| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-01-07 | Move sndiod man page to section 8. | Alexandre Ratchov | |
| suggested by deraadt, fixes from jmc, ok millert | |||
| 2015-12-25 | follwing -> following | Anthony J. Bentley | |
| 2015-12-25 | Don't set (unused) IPV6_V6ONLY option. | Alexandre Ratchov | |
| suggested by deraadt | |||
| 2015-12-23 | Add pledge calls to both "helper" and "worker" processes. | Alexandre Ratchov | |
| ok deraadt, semarie | |||
| 2015-12-23 | fix false-positive "uninitialized" gcc warning | Alexandre Ratchov | |
| 2015-12-23 | Call getpwname() earlier, and if it fails, return the proper | Alexandre Ratchov | |
| exit code, so that the failure gets reported by /etc/rc. | |||
| 2015-12-23 | hide forgotten debug printfs | Alexandre Ratchov | |
| 2015-12-21 | Don't attempt to remove unix socket as it's owned by root and | Alexandre Ratchov | |
| we've already dropped root privileges. | |||
| 2015-12-20 | In case of a bug in sndiod, an attacker (a local user) could run | Alexandre Ratchov | |
| arbitrary code as user _sndio, i.e. get a second uid. Mitigate the risk by implementing initial privilege separation as follows. Break sndiod in two processes: a chroot()ed "worker" process processing input, and a non-chroot()ed "helper" process opening devices and passing descriptors to the worker. With help from benno, claudio, semarie and gilles. ok benno, semarie and tb | |||
| 2015-12-14 | Work on a copy of the slowaccept flag instead of the global one as | Alexandre Ratchov | |
| it could change somewhere in the poll() loop. | |||
| 2015-12-07 | reset the slowaccept flag in sock_close() | Alexandre Ratchov | |
| 2015-11-26 | Cleanup in the opposite order as initialization, inline privdrop() | Alexandre Ratchov | |
| function. No behaviour change. | |||
| 2015-11-25 | fix latest: don't set d->path as we just allocated it | Alexandre Ratchov | |
| 2015-11-25 | Allocate device names in the heap, so they can be generated. | Alexandre Ratchov | |
| 2015-11-25 | spacing | Alexandre Ratchov | |
| 2015-11-24 | remove unused test when handling of -U option | Alexandre Ratchov | |
| 2015-11-23 | define port_log even without -DDEBUG | Alexandre Ratchov | |
| 2015-11-23 | Remove unused -M option (2+ years get used to it is enough) | Alexandre Ratchov | |
| 2015-11-23 | If the clock is ticking because of a MMC start message, then stop | Alexandre Ratchov | |
| it on exit. This avoids holding an extra ref to the device, in turn preventing sndiod from exitting cleanly. | |||
| 2015-11-23 | Save and restore umask when creating /tmp/aucat/ to ensure the | Alexandre Ratchov | |
| directory gets the right permissions, as we do in other places. | |||
| 2015-11-23 | use device numbers stored in the dev structure rather than | Alexandre Ratchov | |
| assuming dev_list is ordered | |||
| 2015-11-23 | Insert new ports at the head of the list and stop assuming its | Alexandre Ratchov | |
| ordered. | |||
| 2015-11-22 | Disallow multiple -L options and remove the constraint -U to | Alexandre Ratchov | |
| be used before -L. No behaviour change as -L is still disabled. | |||
| 2015-11-22 | save port number if port structure | Alexandre Ratchov | |
| 2015-11-18 | missing word; from jan stary | Jason McIntyre | |
| 2015-11-18 | disable networking (i.e. -L option) until privilege separation is | Alexandre Ratchov | |
| implemented | |||
| 2015-11-18 | say that network communication is not secure | Alexandre Ratchov | |
| 2015-10-02 | Replace %s in the format string, with its value (macro). | Alexandre Ratchov | |
| 2015-10-02 | As the socket path is known, use its size rather that PATH_MAX. | Alexandre Ratchov | |
| 2015-10-02 | use macros instead of hard-coded strings for unix sockets paths | Alexandre Ratchov | |
| 2015-09-05 | In the last commit, the man-page change was committed by mistake, | Alexandre Ratchov | |
| backit out. | |||
| 2015-09-05 | typos in comments: xfree -> free | Alexandre Ratchov | |
| 2015-08-27 | backout previous for now, as it causes me portability problems | Alexandre Ratchov | |
| 2015-08-11 | Use INTIM instead of -1 as poll(2) time-out argument. | Alexandre Ratchov | |
| Suggested by deraadt. | |||
| 2015-08-11 | Don't call poll(2) with few millisecond time-out argument when -1 | Alexandre Ratchov | |
| could be used. Avoids syscalls when the daemon is not being used. Requested by deraadt. | |||
| 2015-08-01 | Move processing of polled files in its own function, and call it | Alexandre Ratchov | |
| twice: once for files that need immediate handling, and once for files that would block. No behavior change. | |||
| 2015-07-24 | Crank watchdog timeout from 2 to 4 seconds. | Alexandre Ratchov | |
| 2015-07-24 | Log when device is disconnected. | Alexandre Ratchov | |
| 2015-07-24 | Clear watchdog timer when device is closed, fixes use-after-free in | Alexandre Ratchov | |
| error code-paths when device is closed before audio is stopped. | |||
| 2015-07-17 | Use an offsets in the array of pollfd structures instead of pointers. No | Alexandre Ratchov | |
| behaviour change. | |||
| 2015-07-17 | rename nfds to max_nfds, no object change | Alexandre Ratchov | |
| 2015-07-17 | Move non-debug varibles outside #ifdef DEBUG block | Alexandre Ratchov | |
| 2015-07-17 | Simplify debug info: log poll descriptors on a single line, record | Alexandre Ratchov | |
| timestamps only when they are needed. | |||
| 2015-07-17 | Stop using interval timers (not inherited by fork(2), obsolete in | Alexandre Ratchov | |
| newer posix releases), use the poll(2) timeout parameter instead. Fixes hangs during clean-up after the audio device is disconnected or an unrecoverable error is detected. Suggested by and discussed with millert@. | |||
| 2015-04-26 | Fix typo in the buffer size value: 7680 in the manpage vs 7860 in | David Coppa | |
| the sndiod.c code. Initially, I thought the error was in the manpage, but Alexander told me it was the code, so fix the code instead. ok ratchov@ | |||
| 2015-02-16 | Check if slot is NULL, and if so, drop the connection. For now slot | Alexandre Ratchov | |
| is never NULL, but this is an accident. | |||
| 2015-02-16 | add missing protos, fix spacing | Alexandre Ratchov | |
| 2015-02-16 | Allow files to be skipped in the poll(2) event loop, in case | Alexandre Ratchov | |
| there are events already available (for immediate processing) | |||
| 2015-02-16 | Use signed integers as offset in the buffer (as aucat does) to | Alexandre Ratchov | |
| avoid other signed integer being accidently promoted to unsigned in future code. | |||
| 2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt | |
| possible. Annotate <sys/param.h> lines with their current reasons. Switch to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_NAME_MAX, etc. Change MIN() and MAX() to local definitions of MINIMUM() and MAXIMUM() where sensible to avoid pulling in the pollution. These are the files confirmed through binary verification. ok guenther, millert, doug (helped with the verification protocol) | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |