Commits


Revert "portable: ci: macos: add libressl" Remove dependency on libretls as TLS isn't going to be included in gotwebd any time soon. This reverts commit af7f5027866eea7b4299c2319f83d0eb18a395e6.


portable: gotwebd: handle setres{g,u}id This isn't defined on all systems.


portable: ci: macos: add libressl


portable: add setproctitle This is needed for gotwebd.


portable: gotwebd: first stab at compilation This is not yet "clean", but does compile. A few things to consider: * See comments beginning with "TA:"


portable: honour sys/queue.h directly Don't assert compat/queue.h in favour of what's on the system. When -portable was first being developed, there were frequent clashes between libbsd, and the check for sys/queue.h got lost in that noise. Noticed by stsp@


portable: set next version


portable: set next version


portable: release 0.73


portable: set next version


fix cross-compilation; diff from Leah Neukirchen (thanks!), ok thomas


portable: set next version


portable: set next version Bump the version in git now to the next version. Over time, this should really use the SHA1 to indicate a non-released build.


Release 0.69


portable: add siphash implementation Siphash is being used in place of murmurhash for object-id set as this is faster. However, this isn't really seen much in the non-BSD userspace, so provide an implementation for it portably, if one isn't found.


Release 0.68.1 Update CHANGELOG and configure.ac for the 0.68.1 release


Release 0.68 Update CHANGELOG and configure.ac for the -portable 0.68 release.


portable: enable got-read-patch Allow the libexec helper, `got-read-patch` to be compiled, portably.


portable: add support for DragonFlyBSD This adds support for DragonFlyBSD.


portable: improve panelw detection Rather than making certain checks for panelw dependant on the underlying operating system, actually use pkg-config's detection mechanism properly. This makes the checking for panelw much easier and broader for other OSes which might have either panelw or gnupanelw.


portable: support NetBSD This adds support for NetBSD, using the following external dependencies: libuuid ncursesw There is no CI (yet) as enabling that on Cirrus-CI requires some work, so for now, these builds will be run manually before releases. The test suite will also need tweaking to be fully supported but the key tests are supported for now.


portable: include support for MacOS This adds support for MacOS (Monteray onward, although should work on older MacOSes). The BSD wrapper for poll/ppoll has been lifted from the work the folks over at OpenSSH have done -- thanks!


Release 0.67


portable: add support for landlock landlock is a new set of linux APIs that is conceptually similar to unveil(2): the idea is to restrict what a process can do on a specified part of the filesystem. There are some differences in the behaviour: the major one being that the landlock ruleset is inherited across execve(2). This just restricts the libexec helpers by completely revoking ANY filesystem access; after all they are the biggest attack surface. got send/fetch/clone *may* end up spawning ssh(1), so at the moment is not possible to landlock the main process. From Omar Polo.


Release 0.66