~armaan/opendoas

50a47d3b — Duncan Overbruck 1 year, 8 months ago v6.6.1
timestamp.c: remove warning for normal case
31d95b9c — Duncan Overbruck 1 year, 8 months ago
timestamp.c: check fstat(2) instead of separate stat(2)
5debef09 — Duncan Overbruck 1 year, 8 months ago
timestamp.c: correctly NUL terminate buffer read from /proc/pid/stat

This solves buf #28.
05f97777 — Duncan Overbruck 1 year, 8 months ago
timestamp.c: add some more error/warning messages

This might help to identify bugs/misbehaving systems
or attempts to mess with timestamp files.
78c1c0f2 — Duncan Overbruck 1 year, 10 months ago
timestamp.c: already return on 22th field of /proc/ppid/stat

this is the last field we are interested in and if we didn't reach it,
return an error.
22370cb3 — Duncan Overbruck 1 year, 10 months ago
doas.c: initialize mygetpwuid_r result

This can't happen really happen, but makes scan-build happy.
5dc1cdec — Duncan Overbruck 1 year, 10 months ago
libopenbsd: define __dead as noreturn
Change binary permissions to 4755. Closes #26

The owner can be trusted to read and write their own files, and
there's no reason not to let others read the file.
84ce5c7f — Duncan Overbruck 1 year, 10 months ago v6.6
configure: remove version
74449f01 — Duncan Overbruck 1 year, 10 months ago
doas.c: remove dead ifdefs to unclutter code
9be2d262 — Duncan Overbruck 1 year, 10 months ago
timestamp: simplify
ea761579 — Duncan Overbruck 1 year, 10 months ago
configure: make {UID,GID}_MAX configurable
add some checks to avoid UID_MAX (-1) here. this is not problematic with the current code, but it's probably safer this way. ok deraadt
96d78078 — semarie 2 years ago
correct some unveil(2) violations due to "login.conf.db" access (the .db version of "login.conf"), and stat(2) on _PATH_MASTERPASSWD_LOCK (via pw_mkdb(3)).

problem initially noted by myself for passwd(1)
millert@ reported similar problem on chpass(1), su(1), doas(1) and encrypt(1)
mestre@ noted chpass(1) too

ok mestre@ millert@
39169036 — Duncan Overbruck 2 years ago
fixup unveil
fix one last edge case regarding PATH, allows simpler config.
note that authentication is required, unless otherwise configured. ok sthen
f94cf30a — deraadt 2 years ago
snprintf/vsnprintf return < 0 on error, rather than -1.
fix some more fallout from setting path in setusercontext. restore previous behavior of using user PATH if no cmd restriction in the rule. run into by espie
add an example hint that shows how original path can be retained
Next