openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Security fix for CVE-2010-0740OPENBSD_4_5	jasper	2010-03-31	1	-3/+4
\| \| \| \| \| \| \| \| \|	"In TLS connections, certain incorrectly formatted records can cause an OpenSSL client or server to crash due to a read attempt at NULL." http://openssl.org/news/secadv_20100324.txt ok djm@ sthen@
*	MFC, original commit by djm@:	jasper	2010-03-12	4	-8/+11
\| \| \| \| \| \| \| \| \| \| \| \|	--------------------------- cherrypick patch from OpenSSL 0.9.8m: *) Always check bn_wexpend() return values for failure. (CVE-2009-3245) [Martin Olsson, Neel Mehta] --------------------------- ok sthen@
*	Pull Ben Lauries blind prefix injection fix for CVE-2009-3555 from	sthen	2009-11-17	4	-1/+16
\| \| \| \| \| \| \| \| \|	openssl 0.9.8l. As suggested by markus@, for -stable the header change is being restricted to a private file, so the minor version is not cranked here. Discussed with markus, djm, deraadt.
*	MFC: fixes for OpenSSL ASN.1 invalid memory accesses (CVE-2009-0590 and	djm	2009-04-08	3	-2/+16
\| \| \| \|	CVE-2009-0789).
*	This commit was manufactured by cvs2git to create branch 'OPENBSD_4_5'.	cvs2svn	2009-02-18	802	-237618/+0
\|
*	kill whitespace at eol;	jmc	2009-02-13	1	-2/+2
\|
*	decribe 'F' better and mention flags are debugging aids; ok tedu@ jmc@	otto	2009-02-13	1	-8/+10
\|
*	correct function definitions; from Markus Bergkvist	jmc	2009-02-10	1	-4/+4
\|
*	missing ssl_sock_init() call in init_client() (used by	djm	2009-01-30	1	-3/+10
\| \| \| \|	"openssl s_client"), fix an unlikely memory leak
*	remove some gratuitous changes that do nothing other than inrease	djm	2009-01-30	1	-2/+1
\| \| \| \|	the size of the diff against openssl mainline
*	convert a strdup (into a purpose-allocated buffer) in libcrypto to a	djm	2009-01-12	2	-4/+6
\| \| \| \|	memcpy to avoid linker deprecation warnings; pointed out by dkrause@
*	openssl-0.9.8j enables RFC3546 TLS extensions by default (e.g. the very	djm	2009-01-09	13	-39/+0
\| \| \| \| \|	useful "server name indication" that allows multihomed TLS server), so remove the #define to disable it here
*	adjust Makefile and crank major for openssl-0.9.8j	djm	2009-01-09	17	-16/+56
\|
*	resolve conflicts	djm	2009-01-09	538	-7811/+10571
\|
*	This commit was generated by cvs2git to track changes on a CVS vendor	djm	2009-01-09	28	-68/+297
\|\ \| \| \| \|	branch.
\| *	import openssl-0.9.8j	djm	2009-01-09	263	-2494/+3222
\| \|
* \|	This commit was generated by cvs2git to track changes on a CVS vendor	djm	2009-01-09	180	-4318/+21828
\|\ \ \| \| \| \| \| \|	branch.
\| * \|	import openssl-0.9.8j	djm	2009-01-09	532	-8743/+31783
\| \| \|
* \| \|	This commit was generated by cvs2git to track changes on a CVS vendor	djm	2009-01-09	55	-108/+2573
\|\ \ \ \| \| \| \| \| \| \| \|	branch.
\| * \| \|	import openssl-0.9.8j	djm	2009-01-09	79	-606/+3434
\| \| \| \|
\| * \| \|	This commit was manufactured by cvs2git to create branch 'OPENSSL'.	cvs2svn	2009-01-05	4	-0/+2088
\| \| \| \|
* \| \| \|	Add a missing MLINK for BIO_new_socket.	oga	2009-01-08	1	-1/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Noticed by blambert@. Ok jmc@.
* \| \| \|	update to openssl-0.9.8i; tested by several, especially krw@	djm	2009-01-05	190	-3245/+5824
\| \| \| \|
* \| \| \|	reintroduce extra malloc protections, but avoiding the use of	djm	2009-01-03	1	-164/+229
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	PAGE_(SIZE\|SHIFT\|MASK) defines that evaluate to variables on the sparc architecture; ok otto@ tested on my reanimated ss20
* \| \| \|	PAGE_SIZE is not a valid symbol to use in that way. In particular,	deraadt	2008-12-31	1	-235/+164
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	on sparc, it expands to something that just plain does not work, because the page size can be variable. Sorry we didn't spot this before. Backing it all out to allow sparc to build; please find a different way to fix it.
* \| \| \|	Remove mprotecting of struct dir_info introduced in previous commit	djm	2008-12-30	2	-46/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	(MALLOC_OPTIONS=L). It was too slow to turn on by default, and we don't do optional security. requested by deraadt@ grumbling ok otto@
* \| \| \|	extra paranoia for malloc(3):	djm	2008-12-29	2	-165/+278
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Move all runtime options into a structure that is made read-only (via mprotect) after initialisation to protect against attacks that overwrite options to turn off malloc protections (e.g. use-after-free) Allocate the main bookkeeping data (struct dir_info) using mmap(), thereby giving it an unpredictable address. Place a PROT_NONE guard page on either side to further frustrate attacks on it. Add a new 'L' option that maps struct dir_info PROT_NONE except when in the allocator code itself. Makes attacks on it basically impossible. feedback tedu deraadt otto canacar ok otto
* \| \| \|	repair the ARC4 story; ok jmc djm millert	deraadt	2008-12-23	1	-5/+7
\| \| \| \|
* \| \| \|	The example for detecting malicious PTR records could be easily misinterpreted.	jacekm	2008-12-22	1	-5/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Make it less ambiguous; ok gilles@ claudio@
* \| \| \|	shave off more bytes than you expect by declaring a few const local arrays	otto	2008-12-15	1	-4/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	as static const
* \| \| \|	fix inet_ntop(3) prototype; ok millert@ libc to be bumbed very soon	otto	2008-12-09	2	-7/+7
\| \| \| \|
* \| \| \|	Document that ethers_aton returns NULL for invalid addresses.	weerd	2008-12-07	1	-2/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Suggested by and ok claudio@, ok jmc@
* \| \| \|	Fix typo, okay jmc@.	pedro	2008-11-26	1	-3/+3
\| \| \| \|
* \| \| \|	Correctly jump over routing headers and calculate the size of the if_data	claudio	2008-11-24	1	-7/+14
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	struct in the if_msghdr instead of using sizeof() blindly. This allows us to grow if_data without causing issues for the getifaddrs() users. OK deraadt@ (who needs this for some cool upcomming stuff)
* \| \| \|	move allocations between half a page and a page as close to the end of	otto	2008-11-20	2	-4/+5
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	the page as possible (i.e. make malloc option P a default). ok art@ millert@ krw@
* \| \| \|	Reduce the leeway malloc allows when moving allocations to the end of	otto	2008-11-20	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	a page to 0. P default will be changed in a separate commit. ok millert@ art@ krw@
* \| \| \|	To allow for easier playing with more strict settings introduce	otto	2008-11-13	1	-5/+14
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	a separate symbolic constant for the leeway we allow when moving allocations towards the end of a page. No functional change.
* \| \| \|	avoid a few strlen calls for constant strings; prompted by tg; ok djm@	otto	2008-11-12	1	-10/+10
\| \| \| \|
* \| \| \|	if the freeprot flag (F) is set, do not do delayed frees for chunks	otto	2008-11-06	1	-6/+10
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	(might catch errors closer to the trouble spot) and junk fill pages just before reuse instead of immediate (we can't access the page anyway) since we set PROT_NONE in the F case. ok djm@
* \| \| \|	fix markup of example line and description of G flag; partly from and	otto	2008-11-02	1	-5/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	ok jmc@
* \| \| \|	remove distinction between warnings and errors, ok deraadt@ djm@	otto	2008-11-02	2	-73/+38
\| \| \| \|
* \| \| \|	if MALLOC_STATS is defined, record how many "cheap reallocs" were	otto	2008-10-29	1	-1/+8
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	tried and how many actually succeeded.
* \| \| \|	oops, assign errno the right way. caught by david running regress tests	otto	2008-10-20	1	-2/+2
\| \| \| \|
* \| \| \|	reduce rbyte cache to 512 bytes, no measurable slowdown (even in the	otto	2008-10-03	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	threaded case) but much smaller working set; prompted by and ok deraadt@
* \| \| \|	save and restore errno on success. while it is not stricly needed for	otto	2008-10-03	1	-4/+14
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	non-syscalls, there's just too much code not doing the right thing on error paths; prompted by and ok deraadt@
* \| \| \|	zap __arc4_getbyte(), it was only used by the old malloc; ok millert@	otto	2008-10-03	1	-14/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	kurt@
* \| \| \|	when increasing the size of a larger than a page allocation try	otto	2008-10-03	1	-3/+41
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	mapping the region next to the existing one first; there's a pretty high chance there's a hole there we can use; ok deraadt@ tedu@
* \| \| \|	avoid spitting up regions when purging stuff from the cache, it puts	otto	2008-10-03	1	-17/+10
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	too much pressure on the amaps. ok tedu@ deraadt@
* \| \| \|	fix some cause of bad TEXTREL on i386 and amd64	otto	2008-09-19	10	-28/+128
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	- global function calls in .init sections (diff makes them via PLT) - calls to global functions in aes-586.S (made static or local) - global variable accesses in rc4-x86_64.S (now made via GOT) from djm@large; ok miod@
* \| \| \|	document strtold. ok millert@	martynas	2008-09-13	2	-11/+25
\| \| \| \|