9b92ee03don't manipulate hdr.len, it's used internally by libutil now; ok florian@ by
otto2017-04-17 16:03:15 +0000
2a888965Change build infrastructure to allow building both gcc and clang. This doesn't actually flip the switch yet, so aarch64 continues to be the only architecture for which we build clang. by
kettenis2017-04-17 15:53:21 +0000
d58faa23Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5) that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example accordingly. by
ajacoutot2017-04-16 08:50:49 +0000
518142c9Build full mandoc.db(5) databases by default using makewhatis(8) without -Q during the build and in weekly(8). According to tests by many developers, makewhatis(8) takes a few minutes at most even on slower hardware like octeon, loongson, ALIX, RPI3, Soekris, cubox, softiron etc., and security(8) is often worse than makewhatis(8). by
schwarze2017-04-15 13:12:08 +0000
c732ec16mark newish phony targets as phony. okay tb@ by
espie2017-04-14 21:37:15 +0000
80c2ebadallow clearing less than allocated and document freezero(3) better by
otto2017-04-13 18:32:55 +0000
e87e9156SipHash_Final() was assuming the digest was 64-bit aligned, resulting in misaligned memory accesses with armv7 ramdisk -Os bsd.rd ping ok florian millert by
deraadt2017-04-12 17:41:49 +0000
30940c3fNew strstr() implementation from musl libc by Rich Felker. This version uses the two-way string matching algorithm and is faster than the old implementation. With this change, ports that check for strstr having linear complexity time strstr will no longer replace the libc strstr with a private version. OK deraadt@ espie@ by
millert2017-04-12 16:06:12 +0000
9e0fddd8Use freezero(3) for the imsg framework in imsg_free(3) and ibuf_free(3). by
reyk2017-04-11 09:57:19 +0000
dc395db8tweak previous; by
jmc2017-04-10 06:31:31 +0000
92d2cf9dIntroducing freezero(3) a version of free that guarantees the process no longer has access to the content of a memmory object. It does this by either clearing (if the object memory remains cached) or by calling munmap(2). ok millert@, deraadt@, guenther@ by
otto2017-04-10 05:45:02 +0000
5c2fb1a0- localize the if, file and stat variables which also ensures that variables are not named like commands. - change test from [] to [[]] by
rpe2017-04-08 08:33:05 +0000
e222a11aMinimize differences in ifstart() function between netstart and install.sub which makes it easier to spot changes in the future. by
rpe2017-04-07 22:53:25 +0000
adcd971bAlign comments of ifstart() function in netstart and install.sub. by
rpe2017-04-07 22:15:17 +0000
f3eefc05Align comments of stripcom() function in netstart and install.sub. by
rpe2017-04-07 21:44:07 +0000
7c0adfa8Consistentcy between nmembers and size order. From Christopher Hettrick; ok deraadt@ by
otto2017-04-06 17:00:52 +0000
253b92f1first print size in meta-data then supplied arg size when an inconsistency is detected wrt recallocarray() by
otto2017-04-06 08:39:47 +0000
83d1f2b2cp -p the bootblocks to RELEASEDIR; ok tb by
deraadt2017-04-04 00:03:12 +0000
54678561 (tag: OPENBSD_6_1_BASE)MDT... by
deraadt2017-04-01 19:17:22 +0000
189fde81add signify public keys for syspatch for the current and next release by
robert2017-03-30 10:45:50 +0000
da665d0esync the version of the example package; ok deraadt@ by
naddy2017-03-29 20:09:27 +0000
f73e526drephrase more enumerations of functions by
otto2017-03-29 17:38:37 +0000
c1fcb739small cleanup & optimization; ok deraadt@ millert@ by
otto2017-03-28 16:56:38 +0000
cf1d7078Stop enumeration all allocation functions, just say "allocation functions" ok jmc@ deraadt@ by
otto2017-03-26 09:21:33 +0000
502204d7Boot using BIOS from /etc/firmware/vmm-bios by default. by
reyk2017-03-25 16:28:25 +0000
c6627748add a helper function to print all pools #ifdef MALLOC_STATS from David CARLIER by
otto2017-03-24 16:23:05 +0000
a937a37bdocument new recallocarray diagnostic; zap a few diagnostics that should never occur by
otto2017-03-24 16:17:50 +0000
5b40b568move recallocarray to malloc.c and - use internal meta-data to do more consistency checking (especially with option C) - use cheap free if possible ok deraadt@ by
otto2017-03-24 16:15:31 +0000
df542bfcUse C99 types (uint32_t) instead of BSD (u_int32_t) - the former are more portable. Add stdint.h to the headers in imsg_init(3). by
