summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* typo: compare len against null needle, not haystackajacoutot2013-05-151-2/+2
| | | | | | from Alf Schlichting ok millert@
* Add an implementation of memmem() -- from FreeBSD with some tweaks.ajacoutot2013-05-133-4/+145
| | | | | | | | | Requires a libc minor bump, committing now so that we have up-to-date snapshots for the upcoming hackathon. joint work with millert@ man page bits ok jmc@ input and ok millert@, guenther@, deraadt@
* Hook up fmemopen and open_memstream tests.mpi2013-05-021-3/+4
|
* use FD_CLOEXEC instead of 1; from David Hillokan2013-04-291-2/+2
| | | | ok otto
* tweak a few commentstedu2013-04-211-5/+7
|
* this man page is mostly about password hashing now (you really don'ttedu2013-04-211-18/+5
| | | | | want to be using DES) and some of the notes about the export controls are no longer so relevant. ok deraadt jmc
* Xr encrypt(1) to give people a hint if they just want a password stringtedu2013-04-201-2/+3
|
* surround the error strings with quotes to clarify exactly which stringstedu2013-04-171-5/+5
| | | | the function is going to return.
* the tiniest of style tweakstedu2013-04-171-7/+7
|
* add some prototypes, casts, includes, parenthesis, and whatnot totedu2013-04-173-7/+10
| | | | silence some warnings.
* use CLOCK_MONOTONIC, and repair future time_t overflowderaadt2013-04-171-8/+8
| | | | ok millert guenther
* - Add comments regarding copies of these files also in libexec/ld.sokurt2013-04-051-1/+3
| | | | okay guenther@
* Update a comment about standards requirementsguenther2013-04-031-4/+4
|
* Set the stream orientation in open_{,w}memstream().guenther2013-04-031-1/+15
| | | | | | Check it in the regress test ok mpi@
* tweak makefile now that asr is built by default.eric2013-04-011-10/+10
|
* add hostnames which triggered some bugs.eric2013-04-011-2/+2
|
* getaddrinfo is now thread-safe.brad2013-03-311-6/+2
| | | | ok eric@
* Switch libc and libm to use strong aliases rather than weak aliasesmartynas2013-03-282-22/+4
| | | | | | | | | | | where appropriate. Among other things makes the symbols consistent across all architectures (notably where ldbl mantissa is 53 bits). While at it, kill unused LINTLIBRARY/PROTOLIB1 cruft which was there to trick lint into recording the right prototypes for aliased functions. Most of the work done at the awesome n2k13 hackathon. Agreed by kettenis@, guenther@, matthew@.
* add a test case for the icmpv6 issue spotted by naddyeric2013-03-284-10/+26
|
* More tests for negative seeks, prodded by matthew@mpi2013-03-282-2/+63
|
* More test cases, especially when opening the stream in append an writempi2013-03-271-8/+113
| | | | modes.
* protect the PRG state with a mutex in res_randomid().eric2013-03-261-2/+13
| | | | ok deraadt@ guenther@ djm@
* Add some more tests; prodded by mpi@guenther2013-03-251-12/+58
|
* Use a realloc() loop around the sysctl() for NET_RT_IFLIST, in case anderaadt2013-03-201-9/+21
| | | | | interface is added at just the right... wrong moment. ok millert dlg
* Don't shutdown nc(1)'s network socket when stdin closes. Matches *Hobbit*'ssthen2013-03-202-7/+17
| | | | | | original netcat and GNU netcat; revert to old behaviour with the new -N flag if needed. After much discussion with otto deraadt tedu and Martin Pelikan. ok deraadt@
* threadsafe random().tedu2013-03-151-8/+43
| | | | reported by ajacoutot and (much earlier, sorry) by Alexey Suslikov
* Add check that mkstemp() fails with EINVAL if the string has fewer thanguenther2013-03-121-4/+13
| | | | 6 Xs
* All accept() errors are considered fatal, until someone gives a differentderaadt2013-03-121-4/+5
| | | | reason. No code changed, just documenting it...
* cherry pick bugfixes for http://www.openssl.org/news/secadv_20130205.txtmarkus2013-02-1430-557/+2564
| | | | | from the openssl git (changes between openssl 1.0.1c and 1.0.1d). ok djm@
* remove ACSS, crank libcrypto major; ok markus@ deraadt@djm2013-01-2614-882/+4
|
* Don't pull <math.h> just because it can return HUGE_VAL in themartynas2013-01-151-3/+2
| | | | corner cases. OK millert@.
* Simple tests for fmemopen(3) and open_memstream(3)mpi2013-01-014-0/+175
|
* Fix bug in random offset introduced in rev 1.143; random range wasotto2012-12-221-3/+3
| | | | expanded, but not enough due to precedence error. Spotted by Thorsten Glaser.
* add test case for gethostbyname() called with numeric hostnameeric2012-12-171-1/+2
|
* - use diff -u like most anywhere to make the output readable.jasper2012-12-161-2/+2
| | | | ok phessler@
* document RES_USE_DNSSEC; text tweaked by sthenjmc2012-12-121-2/+6
| | | | ok jakob
* Remove excessive sys/cdefs.h inclusionderaadt2012-12-052-5/+2
| | | | ok guenther millert kettenis
* no need for .Pp before lists;jmc2012-12-051-3/+2
|
* Rewritten posix_openpt manual that doesn't include any of the POSIXmillert2012-12-041-74/+49
| | | | text. OK deraadt@
* Use "path name" not "pathname".millert2012-12-041-3/+3
|
* remove some unnecessary sys/param.h inclusionsderaadt2012-12-041-3/+1
|
* Simple emulation of POSIX pty APIs posix_openpt(), ptsname(),millert2012-12-034-6/+414
| | | | | grantpt() and unlockpt() using /dev/ptm. Man pages from FreeBSD. OK kettenis@ deraadt@ beck@ ajacoutot@ naddy@
* New CA root certificates, ok beck@.sthen2012-12-031-99/+1705
| | | | | | | | | | | | | | - additional cert's from GlobalSign. - additional cert's from VeriSign and replace existing ones with 'Signature Algorithm: md2WithRSAEncryption' with their currently distributed sha1WithRSAEncryption versions. - new CAs: AddTrust (root for most Comodo certificates also heavily used in academic networks), Comodo (most of their certs are rooted in AddTrust but TERENA use the Comodo AAA Certificate Services root for some things so add that separately), UserTrust Network/UTN (part of Comodo) and Starfield (part of Go Daddy).
* Additional CA root certificates: GeoTrust/Equifax, Go Daddy, StartCom, thawte.sthen2012-12-011-0/+1187
| | | | ok beck@ william@ todd@
* Regenerate the text information for all certificates with recent opensslsthen2012-11-301-439/+465
| | | | | | and include sha1 signatures for all certs (some were missing). No certificate changes, this is just for consistency. ok beck@
* Remove retired Thawte/Verisign certificates.sthen2012-11-301-499/+0
| | | | | | Remove intermediate GoDaddy certificate, this file should just contain roots. ok beck@ phessler@
* Document a known bug in the DES crypt cipher implementation which we'restsp2012-11-301-2/+6
| | | | | | | | | | not going to fix in order to stay compatible with legacy password data. Nobody should use DES crypt anyway these days. See http://www.freebsd.org/security/advisories/FreeBSD-SA-12:02.crypt.asc for details about this bug. Discussed with deraadt and beck about half a year ago (I'm pruning Ms from my tree).
* - put the various options into the same order as those in resolv.hjmc2012-11-291-17/+38
| | | | | | | | | | | | | | | - sync RES_DEBUG with resolv.conf.5 - document RES_PRIMARY, but mark it unsupported (like we already do for RES_AAAONLY) - use the exact same text (about being enabled by default) for RES_RECURSE as for the other two defaults - document RES_INSECURE{1,2} - description lifted from resolv.conf.5 - document RES_NOALIASES - mostly sync the RES_USE_EDNS0 text with resolv.conf.5 - RES_USE_DNSSEC not documented for now. something to come... ok sthen
* remove some useless Tn and double punctuation;jmc2012-11-191-16/+7
|
* RES_IGNTC is no longer ignored; ok sthenjmc2012-11-191-4/+4
|
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-29 14:55:18 +0000