| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-12-16 | Replace setpgrp(0, getpid()) with setpgid(0, 0). OK deraadt@ tedu@ | Todd C. Miller | |
| 2014-12-14 | these are no longer used, remove | Gilles Chehade | |
| 2014-12-13 | Give the mop suite the ability to process alpha Elf64 files and create mop | Miod Vallat | |
| alpha images of them. | |||
| 2014-12-13 | Add DKIM signing example based on eric@'s asiabsdcon slides | Todd C. Miller | |
| OK gilles@ jmc@ | |||
| 2014-12-12 | convert some hash tables (the easy ones) to siphash. ok benno. | Ted Unangst | |
| 2014-12-12 | Like previously done in relayd, change the keyword "ssl" to "tls" to | Reyk Floeter | |
| reflect reality. OK benno@ | |||
| 2014-12-12 | Change the keyword "ssl" to "tls" to reflect reality since we | Reyk Floeter | |
| effectively disabled support for the SSL protocols. SSL remains a common term describing SSL/TLS, there is some controvery about this change, and the name really doesn't matter, but I feel confident about it now. (btw., sthen@ pointed out some historical context: http://tim.dierks.org/2014/05/security-standards-and-name-changes-in.html) OK benno@, with input from tedu@ | |||
| 2014-12-11 | When scanning backwards for the last dot in a filename, | Ingo Schwarze | |
| stop at the '/' marking the beginning of the filename. This allows to configure a Content-Type for a filename without a dot. OK reyk@ | |||
| 2014-12-11 | merge conflicts | Brad Smith | |
| 2014-12-11 | update to Unbound 1.5.1, ok sthen@ | Brad Smith | |
| 2014-12-10 | If default file descriptors (0, 1, 2) have to be assigned to /dev/null, | Tobias Stoeckmann | |
| don't accidentally assign 3, too. ok millert, with input by and ok bluhm | |||
| 2014-12-10 | File descriptors are of type int, not short. While at it, adjust remaining | Tobias Stoeckmann | |
| short to int too -- there are no space savings anymore, as stated by millert. ok bluhm, millert | |||
| 2014-12-10 | Fix a potential integer overflow in pppd options file parsing. | Jonathan Gray | |
| From Paul Mackerras in 7658e8257183f062dc01f87969c140707c7e52cb This issue is CVE-2014-3158. | |||
| 2014-12-09 | Use memmove() instead of strlcpy() for an overlapping string copy | Todd C. Miller | |
| so we don't rely on undefined behavior. OK deraadt@ | |||
| 2014-12-09 | Catch up with the BPF_ALIGNMENT switch to the uint32_t. | Mike Belopuhov | |
| bpf aligns data following the datalink header (e.g. ethernet) on the BPF_ALIGNMENT boundary. Since rev1.41 of bpf.h it's uint32_t instead of a long. And also since then almost all packets become "unaligned" from the tcpdump perspective and require costly copies into the internal buffer. Neither IP header (struct ip) nor IPv6 (struct ip6_hdr) have fields larger than 32 bits and therefore alignment requirements for them are at most 32 bit. ok millert, jsg, deraadt | |||
| 2014-12-08 | Fix for CVE-2014-8602. | Florian Obser | |
| OK sthen@ Unfortunately you only get the dedication to support the infrastructure of the universally connected self-organizing Internet - and the autonomy of its participants iff you are a paying customer with a support contract. | |||
| 2014-12-08 | Do not send an error body in a HEAD request answer. | Florian Obser | |
| From Bertrand Janin (b at janin dot com), thanks! OK reyk@ | |||
| 2012-03-26 | Import Unbound 1.4.16 to work on in-tree (not yet linked to the build). | Stuart Henderson | |
| These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@ | |||
| 2014-12-08 | read(2) returns ssize_t, not size_t | Bret Lambert | |
| ok florian@ | |||
| 2014-12-08 | no need for arc4random_uniform() here, arc4random() does the job | Gilles Chehade | |
| spotted by deraadt@, ok eric@ | |||
| 2014-12-07 | Avoid NULL deref in error case; found with llvm. | Florian Obser | |
| OK reyk | |||
| 2014-12-07 | Fix regression for priority "none" (spotted by doug) of last commit by not | Tobias Stoeckmann | |