nicm2017-03-24 09:34:12 +0000
c556da6eDon't check for spamd_black twice in rc_pre and rc_start; just do everything in rc_pre. by
ajacoutot2017-03-23 10:10:54 +0000
a2343deeImprove manpage and config file to show the more common use case. from Nick Holland (nick AT holland-consulting DOT net) ok jmc@ florian@ by
benno2017-03-22 11:14:14 +0000
21256fb3From a syslog perspective it does not make sense to log fatal and warn with the same severity. Switch log_warn() to LOG_ERR and keep fatal() at LOG_CRIT. OK reyk@ florian@ by
bluhm2017-03-21 12:06:56 +0000
7a216256add user for slaacd(8) by
florian2017-03-18 21:18:01 +0000
d6f7c199remove unneccessary macro; by
jmc2017-03-17 18:33:04 +0000
40d619ccEnable dhcrelay6(8). by
rzalamena2017-03-17 17:57:40 +0000
826b373fStrengthen description of recallocarray(3) behaviour, hoping that readers make the behaviour -> use case connection. help from jmc and jsing by
deraadt2017-03-17 17:00:38 +0000
a6614e58Grow buffers using recallocarray, to avoid the potential dribble that the standard realloc*() functions can leave behind. imsg buffers are sometimes used in protocol stacks which require some secrecy, and layering violations would be needed to resolve this issue otherwise. Discussed with many. by
deraadt2017-03-17 14:51:26 +0000
b249d7eaFix overly-conservative overflow checks on mulitplications and add checks on additions. This allows scan_scaled to work up to +/-LLONG_MAX (LLONG_MIN will still be flagged as a range error). ok millert@ by
dtucker2017-03-16 02:40:46 +0000
73af3c1bCollapse underflow and overflow checks into a single block. ok djm@ millert@ by
dtucker2017-03-15 05:25:56 +0000
4cba5ce8Catch integer underflow in scan_scaled reported by Nicolas Iooss. ok deraadt@ djm@ by
dtucker2017-03-15 00:13:18 +0000
ce21f112<struct.h> is unused and should not be used. Delete it. by
guenther2017-03-12 23:28:14 +0000
29fbe34efix signed integer overflow in scan_scaled. Found by Nicolas Iooss using AFL against ssh_config. ok deraadt@ millert@ by
djm2017-03-11 23:37:23 +0000
3dde567fAs per style.9, prototypes should not have variable names associated with the types. by
fcambus2017-03-09 10:13:03 +0000
dddd0ad9Some tweaks from jmc@ and describe better what recallocarray does; help and ok from tom@ and deraadt@ by
otto2017-03-07 06:07:50 +0000
ff9e45d4Introducing recallocarray(3), a blend of calloc(3) and reallocarray(3) with the added feature that released memory is cleared. Much input from various developers. ok deraadt@ tom@ by
otto2017-03-06 18:50:28 +0000
6cec33e2Introducing recallocarray(3), a blend of calloc(3) and reallocarray(3) with the added feature that released memory is cleared. Much input from various developers. ok deraadt@ tom@ by
otto2017-03-06 18:44:21 +0000
115cd3166.2 key for future packages by
naddy2017-03-05 15:42:34 +0000
8dc481c3bump one more 2016 by
tb2017-03-05 15:08:03 +0000
916d6de7fix date and mention installurl way of pkg_add by
deraadt2017-03-04 21:40:45 +0000
e7456bd16.2 key for future firmware by
sthen2017-03-04 20:38:34 +0000
ce3ecff9crank to 6.1-beta by
deraadt2017-03-04 16:52:47 +0000
b4af706e6.2 key for the future by
deraadt2017-03-04 16:11:10 +0000
cb1595eeAdd a new sysctl machdep.lidaction. The sysctl works as follows: by
natano2017-03-02 10:38:09 +0000
ef079a5b*nargv[] holds an array of pointers, so it should be terminated by a null pointer. by
gsoares2017-03-01 00:56:30 +0000
f930dc7aRemove support for pkg.conf in light of the consolidation towards a single configuration file for the OpenBSD repository location. by
rpe2017-02-27 21:53:11 +0000
0d0442ffSwitch to xenodm(1). by
matthieu2017-02-26 16:51:18 +0000
214feb84SHA-1 collisions have now been found so update some man pages. As noted by minek van on misc@. Thanks. by
daniel2017-02-23 20:46:08 +0000
c4e494f6Replace use of mathematical minus with an em-dash (from tb@) and break up a long sentence (from tj@). by
daniel2017-02-23 20:29:17 +0000
5a043559Stop supporting the historical way of starting ypbind(8); that is setting 'ypbind_flags=""' when domainname is set and /var/yp/binding exists. This can lead to inconsistent behavior at startup since /var may not be mounted yet and /etc/rc's start_daemon() will not start ypbind. by
ajacoutot2017-02-17 16:42:41 +0000
d08f908fAdd a NULL test to wrterror() to avoid a NULL deref when called from a free() error path. by
jsg2017-02-15 12:31:57 +0000
07baa34emalloc does not *need* to return page-aligned objects for size >= a page. This is not required by any standard and other malloc implementation do not document (or implement) this. ok deraadt@ by
otto2017-02-12 10:46:09 +0000
b556ef0aAdd /root/.ssh/authorized_keys to /etc/mtree/special so that security(8) checks for the correct mode/ownership. by
landry2017-02-12 08:59:52 +0000
61f9f573As it's done in /etc/skel for new regular users, create an empty /root/.ssh/authorized_keys file with correct permissions (0600 for the file, 0700 for /root/.ssh dir). Since we encourage administrators to use public keys only if they want to access root account via ssh, might aswell make it easier, this will be particularly useful in managed/provisioned environments (think ansible & others). by
landry2017-02-12 08:56:17 +0000
d4d5b72aAdd an initial miniroot with bootaa64.efi on fat and bsd.rd on ffs. by
jsg2017-02-11 06:36:03 +0000
f70ce9c5List openfiles-max explicitly in default /etc/login.conf files. Otherwise, raising openfiles-cur above the implicit -max value (1024 on at least the common arch) results in the setting not being applied at all. by
sthen2017-02-06 18:11:33 +0000
87e560f3The macro versions of htonl et al don't require them, but POSIX says <arpa/inet.h> needs to provide uint16_t and uint32_t. by
guenther2017-02-04 19:16:25 +0000
84ddce56Move the typedefs for in_{addr,port}_t from <sys/types.h> to <netinet/in.h> and <arpa/inet.h> by
guenther2017-02-04 02:54:33 +0000
c24dfaeaUse a single chown user:group instead of separate chown and chgrp. by
rpe2017-02-02 21:35:05 +0000
a82fcd44fix a comment and rm some dead code as a result of the previous diff by
otto2017-02-02 10:35:34 +0000
4a9a7195Let realloc handle and produce moved pointers for allocations between half a page and a page. ok jmatthew@ tb@ by
otto2017-02-01 06:17:42 +0000
d791e232install libcxxabi and libcxx headers when COMPILER_VERSION is clang ok patrick@ by
jsg2017-01-27 13:30:39 +0000
b79c3973+arm64 by
patrick2017-01-25 03:24:52 +0000
38cf5c2bAdd /etc/installurl to changelist. ok deraadt@ rpe@ by
ajacoutot2017-01-24 03:13:13 +0000
1627fc6dWhitespace. by
ajacoutot2017-01-24 01:11:11 +0000
b4d68e99Interpolate a 'make cleandir' if KEEPKERNELS is set to a non-empty string, right before building kernels. This should unbreak 'make release' for people having this setting. by
tb2017-01-23 23:54:01 +0000
aa0e49f8regen by
kettenis2017-01-23 12:44:18 +0000
ccc3f147Add /dev/openprom. by
kettenis2017-01-23 12:43:48 +0000
520f3497Default configuration file: use quotes for all files and give a sensible example for the domain {} section. by
benno2017-01-21 09:06:57 +0000
3d8011781. When shrinking a chunk allocation, compare the size of the current allocation to the size of the new allocation (instead of the requested size). 2. Previously realloc takes the easy way and always reallocates if C is active. This commit fixes by carefully updating the recorded requested size in all cases, and writing the canary bytes in the proper location after reallocating. 3. Introduce defines to test if MALLOC_MOVE should be done and to compute the new value. by
otto2017-01-21 07:47:42 +0000
af3e6c43add logging messages to distinguish which safty check failed by
phessler2017-01-20 01:21:18 +0000
c83e16d6Add the _syspatch user/group: an unprivileged user for syspatch(8) used to fetch and verify patches. by
ajacoutot2017-01-19 06:48:50 +0000
c834c95bAdd empty sysctl.conf for arm64. by
patrick2017-01-11 22:57:34 +0000
f4a78461Add support for OpenBSD/arm64. by
patrick2017-01-11 17:05:29 +0000
99d11625Stop accessing verbose and debug variables from log.c directly. by
reyk2017-01-09 14:49:22 +0000
58841e22Replace hand-rolled for(;;) traversal of ctl_conns TAILQ with TAILQ_FOREACH(). by
krw2017-01-09 14:04:31 +0000
ccbed539Sync log.c with the latest version from vmd/log.c that preserves errno so it is safe calling log_* after an error without loosing the it. by
reyk2017-01-08 20:31:03 +0000
2cebfc9cAdd max_align_t. by
kettenis2017-01-06 14:36:50 +0000
bf9b74c4Remove unnecessary casts of 'a' to char * since 'a' is already char *. This is a remnant from the original 4.4BSD code that had 'a' as void * in the function args. No binary change. OK bluhm@ by
millert2017-01-04 15:20:30 +0000