| Age | Commit message (Collapse) | Author |
|---|
|
Jan Schreiber <jes at posteo dot de> ran afl on mandoc and it turned
out mandoc tried to use spacing modifiers so large that they would
trigger assertion failures in term_ascii.c, function locale_advance().
|
|
|
|
(Fix :S with anchors and replacement)
|
|
|
|
ok djm@
|
|
|
|
verify-required resident keys) even though it doesn't
implement this feature
|
|
The fix for the misuse of EVP_PKEY_cmp() (rpki-client/cert.c -r1.16)
came with an API change. ta_parse() will now throw an error if fed a
NULL pubkey. This in turn broke a regress test.
Fix this by parsing the pubkey out of the appropriate TAL to let ta_parse()
verify that it matches the pubkey in the first level certificate.
Discussed with tobhe, benno and claudio
|
|
The select() results are now consistent with what poll() returns.
|
|
OK deraadt@ martijn@
|
|
|
|
Indicate missing test scripts prominently in the result but do not
count them as an error.
|
|
|
|
Restore them to their previous values.
|
|
|
|
|
|
Diff from tb@
|
|
|
|
for usmUserSecurityName.
This test will likely have to be adjusted once snmpd has genuine support
for this object.
|
|
|
|
|
|
and call that function not only from both places where copies
existed - when processing text lines and when processing request/macro
lines in conditional block scope - but also when closing a macro
definition request, such that this construction works:
.if n \{.de macroname
macro content
.. \} ignored arguments
.macroname
This fixes a bug reported by John Gardner <gardnerjohng at gmail dot com>.
While here, avoid a confusing decrement of the line scope counter
in roffnode_cleanscope() for conditional blocks that do not have
line scope in the first place (no functional change for this part).
Also improve validation of an internal invariant in roff_cblock()
and polish some comments.
|
|
|
|
|
|
was quite nasty in hiding most of the commands being run with '@',
hindering debugging in case anything failed. In particular, it hindered
debugging that had to start from the log of a bulk regress run.
So, finally, resolve this issue by removing almost all these '@'s.
This commit does not change any of the test commands.
If you want to be sure that you don't miss failures, run something like:
make regress 2>&1 | tee make.log ; grep -B1 FAILED make.log
|
|
ok bluhm@
|
|
against failure reported in dmesg (hmm, is it time to delete those fault
messages?)
|
|
Also tweak the pagefault test to work better on arches
that do not modify the stack pointer on return.
|
|
Replace it with Perl pack() to get hex representation of -1 on
current platform. Make test pass again on i386.
|
|
and server. Together with the syslogd ktrace this helps debugging.
|
|
not contain the CA of the server certificate.
|
|
tests that use and check selected SSL version.
|
|
use-after-free and double-free issues in calling programs.
The bug was introduced in SSLeay-0.6.0 released on June 21, 1996
and has been present since OpenBSD 2.4.
I found the bug while documenting the function.
The bug could bite in two ways that looked quite different from the
perspective of the calling code:
* If a stack was passed in that already contained some X509_INFO
objects and an error occurred, all the objects passed in would be
freed, but without removing the freed pointers from the stack,
so the calling code would probable continue to access the freed
pointers and eventually free them a second time.
* If the input BIO contained at least two valid PEM objects followed by
at least one PEM object causing an error, at least one freed pointer
would be put onto the stack, even though the function would return NULL
rather than the stack. But the calling code would still have a pointer
to the stack, so it would be likely to access the new bogus pointers
sooner or later.
Fix all this by remembering the size of the input stack on entry
and cutting it back to exactly that size when exiting due to an
error, but no further.
While here, do some related cleanup:
* Garbage collect the automatic variables "error" and "i"
which were only used at one single place each.
* Use NULL rather than 0 for pointers.
I like bugfixes that make the code four lines shorter, reduce the
number of variables by one, reduce the number of brace-blocks by
one, reduce the number if if-statements by one, and reduce the
number of else-clauses by one.
Tweaks and OK tb@.
|
|
after getting rid of the "copyless" crutch
|
|
|
|
|
|
|
|
|
|
print the stack address [for comparison in dmesg post-fault]
|
|
|
|
|
|
|
|
|
|
|
|
(on OpenBSD) or out of tree (in Portable).
|
|
|
|
|
|
bettertls.com, and a verification suite to try each certificate
in the same manner as the web based tests do using X509_verify.
This includes the list of "known" failures today in our validaion
code so we can move forward without moving back.
|
|
|
|
A number of these tests are known to fail due to bugs/incorrect
verification implementation.
|
