summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2017-01-26Bump libtls minor due to symbol additions earlier this week.Joel Sing
2017-01-26knfBob Beck
2017-01-26Convert ssl3_get_client_hello() to CBS.Joel Sing
ok beck@
2017-01-26Document the ldomctl(8) 'select' command previously not mentioned in theStefan Sperling
manual page. Also, replace an alternative fact given for the 'dump' command with an actual fact: it does not accept an argument.
2017-01-26Disable pgt(4) and acx(4) on sparc64. The kernel has grown too large.Stefan Sperling
Unbreaks the build and allows GENERIC.MP to boot again on T5220. I am quite sure the zero users of these old wireless cards on sparc64 will be much happier with a ral(4) or athn(4) card instead. ok otto@
2017-01-26Finish the fallout of the SSLerr->SSLerror cleanup to get rid of the uglyBob Beck
line wraps that resulted
2017-01-26Hide SSLerr() under #ifndef LIBRESSL_INTERNAL since we shouldn't beBob Beck
using it anymore ok jsing@
2017-01-26syncStuart Henderson
2017-01-26Fix rtwn(4) IQ calibration code (affects PCI devices only).Stefan Sperling
Some bits which probably should have been cleared were never cleared. Inspired by parts of FreeBSD's giant r307529 commit. Tested by myself on 8188CE PCI and jca@ on RTL8188RU USB.
2017-01-26Send the error function codes to rot in the depths of hell where they belongBob Beck
We leave a single funciton code (0xFFF) to say "SSL_internal" so the public API will not break, and we replace all internal use of the two argument SSL_err() with the internal only SSL_error() that only takes a reason code. ok jsing@
2017-01-26Merge the single two line function from ssl_err2.c into ssl_err.c.Joel Sing
ok beck@
2017-01-26Select the routing domain to be used for kill states by host or bySebastian Benoit
label, by adding a -V <rdomain> option. written by Bertrand Provost, provost DOT bertrand AT gmail DOT com, thanks. ok florian@, with feedback from florian and jmc.
2017-01-26english is hard.Bob Beck
2017-01-26Limit the number of sequential empty records that we will processBob Beck
before yielding, and fail if we exceed a maximum. loosely based on what boring and openssl are doing ok jsing@
2017-01-26Refactor the code to generate a WANT_READ into a function, as we areBob Beck
using it more and more to avoid spins. ok jsing@
2017-01-26Remove most of SSL3_ENC_METHOD - we can just inline the function callsJoel Sing
and defines since they are the same everywhere. ok beck@
2017-01-26Move relatively new version range code from ssl_lib.c into a separateJoel Sing
ssl_versions.c file. ok beck@
2017-01-26Rename s3_{both,clnt,pkt_srvr}.c to have an ssl_ prefix since they are noJoel Sing
longer SSLv3 code. ok beck@
2017-01-26Merge the client/server version negotiation into the existing (currentlyJoel Sing
fixed version) client/server code. ok beck@
2017-01-26deactivate the existing pledge regress tests, they needSebastian Benoit
some changes to work again. activate new ioctl subdirectory.
2017-01-26add check for pledge(pf), and pledge(pf) + fd passingSebastian Benoit
2017-01-26enable compiler warnings and fix them.Sebastian Benoit
2017-01-26Remove unused _REL variableRobert Peichaer
OK aja@
2017-01-26Document ERR_load_BN_strings(3).Ingo Schwarze
jsing@ confirmed that this function is public and worth documenting. This page needs much more work, it is outrageously incomplete and unclear. For example, it remains unexplained what error strings are, what "registering" means and what the benefit for the application is, what happens if it is not done, or what happens if an error occurs after calling ERR_free_strings(3). I tried to read the code, but it is so contorted that i postponed that work. For example, it looks like there are hooks for applications to replace the functions used for registering strings by other, application-supplied functions, and, of course, there are many levels of macro and function wrappers. For now, i only documented the most obvious BUGS.
2017-01-26Move setting _OSrev to immediately after verifying _KERNV and exitRobert Peichaer
early if _OSrev is empty. OK aja@
2017-01-26No need to escape '.' in shell patterns - it has no special meaning.Robert Peichaer
OK aja@
2017-01-26Spacing and use arithmetic testRobert Peichaer
OK aja@
2017-01-26Each entry in REGRESS_TARGETS is run in a separate make process, so theJonathan Matthew
.END target will kill ldapd after each one. To compensate, make each test target depend on bootstrap to ensure ldapd is running. In .END, remove the pid file after killing ldapd so reduce noise.
2017-01-26Allocate the mbuf before the netlock. While here, move the setting ofDavid Hill
nflag closer to where its value is used. ok mpi@
2017-01-26The only difference between armv7 and arm64 fdt virtio attachments is anJonathan Gray
uneeded include. Remove the include and move to MI fdt directory.
2017-01-26add fdt config line to synopsisJonathan Gray
2017-01-26Use numeric exit codes consistently rather than a mixBob Beck
ok jsing@
2017-01-26styleBob Beck
2017-01-26Fix the structure initialzation to compile. bad inioguchi and millert :)Bob Beck
ok jsing@ rpe@
2017-01-26Remove ssl3_undef_enc_method - if we have internal bugs we want to segfaultJoel Sing
so that we can debug it, rather than adding a "should not be called" error to the stack. Discussed with beck@
2017-01-26Remove a sess_cert reference from a comment in the public header.Joel Sing
Noted by zhuk@
2017-01-26Do not hold the netlock while pool_get() may sleep. It is notAlexander Bluhm
necessary to lock code that initializes a new socket structure before it has been linked to any global list. OK mpi@
2017-01-25split the tls_init(3) that had grown fat to allow healthy future growth;Ingo Schwarze
suggested by jsing@; "i would just chuck it in" jmc@
2017-01-25Clear option before adding to array if no -a, reported by MichaelNicholas Marriott
Nickerson.
2017-01-25Do not try to execute this test on !m88k archs.Martin Pieuchot
Logic taken from the sparc64 regress, to avoid false negative on bluhm@'s regression test infrastructure.
2017-01-25Introduce a hack to remove false-positives when looking for memoryMartin Pieuchot
allocation that can sleep while holding the NET_LOCK(). To be removed once we're confident the remaining code paths are safe. Discussed with deraadt@
2017-01-25Add infrastructure to build LLVM for mips64.Patrick Wildt
"check with visa@" kettenis@ "go ahead" visa@
2017-01-25Since raw_input() and route_input() are gone from pr_input, we canAlexander Bluhm
make the variable parameters of the protocol input functions fixed. Also add the proto to make it similar to IPv6. OK mpi@ guenther@ millert@
2017-01-25Fix array initialization syntax for ocspcheck.cKinichiro Inoguchi
Conformance to C99, and avoiding build break on VisualStudio and HP-UX. OK millert@
2017-01-25As NET_LOCK() is a read/write lock, it can sleep in sotask(). SoAlexander Bluhm
the TASKQ_CANTSLEEP flag is no longer valid for the splicing thread. OK mikeb@
2017-01-25document BN_asc2bn(3);Ingo Schwarze
jsing@ confirmed that it is a public function worth documenting
2017-01-25Fix build on mips64.Visa Hankala
2017-01-25Add xterm+edit to tmux so that we get the old Home and End sequencesNicholas Marriott
(only the modified ones are needed from xterm+pcfkeys).
2017-01-25Revert previous for now, it will break TERM=screen.Nicholas Marriott
2017-01-25If xterm-keys is on, use xterm(1) style keys for Home and End as well asNicholas Marriott
modified keys.
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-21 20:13:59 +0000