User Details
User Details
- User Since
- Feb 26 2021, 3:47 PM (241 w, 1 d)
Fri, Oct 10
Fri, Oct 10
olce committed rG2b5cc1e0e095: vfs cache: Add vn_fullpath_jail(), factor out common code (authored by olce).
vfs cache: Add vn_fullpath_jail(), factor out common code
olce committed rG4b7c2a0193dd: nfsuserd: Fix OOB access on membership of too many groups, take 2 (authored by olce).
nfsuserd: Fix OOB access on membership of too many groups, take 2
olce committed rG5fe22e3d09bd: nfsuserd: Fix OOB access on membership of too many groups (authored by olce).
nfsuserd: Fix OOB access on membership of too many groups
olce committed rG25624850a77b: initgroups.3: Clarify that ENOMEM is a possible value for 'errno' (authored by olce).
initgroups.3: Clarify that ENOMEM is a possible value for 'errno'
olce committed rGdbfdd93a188b: getgrouplist.3: Insist on the value returned in 'ngroups'; Minor changes (authored by olce).
getgrouplist.3: Insist on the value returned in 'ngroups'; Minor changes
share/man/man9: Fix compilation
olce committed rG58f55afb301b: mdo(1): Add support and shortcuts for fully specifying users and groups (authored by olce).
mdo(1): Add support and shortcuts for fully specifying users and groups
olce committed rGb025aa9f5abc: MAC/do: Check executable path from the current jail's root (authored by olce).
MAC/do: Check executable path from the current jail's root
olce committed rGb0f448f3e321: vn_fullpath.9: Add missing links for described functions (authored by olce).
vn_fullpath.9: Add missing links for described functions
olce committed rG3638aba1ceb9: tools/regression/priv: Don't call setgroups() with the effective GID (authored by olce).
tools/regression/priv: Don't call setgroups() with the effective GID
olce committed rG995d37ecd3b6: mac_do.4: Mention "from" part's GID can also match supplementary groups (authored by olce).
mac_do.4: Mention "from" part's GID can also match supplementary groups
olce committed rG67cf21e16faf: getgroups.2: Clarify, mention ascending order, add SECURITY CONSIDERATIONS (authored by olce).
getgroups.2: Clarify, mention ascending order, add SECURITY CONSIDERATIONS
stress2: Fix removal of supplementary groups
group.5: Add a reference to setcred(2)
setgroups.2: Add SECURITY CONSIDERATIONS, rework
olce committed rG06e0e31f8698: initgroups.3: Revamp, mention FreeBSD 15's change in behavior (authored by olce).
initgroups.3: Revamp, mention FreeBSD 15's change in behavior
olce committed rG587263cb1ddb: getgrouplist.3: Rework, use more appropriate terminology (authored by olce).
getgrouplist.3: Rework, use more appropriate terminology
olce committed rGfaa9bcee1540: initgroups(3): Fix return value on allocation failure (authored by olce).
initgroups(3): Fix return value on allocation failure
olce committed rG1086299d7abf: linux: getsockopt(): Simplify exporting groups a bit (authored by olce).
linux: getsockopt(): Simplify exporting groups a bit
olce committed rG22006b452522: linux: setgroups16(): Pre-extend the groups array (authored by olce).
linux: setgroups16(): Pre-extend the groups array
olce committed rG216460b80674: linux: setgroups(): Avoid allocation under the process lock (authored by olce).
linux: setgroups(): Avoid allocation under the process lock
olce committed rG560c1bb21fe2: cr_canseeothergids(): Make the logic easier to grasp (authored by olce).
cr_canseeothergids(): Make the logic easier to grasp
olce committed rG563771ecdd0c: libc: compat.h: Remove a superfluous blank line at end (authored by olce).
libc: compat.h: Remove a superfluous blank line at end
olce committed rG6e888a22743f: jail.2: Mention EPERM is returned on open directories (authored by olce).
jail.2: Mention EPERM is returned on open directories
sys: NOTES, GENERIC*: Re-order 'wlan_tkip'
olce committed rG59f602e2f229: getgroups.2: Simplifications; Be clearer on programs to be modified (authored by olce).
getgroups.2: Simplifications; Be clearer on programs to be modified
olce committed rGc363dcbe75b2: getgroups.2: Simplifications; Be clearer on programs to be modified (authored by olce).
getgroups.2: Simplifications; Be clearer on programs to be modified
Seems good (disclaimer: I only did manual code analysis, but didn't test).
olce added inline comments to D52832: packages: Install development manpages in the -dev package.
olce added inline comments to D52832: packages: Install development manpages in the -dev package.
