openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Files	Lines
2014-12-02	Add strnlen to SUBDIRS so we actually run its tests.	millert	1	-2/+2

2014-12-02	add some openbsd tags, and a first pass at cleanup;	jmc	166	-210/+708

2014-12-02	macro cleanup; kaspars at bankovskis dot net	schwarze	2	-49/+55

2014-11-30	Replace all 14 instances of .St -ansiC-99 in our tree with .St -isoC-99.	schwarze	11	-33/+33
	The former is not used anywhere in NetBSD, FreeBSD, or DragonFly and not supported by groff, so i'm going to delete it from mandoc(1). We don't need two macros for the same thing.
2014-11-30	obvious STANDARDS update	schwarze	2	-14/+10

2014-11-30	restructure libc/string + libc/arch/*/string coperation regarding	deraadt	8	-155/+309
	(potentially) MD versions (function dependent, not filename dependent) split out memcpy/memmove/bcopy and strchr/index/strrchr/rindex Bring back amd64 .S versions And the final touch: switch all architectures temporarily to MI memcpy.c, which contains syslog + abort for overlapping copies. A nice harsh undefined behaviour. We will clean the entire userland of the remaining issues in this catagory, then switch to the optimised memcpy which skips the memmove check. I tried to cut this change into pieces, but testing each sub-step on every architecture is too time consuming and mindnumbing. ok miod
2014-11-30	Remove non-portable use of .Pf that doesn't work with groff;	schwarze	2	-16/+8
	found because the groff_mdoc(7) macros warn about it.
2014-11-27	Ensure that sess_cert is not NULL at the start of	jsing	2	-50/+18
	ssl3_send_client_key_exchange(), rather than checking it in the key exchange algorithm specific code. ok beck@ miod@
2014-11-27	Avoid a double-free in an error path.	jsing	2	-4/+2
	Reported by Felix Groebert of the Google Security Team. ok beck@ miod@
2014-11-27	Avoid a NULL dereference in the DTLS client that can be triggered by a	jsing	2	-2/+18
	crafted server response used in conjunction with an anonymous DH or anonymous ECDH ciphersuite. Fixes CVE-2014-3510, which is effectively a repeat of CVE-2014-3470 in copied code. Reported by Felix Groebert of the Google Security Team. ok beck@ miod@
2014-11-26	prefer memcmp to bcmp.	bcook	1	-2/+2
	ok tedu@ miod@ deraadt@
2014-11-26	remove superflous gettimeofday wrapper.	bcook	2	-18/+4
	ok beck@ tedu@ miod@ guenther@ doug@ deraadt@
2014-11-26	memset like a normal human.	bcook	2	-20/+20
	ok beck@ tedu@ miod@
2014-11-26	normalize set/getsockopt usage.	bcook	6	-90/+54
	Remove the remaining random casts on optval. Fixups for this can be handled by the portability layer all in once place. Remove remaining fake socklen_t unions, though beck@ points out that this also removes support for socklen_t changing its length at runtime. RIP. ok tedu@ beck@ miod@ deraadt@
2014-11-26	Linux has had IP_MTU since 2005, don't force it.	bcook	2	-16/+8
	ok beck@ miod@ tedu@ deraadt@
2014-11-25	rand() is a pseudo-random number generator	millert	1	-3/+3

2014-11-25	Don't describe random() as "better".	millert	1	-5/+5
	Remove the bug about rand() being faster. Add a bug about historical implementations seeding very poorly.
2014-11-25	Warn people to use arc4random() in DESCRIPTION so they see it using	millert	1	-5/+8
	the same text from random.3.
2014-11-25	rand48(3) not drand48(3) to align with the actual man page and Xr	millert	1	-3/+3
	entries.
2014-11-25	no need for md5 xr	tedu	1	-3/+2

2014-11-25	revert the bludgeoning of DES. if we need a thread safe crypt, maybe it's	tedu	1	-31/+33
	better to find one instead of continuing to mangle this mess.
2014-11-25	push some global data down into functions to make this threadlier.	tedu	1	-33/+31
	only doing what's needed for crypt_hashpass. sigh.
2014-11-24	introduce a hashspace define and check that there's enough space to	tedu	1	-15/+10
	write out a hash. also simplify writing out the hash.
2014-11-24	check crypt() for null. noticed by Jonas Termansen	tedu	1	-2/+2

