summaryrefslogtreecommitdiffstats
path: root/usr.sbin/portsnap
Commit message (Collapse)AuthorAgeFilesLines
* MFC r310179:cperciva2016-12-191-2/+4
| | | | | Avoid division by zero in the rare case that portsnap needs to fetch zero patches. (This avoids two "dc: divide by zero" warnings.)
* MFC r306825: portsnap: use lam on the known good hash listemaste2016-12-091-2/+3
| | | | | | | | This change is equivalent to the approach committed in r306417, but if sed has a bug it could be exploited by the untrusted tar file. Instead, generate the expected tar content and compare that with find's output. Submitted by: cperciva (in review D8052)
* MFC r306417: portsnap: only move expected snapshot contents from snap/ to files/emaste2016-09-281-0/+7
| | | | | | | | | | | | Previously it was possible to smuggle in addional files that would be used by later portsnap runs. Now we only move those files expected to be in the snapshot into files/ and require that there are no unexpected files. This was used by portsnap attacks 2, 3, and 4 in the "non-cryptanalytic attacks against FreeBSD update components" anonymous gist. Approved by: re (gjb)
* MFC r305469:delphij2016-09-091-4/+4
| | | | | | | | | | | Ensure that we always open only files that is named by explicitly using shell redirections instead of having gzip(1) to decide what file to open. Issue reported in the "non-cryptanalytic attacks against freebsd update components" anonymous gist. Reviewed by: allanjude, emaste
* Cleanup unnecessary semicolons from utilities we all love.pfg2016-04-151-1/+1
|
* - update portsnap(8) to direct users to pkg-versionjgh2016-03-011-3/+5
| | | | | | | | | PR: 202971 Submitted by: adamw@FreeBSD.org Reviewed by: bdrewery@ Approved by: wblock@ MFC after: 1 week Differential Revision: https://reviews.freebsd.org/D5429
* Fix typo.trasz2016-02-291-1/+1
| | | | | MFC after: 1 month Sponsored by: The FreeBSD Foundation
* Add META_MODE support.sjg2015-06-133-0/+47
|\ | | | | | | | | | | | | | | | | | | | | Off by default, build behaves normally. WITH_META_MODE we get auto objdir creation, the ability to start build from anywhere in the tree. Still need to add real targets under targets/ to build packages. Differential Revision: D2796 Reviewed by: brooks imp
| * dirdeps.mk now sets DEP_RELDIRsjg2015-06-083-6/+0
| |
| * Merge sync of headsjg2015-05-272-1/+89
| |\ | |/ |/|
| * Merge head from 7/28sjg2014-08-191-1/+1
| |\
| * | Updated dependenciessjg2014-05-162-2/+0
| | |
| * | Updated dependenciessjg2014-05-102-0/+4
| | |
| * | Merge headsjg2014-04-284-9/+26
| |\ \
| * \ \ Merge from headsjg2013-09-052-7/+9
| |\ \ \
| * | | | Updated dependenciessjg2013-03-112-0/+2
| | | | |
| * | | | Updated dependenciessjg2013-02-163-6/+0
| | | | |
| * | | | Sync with HEAD.obrien2013-02-081-2/+26
| |\ \ \ \
| | \ \ \ \
| | \ \ \ \
| *-. \ \ \ \ Sync from headsjg2012-11-042-15/+49
| |\ \ \ \ \ \
| * | | | | | | Sync FreeBSD's bmake branch with Juniper's internal bmake branch.marcel2012-08-223-0/+52
| | |/ / / / / | |/| | | | | | | | | | | | | | | | | | | Requested by: Simon Gerraty <sjg@juniper.net>
* | | | | | | Add a manual page for phttpget(8).delphij2015-01-022-1/+89
| |_|_|_|_|/ |/| | | | | | | | | | | | | | | | | MFC after: 1 month
* | | | | | use .Mt to mark up email addresses consistently (part2)bapt2014-06-201-1/+1
| |_|_|_|/ |/| | | | | | | | | | | | | | | | | | | PR: 191174 Submitted by: Franco Fichtner <franco@lastsummer.de>
* | | | | Use case insensitive match in portsnap.delphij2014-04-211-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | PR: bin/186510 Submitted by: olli MFC after: 2 weeks
* | | | | NO_MAN= has been deprecated in favor of MAN= for some time, go aheadimp2014-04-132-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | and finish the job. ncurses is now the only Makefile in the tree that uses it since it wasn't a simple mechanical change, and will be addressed in a future commit.
* | | | | When verifying that files we need are present, also check that they don'tcperciva2013-11-141-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | have zero length. Filesystem corruption will tend to truncate files, and since these are short that's likely to result in them becoming empty. Suggested by: Richard Clayton Convinced by: rwatson MFC after: 3 weeks
* | | | | Rename the "alfred" command to "auto", and document it. Retain supportgavin2013-10-222-4/+21
| |_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | for "portsnap alfred" for now. Discussed: many times, most recently on svn-src-all MFC after: 1 week
* | | | Fix bug in deleting files: If two ports had the same tarball and one ofcperciva2013-07-111-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | them changed (or was removed from the tree) then portsnap would delete that file. This happened earlier today when one of two empty port directories was removed. Uniquifying the lists of needed files fixes this. 9.2-RELEASE candidate. MFC after: 3 days
* | | | Make 'portsnap alfred' overwrite ports tree if it's not created by adelphij2013-06-071-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | portsnap. Discussed with: alfred Reviewed by: cperciva
* | | | mdoc sweepjoel2013-05-131-1/+3
| | | |
* | | | mdoc sweep.joel2013-05-121-3/+3
| |_|/ |/| |
* | | Change progress indicator for downloading patches.alfred2012-12-131-2/+26
| |/ |/| | | | | | | Use a percent style indicator instead of emitting one long line of patch numbers.
