Commits
- Commit:
eec68231a79adb345b1a6a3194e5ddb353570356
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
switch gotd from chroot(2) to unveil(2)
In the future, gotd will fork+exec new processes for each client connection.
Using unveil instead of chroot avoids having to start such processes as root.
The -portable version could use chroot(2) where no equivalent to unveil(2)
exists. A future component which starts new processes will be isolated as
a separate process, which could run as root in the -portable version.
ok op@
- Commit:
d93ecf7dc6dd75bc506128cc5666c1b76761e0a0
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
add a gotd "listen" process which watches the unix socket
ok op@
- Commit:
b1142068fd26fa24285c533f10e3afcb61719759
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
fix gotd startup without any -v options
- Commit:
8c6fc1468a57de4851e137b55bda5cd838e2f759
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
rename GOTD_SOCK_FILENO to GOTD_FILENO_MSG_PIPE for clarity (it's not a socket)
- Commit:
a45aafaf9bf7910fed713ff35d6d051d463bae98
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
tedu Ted's copyright added to gotd.c by accident; doas-derived code is in auth.c
- Commit:
ddbe612c691511246aacb15046c1a202d0efcf75
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
fix group membership check in gotd auth
ok op@
- Commit:
0ccf3acb6c3004ac41b46ad931024da1f4ea0e3e
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
implement per-repository read/write authorization rules in gotd
ok op@
- Commit:
86b188ee113cde1b53e1d3544b40ce80ab7767a7
- From:
- Josiah Frentsos <jfrent@tilde.team>
- Via:
- Omar Polo <op@omarpolo.com>
- Date:
gotd: Don't include stdlib.h twice
- Commit:
36c7cfbb2a9b646bfb1658fca4e34bc63a46ec42
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
fix crash in gotd if client gets disconnected on error; reported by Mikhail
- Commit:
b90054ed55f30ebe28115abf5ad9cecc2b925713
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
use mkstemps(3) instead of mkstemp(3) for opening named temporary files
Allows 'got commit' to use a ".diff" suffix for temporary diff files.
ok op@
- Commit:
585362fdeffda23f6ace02652caf7c5b0ecd4759
- From:
- Omar Polo <op@omarpolo.com>
- Date:
gotd: propagate confpath to children as well
otherwise they end up running with default config which isn't ideal.
ok stsp@
- Commit:
f1752522ac2fd00af85111c530b80ef1187a07f7
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
add gotctl(8); initially supported commands are 'info' and 'stop'
This will be used by an upcoming regress test suite for gotd(8).
ok tracey
- Commit:
86769de8751a920ee4288ec91157066d6f098bfc
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
remove sendfd pledge promise from gotd repo_read process
Have the parent process send one end of the pipe directly to gotsh(1),
such that repo_write can run without "sendfd".
Combining "sendfd" and "recvfd" in the same process is frowned upon.
ok tracey
- Commit:
7fec5f4ad5baecf5bab9d872a925055270b2cf53
- From:
- Stefan Sperling <stsp@stsp.name>
- Date:
remove sendfd pledge promise from gotd repo_write process
Have the parent process send one end of the pipe directly to gotsh(1),
such that repo_write can run without "sendfd".
Combining "sendfd" and "recvfd" in the same process is frowned upon.
ok tracey
- Commit:
6f3190632709528909c1dc45046a2a85921584aa
- From:
- Josiah Frentsos <jfrent@tilde.team>
- Via:
- Stefan Sperling <stsp@stsp.name>
- Date:
sort getopt() option lists and switch statements; patch by Josiah Frentsos