summaryrefslogtreecommitdiff
path: root/usr.sbin/ntpd
AgeCommit message (Expand)Author
2015-12-29Don't assume fprintf() will set the FILE * error condition.Todd C. Miller
2015-12-19No need for an extra log.hReyk Floeter
2015-12-19Switch and sync to the log.c variant from httpd/relayd/iked/snmpd/vmd.Reyk Floeter
2015-12-19Move log_sockaddr() to from log.c to util.c as it is a local additionReyk Floeter
2015-12-05EAGAIN handling for imsg_read. OK henning@ benno@Claudio Jeker
2015-11-24Cache values from getpwnam() done at initialization, which need to beTheo de Raadt
2015-11-20use RMS for jitter. we're linking with enough libraries that libm is tiny.Ted Unangst
2015-11-19Simplify all instances of get_string() and get_data() using malloc() andmmcc
2015-11-17fix memory leak; from David CARLIERTheo de Raadt
2015-10-31fully revert some parts introduced with the original server rtable support,Christian Weisgerber
2015-10-30drop unused define; ok reyk@Christian Weisgerber
2015-10-30Remove support for sending status reports to syslog on SIGINFO;Reyk Floeter
2015-10-25the DNS process was not discarding & redirecting stdin/out/err toTheo de Raadt
2015-10-23Rather than re-opening the driftfile to write, keep it open; rewindingTheo de Raadt
2015-10-23Allowing upstream servers of ntp being in multiple routing tables isPeter Hessler
2015-10-12Move execution of the constraints from the ntp to the parent process.Reyk Floeter
2015-10-10pledge "dns rw" is not a reliable pattern. This means malloc() and otherTheo de Raadt
2015-10-09the ntp engine can run with "stdio inet proc". For many reasons,Theo de Raadt
2015-10-09Once the constraint engine process is running, it only needsTheo de Raadt
2015-10-09Change all tame callers to namechange to pledge(2).Theo de Raadt
2015-10-05this process deserves -fstack-protector-allTheo de Raadt
2015-10-03the ntp dns process only needs tame "dns rw" to operate. at least,Theo de Raadt
2015-10-03In the ntpctl(1) case, after it has connect()'d to ntpd we can tame "stdio"Theo de Raadt
2015-09-10fix type and return check for tls_read/write.Bob Beck
2015-09-10fix after libtls api changesBob Beck
2015-09-09Fix memory leak in error path when max length exceeded.Todd C. Miller
2015-08-28Xr ntpctl; from Rob PierceTheo de Raadt
2015-08-14When checking whether we should scan the sensors again use <= ratherTodd C. Miller
2015-07-18Handle short writes and TLS_{READ,WRITE}_AGAIN around tls_write().Alexander Bluhm
2015-07-18prevent the tls constraint state machine from getting hung on STATE_INVALIDBrent Cook
2015-07-18replace _PATH_DEVNULL with "/dev/null", assume it will not moveBrent Cook
2015-07-18replace bzero with memsetBrent Cook
2015-05-28detect crashes from constraint sub-processes, instead of ignoring them.Theo de Raadt
2015-05-25only scan sensors if they are configuredTheo de Raadt
2015-05-21No need to call tzset() and log_init() in the forked constraintReyk Floeter
2015-05-20Remove hotplug(4) sensor support: the code has been disabled byReyk Floeter
2015-05-19Get the rdomain from the newly exposed ifi_rdomain field in if_dataReyk Floeter
2015-05-18Currently, after 4 failed constraint checks, we suspect the constraintReyk Floeter
2015-05-18Simplify example constraints URL to reduce load on the server side.Darren Tucker
2015-05-17When resolving the "constraint" (singular), store all returned IPReyk Floeter
2015-04-21fix a memory leak if tls_read() fails. ok henning@Jonathan Gray
2015-03-28Avoid overflow on 32-bit time_t systems converting timeval to NTP time.Brent Cook
2015-03-26do not encourage random uppercasing;Jason McIntyre
2015-03-24instead of routing SIGHUP thru sighdlr_dns() which then ignores it,Henning Brauer
2015-03-14remove unused 'cause' string when checking child statusBrent Cook
2015-03-14mention TLS HTTPS here also; ok bcookTheo de Raadt
2015-03-11-s is not optional, sadly;Jason McIntyre
2015-03-02remove unused variableBrent Cook
2015-02-22Rename tls_config_insecure_noverifyhost() toJoel Sing
2015-02-22Set the TLS ciphers to "compat" mode, restoring the previous behaviour.Joel Sing