| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2014-07-20 | Make sure the correct errno is reported by warn* or err* and not | guenther | 7 | -7/+14 | |
| the errno of an intervening cleanup operation like close/unlink/etc. Diff from Doug Hogan (doug (at) acyclic.org) | |||||
| 2014-07-20 | Delete unused variables found by -Wall | guenther | 5 | -5/+2 | |
| 2014-07-20 | Add missing include. Tickled by Doug Hogan (doug (at) acyclic.org) | guenther | 1 | -0/+1 | |
| 2014-07-19 | remove disabled main hook; we use phdr now; ok bcook | deraadt | 6 | -42/+6 | |
| 2014-07-19 | arc4random re-seeds with getentropy() now; ok deraadt@ jmc@ | naddy | 1 | -3/+3 | |
| 2014-07-19 | tab love | deraadt | 2 | -6/+6 | |
| 2014-07-19 | Move _ARC4_ATFORK handlers from thread_private.h in portable. | bcook | 6 | -6/+30 | |
| 2014-07-19 | move _ARC4_LOCK/UNLOCK primitives from thread_private into OS-specific modules | bcook | 6 | -6/+44 | |
| 2014-07-19 | fixup typos | bcook | 6 | -110/+108 | |
| 2014-07-19 | Fix strtonum range to unbreak -pass fd:0 | lteo | 1 | -2/+2 | |
| ok deraadt@ | |||||
| 2014-07-19 | Change _rs_allocate so it can combine the two regions (rs and rsx) | deraadt | 10 | -138/+135 | |
| into one if a system has an awesome getentropy(). In that case it is valid to totally throw away the rsx state in the child. If the getentropy() is not very good and has a lazy reseed operation, this combining is a bad idea, and the reseed should probably continue to use the "something old, something new" mix. _rs_allocate() can accomodate either method, but not on the fly. ok matthew | |||||
| 2014-07-18 | Cleanup portable arc4random fork detection code: | matthew | 6 | -66/+48 | |
| 1. Use "len" parameter instead of sizeof(*rs). 2. Simplify the atfork handler to be strictly async signal safe by simply writing to a global volatile sig_atomic_t object, and then checking for this in _rs_forkdetect(). (Idea from discussions with Szabolcs Nagy and Rich Felker.) 3. Use memset(rs, 0, sizeof(*rs)) to match OpenBSD's MAP_INHERIT_ZERO fork semantics to avoid any skew in behavior across platforms. ok deraadt | |||||
| 2014-07-18 | missing newline | deraadt | 1 | -2/+2 | |
| 2014-07-18 | Remove "const" from the lsearch(3) manual's synopsis too. | matthew | 1 | -3/+3 | |
| Reminded by Rafael Neves | |||||
| 2014-07-18 | zap trailing whitespace; | jmc | 1 | -3/+3 | |
| 2014-07-18 | Change lsearch()'s "base" argument to require a non-const pointer to | matthew | 1 | -2/+2 | |
| align with POSIX and other systems. Pointed out by Elliott Hughes on tech ok deraadt | |||||
| 2014-07-18 | Seperate arc4random's os-dependent parts into static inline functions, | deraadt | 10 | -36/+543 | |
| making it much easier for libressl -portable to fill in the gaps. ok bcook beck | |||||
| 2014-07-17 | avoid errx(); Jonas Termansen | deraadt | 1 | -3/+5 | |
| 2014-07-17 | avoid sys/param.h; Jonas Termansen | deraadt | 4 | -10/+12 | |
| 2014-07-17 | it is 2014, and we still need to encourage people away from srand() | deraadt | 2 | -5/+14 | |
| and random(). Sigh. | |||||
| 2014-07-17 | "Race-free because we're running single-threaded in a new | deraadt | 1 | -1/+5 | |
| address space, and once allocated rs is never deallocated." document the forkhandler to save reviewers time, with matthew | |||||
| 2014-07-17 | Missing bounds check in ssl3_get_certificate_request(), was not spotted in | miod | 2 | -2/+12 | |
| 1.78; reported by Ilja Van Sprundel. | |||||
| 2014-07-17 | Free sktmp when it's no longer needed. By doing so, we fix a bunch of memory ↵ | logan | 2 | -4/+8 | |
| leaks. From miod@ OK from miod@ and guenther@ | |||||
| 2014-07-16 | Fix tlsext_tick_lifetime_hint value in test #2 to make sure the | miod | 1 | -29/+29 | |
