CVSROOT:/cvs
Module name:src
Changes by: guent...@cvs.openbsd.org2015/10/13 22:55:17
Modified files:
usr.sbin/tcpdump: Makefile setsignal.c setsignal.h tcpdump.c
Log message:
Remove conditional compilation and #defines around signal handling
Don't catch signals th
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 22:05:43
Modified files:
sys/kern : kern_pledge.c
Log message:
pledge "tty" can allow ioctl TIOCEXCL on a tty
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 22:03:01
Modified files:
usr.sbin/arp : arp.c
Log message:
I messed up reading the call graph. -d delete does use search, so a
late pledge is not possible in this way.
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 21:27:02
Modified files:
sys/kern : kern_pledge.c
Log message:
sendmsg() is allowed to pass cmsg's which are not CMSG_RIGHTS - last
refactoring inverted the checks; spotted by sthen in ping6
CVSROOT:/cvs
Module name:src
Changes by: k...@cvs.openbsd.org2015/10/13 18:19:05
Modified files:
usr.sbin/installboot: installboot.c installboot.h util.c
Log message:
Backout last. Breaks sparc64, amoung other dubiousness.
requested by deraadt@
CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2015/10/13 17:30:42
Modified files:
usr.bin/mandoc : mandoc.c
regress/usr.bin/mandoc/char/unicode: input.out_ascii
input.out_lint
CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2015/10/13 16:57:49
Modified files:
usr.bin/mandoc : cgi.c chars.c html.c html.h libmandoc.h main.c
main.h mandoc.h mandocdb.c read.c roff.c term.c
t
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2015/10/13 16:14:51
Modified files:
regress/usr.bin/sort: stests
Log message:
Call the sort program through $SORTPROG, as intended; OK millert@
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2015/10/13 14:57:46
Modified files:
sys/dev/usb: ugen.c
Log message:
Prevent a NULL-pointer dereference when closing a ugen(4) node
in case the kernel failed to change the interface of a device.
Found t
CVSROOT:/cvs
Module name:src
Changes by: mill...@cvs.openbsd.org 2015/10/13 14:55:37
Modified files:
lib/libc/stdlib: realpath.c
Log message:
In rev 1.15 the sizeof argument was fixed in a strlcat() call but
the truncation check immediately following it was not updated to
CVSROOT:/cvs
Module name:src
Changes by: l...@cvs.openbsd.org2015/10/13 14:10:09
Modified files:
usr.bin/mg : dired.c
Log message:
Check if a file name can be extracted from a line before marking for
deletion.
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 14:00:49
Modified files:
sys/kern : kern_pledge.c
Log message:
3 more headers required for one stinking inet6 ioctl..
CVSROOT:/cvs
Module name:src
Changes by: sas...@cvs.openbsd.org 2015/10/13 13:32:32
Modified files:
sys/net: pf.c pf_ioctl.c pf_lb.c pfvar.h
Log message:
- pf_insert_src_node(): global argument (arg6) is useless, function
always gets pointer to rule.
- pf_remove
CVSROOT:/cvs
Module name:src
Changes by: ajacou...@cvs.openbsd.org 2015/10/13 12:52:56
Modified files:
usr.sbin/sysmerge: sysmerge.sh
Log message:
sm_error() already does the exit for us.
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 12:42:06
Modified files:
sys/kern : kern_pledge.c
Log message:
Allow ioctl SIOCGNBRINFO_IN6 in case of "route", for use by ndp.
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 12:38:34
Modified files:
sys/kern : kern_pledge.c
Log message:
NET_RT_FLAGS must also accept a proto selection.
CVSROOT:/cvs
Module name:src
Changes by: tob...@cvs.openbsd.org 2015/10/13 11:07:05
Modified files:
regress/usr.bin/patch: Makefile
Added files:
regress/usr.bin/patch: t17.diff t17.in t17.out
Log message:
Test t16 for ed-formatted diffs does not contain a substi
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2015/10/13 10:55:03
Modified files:
usr.bin/sort : sort.c
Log message:
Ignore the setuid/setgid/sticky bits when copying the permissions of an input
file to the new output file. In preparation for pledge(2
CVSROOT:/cvs
Module name:src
Changes by: tob...@cvs.openbsd.org 2015/10/13 10:37:17
Modified files:
usr.bin/diff : diffreg.c
Log message:
Replace our /^\.\././ expression with /.//. The term is simpler and has
the same meaning in our diff ed-context.
As a bonus, our e
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2015/10/13 10:31:08
Modified files:
lib/libssl/src/crypto/asn1: asn1.h
Log message:
Put ASN1_dup() under #ifndef LIBRESSL_INTERNAL.
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 10:30:55
Modified files:
usr.sbin/syslogc: syslogc.c
Log message:
After the socket is open, the remainder is just io operations.
Use pledge "stdio".
CVSROOT:/cvs
Module name:src
Changes by: flor...@cvs.openbsd.org 2015/10/13 10:26:54
Modified files:
sbin/ping6 : ping6.c ping6.8
Log message:
Remove -b flag and let ping6 set the socket buffer size automatically
like ping.
Suggested by deraadt@, OK dlg
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2015/10/13 10:21:42
Modified files:
usr.bin/sort : sort.c
Log message:
-C and -c allow at most one input file. Ensure this is the case when the
input files are specified through --files0-from.
OK millert@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2015/10/13 10:15:22
Modified files:
usr.bin/ssh: sshconnect2.c
Log message:
apply PubkeyAcceptedKeyTypes filtering earlier, so all skipped
keys are noted before pubkey authentication starts. ok dtucker@
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 10:09:24
Modified files:
sys/kern : kern_pledge.c
Log message:
allow getsockopt IP_RECVDSTPORT & IPV6_RECVDSTPORT for an "inet" pledge
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 09:55:44
Modified files:
usr.sbin/kvm_mkdb: kvm_mkdb.c
Log message:
semarie points out i am already forgetting the rules are very tight around
*chown, even "proc fattr" won't let you do such a job
CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2015/10/13 09:50:15
Modified files:
usr.bin/mandoc : Makefile mandocdb.c mansearch.c tag.c
Added files:
usr.bin/mandoc : mandoc_ohash.c mandoc_ohash.h
Log message:
Reduce the amount of code
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 09:43:19
Modified files:
usr.sbin/kvm_mkdb: kvm_mkdb.c
Log message:
oops, a chown appears late on the code. to satisfy this pledge
"stdio rpath wpath cpath getpw fattr proc" early on; "proc fattr
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2015/10/13 09:25:18
Modified files:
lib/libssl/src/crypto/ec: ec.h ec_lib.c
lib/libssl/src/doc/crypto: ec.pod
Log message:
Convert ECParameters_dup() from a macro that uses ASN1_dup_of() into an
act
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 09:12:53
Modified files:
usr.sbin/netgroup_mkdb: netgroup_mkdb.c
Log message:
pledge "stdio rpath wpath cpath", full path handling to satisfy dbopen()
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 09:15:30
Modified files:
sbin/newfs_ext2fs: newfs_ext2fs.c
Log message:
can pledge "stdio" after opening device.
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 09:11:48
Modified files:
usr.sbin/crunchgen: crunchgen.c
Log message:
pledge "stdio rpath wpath cpath proc exec". creates files throughout
it's lifetime, and often runs a pipe through "cpp"
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 09:14:26
Modified files:
libexec/lockspool: lockspool.c
Log message:
pledge "stdio rpath wpath cpath fattr"; fattr due to locking code borrowed
from mail.local
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2015/10/13 09:10:30
Modified files:
usr.bin/mklocale: yacc.y
Log message:
pledge "stdio rpath wpath cpath"
CVSROOT:/cvs
Module name:src
Changes by: s...@cvs.openbsd.org2015/10/13 08:36:15
Modified files:
usr.sbin/tcpdump: Makefile print-802_11.c
Log message:
Don't use exp2f(), it breaks build on vax. Use a shift instead.
reported by deraadt@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2015/10/13 08:03:26
Modified files:
lib/libssl/src/crypto/x509: x_all.c
Log message:
Convert a number of the old ASN1_{d2i,i2d}_{bio,fp}_of() macros to
ASN1_item_{d2i,i2d}_{bio,fp}() function calls.
ok beck
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2015/10/13 07:59:45
Modified files:
regress/lib/libtls/gotls: tls_test.go
Log message:
Single byte read/write tests.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2015/10/13 07:58:33
Modified files:
regress/lib/libtls/gotls: tls.go tls_test.go
Log message:
Add test coverage for peer certificate info and connection info.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2015/10/13 06:56:20
Modified files:
regress/lib/libtls/gotls: tls.go
Log message:
Make regress work again post hackathon tls_handshake/tls_read/tls_write
changes.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2015/10/13 06:31:06
Modified files:
lib/libssl/src/crypto/dsa: dsa.h
Log message:
Group d2i/i2d function prototypes by type and add missing externs for the
DSAPublicKey, DSAPrivateKey and DSAparams ASN1_ITEM
CVSROOT:/cvs
Module name:src
Changes by: mill...@cvs.openbsd.org 2015/10/13 06:25:04
Modified files:
lib/libc/stdio : printf.3
Log message:
Sync printf family return value with ISO C which specifies that
these functions return a negative value on failure.
OK doug@ deraadt
CVSROOT:/cvs
Module name:src
Changes by: e...@cvs.openbsd.org2015/10/13 05:32:47
Modified files:
usr.sbin/smtpd : smtp_session.c
Log message:
Add a helper for writing the message to simplify the code.
