to daemonize spamd-setup for early bootup use. This avoidsTheo de Raadt
spamd-setup hanging if there are various (network?) issues and the system not proceeding to multiuser so that this can be debugged. We do not use & for startup in /etc/rc because this makes the spamd-setup a child of the rc scripts after bootup (that is gross) Problem reported in PR 5864, change discussed with beck, ok millert
2008-10-02Fix mmap() error checking to be correct 64-bit addresses. ConsistentlyKurt Miller
use _dl_mmap_error() to check for mmap() errors. Adjust datatypes of some local vars for 64-bit safety. okay millert@ drahn@
2008-10-01Mention how lockspool is expected to be used.Todd C. Miller
2008-10-01Use poll() to determine when stdin is readable and throw away inputTodd C. Miller
until we hit EOF. OK deraadt@
2008-10-01Use the real uid instead of getlogin() to determine the identityTodd C. Miller
of the invoking user. OK deraadt@
2008-09-30Always say "User %s access denied", in all cases, to avoid some stupidTheo de Raadt
spinny things which parse those messages. Do not close the connection as requested by Josh Grosse, since a 530 is not supposed to do that. ok millert
2008-09-20document spamd log entry format; requested by Stephan A. RickauerJason McIntyre
ok beck
2008-09-13Fix minor bug in the previous commit, which could hang theMoritz Jodeit
current session, when the last character of an overly long line was a newline character. Additionally reply with 500 "Command too long" for commands, which are too large. Issue found and proposed fix by Luke Mewburn <lukem@NetBSD.org>. ok millert@
2008-09-12Don't split large commands into multiple commands on a 512-byteMoritz Jodeit
boundary but just fail on them. This prevents CSRF-like attacks, when a web browser is used to access an ftp server. Reported by Maksymilian Arciemowicz <cxib@securityreason.com>. ok millert@ martynas@
2008-09-01Install files in the correct directory even with NOMAN set.Dale Rahn
Theo made a number of suggestions/enhancements to get to this final version.
2008-08-26Fix an if (); typo. ok beck@Jonathan Gray
2008-08-24prepends, not overrides default search path. with/ok kurt@Martynas Venckus
2008-08-11some documentation updates for spamd synchronisation:Jason McIntyre
- whitelisted entries are not synced - entries added manually (using spamdb) are not synced suggested by Stephan A. Rickauer; ok reyk
2008-08-11Prevent a buffer underrun if a line is received which only containsTobias Stoeckmann
(multiple) @. ok millert, otto
2008-07-28Only optimize away plt relocation when obj_base == 0. CorrectsKurt Miller
pie relocation. Assembly debugging help from kettenis@. okay kettenis@ miod@
2008-07-24release the bind lock before resetting the signal maskPhilip Guenthe
ok kurt@
2008-07-16Fix several of the 'large offset' PLT entries. With help from kurt.Dale Rahn
ok kurt@
2008-07-11shut off an annoying gcc warning.Reyk Floeter
ok beck@
2008-07-11write a syslog debug message when a new GREY or TRAPPED entry is addedReyk Floeter
to the database. ok beck@
2008-07-11greyreader() shouldn't return, so tell us if it doesPeter Hessler
ok beck@, reyk@
2008-06-30Include file order must be "monitor.h" before "extern.h" otherwise enumAnders Magnusson
auth_ret is referenced before it is declared, which is not allowed by C99. Ok krw@, millert@, gilles@
2008-06-27Remove again the old _dl_md_reloc() calls-through-plt workaround: it isMiod Vallat
no longer necessary now that libgcc is built correctly, and it caused the elfbug regress test to fail.
