|  | Commit message (Collapse) | Author | Age | Files | Lines | 
|---|
| ... |  | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | i looked a bit closer and found instances before Reno, so correct HISTORY.
References:
http://minnie.tuhs.org/cgi-bin/utree.pl?file=4.1cBSD/usr/src/ucb/dbx/defs.h
http://minnie.tuhs.org/cgi-bin/utree.pl?file=4.3BSD/usr/src/etc/inetd.c
http://minnie.tuhs.org/cgi-bin/utree.pl?file=4.3BSD-Reno/src/lib/libc/string/strdup.c
ok deraadt@ | 
| | 
| 
| 
| 
| 
| 
| | Avoid potential integer overflow in the size argument of malloc() and
realloc() by using reallocarray() to avoid unchecked multiplication.
ok deraadt@ | 
| | 
| 
| 
| 
| 
| 
| | Avoid potential integer overflow in the size argument of malloc() and
realloc() by using reallocarray() to avoid unchecked multiplication.
ok deraadt@ | 
| | 
| 
| 
| 
| | looks good deraadt@
tweaks and ok millert@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| | in case something wants to create massive amounts of environment, like
a bit more than 1/4 of a 32-bit address space.  unrealistic -- but why
audit one code path, and not treat others the same?  then you have to
re-engage everytime you see the code.  read the news, that isn't what
developers do.  At least if the code paths look the same, there is hope,
because they are easier to verify for correctness.  developers need
to give other developers a chance to want to care. | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| | of the resulting FILE *), then pass fopen() the 'e' mode letter to
mark it close-on-exec.
ok miod@ | 
| | 
| 
| 
| 
| 
| 
| | Mention that invalid bases do set EINVAL (as required by POSIX);
this part of the change uses part of an earlier patch by millert@.
Minor mdoc(7) cleanup and sync between the two pages while here.
Feedback and ok jmc@ and millert@. | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| | required by the C standard when called with an invalid base:
strtoll(), strtoimax(), strtoul(), strtoull(), and strtoumax().
Same behaviour for strtoq() and strtouq() even though not standardized.
No functional change in strtol(), it was the only one already correct.
While here, simplify the conditional expression for checking the base
and sync whitespace and comments among the six files.
ok millert@ | 
| | 
| 
| 
| 
| | found with the new mandoc(1) MANDOCERR_AN_MISSING warning;
no text changes | 
| | 
| 
| 
| | OK aja@ mikeb@ | 
| | 
| 
| 
| 
| | in kernel and user land.
OK florian@ mpi@ | 
| | 
| 
| 
| | ok millert@ manpage feedback jmc@ | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| | to hold the malloc lock across mmap syscalls in all cases. dropping it
allows another thread to access the existing chunk cache if necessary.
could be improved to be a bit more aggressive, but i've been testing this
simple diff for some time now with good results. | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | circular lists.  Amazingly, they managed to extend the requirements to no
longer match the behavior of the VAX instructions they were modeled after,
so the trivial VAX ASM versions have to go.  Nice job breaking it, X/Open!
Based on a diff from enh (at) google.com
ok miod@ | 
| | |  | 
| | |  | 
| | 
| 
| 
| 
| 
| | being-standardized <endian.h>
ok deraadt@ millert@ beck@ | 
| | 
| 
| 
| 
| 
| 
| 
| | Move <sys/mman.h> and raise(SIGKILL) calls to OS-specific headers.
On OpenBSD, move thread_private.h as well to arc4random.h.
On Windows, use TerminateProcess on getentropy failure.
ok deraadt@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | 6.11.5 - Storage-class specifiers:
    The placement of a storage-class specifier other than at the
    beginning of the declaration specifiers in a declaration is
    an obsolescent feature.
Diff from Jean-Philippe Ouellet (jean-philippe (at) ouellet.biz) | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| | into one if a system has an awesome getentropy().  In that case it
is valid to totally throw away the rsx state in the child.  If the
getentropy() is not very good and has a lazy reseed operation, this
combining is a bad idea, and the reseed should probably continue to
use the "something old, something new" mix.  _rs_allocate() can
accomodate either method, but not on the fly.
ok matthew | 
| | 
| 
| 
| | Reminded by Rafael Neves | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| | align with POSIX and other systems.
Pointed out by Elliott Hughes on tech
ok deraadt | 
| | 
| 
| 
| 
| | making it much easier for libressl -portable to fill in the gaps.
ok bcook beck | 
| | 
| 
| 
| | and random().  Sigh. | 
| | 
| 
| 
| 
| | address space, and once allocated rs is never deallocated."
document the forkhandler to save reviewers time, with matthew | 
| | |  | 
| | 
| 
| 
| | ok deraadt@ beck@ kettenis@ | 
| | |  | 
| | |  | 
| | |  | 
| | |  | 
| | |  | 
| | 
| 
| 
| 
| | high bit as required by posix. wouldn't want to break any standards.
idea and ok deraadt | 
| | 
| 
| 
| 
| 
| | Update byteorder(3) to cover the new functions in <endian.h>
ok deraadt@ millert@ | 
| | 
| 
| 
| 
| | makes it much harder.
ok bcook@ kettenis@ | 
| | 
| 
| 
| 
| 
| | can copy this file (plus chacha_private.h) directly and reuse it
trivially.  Well, as long as they have a getentropy() as well..
ok beck | 
| | 
| 
| 
| 
| 
| | now using this as upstream code.  The particular problem is systems
that contain older arc4random derivations lacking arc4random_uniform().
ok tedu miod | 
| | 
| 
| 
| 
| 
| 
| | __atexit tables and touches global variables.  From Srinavasa Nagaraju
through Android/Elliott Hughes.
ok tedu@, guenther@ | 
| | 
| 
| 
| | ok deraadt | 
| | 
| 
| 
| 
| | handlers. if this happens, restart the loop.
ok kettenis matthew millert miod | 
| | 
| 
| 
| | ok otto | 
| | 
| 
| 
| | new wording agreed by at least kettenis@ millert@ otto@ | 
| | 
| 
| 
| | ok jsing@ | 
| | 
| 
| 
| | ok beck@ deraadt@ jsing@ guenther@ | 
| | 
| 
| 
| | portable code path must handle that; with brent cook | 
| | |  |