| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2009-01-08 | Add a missing MLINK for BIO_new_socket. | oga | 1 | -1/+2 | |
| Noticed by blambert@. Ok jmc@. | |||||
| 2009-01-05 | This commit was manufactured by cvs2git to create branch 'OPENSSL'. | cvs2svn | 4 | -0/+2088 | |
| 2009-01-05 | update to openssl-0.9.8i; tested by several, especially krw@ | djm | 190 | -3245/+5824 | |
| 2009-01-03 | reintroduce extra malloc protections, but avoiding the use of | djm | 1 | -164/+229 | |
| PAGE_(SIZE|SHIFT|MASK) defines that evaluate to variables on the sparc architecture; ok otto@ tested on my reanimated ss20 | |||||
| 2008-12-31 | PAGE_SIZE is not a valid symbol to use in that way. In particular, | deraadt | 1 | -235/+164 | |
| on sparc, it expands to something that just plain does not work, because the page size can be variable. Sorry we didn't spot this before. Backing it all out to allow sparc to build; please find a different way to fix it. | |||||
| 2008-12-30 | Remove mprotecting of struct dir_info introduced in previous commit | djm | 2 | -46/+4 | |
| (MALLOC_OPTIONS=L). It was too slow to turn on by default, and we don't do optional security. requested by deraadt@ grumbling ok otto@ | |||||
| 2008-12-29 | extra paranoia for malloc(3): | djm | 2 | -165/+278 | |
| Move all runtime options into a structure that is made read-only (via mprotect) after initialisation to protect against attacks that overwrite options to turn off malloc protections (e.g. use-after-free) Allocate the main bookkeeping data (struct dir_info) using mmap(), thereby giving it an unpredictable address. Place a PROT_NONE guard page on either side to further frustrate attacks on it. Add a new 'L' option that maps struct dir_info PROT_NONE except when in the allocator code itself. Makes attacks on it basically impossible. feedback tedu deraadt otto canacar ok otto | |||||
| 2008-12-23 | repair the ARC4 story; ok jmc djm millert | deraadt | 1 | -5/+7 | |
| 2008-12-22 | The example for detecting malicious PTR records could be easily misinterpreted. | jacekm | 1 | -5/+4 | |
| Make it less ambiguous; ok gilles@ claudio@ | |||||
| 2008-12-15 | shave off more bytes than you expect by declaring a few const local arrays | otto | 1 | -4/+4 | |
| as static const | |||||
| 2008-12-09 | fix inet_ntop(3) prototype; ok millert@ libc to be bumbed very soon | otto | 2 | -7/+7 | |
| 2008-12-07 | Document that ethers_aton returns NULL for invalid addresses. | weerd | 1 | -2/+4 | |
| Suggested by and ok claudio@, ok jmc@ | |||||
| 2008-11-26 | Fix typo, okay jmc@. | pedro | 1 | -3/+3 | |
| 2008-11-24 | Correctly jump over routing headers and calculate the size of the if_data | claudio | 1 | -7/+14 | |
| struct in the if_msghdr instead of using sizeof() blindly. This allows us to grow if_data without causing issues for the getifaddrs() users. OK deraadt@ (who needs this for some cool upcomming stuff) | |||||
| 2008-11-20 | move allocations between half a page and a page as close to the end of | otto | 2 | -4/+5 | |
| the page as possible (i.e. make malloc option P a default). ok art@ millert@ krw@ | |||||
| 2008-11-20 | Reduce the leeway malloc allows when moving allocations to the end of | otto | 1 | -2/+2 | |
| a page to 0. P default will be changed in a separate commit. ok millert@ art@ krw@ | |||||
| 2008-11-13 | To allow for easier playing with more strict settings introduce | otto | 1 | -5/+14 | |
| a separate symbolic constant for the leeway we allow when moving allocations towards the end of a page. No functional change. | |||||
| 2008-11-12 | avoid a few strlen calls for constant strings; prompted by tg; ok djm@ | otto | 1 | -10/+10 | |
| 2008-11-06 | if the freeprot flag (F) is set, do not do delayed frees for chunks | otto | 1 | -6/+10 | |
| (might catch errors closer to the trouble spot) and junk fill pages just before reuse instead of immediate (we can't access the page anyway) since we set PROT_NONE in the F case. ok djm@ | |||||
| 2008-11-03 | sync to openssl-0.9.8i; | jmc | 1 | -18/+22 | |
| i still haven't folded in x509v3_config.pod, since i'm not entirely sure what to do with it. | |||||
| 2008-11-02 | fix markup of example line and description of G flag; partly from and | otto | 1 | -5/+4 | |
| ok jmc@ | |||||
| 2008-11-02 | remove distinction between warnings and errors, ok deraadt@ djm@ | otto | 2 | -73/+38 | |
| 2008-10-29 | if MALLOC_STATS is defined, record how many "cheap reallocs" were | otto | 1 | -1/+8 | |
| tried and how many actually succeeded. | |||||
| 2008-10-20 | oops, assign errno the right way. caught by david running regress tests | otto | 1 | -2/+2 | |
| 2008-10-03 | reduce rbyte cache to 512 bytes, no measurable slowdown (even in the | otto | 1 | -2/+2 | |
| threaded case) but much smaller working set; prompted by and ok deraadt@ | |||||
| 2008-10-03 | save and restore errno on success. while it is not stricly needed for | otto | 1 | -4/+14 | |
| non-syscalls, there's just too much code not doing the right thing on error paths; prompted by and ok deraadt@ | |||||
| 2008-10-03 | zap __arc4_getbyte(), it was only used by the old malloc; ok millert@ | otto | 1 | -14/+1 | |
| kurt@ | |||||
| 2008-10-03 | when increasing the size of a larger than a page allocation try | otto | 1 | -3/+41 | |
| mapping the region next to the existing one first; there's a pretty high chance there's a hole there we can use; ok deraadt@ tedu@ | |||||
| 2008-10-03 | avoid spitting up regions when purging stuff from the cache, it puts | otto | 1 | -17/+10 | |
| too much pressure on the amaps. ok tedu@ deraadt@ | |||||
| 2008-10-02 | Hook up fnmatch and glob regress. | millert | 1 | -5/+5 | |
| 2008-10-01 | Regress driver for fnmatch(3). Needs more tests. | millert | 3 | -0/+58 | |
| 2008-10-01 | Regress driver for glob(3). Needs more tests. | millert | 4 | -0/+244 | |
| 2008-09-19 | documentation tweaks; synchronize synopsis and usage. | sobrado | 2 | -10/+11 | |
| written with help by jmc@ ok jmc@ | |||||
| 2008-09-19 | fix some cause of bad TEXTREL on i386 and amd64 | otto | 10 | -28/+128 | |
| - global function calls in .init sections (diff makes them via PLT) - calls to global functions in aes-586.S (made static or local) - global variable accesses in rc4-x86_64.S (now made via GOT) from djm@large; ok miod@ | |||||
| 2008-09-13 | document strtold. ok millert@ | martynas | 2 | -11/+25 | |
| 2008-09-13 | strtof has been introduced in c99 | martynas | 1 | -4/+6 | |
| from Thomas Pfaff. ok millert@ | |||||
| 2008-09-10 | use one call to arc4random_buf() instead of lots of arc4random() | djm | 2 | -16/+4 | |
| 2008-09-08 | turn off CAST assembler code (i.e. use C implementation) as it has bad | djm | 1 | -3/+3 | |
| relocations that lead to libcrypto.so being marked TEXTREL; linker-fu from drahn@ "go ahead" deraadt@ | |||||
| 2008-09-07 | - replace dtoa w/ David's gdtoa, version 2008-03-15 | martynas | 8 | -2504/+309 | |
| - provide proper dtoa locks - use the real strtof implementation - add strtold, __hdtoa, __hldtoa - add %a/%A support - don't lose precision in printf, don't round to double anymore - implement extended-precision versions of libc functions: fpclassify, isnan, isinf, signbit, isnormal, isfinite, now that the ieee.h is fixed - separate vax versions of strtof, and __hdtoa - add complex math support. added functions: cacos, casin, catan, ccos, csin, ctan, cacosh, casinh, catanh, ccosh, csinh, ctanh, cexp, clog, cabs, cpow, csqrt, carg, cimag, conj, cproj, creal, cacosf, casinf, catanf, ccosf, csinf, ctanf, cacoshf, casinhf, catanhf, ccoshf, csinhf, ctanhf, cexpf, clogf, cabsf, cpowf, csqrtf, cargf, cimagf, conjf, cprojf, crealf - add fdim, fmax, fmin - add log2. (adapted implementation e_log.c. could be more acruate & faster, but it's good enough for now) - remove wrappers & cruft in libm, supposed to work-around mistakes in SVID, etc.; use ieee versions. fixes issues in python 2.6 for djm@ - make _digittoint static - proper definitions for i386, and amd64 in ieee.h - sh, powerpc don't really have extended-precision - add missing definitions for mips64 (quad), m{6,8}k (96-bit) float.h for LDBL_* - merge lead to frac for m{6,8}k, for gdtoa to work properly - add FRAC*BITS & EXT_TO_ARRAY32 definitions in ieee.h, for hdtoa&ldtoa to use - add EXT_IMPLICIT_NBIT definition, which indicates implicit normalization bit - add regression tests for libc: fpclassify and printf - arith.h & gd_qnan.h definitions - update ieee.h: hppa doesn't have quad-precision, hppa64 does - add missing prototypes to gdtoaimp - on 64-bit platforms make sure gdtoa doesn't use a long when it really wants an int - etc., what i may have forgotten... - bump libm major, due to removed&changed symbols - no libc bump, since this is riding on djm's libc major crank from a day ago discussed with / requested by / testing theo, sthen@, djm@, jsg@, merdely@, jsing@, tedu@, brad@, jakemsr@, and others. looks good to millert@ parts of the diff ok kettenis@ this commit does not include: - man page changes | |||||
| 2008-09-07 | sparc now requires this bloated library to be -fPIC | deraadt | 1 | -1/+5 | |
| 2008-09-07 | Fix merge botch. | kettenis | 2 | -6/+0 | |
| ok miod@ | |||||
| 2008-09-06 | remove duplicate definition of OPENSSL_DSA_MAX_MODULUS_BITS spotted | djm | 2 | -4/+0 | |
| by dtucker@ | |||||
| 2008-09-06 | update for openssl-0.9.8h | djm | 2 | -49/+96 | |
| 2008-09-06 | remerge local tweaks, update per-arch configuration headers, update | djm | 31 | -118/+900 | |
| Makefiles, crank shlib_version | |||||
| 2008-09-06 | resolve conflicts | djm | 1188 | -25827/+68210 | |
| 2008-09-06 | import of OpenSSL 0.9.8h | djm | 564 | -10621/+67300 | |
| 2008-09-06 | import of OpenSSL 0.9.8h | djm | 917 | -31309/+67049 | |
| 2008-09-06 | import of OpenSSL 0.9.8h | djm | 276 | -871/+82581 | |
| 2008-09-03 | remove now obsolete calloc implementation; prompted by miod | otto | 1 | -50/+0 | |
| 2008-09-01 | do not overflow for large prefix len (e.g. 2147483649) | markus | 1 | -3/+3 | |
| report Maksymilian Arciemowicz; ok djm, deraadt | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |