summaryrefslogtreecommitdiff
path: root/src/lib (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* more macro simplification; from Jan Staryjmc2013-07-161-3/+2
|
* Remove no longer needed vax CFLAGS workarounds.miod2013-07-131-13/+1
|
* rfc 3493 obsoletes 2553. i spotted this after reading hiroki sato's changesjmc2013-07-101-5/+6
| | | | | | | | in freebsd src commit r253066. our man pages had been updated, but i must have missed the following: - getnameinfo.3: 2553 -> 3493 - ip6.4: we listed both. remove 2553.
* VAX ELF userland bits. Consists mostly of register prefix additions.miod2013-07-051-151/+151
|
* spacingderaadt2013-06-111-3/+2
|
* Fix parsing of ambiguous options, the whole loop must be processed.millert2013-06-081-15/+22
| | | | From FreeBSD. OK miod@
* Move _Exit() from the exit() manpage to the _exit() manpage, as it'sguenther2013-06-052-36/+10
| | | | | | just an alias of the latter. ok matthew@ tedu@
* Use the fancy .In macro for includes. From Jan Klemkow. ok jmc schwarzetedu2013-06-05113-379/+379
|
* remove some incredible lies about overlapping buffersderaadt2013-06-042-22/+10
| | | | ok guenther
* Two small cleanups to atexit: remove unneeded __atexit_invalid, andmatthew2013-06-022-12/+5
| | | | | | | move the call_depth decrement so it happens unconditionally and can still return to 0 when called with dso!=NULL. ok millert
* Fix catopen(3) for UTF-8 locales and update the implementation to POSIX-2008.stsp2013-06-011-2/+2
| | | | | | | | | Catalogs had an arbitrary character set which was used regardless of locale. Add UTF-8-encoded catalogs for libc error messages, and rename existing ones to indicate their character sets. catopen(3) now chooses a catalog which matches the locale's encoding, if available. help & ok matthew, man page bits ok jmc, input from naddy and bluhm
* Switch to using unhyphenated VIA padlock mnemonics. VIA abandoned thematthew2013-05-302-4/+4
| | | | | | | | hyphen in their official programming guide sometime between 2003 and 2005, and Clang's integrated assembler does not support hyphenated mnemonics. ok jsg, deraadt
* Remove useless include.ajacoutot2013-05-301-2/+1
| | | | ok millert@
* typo: compare len against null needle, not haystackajacoutot2013-05-151-2/+2
| | | | | | from Alf Schlichting ok millert@
* Add an implementation of memmem() -- from FreeBSD with some tweaks.ajacoutot2013-05-133-4/+145
| | | | | | | | | Requires a libc minor bump, committing now so that we have up-to-date snapshots for the upcoming hackathon. joint work with millert@ man page bits ok jmc@ input and ok millert@, guenther@, deraadt@
* tweak a few commentstedu2013-04-211-5/+7
|
* this man page is mostly about password hashing now (you really don'ttedu2013-04-211-18/+5
| | | | | want to be using DES) and some of the notes about the export controls are no longer so relevant. ok deraadt jmc
* Xr encrypt(1) to give people a hint if they just want a password stringtedu2013-04-201-2/+3
|
* surround the error strings with quotes to clarify exactly which stringstedu2013-04-171-5/+5
| | | | the function is going to return.
* the tiniest of style tweakstedu2013-04-171-7/+7
|
* add some prototypes, casts, includes, parenthesis, and whatnot totedu2013-04-173-7/+10
| | | | silence some warnings.
* use CLOCK_MONOTONIC, and repair future time_t overflowderaadt2013-04-171-8/+8
| | | | ok millert guenther
* - Add comments regarding copies of these files also in libexec/ld.sokurt2013-04-051-1/+3
| | | | okay guenther@
* Update a comment about standards requirementsguenther2013-04-031-4/+4
|
* getaddrinfo is now thread-safe.brad2013-03-311-6/+2
| | | | ok eric@
* Switch libc and libm to use strong aliases rather than weak aliasesmartynas2013-03-282-22/+4
| | | | | | | | | | | where appropriate. Among other things makes the symbols consistent across all architectures (notably where ldbl mantissa is 53 bits). While at it, kill unused LINTLIBRARY/PROTOLIB1 cruft which was there to trick lint into recording the right prototypes for aliased functions. Most of the work done at the awesome n2k13 hackathon. Agreed by kettenis@, guenther@, matthew@.
* protect the PRG state with a mutex in res_randomid().eric2013-03-261-2/+13
| | | | ok deraadt@ guenther@ djm@
* Use a realloc() loop around the sysctl() for NET_RT_IFLIST, in case anderaadt2013-03-201-9/+21
| | | | | interface is added at just the right... wrong moment. ok millert dlg
* threadsafe random().tedu2013-03-151-8/+43
| | | | reported by ajacoutot and (much earlier, sorry) by Alexey Suslikov
* cherry pick bugfixes for http://www.openssl.org/news/secadv_20130205.txtmarkus2013-02-1430-557/+2564
| | | | | from the openssl git (changes between openssl 1.0.1c and 1.0.1d). ok djm@
* remove ACSS, crank libcrypto major; ok markus@ deraadt@djm2013-01-2614-882/+4
|
* Don't pull <math.h> just because it can return HUGE_VAL in themartynas2013-01-151-3/+2
| | | | corner cases. OK millert@.
* Fix bug in random offset introduced in rev 1.143; random range wasotto2012-12-221-3/+3
| | | | expanded, but not enough due to precedence error. Spotted by Thorsten Glaser.
* document RES_USE_DNSSEC; text tweaked by sthenjmc2012-12-121-2/+6
| | | | ok jakob
* Remove excessive sys/cdefs.h inclusionderaadt2012-12-051-2/+1
| | | | ok guenther millert kettenis
* no need for .Pp before lists;jmc2012-12-051-3/+2
|
* Rewritten posix_openpt manual that doesn't include any of the POSIXmillert2012-12-041-74/+49
| | | | text. OK deraadt@
* Use "path name" not "pathname".millert2012-12-041-3/+3
|
* Simple emulation of POSIX pty APIs posix_openpt(), ptsname(),millert2012-12-034-6/+414
| | | | | grantpt() and unlockpt() using /dev/ptm. Man pages from FreeBSD. OK kettenis@ deraadt@ beck@ ajacoutot@ naddy@
* New CA root certificates, ok beck@.sthen2012-12-031-99/+1705
| | | | | | | | | | | | | | - additional cert's from GlobalSign. - additional cert's from VeriSign and replace existing ones with 'Signature Algorithm: md2WithRSAEncryption' with their currently distributed sha1WithRSAEncryption versions. - new CAs: AddTrust (root for most Comodo certificates also heavily used in academic networks), Comodo (most of their certs are rooted in AddTrust but TERENA use the Comodo AAA Certificate Services root for some things so add that separately), UserTrust Network/UTN (part of Comodo) and Starfield (part of Go Daddy).
* Additional CA root certificates: GeoTrust/Equifax, Go Daddy, StartCom, thawte.sthen2012-12-011-0/+1187
| | | | ok beck@ william@ todd@
* Regenerate the text information for all certificates with recent opensslsthen2012-11-301-439/+465
| | | | | | and include sha1 signatures for all certs (some were missing). No certificate changes, this is just for consistency. ok beck@
* Remove retired Thawte/Verisign certificates.sthen2012-11-301-499/+0
| | | | | | Remove intermediate GoDaddy certificate, this file should just contain roots. ok beck@ phessler@
* Document a known bug in the DES crypt cipher implementation which we'restsp2012-11-301-2/+6
| | | | | | | | | | not going to fix in order to stay compatible with legacy password data. Nobody should use DES crypt anyway these days. See http://www.freebsd.org/security/advisories/FreeBSD-SA-12:02.crypt.asc for details about this bug. Discussed with deraadt and beck about half a year ago (I'm pruning Ms from my tree).
* - put the various options into the same order as those in resolv.hjmc2012-11-291-17/+38
| | | | | | | | | | | | | | | - sync RES_DEBUG with resolv.conf.5 - document RES_PRIMARY, but mark it unsupported (like we already do for RES_AAAONLY) - use the exact same text (about being enabled by default) for RES_RECURSE as for the other two defaults - document RES_INSECURE{1,2} - description lifted from resolv.conf.5 - document RES_NOALIASES - mostly sync the RES_USE_EDNS0 text with resolv.conf.5 - RES_USE_DNSSEC not documented for now. something to come... ok sthen
* remove some useless Tn and double punctuation;jmc2012-11-191-16/+7
|
* RES_IGNTC is no longer ignored; ok sthenjmc2012-11-191-4/+4
|
* Ensure that the base provided to strtol(3) is between 2 and 36 inclusive,jsing2012-11-181-1/+12
| | | | | | or the special value of 0. ok deraadt@ otto@
* Per POSIX, fix raise() and abort() to send the signal to the current thread.guenther2012-11-101-3/+5
| | | | | | Should make coredumps from abort() easier to debug too. ok kurt@
* Add a new malloc option 'U' => "Free unmap" that does the guarding/djm2012-11-022-18/+36
| | | | | | | | | | | | unmapping of freed allocations without disabling chunk randomisation like the "Freeguard" ('F') option does. Make security 'S' option use 'U' and not 'F'. Rationale: guarding with no chunk randomisation is great for debugging use-after-free, but chunk randomisation offers better defence against "heap feng shui" style attacks that depend on carefully constructing a particular heap layout so we should leave this enabled when requesting security options.
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-19 20:29:18 +0000