| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-11-17 | include fix. dbm is ndbm and memory is string. ok deraadt. | Ted Unangst | |
| 2015-11-17 | pledge() esposes a design issue in bgpd that will take a moment to | Sebastian Benoit | |
| get right, so disable the pledge() call in bgpd (parent process) for now. ok deraadt@ | |||
| 2015-11-17 | pledge "stdio rpath wpath cpath getpw flock". | Theo de Raadt | |
| "getpw" for user_from_uid, spotted by benno | |||
| 2015-11-17 | no more pac; | Jason McIntyre | |
| 2015-11-17 | fix memory leak; from David CARLIER | Theo de Raadt | |
| 2015-11-17 | delete setgid kmem (comments) from a different era | Theo de Raadt | |
| 2015-11-17 | off to the bitbucket in the sky | Theo de Raadt | |
| 2015-11-17 | Sensors marked as invalid should be excluded by snmpd(8) from the sensors | Gerhard Roth | |
| MIB just as sysctl(8) excludes them from the 'hw.sensors' tree. OK mikeb@, stehn@ | |||
| 2015-11-17 | in the SE, loosing the pipe to the main process can be handled with a | Sebastian Benoit | |
| normal shutdown of sessions and exit. no need for fatal(). ok henning@ phessler@ florian@ happy deraadt@ | |||
| 2015-11-17 | clean headers | Theo de Raadt | |
| 2015-11-16 | Replace remaining calls to index(3) with strchr(3). OK jca@ krw@ | Todd C. Miller | |
| 2015-11-16 | improve logging slightly | Ted Unangst | |
| 2015-11-16 | the list insertion needs to occur right after we get a valid socket, | Ted Unangst | |
| as that is the hint that the request is on the list. | |||
| 2015-11-16 | fix log messages, from jan stary | Ted Unangst | |
| 2015-11-16 | delete setuid code (which we disabled in 2002) | Theo de Raadt | |
| ok guenther millert | |||
| 2015-11-16 | Remove remaining instances of the register keyword. | mmcc | |
| ok deraadt@ | |||
| 2015-11-15 | Clean up the remaining uses of stderr and perror() and use warn/err | Todd C. Miller | |
| and/or syslog depending on whether stderr is hooked up at the time. Also remove closelog() which is not needed since we are headed for exec. OK guenther@ | |||
| 2015-11-15 | pledge "stdio rpath wpath cpath fattr getpw flock id proc exec" at the | Theo de Raadt | |
| top. It is a lot, maybe someone will take the time to find smaller chunks later in the program. tested by jca | |||
| 2015-11-15 | Really silly to chmod "st_mode & 07777" when making a copy of the | Theo de Raadt | |
| group file, like entirely missing the point. ok jca | |||
| 2015-11-15 | Remove more register keywords. | mmcc | |
| ok daniel@, discussed on hackers@ | |||
| 2015-11-15 | pledge for ypldap is easy because it's purely a network program. | Jonathan Matthew | |
| One process talks to yp clients, one talks to ldap servers, one does dns. ok deraadt@ | |||
| 2015-11-14 | Cleanup from unifdef: set sact.sa_flags to SA_RESTART instead of | Todd C. Miller | |
| clearing it and then ORin in SA_RESTART. | |||
| 2015-11-14 | Remove log_it() and call syslog(3) directly using the same format: | Todd C. Miller | |
| "(username) WHAT (details)". Logs due to normal operation (e.g. crontab operations or running commands) are logged at LOG_INFO like before. Actual errors are logged at LOG_ERR, less important things are logged at LOG_WARNING OR LOG_NOTICE. Also ignore SIGHUP now that there is no log file to reopen. | |||
| 2015-11-14 | pledge "stdio inet sendfd" before entering main loop in network speaking | Theo de Raadt | |
| child. (All those I asked to test timed out before commit, so now they get to test for real...) | |||