Thu, Oct 9
Thu, Oct 9
olce committed rG94f08f6a84e3: nfsuserd: Fix OOB access on membership of too many groups, take 2 (authored by olce).
nfsuserd: Fix OOB access on membership of too many groups, take 2
olce committed rGef40e02a8d78: nfsuserd: Fix OOB access on membership of too many groups (authored by olce).
nfsuserd: Fix OOB access on membership of too many groups
olce committed rGbaf1210fa2e5: initgroups.3: Clarify that ENOMEM is a possible value for 'errno' (authored by olce).
initgroups.3: Clarify that ENOMEM is a possible value for 'errno'
olce committed rG23494c4987b4: getgrouplist.3: Insist on the value returned in 'ngroups'; Minor changes (authored by olce).
getgrouplist.3: Insist on the value returned in 'ngroups'; Minor changes
olce committed rG75eb6846269b: nfsuserd: Fix OOB access on membership of too many groups, take 2 (authored by olce).
nfsuserd: Fix OOB access on membership of too many groups, take 2
olce committed rGc36a44e1cdab: initgroups.3: Clarify that ENOMEM is a possible value for 'errno' (authored by olce).
initgroups.3: Clarify that ENOMEM is a possible value for 'errno'
olce committed rGbb339adfb2a2: nfsuserd: Fix OOB access on membership of too many groups (authored by olce).
nfsuserd: Fix OOB access on membership of too many groups
olce committed rGf5544556754e: getgrouplist.3: Insist on the value returned in 'ngroups'; Minor changes (authored by olce).
getgrouplist.3: Insist on the value returned in 'ngroups'; Minor changes
Wed, Oct 8
Wed, Oct 8
olce updated the diff for D52733: vm_domainset: Ensure round-robin works properly.
Update after discussion and fixing the last use of vm_domainset_iter_page_init() with an object not write-locked in D52982.
olce committed rG781802df7a2b: uma_core: Rely on domainset iterator to wait on M_WAITOK (authored by olce).
uma_core: Rely on domainset iterator to wait on M_WAITOK
olce added inline comments to D52441: uma_core: Rely on domainset iterator to wait on M_WAITOK.
olce added a comment to D52733: vm_domainset: Ensure round-robin works properly.
Indeed, that is the only problem in UMA.
Please add Reported by: olce at commit, thanks!
olce added a comment to D52832: packages: Install development manpages in the -dev package.
It seems good indeed that not all man pages related to libraries go into separate packages, as some are targeted at administrators.
Tue, Oct 7
Tue, Oct 7
olce added a reviewer for D52962: sys/rpc: UNIX auth: Use AUTH_SYS_MAX_{GROUPS,HOSTNAME} as limits (1/2): dfr.
olce added a reviewer for D52963: sys/rpc: UNIX auth: Use AUTH_SYS_MAX_{GROUPS,HOSTNAME} as limits (2/2): dfr.
olce added a reviewer for D52960: sys/rpc: UNIX auth: Fix OOB accesses, notably writes on decode: dfr.
olce added a comment to D52263: krpc: UNIX auth: Prevent DoS, fix various OOB accesses.
olce requested review of D52964: sys/rpc: UNIX auth: Fix OOB reads on too short message.
olce requested review of D52963: sys/rpc: UNIX auth: Use AUTH_SYS_MAX_{GROUPS,HOSTNAME} as limits (2/2).
olce requested review of D52962: sys/rpc: UNIX auth: Use AUTH_SYS_MAX_{GROUPS,HOSTNAME} as limits (1/2).
olce requested review of D52961: sys/rpc: Define AUTH_SYS_MAX_{GROUPS,HOSTNAME}.
olce requested review of D52960: sys/rpc: UNIX auth: Fix OOB accesses, notably writes on decode.
olce committed rGd3bfcd66409b: libsa: smbios: Detect less-than-64-bit platforms via __SIZEOF_SIZE_T__ (authored by olce).
libsa: smbios: Detect less-than-64-bit platforms via __SIZEOF_SIZE_T__
Mon, Oct 6
Mon, Oct 6
nullfs: Fix some style after recent changes
olce committed rG09f925b57aeb: nullfs: Slightly reduce contention by reducing concurrent sections (authored by olce).
nullfs: Slightly reduce contention by reducing concurrent sections
olce added inline comments to D52935: nullfs: Apply comments from D38761 (style fixes, small improvements).
olce requested review of D52935: nullfs: Apply comments from D38761 (style fixes, small improvements).
olce updated the diff for D52885: (draft) style.9: Encourage style changes when doing significant modifications.