* | Avoid changing IFS in a global context as this can sometimes causeeadler2012-10-241-7/+8
| | | | | | | | | | | | | | | | | | | | | | errors later on. PR: bin/172715 Submitted by: Matthew D.Fuller <fullermd@over-yonder.net> (older version) Submitted by: dteske Approved by: cperciva MFC after: 1 week
* | Remove cvs/cvsup reference.joel2012-10-141-5/+1
| |
* | Change "only only" to "only" in portsnap(8).issyl02012-09-281-1/+1
| | | | | | | | | | Spotted by: Ruslan Mahmatkhanov Approved by: gabor (mentor, implicit)
* | Add a note to portsnap(8) about the behaviour of the example cron command.issyl02012-09-281-1/+18
| | | | | | | | | | | | | | PR: docs/171759 Submitted by: Paul Hoffman (phoffman at proper dot com) Approved by: cperciva, gabor (mentor) MFC after: 3 days
* | Add interactive option to override portsnap's automagical detection ofeadler2012-08-052-4/+24
|/ | | | | | | | a terminal. Submitted by: Hannes h2+fbsdports@fsfe.org Approved by: cperciva MFC after: 1 week
* make it easier for users used to a VCS that allows up to be a shortcuteadler2012-05-091-0/+3
| | | | | | | | for update. PR: bin/152856 Approved by: cperciva MFC after: 3 days
* Fix spelling of extract.alfred2011-11-131-2/+2
| | | | Pointed out by: gcooper
* Utilize shell's IFS instead of forking ~6 processes toalfred2011-11-131-48/+70
| | | | | | | | handle splitting input files on a '|'. This greatly reduces the time taken to process several databases during the update process. Additionally add some more debug logging.
* portsnap: Detect error immediately if we can't fetch the snapshot metadata.jilles2011-10-041-3/+3
| | | | | | | Also add some quotes around command substitution where useful and possible. Reviewed by: cperciva MFC after: 1 week
* Add --numeric-owner to tar extract operations in portsnap.simon2010-12-191-5/+5
| | | | | | | | | | | | | This is done to speed up extraction significantly (both for portsnap extract and update) in the case of slow NSS modules (like nss_ldap) as it avoids having to look up uid and gid for root / wheel. The reason this is a bigger problem for portsnap than for many other system operations, is that portsnap executes tar(1) once for each port so the internal uid/gid caching in tar(1) only helps a bit, resulting in many user lookup calls. Discussed with: cperciva
* mdoc: drop redundant .Pp and .LP callsuqs2010-10-081-1/+0
| | | | They have no effect when coming in pairs, or before .Bl/.Bd
* Fix typos, spelling, formatting and mdoc mistakes found by Nobuyuki whilejoel2010-08-161-1/+1
| | | | | | translating these manual pages. Minor corrections by me. Submitted by: Nobuyuki Koganemaru <n-kogane@syd.odn.ne.jp>
* The last big commit: let usr.sbin/ use WARNS=6 by default.ed2010-01-022-2/+0
|
* Add undocumented 'portsnap alfred' command, which runs (fetch|cron)cperciva2009-12-301-1/+17
| | | | | | | | based on whether fd 0 is a terminal, and then runs (extract|update) based on whether ${PORTSDIR} exists. Requested by: alfred MFC after: 1 month
* Set SO_NOSIGPIPE on sockets used by phttpget. Without this, ifcperciva2009-04-031-0/+6
| | | | | | | | | | | | | | (1) phttpget is attempting to download enough files that it can't send all the requests at once, and (2) the remote server forcibly closes the connection, resulting in RST packets being sent, phttpget will receive a SIGPIPE and terminate without downloading all of the files. This is probably responsible for a number of hard-to-reproduce errors with portsnap and freebsd-update. MFC after: 3 days
* - remove superfluous worddanger2008-09-151-2/+2
| | | | | | PR: docs/127401 Submitted by: Mick Charles Beaver <mick@cs.wisc.edu> MFC after: 1 week
* Add support for specifying which INDEX files to build via portsnap.conf.cperciva2008-05-171-4/+16
| | | | | Requested by: brooks Reminded by: brooks, about halfway through his BSDCan talk
* Improve conformance to the HTTP specification by using case-insensitivecperciva2008-02-131-6/+6
| | | | | | | | comparisons for header keywords. Apparently some proxies use creative capitalization. Weird proxy found by: brooks MFC after: 3 days
* Attempt to reduce the rate of foot-shooting injuries by adding a newcperciva2007-12-281-0/+9
| | | | | | | | paragraph clarifying that portsnap does not behave the same way as cvs and cvsup where local modifications are concerned. Submitted by: peter Feet shot: peter, kris, obrien, + many others
OpenPOWER on IntegriCloud