summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* drop setgid kmem. If you want to play with eeprom, you generallyderaadt2015-03-112-11/+2
| | | | | need to be root ok miod
* Convert to if_input(), tested by jasper@, thanks!mpi2015-03-111-13/+5
|
* Convert to if_input().mpi2015-03-111-13/+7
| | | | Tested and ok armani@
* adjust for removal of expr (and while here, sort all these lists, with thederaadt2015-03-1121-83/+116
| | | | goal of eventually refactoring them)
* expr no longer needed on media, because the scripts always use ksh builtins.deraadt2015-03-112-9/+2
| | | | halex, rpe, and todd cleared the way for this.
* If this is going to use sync, it should use the sync + sleep idiom.deraadt2015-03-111-2/+2
| | | | | Yes, this is stupid, but MI installboot later will make the problem go away. Until then..
* Remove setgid kmem support. As a result, -d and -v will require you toderaadt2015-03-112-17/+6
| | | | | run this as root. ok millert, also discussed with guenther
* 'rc.firstime' -> 'rc.firsttime' in comment.krw2015-03-111-2/+2
| | | | Diff from Navan Carson via tech@
* When interpreting the -O argument as a macro name fails,schwarze2015-03-111-3/+4
| | | | | fall back to showing Nd rather than not showing anything. Issue reported by jmc@.
* Fix previous: size_t is often narrower than off_t.schwarze2015-03-111-2/+2
| | | | Cluestick applied by joerg at NetBSD.
* Match on 3160. Untested but should work.jsg2015-03-111-1/+3
| | | | ok stsp@ kettenis@
* Point people to local-zone and stub-zone in unbound.conf and explainflorian2015-03-111-4/+14
| | | | | | | when this can be used. tweaks ian@ OK ratchov@, sthen@ seems more useful to millert@
* set-titles-string now uses formats, not the status bits (so no #() fornicm2015-03-111-5/+5
| | | | now). Reported by landry.
* tweak wording; "a value different to 1" -> "...other than 1", from Sevan Janiyansthen2015-03-111-3/+3
|
* Remove unused type definitions.mpi2015-03-111-7/+1
| | | | ok miod@
* port the idea of using clock_gettime(CLOCK_MONOTONIC) for measuringdlg2015-03-111-6/+18
| | | | | | | | | | | | | | | | intervals from src/sbin/ping/ping.c r1.115. > use clock_gettime(CLOCK_MONOTONIC) to get timestamps to measure the > interval between sending a ping and getting a reply for it. > > this makes it resistant against local wall clock changes, which can > skew the intervals reported or make them go negative. this version puts clock_getting in a local gettime() function that converts to a struct timeval that all the previous callers of gettimeofday expect to get. requested by deraadt@ florian@
* port src/sbin/ping/ping.c r1.115.dlg2015-03-111-3/+9
| | | | | | | | | | > use clock_gettime(CLOCK_MONOTONIC) to get timestamps to measure the > interval between sending a ping and getting a reply for it. > > this makes it resistant against local wall clock changes, which can > skew the intervals reported or make them go negative. requested by deraadt@ florian@
* use clock_gettime(CLOCK_MONOTONIC) to get timestamps to measure thedlg2015-03-111-3/+9
| | | | | | | | | | interval between sending a ping and getting a reply for it. this makes it resistant against local wall clock changes, which can skew the intervals reported or make them go negative. ok deraadt@ florian@ makes sense to lots of others
* add back the changes from rev 1.206, djm reverted this by mistake injsg2015-03-111-2/+5
| | | | rev 1.207
* Set verbosity to 1 (the default is 0) so we log incoming notifiesmillert2015-03-101-1/+2
| | | | and zone xfers. OK florian@ deraadt@
* Remove unused static local variable; mickey@miod2015-03-101-3/+1
|
* Invoke va_end() before returning, rather than in an unreachable place; mickey@miod2015-03-101-3/+4
|
* Make the amd64 pmap (more) mpsafe by protecting both the pmap itself and thekettenis2015-03-102-31/+52
| | | | | | | | | | | pv lists with a mutex. Rearange some code to avoid sleeping/spinning with one of these locks held, and also take care that we don't allocate/free any memory in that case. This should make pmap_enter(9), pmap_remove(9) and pmap_page_protect(9) safe to use without holding the kernel lock. Other architectures will follow. ok mlarkin@, deraadt@
* Disable db file. It is believed to be a saner default for the commonflorian2015-03-101-1/+2
| | | | | | | use case. sthen@ noticed a problem with missing records on shutdown. OK sthen@
* Convert to if_input().mpi2015-03-101-15/+5
| | | | Tested and ok sthen@, ok dlg@
* The st_size member of struct stat is off_t, which is signed,schwarze2015-03-101-2/+2
| | | | | all required by POSIX. So don't compare it against against an unsigned constant.
* We can keep track of the pager PID without additional complexity.schwarze2015-03-101-27/+23
| | | | | No functional change for now, but more robust in case anybody should ever add additional child processes.
* Convert to if_input().mpi2015-03-101-8/+5
| | | | ok dlg@, kettenis@
* Convert to if_input(), tested an ok kettenis@.mpi2015-03-101-15/+9
|
* Fix a regression caused in rev. 1.118, reported by kristaps@:schwarze2015-03-101-4/+22
| | | | | | | | | | | | When using a pager and the first manual shown is gzip'ed, the gunzip(1) process ended up as a child of the pager process such that the man(1) process couldn't wait for it, preventing proper display of the manual. Solve this by making the pager a child of the man(1) process (instead of the other way round), which requires being a bit more careful about properly closing file descriptors after use and waiting for the pager before exiting man(1).
* Display "Search wrapped" even when searching from the end of the file.bentley2015-03-101-3/+4
| | | | | | From Zhihao Yuan. ok millert@ miod@
* Explicitly cast when assigning from char * to unsigned char * and vice versa.schwarze2015-03-092-5/+5
| | | | For example, gcc 4.7 wants this with -Wall. Patch from kristaps@.
* If my calculations are correct, when this baby hits 5.8... you're gonna seemiod2015-03-091-3/+3
| | | | some serious shit.
* make the worm grow faster on larger terminals. this is more fun thantedu2015-03-092-6/+12
| | | | starting with an enormous pile of worm at the start.
* In wdcintr, do not attempt to read the status register unless WDCF_IRQ_WAITmiod2015-03-091-10/+10
| | | | | | | is not set; this used to be the case but got broken in 1.113. Fixes pciide0 at pci0 dev 2 function 0 "Acard ATP865-R" rev 0x07: DMA on armish (I/O Data).
* Avoid doing IPv6 SLAAC for prefixes with preferred lifetime of zeromikeb2015-03-091-4/+5
| | | | | | | | | RFC 4941 says in 3.3.5: "In particular, an implementation MUST NOT create a temporary address with a zero Preferred Lifetime." OK sthen, henning, benno
* Fix vertical spacing at the beginning of tables.schwarze2015-03-093-12/+7
| | | | | | man(7) always prints a blank line, mdoc(7) doesn't. Problem in mdoc(7) reported by kristaps@. mdoc(7) part of the patch tested by kristaps@.
* In mdoc(7), don't mistreat negative .sp arguments as large positive ones.schwarze2015-03-091-4/+7
| | | | Instead, use the same logic as for man(7).
* prevent the skipvsp flag from creeping past actual textschwarze2015-03-092-1/+3
|
* Flush the line preceding a table before clearing the right margin,schwarze2015-03-091-3/+4
| | | | | such that that line isn't output with unlimited width. Problem reported and fix OK by kristaps@.
* Make relayd TLSv1.2-only by default.reyk2015-03-092-10/+9
| | | | | | | | | | | | OK krw@ benno@ Based on revision 1.66 of usr.sbin/httpd/parse.y: Make httpd TLSv1.2-only by default. Some older browsers, like IE 10, will be incompatible with this change. We do this early in the release cycle, so there is a good chance to get more experience with the impact of it and the upcoming restricted cipher modes. OK jsing@ deraadt@ benno@ bmercer@ krw@ florian@
* Document the TLSv1.2-only change.reyk2015-03-091-5/+5
| | | | Figured out sthen@
* Make httpd TLSv1.2-only by default. Some older browsers, like IE 10,reyk2015-03-091-2/+2
| | | | | | | | will be incompatible with this change. We do this early in the release cycle, so there is a good chance to get more experience with the impact of it and the upcoming restricted cipher modes. OK jsing@ deraadt@ benno@ bmercer@ krw@ florian@
* make -DSHORTENED the default: don't update unless there is an actualespie2015-03-092-7/+7
| | | | | | change in dependencies: shared library versions, and explicit version requirements in dependencies. as discussed with aja@ before the lock.
* Switch pv entries over to a pool in preparation for making the i386 (more)kettenis2015-03-091-302/+42
| | | | | | | | | | | | | mpsafe. Most (all?) other architectures now use pools for this, including non-direct pmap architetcures like sparc and sparc64. Use a special back-end allocator for pool pages to solve bootstrapping problems. This back-end allocator allocates the initial pages from kernel_map, switching to the uvm_km_page allocator once the pmap has been fully initialized. The old pv entry allocator allocated pages from kmem_map. Using the uvm_km_page allocator avoids certain locking issues, but might change behaviour under kva pressure. Time will tell if that's a good or a bad thing. ok mlarkin@, deraadt@
* Fix comment grammarguenther2015-03-091-2/+2
|
* Unrevert post-unlock:guenther2015-03-0910-127/+700
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Prevent an archive from esacaping the current directory by itself: when extracting a symlink whose value is absolute or contains ".." components, just create a zero-length normal file (with additional tracking of the mode and hardlinks to the symlink) until everything else is extracted, then go back and replace it with the requested link (if it's still that zero-length placeholder). * For tar without -P, if a path in the archive has any ".." components then strip everything up to and including the last of them (if it ends in ".." then it becomes ".") This mostly follows GNU tar's behavior, except for 'tar tf' and 'tar xvf' we report the modified path that would be/was actually created instead of the raw path from the archive Above two fixes prompted by a report from Daniel Cegielka (daniel.cegielka (at) gmail.com) * For directories whose times or mode will be fixed up in the clean-up pass, record their dev+ino and then use open(O_DIRECTORY)+fstat() to verify that we're updating the correct directory before using futimens() and fchmod(). * Correct buffer overflow in handling of pax extension headers, caught by the memcpy() overlap check. previously ok millert@ deraadt@
* use new "make -C" to avoid extra shells.espie2015-03-081-7/+7
| | | | okay millert@ miod@
* Fix some format specifiers in debug code.krw2015-03-082-4/+4
| | | | | | | Pointed out by Kor son of Rynar (sic) when trying to test some debug code. ok matthew@
* Reject DH keys sent by a server if they are considered too small; inspiredmiod2015-03-083-40/+28
| | | | | by a similar BoringSSL change, but raising the limit to 1024 bits. ok jsing@ markus@ guenther@ deraadt@
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.