Age | Commit message (Collapse) | Author |
|
as a test idiom, either when pledge was young or during the transition
to strings.... dunno
|
|
|
|
ok deraadt
|
|
|
|
(adding proc exec), now that "exec" has arrived in the kernel. This
permits the dangerous game of feeding ed-style diffs with popen() via
/bin/ed. Shocked yet? Your mission, should you choose to accept it,
is to replace this code with an builtin ed-style patcher, maybe cribbing
code from ed itself.
I'm sorry, but we can't fix the entire world all at once. Noone loves
deprecating standarized features as much as we do, but there are some
lines. Maybe if people become aware of how crappy the implimentations
of some standard features are, they could help decide the path.
|
|
fork+execve, and execve is not going to become available in this fashion.
ed diffs should be handled using a built-in handler, and various folks
have been discussing this behind the scenes.
|
|
/bin/ed. This is RETARDED. Nothing learned from the last year?
Add tame "proc" until that is fixed, to allow fork+exec.
I beg for someone to cross-link the guts of ed directly into patch, or
write a ed-subset which can do the job.
|
|
in case of exploitation, no more network access, fork, execve, etc.
I wonder if we could use whitepath lists here - if it is reasonable to
limit operation in directories known early on?
|
|
commands might contain a newline in the replacement pattern (escaped
with a backslash before it), causing patch's understanding of the
state the ed child process is in to diverge from reality. This can
lead to patch unwillingly feeding '!' (execute shell command) lines
to ed. From Martin Natano. OK deraadt@
|
|
behavior is confusing to users and even GNU patch no longer does
it by default. OK krw@ guenther@
|
|
"and" and "or" to join sentence clauses, and you can use commas, but both hinders
reading;
|
|
|
|
possible. Annotate <sys/param.h> lines with their current reasons. Switch
to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_NAME_MAX, etc. Change
MIN() and MAX() to local definitions of MINIMUM() and MAXIMUM() where
sensible to avoid pulling in the pollution. These are the files confirmed
through binary verification.
ok guenther, millert, doug (helped with the verification protocol)
|
|
Prevents arbitrary ed command executions in following lines.
ok millert
|
|
case of out of memory conditions, Plan B can step in. In many cases, NULL
value is not properly handled, so use xstrdup here (it's outside Plan A/B
patching, which means that even Plan B relies on successful operations).
|
|
by supporting arbitrarily long lines just like Plan A does.
ok tedu
|
|
|
|
|
|
|
|
Also fixes an out of boundary memory access because the resulting values
are used as array indices.
ok millert
|
|
no signs, no spaces, just digits, 0 <= x <= LONG_MAX
ok millert, otto
|
|
a specific version.
ok millert
|
|
even have in ports. XSI functionality of POSIX, therefore optional.
ok deraadt, schwarze, tedu
|
|
interesting it has no impact on the maintainance of this stuff.
ok tobias
|
|
ok millert, otto
|
|
suggested by bluhm@.
ok schwarze@
|
|
ok millert, otto
|
|
Replace malloc() and realloc() calls that may have integer overflow in the
multiplication of the size argument with reallocarray().
ok deraadt@
|
|
Also, in 'ftp', always put the error message last, after the hostname/ipaddr.
ok jsing@ krw@ millert@
|
|
and is no longer optional;
|
|
ok krw
|
|
|
|
ok millert@
|
|
dragonflybsd via Loganaden Velvindron. OK mikeb@ and deraadt@
|
|
ok deraadt@
|
|
Needed after the recent mmap(2) change.
ok ariane@
|
|
|
|
is currently done in the latest versions of GNU patch.
Please watch out for output appearing out-of-order.
Discussed with millert and deraadt.
OK deraadt
|
|
From Igor Zinovik; thanks!
ok stsp@, millert@
|
|
unmaintainable). these days, people use source. these id's do not provide
any benefit, and do hurt the small install media
(the 33,000 line diff is essentially mechanical)
ok with the idea millert, ok dms
|
|
have the exit code indicate failure, not success.
Discrepancy with GNU patch pointed out by Arfrever Frehtes Taifersar Arahesis.
Help from and ok djm@, "sounds good to me" millert@
|
|
|
|
updates to follow;
|
|
|
|
years ago is not correct if the diff has an empty context for other
reasons, so revert that change. Problem found by Joerg Sonnenberger;
ok tedu@ millert@
|
|
ok millert
|
|
of date for ever (no ksh builtins), and since we have two shells, pointing
to one page or the other is never going to work; so remove MLINKS for
csh(1); the cd(1) and wait(1) pages (also builtins); and update any trailing
Xr's;
please, there are tools like whence, man, and locate for finding this stuff;
ok deraadt miod
|
|
|
|
|
|
- note that some apps are optional to posix
after some discussion w/ otto
|