| Commit message (Collapse) | Author | Files | Lines |
|---|
|
version require these flags to accept the X.509 certificates from the
gateway or client; I just add both flags to make it work in both cases
and verified it with win7, for example when authenticating against iked.
go ahead beck@
|
|
and would otherwise result in overflowing the end pointer and
cause strnlen() to return 0. OK sthen@
|
|
|
|
|
|
to exist before exit for malloc to dump stats in it.
tweaks from jmc@
ok otto@,jmc@
|
|
completeness (verified).
|
|
ok millert@ tedu@
|
|
|
|
brad and millert, with hints from guenther, jmc, and otto I think.
ok previous.
|
|
complier picking, eg supporting gcc2, gcc3, and gcc4. based on diff by Marco,
with fixes from espie@.
ok espie@ general mumbling of approval of others.
|
|
* fix CFLAGS syntax for make depend
ok blambert@
|
|
::1:2:3:4:5:6:7:8 for example. PR 6277, fix by Jun KAWAI (kwj at vlax net)
OK henning, gilles, jsing (who also reminded me to remove the now wrong
comment about superfluous ::)
|
|
the xcrypt inputs, hence the dance which is done to make this work.
The constraint for the key however was "mr" which is both from
memory and from a general register, it seems gcc3 went with the former
and gcc4 went with the later in the pic case, so change the
constraint for the key to just "m" which gives us more efficient
code that both gcc3 and gcc4 are happy with.
ok kettenis@
|
|
"mbuf" as a C string when using the pop3 s_client feature. This causes
a segmentation fault with malloc.conf option "J" set when BIO_printf()
runs off the end of the buffer. The following patch fixes PR 6282
from Matthew Haub (asked to submit upstream), ok djm
|
|
Zeleny.
ok djm
|
|
and use %zu for size_t.
ok djm
|
|
"In TLS connections, certain incorrectly formatted records can cause an OpenSSL
client or server to crash due to a read attempt at NULL."
http://openssl.org/news/secadv_20100324.txt
ok deraadt@ djm@ sthen@
|
|
- small tweak while here
|
|
excepting the tbl(1) pages, which are less than twenty.
"commit the diff that enables it, now" deraadt@
|
|
|
|
teach people bad habits!
ok krw@, jmc@, dlg@, thib@
|
|
ok millert@
|
|
*) Always check bn_wexpend() return values for failure. (CVE-2009-3245)
[Martin Olsson, Neel Mehta]
|
|
Pointed out by obsd at happyjack.org, fix based on a diff from kili@.
ok deraadt
|
|
in the end simply changing Oo Xo Oo Oc Oc Xc to Oo Xo Oo Oc Xc Oc.
I tried five different variants without the Xo/Xc, because there is
no real reason why Xo/Xc should be needed here, and two additional
variants with Xo/Xc that look more pretty than what i'm now committing.
All seven alternatives work both with mandoc and groff 1.20.1, but
all seven trigger various different bugs in our old groff, and we
still need to remain compatible with our old groff right now.
ok jmc@ sobrado@
|
|
resolve the contradiction in the manual whether it's allowed or not
in favour of "not allowed" for now, shelving my diff to support
nested displays in mandoc(1) for later consideration.
Found by and unbreaking the build with mandoc(1).
Feedback and OK jmc@
|
|
|
|
|
|
no underruns the supplied template buffer, that it can generate names that
don't contain any X's, and that all open() calls that pass O_CREAT also
pass O_EXCL
|
|
after the diff was written, I made it similar to the freebsd fix of
the same code; pr6287 ok millert@ guenther@
|
|
|
|
files or directories when applicable.
The inspiration and name of MACHINE_CPU come from NetBSD, although the way to
provide it to Makefiles is completely different.
ok kettenis@
|
|
"Modify compression code so it avoids using ex_data free functions.
This stops applications that call CRYPTO_free_all_ex_data()
prematurely leaking memory."
looks ok to markus@
|
|
|
|
extra safeguard (FGJ). Idea from deraadt@; ok deraadt@ dlg@
|
|
|
|
|
|
completes the changes from Oct 22.
|
|
arc4random() is slow, but it induces getpid() calls; also saves a
bit on stirring efforts
|
|
doesn't test it, so factor out the two places that test it into a
routine and do the refreshing there. With this, arch4random_buf()
doesn't trigger superfluous calls to getpid() when filling large
buffers.
ok deraadt@, "looks nicer indeed" otto@
|
|
completes, and (b) returns the unslept time in seconds when interrupted
|
|
|
|
actual kernel page size.
|
|
from trhodes@freebsd, r200095;
|
|
macros for them. Avoids walking the lists and greatly enhances speed
of freeing chunks in reverse or random order at the cost of a little
space. Suggested by Fabien Romano and Jonathan Armani; ok djm@
|
|
from Fabien Romano and Jonathan Armani
|
|
Armani
|
|
affect stream orientation
|
|
some further hacking by me
|
|
- wrap with #ifndef NO_LOG_BAD_DNS_RESPONSES libc code that uses
p_class() and p_type() for diagnostics, then add that define to
libstub to avoid pulling in res_debug_syms.o
- split rcmd() and ruserok() into separate files, as nothing uses both
- split readdir_r() to its own file
- split syslog_r() from syslog(), as the latter needs localtime(); many
binaries no longer need to pull in all the time code after this; switch
from usleep() to nanosleep() while we're at it
(The profit of analysis of -Wl,-M,--cref output)
Chops 888kB from /bin and /sbin on i386
ok deraadt@, miod@
|