| parsing numbers at all -- syslog.conf(5) explicitly states that keywords have to be used. ok millert | |||
| 2014-12-06 | Verify that facility and priority numbers are in valid ranges. | Tobias Stoeckmann | |
| ok bluhm | |||
| 2014-12-05 | enable warnings | Florian Obser | |
| 2014-12-05 | Bail out if the buffer is too small to contain the length of a | Florian Obser | |
| parameter value. Found while investigating a dead store pointed out by llvm scan-build. | |||
| 2014-12-05 | dead stores; pointed out by llvm scan-build; no binary change | Florian Obser | |
| 2014-12-05 | pause shadows global; pointed out by gcc; no binary change | Florian Obser | |
| 2014-12-05 | mode is unused; pointed out by gcc; no binary change | Florian Obser | |
| 2014-12-05 | declare lerr and lerrx __dead; unconfuses llvm scan-build | Florian Obser | |
| 2014-12-04 | replace an overlapping memcpy with memmove, ok deraadt tedu | Stuart Henderson | |
| 2014-12-04 | stop viral header propagation. none of this code uses sys/hash.h | Ted Unangst | |
| from Max Fillinger | |||
| 2014-12-03 | zap extra parameter that my first read missed, because that one is constant. | Marc Espie | |
| Strangeness noticed by aja@ | |||
| 2014-12-03 | rtsol is gone | Florian Obser | |
| OK deraadt@ | |||
| 2014-12-03 | Unhook rtsol(8) and rtsold(8) from the build. | Florian Obser | |
| OK deraadt@ | |||
| 2014-12-03 | Fix off by one in check for socket path too long. From Nicolas Bedos. | Todd C. Miller | |
| 2014-12-03 | Restore packetp and snapend pointers once we're done with an incorrectly | Mike Belopuhov | |
| aligned IP/IPv6 packet so that tcpdump can print hexdump of the whole packet including the Ethernet header (if requested) and not only the IP/IPv6 part of it. ok jsg | |||
| 2014-12-03 | Fixup a crash found by jsg using the AFL fuzzer. IP and IPv6 printing | Mike Belopuhov | |
| routines should check that there's at least a complete IP/IPv6 header available in the buffer before trying to do anything else. ok jsg | |||
| 2014-12-02 | zap extra parenthesis after recent rewrite | Marc Espie | |
| from Mark Patruck | |||
| 2014-12-01 | use reallocarray() deep inside an macro ugly as sin | Theo de Raadt | |
| 2014-11-30 | much simpler checks, always enforce root/bin (or root/wheel for symlinks) | Marc Espie | |
| for files without @owner/@group annotations, independently of who you are. This should fix building-as-root for good, even without twiddling FAKE_AS_ROOT. | |||
| 2014-11-30 | interactive/progressmeter clean-up | Marc Espie | |
| 2014-11-30 | much cleaner way to handle progress meter wipes: have state methods that | Marc Espie | |
| do print something call sync_display (which does nothing by default), and override THAT one for the progressmeter case to go clear. Should sync by default now. | |||
| 2014-11-30 | get rid of some of the unadorned printfs | Marc Espie | |
| 2014-11-30 | missed some. | Marc Espie | |
| 2014-11-30 | forgot to take that out... | Marc Espie | |
| 2014-11-30 | In mopFileRead(), make sure to never increment e_cursec beyond e_nsec, so | Miod Vallat | |
| that the next call to this function will not access e_sections[] out of bounds. Repairs mopa.out(1) behaviour noticed by sebastia@ | |||
| 2014-11-30 | clear progress meter before asking questions | Marc Espie | |
| From Carlin Bingham | |||
| 2014-11-30 | Remove passing an override of INSTALL_PROGRAM to the | Brad Smith | |
| autoconf script. It doesn't seem to serve any purpose. ok sthen@ | |||
| 2014-11-29 | simplify the interactive code into its own little object with simpler | Marc Espie | |
| interface, so that most is it interactive tests vanish from the main program. | |||
| 2014-11-29 | The startup script is /etc/rc.d/nsd | Todd C. Miller | |
| OpenBSD doesn't need a /dev/log socket in the chroot for syslog to work. OK deraadt@ miod@ sthen@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |