Age | Commit message (Collapse) | Author |
|
specific programm or host. It does not make sense to truncate the
string from the config at some character from a list. Just take
whatever the user specified as progname or hostname. If it contains
funky charactes it will not match and the action is not taken. This
fixes matching with IP addresses if syslogd is started with -n.
OK semarie@
|
|
|
|
pointed out by deraadt@
|
|
ok deraadt jung phessler
|
|
{Free,Net}BSD
- when a socket is closed with fds in its input, defer closing them to
a task to avoid recursing. This eliminates the complicated extra
reference taking which had a 37 line(!) comment explanation
- move flags, counts, and links only needed for this from struct file to
struct unpcb
- document the flow of the mark/sweep collector
much help from claudio@ who made me explain the GC to him until we trusted it
ok claudio@ mpi@ deraadt@
|
|
|
|
|
|
itself. For this it uses the original arguments of main(). The
function loghost_parse() modifies the optarg memory it is operating
on. To prevent that the exec arguments have been tampered, pass a
copy of optarg to loghost_parse().
OK deraadt@
|
|
address strings instead of strl{cpy,cat}(). Also make the function
return a valid string even in failure case.
input deraadt
ok deraadt
|
|
ok yasuoka@
|
|
we can use struct timespec throughout and avoid any conversion
issues which might cause jobs to fire prematurely. Secondly, it
eliminates a race condition that could delay us taking action on
SIGCHLD and SIGHUP. OK deraadt@ okan@ ratchov@
|
|
it is behind the size limit. As msg is not NUL-terminated in this
case, it depended on memory content wether syslogd will crash. So
using memcpy() and setting the NUL explicitly is the correct way.
OK deraadt@
|
|
Also use `return' instead of exit(3) in main().
Patch from Michael Reed
ok jmc
|
|
Patch from Michael Reed
|
|
Put /usr/share/sysmerge under XXX.
|
|
3 rotations so that we have history of modified files.
In batch mode, when a file cannot be handled automatically, remove it from
the checksum file so that the next interactive sysmerge(8) run will ask
to merge the changes.
ok rpe@
|
|
requested by several
discussed with deraadt@
|
|
variables to handle the "packed" binary format passed out to userland
when querying the prefix/router list. From NetBSD (Martin Husemann).
ok mpi@
|
|
drop the reply messages when "check icmp" is used with many hosts.
ok reyk benno
|
|
Found by deraadt@
OK blambert@
|
|
handling the HTTP methods in server_http.c which resulted in a 405
method not allowed error when trying to use it.
Fix by jaminh on github
|
|
|
|
no sneakiness detected by krw
|
|
|
|
ok millert krw
|
|
of u_intN_t) and replace u_int with unsigned int. Mixing both
variants is a bad style and most contributors seem to prefer this
style; it also helps us to get used to it, portability, and
standardization.
Theoretically no binary change, except one in practice: httpd.o has a
different checksum because gcc with -O2 pads/optimizes "struct
privsep" differently when using "unsigned int" instead "u_int" for the
affected members. "u_int" is just a typedef of "unsigned int", -O0
doesn't build the difference and clang with -O2 doesn't do it either -
it is just another curiosity from gcc-land.
OK semarie@
|
|
for guenther@
|
|
sockets out of.
for guenther@
|
|
instead of exiting on an unknown write failure, close the client
connection on EPIPE from write and warn and close the connection
on any other failure.
ok jmatthew@
|
|
|
|
Based on previous observation by semarie@
|
|
|
|
Pointed out by semarie@
|
|
|
|
|
|
OK jsg@
|
|
the environment has been removed in LibreSSL. This was a good step
but it unintentionally broke the "ikectl ca" commands. Rework the
implementation for copying the .cnf files and expanding the $ENV::
variables ourselves before passing the generated .cnf file to the
"openssl" command.
Reported and tested by Jona Joachim (thanks!)
OK jsg@
|
|
|
|
|
|
might return a negative number; the return value of match_error()
which returns (-1). This was technically a bug, and it exists in 5.8,
but there is no impact because the error is correctly catched with the
returned non-NULL error string.
Found by Leandro Pereira
|
|
|
|
missed the fact that res_hnok() will consider an empty string as valid.
|
|
is used, this is what the world expects, this is what other MTA do.
|
|
|
|
|
|
ok sthen@
|
|
- a if condition don't set errno
- strlcpy(3) don't set errno (no mention is man page)
- ca_readpass() already manage errno error message with warn(3)
ok sthen@
|
|
work again.
Should solve the +REQUIRED_BY problem hopefully.
|
|
than < for the comparison. Otherwise, if we don't do enough work
in the loop to advance the clock (for instance if the network is
down) we may end up calling poll() multiple times with no timeout,
racking up CPU time for no real reason. OK bcook@
|
|
|