| Age | Commit message (Collapse) | Author |
|---|
|
used in the kernel. This makes it possible to remove the casts to
"struct sockaddr *" when calling networking syscalls.
OK jsing@ jca@
|
|
similar to the example in connect(2). OK tedu@
|
|
too. OK sthen@ deraadt@
|
|
Fix a type mismatch in ftp's "page" command and could make transfers restart
at the wrong position.
ok and a ull->ll tweak from natano@, ok tedu@
|
|
for more readable code and reduces line wrapping. Also improve error
messages by adding tls_config_error() to errx() where appropriate.
ok jca@
|
|
and you need to do the same poll(2) dance as if the socket was
non-blocking. Fixes a crash when the window is resized while
connecting. OK deraadt@
|
|
|
|
changes - map the previous configuration to the equivalent in the new
groups. This will be revisited post release.
Discussed with beck@
|
|
tls_* function; so actually do that.
|
|
Diff from Vladimir Sotirov via tech@. Thanks!
ok millert@
|
|
This probably broke passive FTP on IPv6 and [ip::v6]:port syntax in
RAMDISK ftp(1), sorry about that.
The diff was initially ok millert@
|
|
Just NULL is not good practise as NULL is theoretically allowed to
be an integer rather than a pointer.
Use (char *)NULL consistently instead of scattering a few (char *)0
and (void *)NULL into the mix.
Prompted by and probably ok deraadt@ millert@ kettenis@
Definitely ok mestre@ ratchov@
|
|
Feedback millert@ kettenis@
|
|
Present since ssl support was initially added in OpenBSD 4.0
Found by sthen@ via github downtime
OK sthen@
|
|
From Lauri Tirkkonen, plus tweak to comment. ok jung@
|
|
|
|
declare it inside #ifdef SMALL.
|
|
|
|
it to 0.
|
|
While here, make it clear that `-' and `|' are only special in local,
not in remote filenames.
Probably, `|' support should be removed from ftp(1), but let's fix one
thing at a time.
OK jmc@
|
|
|
|
|
|
"dns" was missing, and this was relying on "inet" support..
|
|
ok guenther@
|
|
We will iterate and remove some of the pledges in the future. This is
conservative for now.
Tested by sthen@ and myself.
ok deraadt@
|
|
and adjust variable types to get correct behavior
ok beck@ millert@
|
|
reliability has improved, and other repair methods are easier from
bsd.rd or whatnot. As a static binary ftp has limited ASLR, yet it has
7 libraries... Making it non-static means the ASLR picture improves.
Let's see who moans first.
ok miod daniel
|
|
(others require more care)
|
|
While .Cm isn't wrong markup for ftp:// and http://,
it simply looks better in this case to not mark them up at all.
|
|
* Use .Cm for keywords rather than .No.
* Simplify by using .Op rather than .Oo where it's easily possible.
* Shorten code by using .Ns rather than .Sm where it's easily possible.
* Also mark up URIs in the description, not just in the synopsis.
|
|
Found the hard way by naddy@
Joint work with beck@
|
|
ok jsing@
|
|
tls_read() fails, print the tls_error() rather than just the return value.
ok beck@
|
|
input doug@; OK beck@
|
|
This is safe because Christos did that himself in NetBSD in 2008.
No code change.
|
|
|
|
What's worse, the tzfile.h that gets installed is over 20 years old
and doesn't match the real tzfile.h in libc/time. This makes the
tree safe for /usr/include/tzfile.h removal. The TM_YEAR_BASE
define has been moved to time.h temporarily until its usage is
replaced by 1900 in the tree. Actual removal of tzfile.h is pending
a ports build. Based on a diff from deraadt@
|
|
"and" and "or" to join sentence clauses, and you can use commas, but both hinders
reading;
|
|
Before/after:
127.0.0.1 - - [25/Feb/2015:09:39:24 +0100] "GET /h%ff%ffh%ff%ff.dat HTTP/1.0" 404 162 "-" "OpenBSD ftp"
127.0.0.1 - - [25/Feb/2015:09:39:27 +0100] "GET /h%c3%a9h%c3%a9.dat HTTP/1.0" 200 0 "-" "OpenBSD ftp"
Additionnally, avoid one case of undefined behaviour with ctype.h.
Input from guenther@, ok millert@
|
|
tls_config_insecure_noverifyname(), so that it is more accurate and keeps
inline with the distinction between DNS hostname and server name.
Requested by tedu@ during s2k15.
|
|
|
|
|
|
was only called if -S was used. Fixes TLSv1.0/1.1. Problem reported by nigel@,
ok jsing
|
|
that includes all currently supported protocols (TLSv1.0, TLSv1.1 and
TLSv1.2). Change all users of libtls to use TLS_PROTOCOLS_ALL so that they
maintain existing behaviour.
Discussed with tedu@ and reyk@.
|
|
the socks support seems to be dead, since there are no other references.
also, redeclaring a standard function? that's a no-no.
custom compiles with gate-ftp servers don't need to be supported either.
ok deraadt
|
|
allows removing sys/param.h include as well.
|
|
i removed/reworded these as in the case of ftp.1 it read badly anyway, and
for fstat.1 it meant i could zap an escape sequence; while here i replaced
some sequences of <space><tab> where a single <tab> was sufficient;
|
|
service, you'll need to stick with openbsd 5.6.
bonus: remove references to ebcdic.
ok deraadt
|
|
possible. Annotate <sys/param.h> lines with their current reasons. Switch
to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_NAME_MAX, etc. Change
MIN() and MAX() to local definitions of MINIMUM() and MAXIMUM() where
sensible to avoid pulling in the pollution. These are the files confirmed
through binary verification.
ok guenther, millert, doug (helped with the verification protocol)
|
|
work when using a https proxy because of a missing host header.
Remember the host form the url and write it into the http request.
Fix the format string when using Proxy-Authorization together with
Cookie. Also write the http request to the debugging output to
see what is going on.
input jca@; OK sthen@ mpi@
|