2008-06-26First pass at removing clauses 3 and 4 from NetBSD licenses.Ray Lai
Not sure what's more surprising: how long it took for NetBSD to catch up to the rest of the BSDs (including UCB), or the amount of code that NetBSD has claimed for itself without attributing to the actual authors. OK deraadt@
2008-06-25Make ldd grok pie binaries.Kurt Miller
2008-06-13Pass relocated Elf_Dyn * to _dl_finalize_object(). Needed for pieKurt Miller
executables. Debugged and okay drahn@
2008-06-13Completing the executable elf_object_t data exposed a bug inKurt Miller
dl_iterate_phdr(3) which was returning the load base not the object base. Problem noted in the misc/exceptions regress by David Krause. okay drahn@
2008-06-12- rename _dl_boot argument loff to dyn_loff to differentiate it fromKurt Miller
exe_loff - calculate minva, maxva, exe_loff for the executable for passing to _dl_finialize_object and completing the executable elf_object_t data. this fixes ldd output for the exe object and prepares for PIE support. - calculate the interpreter path pointer in a way that allows for the possibility that PT_INTERP comes before PT_PHDR - fix an off by one in the init of dl_data input and okay drahn@
2008-06-08When prebind_newfile() is called the input file is replaced with the newDale Rahn
file, thus leaking the file descriptor, close the input file when it done.
2008-05-26sort flags on both the synopsis and usage.Igor Sobrado
ok jmc@
2008-05-24IPv6 support for standalone mode with assistance from millert@ and deraadt@Brad Smith
Tested by brad@ and sobrado@ ok deraadt@
2008-05-22version 2 of spamd sync protocol for two reasons:Theo de Raadt
1) ip addresses were accidentally being sent in host-byte order, which caused compatibility problems (spotted by jbg) 2) the sub-headers in the frame were not natively aligned, thus timeout values were incorrectly sent by 64-bit machines ok beck
2008-05-17documentation tweaks.Igor Sobrado
ok (some time ago) jmc@
2008-05-09As was done in dhcpd, insert pad blocks after sub-messages to keep theTheo de Raadt
structures aligned to 16 byte boundaries for maximum portability (somewhat similar to CMSG's). Old spamd's and new spamd's can still communicate with this change. It would be nice if someone tested spamd on 64-bit unaligned architectures (with and without this change) ok beck
2008-05-07check if the received buffer of a sync element is even big enough toReyk Floeter
hold the header with length field. ok deraadt@ beck@
2008-05-05Constantly fill in the program header pointer and count in elf_object_tKurt Miller
for all objects which simplifies phdr usage in a few places. "go for it" drahn@
2008-04-24compare strings with reality for expected behavior; ok millert@Todd T. Fries
2008-04-13Use arc4random_buf() when requesting more than a single word of outputDamien Miller
Use arc4random_uniform() when the desired random number upper bound is not a power of two ok deraadt@ millert@
2008-04-12yes, all; girishvenkatachalamTheo de Raadt
2008-04-11Correct a bug where _dl_error was set to DL_NOT_FOUND when a shared libKurt Miller
was found but failed to load. Adjust _dl_load_shlib() to only attempt to load the first matching shared lib which allows the correct _dl_error to propagate out upon load failure. okay drahn@
2008-04-09Improve support for shared libs linked at non-zero addreses:Kurt Miller
- rename private values in struct elf_object to better describe their meaning: s/load_offs/obj_base/ "object's address '0' base" s/load_addr/load_base/ "The base address of the loadable segments" - gdb needs the obj_base value so swap positions with load_base in struct elf_object - fix a few occurrences of where load_base was used instead of obj_base. With help and okay drahn@
2008-04-08should not call setpwent(); millert agreesTheo de Raadt
2008-04-03Use the libgcc version of these functions, no point in having extra copies.Dale Rahn
2008-04-02Use the proper define for this address, not a incorrect (on 64bit) define.Dale Rahn
ok kurt@
2008-03-28typo, ok beck@Alexander von Gernler
2008-03-24msg_controllen has to be CMSG_SPACE so that the kernel can account forTheo de Raadt
each cmsg_len (ie. msg_controllen = sum of CMSG_ALIGN(cmsg_len). This works now that kernel fd passing has been fixed to accept a bit of sloppiness because of this ABI repair. lots of discussion with kettenis
2008-03-15Repair more msg_controllen dealing with structures or arrays ofTheo de Raadt
descriptors; ok hshoexer, also looked at by kettenis and henning
2008-03-15Repair the simple cases for msg_controllen where it should just beTheo de Raadt
CMSG_SIZE(sizeof(int)), not sizeof(buffer) which may be larger because of alignment; ok kettenis hshoexer
2008-03-13Correct CMSG_SPACE and CMSG_LEN usage everywhere in the tree. Due toTheo de Raadt
an extensive discussion with otto, kettenis, millert, and hshoexer