summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* MFC:OPENBSD_3_3brad2004-03-171-0/+8
| | | | | | | | | Fix by markus@ avoid null-pointer deref (aka CAN-2004-0079) see http://www.openssl.org/news/secadv_20040317.txt ok deraadt@ markus@
* Pull patch from -current:margarida2003-10-015-6/+22
| | | | | | | | SECURITY FIX Fixed by markus@ security fix from http://www.openssl.org/news/secadv_20030930.txt ok markus@ deraadt@
* MFC:brad2003-08-031-8/+8
| | | | | | | | | | Fix by millert@ Rename rootd to needslash and invert its value. This fixes the check for ENAMETOOLONG, though since we use strlcpy() and strlcat() this is not a big deal. Problem found by vincent@ ok deraadt@
* This commit was manufactured by cvs2git to create branch 'OPENBSD_3_3'.cvs2svn2003-03-22650-167491/+0
|
* missing space between macro argument and commadavid2003-03-221-3/+3
| | | | ok jmc@
* Fix for Klima-Pokorny-Rosa attack on RSA in SSL/TLS, seemarkus2003-03-192-26/+24
| | | | http://marc.theaimsgroup.com/?l=bugtraq&m=104811162730834&w=2
* duplicate words: and and, the thedavid2003-03-181-2/+2
| | | | ok miod@ jmc@
* If hostname != NULL, hostname is not a numeric string, and AI_NUMERICHOSTjason2003-03-171-3/+3
| | | | is set, return EAI_NONAME like RFC2553 specifies. millert/itojun ok.
* update to official patch from openssl.org; ok deraadt@, millert@markus2003-03-174-52/+56
|
* Less strcpy/strcat/sprintf. tdeval@ ok.ho2003-03-1616-72/+86
|
* Enforce blinding on RSA operations involving private keys.ho2003-03-154-8/+54
| | | | From http://www.openssl.org/~geoff, modified to be enabled at all times.
* ANSI function headersmillert2003-03-142-12/+6
|
* a few more strlcy; ok from beck & hoderaadt2003-03-132-6/+6
|
* $OpenBSD$david2003-03-111-0/+1
| | | | ok henning@
* .Dd Month day, yeardavid2003-03-091-1/+1
| | | | ok jmc@
* signed/unsigned mixup. KAME PR 469 by Olivier Courtay.itojun2003-03-071-2/+3
|
* .Xr typos;jmc2003-03-061-2/+2
|
* .Xr's;jmc2003-03-062-4/+4
| | | | | | typos in man page section ok deraadt@
* Fix a pasto. (There is no ULLONG_MIN, for hopefully obvious reasons)kjell2003-03-061-4/+2
| | | | ok millert
* date should be written formally: .Dd Month day, yeardavid2003-03-062-4/+4
| | | | ok henning@ jmc@
* jmc wrote a combination man page that covers all openssl(1) functionality,deraadt2003-03-053-3/+7618
| | | | | | based on the pod files from openssl. This may need by-hand updating once in a while, but at least now people can read a real man page instead of the mess that the openssl team provides us with.
* missing #include in SYNOPSIS, found by Daniel Lucqhenning2003-03-041-1/+2
| | | | ok millert@
* strlcpy, check retval from sprintfitojun2003-03-043-11/+18
|
* s/strncpy/strlcpy/itojun2003-03-041-4/+4
|
* Use int32_t, not long since this deals with 32bit quantities.millert2003-02-281-20/+20
| | | | Inspired by a change in NetBSD and reported by Jan Johansson.
* DSAparams_print_pf() -> DSAparams_print_fp()cedric2003-02-282-2/+2
| | | | ok deraadt@
* Fix bogus inet_net_pton() translation example.cedric2003-02-241-2/+2
| | | | ok henning@
* of ofderaadt2003-02-241-2/+2
|
* check for size < 0 when allocating memory, from openssl (-r1.34)markus2003-02-212-0/+12
|
* fix a variety of missing or wrong MLINKSderaadt2003-02-201-1/+2
|
* security fix from openssl 0.9.7a:markus2003-02-192-32/+62
| | | | | | | | In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked via timing by performing a MAC computation even if incorrrect block cipher padding has been found. This is a countermeasure against active attacks where the attacker has to distinguish between bad padding and a MAC verification error. (CAN-2003-0078)
* re-stir if pid changes; markus & mederaadt2003-02-141-3/+5
|
* simple alloca test. done twice per deraadt@ suggestmickey2003-02-123-1/+26
|
* delete duplicate line; jason@ackley.net, 3090deraadt2003-02-121-1/+0
|
* we do not need that mess of -Ideraadt2003-01-311-42/+1
|
* thread safer libc (note: safer, not safe)marc2003-01-2812-265/+348
| | | | | | | | | | Access to the global _res structure replaced by pointers to a per thread instance. If unthreaded the pointer is to the global structure. Also replaced a 64k stack array with malloc-ed memory so threaded aps (with a default 64k stack) have a chance at working. ok deraadt@
* typos;jmc2003-01-211-3/+3
| | | | ok deraadt@
* inet6 fixes from jmc@prioris.mini.pw.edu.plderaadt2003-01-182-21/+13
|
* Add sanity check to prevent int oflow for very large allocations.millert2003-01-141-3/+11
| | | | | Also fix a signed vs. unsigned issue while I am at it. Found by Jim Geovedi. OK deraadt@
* Grammar fix - remove bogus comma; jmc@prioris.mini.pw.edu.plpvalchev2003-01-051-2/+2
|
* spellingderaadt2003-01-042-2/+2
|
* Nobody even compiles the #@!$&~ regression tests anyway.miod2003-01-031-2/+2
|
* use err vs. errx and display function; from Owl. ok fgsch@stevesk2002-12-301-4/+4
|
* include function in error; from Owl. ok fgsch@stevesk2002-12-301-4/+4
|
* correct return code check; from Owl. ok fgsch@stevesk2002-12-301-2/+2
|
* fix calloc's. also check for errors; fixes PR/3043.fgsch2002-12-281-5/+10
|
* typo; torh@bogus.netmarkus2002-12-161-1/+1
|
* more writeable -> writable by torhhenning2002-12-151-2/+2
|
* Recent modifications to netcat changed the behaviour to only exit when bothaaron2002-12-131-2/+2
| | | | | | the read (network) and write (stdin) ends of the socket were both closed. This is not how nc traditionally works. Instead, revert back to finishing up when read() on the socket returns 0; deraadt@, vincent@ ok.
* use proper __findenv() prototype; millert@ okmickey2002-12-102-8/+8
|
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-15 21:33:39 +0000