summaryrefslogtreecommitdiff
path: root/src (follow)
Commit message (Collapse)AuthorAgeFilesLines
* MFC: fixes for OpenSSL ASN.1 invalid memory accesses (CVE-2009-0590 andOPENBSD_4_4djm2009-04-083-2/+16
| | | | CVE-2009-0789).
* Fix CVE-2008-5077: Incorrect checks for malformed signaturesdjm2009-01-099-12/+11
|
* This commit was manufactured by cvs2git to create branch 'OPENBSD_4_4'.cvs2svn2008-07-28692-180302/+0
|
* Install man pages for the BIO_* libcrypto functions, but not bio.3jsg2008-07-281-1/+126
| | | | | | as the page doesn't directly describe any functions. ok deraadt@
* man page bits for new malloc; ok jmc@otto2008-07-281-43/+33
|
* Almost complete rewrite of malloc, to have a more efficient dataotto2008-07-281-1443/+835
| | | | | | structure of tracking pages returned by mmap(). Lots of testing by lots of people, thanks to you all. ok djm@ (for a slighly earlier version) deraadt@
* i have to crank this for a ridiculous reason, to save me about 4 hours of workderaadt2008-07-251-1/+1
|
* First pass at removing clauses 3 and 4 from NetBSD licenses.ray2008-06-264-33/+5
| | | | | | | | | Not sure what's more surprising: how long it took for NetBSD to catch up to the rest of the BSDs (including UCB), or the amount of code that NetBSD has claimed for itself without attributing to the actual authors. OK deraadt@
* remove _thread_malloc_init prototypeotto2008-06-141-2/+1
|
* grammar fixes;jmc2008-06-131-3/+3
|
* remove _MALLOC_LOCK_INIT; major bump; ok deraadt@otto2008-06-132-8/+2
|
* Add strtof() to libc, some ports seem to like it. Currently it's a simplelandry2008-06-133-9/+64
| | | | | | | call to strtod() with bounding check. Discussed with pyr@ and otto@ ok otto@ deraadt@
* fix an Xr, and use a more appropriate macro;jmc2008-06-091-4/+4
|
* arc4random_stir() does not use /dev/arandom anymore, but sysctl kern.arandomderaadt2008-06-081-4/+6
|
* fix math screwup that reintroduced a bias for upper_bounds in rangedjm2008-06-041-2/+2
| | | | | | | (2^30,2^31). Nothing in the tree yet requests random numbers bounded by this range. report jakob!deraadt; ok deraadt@
* -salt is default for "openssl enc"; from djmjmc2008-05-301-29/+19
| | | | | | tweaked with some help from Matthew Dempsky and djm ok djm
* kill an Xr to a non-existent man page, ulimit(1);jmc2008-05-201-5/+3
|
* remove recalloc(3); it is buggy and impossible to repair without bigotto2008-05-193-62/+20
| | | | costs; ok jmc@ for the man page bits; ok millert@ deraadt@
* garbage collect the portability bits for the removed select() support.brad2008-05-111-11/+1
| | | | ok djm@ deraadt@
* try SO_BINDANY for -s, but do not insist; ok bob, reykmarkus2008-05-091-2/+4
|
* remove duplicates; remove des_random_key; remove unused; sort MLINKS; ok jmc@markus2008-05-071-113/+8
|
* - put the description of -O in the right placejmc2008-05-061-6/+6
| | | | - shorten the argument names to -IO
* allow setting of TCP send/receive buffer sizes; ok markus@djm2008-05-062-5/+38
|
* convert select() => poll(), saves a runtime malloc+free per retrydjm2008-04-181-23/+16
| | | | feedback deraadt@ drahn@; ok deraadt@
* permit _ in the middle of a DNS name componentderaadt2008-04-161-2/+3
|
* Improve the libc DNS resolver ID generation algorithm to be moredjm2008-04-131-43/+79
| | | | | | | resistant to prediction atacks by wrapping the existing LCG in a random permutation generator based on a Luby-Rackoff block cipher. lots of discussion and final ok deraadt@
* Use arc4random_buf() when requesting more than a single word of outputdjm2008-04-132-4/+4
| | | | | | | Use arc4random_uniform() when the desired random number upper bound is not a power of two ok deraadt@ millert@
* - do not call pthread_atfork(3) handlers when a multithreaded programkurt2008-04-041-2/+7
| | | | | | calls vfork(2). "untested, but looks OK" marc@ - document vfork(2), popen(3) and system(3) don't call atfork handlers in multithreaded programs. okay jmc@
* Zero state buffers on return. OK deraadt@millert2008-04-021-1/+5
|
* bcmp(3) tries to return length, which is a size_t, as an int.ray2008-03-191-4/+4
| | | | | | | | Instead, just return 1 if there is a difference. Found by lint. OK millert.
* - add NAME entries for arc4random_buf and arc4random_uniformjmc2008-03-161-2/+4
| | | | - simplify a macro call (Do/Dc -> Dq)
* Add missing MLINKSderaadt2008-03-161-1/+2
|
* diff from djm@ committed at his request:otto2008-03-162-3/+84
| | | | | | | | | | | | | | introduce two new APIs for requesting strong random numbers: arc4random_buf() - fill an arbitrary memory range with random numbers arc4random_uniform() - return a uniformly distributed random number below a specified upper bound, avoiding the bias that comes from a naive "arc4random() % upper_bound" construction. these mirror similarly-named functions in the kernel; lots of discussion deraadt@ mcbride@
* - len is size_t, but n uses len and is an int. Matching those typesray2008-03-151-6/+12
| | | | | | | | | | | | | | | should be good, plus it prevents weird things from happening if len > INT_MAX. - Since n is now size_t, compare it against 0 instead of >= 0. - temp is used to store individual bytes, so use char instead (matches fp and tp). - millert noted that the comma operator may not guarantee order of execution, so replace with semicolons. Found by lint, OK millert.
* Convert c to unsigned char, like it says in the manual. Also addray2008-03-151-4/+3
| | | | | | cast to make it explicit. Found by lint, OK millert.
* fix memory leak (in one case of unaligned buffers); from Markus Kvetterderaadt2008-02-262-4/+6
| | | | ok markus
* use pgfree pool like other code does to reserve free list slots.otto2008-02-201-6/+6
| | | | | prevents a few "cannot free mem because i need mem to free mem" scenarios (one found by weingart@). ok weingart@ millert@ miod@
* - make arc4random*() functions thread safe. Use a custom spinlock functionkurt2008-01-012-42/+69
| | | | | | | | | | | instead of the generic pthread macros since free(3) uses __arc4_getbyte() when freeing small sized allocations and the generic pthread macros call malloc(3). - eliminate passing pointers to a static variable with global scope (rs) for additional code clarity and reduction. - shlib minor bumps for libc and libpthread due to new functions. From andreas@ with some bits from me. okay tedu@ marc@ w/some spot checking from millert@
* relevant updates/fixes up to openssl-0.9.8g;jmc2007-12-011-31/+45
|
* typos; ok jmc@martynas2007-11-271-2/+2
| | | | sys/dev/pci/pciide.c from naddy@
* fix misleading comment; the _MUTEX_LOCK/_MUTEX_UNLOCK macros work withkurt2007-11-191-2/+2
| | | | both static and non-static mutexs.
* Put limits.h in front of stdlib.h as style(9) recommends.tobias2007-11-132-8/+8
| | | | OK millert@
* strtod may return HUGE_VAL on overflow, which is defined in math.h.tobias2007-11-111-2/+3
| | | | | | Therefore added math.h to SYNPOSIS. OK millert@
* Add parentheses to avoid warning:chl2007-10-311-2/+2
| | | | | | "suggest parentheses around && within ||" ok millert@
* Make sure to use unique target names so that make -j does not break;miod2007-10-251-25/+25
| | | | feedback and ok espie@
* Only test one condition per invocation flavour, instead of testing allmiod2007-10-221-27/+29
| | | | | | of them with exceptions disabled and then only one with exceptions enabled. ok kettenis@
* Give more details on failure.miod2007-10-201-8/+8
|
* Make this work on 64 bit platforms by using strlen() instead of sizeof()...miod2007-10-201-1/+1
| | | | worked by accident.
* use RRSIG instead of SIG for DNSSEC. ok djm@jakob2007-10-113-6/+7
|
* Replace use of strcpy(3) and other pointer goo inmoritz2007-10-102-30/+24
| | | | | | SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-16 10:02:39 +0000