| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2015-10-09 | Rename tame() to pledge(). This fairly interface has evolved to be more |   deraadt | 4 | -16/+16 | |
| strict than anticipated. It allows a programmer to pledge/promise/covenant that their program will operate within an easily defined subset of the Unix environment, or it pays the price. | |||||
| 2015-10-09 | sync | deraadt | 5 | -31/+31 | |
| 2015-10-09 | Rename tame() to pledge(). This fairly interface has evolved to be more | deraadt | 19 | -527/+527 | |
| strict than anticipated. It allows a programmer to pledge/promise/covenant that their program will operate within an easily defined subset of the Unix environment, or it pays the price. | |||||
| 2015-10-08 | After replacement alloca() with alloc(), out-of-heap happened when booting |   yasuoka | 2 | -4/+4 | |
| on a large block size (32K) partition. Increase the HEAP_LIMIT from 0x90000 to 0xA0000. try this, deraadt | |||||
| 2015-10-08 | If getaddrinfo() succeeds, then don't try look ups with other flags, even |   guenther | 1 | -41/+39 | |
| if the connect()s failed. In concert with some resolver fixes in libc, this lets ntpd be tame()ed problem isolated by theo, who had fun untangling the libc and libtls behaviors to place blame for not being able to tame ntpd ok beck@ deraadt@ jsing@ | |||||
| 2015-10-08 | Expose a small set of multicast join operators under the request "mcast". | deraadt | 2 | -3/+20 | |
| This will be used by a few daemons. If they lack this feature, then they would need to operate without tame. Discussed with renato | |||||
| 2015-10-08 | add some tame calls. we may need a bunch of permissions to create files |   tedu | 1 | -1/+27 | |
| and manipulate the tty for readpassphrase, but once we've parsed options and have some idea of what's going to happen next, we can reduce down quite a bit more. particular use case of "signify | patch" is limited to feeding garbage to patch. | |||||
| 2015-10-08 | stop trying to gift history files to the original owner. instead, don't | tedu | 1 | -7/+6 | |
| open history files that don't belong to us. probably much safer. ok deraadt | |||||
| 2015-10-08 | Lock the page queues by turning uvm_lock_pageq() and uvm_unlock_pageq() into |   kettenis | 4 | -6/+10 | |
| mtx_enter() and mtx_leave() operations. Not 100% this won't blow up but there is only one way to find out, and we need this to make progress on further unlocking uvm. prodded by deraadt@ | |||||
| 2015-10-08 | little cleanup from Michael McConville, mostly related to stale comments. | tedu | 1 | -20/+12 | |
| 2015-10-08 | Refactor fileprefix() and filecopy() to use warn() instead of err() |   krw | 6 | -43/+92 | |
| to display error message, and to return error indications (NULL and -1 respectively). Use the error indications in write_efisystem() to unwind in the face of more error conditions. In other cases just exit(1) to emulation current behaviour. ok deraadt@ | |||||
| 2015-10-08 | tame "stdio rpath wpath cpath proc exec". make is a shell, and appears | deraadt | 1 | -1/+4 | |
| to only need these operations. Take note that "exec" is a 2-day old tame request, so do get a new kernel before you update or risk getting trapped. | |||||
| 2015-10-08 | 16 years after E801 memprobe was disabled, probably safe to delete it. | tedu | 2 | -130/+4 | |
| ok deraadt jung kettenis ratchov | |||||
| 2015-10-08 | Remove the sc_soft_req_cnt field because the number of tx requests is |   visa | 2 | -41/+9 | |
| already tracked in sc_sendq. Replace the sc_flush logic with a simple Fetch-and-Add store that avoids an unnecessary IOBDMA transaction. ok uebayasi@ | |||||
| 2015-10-08 | tweak previous; |   jmc | 1 | -4/+4 | |
| 2015-10-08 | fix conditionals |   eric | 2 | -4/+4 | |
| ok deraadt@ | |||||
| 2015-10-08 | portmap's main process can be tame "stdio rpath inet proc"; proc is | deraadt | 1 | -1/+8 | |
| for the callit interface needing to fork, and parent needing to wait. that child can drop to "stdio rpath inet". It is possible some libc/rpc codepath has not yet been figured out, but commiting it is the best way to get it tested. Tested what I could myself, but noone answered my call for testing... | |||||
| 2015-10-08 | Make sure that when trunk_port_ioctl is called to set a new |   mikeb | 1 | -5/+5 | |
| lladdr the trunk port is already on the list. OK mpi | |||||
| 2015-10-08 | Handle case where no hint is passed in. Found as a crash of fdm by jturner@ | deraadt | 2 | -4/+4 | |
| 2015-10-08 | setsockopt has a small list of options it can set. If we find ourselves | deraadt | 1 | -1/+8 | |
| only in TAME_UNIX, stop trying after servicing SOL_SOCKET. discussion with claudio | |||||
| 2015-10-08 | Only in TAME_ROUTE, allow ioctl SIOCGIFADDR/SIOCGIFFLAGS/SIOCGIFRDOMAIN, | deraadt | 1 | -1/+12 | |
| because many routing daemon processes with this attribute need to fetch that information to work. discussed with claudio and renato | |||||
| 2015-10-08 | the -P flag overwrites files, so it needs tame "stdio rpath wpath cpath". | deraadt | 1 | -1/+9 | |
| the remaining code paths can use tame "stdio rpath cpath". One again, the "cpath" request says a path-based system call will be used to "change" filesystem pathname layout, for instance any of O_CREAT, symlink, rename, unlink... | |||||
| 2015-10-08 | Simpify some code by noting that DOSBBSECTOR is 0, so "if (n > | krw | 2 | -12/+6 | |
| n+DOSBBSSECTOR) ..." is pointless, as is "n = n + DOSBBSECTOR;". | |||||
| 2015-10-08 | if the mbuf has a valid flowid, use it instead of using siphash24 |   dlg | 1 | -1/+4 | |
| and a bunch of header fields we have to parse the mbuf for. siphash24 is about 20% of the cost of sending a udp packet on a trunk interface with tcpbench on my box. if there's a flowid set we get all that back. ok mpi@ mikeb@ sthen@ | |||||
| 2015-10-08 | use the state id to set a flowid on an mbuf. | dlg | 1 | -1/+6 | |
| ok mpi@ mikeb@ sthen@ | |||||
| 2015-10-08 | steal some padding in mbuf pkthdrs to store a flow id. | dlg | 2 | -5/+24 | |
| the flowid roughly identifies a flow or connection that the mbuf is a part of, and can be used instead of hashing contents of the packet (like src+dst mac and ip addresses) to decide which path a packet should take. ok mpi@ mikeb@ sthen@ | |||||
| 2015-10-08 | Local route entries are always UP now, missed in previous. |   mpi | 3 | -3/+3 | |
| 2015-10-08 | Implement set_pages_array_wb() and set_pages_array_wc() for powerpc. Since | kettenis | 1 | -5/+7 | |
| powerpc doesn't actually implement write-combining fall back to uncached mappings. ok mpi@, jsg@ | |||||
| 2015-10-08 | Add a per-page flag to indicate that all mappings of that page should be | kettenis | 2 | -5/+8 | |
| uncached. To be used in the drm code. ok mpi@ | |||||
| 2015-10-08 | allow a test to manage itself the tame(2) call. |   semarie | 1 | -10/+14 | |
| 2015-10-08 | Unlock the softnet task. | mpi | 1 | -3/+1 | |
| ok dlg@, kettenis@ | |||||
| 2015-10-08 | fix an fd leak if socket connection fails; from Carlin Bingham |   jsg | 1 | -1/+3 | |
| ok reyk@ | |||||
| 2015-10-08 | fix a typo; from Carlin Bingham | jsg | 1 | -2/+2 | |
| 2015-10-08 | Call em_start() when we detect a link state change such that packets start | kettenis | 1 | -1/+3 | |
| flowing again even if the send queue is currently full. Restores the fix made by makeb@ in rev 1.263 which was lost in making the tx completion path mpsafe. ok mikeb@ | |||||
| 2015-10-08 | Use the radix API directly and get rid of the function pointers. There | mpi | 4 | -36/+11 | |
| is no point in keeping an unused level of abstraction. ok mikeb@, claudio@ | |||||
| 2015-10-08 | add comment, suggested by reyk |   sthen | 1 | -1/+2 | |
| 2015-10-08 | Link the result of each mps_getbulkreq() to the end of the previous list | sthen | 3 | -8/+17 | |
| and not the start of it. Fixes getbulk requests for multiple OIDs. From Gerhard Roth, ok blambert@ | |||||
| 2015-10-08 | use correct return value for IP-MIB::ipForwarding, tweak/ok uebayasi@ | sthen | 1 | -2/+2 | |
| 2015-10-08 | trailing whitespace; | jmc | 1 | -6/+6 | |
| 2015-10-08 | Try again. Both -R and -p prevent use of tame, but other cases can use it. | deraadt | 1 | -1/+9 | |
| 2015-10-08 | sync | deraadt | 1 | -0/+2 | |
| 2015-10-08 | Rip the guts out of another gibbering horror of a time comparison function, and |   beck | 4 | -74/+48 | |
| mark it as #ifndef LIBRESSL_INTERNAL at least we don't use this. ok jsing@ | |||||
| 2015-10-08 | revert previous accidental commit | beck | 4 | -46/+72 | |
| 2015-10-08 | Spelling in comment | beck | 6 | -78/+50 | |
| 2015-10-08 | ah, fchflags. We will come back to this issue later | deraadt | 1 | -6/+1 | |
| 2015-10-07 | Add tls_peer_cert_notbefore and tls_peer_cert_notafter to expose peer certificate | beck | 6 | -9/+98 | |
| validity times for tls connections. ok jsing@ | |||||
| 2015-10-07 | Allow us to get cipher and version even if there is not a peer certificate. | beck | 2 | -15/+21 | |
| ok doug@ | |||||
| 2015-10-07 | In theory, bgpd should be happy with tame "stdio unix route recvfd". | deraadt | 1 | -1/+5 | |
| Let's hear from people's experiences by commiting it. | |||||
| 2015-10-07 | use new tame "route" feature when possible | deraadt | 1 | -7/+9 | |
| 2015-10-07 | use fatal() instead of err(); from benno | deraadt | 1 | -2/+2 | |
 |
index : wireguard-openbsd | |
| WireGuard implementation for the OpenBSD kernel | Matt Dunwoodie |
| summaryrefslogtreecommitdiffstats |