CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/05 00:50:40
Modified files:
regress/lib/libcrypto/x509/rfc3779: rfc3779.c
Log message:
Remove bandaid to work around expected range_should_be_prefix() problem.
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/05 00:47:15
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Remove a bogus memcmp in range_should_be_prefix()
range_should_be_prefix() currently always fails. The reason for this
is tha
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/05 00:37:01
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Polish X509v3_addr_subset() a bit
Use child and parent instead of a and b. Split unrelated checks. Use
accessors and assign t
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/05 00:29:47
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Readability tweaks in addr_contains()
Assign to local variables to avoid ugly line wrapping.
ok inoguchi jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/05 00:28:41
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Fix a bug in addr_contains() introduced in OpenSSL commit be71c372
by returning 0 instead of -1 on extract_min_max() failure.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:53:03
Modified files:
usr.sbin/tcpdump: print-ether.c
Log message:
add a basic printer for EAPOL packets.
EAPOL turns out to be a little container for a bunch of other types
of packets, includ
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:47:53
Modified files:
usr.sbin/tcpdump: print-ether.c
Log message:
ethertypes.h has now added the missing ethertypes we're looking at here.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:46:18
Modified files:
usr.sbin/tcpdump: print-ip6opts.c print-l2tp.c print-mobile.c
Log message:
fix some more -Wunused-but-set-variable
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:41:25
Modified files:
usr.sbin/tcpdump: print-cnfp.c
Log message:
fix another -Wunused-but-set-variable
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:37:37
Modified files:
usr.sbin/tcpdump: print-lwres.c
Log message:
more -Wunused-but-set-variable fixes
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:36:37
Modified files:
usr.sbin/tcpdump: print-rt6.c
Log message:
clean up another -Wunused-but-set-variable thing
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:35:19
Modified files:
usr.sbin/tcpdump: print-frag6.c
Log message:
clean up some -Wunused-but-set-variable.
this file had it's own verison of TCHECK, but also not. not the best.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:33:14
Modified files:
usr.sbin/tcpdump: print-icmp6.c
Log message:
fix some -Wunused-but-set-variable stuff.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:29:55
Modified files:
usr.sbin/tcpdump: print-sunrpc.c
Log message:
silence a -Wunused-but-set-variable
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:19:22
Modified files:
sys/net: ethertypes.h
Log message:
add NSH and NHRP ethertypes, mostly for tcpdump stuff.
ok deraadt@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 22:18:25
Modified files:
sys/net: ethertypes.h
sys/dev/ic : bwfm.c
sys/net80211 : ieee80211_input.c ieee80211_output.c
ieee80211_pae_output.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 21:56:15
Modified files:
regress/usr.bin/ssh: sshsig.sh
Log message:
regress test both sshsig message hash algorithms, possible now because
the algorithm is controllable via the CLI
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 21:50:11
Modified files:
usr.bin/ssh: ssh-keygen.1 ssh-keygen.c
Log message:
allow selection of hash at sshsig signing time; code already supported
either sha512 (default) or sha256, but plumb
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 21:27:54
Modified files:
usr.bin/ssh: ssh-keygen.c
Log message:
add missing -O option to usage() for ssh-keygen -Y sign;
from Linus Nordberg
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 21:27:01
Modified files:
usr.bin/ssh: ssh-keygen.c
Log message:
move sig_process_opts() to before sig_sign(); no functional code change
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 21:10:39
Modified files:
regress/usr.bin/ssh: sshsig.sh
Log message:
regression test for find-principals NULL deref; from Fabian Stelzer
CVSROOT:/cvs
Module name:src
Changes by: guent...@cvs.openbsd.org2022/01/04 21:10:36
Modified files:
bin/ps : extern.h keyword.c print.c ps.1
Log message:
Delete 'emul' keyword: it's been just returned 'native' for a long time
ok jsg@ deraadt@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 21:02:42
Modified files:
usr.bin/ssh: sshsig.c
Log message:
NULL deref when using find-principals when matching an allowed_signers
line that contains a namespace restriction, but no restrictio
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/01/04 20:53:26
Modified files:
sys/dev/pci: if_msk.c
Log message:
use the index provided by the txcompletion descriptor in txeof.
this replaces the use of a register in txeof to figure out how much
CVSROOT:/cvs
Module name:src
Changes by: v...@cvs.openbsd.org2022/01/04 20:32:44
Modified files:
share/man/man4/man4.riscv64: Makefile
sys/arch/riscv64/conf: GENERIC RAMDISK files.riscv64
Added files:
share/man/man4/man4.riscv64: mpfclock.4
sy
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/01/04 19:00:56
Modified files:
usr.bin/make : config.h
Log message:
remove unused defines
ok gnezdo@
CVSROOT:/cvs
Module name:src
Changes by: kette...@cvs.openbsd.org2022/01/04 13:55:48
Modified files:
sys/arch/arm64/dev: aplmbox.c aplns.c
Log message:
Future-proof by adding some proposed compatible strings to match on.
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:52:34
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Readability tweaks in the print helper i2r_IPAddressOrRanges.
Assign repeated nested expressions to local variables and avoid
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2022/01/04 13:43:44
Modified files:
sys/dev/pci: pcivar.h
Log message:
struct pci_matchid is useful an upcoming userland program that wants
to includes pcivar.h because it inspects vid/pid tables
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2022/01/04 13:41:44
Modified files:
sys/arch/alpha/include: bus.h
sys/arch/landisk/include: bus.h
sys/arch/sparc64/include: bus.h
Log message:
hide more things behind _KERNEL, in case userl
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:40:43
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Consistently name variables with a _len suffix instead of mixing
things like prefixlen, afi_length, etc.
suggested by jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:33:02
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Only check the parent to be canonical once we know it is non-NULL.
suggested by jsing during review
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:30:30
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Refactor extract_min_max()
extract_min_max() crammed all the work in two return statements
inside a switch. Make this more r
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:23:05
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Remove checks that are duplicated in extract_min_max()
The NULL checks and the checks that aor->type is reasonable are alread
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2022/01/04 13:21:15
Modified files:
distrib/sets/lists/comp: mi
Log message:
sync
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:21:04
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Make X509v3_addr_get_range() readable.
Instead of checking everything in a single if statement, group the
checks according to
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:17:07
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Add a length check to make_addressPrefix()
Make the callers pass in the afi so that make_addressPrefix() can check
prefixlen
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:04:38
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Remove some dead code
IPAddressRange_new() populates both its min and max members, so
they won't ever be NULL and will never
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 13:02:22
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Drop a pointless NULL check
IPAddressOrRange_new() instantiates a choice type, so we need to
allocate one member of the union
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 12:56:53
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
First pass over x509_addr_validate_path()
Replace reaching into the structs with IPAddressFamily accessors
and add a few comm
CVSROOT:/cvs
Module name:src
Changes by: jer...@cvs.openbsd.org 2022/01/04 12:51:24
Modified files:
share/man/man5 : ruby-module.5
Log message:
Document ruby31 FLAVOR
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 12:49:14
Modified files:
lib/libcrypto/x509: x509_addr.c
Log message:
Refactor IPAddressFamily accessors
Introduce a helper function that allows fetching the AFI and the
optional SAFI out of an I
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2022/01/04 11:41:32
Modified files:
usr.sbin/rpki-client: main.c parser.c
Log message:
Pass the filename back from the parser to the parent.
The parent will then add the filename to the filepath tree instead
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2022/01/04 11:16:09
Modified files:
usr.sbin/rpki-client: repo.c
Log message:
Fix -n mode by setting repository states to REPO_DONE instead of the
more correct REPO_FAILED. The problem is that with REPO_FAIL
CVSROOT:/cvs
Module name:src
Changes by: guent...@cvs.openbsd.org2022/01/04 11:13:31
Modified files:
sys/kern : subr_hibernate.c
Log message:
Use the device we read the hibernate signature from for the entire
resume. This fixes setups where a umass device n
CVSROOT:/cvs
Module name:www
Changes by: t...@cvs.openbsd.org2022/01/04 09:43:45
Modified files:
. : openbsd.css
libressl : openbsd.css
openbgpd : openbsd.css
opencvs: openbsd.css
openiked : open
CVSROOT:/cvs
Module name:src
Changes by: kette...@cvs.openbsd.org2022/01/04 09:15:28
Modified files:
sys/dev/pci: pci.c
Log message:
Restrict the pci(4) ioctl interface to devices detected by the kernel.
This fixes issues on the M1 Macs where the PCI probe don
CVSROOT:/cvs
Module name:src
Changes by: s...@cvs.openbsd.org2022/01/04 08:55:28
Modified files:
sys/dev/pci: if_iwm.c if_iwx.c
Log message:
fix length boundary checks for incoming packets in iwm/iwx
The minimum length and the maximum length required were both to
CVSROOT:/cvs
Module name:src
Changes by: s...@cvs.openbsd.org2022/01/04 08:53:57
Modified files:
sys/dev/pci: if_iwm.c if_iwx.c
Log message:
fix Rx Block Ack session validity checks in iwm(4) and iwx(4)
I ported a NULL pointer check from iwlwifi rxmq.c which cann
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 08:37:23
Modified files:
usr.sbin/rpki-client: parser.c
Log message:
Simplify the verify callback
The final warnx() is very noisy and essentially a remnant of earlier
debugging code. By ditching
CVSROOT:/cvs
Module name:www
Changes by: t...@cvs.openbsd.org2022/01/04 08:25:26
Modified files:
openssh: agent-restrict.html
Log message:
use relative paths for favicon/css files and stop manually overwriting colors
for certain attributes. ok djm
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2022/01/04 08:25:05
Modified files:
usr.sbin/vmd : vmm.c
Log message:
Try to handle possible vm_register() failures and return an error back
to the caller instead of most probably crashing because of a NUL
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2022/01/04 08:22:53
Modified files:
usr.sbin/vmd : vmd.h control.c
Log message:
Remove unused imsg type IMSG_VMDOP_RECEIVE_VM_RESPONSE.
OK benno@ dv@
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2022/01/04 08:21:40
Modified files:
usr.sbin/vmd : vioqcow2.c
Log message:
Another -Wunused-but-set-variable fix.
Based on input from dv@
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2022/01/04 08:18:44
Modified files:
usr.sbin/vmd : vmd.c loadfile_elf.c
Log message:
Fix some simple -Wunused-but-set-variable warnings.
OK benno@ dv@
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/01/04 06:43:14
Modified files:
etc/etc.alpha : login.conf
etc/etc.amd64 : login.conf
etc/etc.arm64 : login.conf
etc/etc.armv7 : login.conf
etc/etc.hppa : login.co
CVSROOT:/cvs
Module name:src
Changes by: patr...@cvs.openbsd.org 2022/01/04 06:40:58
Modified files:
sys/dev/acpi : acpi.c
Log message:
acpi_getprop() needs to actually make sure that we're looking at the
correct property. While there adjust acpi_getpropint() as well t
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/01/04 06:39:02
Modified files:
usr.sbin/rpki-client: parser.c
Log message:
Stop setting X509_V_FLAG_IGNORE_CRITICAL
Since the last bump, libcrypto knows about the RFC 3779 extensions.
Therefore, settin
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2022/01/04 05:53:31
Modified files:
lib/libssl : ssl_clnt.c ssl_srvr.c
Log message:
Return 0 on failure from send/get kex functions in the legacy stack.
In the legacy stack, a message handling function
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/01/04 04:31:42
Modified files:
sys/conf : files
Removed files:
sys/dev/ic : aic6250.c aic6250reg.h aic6250var.h
Log message:
remove the last part of driver for aic-6250 scsi on aviion
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2022/01/04 04:17:12
Modified files:
lib/libssl : ssl_clnt.c
Log message:
Use normal result testing for tls1_check_curve().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2022/01/04 04:14:54
Modified files:
lib/libssl : ssl_clnt.c
Log message:
Refactor ssl3_get_server_kex_ecdhe() to separate parsing and validation.
If we receive something other than a "named curve", send
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2022/01/04 04:01:58
Modified files:
lib/libssl : ssl_tlsext.c tls13_key_share.c
Log message:
Pull key share group/length CBB code up from tls13_key_share_public()
This provides better symmetry with the
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/01/04 04:01:24
Removed files:
sys/dev/ic : ad1843reg.h dp8573areg.h ds1286reg.h
ds1687reg.h seeq8003reg.h
Log message:
remove files missed when sgi was removed
ok visa@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2022/01/04 03:34:16
Modified files:
lib/libssl : ssl_tlsext.c
Log message:
Only allow zero length key shares when we know we're doing HRR.
ok inoguchi@ tb@
CVSROOT:/cvs
Module name:src
Changes by: dtuc...@cvs.openbsd.org 2022/01/04 01:38:53
Modified files:
regress/usr.bin/ssh: sshd-log-wrapper.sh test-exec.sh
Log message:
Log command invocation in debugging log to aid in manually reproducing
failing commands.
66 matches
Mail list logo