| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-08-27 | Improve libtls error messages. | Joel Sing | |
| The tls_set_error() function previously stored the errno but did nothing with it. Change tls_set_error() to append the strerror(3) of the stored errno so that we include useful information regarding failures. Provide a tls_set_errorx() function that does not store the errno or include strerror(3) in the error message. Call this function instead of tls_set_error() for errors where the errno value has no useful meaning. With feedback from and ok doug@ | |||
| 2015-08-27 | Split the persistent/configuration flags from temporary state flags and | Joel Sing | |
| ensure that the temporary state flags get cleared in tls_reset(). Fixes a bug spotted by Marko Kreen whereby TLS_CONNECTING could remain on reset. While here, also move the TLS_STATE_CONNECTING check to after the TLS_CLIENT check - if TLS_STATE_CONNECTING was ever set on any other context type it would allow a bypass. ok bluhm@ | |||
| 2015-08-27 | Change AEAD out_len argument to size_t instead of ssize_t - while here, | Joel Sing | |
| rename it to out_len so that its purpose is more obvious. Also, drop two checks that are no longer possible (and have not been for a long time). Spotted by and ok doug@ | |||
| 2015-08-27 | use explicit_bzero to clear some memory that had creds in it instead of | David Gwynne | |
| memset. ok deraadt@ millert@ | |||
| 2015-08-27 | backout previous for now, as it causes me portability problems | Alexandre Ratchov | |
| 2015-08-27 | fix typos in comments and error messages | Alexandre Ratchov | |
| 2015-08-27 | Allow sparse blocks to be used as silence if samples are encoded | Alexandre Ratchov | |
| as signed integers. | |||
| 2015-08-27 | fix comment | Philip Guenther | |
| 2015-08-27 | Remove SSLv3 support from LibreSSL regression tests. | Doug Hogan | |
| 2015-08-27 | Make functions that are internal to tls verify static. | Joel Sing | |
| Spotted by Marko Kreen. Rides libtls major bump. | |||
| 2015-08-27 | sync | Theo de Raadt | |
| 2015-08-27 | Crank major version for libssl and libtls due to SSLv3 removal. | Doug Hogan | |
| 2015-08-27 | Remove SSLv3 support from LibreSSL. | Doug Hogan | |
| This is the first wave of SSLv3 removal which removes the main SSLv3 functions. Future commits will remove the rest of the SSLv3 support. Discussed the plan at c2k15. Input from jsing@, beck@, miod@, bcook@, sthen@, naddy@, and deraadt@. ok jsing@, beck@ | |||
| 2015-08-27 | simple sizes for free() | Theo de Raadt | |
| 2015-08-27 | simple size for free() | Theo de Raadt | |
| 2015-08-27 | simple sizes for free() | Theo de Raadt | |
| 2015-08-27 | use strtonum to parse the number of lines of context. | David Gwynne | |
| this provides better error messages. ok deraadt@ guenther@ | |||
| 2015-08-27 | ELF uberalles: remove #ifdef _NLIST_DO_ELF tests | Philip Guenther | |
| 2015-08-27 | Use static and __{BEGIN,ENV}_HIDDEN_DECLS to hide a bunch of internal | Philip Guenther | |
| symbols that are not longer exported. (This improves the generated code.) ok deraadt@ | |||
| 2015-08-27 | Move the __rand48_* declarations into rand48.h, and then hide both them | Philip Guenther | |
| and __dorand48() and __rand48_deterministic ok deraadt@ | |||
| 2015-08-27 | Use kbind for lazy binding GOT/PLT updates on hppa. | Philip Guenther | |
| Much discussion with and assistance from miod and deraadt ok deraadt@ | |||
| 2015-08-27 | Add a boundary check for safety and use snprintf() to construct the IP | YASUOKA Masahiko | |
| address strings instead of strl{cpy,cat}(). Also make the function return a valid string even in failure case. input deraadt ok deraadt | |||
| 2015-08-26 | Simple size for free(). These are a pleasure to convert when the | Theo de Raadt | |
| allocation is clearly spelled out as ptr = malloc(sizeof(*ptr), ...) | |||
| 2015-08-26 | two simple sizes to free() | Theo de Raadt | |
| 2015-08-26 | trivial size to free() | Theo de Raadt | |
| 2015-08-26 | two simple free() sizes | Theo de Raadt | |
| 2015-08-26 | More overflow checks in XML_GetBuffer(), adapted from FreeBSD security | Miod Vallat | |
| advisory FreeBSD-SA-15:20. Most of them were already fixed by niallo@'s work, which unfortunately got removed in r1.10 /-: With help from doug@ | |||
| 2015-08-26 | Put back local changes (revisions 1.2 to 1.4), which unfortunately got lost in | Miod Vallat | |
| the last upgrade. ok deraadt@ | |||
| 2015-08-26 | Enhance setdisklabel() to ensure that the disk size and 'C' | Kenneth R Westerback | |
| partition information of the in-memory disklabel remains correct. ok deraadt@ | |||
| 2015-08-26 | tweak previous; | Jason McIntyre | |
| 2015-08-26 | remove #ifdef OK_TO_WRITE_DISK which isn't used by default. | Sebastien Marie | |
| and few disambiguisations suggested by cc(1) - parentheses around && within || - explicit braces to avoid ambiguous 'else' ok doug@ | |||
| 2015-08-26 | use ENAMETOOLONG instead of EINVAL for errno when string overflow occurs. | Sebastien Marie | |
| document tame.2 according. ok deraadt@ | |||
| 2015-08-26 | Kill code that tries to handle 32-bit code that we're never going to use. | Mark Kettenis | |
| 2015-08-26 | MBR must have priority over GPT. | Kenneth R Westerback | |
| Found, fix tested & thus ok ajacoutot@ | |||
| 2015-08-26 | Use the specialized m_copym2() preserving the alignment of the payload | Martin Pieuchot | |
| in bridge_localbroadcast() too. This should fix another alignment issue kettenis@ is seeing. ok dlg@ | |||
| 2015-08-26 | Get rid if em_align. This approach used to make sense, but now that the | Mark Kettenis | |
| hardware rx mtu always gets set to the maximum supported value we will hit it for every received packet. Instead, use a larger mbuf cluster size on strict alignment architectures such that we can always m_adj to make sure the packets are properly aligned. This wastes some memory but simplifies things considerably. Hopefully we can reduce the spillage in the near future by taking advantage of recent improvements in the pool code. ok mpi@, mikeb@, dlg@ | |||
| 2015-08-26 | After a report from jsg about a memory leak (or was it a double free?), | Theo de Raadt | |
| refactor the code around getcwd and canonpath, with some help from semarie ok semarie | |||
| 2015-08-26 | Add TIOCGETA to the tame list for TAME_IOCTL. | Doug Hogan | |
| This is used by readpassphrase() and curses. ok deraadt@ | |||
| 2015-08-26 | regen | Doug Hogan | |
| 2015-08-26 | Convert paths argument of tame(2) to const char **. | Doug Hogan | |
| The path will not be modified and this reduces casts. Discussed with many. ok deraadt@ | |||
| 2015-08-26 | sync | Theo de Raadt | |
| 2015-08-26 | use 0xffff not 0xfffff for a 16 bit port constant | Jonathan Gray | |
| ok mikeb@ | |||
| 2015-08-26 | Sync with other per-arch Symbols.list files | Philip Guenther | |
| 2015-08-26 | fix a use after free in an error path found with afl | Jonathan Gray | |
| ok yasuoka@ | |||
| 2015-08-26 | Kbind 3: The Legend Continues! | Philip Guenther | |
| Use kbind for lazy binding GOT/PLT updates on alpha and mips64. While here add some gcc __predict hints. Much discussion with and assistance from miod and deraadt ok deraadt@ | |||
| 2015-08-26 | sync | Theo de Raadt | |
| 2015-08-26 | Oh yeah, crank the major. You talk about something and then your mind | Philip Guenther | |
| wanders... | |||
| 2015-08-26 | Hide many (194!) symbols that nothing should be using. | Philip Guenther | |
| Delete exect(2); it wasn't portable across archs and nothing used it. ports test build by naddy@ ok deraadt@ kettenis@ | |||
| 2015-08-26 | Replace clock_gettime UPTIME with MONOTONIC to improve worm portability. | Rafael Zalamena | |
| ok deraadt@, guenther@. | |||
| 2015-08-26 | Improve robots(6) by using timespec*() functions, replacing gettimeofday() | Rafael Zalamena | |
| with clock_gettime(MONOTONIC) to avoid clock changes and replacing poll() with ppoll() to deal better with timespec. ok guenther@. | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |