|  | Commit message (Collapse) | Author | Age | Files | Lines | 
|---|
| ... |  | 
| | 
| 
| 
| 
| 
| | Should make coredumps from abort() easier to debug too.
ok kurt@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | unmapping of freed allocations without disabling chunk randomisation
like the "Freeguard" ('F') option does. Make security 'S' option
use 'U' and not 'F'.
Rationale: guarding with no chunk randomisation is great for debugging
use-after-free, but chunk randomisation offers better defence against
"heap feng shui" style attacks that depend on carefully constructing a
particular heap layout so we should leave this enabled when requesting
security options. | 
| | 
| 
| 
| | references into a STANDARDS section; | 
| | 
| 
| 
| 
| 
| | an empty name, NULL pointer, or a name containing an '=' character.
OK millert@, guenther@ | 
| | |  | 
| | 
| 
| 
| 
| | in working condition anymore (assuming there would be interest in running on
it). | 
| | |  | 
| | 
| 
| 
| 
| | equal, but it is more correct)
from Michal Mazurek | 
| | 
| 
| 
| 
| 
| | Okay otto@.
Found by Michal Mazurek <akfaew at jasminek dot net>, thanks! | 
| | |  | 
| | |  | 
| | |  | 
| | 
| 
| 
| 
| | - update rfc references
- make the Rs/Re blocks more consistent | 
| | 
| 
| 
| | rfc 5321 replaces 974 and 2821; | 
| | |  | 
| | 
| 
| 
| | ok guenther@ | 
| | 
| 
| 
| | ok deraadt@ tedu@, wording tweaks jmc@ | 
| | 
| 
| 
| 
| 
| 
| 
| | ifa_broadaddr.  i.e. make it make clear that this field is only
valid for P2P. (Hint: one's a field, and one's a #define giving a
new name to said field)
ok guenther@ | 
| | 
| 
| 
| | character after the '\0'; ok guenther@ | 
| | 
| 
| 
| 
| | param.h symbol reduction.
ok guenther | 
| | 
| 
| 
| | Pointed out by Joachim Schipper (joachim at joachimschipper.nl) | 
| | 
| 
| 
| 
| | Based on a note from Steffen Daode Nurpmeso (sdaoden at googlemail.com)
ok jmc@ | 
| | 
| 
| 
| 
| 
| | scanning for free space if the hint isn't available.
also, on further inspection, this will prevent pmap_prefer from "improving"
our hint. | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| | ``-upper_bound % upper_bound''.  Simplifies the code and makes it the
same on both ILP32 and LP64 architectures, and also slightly faster on
LP64 architectures by using a 32-bit remainder instead of a 64-bit
remainder.
Pointed out by Jorden Verwer on tech@
ok deraadt; no objections from djm or otto | 
| | 
| 
| 
| | diff from Florian Obser, ok jmc@ | 
| | 
| 
| 
| 
| 
| | using inet_pton() and inet_ntop() as suggested by claudio
ok claudio@ | 
| | 
| 
| 
| 
| 
| | clear out the entire requested area, not just a perfect fit.  second,
use mquery to check for room to avoid getting an address we don't like
and having to send it back. | 
| | 
| 
| 
| 
| 
| | in order to span the the entire cache.  second, on free use the same offset
to put things in the cache instead of always starting at zero.
ok otto | 
| | 
| 
| 
| 
| 
| | overallocating and then releasing unneeded memory pages.
ok otto | 
| | 
| 
| 
| 
| 
| | Update SYNOPSIS for setkey() to show it's in <stdlib.h>
ok jmc@, millert@ | 
| | 
| 
| 
| 
| 
| 
| | and valloc() are not in the current version, while posix_memalign() mkstemp(),
and mkdtemp() are, and setstate()'s argument has lost a bogus 'const'.
ok millert@ jmc@ espie@ kettenis@; ports build testing by naddy@ | 
| | 
| 
| 
| | ok deraadt | 
| | |  | 
| | |  | 
| | 
| 
| 
| | from Lawrence Teo | 
| | 
| 
| 
| 
| | effective result.  its use is NOT discouraged -- it is not
common, but when you need it, there is nothing else that will do. | 
| | 
| 
| 
| 
| 
| | defined.
ok deraadt@ | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | explaining of "what a C string is", and make it more clear that these
functiosn BEHAVE EXACTLY LIKE snprintf with "%s"!  (anyone who wants
to write a 'strlcpy considered harmful' paper should probably write a
'strlcpy and snprintf considered harmful' paper instead).
note to those from other projects reading this commit message: It would
be very good if this new manual was picked up in your project.
ok jmc millert krw | 
| | 
| 
| 
| | ok jmc@ | 
| | 
| 
| 
| | ok millert@ | 
| | 
| 
| 
| 
| | with 0.  Use 1 and not 0 as the first element of the state array,
similar to what glibc does.  OK nicm@ | 
| | |  | 
| | 
| 
| 
| 
| 
| | into an bogus pointer error instead of a segfault.
- Document that we use the assumption that a non-MAP_FIXED mmap() with
  hint 0 never returns NULL. | 
| | 
| 
| 
| 
| 
| 
| | the last node is deleted.  Instead, resolve the Coverity warning
by returning (node *)1 when you delete the root node.
based an idea from millert@.  ok otto@ | 
| | |  | 
| | 
| 
| 
| 
| 
| | Includes friendly linker warning to wake up those dumb enough to use it.
Committing for kettenis@, who ran away to the hills after writing it | 
| | 
| 
| 
| | ok guenther | 
| | |  | 
| | 
| 
| 
| | okay millert@ |