src - OpenBSD base system

Age	Commit message (Collapse)	Author
2014-01-13	fix another chmod on permanent tempfile to respect umask.	Marc Espie

2014-01-13	have Ustar extract owners for symlinks, which isn't really important for	Marc Espie
	pkg_add, since it skips links and restores owners from the plist anyways.
2014-01-13	say something if we sign an empty repository	Marc Espie
	tweak mode on tmp signed file
2014-01-13	new signify options. from and ok espie	Ted Unangst

2014-01-12	revert back to 1.97	Peter Hessler
	There is a memory leak when using internal GZip, so switch back to the external gzip for now. OK espie@
2014-01-12	plen is unsigned	Theo de Raadt

2014-01-12	allow prev release keys for now, transition 5.4 -> 5.5 kindof requires	Marc Espie
	it.
2014-01-11	typos, from Markus Lude, thx!	Marc Espie

2014-01-11	remove extraneous D, from Markus Lude	Stuart Henderson

2014-01-11	simplify code: always extract, then install, so that initial installations	Marc Espie
	and updates are more similar.
2014-01-11	a bit of spring cleanup in advance: scrape old stuff that's not really	Marc Espie
	used.
2014-01-11	Create cleaner & less noisy makefiles, now that we've been using	Theo de Raadt
	this for 20 years. We don't need to see the splatter as much anymore.
2014-01-11	just a little TLC	Theo de Raadt

2014-01-11	Let tcpdump detect bad ICMPv6 checksums with the -v flag.	Lawrence Teo
	Tested on amd64, i386, loongson, and macppc. OK florian@
2014-01-11	Let tcpdump detect bad ICMP checksums with the -v flag.	Lawrence Teo
	Tested on amd64, i386, loongson, and macppc. OK florian@
2014-01-11	Make icmp_print() accept the length variable, which is the length of the	Lawrence Teo
	packet without the IP header. This is needed by the next commit that will allow tcpdump to detect bad ICMP checksums. Related functions like {tcp,udp,icmp6}_print() already accept this length variable, so this change makes icmp_print() consistent with them as well. This commit makes no functional change to tcpdump itself. OK florian@
2014-01-10	improve ntpctl usage so that the manual page does not need to be read	Theo de Raadt
	every time ok jmc
2014-01-10	do not list sha1 and sha256 in SEE ALSO, since md5 is already there, and	Jason McIntyre
	they're one and the same page now;
2014-01-10	likewise. this is useless	Marc Espie

2014-01-10	by popular demand, remove excessive paranoia	Marc Espie

2014-01-10	signify silent by default, don't bother working around stdout.	Marc Espie

2014-01-10	Check the return values of the strdup() calls.	Lawrence Teo
	OK deraadt@
2014-01-09	bump copyright to 2014	Marc Espie

2014-01-09	if we're re-signing, check old sig first. shouldn't sign stuff we don't	Marc Espie
	trust.
2014-01-09	with the intermediate gunzip gone, this is a simple pipe. No need for	Marc Espie
	separate handles to tweak.
2014-01-09	-C was useless with signify, report @signer identity instead (prepend	Marc Espie
	"reportedly" to make tedu happy :) )
2014-01-09	@signer makes sense only for signify, so move it there.	Marc Espie

2014-01-09	simplify a bit: pass the first SIGNER for @signer.	Marc Espie

2014-01-09	document SIGNER	Marc Espie

2014-01-09	switch to internal gzip/gunzip.	Marc Espie
	reduces the number of external processes and the complexity of the code. tested on a few select arches by tobiasu, naddy. If it breaks somewhere, tough. This one is simple to revert.
2014-01-09	tweak signing yet again. Have pkg_create automatically add signing	Marc Espie
	identities every time, and make matching identities mandatory. e.g., pkg_create and pkg_add must have matching -DSIGNER. by default, signer is derived from uname -r and role (pkg_add/fw_update), e.g., 54pkg, 54fw...
2014-01-09	Use destination bound rather than the source bound for out_line and	Martynas Venckus
	out_name. OK millert@.
2014-01-08	zap trailing whitespace;	Jason McIntyre

2014-01-08	ctype cleanup; ok gilles	Theo de Raadt

2014-01-08	synch with signify(1) paranoia	Marc Espie

2014-01-07	Asa Yeamans points out that we need to CMSG_SPACE[] for the 2nd message	Theo de Raadt
	as well. ok guenther millert
2014-01-07	severely restrict what characters can be in a signer, to make	Marc Espie
	certain it's not possible to go ../ from /etc/signify
2014-01-07	even if Ustar handles fifo and stuff gracefully, pkg contents should be more	Marc Espie
	limited...
2014-01-07	use IF_NAMESIZE as size of buffer for interface name	Gleydson Soares
	OK mpi@ deraadt@
2014-01-07	scrape support for old +COMMENT file.	Marc Espie
	8 years of backward compatibility is long enough... :)
2014-01-07	recognize special file +META	Marc Espie

2014-01-07	tedu some very old checks: we no longer have INSTALL/UNINSTALL scripts,	Marc Espie
	so we don't care whether /var/db/pkg is mounted noexec.
2014-01-07	let's verify all checksums.	Marc Espie
	I forgot about special files, since they've been extracted early, but they can be checked nonetheless. (prevents people from tampering with DESC and the like)
2014-01-07	integrate signer logic and fix resign with -DSIGNER	Marc Espie

2014-01-07	document new stuff	Marc Espie

2014-01-07	if HISTORY_DIR is defined, create a new "permanent" file during build.	Marc Espie
	this file records the sha256 of all elements in the archive, and keeps track of changes (quite simply: sha256 that were already present end up at the end of the file). Start recording these now, so that we have enough info to shuffle packages later.
2014-01-07	simplify set_modes, there's no need to stat(2) stuff, chown -1 takes care	Marc Espie
	of things.
2014-01-07	more stuff than cannot end in .libs nor partial- packages	Marc Espie

2014-01-07	... and let sign_list(\@ARGV... work too)	Marc Espie

2014-01-07	allow processing of package lists in parallel.	Marc Espie
	Turns out re-gzipping a signed package is really expensive, so turn it into several jobs with a -j option.