src - OpenBSD base system

Age	Commit message (Collapse)	Author
2015-11-11	exit() after perror() for pledge failure. Perhaps this got introduced	Theo de Raadt
	as a test idiom, either when pledge was young or during the transition to strings.... dunno
2015-11-10	kill the whitespace.. kill the whitespace..	Theo de Raadt

2015-11-10	With ikectl now requiring ca specific sections not present in the	Jonathan Gray
	general openssl cnf files install the ikeca.cnf file. ok sthen@ requested by reyk@
2015-11-09	Remove unused xpid argument to log_it().	Todd C. Miller

2015-11-09	Update CRONDIR comment to reality.	Todd C. Miller

2015-11-09	Rename AT_DIR -> AT_SPOOL and SPOOL_DIR -> CRON_SPOOL to improve	Todd C. Miller
	readability.
2015-11-09	Use fstatat() when checking the files in the at queue so we	Todd C. Miller
	don't need to chdir to the queue dir. OK guenther@
2015-11-09	Remove -h from the command line options.	YASUOKA Masahiko
	diff from Benjamin Baier
2015-11-09	queue(3) instead of homegrown queues and lists. This also fixes	Todd C. Miller
	some potential memory leaks in error paths. OK guenther@
2015-11-08	Set the effective gid to kmem so the fchown of kvm_bsd.db is allowed	Todd C. Miller
	by pledge(2). This requires pledge "id" but that can be dropped immediately after the setegid() call. From Theo Buehler
2015-11-08	Quiet silly clang analyzer warning in calloc() usage.	Todd C. Miller

2015-11-07	Ensure the safety of isprint()'s argument. Suggested by guenther@ a few	mmcc
	weeks ago.
2015-11-06	Use __progname instead of the homegrown ProgramName.	Todd C. Miller

2015-11-06	"source" doesn't need to be a global. While here, the correct spelling	Florian Obser
	is NULL. Noticed while trying to hoist the source address selection from traceroute into ping / ping6.
2015-11-06	relayd.conf(5) macro cleanup.	Anthony J. Bentley
	- use <> instead of \(Lt and \(Gt - use <> instead of Aq (Aq is not the same as <> in a UTF-8 locale) - replace Ar usage when appropriate - mark up RTP_STATIC with Dv with input from jmc@ schwarze@, ok schwarze@
2015-11-06	Radically improve the performance of bgpd filters. Based on PF's skip	Peter Hessler
	steps (and uses much of the same code). In a torture test of ~600k prefix filters and 65k prefixes, convergance time goes from 35 minutes to 30 seconds. Many thanks to LONAP for providing a base configuration for torture testing. many discussions with claudio@, benno@, sthen@ and the rest of the bgpd crowd OK sthen@ benno@
2015-11-06	the Solver uses kept_names, so we need these there too	Marc Espie
	found by aja@
2015-11-06	Use pledge in ikectl. For now one request for sending imsgs to iked	Jonathan Gray
	another request for the ca portion. ok deraadt@
2015-11-06	err(1, "%s", "") -> err(1, NULL)	mmcc
	Discussed with schwarze@
2015-11-05	undo botched import to wrong dir, spotted by sobrado@	Stuart Henderson

