| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-09-10 | Drop syspatch_trap, it's simple enough for trap no needing its own function. | Antoine Jacoutot | |
| Introduce sp_err() which will get used for error messages. | |||
| 2016-09-10 | apply_patches should not take any arguments. | Antoine Jacoutot | |
| Few tweaks while here. | |||
| 2016-09-10 | missing fclose() in an error path | Jonathan Gray | |
| 2016-09-10 | fix an fd leak in an error path | Jonathan Gray | |
| 2016-09-08 | Streamline the daemon shutdown sequence. | Eric Faurot | |
| Only the parent process handles SIGTERM and SIGINT. Upon receiving one of those, it closes all imsg sockets and waitpid() for the children. It fatal()s if one of the sockets is closed unexpectedly. Other processes exit() "normally" when one of the imsg sockets is closed. ok gilles@ sunil@ | |||
| 2016-09-08 | new sign only when new sign | Marc Espie | |
| 2016-09-07 | strlen + emalloc + snprintf = asprintf | Michal Mazurek | |
| Written with and ok tb@ | |||
| 2016-09-07 | Get rid of the static nomem() function and replace it with err(1, NULL); | Michal Mazurek | |
| Written with and ok tb@ | |||
| 2016-09-07 | Minimal man page. | Antoine Jacoutot | |
| 2016-09-07 | Don't fetch all patches at once but instead fetch+verify+patch one by one. | Antoine Jacoutot | |
| 2016-09-07 | Don't put bsd.mp twice in the GENERIC.MP rollback tarball. | Antoine Jacoutot | |
| 2016-09-07 | syspatch goal is not to act as a package manager but to sync the system to the | Antoine Jacoutot | |
| corresponding stable. So prevent rollbacking a specific binpatch but instead always rollback the latest one. It's the only way we can know the system is consistent. discussed with halex@ jasper@ robert@ | |||
| 2016-09-07 | Validate service names with _rc_check_name() from rc.subr. | Antoine Jacoutot | |
| ok sthen@ robert@ | |||
| 2016-09-07 | Fix about the default value of pptp-hostname. It's an empty string. | YASUOKA Masahiko | |
| Reported by Joe Holden. | |||
| 2016-09-06 | use closefrom() before reexec to make sure the new process only gets | Eric Faurot | |
| the imsg socket. ok gilles@ sunil@ | |||
| 2016-09-06 | Drop useless variable and check. | Antoine Jacoutot | |
| 2016-09-06 | Greatly simplify patch type detection and make things more generic. | Antoine Jacoutot | |
| 2016-09-06 | Backport unbound r3830/3831 from upstreadm, fixing an issue where it can | Stuart Henderson | |
| become unresponsive and need to be restarted following a connectivity outage. From Brad, ok florian@ r3831 | wouter | 2016-08-23 04:49:01 -0400 (Tue, 23 Aug 2016) | 3 lines - Fix #804: lower num_target_queries for iterator also for failed lookups. r3830 | wouter | 2016-08-23 04:30:12 -0400 (Tue, 23 Aug 2016) | 3 lines - Fix #804: unbound stops responding after outage. Fixes queries that attempt to wait for an empty list of subqueries. | |||
| 2016-09-06 | Sort and set readonly global vars. | Antoine Jacoutot | |
| 2016-09-06 | heck, have new signatures be -Dnewsign until we flip the switch | Marc Espie | |
| 2016-09-06 | Mention PAGER behavior when undefined/empty. | Antoine Jacoutot | |
| from Michael Reed ok jmc@ | |||
| 2016-09-06 | remove code that allows pkg_create to sign | Marc Espie | |
| 2016-09-06 | some indent; from michael reed | Jason McIntyre | |
| 2016-09-05 | We do not compile things -g by default | Theo de Raadt | |
| 2016-09-05 | this file cannot be kept accurate | Theo de Raadt | |
| 2016-09-05 | Make sure the file exists before putting it in the rollback tarball. | Antoine Jacoutot | |
| 2016-09-05 | Missing local. | Antoine Jacoutot | |
| Shorter var name. | |||
| 2016-09-05 | use a for loop for mtree for the two spec files | Robert Nagy | |
| and add a better comment ok ajacoutot@ | |||
| 2016-09-05 | No need to install the /var/syspatch/$REL directory, the binpatch does it ↵ | Antoine Jacoutot | |
| for us. Put /var/syspatch into a variable, it's used more than 10 times. prodded by robert@ | |||
| 2016-09-05 | Welcome syspatch(8), a binary patch management utility for the base system. | Antoine Jacoutot | |
