| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-10-10 | Code points U+10000 to U+fffff are valid, too. | Ingo Schwarze | |
| Fixing a regression in wcrtomb(3) found with the mandoc testsuite that was caused by the last commit. OK semarie@ bentley@ | |||
| 2015-10-09 | do not use weak; plus this dies next week | Theo de Raadt | |
| 2015-10-09 | oops, typo spotted in temporary .c file, by semarie | Theo de Raadt | |
| 2015-10-09 | fix a gotcha in the connect refactoring, that could result in dropping | Theo de Raadt | |
| through and trying to bind failed v6 connects. ok guenther | |||
| 2015-10-09 | tame -> pledge conversion, in libc. I should crank libc, but am cheating | Theo de Raadt | |
| hoping things go well. The old symbol is faked via a stupid stub function, until next major crank when it can be removed. I am expecting guenther to scream at me. | |||
| 2015-10-08 | If getaddrinfo() succeeds, then don't try look ups with other flags, even | Philip Guenther | |
| if the connect()s failed. In concert with some resolver fixes in libc, this lets ntpd be tame()ed problem isolated by theo, who had fun untangling the libc and libtls behaviors to place blame for not being able to tame ntpd ok beck@ deraadt@ jsing@ | |||
| 2015-10-08 | fix conditionals | Eric Faurot | |
| ok deraadt@ | |||
| 2015-10-08 | Handle case where no hint is passed in. Found as a crash of fdm by jturner@ | Theo de Raadt | |
| 2015-10-08 | trailing whitespace; | Jason McIntyre | |
| 2015-10-08 | Rip the guts out of another gibbering horror of a time comparison function, and | Bob Beck | |
| mark it as #ifndef LIBRESSL_INTERNAL at least we don't use this. ok jsing@ | |||
| 2015-10-08 | revert previous accidental commit | Bob Beck | |
| 2015-10-08 | Spelling in comment | Bob Beck | |
| 2015-10-07 | Add tls_peer_cert_notbefore and tls_peer_cert_notafter to expose peer ↵ | Bob Beck | |
| certificate validity times for tls connections. ok jsing@ | |||
| 2015-10-07 | Allow us to get cipher and version even if there is not a peer certificate. | Bob Beck | |
| ok doug@ | |||
| 2015-10-07 | Be explicit that the user is responsible for freeing the line buffer | Todd C. Miller | |
| and show this in the example. | |||
| 2015-10-07 | getaddrinfo_async() shouldn't unconditionally intialize the resolver | Theo de Raadt | |
| via _asr_use_resolver(). If the hint specifies for AI_NUMERICHOST, create a transient lookup context which won't try to open /etc/reslov.conf ok eric guenther | |||
| 2015-10-07 | getaddrinfo() should not res_init() unconditionally, but allow lower | Theo de Raadt | |
| layers to decide. The request could be AI_NUMERICHOST. [And the process could be tame()-constrained to not open /etc/resolv.conf] ok eric guenther | |||
| 2015-10-07 | include <sys/time.h> for gettimeofday(2) | Brent Cook | |
| 2015-10-06 | Don't burden keycrunch_{md5,sha1,rmd160}() with identical code to prepare a | Tim van der Molen | |
| buffer based on whether they are called by keycrunch() or f(). Instead let keycrunch() and f() take care of this themselves. OK millert@ | |||
| 2015-10-06 | prefer limits.h over sys/limits.h | Brent Cook | |
| ok deraadt@ | |||
| 2015-10-05 | Fix missing checks for truncation of long file names. Rather than | Alexandre Ratchov | |
| checking for truncation every time we touch the string, simply allocate a memory chunk large enough to store the full path. | |||
| 2015-10-05 | Make sure dot is not set after tz - fixes incorrect handling, which allows | Joel Sing | |
| 20151005171301+1.09Z to be treated as a valid time. ok beck@ | |||
| 2015-10-05 | Wrap <resolv.h> so that internal calls go direct | Philip Guenther | |
| ok millert@ | |||
| 2015-10-05 | user land -> userland; from Rob Pierce | Theo de Raadt | |
| 2015-10-04 | mention sendto(2) destination address restriction for "rw" | Damien Miller | |
| subset; ok deraadt, feedback & ok jmc | |||
| 2015-10-04 | Apply some style(9), tweak a few things for readability and add some | Joel Sing | |
| additional bounds checks. ok beck@ | |||
| 2015-10-04 | Clarify a point. Adjust punctuation after discussion w/ jmc@ | Philip Guenther | |
| 2015-10-04 | Wrap <search.h> to make all the symbols there weak | Philip Guenther | |
| 2015-10-04 | Wrap <spawn.h> to make all the symbols there weak | Philip Guenther | |
| 2015-10-04 | wrap __ivaliduser_sa() so the internal call is direct (at least until we | Philip Guenther | |
| stop exporting it) | |||
| 2015-10-04 | wrap _fwalk() so internal calls are direct (at least until we stop | Philip Guenther | |
| exporting it) | |||
| 2015-10-04 | recv() and send() aren't overriden by libpthread (vs recvfrom() and sendto()!) | Philip Guenther | |
| so wrap them to make internal calls go direct | |||
| 2015-10-04 | getpeereid() and sockatmark() are neither used in libc nor in ISO C, so mark | Philip Guenther | |
| them deprecated and weak | |||
| 2015-10-04 | __fdnlist() is exported for libkvm, but the internal call can go direct | Philip Guenther | |
| 2015-10-04 | __xdrrec_getrec is in the reserved namespace, so it doesn't need to be weak | Philip Guenther | |
| 2015-10-04 | Delete an inexplicable comment | Philip Guenther | |
| 2015-10-03 | Initially eric developers asr as a side-load style library for async DNS. | Theo de Raadt | |
| When it was integrated as the main resolver, a bunch of strange initialization code remained. Start whittling away at this, piece by piece, to make it more clear. ok eric | |||
| 2015-10-03 | missing asr* -> _asr* symbol rename for building with debug code | Eric Faurot | |
| ok jca@ | |||
| 2015-10-03 | SSL_new(): fix ref counting and memory leak in error path. | Doug Hogan | |
| Rather than a half-hearted attempt to free up resources and fix ref counting at the SSL_CTX level, let SSL_free() do its job. This diff got lost in the shuffle somewhere. It's from last year. Ref counting error reported by Parakleta in github ticket #51. Thanks! ok jsing@, beck@ | |||
| 2015-10-02 | make a && && & block more readable. no binary change. | Theo de Raadt | |
| discussed with otto | |||
| 2015-10-02 | Flense the greasy black guts of unreadble string parsing code out of three areas | Bob Beck | |
| in asn1 and x509 code, all dealing with an ASN1_TIME. This brings the parsing together in one function that converts into a struct tm. While we are at it this also brings us into conformance with RFC 5280 for times allowed in an X509 cert, as OpenSSL is very liberal with what it allows. input and fixes from deraadt@ jsing@ guethther@ and others. ok krw@, guenther@, jsing@ | |||
| 2015-10-02 | s/ssl3_client_kex/ssl3_send_client_kex/ for consistency with the caller. | Joel Sing | |
| 2015-10-02 | use macros for cookie path and temp file template instead | Alexandre Ratchov | |
| of hardcoded strings. no object change. | |||
| 2015-10-02 | Validate that midi and audio device numbers are integers. | Alexandre Ratchov | |
| 2015-10-02 | As device path is known, use its size instead of PATH_MAX | Alexandre Ratchov | |
| 2015-10-02 | Use macros for audio and midi device paths rather than hardcoded | Alexandre Ratchov | |
| strings. No object change. | |||
| 2015-10-02 | As the socket path is known, use its size rather that PATH_MAX. | Alexandre Ratchov | |
| 2015-10-02 | fix typo in debug message | Alexandre Ratchov | |
| 2015-10-02 | use macros instead of hard-coded strings for unix sockets paths | Alexandre Ratchov | |
| 2015-10-02 | fix spacing | Alexandre Ratchov | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |