| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-04-20 | theo found a file we don't seem to need, but just in case, i will paste | Ted Unangst | |
| the contents below: #!/usr/local/bin/perl # x86 assember | |||
| 2014-04-20 | Restore beck's rev 1.9: snprintf() was reviewed | Philip Guenther | |
| 2014-04-20 | KNF. | Joel Sing | |
| 2014-04-20 | Restore beck's rev 1.3: snprintf() was reviewed | Philip Guenther | |
| 2014-04-20 | More KNF. | Joel Sing | |
| 2014-04-20 | KNF. | Joel Sing | |
| 2014-04-20 | KNF. | Joel Sing | |
| 2014-04-20 | KNF. | Joel Sing | |
| 2014-04-20 | More KNF. | Joel Sing | |
| 2014-04-20 | More KNF. | Joel Sing | |
| 2014-04-20 | gettimeofday() is portable enough and does not need a wrapper | Theo de Raadt | |
| 2014-04-20 | calloc() rather than malloc+memset | Theo de Raadt | |
| 2014-04-20 | Fix indentation, adding braces and combining a nested if to reduce depth | Philip Guenther | |
| 2014-04-20 | KNF. | Joel Sing | |
| 2014-04-20 | KNF. | Joel Sing | |
| 2014-04-20 | Chop off more SSLv2 tentacles and start fixing and noting y2038 issues. | Philip Guenther | |
| APIs that pass times as longs will have to change at some point... Bump major on both libcrypto and libssl. ok tedu@ | |||
| 2014-04-20 | return after error instead of plowing ahead. noticed by mancha1 at zoho | Ted Unangst | |
| 2014-04-20 | Use calloc(a,b) instead of malloc(a*b) + memset(a*b). I don't know if | Theo de Raadt | |
| this instance is integer-overflowable, but we cannot keep hand-auditing every instance (or apathetically ignoring these issues) when the simple calloc idiom is better in the presence of a good calloc(). It is simply unfeasible to always enter correct range checks before the aggregate size calculation, just go find some 4000 lines of code, REPAIR THEM ALL, then come back and tell me I am wrong. This only works on systems where calloc() does the integer overflow check, but if your system doesn't do this, you need to ask your vendor WHY THEY ARE 10 YEARS BEHIND IN BEST PRACTICE? This is the kind of problem that needs to be solved at the right layer. malloc integer-overflow was implicated in the 2002 OpenSSH hole. OpenSSH and much other code is now written to use calloc(), for instance OpenSSH has 103 calls to it. We feel safer with our use of calloc(). It is a natural approach for us to use calloc(). How safe do you feel on systems which lack that range check in their calloc()? Good writeup from 2006: http://undeadly.org/cgi?action=article&sid=20060330071917 | |||
| 2014-04-20 | KNF. | Joel Sing | |
| 2014-04-20 | reset imprint to NULL to avoid double free. from mancha1 at zoho | Ted Unangst | |
| 2014-04-19 | release buffers fix was lost in merge. put it back. | Ted Unangst | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | another attempt at fixing stale x509 data. since we don't know where the | Ted Unangst | |
| initial storage came from, we can't free it. just memset in the sequence case. probably ok beck | |||
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | KNF. | Joel Sing | |
| 2014-04-19 | KNF. | Joel Sing | |
| 2014-04-19 | can't actually do this. cause unknown. | Ted Unangst | |
| 2014-04-19 | KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | Lacking a proof that--for this implementation--exposure of Montgomery | Philip Guenther | |
| multiplication or RSA blinding parameters doesn't permit retroactive timing analysis of the secrets, we'll do the stupidly cheap thing and cleanse them before freeing them. ok deraadt@ | |||
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | We'll interpret a (void) cast on snprintf() to mean it's been verified that | Philip Guenther | |
| truncation is either desirable, not an issue, or is detected and handled later ok deraadt@ | |||
| 2014-04-19 | egd is gone | Theo de Raadt | |
| 2014-04-19 | The internal ssl2_* functions and variables are gone | Philip Guenther | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF and style consistency tweaks | Philip Guenther | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | More KNF. | Joel Sing | |
| 2014-04-19 | use intrinsic strlcpy and strlcat everywhere so we only have one set of | Bob Beck | |
| funcitons to check for incorrect use. keep BUF_strlcpy and BUF_strlcat for API comptibility only. ok tedu@ | |||
| 2014-04-18 | OPENSSL_gmtime() is really just gmtime_r(); ok guenther | Theo de Raadt | |
| 2014-04-18 | spacing | Ted Unangst | |
| 2014-04-18 | tone down some XXXXX to not appear in grep | Ted Unangst | |
| 2014-04-18 | XXXXXXXXXXXXXXXX -> XXX | Ted Unangst | |
| XXXXXXXXXXXXXXXXXXXXXXX -> XXXX | |||
| 2014-04-18 | unifdef NO_SOCK | Ted Unangst | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |