summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-04-24There is no longer a need for a paste_stack struct or for global_buffersNicholas Marriott
to be global. Move to paste.c.
2014-04-24The switch statement given/when was introduced in Perl 5.10 and gotAlexander Bluhm
experimental in Perl 5.18. So we see warnings in the tests. given is experimental at funcs.pl line 62. when is experimental at funcs.pl line 63. Just suppress this type of warnings for now. If Perl will disable smart match, the simple regression code still works. If they will choose to remove given/when, we can fix it later. Discussed with and OK andre@ afresh1@
2014-04-24fix copied text in error stringBret Lambert
ok reyk@
2014-04-24A fantastic way to make a large unsigned number is to assignBob Beck
a small signed one to it.. Some people on OpenSSL's list noticed - http://marc.info/?l=openssl-dev&m=139809485525663&w=2 This should fix that, and make sure we don't try to write out insane amounts of stuff. ok miod@ tedu@
2014-04-24remove redundant asign. from David HillTed Unangst
2014-04-24Support for the -ssl2 option has been removed, so remove it from usageLawrence Teo
as well ("openssl ciphers -h"). "sure" miod@
2014-04-24on today's episode of things you didn't want to learn:Ted Unangst
do_ssl3_write() is recursive. and not in the simple, obvious way, but in the sneaky called through ssl3_dispatch_alert way. (alert level: fuchsia) this then has a decent chance of releasing the buffer that we thought we were going to use. check for this happening, and if the buffer has gone missing, put another one back in place. the direct recursive call is safe because it won't call ssl3_write_pending which is the function that actually does do the writing and releasing. as reported by David Ramos to openssl-dev: http://marc.info/?l=openssl-dev&m=139809493725682&w=2 ok beck
2014-04-24match some more intel sata devices in ide modeJonathan Gray
2014-04-24regenJonathan Gray
2014-04-24add some more intel sata devices in ide modeJonathan Gray
2014-04-24calloc is better. from Peter MaloneTed Unangst
2014-04-24calloc is better. from Peter MaloneTed Unangst
2014-04-24repair missing semicolon. from Ian McwilliamTed Unangst
2014-04-24misplaced punctuationIngo Schwarze
2014-04-23Unifdef -UPKCS1_CHECK and remove SSL_OP_PKCS1_CHECK_[12], this is leftoverMiod Vallat
``debug'' code from a 15+ years old bugfix and the SSL_OP_PKCS1_CHECK_* constants have had a value of zero since ages. No production code should use them. ok beck@
2014-04-23ain't nobody got time for hpuxTed Unangst
2014-04-23fix some variablesTed Unangst
2014-04-23replace a bunch of hand duped strings with strdupTed Unangst
2014-04-23Don't bother generating win64 assembly prologue.Miod Vallat
2014-04-23malloc/memset -> calloc. from peter maloneTed Unangst
2014-04-23No longer needed during build. Brings a smile on beck@'s face.Miod Vallat
2014-04-23Audit malloc(3)/calloc(3)/realloc(3) usage.Ingo Schwarze
* Change eight reallocs to reallocarray to be safe from overflows. * Change one malloc to reallocarray to be safe from overflows. * Change one calloc to reallocarray, no zeroing needed. * Change the order of arguments of three callocs (aesthetical).
2014-04-23null pointers after free to prevent double frees and worse. also fix aTed Unangst
very obvious use after free. this file may still be a total loss.
2014-04-23The usual idiom to cope with systems not defining socklen_t is to add aMiod Vallat
#define socklen_t int somewhere (or a typedef, whatever gives you an integer type of the size your system expects as the 3rd argument of accept(2), really). OpenSSL here is a bit more creative by using an union of an int and a size_t, and extra code if sizeof(int) != sizeof(size_t) in order to recover the proper size. With a comment mentioning that this has no chance to work on a platform with a stack growing up and accept() returning an int, fortunately this seems to work on HP-UX. Switch to the light side of the force and declare and use socklen_t variables, period. If your system does not define socklen_t, consider bringing it back to your vendor for a refund. ok matthew@ tedu@
2014-04-23whitespaceTed Unangst
2014-04-23close socket in failure cases tooTed Unangst
2014-04-23if realloc failed, BIO_accept would leak memory and return NULL, causingTed Unangst
caller to crash. Fix leak and return an error instead. from Chad Loder
2014-04-23One last Dec C tentacle on alpha.Miod Vallat
2014-04-23When I grow up, I want to write workaround for long long multiplicationsMiod Vallat
under __TANDEM systems and compilers, using hardcoded octal numbers. NOT.
2014-04-23Remove IRIX_CC_BUG workaround.Miod Vallat
2014-04-23I'm glad to know that Ultrix CC has a bug optimizing switch() statementsMiod Vallat
lacking an explicit `case 0:' construct. But Ultrix has been dead for more than 15 years, really. Don't give it any reason to move out of its coffin.
2014-04-23Grr, the more you remove, the more there remain.Miod Vallat
2014-04-23Forgotten during latest spring cleaning of unreferenced bits.Miod Vallat
2014-04-23Unifdef -UPEDANTIC. ok beck@ tedu@Miod Vallat
2014-04-23Audit strlcpy(3)/strlcat(3) usage:Ingo Schwarze
* Add missing truncation checks to three calls. * In four cases where we know that the distination buffer is large enough, cast the return vailue to (void).
2014-04-23Remove duplicate pointer assignment in ASN1_primitive_free(); Dirk EnglingMiod Vallat
2014-04-23Figure out endianness at compile-time, using _BYTE_ORDER fromMiod Vallat
<machine/endian.h>, rather than writing 1 to a 32-bit variable and checking whether the first byte is nonzero. tweaks and ok matthew@; ok beck@ tedu@
2014-04-23Remove more Kerberos cruft.Antoine Jacoutot
ok jca@ jmc@
2014-04-23Better name for fdmaskp, reduce the scope of some variables, don't abuseJeremie Courreges-Anglas
cc for poll()'s return value, and indent decls. ok florian@
2012-10-13import OpenSSL-1.0.1cDamien Miller
2010-10-01import OpenSSL-1.0.0aDamien Miller
2008-09-06import of OpenSSL 0.9.8hDamien Miller
2014-04-23improve SQL style: avoid "SELECT *", be explicit in what columns we want;Ingo Schwarze
suggested by espie@.
2014-04-23tweak previous; sorry ingo, my review was pretty poor;Jason McIntyre
2014-04-23Audit strlcpy(3)/strlcat(3) usage.Ingo Schwarze
* Repair three instances of silent truncation, use asprintf(3). * Change two instances of strlen(3)+malloc(3)+strlcpy(3)+strlcat(3)+... to use asprintf(3) instead to make them less error prone. * Cast the return value of four instances where the destination buffer is known to be large enough to (void). * Completely remove three useless instances of strlcpy(3)/strlcat(3). * Mark two places in -Thtml with XXX that can cause information loss and crashes but are not easy to fix, requiring design changes of some internal interfaces. * The file mandocdb.c remains to be audited.
2014-04-23Fix format string in DEBUG message (not compiled by default).Reyk Floeter
ok blambert@
2014-04-23remove Z option and default to something halfway to J.Ted Unangst
we always junk small chunks now, and the first part of pages, but only after free. J still does the old thing. j disables everything. Consider experimental as we evaluate performance in the real world. ok otto
2014-04-23No need for vargs here.Florian Obser
While there move declaration of divert{,6}_output() to .c as it's a private function. Also switch first two args to make it more like similar functions (both suggested by mpi@). Input/OK mpi@, OK lteo@
2014-04-23Use arc4random as PRNG backend, instead of libcrypto RAND.Jeremie Courreges-Anglas
Feedback and ok guenther@ deraadt@ Discussed with upstream, who is preparing an arc4random backend.
2014-04-23more info about HISTORY; ok jmc@Ingo Schwarze