| This is currently a POC, maybe it will become something, maybe not. Therefore it will not be hooked to the build before we are happy with it. Workflow would be something like: - fetch and verify signed tarballs containing the patched binaries from a mirror - create a rollback tarball of the files we are about to replace - extract and install the patched files *** BIG FAT RED DISCLAIMER *** This is very much WIP, it does *NOT* work, don't bikeshed, don't use it! "get it in" deraadt@ | |||
| 2016-09-05 | forgot to provide an empty method | Marc Espie | |
| 2016-09-04 | The smtpd processes are not expected to ever leave their event loop. | Eric Faurot | |
| So stop pretending that the *_shutdown() functions could ever be called in this context, and just fatal() if event_dispatch() returns. ok gilles@ sunil@ giovanni@ | |||
| 2016-09-04 | forgot to regen | Florian Obser | |
| 2016-09-04 | Add format attribute to logger functions. | Florian Obser | |
| Add syslog_debug to keep in sync with others. Input & OK benno@ | |||
| 2016-09-04 | Add format attribute to logger functions. | Florian Obser | |
| Fix format string while here. Input & OK benno@ | |||
| 2016-09-04 | Add format attribute to logger functions. | Florian Obser | |
| Input & OK benno@ | |||
| 2016-09-04 | put signify errors alongside ftp | Marc Espie | |
| 2016-09-04 | signature tracking bases: stored signed status inside object, so that | Marc Espie | |
| we don't erroneously get "signature" comments from unsigned packages. force the gzip object to get its header. So if it can't something wrong happened. for now, we just know shit happened... | |||
| 2016-09-04 | basic scaffolding to ask signify to check stuff | Marc Espie | |
| still missing some proper error reporting | |||
| 2016-09-04 | Avoid double negations in tests. | Jeremie Courreges-Anglas | |
| ok krw@ | |||
| 2016-09-04 | A few bits of stray leading/embedded/trailing whitespace spotted while | Kenneth R Westerback | |
| stealing code. | |||
| 2016-09-04 | Remove the "smtpctl stop" command. | Eric Faurot | |
| The daemon is stopped with kill(1). ok gilles@ | |||
| 2016-09-03 | log IP/hostname for all SMTP operations. | Giovanni Bechis | |
| patch from Pavel Korovin, thanks ok gilles@ | |||
| 2016-09-03 | remove dead code | Gilles Chehade | |
| 2016-09-03 | rearrange code: traceroute.c now only contains main() and usage(), | Sebastian Benoit | |
| worker.c contains all other functions, and i tracked down which global variables are used in which file and marked them accordingly with static (or not). No functional change, just the basis of further work. ok florian@, deraadt@ | |||
| 2016-09-03 | Some .h files are not needed | Theo de Raadt | |
| 2016-09-03 | partial rewrite of the tcp/tls option parts: the trouble was | Jason McIntyre | |
| with options which accepted a "no" prefix, it was difficult to see what was enabled and what was disabled; ok reyk (claudio ok'd an earlier version of the diff too) | |||
| 2016-09-03 | typos | Jeremie Courreges-Anglas | |
| 2016-09-03 | Simplify shutdown process. | Renato Westphal | |
| On shutdown, there's no need to use kill(2) to kill the child processes. Just closing the IPC sockets will make the children receive an EOF, break out from the event loop and then exit. Tha advantages of this "pipe teardown" are: * simpler code; * no need to pledge "proc" in the parent process; * removal of a (hard to trigger) PID reuse race condition. ok benno@ claudio@ | |||
| 2016-09-03 | Rework the sending of address messages. | Renato Westphal | |
| * Respect the session's negotiated maximum pdu length and split the sending of our local addresses into multiple messages if necessary; * Log sent/received addresses; * Add new wrappers to send only one address (send_address_single) and to send all addresses of the given address-family (send_address_all). These wrappers create a temporary list of addresses to be sent, and send_address() then acts on this last. | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |