Age | Commit message (Collapse) | Author |
|
Use the same logic from the read, write, accept functions to inform
the caller wether a readable or writable socket is needed. After
that event, the connect function must be called again. All the
checks before connecting are done only once.
OK tedu@
|
|
|
|
rl_set_keyboard_input_timeout() that was added in this version.
Also crank the minor version.
OK krw@ yasuoka@ deraadt@
|
|
instead where necessary.
Based on a diff from enh (at) google.com
ok millert@
|
|
|
|
MAXHOSTNAMELEN.
ok deraadt guenther
|
|
nor are they the same size.
|
|
Free data->saved_message.data. Based on OpenSSL commit:
41cd41c4416f545a18ead37e09e437c75fa07c95 except this version sets a->ptr
to NULL to avoid accidental reuse and handles malloc failing.
ok beck@, input + ok miod@
|
|
backed out because of libkvm breakage, recommitting now with libkvm fix.
ok deraadt@
|
|
|
|
ok jsing@ beck@
|
|
(sorry, my other changes were accidentally premature)
|
|
|
|
|
|
|
|
remember to set EACCES in bcrypt_checkpass for hash differences.
the higher level crypt_checkpass function will reset errno to EACCES in
all cases, which is probably the right behavior, but this change gives code
working with the lower level functions the correct errno if they care.
|
|
|
|
a use after free if the callback has freed the ev. With F in
malloc.conf both tmux and the regression tests triggered a segmentation
fault.
OK nicm@
|
|
patch from Kinichiro Inoguchi, tested on HP-UX 11.31
ok deraadt@
|
|
- Avoid deadlock when activating signals. Fixes bug 3048812.
Based on patch by Nicholas Marriott.
The deadlock was ultimately fixed in a different way (by disabling
reinit - see event.c r1.25). Add it now for consistency but without
the Windows compatibility code. Convert the fnctl() calls to
SOCK_CLOEXEC | SOCK_NONBLOCK to simplify the code.
OK nicm@
|
|
- Defensive programming to prevent (hopefully impossible) stack-stomping
OK nicm@
|
|
- https://github.com/libevent/libevent/commit/7b21c4eabf1f3946d3f63cce1319c490caab8ecf
- For this fix, we need to make sure that passing too-large inputs to
the evbuffer functions can't make us do bad things with the heap.
On top of that do:
- Update libevent version to 1.4.15-stable.
- Use SIZE_MAX from limits.h instead of a private define.
- Do not declare 'size_t need' twice to avoid a compiler warning.
OK sthen
|
|
API to NUL-terminate the buffer.
|
|
what's going on.
|
|
guenther suggested using thread time, which actually may improve accuracy
if somebody puts this in a threaded program.
|
|
ok millert@, kettenis@
|
|
Instead of asserting, return an error code for I/O errors. This is based
on OpenSSL commit 2521fcd8527008ceb3e4748f95b0ed4e2d70cfef. Added checks
for two calloc()s while I'm here.
ok miod@
|
|
a compiler warning about shadowing a global declaration.
OK jsing@
|
|
value, which we have no use for. ok kettenis@
|
|
because the API design isn't fully settled.
Requested by jsing@ and tedu@.
|
|
patch from Sunil at Nimmagadda dot net
|
|
While here, stop calling the Internet "the ARPA Internet".
|
|
technically, filenames are not restricted to ASCII.
Patch from Kaspars at Bankovskis dot net, no opposition when shown on tech@.
|
|
archdep.h help from kettenis@
|
|
ok deraadt miod
|
|
|
|
ok kurt@
|
|
afterwards. openssl has a more complicated fix, but it's less intrusive
for now to simply hoist the expensive part (fake key generation) up without
sweating a branch or two.
ok bcook jsing
|
|
fails.
ok kurt@
|
|
Noticed while testing libtls on FreeBSD.
|
|
ok miod@
|
|
This adds alpha-specific first-pass GOT relocation code to boot.h.
The assembly code is pure magic. The numeric register
names don't make it easier to understand (or compare with the
equivalent ld.so code). Unfortunately the assembler only understands
a few symbolic register names.
Renames the crt0.o entry point to __start. Our compiler was already using
__start and the linker will soon follow.
ok kurt@
|
|
|
|
from this case where we have a static buffer and cant realloc.
ok phessler, claudio, reyk
|
|
|
|
use global data. The simplest fix is to only check blowfish passwords,
and implicitly lock out DES passwords.
crypt_checkpass is currently only used in one place, passwd, to verify
the local user's password, so this is probably acceptable.
Gives people a little more time to migrate away from DES before introduing
checkpass into more places.
|
|
to determine if DT_JMPREL relocations are REL or RELA and conditionally
perform DT_JMPREL in either REL or RELA as needed (idea from kettenis@).
Remove unneeded i386 RELA implementation. i386 static pie working now.
okay kettenis@
|
|
|
|
the ones used in the code.
pointed out by schwarze@
|
|
architectures with variable page size.
|