2014-11-23	Mention the -no_tls1_[12] options	guenther	1	-6/+10

2014-11-22	mop up a barely started project... getting in the way of grepping the tree!	deraadt	2	-8/+0

2014-11-22	Fix incorrect escape.	bentley	2	-4/+4

2014-11-21	MPE support, begone. ok tedu	deraadt	2	-4/+4

2014-11-21	space needed between macro args and punctuation;	jmc	1	-2/+2

2014-11-21	add ERRORS, HISTORY, AUTHORS, Copyright year, and some missing macros;	schwarze	1	-6/+39
	ok tedu@ on a previous version
2014-11-21	Let crypt_checkpass() set EACCES after bcrypt_checkpass() failure;	schwarze	1	-2/+4
	ok tedu@
2014-11-21	change prototype for crypt_newhash. the login_cap_t is a holdover from its	tedu	2	-15/+10
	pwd_gensalt origins, but a string argument works equally work and is more friendly to consumers beyond local user accounts. ok deraadt
2014-11-20	Oops, make sure camellia is compiled on platforms without an arch-specific	miod	1	-1/+2
	Makefile.inc (i.e. landisk and m88k)
2014-11-20	split crypt_checkpass off into a new file	tedu	3	-36/+73

2014-11-20	Document behavior of atexit() when called in a DSO that is later unloaded.	guenther	1	-2/+14
	Would be nice to document when/where this originated (in glibc?) if anyone knows... tweaks by schwarze@ ok jmc@ espie@ kettenis@ schwarze@ dimitry(at)google.com
2014-11-19	Nuke yet more obvious #include duplications.	krw	2	-6/+2
	ok deraadt@
2014-11-19	include camellia.h using the public include path	bcook	2	-4/+4

2014-11-19	Fix a memory leak with pkey in client key exchange	doug	2	-2/+4
	Based on boringssl commit: 1df112448b41c3568477f3fcd3b8fc820ce80066 ok miod@ jsing@
2014-11-18	add crypt_newhash to NAME and add an MLINK;	jmc	2	-4/+6

2014-11-18	GOST regression tests; from Dmitry Eremin-Solenikov	miod	3	-1/+18

2014-11-18	Argh, another bug introduced in r1.3; Dmitry Eremin-Solenikov	miod	2	-4/+4

2014-11-18	Nuke more obvious #include duplications.	krw	1	-2/+1
	ok deraadt@ millert@ tedu@
2014-11-18	Update the GOST code in libssl, as contributed by Dmitry Eremin-Solenikov.	miod	26	-146/+594
	This causes a libssl major version bump as this affects the layout of some internal-but-unfortunately-made-visible structs.
2014-11-18	Enable the build of GOST routines in libcrypto. Riding upon the Cammelia	miod	3	-8/+6
	libcrypto minor bump.
2014-11-18	More missing error checks I forgot to commit last week, part of the large	miod	2	-24/+46
	cleanup diff.
2014-11-18	Return success in param_copy_gost01() if there is no private key to copy;	miod	2	-4/+4
	broken in r1.3. Spotted by Dmitry Eremin-Solenikov
2014-11-18	further BUF_strdup conversion: these places should be safe to rely on	tedu	6	-12/+12
	the function argument not being NULL
2014-11-17	Add the Cammelia cipher to libcrypto.	miod	27	-30/+70
	There used to be a strong reluctance to provide this cipher in LibreSSL in the past, because the licence terms under which Cammelia was released by NTT were free-but-not-in-the-corners, by restricting the right to modify the source code, as well retaining the right to enforce their patents against anyone in the future. However, as stated in http://www.ntt.co.jp/news/news06e/0604/060413a.html , NTT changed its mind and made this code truly free. We only wish there had been more visibility of this, for we could have had enabled Cammelia earlier (-: Licence change noticed by deraadt@. General agreement from the usual LibreSSL suspects. Crank libcrypto.so minor version due to the added symbols.
2014-11-17	Make the ECDSA_SIG bowels public. This matches RSA_SIG and DSA_SIG, and we	miod	4	-60/+60
	expect a good use for this knowledge in the tree in the near future. Contributed by Vincent Gross, thanks!
2014-11-17	add new function crypt_newhash to simplify creating new hashes.	tedu	2	-3/+46
	does most of the work pwd_gensalt did, but also creates the hash. (unused yet)