| (tlsext_tick_lifetime_hint > 0) test also passes on 32-bit platforms (tlsext_tick_lifetime_hint is a long). | |||||
| 2014-07-16 | Only call getauxval(3) if HAVE_GETAUXVAL is defined. Fixes build on older | kettenis | 2 | -2/+6 | |
| Linux (such as Ubuntu 12.04LTS) that don't have it yet. Seems the AT_XXX defines are pulled in by <link.h> now. ok beck@ | |||||
| 2014-07-16 | do not need a variable to track locking, since all code paths have it | deraadt | 2 | -10/+4 | |
| locked throughout. | |||||
| 2014-07-16 | #ifdef wrap the _rs_forkhandler | deraadt | 1 | -1/+3 | |
| 2014-07-16 | added handler for an atfork hook from kettenis@ | bcook | 1 | -1/+10 | |
| ok deraadt@ beck@ kettenis@ | |||||
| 2014-07-14 | not needed anymore | deraadt | 2 | -1173/+0 | |
| 2014-07-14 | Fix memory leak upon error in ssl_parse_clienthello_use_srtp_ext(). | miod | 2 | -12/+12 | |
| From BoringSSL. | |||||
| 2014-07-14 | whitespace | deraadt | 45 | -172/+172 | |
| 2014-07-14 | Improve RAND_write_file(), chmod crud, etc. | deraadt | 2 | -54/+38 | |
| ok tedu | |||||
| 2014-07-13 | Add configuration handling for certificate and key files. | jsing | 3 | -7/+22 | |
| 2014-07-13 | Add stubs for the proposed server API. | jsing | 3 | -1/+72 | |
| 2014-07-13 | Stop leaking internal library pointers in error messages. | jsing | 2 | -4/+4 | |
| Requested by miod@ | |||||
| 2014-07-13 | Tabs, not spaces. | jsing | 3 | -22/+22 | |
| 2014-07-13 | Rename the context allocation from ressl_new to ressl_client, which makes | jsing | 3 | -1/+30 | |
| it completely obvious what the context is for. Ensure client functions are used on client contexts. | |||||
| 2014-07-13 | Split the context allocation out from the configuration. This will allow | jsing | 2 | -5/+14 | |
| us to properly report errors that occur during configuration processing. Discussed with tedu@ | |||||
| 2014-07-13 | Move the client code into a separate file. | jsing | 3 | -161/+185 | |
| 2014-07-13 | Rename various configuration handling functions. | jsing | 2 | -13/+14 | |
| Requested by and discussed with tedu@. | |||||
| 2014-07-13 | Use a single ressl.h header file. | jsing | 5 | -45/+18 | |
| Discussed with beck@ and tedu@. | |||||
| 2014-07-13 | Explicitly initialise slen - this was not previously done due to a missing | jsing | 2 | -2/+4 | |
| M_ASN1_D2I_begin macro. | |||||
| 2014-07-13 | Convert error handling to SSLerr and ERR_asprintf_error_data. | jsing | 2 | -118/+108 | |
| 2014-07-13 | tweak previous; | jmc | 1 | -2/+2 | |
| 2014-07-13 | missing bracket in previous; | jmc | 1 | -2/+2 | |
| 2014-07-13 | Convert d2i_SSL_SESSION to ASN1 primitives, instead of the horrific | jsing | 2 | -52/+594 | |
| asn1_mac.h macros. This still needs a lot of improvement, but immediately becomes readable. ok miod@ (sight unseen!) | |||||
| 2014-07-13 | Remove license introduced with the PSK code, which has since been removed. | jsing | 2 | -54/+2 | |
| ok deraadt@ | |||||
| 2014-07-13 | Another compression remnant. | jsing | 2 | -4/+2 | |
| 2014-07-13 | Expand the tlsext_sigalg macros. The end result is about the same number | jsing | 2 | -32/+38 | |
| of lines and much more readable. ok miod@ | |||||
| 2014-07-13 | Rewrite i2d_SSL_SESSION to use the ASN1 primitives, rather than using the | jsing | 2 | -150/+196 | |
| horrific macros from asn1_mac.h. This is a classic example of using macros to obfuscate code, in an attempt to reduce the line count. The end result is so ridiculously convoluted that it is completely unreadable and it takes hours to deconstruct the macros and figure out what is actually going on behind the scenes. ok miod@ | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |