Age | Commit message (Collapse) | Author |
|
indicate that the kernel should fail with MAP_FAILED if the specified
address is not currently available instead of unmapping it.
Change ld.so on i386 to make use of __MAP_NOREMAP to improve
reliability.
__MAP_NOREMAP diff by guenther based on an earlier diff by Ariane;
ld.so bits by guenther and me
bulk build stress testing of earlier diffs by sthen
ok deraadt; committing now for further testing
|
|
taking advantage of naddy@'s recent mtree(8) modernization.
While here, do not provide an example protecting a home directory
from file changes; protect some system binaries instead.
ok naddy@ jmc@
|
|
|
|
utterly clear this is not a filter criteria but a packet modification thing.
also preparation for upcoming changes, including one to unscrew this mess
(I should not have to touch half the tree for this - ifixitlater)
not user visible, ok gcc
|
|
ok kurt
|
|
entry momentarily, because another thread might attempt lazy resolve.
ok matthew guenther
|
|
from Liam J. Foy
|
|
ok matthew@
|
|
memory, we should be able to match other requests for libfoo.so.X.Z
against that same object.
ok kurt, kettenis
|
|
of the server against a local host keytab file when you're authing
users with login_krb5. useful for when you need to auth users but
dealing with the domain admins is painful...
ok sthen@ jj@ millert@
|
|
ok schwarze@
|
|
Otherwise the binary assumes that the requested TLS storage has been
allocated and will happily use it, resulting in unwanted memory corruption.
ok guenther@
|
|
millert, camield..
|
|
|
|
recyle of a fd which is still set.
ok claudio
|
|
|
|
_dl_dirdesc struct (containing just the fields ld.so's implementation
actually needs) instead of reusing libc's _dirdesc struct.
Also, switch ldconfig to use futimens() instead of futimes().
ok deraadt@
|
|
prompted by a mail from Gabriel Linder. OK henning@
|
|
poke by deraadt@
|
|
ok henning@ sthen@ mikeb@
deraadt@ wants this
|
|
occurrences to get_line().
Based on a diff from Jan Klemkow <j-dot-klemkow-at-wemelug-dot-de> to tech.
|
|
ok dcoppa@ jmc@ schwarze@.
|
|
|
|
body of the manual page; add missing argument to -s; while here,
remove a trailing whitespace found by jmc@
ok jmc@
|
|
phrasing when listing flags; add missing arguments to flags in the
DESCRIPTION section of the manual page.
use of .Li (literal text) macros and standard wording suggested by jmc@
ok jmc@
|
|
ok jmc@
|
|
on Makefile to match style used by other login_* utilities.
ok dhill@
|
|
ok dhill@, jmc@
|
|
if we don't find a whatis.db when deleting (which could happen if
mandocdb was enabled while pkg_add was running), first create it,
then update it.
okay nigel@, schwarze@
|
|
ok deraadt
|
|
suite of tools now being disabled, as far as they apply to the current
tools as well.
|
|
Change the successes from LOG_INFO to LOG_DEBUG as well.
|
|
|
|
ok millert@
support from mcbride@ and others
|
|
In its current state, it causes too much slowdown, in particular
during system builds, and there are other regressions.
That cannot be fixed quickly while it's enabled.
Problems pointed out by espie@, backout requested by deraadt@,
diff "looks good" to espie@.
|
|
ok miod@
|
|
using DT_DEBUG if DT_MIPS_RLD_MAP isn't there. This requires us to make
.dynamic temporarily writable. Fixes debugging of PIE execuables with gdb(1).
ok miod@
|
|
Unlink the old apropos(1), whatis(1), and makewhatis(8) from the build.
Call the new tools from pkg_create(1) and pkg_add(1).
"Please enable it now." deraadt@
|
|
from Steffen Daode Nurpmeso with a tweak from jmc@
ok jmc@
|
|
This can become pretty handy on busy anonymous servers to avoid filling
up /var with unused wtmp records.
Note that 'U' and 'W' are mutually exclusive.
ok sthen@ millert@
|
|
and make it compatible with bsd.lv mandoc and with groff-1.21.
This tweak was originally added for compatibility with groff-1.15,
which is no longer needed.
ok jmc@ kristaps@
|
|
DF_1_NODELETE and DF_1_INITFIRST, as well as DF_1_NOW and DF_1_GLOBAL.
Committing for kurt@ who worked out the final version; ok guenther@ drahn@
|
|
constants are constructed with several instructions rather than
loaded from the data segment, avoiding relocations.
This fixes ld.so with gcc4. From miod@, ok jsg@
|
|
|
|
1. use a BINDANY socket to connect from the proxy to the server using the
clients address.
2. fork a child to do the work so inetd doesnt keep trying to send more
packets to the proxy, as per doco in the inetd manpage for dgram wait
sockets.
because of 1 you now have to add a pass out divert-reply for the proxy to
server packet to your pf ruleset.
this allows a series of rapid tftp connections from the same host
to a server in my environment. without this diff there's several
minutes of waiting in between requests because of issues with the
rules from previous requests stealing packets but not forwarding
them combined with inetd giving too many packets to tftp-proxy that
only expects to handle one.
this is going in so i can hack on PFRULE_ONCE support.
ok mikeb@ sthen@
|
|
ok espie schwarze deraadt.
|
|
|
|
specifically, rewrite them to permit some markup in the column headers,
and use "Ta" instead of literal tabs; mandoc does not currently match groff
100%, but a mandoc fix may be some time off, and we've gone enough releases
with poorly formatting column lists.
in some cases i have rewritten the lists as -tag, where -column made
little sense.
|
|
from .init that uses SSE doesn't randomly trigger SIGBUS.
ok drahn@, miod@
|
|
be stat(2)'ed, but do not complain about those that were just removed,
because removing files is not a security risk in itself.
Sorry, i can't remember the original reporter of the issue;
reported again by mk@; patch looks good to Andrew Fresh.
|