| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Add a new malloc option 'U' => "Free unmap" that does the guarding/ | djm | 2012-11-02 | 2 | -18/+36 |
| | | | | | | | | | | | | | unmapping of freed allocations without disabling chunk randomisation like the "Freeguard" ('F') option does. Make security 'S' option use 'U' and not 'F'. Rationale: guarding with no chunk randomisation is great for debugging use-after-free, but chunk randomisation offers better defence against "heap feng shui" style attacks that depend on carefully constructing a particular heap layout so we should leave this enabled when requesting security options. | ||||
| * | On amd64 OPENSSL_cpuid_setup and OPENSSL_ia32cap_P are now hidden so we don't | kettenis | 2012-10-31 | 8 | -18/+10 |
| | | | | | | | | | | | have to go through the PLT/GOT to get at them anymore. In fact going through the GOT now fails since we no longer have a GOT entry for OPENSSL_ia32cap_P. Fixes the problem spotted by jasper@ and sthen@. Based on a diff from mikeb@ who did most of the actual work of tracking down the issue. ok millert@, mikeb@ | ||||
| * | Restore r1.10, lost during last update: | miod | 2012-10-22 | 2 | -2/+2 |
| | | | | | Disable use of dladdr() on a.out arches, they do not provide it (yet); | ||||
| * | Makefile and header changes for OpenSSL-1.0.1c | djm | 2012-10-13 | 20 | -139/+361 |
| | | | | | major cranks | ||||
| * | import files that CVS missed; sigh | djm | 2012-10-13 | 10 | -0/+1498 |
| | | |||||
| * | resolve conflicts | djm | 2012-10-13 | 504 | -7535/+33760 |
| | | |||||
| * | This commit was generated by cvs2git to track changes on a CVS vendor | djm | 2012-10-13 | 42 | -591/+570 |
| |\ | | | | | branch. | ||||
| | * | import OpenSSL-1.0.1c | djm | 2012-10-13 | 339 | -4357/+15664 |
| | | | |||||
| * | | This commit was generated by cvs2git to track changes on a CVS vendor | djm | 2012-10-13 | 219 | -1382/+57417 |
| |\ \ | | | | | | | branch. | ||||
| | * | | import OpenSSL-1.0.1c | djm | 2012-10-13 | 248 | -2332/+62631 |
| | | | | |||||
| * | | | This commit was generated by cvs2git to track changes on a CVS vendor | djm | 2012-10-13 | 160 | -1420/+48653 |
| |\ \ \ | | | | | | | | | branch. | ||||
| | * | | | import OpenSSL-1.0.1c | djm | 2012-10-13 | 359 | -4455/+63120 |
| | | | | | |||||
| * | | | | last stage of rfc changes, using consistent Rs/Re blocks, and moving the | jmc | 2012-09-27 | 9 | -88/+91 |
| | | | | | | | | | | | | | | | | | references into a STANDARDS section; | ||||
| * | | | | last stage of rfc changes, using consistent Rs/Re blocks, and moving the | jmc | 2012-09-26 | 1 | -19/+45 |
| | | | | | | | | | | | | | | | | | references into a STANDARDS section; | ||||
| * | | | | Make setenv(3) consistent with unsetenv(3), giving EINVAL if passed | jeremy | 2012-09-23 | 2 | -20/+10 |
| | | | | | | | | | | | | | | | | | | | | | | | | | an empty name, NULL pointer, or a name containing an '=' character. OK millert@, guenther@ | ||||
| * | | | | remove some wacky Xo/Xc; | jmc | 2012-09-16 | 1 | -3/+3 |
| | | | | | |||||
| * | | | | remove tahoe-specific makefile machinery, no such hardware is known to be | miod | 2012-09-15 | 1 | -5/+1 |
| | | | | | | | | | | | | | | | | | | | | | in working condition anymore (assuming there would be interest in running on it). | ||||
| * | | | | Document that strtod functions accept INF, NAN, NAN(). From Michal Mazurek. | martynas | 2012-09-15 | 1 | -3/+28 |
| | | | | | |||||
| * | | | | specify the bounds of the dst to strlcat (both values were static and | deraadt | 2012-09-13 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | | equal, but it is more correct) from Michal Mazurek | ||||
| * | | | | Fix precedence bug (& has lower precedence than !=). | pirofti | 2012-09-13 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | | | | | | Okay otto@. Found by Michal Mazurek <akfaew at jasminek dot net>, thanks! | ||||
| * | | | | run regress with the local env too | eric | 2012-09-05 | 1 | -2/+2 |
| | | | | | |||||
| * | | | | use LDSTATIC for building static executables | eric | 2012-09-05 | 1 | -2/+2 |
| | | | | | |||||
| * | | | | arc4random_buf is the easy way to fill a buffer now. ok deraadt | tedu | 2012-09-04 | 1 | -10/+3 |
| | | | | | |||||
| * | | | | remove lint leftovers; ok guenther@ | okan | 2012-09-04 | 1 | -5/+1 |
| | | | | | |||||
| * | | | | rfc 2553 (not 2533) has been replaced by rfc 3493; | jmc | 2012-08-22 | 1 | -5/+6 |
| | | | | | |||||
| * | | | | When deciding whether we're PIC in a (generated) asm file, check for both PIC | pascal | 2012-08-21 | 2 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | | | | | | and __PIC__ defines. Makes things easier for PIE. ok djm@ | ||||
| * | | | | - remove inconsistent/obsolete comments | jmc | 2012-08-21 | 4 | -48/+35 |
| | | | | | | | | | | | | | | | | | | | | | - update rfc references - make the Rs/Re blocks more consistent | ||||
| * | | | | flesh out the rfc section; | jmc | 2012-08-21 | 1 | -10/+33 |
| | | | | | | | | | | | | | | | | | rfc 5321 replaces 974 and 2821; | ||||
| * | | | | rfc 4291 replaces rfcs 2373 and 3513; | jmc | 2012-08-20 | 1 | -9/+16 |
| | | | | | |||||
| * | | | | use Lk for links; | jmc | 2012-08-15 | 1 | -4/+4 |
| | | | | | |||||
| * | | | | allow to choose an alternate regress script | eric | 2012-08-07 | 1 | -2/+3 |
| | | | | | |||||
| * | | | | remove leftover NOLINT, WANTLINT, LINTFLAGS, LOBJ vars and lint targets. | okan | 2012-08-02 | 3 | -25/+3 |
| | | | | | | | | | | | | | | | | | ok guenther@ | ||||
| * | | | | add a flag to choose between gethostbyname and gethostbyaddr | eric | 2012-07-29 | 2 | -12/+13 |
| | | | | | |||||
| * | | | | remove reference to no longer existing description of nonexistent devices; | naddy | 2012-07-26 | 1 | -7/+4 |
| | | | | | | | | | | | | | | | | | ok deraadt@ tedu@, wording tweaks jmc@ | ||||
| * | | | | import regression suite for asr | eric | 2012-07-13 | 23 | -0/+2464 |
| | | | | | |||||
| * | | | | Use same (lame) verbiage to explain ifa_dstaddr as is used for | krw | 2012-07-13 | 1 | -3/+4 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ifa_broadaddr. i.e. make it make clear that this field is only valid for P2P. (Hint: one's a field, and one's a #define giving a new name to said field) ok guenther@ | ||||
| * | | | | put back the Key-Arg field - sess_id still prints it; | jmc | 2012-07-13 | 1 | -2/+5 |
| | | | | | |||||
| * | | | | remove (hopefully) all traces of sslv2; ok sthen | jmc | 2012-07-12 | 1 | -55/+23 |
| | | | | | |||||
| * | | | | Skip printing another SSLv2-only command in s_client's usage text. | sthen | 2012-07-12 | 1 | -0/+2 |
| | | | | | | | | | | | | | | | | | jmc@ noticed this in the manpage while updating it, but it applies here too. | ||||
| * | | | | Disable SSLv2 in OpenSSL. No objections from djm. | sthen | 2012-07-11 | 20 | -8/+96 |
| | | | | | | | | | | | | | | | | | Brad, jasper and naddy helped with test builds, fixing ports, etc. | ||||
| * | | | | catch off-by-one errors in stpncpy(); ok guenther@ | naddy | 2012-07-11 | 3 | -6/+33 |
| | | | | | |||||
| * | | | | fix an off-by-one error where the return value would point to the | naddy | 2012-07-11 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | character after the '\0'; ok guenther@ | ||||
| * | | | | use PAGE_SHIFT instead of PGSHIFT, in preperation for future | deraadt | 2012-07-09 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | | param.h symbol reduction. ok guenther | ||||
| * | | | | Zap extra spaces from function pointer arguments | guenther | 2012-07-08 | 2 | -8/+8 |
| | | | | | | | | | | | | | | | | | Pointed out by Joachim Schipper (joachim at joachimschipper.nl) | ||||
| * | | | | Describe tdelete()'s return value correctly and update the related CAVEAT | guenther | 2012-07-08 | 1 | -12/+15 |
| | | | | | | | | | | | | | | | | | | | | | Based on a note from Steffen Daode Nurpmeso (sdaoden at googlemail.com) ok jmc@ | ||||
| * | | | | Allow UDP server to receive datagrams from multiple socket pairs with -k | haesbaert | 2012-07-07 | 2 | -7/+17 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | flag. Prompted by a question from dsp at 2f30 dot org, diff from Lazarom Koromil with a few tweaks by me, many thanks. ok mikeb@ nicm@ haesbaert@ | ||||
| * | | | | Report incoming connections when -l is specified with -v. | haesbaert | 2012-07-07 | 1 | -1/+35 |
| | | | | | | | | | | | | | | | | | | | | | | | | | From Ricky Zhou with a few tweaks by me. ok henning@ haesbaert@ | ||||
| * | | | | after a talk with ariane, use MAP_FIXED for mquery to avoid the cost of | tedu | 2012-06-26 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | | | | | | | scanning for free space if the hint isn't available. also, on further inspection, this will prevent pmap_prefer from "improving" our hint. | ||||
| * | | | | Change arc4random_uniform() to calculate ``2**32 % upper_bound'' as | matthew | 2012-06-24 | 1 | -12/+3 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ``-upper_bound % upper_bound''. Simplifies the code and makes it the same on both ILP32 and LP64 architectures, and also slightly faster on LP64 architectures by using a 32-bit remainder instead of a 64-bit remainder. Pointed out by Jorden Verwer on tech@ ok deraadt; no objections from djm or otto | ||||
| * | | | | - document newly imported AF_INET6 support to net_inet_{pton,ntop} | gilles | 2012-06-24 | 1 | -5/+26 |
| | | | | | | | | | | | | | | | | | diff from Florian Obser, ok jmc@ | ||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |