summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Collapse)Author
2015-10-24typommcc
2015-10-24Move #includes from private.h to the .c files that need them, getting rid ofPhilip Guenther
several. Switch from FILENAME_MAX to PATH_MAX (it's for open(), not fopen()). ok deraadt@ tedu@ krw@
2015-10-24nl_langinfo(3) conforms to POSIX.Anthony J. Bentley
ok jmc@
2015-10-24Unify all the errno names inAlexander Bluhm
- include comment - libc errlist - nls C msg - man page OK tedu@
2015-10-24remove a paste error and get section numbers right for sysctl(3);Jason McIntyre
2015-10-24Cast isxdigit()'s argument to unsigned char.mmcc
ok guenther@
2015-10-24Cast ctype function arguments to unsigned char.mmcc
ok guenther@
2015-10-23Verify that opened message catalog is valid, i.e. avoid integer overflowsTobias Stoeckmann
and out of boundary accesses. with input by miod, ok stsp
2015-10-23Switch if_nameindex(3) to use the new NET_RT_IFNAMES sysctl to get theClaudio Jeker
list of interface names. At the same time switch if_nametoindex(3) and if_indextoname(3) to use if_nameindex(3) instead of getifaddrs(3). if_nameindex(3) exposes much less then getifaddrs(3) and is allowed by pledge(2). With and OK deraadt@
2015-10-23Fix waitpid() loop again: do the errno check only if waitpid() returns -1Philip Guenther
and check WIFEXITED() only if it returns != -1. Delete the logging of errors other than ECHILD: EFAULT and EINVAL are impossible here. ok deraadt@ millert@
2015-10-23Use waitpid() instead of wait() to avoid returning early from another childPhilip Guenther
exiting, and loop the waitpid() on EINTR ok deraadt@ millert@
2015-10-23Loop the waitpid() on EINTR, and save and restore the disposition ofPhilip Guenther
SIGINT and SIGQUIT with sigaction() instead of signal() so that all bits are preserved. ok deraadt@ millert@
2015-10-23Merge the sigaction() and sigprocmask() overloads/wrappers from libpthreadPhilip Guenther
into libc, and move pthread_sigmask() as well (just a trivial wrapper). This provides consistent handling of SIGTHR between single- and multi-threaded programs and is a step in the merge of all the libpthread overloads, providing some ASM and Makefile bits that the other wrappers will need. ok deraadt@ millert@
2015-10-23Add 3 new pledge requests. "ps" exposes enough sysctl information forTheo de Raadt
ps-style programs (there are quite a few in the tree, including tmux). "vminfo" exposes a bit more system operation information, which many observation programs want (such as top). settime allows setting the system time, and will be used to pledge-protect the last ntpd process.
2015-10-23crank libc majorTheo de Raadt
2015-10-23Remove dnssocket() and dnsconnect(), since we decided to use a SOCK_DNSTheo de Raadt
flag instead. ok guenther tedu semarie
2015-10-23Switch to using SOCK_DNS flag, rather than the dnssocket() andTheo de Raadt
dnssonnect() calls. Be a bit careful crossing over this, need a kernel no older than Monday. ok guenther tedu semarie
2015-10-22Cast ctype function arguments to unsigned char.mmcc
ok guenther@
2015-10-22Another change that is needed to restore the previous behaviour ofJoel Sing
ASN1_{GENERALIZED,UTC}TIME_set_string(), which allows it to be called with a NULL pointer. ok beck@
2015-10-22Restore previous behaviour and allowJoel Sing
ASN1_{GENERALIZED,UTC,}TIME_set_string() to be called with a NULL pointer. Found the hard way by @kinichiro on github. ok beck@
2015-10-22document "id" request; from Gregor BestTheo de Raadt
2015-10-21Reject too small bits value in BN_generate_prime_ex(), so that it does not riskMiod Vallat
becoming negative in probable_prime_dh_safe(). Reported by Franck Denis who noticed `openssl gendh 0' would segfault. Fix adapted from OpenSSL RT#2701. ok beck@ jsing@
2015-10-21In the case where len is not a multiple of sizeof(RC4_CHUNK) the RC4 codeJoel Sing
will end up doing a read and write of up to 7 bytes beyond the specified length. This is effectively a non-issue since we read and write back the same data and due to alignment it is within a page boundary. Regardless, avoid this by removing the "special" handling for the remaining length and allow the standard (non-chunk) code to process the remaining bytes, which does not result in overrun. Reported by Pascal Cuoq <cuoq at trust-in-soft.com> - thanks! ok beck@ miod@
2015-10-20Document SOCK_DNS flagTheo de Raadt
ok guenther tedu semarie
2015-10-20Lob a style(9) grenade in here.Joel Sing
2015-10-19Remove old tame() stubTheo de Raadt
2015-10-19free rbio before wbioBob Beck
ok jsing@
2015-10-19missing deref on char check. from David BindermanTed Unangst
2015-10-19Stop supporing "legcay" time formats that OpenSSL supports. Rewrite theBob Beck
utctime and gentime wrappers accordingly. Along with some other cleanup. this also removes the need for timegm. ok bcook@ sthen@ jsing@
2015-10-18Pull in <float.h> instead of declaring __flt_rounds() locallyPhilip Guenther
ok miod@ jsg@
2015-10-18libc DNS functions will now use the new dnssocket() / dnsconnect()Theo de Raadt
system calls. These signal to the pledge kernel code that a DNS transaction is happening. These special sockets only work well with port 53 (there are some cute plans...). Programs calling pledge "inet" will not work! You need pledge "dns", and of course, you need a fairly fresh kernel. ok guenther kettenis tedu
2015-10-18ld.so no longer needs or uses a bind lock, so stop setting it. ThisPhilip Guenther
eliminates a chunk of complexity from the libpthread init and the fork wrapper, as it was the bind lock that needed prebinding before use.
2015-10-18better placement for dnssocket/dnsconnectTheo de Raadt
2015-10-18create libc stubs for dnssocket() and dnsconnect()Theo de Raadt
2015-10-17Rename SYSEXIT() to SYSCALL_END() for consistency with most other archs.Philip Guenther
No change in resulting object files ok millert@
2015-10-17Move the last of the __DBINTERFACE_PRIVATE bits from <db.h> to libc's wrapperPhilip Guenther
and eliminate the now superfluous -D option ok kettenis@ millert@
2015-10-17PROTO_NORMAL for pledge(); ok guentherTheo de Raadt
2015-10-16Check file sizes only for regular files. The current code breaks savecoreTobias Stoeckmann
due to its kvm handling. ok deraadt
2015-10-16Remove pointless externs - the structs are declared in the same files aJoel Sing
few lines above.
2015-10-16Expand DECLARE_ASN1_ALLOC_FUNCTIONS and DECLARE_ASN1_FUNCTIONS_constJoel Sing
macros. The only change in the generated assembly is due to line numbering.
2015-10-16Remove pointless uses of DECLARE_ASN1_ENCODE_FUNCTIONS_const.Joel Sing
DECLARE_ASN1_FUNCTIONS_const already includes this macro so using both means we end up with duplicate function prototypes and externs.
2015-10-16Fix use of pointer value after BIO_free, and remove senseless NULL checks.Bob Beck
ok bcook@
2015-10-16Merge nlist out of boundary access fix with other nlist implementations.Tobias Stoeckmann
While at it, merge style and typo fixes back into nlist(3), too. ok deraadt, jsing, millert
2015-10-16Put tls_config_verify_client_optional() in the right place.Joel Sing
2015-10-16Fix tpyo.Joel Sing
2015-10-16actually include the prerequisite dependency for BIO instead of doing nastynessBob Beck
2015-10-16Validate parsed ELF values to prevent out of boundary accesses.Tobias Stoeckmann
While at it, return proper return value when encountering a stripped binary. Instead of -1 (illegal file), it should be the amount of symbols that were tried to be resolved. ok millert
2015-10-15Don't Xr flock, since that is not the locking method used.Theo de Raadt
ok millert
2015-10-15Handle F_ISATTY in the fcntl() stub as wellTheo de Raadt
ok guenther
2015-10-14Document flock requestTodd C. Miller
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-21 16:30:17 +0000