| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
Approved by: re (blanket)
|
| |
|
|
| |
Approved by: re (blanket)
|
| | |
|
| |
|
|
| |
vocally objected to this safety belt.
|
| |
|
|
|
|
|
| |
technique) so that we don't wind up calling into an application's
version if the application defines them.
Inspired by: qpopper's interfering and buggy version of strlcpy
|
| |
|
|
|
|
| |
annoying and not very useful.
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
|
|
|
| |
namespace.h.
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
|
|
|
| |
namespace.h.
Sponsored by: DARPA, Network Associates Laboratories
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
may be built into libc (`static NSS modules') or dynamically loaded
via dlopen (`dynamic NSS modules'). Modules are loaded/initialized
at configuration time (i.e. when nsdispatch is called and nsswitch.conf
is read or re-read).
= Make the nsdispatch(3) core thread-safe.
= New status code for nsdispatch(3) `NS_RETURN', currently used to
signal ERANGE-type issues.
= syslog(3) problems, don't warn/err/abort.
= Try harder to avoid namespace pollution.
= Implement some shims to assist in porting NSS modules written for
the GNU C Library nsswitch interface.
Sponsored by: DARPA, Network Associates Laboratories
|
| | |
|
| | |
|
| |
|
|
| |
`implicit declaration of function' variety.
|
| | |
|
| |
|
|
|
|
|
| |
Only warnings that could be fixed without changing the generated object
code and without restructuring the source code have been handled.
Reviewed by: /sbin/md5
|
| | |
|
| |
|
|
|
|
|
| |
an unaligned destination using bcopy instead of an assignment.
Submitted by: Hartmut Brandt <brandt@fokus.gmd.de>
PR: sparc64/46729
|
| |
|
|
| |
especially in troff files.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Submitted by: R. Imura <imura@ryu16.org>
Approved by: re (murray)
|
| |
|
|
|
|
|
| |
are marked up in stdio(3), and because they are defined expressions
of type "FILE *".
Approved by: re
|
| |
|
|
| |
Approved by: re
|
| |
|
|
|
| |
Submitted by: jlemon
Approved by: re
|
| | |
|
| |
|
|
| |
MFC after: 5 days
|
| |
|
|
|
|
|
| |
- strtoul pedant. pointed out by deraadt
Obtained from: KAME
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
- port range check need to be done before htons. from deraadt
- %d/%u audit
- correct bad practice in the code - it uses two changing variables
to manage buffer (buf and buflen). we eliminate buflen and use
fixed point (ep) as the ending pointer.
- use snprintf, not sprintf
- pass correct name into q.name. from lukem@netbsd
- sync comment
Obtained from: KAME
MFC after: 1 week
|
| |
|
|
|
| |
Obtained from: KAME
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
|
| |
and getipnodeby*() thread-safe.
Our res_*() is not thread-safe. So, we share lock between
getaddrinfo() and getipnodeby*(). Still, we cannot use
getaddrinfo() and getipnodeby*() in conjunction with other
functions which call res_*().
Requested by: many people
|
| |
|
|
|
| |
Though res_query.c also defines and refers MAXPACKET, it is not
related to ansbuf. So, I didn't touch res_query.c.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
KAME did the modification only to _dns_getaddrinfo(). However,
it is not sufficient, and res_queryN() should be modified, too.
So, I did same modification to res_queryN().
Obtained from: KAME
|
| |
|
|
| |
Fail when it is detected.
|
| |
|
|
|
|
| |
broke pthreads.
Reported by: mbr, tjr
|
| |
|
|
| |
Obtained from: KAME
|
| |
|
|
|
|
|
|
|
| |
insure enough space is available for the response, or be prepared
to resize the buffer and retry as necessary.
Do the conservative thing and make sure enough space is available.
Reviewed by: silence on freebsd-audit
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
to fail needlessly if a reverse DNS lookup of the IP address didn't
come up with a hostname. As a comment in the code clearly stated,
the "damn hostname" was looked up only for the purpose of netgroup
matching. But if that lookup failed, the function bailed out
immediately even though in many cases netgroup matching would not
be used.
This change marks the hostname as unknown but continues. Where
netgroup matching is performed, an unknown hostname is handled
conservatively. I.e., for "+@netgroup" (accept) entries an unknown
hostname never matches, and for "-@netgroup" (reject) entries an
unknown hostname always matches.
In the lines affected (only), I also fixed a few bogus casts. There
are others, and in fact this entire file would be a good candidate
for a cleanup sweep.
Reviewed by: imp (wearing his flourescent yellow Security Team cap)
MFC after: 2 days
|
| |
|
|
|
|
|
| |
PR: bin/27939
Reviewed by: ru, sheldonh (about a year ago)
Obtained from: ume (via KAME, I think)
MFC after: 1 month
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
supplied buffer in case the size of it was equal to
the number of characters the converted address consumed.
The bug occurred when converting an AF_INET address.
- Remove the SPRINTF macro and use sprintf instead.
- Do not do string formatting using sprintf(3) and a
temporary buffer which is copied when the supplied
buffer provides enough space. Instead, use snprintf(3)
and the real destination buffer, thus avoid the copy.
Reported by: Stefan Farfeleder <e0026813@stud3.tuwien.ac.at> (1)
PR: misc/41289
|
| |
|
|
| |
than 80 columns.
|
| |
|
|
|
|
|
| |
of our __restrict macro to the prototypes and function
definitions of inet_pton and inet_ntop.
- Use ANSI-C function argument lists.
- Adjust the prototypes in the manual page.
|
| | |
|
