src - OpenBSD base system

Age	Commit message (Collapse)	Author
2015-07-16	Adapt previous to extended-precision, and fix single-precision constants.	Martynas Venckus

2015-07-16	Signs of cacosh/cacoshf were not always correct (e.g., -1.1 -1.1i),	Martynas Venckus
	as found by fortran regression tests. Also added some complex regression tests for cacosh, casinh, catanh. Reported by John Marino @ DragonFlyBSD.
2015-07-16	remove the stubby not working mmaped file support. ok sthen (long ago)	Ted Unangst

2015-07-16	After reading a password with terminal echo off, restore the terminal to	Philip Guenther
	its original state instead of blindly turning echo on. problem reported on the openssl-dev list by William Freeman ok miod@ beck@
2015-07-16	Explicitely cast a char into unsigned long before shifting it left by 24, for	Miod Vallat
	this would promote it to int for the shift, and then cast to unsigned long, sign-extending it if sizeof(long) > sizeof(int). This was not a problem because the computed value was explicitely range checked afterwards, with an upper bound way smaller than 1U<<31, but it's better practice to cast correctly. ok beck@
2015-07-16	Check return value of all used functions in OCSP_REQUEST_print(); covers	Miod Vallat
	Coverity CID 78796; ok beck@
2015-07-16	Make sure the `reject negative sizes' logic introduced in 1.34 is actually	Miod Vallat
	applied to all code paths. ok beck@ bcook@ doug@ guenther@
2015-07-15	check n before cbs_init, coverity - ID 125063	Bob Beck
	ok bcook@ miod@
2015-07-15	test for n<0 before use in CBS_init - mostly to shut up coverity.	Bob Beck
	reluctant ok miod@
2015-07-15	Flense out dead code, we don't do ecdhe_clnt_cert.	Bob Beck
	coverity ID's 21691 21698 ok miod@, "Fry it" jsing@
2015-07-15	Fix inverted test in previous. Commit message told what we intended, but	Miod Vallat
	we did not notice my fingers slipping. Noticed by bcook@
2015-07-15	Remove dead code. Coverity CID 21688	Miod Vallat
	ok beck@
2015-07-15	Fix two theoretical NULL pointer dereferences which can only happen if you	Miod Vallat
	have seriously corrupted your memory; Coverity CID 21708 and 21721. While there, plug a memory leak upon error in x509_name_canon(). ok bcook@ beck@
2015-07-15	Fix possible 32 byte buffer overrun, found by coverity, CID 78869	Bob Beck
	ok miod@
2015-07-15	Memory leak; Coverity CID 78836	Miod Vallat
	ok beck@
2015-07-15	Unchecked allocations, and make sure we do not leak upon error. Fixes	Miod Vallat
	Coverity CID 21739 and more. ok bcook@
2015-07-15	Avoid leaking objects upon error; tweaks & ok doug@	Miod Vallat

2015-07-15	Do not allow TS_check_signer_name() with signer == NULL from	Miod Vallat
	int_TS_RESP_verify_token(). Coverity CID 21710. Looking further, int_TS_RESP_verify_token() will only initialize signer to something non-NULL if TS_VFY_SIGNATURE is set in ctx->flags. But guess what? TS_REQ_to_TS_VERIFY_CTX() in ts/ts_verify_ctx.c, which is the TS_VERIFY_CTX constructor, explicitely clears this bit, with: ret->flags = TS_VFY_ALL_IMPRINT & ~(TS_VFY_TSA_NAME \| TS_VFY_SIGNATURE); followed by more conditional flag clears. Of course, nothing prevents the user to fiddle with ctx->flags afterwards. This is exactly what ts.c in usr.bin/openssl does. This is gross, mistakes will happen. ok beck@
2015-07-15	Previous fix for Coverity CID 21785 did not cope correctly with seed_len != 0,	Miod Vallat
	seed_in == NULL case. Since this situation is an error anyway, bail out early. with and ok beck@
2015-07-15	typo in manual page.	Igor Sobrado
	ok jsing@
2015-07-15	mention that swapctl(2) can also be used to retrieve statistics	Jasper Lievisse Adriaanse
	ok millert@
2015-07-14	Fall back to scanning /dev if /var/run/dev.db does not exist.	Todd C. Miller
	OK deraadt@
2015-07-14	The first argument to devname(3) should be dev_t, not int.	Todd C. Miller
	The man page was already correct.
2015-07-14	Partially convert ssl3_get_message to CBS.	Doug Hogan
	Unlike the other conversions, this only partially converts the function for now. This is the second to last function which still uses the n2l3 macro. That macro is deprecated since we're using CBS. ok miod@ jsing@
2015-07-14	Convert dtls1_get_hello_verify to CBS.	Doug Hogan
	ok miod@ jsing@
2015-07-14	Convert ssl3_get_cipher_by_char to CBS.	Doug Hogan
	ok miod@ jsing@
2015-07-14	Convert ssl3_get_client_certificate to CBS.	Doug Hogan
	ok miod@ jsing@
2015-07-14	Convert ssl3_get_finished to CBS.	Doug Hogan
	ok miod@ jsing@
2015-07-14	Convert ssl_parse_clienthello_use_srtp_ext to CBS.	Doug Hogan
	ok miod@ jsing@
2015-07-14	Convert ssl3_get_cert_status to CBS.	Doug Hogan
	ok miod@ jsing@
2015-07-14	Convert ssl3_get_server_certificate to CBS.	Doug Hogan
	ok miod@
2015-07-13	Do not write a warning to stderr if the db cannot be opened, just	Todd C. Miller
	return an error. Avoids bogus warnings in chroots. OK deraadt@ ajacoutot@
2015-07-12	Use memset instead of bzero for better portability.	Nicholas Marriott
	ok gilles claudio doug
2015-07-11	typo in embedded code block; from Ben Cornett	Theo de Raadt

2015-07-07	the C locale should contain only ASCII	semarie
	suggestion for removing (instead of commenting) the lines from stsp@ OK millert@
2015-07-07	Skip mountpoint checking in case we only want the version or help	Antoine Jacoutot
	(-V, -h). ok syl@ mikeb@
2015-07-07	Unbreak option parsing:	Antoine Jacoutot
	fuse_opt_pase is called with an opaque void * and struct fuse_opt. If val has a positive value and off != -1, we modify the opaque void * at the offset off to put it val. This matches what the GNU libfuse does. fixes (at least) simple-mtpfs option parsing diff from slacker syl@, thanks! "it can't get worse than not working" mikeb@ ok miod@ sthen@
2015-07-03	bzero cmsgbuf before using it, silences valgrind warnings.	Bryan Steele
	henning@ "sure"
2015-07-03	static pie support for sparc.	Miod Vallat

2015-07-03	There are no ${LIBCSRCDIR}/arch/${MACHINE_CPU}/locale directories in	semarie
	cvs. Remove the unused search path from Makefile.inc "fine with me" stsp@
2015-07-02	remove new_categories variable from global.	semarie
	This variable is used as temporary buffer in order to do checking before copying the content to current_categories variable. Switch it as local variable in setlocale function. Adapts some functions. the commit collapse 3 proposed diffs on tech@, and all OK stsp@
2015-06-29	fix the build on arm after the recent addition of -Wundef	Jonathan Gray
	ok doug@ deraadt@
2015-06-28	Convert ssl_bytes_to_cipher_list to CBS.	Doug Hogan
	Link in the new 'unit' regress and expand the invalid tests to include some that would fail before the CBS conversion. input + ok miod@ jsing@
2015-06-27	Fix pointer to unsigned long conversion.	Doug Hogan
	bcook@ notes that this check really only impacted 64-bit Windows. Also, changed the check to be unsigned for consistency. ok bcook@
2015-06-24	Put BUF_memdup() and BUF_reverse() under #ifndef LIBRESSL_INTERNAL.	Joel Sing

2015-06-24	Stop using BUF_memdup() within the LibreSSL code base - it is correctly	Joel Sing
	spelt malloc+memcpy, which is what is used in all except two places. ok deraadt@ doug@
2015-06-23	Add STANDARDS section; isblank(3) was specified in C99.	Anthony J. Bentley
	ok jung@ jmc@
2015-06-23	Change CBS_dup() to also sync the offset.	Doug Hogan
	Previously, CBS_dup() had its own offset. However, it is more consistent to copy everything. ok miod@ jsing@
2015-06-21	Check for failure with CBB_init() in bs_ber.c.	Doug Hogan
	From BoringSSL commit 3fa65f0f05f67615d9daf48940e07f84d094ac6e.
2015-06-21	Just return if nmemb is 0. Avoids a NULL dereference and is	Todd C. Miller
	consistent with the behavior of the other libc sort functions. OK deraadt@