- Amend in the direction of feedbacks.
- Move the whole block of text at the send of the section (but still before the recent C++ section).
Fri, Oct 3
Fri, Oct 3
Looks good (but please see suggested changes). I've not tested the patch though.
olce committed rG9d0b660e6949: jemalloc: Fix activating debug on WITHOUT_MALLOC_PRODUCTION (authored by olce).
jemalloc: Fix activating debug on WITHOUT_MALLOC_PRODUCTION
olce added a comment to D52850: jemalloc: Fix activating debug on WITHOUT_MALLOC_PRODUCTION.
olce updated the summary of D52850: jemalloc: Fix activating debug on WITHOUT_MALLOC_PRODUCTION.
Thu, Oct 2
Thu, Oct 2
namei.9: Remove duplicate WANTPARENT description
olce committed rG4ffcb1a4a99c: mdo(1): Add support and shortcuts for fully specifying users and groups (authored by olce).
mdo(1): Add support and shortcuts for fully specifying users and groups
olce committed rG51a336aca7d9: vn_fullpath.9: Add missing links for described functions (authored by olce).
vn_fullpath.9: Add missing links for described functions
olce committed rG89958992b618: MAC/do: Check executable path from the current jail's root (authored by olce).
MAC/do: Check executable path from the current jail's root
olce committed rG09ae06b1b224: vfs cache: Add vn_fullpath_jail(), factor out common code (authored by olce).
vfs cache: Add vn_fullpath_jail(), factor out common code
olce committed rG907fbfd7e4b6: mac_do.4: Mention "from" part's GID can also match supplementary groups (authored by olce).
mac_do.4: Mention "from" part's GID can also match supplementary groups
olce added inline comments to D52860: sdhci.4: Improve HARDWARE.
olce requested review of D52850: jemalloc: Fix activating debug on WITHOUT_MALLOC_PRODUCTION.
olce abandoned D52685: (draft) libc: Use __sym_compat() to fix references to compatibility system calls.
Fixed in D52687.
Please also add the acronym in the manual page as suggested in an inline comment.
Tue, Sep 30
Tue, Sep 30
namei.9: Remove duplicate WANTPARENT description
Mon, Sep 29
Mon, Sep 29
share/man/man9: Fix compilation
olce committed rG3ca1e69028ac: mdo(1): Add support and shortcuts for fully specifying users and groups (authored by olce).
mdo(1): Add support and shortcuts for fully specifying users and groups
olce committed rG05e5de00b9ea: vn_fullpath.9: Add missing links for described functions (authored by olce).
vn_fullpath.9: Add missing links for described functions
olce committed rGc5a813c9f486: vfs cache: Add vn_fullpath_jail(), factor out common code (authored by olce).
vfs cache: Add vn_fullpath_jail(), factor out common code
olce committed rG9f269a0a771a: MAC/do: Check executable path from the current jail's root (authored by olce).
MAC/do: Check executable path from the current jail's root
olce added a comment to D52757: vfs cache: Add vn_fullpath_jail(), factor out common code.
olce added a comment to D52757: vfs cache: Add vn_fullpath_jail(), factor out common code.
Sun, Sep 28
Sun, Sep 28
olce updated the diff for D52757: vfs cache: Add vn_fullpath_jail(), factor out common code.
- Add vn_fullpath_jail() to vn_fullpath(9) and slightly tweak the latter
olce added a comment to D52757: vfs cache: Add vn_fullpath_jail(), factor out common code.
I've just discovered the vn_fullpath(9) manual page, which I should update with vn_fullpath_jail().
olce committed rGc1d5fc4e0cfc: mac_do.4: Mention "from" part's GID can also match supplementary groups (authored by olce).
mac_do.4: Mention "from" part's GID can also match supplementary groups
Sat, Sep 27
Sat, Sep 27
olce updated the summary of D52757: vfs cache: Add vn_fullpath_jail(), factor out common code.
olce updated the summary of D52758: MAC/do: Check executable path from the current jail's root.