It also fixes the reported message length by taking prepended
heade
CVSROOT:/cvs
Module name:src
Changes by: gil...@cvs.openbsd.org 2015/10/13 05:03:30
Modified files:
usr.sbin/smtpd : queue.c
Log message:
pledge() queue process
ok deraadt@
CVSROOT:/cvs
Module name:src
Changes by: gil...@cvs.openbsd.org 2015/10/13 04:59:04
Modified files:
usr.sbin/smtpd : control.c
Log message:
pledge() control process
ok deraadt@
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2015/10/13 04:29:16
Modified files:
sys/netinet: ip_input.c
sys/netinet6 : ip6_input.c
Log message:
Make use of rtisvalid(9) to check if local route entries match existing
configured addressse
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2015/10/13 04:21:27
Modified files:
sys/netinet: if_ether.c
Log message:
Simplify arptfree() to no longer look at the route entry's refcounter.
ARP entries with an expired timeout are now removed from t
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2015/10/13 04:16:17
Modified files:
sys/netinet: ip_output.c
sys/netinet6 : in6_src.c
Log message:
Use rtisivalid(9) to check if the given (cached) route can be used.
Note that after calling
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2015/10/13 03:59:38
Modified files:
sys/net: route.c
Log message:
Make sure RTF_LOCAL route entries are UP when added to the tree.
This is required to maintain the original BSD behavior of locally
c
CVSROOT:/cvs
Module name:src
Changes by: guent...@cvs.openbsd.org2015/10/13 03:11:48
Modified files:
sys/kern : vfs_subr.c
Log message:
Initialize va_filerev in vattr_null() to avoid leaking stack garbage;
problem pointed out by Martin Natano (natano (at) na
CVSROOT:/cvs
Module name:src
Changes by: guent...@cvs.openbsd.org2015/10/13 02:53:43
Modified files:
usr.bin/ftp: fetch.c
Log message:
ctype functions isxdigit() expect an unsigned char value; add missing casts
and adjust variable types to get correct behavior
CVSROOT:/cvs
Module name:src
Changes by: guent...@cvs.openbsd.org2015/10/13 02:49:51
Modified files:
usr.bin/mail : aux.c def.h
Log message:
To alter just the atime of the mailspool, use utimensat()+UTIME_OMIT instead
of stat()+utimes(). Prefer clock_gettime()
CVSROOT:/cvs
Module name:src
Changes by: su...@cvs.openbsd.org 2015/10/13 02:33:06
Modified files:
usr.sbin/httpd : server_http.c
Log message:
Plug a leak.
Ok gilles@, reyk@
On Tue, Oct 13, 2015 at 02:09:25AM -0600, Gilles Chehade wrote:
> CVSROOT: /cvs
> Module name: src
> Changes by: gil...@cvs.openbsd.org 2015/10/13 02:09:25
>
> Modified files:
> usr.sbin/smtpd : scheduler.c
>
> Log message:
> pledge("stdio") the scheduler process
>
sorry, ok der
On Tue, Oct 13, 2015 at 02:07:35AM -0600, Gilles Chehade wrote:
> CVSROOT: /cvs
> Module name: src
> Changes by: gil...@cvs.openbsd.org 2015/10/13 02:07:35
>
> Modified files:
> usr.sbin/smtpd : ca.c
>
> Log message:
> pledge("stdio") the RSA-privsep process
>
sorry, ok deraadt@
CVSROOT:/cvs
Module name:src
Changes by: gil...@cvs.openbsd.org 2015/10/13 02:09:25
Modified files:
usr.sbin/smtpd : scheduler.c
Log message:
pledge("stdio") the scheduler process
CVSROOT:/cvs
Module name:src
Changes by: gil...@cvs.openbsd.org 2015/10/13 02:07:35
Modified files:
usr.sbin/smtpd : ca.c
Log message:
pledge("stdio") the RSA-privsep process
CVSROOT:/cvs
Module name:src
Changes by: gil...@cvs.openbsd.org 2015/10/13 02:06:22
Modified files:
usr.sbin/smtpd : smtpctl.c enqueue.c
Log message:
let the enqueuer pledge() in both online and offline modes
ok deraadt@
CVSROOT:/cvs
Module name:src
Changes by: r...@cvs.openbsd.org2015/10/13 01:57:13
Modified files:
usr.sbin/httpd : httpd.c server_http.c
Log message:
Pass unsigned chars to ctype functions.
>From Michael McConville
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2015/10/13 01:23:49
Modified files:
lib/libc/sys : pledge.2
Log message:
new sentence, new line;
do not Xr self;
CVSROOT:/cvs
Module name:src
Changes by: gil...@cvs.openbsd.org 2015/10/13 01:18:53
Modified files:
usr.sbin/smtpd : smtpd.c
Log message:
offline queue is no longer user-writable, do not attempt resetting fchflags
it serves no purpose.
ok millert@, ok jung@, ok eric@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2015/10/13 01:10:38
Modified files:
sbin/nologin : nologin.c
Log message:
Pledge "stdio rpath" requests for nologin.
ok deraadt@
"reads ok" semarie@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2015/10/13 01:03:26
Modified files:
usr.bin/yes: yes.c
Log message:
Obvious pledge "stdio" for yes.
ok deraadt@
62 matches
Mail list logo
