Commits
- Commit:
83a2644bfb1d8683faf024275a98600b0edc5063- From:
- Omar Polo <op@omarpolo.com>
- Date:
convert remaining code to the imsg getters
Now gmid doesn't touch anymore the internals of the imsg structs.
- Commit:
2a822b03ba21a85012e996136836519dd79c2aa6- From:
- Omar Polo <op@omarpolo.com>
- Date:
please macos
for some reason that's not entirely clear to me, __dead doesn't
seem to work on macos, so clang thinks datalen is used un-initialized.
meh
- Commit:
6dec2ad700aac233ab001f91b8fa05813180eaba- From:
- Omar Polo <op@omarpolo.com>
- Date:
convert most of gmid to the new imsg APIs
Makes parsing and handling of imsgs simpler / clearer. only crypto.c
is left as-is.
- Commit:
b03e976aa26d100ec1bf976dfdd005868395b490- From:
- Omar Polo <op@omarpolo.com>
- Date:
convert to use imsg_get_fd()
since proc_forward_imsg() never forwards a file descriptor (it's
never called actually) just use -1 there.
- Commit:
618b1d4dce6d4780943594cb278977b52001ab22- From:
- Omar Polo <op@omarpolo.com>
- Date:
resurrect openlog() + tzset() in the logger
They're not needed on OpenBSD nor in other systems... except under
sandbox. These were added for capsicum() if I remember correctly,
but also with landlock it's better to initialize these things
earlier.
- Commit:
9abba172b6f9ff373dd1e45d7b9587d3bdd0afcf- From:
- Omar Polo <op@omarpolo.com>
- Date:
add `log syslog facility' to use a different syslog(3) facility
Was requested ages ago by Karl Jeacle, now that there is some better
support for configuring the logging there's no excuse to add this.
It helps with filtering from syslog.d / syslog.conf.
- Commit:
46bcc4ea95b03fe81ad361ee02bd021a7618e5a9- From:
- Omar Polo <op@omarpolo.com>
- Date:
add log syslog off; don't turn syslog off when log access is specified
- Commit:
cba01a868748013f838c28ad8005c8377160c76f- From:
- Omar Polo <op@omarpolo.com>
- Date:
rename IMSG_LOG_TYPE to ACCESS
- Commit:
e075021085c1b1f8d28c35d2f358f7792980b0d1- From:
- Omar Polo <op@omarpolo.com>
- Date:
still respect `log' when in debug mode
- Commit:
3826d7de43d3b9078c5e18e0074799a3a9ee682e- From:
- Omar Polo <op@omarpolo.com>
- Date:
logger use dprintf and a fd instead of a FILE
simplifies further handling. The stdio layer introduces its own
buffering and for the logs I'd like to avoid it. fflush(3) is an
option, but using a raw fd and dprintf(2) requires less code.
- Commit:
eac9287d295719131cbc346503dd2a0612e54b4b- From:
- Omar Polo <op@omarpolo.com>
- Date:
copyright years++
- Commit:
8eeb992206592a3bc858ffda8216ca0538cb7ecf- From:
- Omar Polo <op@omarpolo.com>
- Date:
less logger.h
- Commit:
47b0ff105a152b5f44bddaacc41318872370a222- From:
- Omar Polo <op@omarpolo.com>
- Date:
move log_request to gmid.c
so that ge can provide its own log_request without requiring a
separate logger process.
- Commit:
c26f2460e42aa0822c283c805958989f339e7d8b- From:
- Omar Polo <op@omarpolo.com>
- Date:
rework the daemon to do fork+exec
It uses the 'common' proc.c from various OpenBSD-daemons.
gmid grew organically bit by bit and it was also the first place where I
tried to implement privsep. It wasn't done very well, in fact the
parent process (that retains root privileges) just fork()s a generation
of servers, all sharing *exactly* the same address space. No good!
Now, we fork() and re-exec() ourselves, so that each process has a fresh
address space.
Some features (require client ca for example) are temporarly disabled,
will be fixed in subsequent commits. The "ge" program is also
temporarly disabled as it needs tweaks to do privsep too.
- Commit:
bc525c73db98605f5bb8d53fb640b9955997fb48- From:
- Omar Polo <op@omarpolo.com>
- Date:
fix asprintf failure check