| 2015-11-14 | remove the machine arch from Dt - this file gets installed on more | Jason McIntyre | |
| than one arch; ok schwarze | |||
| 2015-11-14 | these files document their config files too: adjust NAME accordingly; | Jason McIntyre | |
| ok schwarze | |||
| 2015-11-13 | pledge "stdio rpath dns" right at the start of the servicing loop. | Theo de Raadt | |
| Commiting to gather reports. | |||
| 2015-11-13 | apmd doesn't connect to the socket, it binds on it; tweak error message | Jeremie Courreges-Anglas | |
| 2015-11-12 | use symbolics for flags to open | Theo de Raadt | |
| from Ricardo Mestre | |||
| 2015-11-12 | daemon() equivelant should open /dev/null; ok millert | Theo de Raadt | |
| 2015-11-12 | new location for cron sockets; ok millert | Jason McIntyre | |
| 2015-11-12 | Use absolute paths in pathnames.h. There is no longer a need to | Todd C. Miller | |
| chdir(2) to the cron dir and cron(8) now changes to / via daemon(3). We no longer try to create/chmod the spool directories as they should be set correctly at install time. The setegid(crontab) has been moved to open_socket() so it is closer to the chmod(2) call that needs it. OK deraadt@ tedu@ | |||
| 2015-11-12 | Remove repeat of getpwnam() that is not needed at all. | Theo de Raadt | |
| 2015-11-12 | pledge the bgpd main process. Some of the promises can be improved upon | Sebastian Benoit | |
| with a bit of rework, so comment why they are needed. ok deraadt@ | |||
| 2015-11-12 | spaces | Theo de Raadt | |
| 2015-11-12 | Remove SIGNALS section now that the non-syslog code has been removed. | Todd C. Miller | |
| 2015-11-12 | Move cron socket to /var/run/cron.sock. Client code will try the old | Todd C. Miller | |
| location if the new one doesn't exist for now. In order to allow the fchown() to succeed, cron now sets its effective gid to crontab. OK jca@ deraadt@ | |||
| 2015-11-12 | an invalid carp link state is not a fatal error, since a while newly created | Otto Moerbeek | |
| carp interfaces have this state for a while. ok mpi@ phessler@ | |||
| 2015-11-11 | Use warn/warnx and err/errx. OK jca@ | Todd C. Miller | |
| 2015-11-11 | Niether cron nor crontab need flock permission. | Todd C. Miller | |
| 2015-11-11 | Remove obsolete utime() call. It predates the use of a socket to | Todd C. Miller | |
| prod cron into checking the spool dir. | |||
| 2015-11-11 | Fix spool dir mode check to avoid extraneous chmod() calls. | Todd C. Miller | |
| 2015-11-11 | bottom end of spamdb is just "stdio rpath wpath" | Theo de Raadt | |
| originally from ricardo mestre, but diff was cut down a bit | |||
| 2015-11-11 | For "crontab -u user -e" change the euid for the mkstemp() call | Todd C. Miller | |
| instead of calling fchown() after the fact. Fixes a pledge() issue. OK semarie@ | |||
| 2015-11-11 | exit on pledge failure, oops | Theo de Raadt | |
| 2015-11-11 | claudio twice told me pledge "stdio rpath dns" is probably enough. | Theo de Raadt | |
| He'll test it next time he builds... | |||
| 2015-11-11 | exit() after perror() for pledge failure. Perhaps this got introduced | Theo de Raadt | |
| as a test idiom, either when pledge was young or during the transition to strings.... dunno | |||
| 2015-11-10 | kill the whitespace.. kill the whitespace.. | Theo de Raadt | |
| 2015-11-10 | With ikectl now requiring ca specific sections not present in the | Jonathan Gray | |
| general openssl cnf files install the ikeca.cnf file. ok sthen@ requested by reyk@ | |||
| 2015-11-09 | Remove unused xpid argument to log_it(). | Todd C. Miller | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |