| Age | Commit message (Collapse) | Author |
|---|
|
- Move local variables in genrsa_main() to struct genrsa_config
- Leave long lines more than 80, still
ok bcook@
|
|
Fixes stalling TCP connections on wifi in some situations.
testing jmatthew@, jmc@, Bruno Flueckiger, Micah Muer, Matthias Schmidt
|
|
JSMN_ERROR_NOMEM.
We then need to allocate more tokens and call the parser with its
current state again. It will continue where it left of.
For this to work we also need to pass in the old tokens from the
previous run and not just more space.
Found the hard way by Renaud Allard.
OK millert
|
|
This is necessary when invoking sleep_finish_timeout() without the
kernel lock. If not cancelled properly, an already running endtsleep()
might cause a spurious wakeup on the thread if the thread re-enters
a sleep queue very quickly before the handler completes.
The flag P_TIMEOUT should stay cleared across the timeout cancellation.
Add an assertion for that.
OK mpi@
|
|
|
|
|
|
implement a basic regress test. Needs more work but should be a start.
|
|
the existing framework.
OK job@
|
|
OK job@
|
|
|
|
|
|
uvm_vnp_setsize() which is not free from side-effects.
ok visa@
|
|
rpki-client(1) is an implementation of the Resource Public Key
Infrastructure (RPKI), specified by RFC 6480. The client is responsible
for downloading, validating and converting Route Origin Authorisations
(ROAs) into Validated ROA Payloads (VRPs). The client's output (VRPs)
can be used by bgpd(8) to perform BGP Origin Validation (RFC 6811).
The current rpki-client(1) version depends on the CMS functions in
OpenSSL, this of course needs to be addressed urgently.
Thanks to NetNod, IIS.SE, SUNET & 6connect for supporting this effort!
OK deraadt@
|
|
|
|
|
|
|
|
Ports build by naddy@
Tested by visa on octeon
Tested by kettenis on macppc and sparc64
|
|
|
|
|
|
|
|
|
|
impossible to access the old PATH. save a copy in case we need it later.
bug report from espie.
|
|
from miod
|
|
|
|
|
|
Lake SoC.
From James Hastings
ok kettenis@
|
|
for those tests that are expected to fail because they're not yet
implemented.
okay bluhm@
|
|
Previously, this function would leak the most significant word of its
argument due to branching and memory access pattern. This patch is
enough to fix the use of BN_num_bits() on RSA prime factors in the
library.
The diff is a simplified and more readable (but perhaps less efficient)
version of https://github.com/openssl/openssl/commit/972c87df
by Andy Polyakov and David Benjamin (pre license change). Consult that
commit message for details. Subsequent fixes to follow in the near future.
Issue pointed out by David Schrammel and Samuel Weiser as part of
a larger report.
tests & ok inoguchi, ok jsing
|
|
|
|
|
|
|
|
ok martijn millert
|
|
OK tb
|
|
|
|
|
|
ok reyk@
|
|
|
|
|
|
|
|
|
|
Imagine if we did it throughout the tree, how many copies of strlcpy
would we have, and how much time would all the configure shell scripts
and includes take? It would be ludicrous.
|
|
OK tb
|
|
as a C stub, rather than #define.
Anyways, this "-portable by default" approach is not the OpenBSD way.
|
|
|
|
|
|
|
|
rpki-client(1) is an implementation of the Resource Public Key
Infrastructure (RPKI), specified by RFC 6480. The client is responsible
for downloading, validating and converting Route Origin Authorisations
(ROAs) into Validated ROA Payloads (VRPs). The client's output (VRPs)
can be used by bgpd(8) to perform BGP Origin Validation (RFC 6811).
The current rpki-client(1) version depends on the CMS functions in
OpenSSL, this of course needs to be addressed urgently.
Thanks to NetNod, IIS.SE, SUNET & 6connect for supporting this effort!
OK deraadt@
|
|
|
|
|
|
No binary change according to clang
|