2015-11-05	merge	Stuart Henderson

2015-11-05	update to unbound 1.5.6, ok millert@ florian@	Stuart Henderson

2015-11-05	merge	Stuart Henderson

2015-11-05	update to NSD 4.1.6, ok millert@ florian@	Stuart Henderson

2015-11-05	pledge(2) for slowcgi.	Florian Obser
	After initialization slowcgi accepts from a AF_UNIX socket, forks and execs. After fork we only need to close(2), chdir(2) and exec. OK benno@
2015-11-05	re-shuffle slowcgi_listen to run less code as root.	Florian Obser
	OK benno@
2015-11-05	pledge(2) for httpd.	Florian Obser
	1) The main process listens on sockets and accepts connections. It creates and opens log files, creates and kills child processes. On start up and on receiving a HUP signal it parses the configuration. It passes on file descriptors for logging or requests to it's children. 2) The logger process writes log messages to a file descriptor passed in from the main process. 3) The server process reads the request from a file descriptor passed in from the main process. It reads a file or creates a directory index to send a response. Additionally this process handles fastcgi requests. It connects to AF_UNIX, AF_INET or AF_INET6 sockets. A re-factoring might make it possible to drop the additional fastcgi privileges when only static files are served. with deraadt@ some time ago prodding & OK deraadt@ tweaks and OK reyk@
2015-11-05	Account for the header size when dealing with null link layer ifaces.	Jeremie Courreges-Anglas
	From Kevin Reay, ok sthen@
2012-03-26	Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).	Stuart Henderson
	These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2010-01-15	NSD v3.2.4	Jakob Schlyter

2015-11-05	there is a retry path in here which contains rename() and fchown().	Theo de Raadt
	Use a slightly larger pledge, earlier on. from gregor best
2015-11-05	revert sys/kern/kern_pledge.c 1.103 and reenable pledge in pwd_mkdb	Sebastien Marie
	ok deraadt@
2015-11-05	quick fix for a regression introduced by sys/kern/kern_pledge.c 1.103	Sebastien Marie
	ok benno phessler
2015-11-05	tweak dependencies handling, might fix some infrequent bugs including the	Marc Espie
	infamous cups bug. - look for candidates in the whole new set first. Yep, that includes kept packages (should make things slightly faster, I expect) - correctly remove caching of list of installed packages outsides of old packages from the current set each time we revisit the set (looking at the old behavior this actually sounds very likely).
2015-11-05	replace u_char and u_int* with standard stdint.h types to ease portable version	Joerg Jung
	also remove trailing whitespaces while here no binary change ok sunil millert gilles
2015-11-05	Print unsigned integers as unsigned integers, kill inconsistent casts.	Jeremie Courreges-Anglas
	Initial diff by Kevin Reay.
2015-11-05	Cap the GRE packet len to tcpdump's snap len, fixes a segfault.	Jeremie Courreges-Anglas
	From Kevin Reay, ok sthen@
2015-11-05	When fetching the GRE version, use GRE_VERS and not a naked "7" as mask.	Jeremie Courreges-Anglas
	From Kevin Reay
2015-11-05	spelling; from tj	Jason McIntyre
	while here, knock out a double rcs id
2015-11-05	spelling; from tj	Jason McIntyre

2015-11-05	"commandline" -> "command line", since there are so few examples	Jason McIntyre
	of the former in the pages, so many of the latter, and in some of these pages we had multiple spellings; prompted by tj
2015-11-05	Implement smtpctl uncorrupt <msgid>	Sunil Nimmagadda
	"uncorrupt" moves envelopes from corrupt bucket back to the queue for further discovery by the daemon. After correcting the corrupt envelopes, admin could now... # smtpctl uncorrupt msgid # smtpctl discover msgid to schedule the messages. Ok gilles@
2015-11-05	Do not terminate message walk on a corrupt envelope.	Sunil Nimmagadda
	Ok gilles@
2015-11-05	when a message consists solely of headers and does not end them with an	Gilles Chehade
	empty line, the message parser gets confused, and forgets to flush last header to message file. detect if we're still in headers when hitting EOM, and flush if that is the case. reported by Philipp Takacs <philipp@bureaucracy.de> ok millert@, jung@, sunil@, eric@
2015-11-04	replace setbuf with setvbuf, from Frederic Nowak	Ted Unangst

2015-11-04	Change cron from including all headers in every file to only including	Todd C. Miller
	what each .c file needs. I have not removed cron.h since it will be used in a future clean up of the cron's .h files. OK nicm@
2015-11-04	Bump distribution tarball versions.	mmcc

2015-11-04	Remove unused LogFD variable	Todd C. Miller

2015-11-04	Change some globals from extern to static when they are not used	Todd C. Miller
	outside their respective .c files. Also remove some unused defines. OK jung@
2015-11-04	fix a memory leak in multiple error paths	Jonathan Gray
	ok krw@