CVSROOT:/cvs
Module name:src
Changes by: bl...@cvs.openbsd.org 2022/06/29 16:45:24
Modified files:
sys/netinet6 : dest6.c ip6_input.c ip6_output.c ip6_var.h
Log message:
Pass a pointer to mbuf pointer further down into ip6_process_hopopts()
and ip6_unknown_opt(). Ins
CVSROOT:/cvs
Module name:src
Changes by: bl...@cvs.openbsd.org 2022/06/29 16:20:47
Modified files:
sys/net: rtable.c
Log message:
Between the calls to art_match() and SRPL_FIRST() another CPU may
remove the route from the list. In rtable_match() check if the
ro
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:19:21
Modified files:
lib/libssl : ssl_seclevel.c
Log message:
Don't check the signature if a cert is self signed.
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:18:04
Modified files:
lib/libssl : s3_lib.c ssl_cert.c ssl_locl.h ssl_rsa.c
Log message:
Make ssl_cert_add{0,1}_chain_cert() take ssl/ctx
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:17:22
Modified files:
lib/libssl : s3_lib.c ssl_cert.c ssl_locl.h ssl_rsa.c
Log message:
ssl_cert_set{0,1}_chain() take ssl/ctx
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:16:30
Modified files:
lib/libssl : ssl_rsa.c
Log message:
Add a security check to ssl_set_cert()
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:13:34
Modified files:
lib/libssl : ssl_rsa.c
Log message:
Make ssl_set_{cert,pkey} take an ssl/ctx
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:12:19
Modified files:
lib/libssl : ssl_cert.c ssl_locl.h ssl_rsa.c
Log message:
Refactor use_certificate_chain_* to take ssl/ctx instead of a cert
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:10:20
Modified files:
lib/libssl : ssl_locl.h ssl_seclevel.c
Log message:
Add functions that check security level in certs and cert chains.
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 15:08:07
Modified files:
lib/libssl : ssl_cert.c
Log message:
Make sure the verifier checks the security level in cert chains
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 14:06:55
Modified files:
lib/libssl : ssl_ciph.c
Log message:
Remove a confusing comment
discussed with jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 14:04:28
Modified files:
lib/libssl : ssl_ciph.c ssl_lib.c ssl_locl.h
Log message:
Parse the @SECLEVEL=n annotation in cipher strings
To this end, hand the SSL_CERT through about 5 levels of
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 12:57:30
Modified files:
usr.bin/ts : ts.1
Log message:
Manual page improvements from Leon Fischer
yep jmc@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/06/29 11:39:54
Modified files:
usr.sbin/vmd : vm.c
Log message:
vmd(8): fix off by one in vm memory range check
When inspecting if a gpa falls into a known memory range, vmd was
considering it valid
CVSROOT:/cvs
Module name:src
Changes by: b...@cvs.openbsd.org2022/06/29 11:39:21
Modified files:
lib/libssl : s3_lib.c ssl.h ssl_lib.c ssl_locl.h
ssl_tlsext.c ssl_tlsext.h tls1.h
regress/lib/libssl/tlsext: tlsexttest.c
Log messag
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 11:35:44
Modified files:
distrib/sets/lists/base: mi
distrib/sets/lists/man: mi
Log message:
sync
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 10:06:22
Modified files:
usr.bin/ts : ts.1
Log message:
Clarify the shorter default format string only applies to -i and -s
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2022/06/29 10:04:49
Modified files:
sys/net: netisr.h
Log message:
Remove switch(4) remains.
ok claudio@ mpi@
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 10:01:10
Modified files:
usr.bin/ts : ts.1 ts.c
Log message:
Add -m option to ts(1)
OK claudio@
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 09:06:18
Modified files:
regress/lib/libssl/bytestring: Makefile
regress/lib/libssl/handshake: Makefile
regress/lib/libssl/key_schedule: Makefile
regress/lib/libssl/tlsext
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2022/06/29 08:24:29
Modified files:
sys/arch/amd64/amd64: pmap.c
sys/arch/i386/i386: pmap.c pmapae.c
Log message:
remove archaic comment from original import of i386 pmap
This comment hasn't been r
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 07:07:19
Modified files:
sys/kern : init_sysent.c syscalls.c
sys/sys: syscall.h syscallargs.h
Log message:
Regen syscalls files as they were meant to be, correcting the "cre
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 06:17:31
Modified files:
sys/kern : init_sysent.c kern_pledge.c syscalls.c
syscalls.master
sys/sys: proc.h syscall.h syscallargs.h
Log message:
Unl
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 06:06:11
Modified files:
sys/sys: syscall_mi.h
Log message:
Simplify the locking dance around pledge_syscall()
It doesn't make sense to wrap this function with the kernel lock only
when t
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 06:03:38
Modified files:
lib/libssl : ssl_locl.h
Log message:
whitespace nit
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 06:01:22
Modified files:
sys/kern : kern_pledge.c
Log message:
Use READ_ONCE() when saving pr->ps_pledge to a local variable
This prevents the compiler from reloading a possibly different v
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 05:59:23
Modified files:
lib/libssl : ssl_seclevel.c
Log message:
missing blank line
CVSROOT:/cvs
Module name:src
Changes by: bl...@cvs.openbsd.org 2022/06/29 05:22:10
Modified files:
sys/netinet6 : ip6_input.c
Log message:
Pass down the pointer to mbuf pointer into ip6_hbhchcheck(). This
allows to set the mbuf to NULL and keep it consistent in the c
CVSROOT:/cvs
Module name:src
Changes by: clau...@cvs.openbsd.org 2022/06/29 04:48:22
Modified files:
sys/kern : kern_sig.c
Log message:
Move the deep check back into the loop. There are ways that even though
we're deep the code will SSTOP and sleep and then on wakeu
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 04:04:22
Modified files:
sys/dev/pci/drm/i915/display: intel_dpll_mgr.c
Log message:
drm/i915: Implement w/a 22010492432 for adl-s
>From Ville Syrjala
0895a2235bae6671077c2de94268346005d6 in
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 03:52:23
Modified files:
sys/dev/pci/drm/include/linux: kernel.h
Log message:
correct vararg use in kasprintf/kvasprintf
fixes names of some encoders
CVSROOT:/cvs
Module name:src
Changes by: st...@cvs.openbsd.org 2022/06/29 03:33:18
Modified files:
distrib/sets/lists/base: mi
distrib/sets/lists/man: mi
Log message:
sync
CVSROOT:/cvs
Module name:src
Changes by: mart...@cvs.openbsd.org 2022/06/29 03:10:14
Modified files:
usr.sbin/ldapd : auth.c
Log message:
Use strncasecmp instead of strncmp when comparing the password scheme.
This change could theoretically affect some people who actually
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2022/06/29 03:08:07
Modified files:
sys/net: if.c if_ethersubr.c if_pppoe.c if_pppoe.h
netisr.h
Log message:
ether_input() called with shared netlock, but pppoe(4) wants it
CVSROOT:/cvs
Module name:src
Changes by: m...@cvs.openbsd.org2022/06/29 03:01:48
Modified files:
sys/netinet: ip_input.c
Log message:
Nullify `ipsecflowinfo' when mbuf(9) has no ipsec flowinfo data.
Otherwise we use `ipsecflowinfo' obtained from previous packet.
CVSROOT:/cvs
Module name:src
Changes by: b...@cvs.openbsd.org2022/06/29 02:56:45
Modified files:
lib/libcrypto/asn1: a_time_tm.c asn1_locl.h tasn_dec.c
Log message:
Refactor asn1 time parsing to use CBS - enforce valid times in ASN.1 parsing.
While we're here enforce
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2022/06/29 02:39:49
Modified files:
usr.bin: Makefile
Added files:
usr.bin/ts : Makefile ts.1 ts.c
Log message:
Import ts(1) - a timestamp utility
A from scratch & pledged implementatio
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 02:39:08
Modified files:
lib/libssl : ssl_lib.c
Log message:
Also check the security level in SSL_get1_supported_ciphers
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 02:38:01
Modified files:
lib/libssl : ssl_ciphers.c
Log message:
Check security level when convertin a cipher list to bytes
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 02:37:18
Modified files:
lib/libssl : s3_lib.c
Log message:
Also check the security level when choosing a shared cipher
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 02:34:04
Modified files:
lib/libssl : ssl_clnt.c
Log message:
There's tentacles, tentacles everywhere
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 02:30:04
Modified files:
lib/libssl : s3_lib.c ssl_locl.h ssl_seclevel.c
Log message:
Also check the security level of the 'tmp dh'
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 02:27:52
Modified files:
lib/libssl : ssl_clnt.c ssl_locl.h ssl_seclevel.c ssl_srvr.c
tls_internal.h tls_key_share.c
Log message:
Check the security of DH key shares
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 01:59:15
Modified files:
lib/libssl : ssl_locl.h
Log message:
Rename one s to ssl for consistency
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 01:55:59
Modified files:
lib/libssl : ssl_sigalgs.c
Log message:
Check sigalg security level when selecting them.
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 01:54:54
Modified files:
lib/libssl : ssl_sigalgs.c
Log message:
Check the security bits of the sigalgs' pkey
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 01:53:58
Modified files:
lib/libssl : ssl_sigalgs.c ssl_sigalgs.h ssl_srvr.c
ssl_tlsext.c
Log message:
Check the security level when building sigalgs
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2022/06/29 01:53:00
Modified files:
lib/libssl : ssl_sigalgs.c ssl_sigalgs.h
Log message:
Annotate sigalgs with their security level.
ok beck jsing
CVSROOT:/cvs
Module name:src
Changes by: kette...@cvs.openbsd.org2022/06/29 01:51:54
Modified files:
sys/arch/amd64/amd64: machdep.c
sys/arch/amd64/include: biosvar.h
Log message:
Add support for using non-standard UARTs (such as the Synopsys DesignWare
U
CVSROOT:/cvs
Module name:src
Changes by: kette...@cvs.openbsd.org2022/06/29 01:44:10
Modified files:
sys/arch/amd64/amd64: bus_space.c
Log message:
Make bus_space_map(9) work before the pmap is initialized for addresses
below 4G by using the direct map.
ok anton@
On 29/06/22(Wed) 07:02, Anton Lindqvist wrote:
> On Tue, Jun 28, 2022 at 06:08:18AM -0600, Claudio Jeker wrote:
> > CVSROOT:/cvs
> > Module name:src
> > Changes by: clau...@cvs.openbsd.org 2022/06/28 06:08:18
> >
> > Modified files:
> > sys/kern : kern_sig.c
> >
> > Log mes
51 matches
Mail list logo
