openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Files	Lines
2014-07-28	remove non-portable __progname extern from arc4random unit test.	bcook	1	-2/+1
	ok @deraadt
2014-07-27	Link dependencies on libssl and libcrypto were missing.	guenther	1	-2/+3
	OPENSSL_NO_RC5 is #defined in the #includes, so it's not needed here. ok deraadt@
2014-07-25	Add missing year to copyright.	jsing	4	-8/+8

2014-07-25	BIO_free() returns immediately when the sole input is NULL.	doug	26	-96/+61
	Remove unnecessary NULL check. ok miod@
2014-07-23	level_add_node(): if a memory allocation failure causes us to attempt to clean	miod	2	-8/+14
	up and return failure, be sure the cleanup work does NOT free objects which are still being referenced by other objects. ok guenther@
2014-07-23	Make sure PEM_def_callback() correctly handles negative buffer sizes; all uses	miod	2	-20/+34
	within libcrypto are safe, but until we can change this function prototype to use size_t instead of int, better be safe than sorry. tweaks and ok guenther@
2014-07-23	Check the return value of the UI functions (including UI_new() which return	miod	2	-12/+22
	value is happily dereferenced without checking it for being non-NULL). ok beck@
2014-07-22	Now that DES_random_key() can be trusted, use it to generate DES keys in the	miod	4	-24/+20
	EVP_CTRL_RAND_KEY method handlers, rather than generating a random odd key and not even checking it against the weak keys list. ok beck@
2014-07-22	In DES_random_key(), force the generated key to the odd parity before checking	miod	2	-16/+16
	it is not one of the weak and semi-weak keys. Even though the probability of generating a weak key with incorrect parity is abysmally small, there is no reason to be correct (although, if you're in a need for fresh DES keys nowadays, you should seriously consider switching to a stronger symmetric cipher algorithm). ok beck@
2014-07-22	Handle failure of NETSCAPE_SPKI_b64_encode() and don't leak memory	guenther	1	-6/+10
	when BIO_new_{file,fp}() fails. inspired by a diff from logan@ ok miod@
2014-07-22	Use Cm instead of Li for 'MASK:'	guenther	1	-2/+2
	(Overlooked among jmc@'s other suggestions)
2014-07-22	Rewrite the description of the string_mask config file option to match	guenther	1	-34/+30
	reality, and reformatting to be readable. formatting and wording suggestions miod@ jmc@
2014-07-22	Kill a bunch more BUF_strdup's - these are converted to have a check for	beck	12	-30/+40
	NULL before an intrinsic strdup. ok miod@
2014-07-22	better match proposed syscall api	bcook	2	-16/+4

2014-07-21	protect sysctl path with SYS__sysctl instead; from enh@google, ok bcook	deraadt	2	-12/+12

2014-07-21	Use explicit_bzero() instead of memset() on buffers going out of scope.	guenther	6	-12/+18
	Also, zero the SHA256 context. suggested by "eric" in a comment on an opensslrampage.org post ok miod@ deraadt@
2014-07-21	cast from void * before math; enh@google	deraadt	2	-4/+4

2014-07-21	missing newline	deraadt	1	-1/+2

2014-07-21	Switch from <sys/endian.h> or <machine/endian.h> to the new,	guenther	5	-10/+10
	being-standardized <endian.h> ok deraadt@ millert@ beck@
2014-07-20	Move more OS-specific functionality to arc4random.h headers.	bcook	10	-14/+88
	Move <sys/mman.h> and raise(SIGKILL) calls to OS-specific headers. On OpenBSD, move thread_private.h as well to arc4random.h. On Windows, use TerminateProcess on getentropy failure. ok deraadt@
2014-07-20	initial win32 ARC4_LOCK/UNLOCK implementation.	bcook	2	-2/+42
	It may make sense to later replace this with a Critical Section later. ok guenther@
2014-07-20	From ISO/IEC 9899:1999 and 9899:201x,	guenther	2	-5/+5
	6.11.5 - Storage-class specifiers: The placement of a storage-class specifier other than at the beginning of the declaration specifiers in a declaration is an obsolescent feature. Diff from Jean-Philippe Ouellet (jean-philippe (at) ouellet.biz)
2014-07-20	Demonstrate how new linux getrandom() will be called, at least until	deraadt	2	-2/+74
	it shows up in libraries. Even the system call is probably not finalized. Bit dissapointed it has turned out to be a descriptor-less read() with EINVAL and EINTR error conditions, but we can work with it.
2014-07-20	Mark the format string argument to BIO_*printf as not being allowed to be NULL	guenther	2	-10/+14
	ok bcook@
2014-07-20	Fix ordering breakage, moving the fclose() test last again.	guenther	1	-6/+22
	Also correct some format strings. From Doug Hogan (doug (at) acyclic.org)
2014-07-20	Make sure the correct errno is reported by warn* or err* and not	guenther	7	-7/+14
	the errno of an intervening cleanup operation like close/unlink/etc. Diff from Doug Hogan (doug (at) acyclic.org)
2014-07-20	Delete unused variables found by -Wall	guenther	5	-5/+2

2014-07-20	Add missing include. Tickled by Doug Hogan (doug (at) acyclic.org)	guenther	1	-0/+1

2014-07-19	remove disabled main hook; we use phdr now; ok bcook	deraadt	6	-42/+6

2014-07-19	arc4random re-seeds with getentropy() now; ok deraadt@ jmc@	naddy	1	-3/+3

2014-07-19	tab love	deraadt	2	-6/+6

2014-07-19	Move _ARC4_ATFORK handlers from thread_private.h in portable.	bcook	6	-6/+30

2014-07-19	move _ARC4_LOCK/UNLOCK primitives from thread_private into OS-specific modules	bcook	6	-6/+44

2014-07-19	fixup typos	bcook	6	-110/+108

2014-07-19	Fix strtonum range to unbreak -pass fd:0	lteo	1	-2/+2
	ok deraadt@
2014-07-19	Change _rs_allocate so it can combine the two regions (rs and rsx)	deraadt	10	-138/+135
	into one if a system has an awesome getentropy(). In that case it is valid to totally throw away the rsx state in the child. If the getentropy() is not very good and has a lazy reseed operation, this combining is a bad idea, and the reseed should probably continue to use the "something old, something new" mix. _rs_allocate() can accomodate either method, but not on the fly. ok matthew
2014-07-18	Cleanup portable arc4random fork detection code:	matthew	6	-66/+48
	1. Use "len" parameter instead of sizeof(rs). 2. Simplify the atfork handler to be strictly async signal safe by simply writing to a global volatile sig_atomic_t object, and then checking for this in _rs_forkdetect(). (Idea from discussions with Szabolcs Nagy and Rich Felker.) 3. Use memset(rs, 0, sizeof(rs)) to match OpenBSD's MAP_INHERIT_ZERO fork semantics to avoid any skew in behavior across platforms. ok deraadt
2014-07-18	missing newline	deraadt	1	-2/+2

2014-07-18	Remove "const" from the lsearch(3) manual's synopsis too.	matthew	1	-3/+3
	Reminded by Rafael Neves
2014-07-18	zap trailing whitespace;	jmc	1	-3/+3

2014-07-18	Change lsearch()'s "base" argument to require a non-const pointer to	matthew	1	-2/+2
	align with POSIX and other systems. Pointed out by Elliott Hughes on tech ok deraadt
2014-07-18	Seperate arc4random's os-dependent parts into static inline functions,	deraadt	10	-36/+543
	making it much easier for libressl -portable to fill in the gaps. ok bcook beck
2014-07-17	avoid errx(); Jonas Termansen	deraadt	1	-3/+5

2014-07-17	avoid sys/param.h; Jonas Termansen	deraadt	4	-10/+12

2014-07-17	it is 2014, and we still need to encourage people away from srand()	deraadt	2	-5/+14
	and random(). Sigh.
2014-07-17	"Race-free because we're running single-threaded in a new	deraadt	1	-1/+5
	address space, and once allocated rs is never deallocated." document the forkhandler to save reviewers time, with matthew
2014-07-17	Missing bounds check in ssl3_get_certificate_request(), was not spotted in	miod	2	-2/+12
	1.78; reported by Ilja Van Sprundel.
2014-07-17	Free sktmp when it's no longer needed. By doing so, we fix a bunch of memory ↵	logan	2	-4/+8
	leaks. From miod@ OK from miod@ and guenther@
2014-07-16	Fix tlsext_tick_lifetime_hint value in test #2 to make sure the	miod	1	-29/+29
	(tlsext_tick_lifetime_hint > 0) test also passes on 32-bit platforms (tlsext_tick_lifetime_hint is a long).
2014-07-16	Only call getauxval(3) if HAVE_GETAUXVAL is defined. Fixes build on older	kettenis	2	-2/+6
	Linux (such as Ubuntu 12.04LTS) that don't have it yet. Seems the AT_XXX defines are pulled in by <link.h> now. ok beck@