| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-08-22 | Move to tame(int flags, char *paths[]) API/ABI. | Theo de Raadt | |
| The pathlist is a whitelist of dirs and files; anything else returns ENOENT. Recommendation is to use a narrowly defined list. Also add TAME_FATTR, which permits explicit change operations against "struct stat" fields. Some other TAME_ flags are refined slightly. Not cranking libc now, since nothing commited in base uses this and the timing is uncomfortable for others. Discussed with many; thanks for a few bug fixes from semarie, doug, guenther. ok guenther | |||
| 2015-08-22 | Explicitly list the symbols permitted to be exported by libc. | Philip Guenther | |
| This is primed with the current list of exported symbols so it doesn't change the ABI yet, but will prevent unintentional additions in the future and sets the stage for reductions. ok deraadt@ kettenis@ | |||
| 2015-08-22 | Unify error message between client and server. | Joel Sing | |
| 2015-08-22 | SSL_set_app_data is a macro for SSL_set_ex_data(), which is a wrapper | Joel Sing | |
| around CRYPTO_set_ex_data(), which can fail. Since this is the case, check the return value of CRYPTO_set_ex_data^WSSL_set_ex_data^WSSL_set_app_data. | |||
| 2015-08-22 | Store a reference to the libtls context in the SSL client connection app | Joel Sing | |
| data (as is already done for server connections). From Marko Kreen. | |||
| 2015-08-22 | Make tls_read()/tls_write always set outlen to zero on error - this got | Joel Sing | |
| broken by r1.4. Spotted by Marko Kreen. | |||
| 2015-08-21 | Improve zcalloc(), making it always reallocarray, never calloc(). | Theo de Raadt | |
| millert and myself checked for code which expects zero'd memory, none found. Tighten the size == 0, count == 0 checking as well Discussed with djm, tedu, otto, ok millert | |||
| 2015-08-21 | Whitelist TIOCGPGRP (for tcgetpgrp()) in TAME_IOCTL. | Doug Hogan | |
| Requested by Sunil Nimmagadda to help tame http. ok deraadt@ | |||
| 2015-08-20 | Got stdlib.h -> do not need to cast from void * | Theo de Raadt | |
| 2015-08-20 | All these files include <stdlib.h>, so do not need to cast | Theo de Raadt | |
| malloc/calloc/realloc* returns. | |||
| 2015-08-20 | remove cast of malloc(), since stdlib.h is included | Theo de Raadt | |
| 2015-08-20 | Avoid left-shifting a negative integer, which is undefined. Replace | Christian Weisgerber | |
| it with the intended value, in a defined way. From FreeBSD (Dimitry Andric). ok miod@ deraadt@ kettenis@ | |||
| 2015-08-20 | bump to 2.3.0 for the next LibreSSL release cycle | Brent Cook | |
| 2015-08-19 | Properly handle missing TLS extensions in client hello as a non-failure. | Brent Cook | |
| Noticed by @Ligushka from github. ok miod@, doug@ | |||
| 2015-08-18 | typos | Miod Vallat | |
| 2015-08-17 | Do not include os-note-elf.h here, otherwise we end up with duplicate OS notes | Mark Kettenis | |
| in our binaries. ok miod@ | |||
| 2015-08-16 | Fix test against INADDR_LOOPBACK | Jeremie Courreges-Anglas | |
| ok gilles@ | |||
| 2015-08-14 | Load LC_MESSAGES locale only if the character encoding is UTF-8. | Stefan Sperling | |
| ok mpi tedu phessler zhuk, and discussed with many at c2k15 | |||
| 2015-08-14 | Disable support for loading LC_CTYPE locales other than UTF-8. | Stefan Sperling | |
| ok mpi tedu phessler zhuk, and discussed with many at c2k15 | |||
| 2015-08-13 | Zap a few stray blanks. | Kenneth R Westerback | |
| 2015-08-12 | fix a case where ceill() returns 1.0L: in the x86 extended precision format | Christian Weisgerber | |
| the fraction part has no implicit bit ok deraadt@ | |||
| 2015-08-12 | Mention LC_MESSAGES. | Vadim Zhukov | |
| Input & okay (pre-lock) from jmc@, sobrado@ and stsp@. | |||
| 2015-08-02 | spelling; ok deraadt | Jason McIntyre | |
| 2015-08-01 | Fix a potential out-of-bounds read found via address-sanitizer while | Todd C. Miller | |
| fuzzing as reported by Elliott Hughes. OK doug@ stsp@ | |||
| 2015-08-01 | Use "Ev" macro for AUCAT_COOKIE environment variable. From Michael | Alexandre Ratchov | |
| Reed <m.reed at mykolab.com>. Thanks. | |||
| 2015-07-31 | Fix SRTP parsing. | Doug Hogan | |
| jsing@ noticed that during the CBS conversion, an extra CBS_len comparison was introduced. It should be 0 after extracting MKI. ok jsing@ bcook@ deraadt@ | |||
| 2015-07-29 | Add linker warnings in case SSLv3_{,client,server}_method are referenced. | Miod Vallat | |
| Use of this symbols proves the existence of a code path willingly using SSLv3, even with OPENSSL_NO_SSL3 being defined, which hints that it needs fixing. Discussed with the LibreSSL cabal during c2k15; ok deraadt@ | |||
| 2015-07-29 | Use named initialisers for X509V3_EXT_METHOD structs (for the usual | Joel Sing | |
| reasons) - only change in generated assembly is due to line numbering. | |||
| 2015-07-29 | Expand obsolete M_ASN1.*(cmp|dup|print|set) macros - no change in generated | Joel Sing | |
| assembly. ok bcook@ | |||
| 2015-07-29 | Expand obsolete M_ASN1_STRING_* macros in asn1_lib.c, apply some style(9) | Joel Sing | |
| and drop an unnecessary return from a void function. ok bcook@ doug@ | |||
| 2015-07-28 | ARG_MAX is the standard name (not NCARGS); probab[l]y guenther | Theo de Raadt | |
| 2015-07-28 | Use new AUDIO_GETPOS ioctl instead of AUDIO_GETxOFFS and | Alexandre Ratchov | |
| AUDIO_xERROR. It returns a snapshot of the counters we need and avoids inconsistencies. | |||
| 2015-07-28 | describe CPATH before TMPPATH | Theo de Raadt | |
| 2015-07-28 | unsort: requested by deraadt | Jason McIntyre | |
| 2015-07-27 | some readability fixes; | Jason McIntyre | |
| 2015-07-27 | Less asn1_mac.h - asn1_lib.c does not need it and x_pkey.c should be | Joel Sing | |
| using ASN1err() instead of ASN1_MAC_H_err(). ok miod@ | |||
| 2015-07-27 | Add a description about radius_get_eap_msk(). | YASUOKA Masahiko | |
| 2015-07-27 | Rename radius.3 to radius_new_request_packet.3 to be named after a | YASUOKA Masahiko | |
| function. Also make all functions be listed in the NAME section and have MLINKS in the makefile. suggest jmc ok deraadt | |||
| 2015-07-25 | double words fix; docs are slowly getting moved to mdoc, but this | Igor Sobrado | |
| change will help people translating them. ok jmc@, schwarze@ | |||
| 2015-07-25 | Place the ASN.1 template macros (and remaining implement macros) under | Joel Sing | |
| #ifndef LIBRESSL_INTERNAL - we're not using these anymore! | |||
| 2015-07-25 | double word fix. | Igor Sobrado | |
| ok jmc@, schwarze@ | |||
| 2015-07-25 | Manually expand ASN.1 template macros - only change in generated assembly | Joel Sing | |
| is due to line numbering. | |||
| 2015-07-25 | Expand another ASN.1 template macro that snuck through last time around. | Joel Sing | |
| No change in generated assembly. | |||
| 2015-07-25 | Expand ASN.1 template macros that got missed in the last pass - only change | Joel Sing | |
| to generated assembly is due to line numbers. | |||
| 2015-07-25 | Expand ASN.1 template macros - the generated assembly only differs by | Joel Sing | |
| changes to line numbers. | |||
| 2015-07-25 | Expand ASN.1 template macros - no change in generated assembly. | Joel Sing | |
| 2015-07-25 | Expand ASN.1 template macros - no change in generated assembly. | Joel Sing | |
| 2015-07-25 | Expand another wall of ASN.1 template macros - no change to generated | Joel Sing | |
| assembly. | |||
| 2015-07-25 | Expand ASN.1 template macros - no change in generated assembly. | Joel Sing | |
| 2015-07-25 | Expand ASN.1 template macros - no change in generated assembly. | Joel Sing | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |