Commits

Commit:
898c8f8fd003d730d0490c1a5a807e4c11e30f4b
From:
Omar Polo <op@omarpolo.com>
Date:
gotd: tweak error message if getpwnam fails errno may not be set to something interesting so switch to fatalx, and simplify the error message (knowing the failed function, which is also wrong, doesn't buy much here.) ok jamsek
diff | patch | tree
Commit:
eec68231a79adb345b1a6a3194e5ddb353570356
From:
Stefan Sperling <stsp@stsp.name>
Date:
switch gotd from chroot(2) to unveil(2) In the future, gotd will fork+exec new processes for each client connection. Using unveil instead of chroot avoids having to start such processes as root. The -portable version could use chroot(2) where no equivalent to unveil(2) exists. A future component which starts new processes will be isolated as a separate process, which could run as root in the -portable version. ok op@
diff | patch | tree
Commit:
d93ecf7dc6dd75bc506128cc5666c1b76761e0a0
From:
Stefan Sperling <stsp@stsp.name>
Date:
add a gotd "listen" process which watches the unix socket ok op@
diff | patch | tree
Commit:
b1142068fd26fa24285c533f10e3afcb61719759
From:
Stefan Sperling <stsp@stsp.name>
Date:
fix gotd startup without any -v options
diff | patch | tree
Commit:
8c6fc1468a57de4851e137b55bda5cd838e2f759
From:
Stefan Sperling <stsp@stsp.name>
Date:
rename GOTD_SOCK_FILENO to GOTD_FILENO_MSG_PIPE for clarity (it's not a socket)
diff | patch | tree
Commit:
a45aafaf9bf7910fed713ff35d6d051d463bae98
From:
Stefan Sperling <stsp@stsp.name>
Date:
tedu Ted's copyright added to gotd.c by accident; doas-derived code is in auth.c
diff | patch | tree
Commit:
ddbe612c691511246aacb15046c1a202d0efcf75
From:
Stefan Sperling <stsp@stsp.name>
Date:
fix group membership check in gotd auth ok op@
diff | patch | tree
Commit:
0ccf3acb6c3004ac41b46ad931024da1f4ea0e3e
From:
Stefan Sperling <stsp@stsp.name>
Date:
implement per-repository read/write authorization rules in gotd ok op@
diff | patch | tree
Commit:
86b188ee113cde1b53e1d3544b40ce80ab7767a7
From:
Josiah Frentsos <jfrent@tilde.team>
Via:
Omar Polo <op@omarpolo.com>
Date:
gotd: Don't include stdlib.h twice
diff | patch | tree
Commit:
36c7cfbb2a9b646bfb1658fca4e34bc63a46ec42
From:
Stefan Sperling <stsp@stsp.name>
Date:
fix crash in gotd if client gets disconnected on error; reported by Mikhail
diff | patch | tree
Commit:
b90054ed55f30ebe28115abf5ad9cecc2b925713
From:
Stefan Sperling <stsp@stsp.name>
Date:
use mkstemps(3) instead of mkstemp(3) for opening named temporary files Allows 'got commit' to use a ".diff" suffix for temporary diff files. ok op@
diff | patch | tree
Commit:
585362fdeffda23f6ace02652caf7c5b0ecd4759
From:
Omar Polo <op@omarpolo.com>
Date:
gotd: propagate confpath to children as well otherwise they end up running with default config which isn't ideal. ok stsp@
diff | patch | tree
Commit:
f1752522ac2fd00af85111c530b80ef1187a07f7
From:
Stefan Sperling <stsp@stsp.name>
Date:
add gotctl(8); initially supported commands are 'info' and 'stop' This will be used by an upcoming regress test suite for gotd(8). ok tracey
diff | patch | tree
Commit:
86769de8751a920ee4288ec91157066d6f098bfc
From:
Stefan Sperling <stsp@stsp.name>
Date:
remove sendfd pledge promise from gotd repo_read process Have the parent process send one end of the pipe directly to gotsh(1), such that repo_write can run without "sendfd". Combining "sendfd" and "recvfd" in the same process is frowned upon. ok tracey
diff | patch | tree
Commit:
7fec5f4ad5baecf5bab9d872a925055270b2cf53
From:
Stefan Sperling <stsp@stsp.name>
Date:
remove sendfd pledge promise from gotd repo_write process Have the parent process send one end of the pipe directly to gotsh(1), such that repo_write can run without "sendfd". Combining "sendfd" and "recvfd" in the same process is frowned upon. ok tracey
diff | patch | tree