| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
| |
defined as they rely on unaligned access.
ok joel@
|
| |
|
|
|
| |
came also up with this diff. Simple, no bias and benchmarks show the extra
random calls disappear in te measurement noise.
|
| |
|
|
|
|
|
| |
but at that time ffs function calls were generated instead of the
compiler inlining the code. Now that ffs is marked protected in
libc this is handled better. Thanks to kshe who prompted me to
look at this again.
|
| |
|
|
|
|
|
| |
dance, mark it protected. This works better for both gcc and clang: gcc
blocks overriding of internal calls, while clang permits inlining again.
ok otto@
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
the assembly code in libcrypto assumes unaligned access is allowed for
ARMv7. Make these paths conditional on __STRICT_ALIGNMENT not being
defined and define __STRICT_ALIGNMENT in arm_arch.h for OpenBSD.
ok tom@
|
| | |
|
| |
|
|
| |
some cleanup; tested by sthen@ on a ports build
|
| |
|
|
| |
cleanups. From Jan Kokemueller. OK deraadt@
|
| |
|
|
|
|
|
| |
(w/ _dlctl reference) into static executables. It's all Mark's code so
put his preferred copyright on it.
ok kettenis@
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
My read of this: Long time ago (Think Conan, not dinasaurs) during the race
to make speedier processors, a cpu vendor built a pipeline with a bad stall,
and proposed a tremendously hasky workaround. A wizard adopted this into his
perl scroll, and failed to reflect later when no compiler adopted the practice.
This relic remains at the tail end of some functions in OpenSSL as
".byte 0xf3,0xc3". Banish it straight to hell.
ok mlarkin, others also stared blankly
|
| |
|
|
|
|
| |
for a protocol string.
Issue found by semarie@, who also provided the diff.
|
| |
|
|
|
| |
block which defines a variable late, after code. Place this chunk into
a { subblock } to satisfy old compilers and old eyes.
|
| | |
|
| |
|
|
|
| |
_libc___cxa_thread_atexit_impl reference on gcc architectures that breaks
the build.
|
| |
|
|
|
|
|
| |
interface is also made available as __cxa_thread_atexit_impl to satisfy the
needs of GNU libstdc++.
ok guenther@, millert@
|
| |
|
|
|
|
|
|
|
| |
to builtins like mem{set,cpy,move} and __stack_smash_handler. So, when
building with clang, instead mark those as protected visibility to get rid
of the PLT relocations. We can't take the address of them then, but that's
ok: it's a build-time error not a run-time error.
ok kettenis@
|
| |
|
|
|
| |
POSIX functions) and turn the weird DIAGNOSTICS section into a normal
RETURN VALUES section while here.
|
| |
|
|
|
|
|
| |
This removes the last remaining use of the old M_ASN1_* macros (asn1_mac.h)
from API that needs to continue to exist.
ok beck@ inoguchi@
|
| |
|
|
|
|
|
|
| |
If no TLS extensions are present in a client hello or server hello, omit
the entire extensions block, rather than including it with a length of
zero.
ok beck@ inoguchi@
|
| |
|
|
| |
Based on BoringSSL.
|
| |
|
|
|
|
|
|
| |
with "warning: " since 2003, so the messages themselves need not
contain the prefix anymore.
From Scott Cheloha
ok jca, deraadt
|
| |
|
|
|
|
|
|
| |
While it is not clear (to me) why that ports ends up with corrupted
shared libs, reverting those changes fixes the issue and should allow us
to close p2k17 more smoothly.
Discussed with a bunch, ok ajacoutot@ guenther@
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
on the stack instead of mallocing the list and move the APIs from libpthread
to libc so that they can be used inside libc.
Note: the standard was explicitly written to permit/support this
"macro with unmatched brace" style and it's what basically everyone
else already does. We xor the info with random cookies with a
random magic to detect/trip-up overwrites.
Major bump to both libc and libpthread due to the API move.
ok mpi@
|
| |
|
|
|
|
|
| |
which results in an internal double free when internal functions are not
in use.
ok otto@
|
| | |
|
| |
|
|
| |
With review/feedback from inoguchi@
|
| | |
|
| |
|
|
| |
OK deraadt@ jca@ jmc@
|
| |
|
|
|
|
|
| |
As part of this, change ssl_cipher_list_to_bytes() to take a CBB argument,
rather than a pointer/length. Some additional clean up/renames while here.
Based on a diff from doug@
|
| |
|
|
| |
Based on a diff from doug@
|
| |
|
|
|
| |
length, since the caller has already been converted to CBS. A small amount
of additional clean up whilst here.
|
| |
|
|
| |
Part of a diff from doug@
|
| |
|
|
|
|
|
|
| |
duplicated code. For now this is essentially adds a diff of the two
functions with 'if (SSL_IS_DTLS(s))' - further clean up and improvement
will follow.
ok inoguchi@
|
| |
|
|
| |
ssl3_accept() - synchronise comments, whitespace, line wrapping, etc.
|
| |
|
|
| |
ssl3_connect() - synchronise comments, whitespace, line wrapping, etc.
|
| | |
|
| | |
|
| |
|
|
|
|
| |
which allows us to drop dtls1_send_change_cipher_spec() entirely.
ok inoguchi@
|
| | |
|
| |
|
|
| |
ok beck@
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
default protocols instead of crashing - this makes the behaviour more
useful and mirrors what we already do in tls_config_set_ciphers() et al.
|
| | |
|
