| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2008-12-29 | extra paranoia for malloc(3): | djm | 2 | -165/+278 | |
| Move all runtime options into a structure that is made read-only (via mprotect) after initialisation to protect against attacks that overwrite options to turn off malloc protections (e.g. use-after-free) Allocate the main bookkeeping data (struct dir_info) using mmap(), thereby giving it an unpredictable address. Place a PROT_NONE guard page on either side to further frustrate attacks on it. Add a new 'L' option that maps struct dir_info PROT_NONE except when in the allocator code itself. Makes attacks on it basically impossible. feedback tedu deraadt otto canacar ok otto | |||||
| 2008-12-23 | repair the ARC4 story; ok jmc djm millert | deraadt | 1 | -5/+7 | |
| 2008-12-22 | The example for detecting malicious PTR records could be easily misinterpreted. | jacekm | 1 | -5/+4 | |
| Make it less ambiguous; ok gilles@ claudio@ | |||||
| 2008-12-15 | shave off more bytes than you expect by declaring a few const local arrays | otto | 1 | -4/+4 | |
| as static const | |||||
| 2008-12-09 | fix inet_ntop(3) prototype; ok millert@ libc to be bumbed very soon | otto | 2 | -7/+7 | |
| 2008-12-07 | Document that ethers_aton returns NULL for invalid addresses. | weerd | 1 | -2/+4 | |
| Suggested by and ok claudio@, ok jmc@ | |||||
| 2008-11-26 | Fix typo, okay jmc@. | pedro | 1 | -3/+3 | |
| 2008-11-24 | Correctly jump over routing headers and calculate the size of the if_data | claudio | 1 | -7/+14 | |
| struct in the if_msghdr instead of using sizeof() blindly. This allows us to grow if_data without causing issues for the getifaddrs() users. OK deraadt@ (who needs this for some cool upcomming stuff) | |||||
| 2008-11-20 | move allocations between half a page and a page as close to the end of | otto | 2 | -4/+5 | |
| the page as possible (i.e. make malloc option P a default). ok art@ millert@ krw@ | |||||
| 2008-11-20 | Reduce the leeway malloc allows when moving allocations to the end of | otto | 1 | -2/+2 | |
| a page to 0. P default will be changed in a separate commit. ok millert@ art@ krw@ | |||||
| 2008-11-13 | To allow for easier playing with more strict settings introduce | otto | 1 | -5/+14 | |
| a separate symbolic constant for the leeway we allow when moving allocations towards the end of a page. No functional change. | |||||
| 2008-11-12 | avoid a few strlen calls for constant strings; prompted by tg; ok djm@ | otto | 1 | -10/+10 | |
| 2008-11-06 | if the freeprot flag (F) is set, do not do delayed frees for chunks | otto | 1 | -6/+10 | |
| (might catch errors closer to the trouble spot) and junk fill pages just before reuse instead of immediate (we can't access the page anyway) since we set PROT_NONE in the F case. ok djm@ | |||||
| 2008-11-03 | sync to openssl-0.9.8i; | jmc | 1 | -18/+22 | |
| i still haven't folded in x509v3_config.pod, since i'm not entirely sure what to do with it. | |||||
| 2008-11-02 | fix markup of example line and description of G flag; partly from and | otto | 1 | -5/+4 | |
| ok jmc@ | |||||
| 2008-11-02 | remove distinction between warnings and errors, ok deraadt@ djm@ | otto | 2 | -73/+38 | |
| 2008-10-29 | if MALLOC_STATS is defined, record how many "cheap reallocs" were | otto | 1 | -1/+8 | |
| tried and how many actually succeeded. | |||||
| 2008-10-20 | oops, assign errno the right way. caught by david running regress tests | otto | 1 | -2/+2 | |
| 2008-10-03 | reduce rbyte cache to 512 bytes, no measurable slowdown (even in the | otto | 1 | -2/+2 | |
| threaded case) but much smaller working set; prompted by and ok deraadt@ | |||||
| 2008-10-03 | save and restore errno on success. while it is not stricly needed for | otto | 1 | -4/+14 | |
| non-syscalls, there's just too much code not doing the right thing on error paths; prompted by and ok deraadt@ | |||||
| 2008-10-03 | zap __arc4_getbyte(), it was only used by the old malloc; ok millert@ | otto | 1 | -14/+1 | |
| kurt@ | |||||
| 2008-10-03 | when increasing the size of a larger than a page allocation try | otto | 1 | -3/+41 | |
| mapping the region next to the existing one first; there's a pretty high chance there's a hole there we can use; ok deraadt@ tedu@ | |||||
| 2008-10-03 | avoid spitting up regions when purging stuff from the cache, it puts | otto | 1 | -17/+10 | |
| too much pressure on the amaps. ok tedu@ deraadt@ | |||||
| 2008-10-02 | Hook up fnmatch and glob regress. | millert | 1 | -5/+5 | |
| 2008-10-01 | Regress driver for fnmatch(3). Needs more tests. | millert | 3 | -0/+58 | |
| 2008-10-01 | Regress driver for glob(3). Needs more tests. | millert | 4 | -0/+244 | |
| 2008-09-19 | documentation tweaks; synchronize synopsis and usage. | sobrado | 2 | -10/+11 | |
| written with help by jmc@ ok jmc@ | |||||
| 2008-09-19 | fix some cause of bad TEXTREL on i386 and amd64 | otto | 10 | -28/+128 | |
| - global function calls in .init sections (diff makes them via PLT) - calls to global functions in aes-586.S (made static or local) - global variable accesses in rc4-x86_64.S (now made via GOT) from djm@large; ok miod@ | |||||
