CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2024/03/23 23:50:20 Modified files: sys/lib/libsa : softraid.c Log message: use LIST_FOREACH_SAFE() to avoid use after free this can't happen in a libsa environment found by smatch, ok jsing@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2024/03/23 19:24:26 Modified files: lib/libcrypto/x509: x509_trs.c Log message: Rename arg1 to nid because that's what it is "Yeah, arg1 is always such an imaginative name" ian ok beck
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2024/03/23 18:38:58 Modified files: usr.sbin/rpki-client: x509.c Log message: Clamp the manifestNumber to 20 octets value The standards contain somewhat ambiguous language as to what the largest acceptable value for a crlNumber or manifestNumber could be, due to a limitation to 20 octets. The question is what 20 octets specifically are meant... Consensus seems to have emerged that the largest value is 2^159-1 since 2^160-1 would encode to 21 octets due to a padding octet to disambiguate ff .. ff from -7f ff .. ff (iow the top bit of the first octet is a sign bit). Thus, switch from 2^160 - 1 to 2^159 - 1 as an upper bound by checking the length of the value portion of the DER encoded ASN.1 integer to be at most 20 octets. Thanks to Martin Hoffmann, Tom Harrison, and Ben Maddison for raising and discussing the issue. Thanks also to the spec authors for making me waste a few hours of my life on a single bit. ok job
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2024/03/23 18:35:45 Modified files: lib/libcrypto/x509: x509_trs.c Log message: Drop the unused 'name' member from X509_TRUST This used to be exposed via an accessor, but this accessor is no longer part of the library, so nuke it. ok beck
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: st...@cvs.openbsd.org 2024/03/23 18:33:41 Modified files: usr.sbin/traceroute: traceroute.8 Log message: update project-cymru url, from Robert Keizer, slightly tweaked
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: gne...@cvs.openbsd.org 2024/03/23 18:18:15 Modified files: . : 75.html Log message: Fix a typo
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: yasu...@cvs.openbsd.org 2024/03/23 18:14:19 Removed files: sbin/iked : radius.c Log message: Remove radius.c which is added mistakenly and under review.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: yasu...@cvs.openbsd.org 2024/03/23 18:05:01 Modified files: sbin/iked : eap.c Added files: sbin/iked : radius.c Log message: Allow zero-length identity response ok tobhe
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: yasu...@cvs.openbsd.org 2024/03/23 16:51:49 Modified files: lib/libevent : kqueue.c Log message: In kq_del(), delete matching EV_ADD entries to prevent libevent from passing both EV_ADD and EV_DELETE for the same fd to kevent(). ok visa
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2024/03/23 12:46:47 Modified files: . : 75.html Log message: add openssh bits
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2024/03/23 10:30:01 Modified files: lib/libc/gen : opendir.3 lib/libskey: skeylogin.c Log message: readdir_r(3) was never necessary and has been deprecated by POSIX. Document that in the manpage and stop using it internally. ok deraadt@ millert@ jmc@
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2024/03/23 08:06:26 Modified files: . : 75.html Log message: Add some vmd/vmm updates for 7.5.
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: st...@cvs.openbsd.org 2024/03/23 07:01:24 Modified files: faq: faq10.html Log message: talk about SMT being disabled, I got bored of writing replies to forum posts where people say "oh just set sysctl hw.smt". slightly tweaked from a version which reads ok to mlarkin, I made some changes in response to a modified diff from tj though didn't take all of them.
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: st...@cvs.openbsd.org 2024/03/23 04:38:02 Modified files: sys/dev/pci: mbg.c share/man/man4 : mbg.4 Log message: Recognise Meinberg PCI510, from Maurice Janssen
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: st...@cvs.openbsd.org 2024/03/23 04:36:37 Modified files: sys/dev/pci: pcidevs_data.h pcidevs.h Log message: sync
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: st...@cvs.openbsd.org 2024/03/23 04:35:50 Modified files: sys/dev/pci: pcidevs Log message: Add Meinberg PCI510, from Maurice Janssen
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: s...@cvs.openbsd.org2024/03/23 03:35:08 Modified files: . : 75.html Log message: fill in wifi sections; requested by benno
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: rsadow...@cvs.openbsd.org 2024/03/23 02:47:18 Modified files: . : 75.html Log message: Add KDE Plasma and Qt5 comes with KDE stable patches Plasma addition pointed by Kevin Williams via misc@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2024/03/23 00:38:01 Modified files: lib/libcrypto/x509: x509_trs.c Log message: Remove unused flags and arg2 members from X509_TRUST ok jsing
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2024/03/23 00:37:15 Modified files: lib/libcrypto/x509: x509_trs.c Log message: Remove unused flags argument from the trust handlers The public X509_check_trust() takes a flag parameter which we must leave in place. However, we can stop passing the flag parameter around without ever looking at it. ok jsing