| Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
From Klemens Nanni
|
|
|
|
just fall into the code. The .align created a FILL zone in the .init section,
which on i386 was filled with a NOP-sled, something we want to get away
from.
discussed with kettenis and tom
|
|
we can prevent libcrypto from going behind our back and trying to read
passwords from standard input (which we may not be permitted to do).
Found by jsg@ with httpd and password protected keys.
|
|
|
|
|
|
|
|
duplicating clean up code.
|
|
The certificate verification code has special cases for self-signed
certificates and without this change, self-issued certificates (which it
seems are common place with openvpn/easyrsa) were also being included in
this category.
Based on BoringSSL.
Thanks to Dale Ghent <daleg at elemental dot org> for assisting in
identifying the issue and testing this fix.
ok inoguchi@
|
|
src/lib/libc/gen/tree.c is a copy of src/sys/kern/subr_tree.c, but with
annotations for symbol visibility. changes to one should be reflected
in the other.
the malloc debug code that uses RB code is ported to RBT.
because libc provides the RBT code, procmap doesn't have to reach into
the kernel and build subr_tree.c itself now.
mild enthusiasm from many
ok guenther@
|
|
programs will build even without a make depend first.
okay tb@ millert@
|
|
a blank space somewhere else.
suggested by and ok jsing
|
|
omitting parentheses in return statements. Binary change because of
return instead of exit(3) from main and because help() is now __dead.
ok awolk
|
|
first pledge promises, so nc exited with EPERM. To fix this, merge the
pledge of the Pflag && usetls case into the first pledge block. This
allows us to get rid of the second pledge block and thus to simplify the
logic a bit. While there, add a missing blank to an error string.
Joint effort by the #openbsd-daily code reading group, problem found and
initial patch by <rain1 openmailbox org>.
ok awolk
|
|
|
|
|
|
insertion sort (when the number of elements is < 7).
|
|
has many small functions without significant local storage, therefore
less tail protection from -fstack-protector-strong to prevent their use
as ROP gadgets. It is used in security contexts. Also many functions
dribble pointers onto the stack, allowing discovery of gadgets via the
fixed relative addresses, so let's randomly bias those.
ok tedu jsing
The rc script will soon need a strategy for skipping this step on
machines with poor IO performance. Or maybe do it less often? However,
I don't see many more libraries we'll do this with, these are the two
most important ones.
|
|
|
|
missing test case, reassigns two of the labels and removes a test case
that was from an earlier draft.
Inconsistency noted by Steven Roberts <fenderq at gmail dot com>, some time
ago...
|
|
Reported by Robert Swiecki, who found the issue using honggfuzz.
ok bcook@
|
|
OK florian@
|
|
From Kyle J. McKay <mackyle at gmail dot com>
|
|
Previously they would be swapped a byte at a time when sizeof(int)
!= sizeof(long). Idea from FreeBSD.
|
|
|
|
Adversary for Quicksort", just include the code to generate them.
Also allow the number of elements to be specified on the command line.
|
|
ok millert@
|
|
exceeds 2 lg N and add a reference to the introsort paper.
|
|
when the recursion depth reaches 2*lg(n + 1). This avoids quicksort's
quadratic behavior for pathological input without appreciably
changing the average run time.
|
|
by McIlroy's "A Killer Adversary for Quicksort". This results in
quadratic behavior and the test aborts before completion.
|
|
|
|
parameters.
|
|
Selection Algorithms" by David R Musser.
|
|
be used in qsort.c in a later commit.
|
|
qsort()". This causes quadratic behavior with the 4.4BSD qsort's
"switch to insertion sort" optimization when the input appears to
be mostly sorted. That optimization was removed in qsort.c r1.12
but it is worth having in the regress test too.
|
|
side of the array being partitioned to save on stack space. Greater
savings can be gained by choosing recursion for the smaller side
of the partition and eliminating recursion for the larger side.
This also results in a small but measurable performance gain.
OK otto@ schwarze@
|
|
wrap), make it a flag instead. Pointed out by schwarze@
|
|
|
|
SSL_get_peer_certificate() increases the ref count whereas extra_certs
do not because SSL_get_peer_cert_chain() won't increase ref counts.
OK beck@
|
|
from "fenderq" on freenode via tj
|
|
From "fenderq" on freenode via tj@
|
|
- document posix_memalign() does not play nice with reacallocarray(3) and
freezero(3)
|
|
sizeof(struct) not sizeof(pointer).
otto@ points out that on OpenBSD currently freezero() would have still
zeroed the entire allocation, but this is not documented behaviour and
may change in future.
ok tom@
|
|
number of packets. This allows to send a UDP request, receive a
reply and check the result on the command line.
input jmc@; OK millert@
|
|
ok jsing@
|
|
Fix from Jonas 'Sortie' Termansen <sortie@maxsi.org>
|
|
it returns "len", which is a size_t value, as an int...
|
|
|
|
keep these around.
ok beck@
|