| 2008-09-13 | document strtold. ok millert@ | martynas | 2 | -11/+25 | |
| 2008-09-13 | strtof has been introduced in c99 | martynas | 1 | -4/+6 | |
| from Thomas Pfaff. ok millert@ | |||||
| 2008-09-10 | use one call to arc4random_buf() instead of lots of arc4random() | djm | 2 | -16/+4 | |
| 2008-09-08 | turn off CAST assembler code (i.e. use C implementation) as it has bad | djm | 1 | -3/+3 | |
| relocations that lead to libcrypto.so being marked TEXTREL; linker-fu from drahn@ "go ahead" deraadt@ | |||||
| 2008-09-07 | - replace dtoa w/ David's gdtoa, version 2008-03-15 | martynas | 8 | -2504/+309 | |
| - provide proper dtoa locks - use the real strtof implementation - add strtold, __hdtoa, __hldtoa - add %a/%A support - don't lose precision in printf, don't round to double anymore - implement extended-precision versions of libc functions: fpclassify, isnan, isinf, signbit, isnormal, isfinite, now that the ieee.h is fixed - separate vax versions of strtof, and __hdtoa - add complex math support. added functions: cacos, casin, catan, ccos, csin, ctan, cacosh, casinh, catanh, ccosh, csinh, ctanh, cexp, clog, cabs, cpow, csqrt, carg, cimag, conj, cproj, creal, cacosf, casinf, catanf, ccosf, csinf, ctanf, cacoshf, casinhf, catanhf, ccoshf, csinhf, ctanhf, cexpf, clogf, cabsf, cpowf, csqrtf, cargf, cimagf, conjf, cprojf, crealf - add fdim, fmax, fmin - add log2. (adapted implementation e_log.c. could be more acruate & faster, but it's good enough for now) - remove wrappers & cruft in libm, supposed to work-around mistakes in SVID, etc.; use ieee versions. fixes issues in python 2.6 for djm@ - make _digittoint static - proper definitions for i386, and amd64 in ieee.h - sh, powerpc don't really have extended-precision - add missing definitions for mips64 (quad), m{6,8}k (96-bit) float.h for LDBL_* - merge lead to frac for m{6,8}k, for gdtoa to work properly - add FRAC*BITS & EXT_TO_ARRAY32 definitions in ieee.h, for hdtoa&ldtoa to use - add EXT_IMPLICIT_NBIT definition, which indicates implicit normalization bit - add regression tests for libc: fpclassify and printf - arith.h & gd_qnan.h definitions - update ieee.h: hppa doesn't have quad-precision, hppa64 does - add missing prototypes to gdtoaimp - on 64-bit platforms make sure gdtoa doesn't use a long when it really wants an int - etc., what i may have forgotten... - bump libm major, due to removed&changed symbols - no libc bump, since this is riding on djm's libc major crank from a day ago discussed with / requested by / testing theo, sthen@, djm@, jsg@, merdely@, jsing@, tedu@, brad@, jakemsr@, and others. looks good to millert@ parts of the diff ok kettenis@ this commit does not include: - man page changes | |||||
| 2008-09-07 | sparc now requires this bloated library to be -fPIC | deraadt | 1 | -1/+5 | |
| 2008-09-07 | Fix merge botch. | kettenis | 2 | -6/+0 | |
| ok miod@ | |||||
| 2008-09-06 | remove duplicate definition of OPENSSL_DSA_MAX_MODULUS_BITS spotted | djm | 2 | -4/+0 | |
| by dtucker@ | |||||
| 2008-09-06 | update for openssl-0.9.8h | djm | 2 | -49/+96 | |
| 2008-09-06 | remerge local tweaks, update per-arch configuration headers, update | djm | 31 | -118/+900 | |
| Makefiles, crank shlib_version | |||||
| 2008-09-06 | resolve conflicts | djm | 1188 | -25827/+68210 | |
| 2008-09-06 | import of OpenSSL 0.9.8h | djm | 564 | -10621/+67300 | |
| 2008-09-06 | import of OpenSSL 0.9.8h | djm | 917 | -31309/+67049 | |
| 2008-09-06 | import of OpenSSL 0.9.8h | djm | 276 | -871/+82581 | |
| 2008-09-03 | remove now obsolete calloc implementation; prompted by miod | otto | 1 | -50/+0 | |
| 2008-09-01 | do not overflow for large prefix len (e.g. 2147483649) | markus | 1 | -3/+3 | |
| report Maksymilian Arciemowicz; ok djm, deraadt | |||||
| 2008-08-25 | Make all combinations of G, P, J and zero-fill work with as little | otto | 1 | -5/+20 | |
| effort as possible in most cases; ok djm@ | |||||
| 2008-08-23 | unbreak MALLOC_OPTIONS=G that I broke in my last commit; | djm | 1 | -3/+3 | |
| slightly kludgey solution for until otto fixes it properly; ok otto@ | |||||
| 2008-08-23 | fix calloc() for MALLOC_OPTIONS=J case: SOME_JUNK was being filled into | djm | 1 | -2/+2 | |
| the freshly mmaped pages disrupting their pure zeroness; ok otto@ deraadt@ | |||||
| 2008-08-23 | unbreak wcschr(string, L'\0') which was incorrectly returning NULL | djm | 1 | -3/+5 | |
| rather than a pointer to the terminating nul; ok deraadt@ | |||||
| 2008-08-22 | make sure we always map and unmap multiples of MALLOC_PAGESIZE; | otto | 1 | -5/+14 | |
| case spotted by beck, one by me; ok deraadt@ beck@ | |||||
| 2008-08-22 | Smarter implementation of calloc(3), which uses the fact that mmap(2) | otto | 2 | -8/+57 | |
| returns zero filled pages; remember to replace this function as well if you provide your own malloc implementation; ok djm@ deraadt@ | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |