openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Files	Lines
2008-06-08	arc4random_stir() does not use /dev/arandom anymore, but sysctl kern.arandom	deraadt	1	-4/+6

2008-06-04	fix math screwup that reintroduced a bias for upper_bounds in range	djm	1	-2/+2
	(2^30,2^31). Nothing in the tree yet requests random numbers bounded by this range. report jakob!deraadt; ok deraadt@
2008-05-30	-salt is default for "openssl enc"; from djm	jmc	1	-29/+19
	tweaked with some help from Matthew Dempsky and djm ok djm
2008-05-20	kill an Xr to a non-existent man page, ulimit(1);	jmc	1	-5/+3

2008-05-19	remove recalloc(3); it is buggy and impossible to repair without big	otto	3	-62/+20
	costs; ok jmc@ for the man page bits; ok millert@ deraadt@
2008-05-11	garbage collect the portability bits for the removed select() support.	brad	1	-11/+1
	ok djm@ deraadt@
2008-05-09	try SO_BINDANY for -s, but do not insist; ok bob, reyk	markus	1	-2/+4

2008-05-07	remove duplicates; remove des_random_key; remove unused; sort MLINKS; ok jmc@	markus	1	-113/+8

2008-05-06	- put the description of -O in the right place	jmc	1	-6/+6
	- shorten the argument names to -IO
2008-05-06	allow setting of TCP send/receive buffer sizes; ok markus@	djm	2	-5/+38

2008-04-18	convert select() => poll(), saves a runtime malloc+free per retry	djm	1	-23/+16
	feedback deraadt@ drahn@; ok deraadt@
2008-04-16	permit _ in the middle of a DNS name component	deraadt	1	-2/+3

2008-04-13	Improve the libc DNS resolver ID generation algorithm to be more	djm	1	-43/+79
	resistant to prediction atacks by wrapping the existing LCG in a random permutation generator based on a Luby-Rackoff block cipher. lots of discussion and final ok deraadt@
2008-04-13	Use arc4random_buf() when requesting more than a single word of output	djm	2	-4/+4
	Use arc4random_uniform() when the desired random number upper bound is not a power of two ok deraadt@ millert@
2008-04-04	- do not call pthread_atfork(3) handlers when a multithreaded program	kurt	1	-2/+7
	calls vfork(2). "untested, but looks OK" marc@ - document vfork(2), popen(3) and system(3) don't call atfork handlers in multithreaded programs. okay jmc@
2008-04-02	Zero state buffers on return. OK deraadt@	millert	1	-1/+5

2008-03-19	bcmp(3) tries to return length, which is a size_t, as an int.	ray	1	-4/+4
	Instead, just return 1 if there is a difference. Found by lint. OK millert.
2008-03-16	- add NAME entries for arc4random_buf and arc4random_uniform	jmc	1	-2/+4
	- simplify a macro call (Do/Dc -> Dq)
2008-03-16	Add missing MLINKS	deraadt	1	-1/+2

2008-03-16	diff from djm@ committed at his request:	otto	2	-3/+84
	introduce two new APIs for requesting strong random numbers: arc4random_buf() - fill an arbitrary memory range with random numbers arc4random_uniform() - return a uniformly distributed random number below a specified upper bound, avoiding the bias that comes from a naive "arc4random() % upper_bound" construction. these mirror similarly-named functions in the kernel; lots of discussion deraadt@ mcbride@
2008-03-15	- len is size_t, but n uses len and is an int. Matching those types	ray	1	-6/+12
	should be good, plus it prevents weird things from happening if len > INT_MAX. - Since n is now size_t, compare it against 0 instead of >= 0. - temp is used to store individual bytes, so use char instead (matches fp and tp). - millert noted that the comma operator may not guarantee order of execution, so replace with semicolons. Found by lint, OK millert.
2008-03-15	Convert c to unsigned char, like it says in the manual. Also add	ray	1	-4/+3
	cast to make it explicit. Found by lint, OK millert.
2008-02-26	fix memory leak (in one case of unaligned buffers); from Markus Kvetter	deraadt	2	-4/+6
	ok markus
2008-02-20	use pgfree pool like other code does to reserve free list slots.	otto	1	-6/+6
	prevents a few "cannot free mem because i need mem to free mem" scenarios (one found by weingart@). ok weingart@ millert@ miod@
2008-01-01	- make arc4random*() functions thread safe. Use a custom spinlock function	kurt	2	-42/+69
	instead of the generic pthread macros since free(3) uses __arc4_getbyte() when freeing small sized allocations and the generic pthread macros call malloc(3). - eliminate passing pointers to a static variable with global scope (rs) for additional code clarity and reduction. - shlib minor bumps for libc and libpthread due to new functions. From andreas@ with some bits from me. okay tedu@ marc@ w/some spot checking from millert@
2007-12-01	relevant updates/fixes up to openssl-0.9.8g;	jmc	1	-31/+45

2007-11-27	typos; ok jmc@	martynas	1	-2/+2
	sys/dev/pci/pciide.c from naddy@
2007-11-19	fix misleading comment; the _MUTEX_LOCK/_MUTEX_UNLOCK macros work with	kurt	1	-2/+2
	both static and non-static mutexs.
2007-11-13	Put limits.h in front of stdlib.h as style(9) recommends.	tobias	2	-8/+8
	OK millert@
2007-11-11	strtod may return HUGE_VAL on overflow, which is defined in math.h.	tobias	1	-2/+3
	Therefore added math.h to SYNPOSIS. OK millert@
2007-10-31	Add parentheses to avoid warning:	chl	1	-2/+2
	"suggest parentheses around && within \|\|" ok millert@
2007-10-25	Make sure to use unique target names so that make -j does not break;	miod	1	-25/+25
	feedback and ok espie@
2007-10-22	Only test one condition per invocation flavour, instead of testing all	miod	1	-27/+29
	of them with exceptions disabled and then only one with exceptions enabled. ok kettenis@
2007-10-20	Give more details on failure.	miod	1	-8/+8

2007-10-20	Make this work on 64 bit platforms by using strlen() instead of sizeof()...	miod	1	-1/+1
	worked by accident.
2007-10-11	use RRSIG instead of SIG for DNSSEC. ok djm@	jakob	3	-6/+7

2007-10-10	Replace use of strcpy(3) and other pointer goo in	moritz	2	-30/+24
	SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@
2007-10-08	add a RETURN VALUES section.	pyr	1	-9/+9
	ok jmc@
2007-09-27	Fix off-by-one buffer overflow in SSL_get_shared_ciphers().	moritz	2	-22/+22
	From OpenSSL_0_9_8-stable branch. ok djm@
2007-09-19	add HISTORY; shortened version of diff from Ilya A. Kovalenko	jmc	1	-2/+7
	ok millert
2007-09-17	Check snprintf(3) return value for error or truncation.	moritz	1	-1/+5
	Mostly path construction, where truncation could be bad. ok and input from deraadt@ millert@ ray@
2007-09-12	fix format strings, sizeof() does not return an int	otto	1	-5/+5

2007-09-10	Proper use of fseek/fseeko macros.	tobias	2	-2/+2
	OK joris@, otto@
2007-09-09	use strcspn to properly overwrite '\n' in fgets returned buffer	chl	2	-4/+4
	ok moritz@ gilles@
2007-09-07	Synced atomicio implementation in nc and sendbug with ssh.	tobias	2	-13/+24
	OK djm@, joris@, ray@
2007-09-05	Add missing header to avoid warning	chl	1	-1/+2
	ok millert@ ray@
2007-09-05	no need to talk about bits; ok millert jmc	deraadt	1	-3/+3

2007-09-03	Update free(3) section--we use mmap()/munmap(), not brk().	millert	1	-4/+6
	Based on a diff from Mike Belopuhov. OK jmc@
2007-09-03	remove trailing whitespace;	jmc	1	-2/+2

2007-09-03	Adapt atexit() regress to recent changes and add __cxa_atexit() regress.	millert	11	-5/+196
	__cxa_atexit() regress from kurt@