openbsd
10 years agoPlug two xfer leaks and a buffer one.
mpi [Tue, 6 May 2014 09:44:31 +0000 (09:44 +0000)]
Plug two xfer leaks and a buffer one.

10 years agodon't sa_free() in the receive path (prevents use-after-free); ok mikeb@
markus [Tue, 6 May 2014 09:21:50 +0000 (09:21 +0000)]
don't sa_free() in the receive path (prevents use-after-free); ok mikeb@

10 years agosend the delete with the locally allocated SPI in ikev2_init_create_child_sa()
markus [Tue, 6 May 2014 08:17:58 +0000 (08:17 +0000)]
send the delete with the locally allocated SPI in ikev2_init_create_child_sa()

10 years agomake sure some notify payloads are encrypted; ok mikeb@
markus [Tue, 6 May 2014 07:45:17 +0000 (07:45 +0000)]
make sure some notify payloads are encrypted; ok mikeb@

10 years agoinitial support for PFS; ok reyk@
markus [Tue, 6 May 2014 07:24:37 +0000 (07:24 +0000)]
initial support for PFS; ok reyk@

10 years agoretire IKED_REQ_DELETE and fix delete parsing; ok reyk@
markus [Tue, 6 May 2014 07:08:10 +0000 (07:08 +0000)]
retire IKED_REQ_DELETE and fix delete parsing; ok reyk@

10 years agono need to include rand.h now the RAND_seed() calls are gone.
jsg [Tue, 6 May 2014 06:40:03 +0000 (06:40 +0000)]
no need to include rand.h now the RAND_seed() calls are gone.
ok reyk@

10 years agoknf approximation
tedu [Tue, 6 May 2014 03:56:27 +0000 (03:56 +0000)]
knf approximation

10 years agomove chacha context and buffer out of bss and allow mmap to place them
tedu [Tue, 6 May 2014 02:31:45 +0000 (02:31 +0000)]
move chacha context and buffer out of bss and allow mmap to place them
wherever it decides it would like them. first step. ok deraadt dlg djm

10 years ago"stay backwards-compatible with 0.9.5; this should go away soon"
tedu [Tue, 6 May 2014 02:05:38 +0000 (02:05 +0000)]
"stay backwards-compatible with 0.9.5; this should go away soon"
it's your lucky day!

10 years agoremove Kerberos
tedu [Tue, 6 May 2014 01:54:42 +0000 (01:54 +0000)]
remove Kerberos

10 years agomove a comment to make unifdef happier
tedu [Tue, 6 May 2014 01:53:53 +0000 (01:53 +0000)]
move a comment to make unifdef happier

10 years agobye bye SRP
tedu [Tue, 6 May 2014 01:52:07 +0000 (01:52 +0000)]
bye bye SRP

10 years agoPlug a memory leak, free the keymap's memory on detach.
mpi [Mon, 5 May 2014 21:25:00 +0000 (21:25 +0000)]
Plug a memory leak, free the keymap's memory on detach.

ok miod@

10 years agoca_x509_serialize: don't leak the bio buffer; ok reyk@
markus [Mon, 5 May 2014 18:56:42 +0000 (18:56 +0000)]
ca_x509_serialize: don't leak the bio buffer; ok reyk@

10 years agomake the ca_pubkey_serialize() code similar to the private key code, and
markus [Mon, 5 May 2014 18:54:17 +0000 (18:54 +0000)]
make the ca_pubkey_serialize() code similar to the private key code, and
fixes a leak of the rsa object in the error case. from hshoexer@; ok reyk@

10 years agopfkey is unreliable, so add a select-timeout before MSG_PEEK;
markus [Mon, 5 May 2014 18:50:36 +0000 (18:50 +0000)]
pfkey is unreliable, so add a select-timeout before MSG_PEEK;
similar code is in isakmpd; ok reyk@

10 years agoinspired by a cloudflare diff, cleanse old memory when expanding a bignum.
tedu [Mon, 5 May 2014 18:38:42 +0000 (18:38 +0000)]
inspired by a cloudflare diff, cleanse old memory when expanding a bignum.
however, instead of trying to audit all the places where a secret bignum
is used, apply the big hammer and clear all bignums when freed.
ok deraadt miod

10 years agoDon't call the BOOTP handler indirectly.
pelikan [Mon, 5 May 2014 18:30:44 +0000 (18:30 +0000)]
Don't call the BOOTP handler indirectly.

ok krw

10 years agoDon't call the ICMP handler indirectly + clean up a bit.
pelikan [Mon, 5 May 2014 18:27:57 +0000 (18:27 +0000)]
Don't call the ICMP handler indirectly + clean up a bit.

ok krw

10 years agoZap trailing whitespace. Started by pointed comments from andre@.
krw [Mon, 5 May 2014 18:02:49 +0000 (18:02 +0000)]
Zap trailing whitespace. Started by pointed comments from andre@.

10 years agoUgly workaround for an overoptimistic alignment expectation of dos_partition
miod [Mon, 5 May 2014 17:18:08 +0000 (17:18 +0000)]
Ugly workaround for an overoptimistic alignment expectation of dos_partition
fields, found the hard way on landisk, to allow the tree to build until a
proper fix is devised.

ok deraadt@

10 years agoEnhance reading of saved ascii labels (-R) to process mountpoint
krw [Mon, 5 May 2014 16:33:34 +0000 (16:33 +0000)]
Enhance reading of saved ascii labels (-R) to process mountpoint
information if present. Can be used with -F/-f options to create
an fstab from the saved label.

ok otto@

10 years agowork-around the same location being reinstalled thru a different path
espie [Mon, 5 May 2014 16:29:32 +0000 (16:29 +0000)]
work-around the same location being reinstalled thru a different path
later... no need to do anything on sets consisting purely of "kept" handles

This is not fully satisfying, I expect I need to tie some "done already" to
locations as we do with sets, so that we can wipe update_info properly and
be done once and for all...

Issue found by stsp@ while trying to use FETCH_PACKAGES, which is still not
100% in good shape with this.

10 years agoSort and group includes.
jsing [Mon, 5 May 2014 16:19:23 +0000 (16:19 +0000)]
Sort and group includes.

10 years agoRepair BIO_socket_nbio operation.
jsing [Mon, 5 May 2014 16:16:37 +0000 (16:16 +0000)]
Repair BIO_socket_nbio operation.

ok miod@

10 years agoDuring the great e_os.h nukathon we stopped pulling in <sys/filio.h> via
jsing [Mon, 5 May 2014 16:14:45 +0000 (16:14 +0000)]
During the great e_os.h nukathon we stopped pulling in <sys/filio.h> via
the ifdef maze, meaning that FIONBIO was no longer defined. This removes
non-blocking I/O support from s_{client,server,time}.

Remove all FIONBIO ifdefs and import <sys/ioctl.h>, renabling -nbio.

ok miod@

10 years agothe caller of ikev2_msg_retransmit_response already frees the sa; ok mikeb
markus [Mon, 5 May 2014 16:14:37 +0000 (16:14 +0000)]
the caller of ikev2_msg_retransmit_response already frees the sa; ok mikeb

10 years agodon't leak on pid mismatch; ok mikeb
markus [Mon, 5 May 2014 16:13:12 +0000 (16:13 +0000)]
don't leak on pid mismatch; ok mikeb

10 years agoKill memory debug calls that are now noops. While here, nuke an #if 0 and
jsing [Mon, 5 May 2014 16:08:15 +0000 (16:08 +0000)]
Kill memory debug calls that are now noops. While here, nuke an #if 0 and
a unnecessary NULL check before free.

ok miod@

10 years agoOpenBSD has_SC_CLK_TCK.
jsing [Mon, 5 May 2014 16:06:55 +0000 (16:06 +0000)]
OpenBSD has_SC_CLK_TCK.

ok miod@

10 years agovalidate the attribute length, too; from hshoexer; ok mikeb
markus [Mon, 5 May 2014 15:21:20 +0000 (15:21 +0000)]
validate the attribute length, too; from hshoexer; ok mikeb

10 years agoconvert select to poll. from peter malone
tedu [Mon, 5 May 2014 15:08:37 +0000 (15:08 +0000)]
convert select to poll. from peter malone

10 years ago"new file systemsize is" -> "new filesystem size is".
krw [Mon, 5 May 2014 15:04:05 +0000 (15:04 +0000)]
"new file systemsize is" -> "new filesystem size is".

From David Vasek.

10 years agoRemove SRP and Kerberos support from libssl. These are complex protocols
tedu [Mon, 5 May 2014 15:03:22 +0000 (15:03 +0000)]
Remove SRP and Kerberos support from libssl. These are complex protocols
all on their own and we can't effectively maintain them without using them,
which we don't. If the need arises, the code can be resurrected.

10 years agoA couple of malloc()+memset(0) -> calloc.
krw [Mon, 5 May 2014 14:44:18 +0000 (14:44 +0000)]
A couple of malloc()+memset(0) -> calloc.

10 years agoPlug a memory leak related to HID descriptor parsing.
mpi [Mon, 5 May 2014 13:48:11 +0000 (13:48 +0000)]
Plug a memory leak related to HID descriptor parsing.

ok jsg@

10 years agoTweak comment on struct _partitionv0. It's no longer the partition
krw [Mon, 5 May 2014 13:32:15 +0000 (13:32 +0000)]
Tweak comment on struct _partitionv0. It's no longer the partition
table.

Suggested by David Vasek.

10 years agoReplacing test files from previous commit to the right directory. There is no
andre [Mon, 5 May 2014 12:31:56 +0000 (12:31 +0000)]
Replacing test files from previous commit to the right directory. There is no
trigger to run tests from relayd directory, so previous had no practical
effect.

10 years agoUse a custom ifa_rtrequest function for point-to-point interfaces
mpi [Mon, 5 May 2014 11:44:33 +0000 (11:44 +0000)]
Use a custom ifa_rtrequest function for point-to-point interfaces
instead of relying on hacks in nd6_rtrequest() to add a route to
loopback for each address configured on such interfaces.

While here document that abusing lo0 for local traffic is not safe
for interfaces in a non-default rdomain.

Tested by claudio@, jca@ and sthen@, ok sthen@

10 years agoAdd two more regression tests to relayd, these cover "digest" and "file"
andre [Mon, 5 May 2014 11:02:29 +0000 (11:02 +0000)]
Add two more regression tests to relayd, these cover "digest" and "file"
keywords.

ok reyk

10 years agoremove dead code: calling ether_attach which sets if_type to IFT_ETHER,
henning [Mon, 5 May 2014 10:00:45 +0000 (10:00 +0000)]
remove dead code: calling ether_attach which sets if_type to IFT_ETHER,
just to set it to IFT_L2VLAN right afterwards, just to set if_type
to the parent's if_type which can be anything as long as it is IFT_ETHER
at config time doesn't make any sense and has zero effect. stop fiddling
with if_type alltogether.
also remove a question in a comment that has been answered by the last 14
years.
from Marrakesh airport, ok reyk

10 years agochange surprisingly consistent mispelling of length ("lenght")
blambert [Mon, 5 May 2014 08:23:57 +0000 (08:23 +0000)]
change surprisingly consistent mispelling of length ("lenght")

no change in md5 of resulting object file

ok markus@, reyk@

10 years agoZap extra whitespace.
logan [Mon, 5 May 2014 07:02:30 +0000 (07:02 +0000)]
Zap extra whitespace.

OK from djm@ and dtucker@

10 years agoDelete duplicated "mppe" entry in keywords[].
yasuoka [Mon, 5 May 2014 04:58:23 +0000 (04:58 +0000)]
Delete duplicated "mppe" entry in keywords[].

10 years agoEnable assembler code for DES. Assembler code for BN is commented out as it
miod [Mon, 5 May 2014 04:44:54 +0000 (04:44 +0000)]
Enable assembler code for DES. Assembler code for BN is commented out as it
uses the `umul' and `udiv' instructions directly, which are not supported
on v7 processors.

10 years agoRedirecting stderr to /dev/null suppresses all errors. Instead use
bluhm [Mon, 5 May 2014 00:09:16 +0000 (00:09 +0000)]
Redirecting stderr to /dev/null suppresses all errors.  Instead use
the new status=none feature to make dd quiet.
OK krw@ deraadt@

10 years agoImprove line wrapping for lines exceeding 80 chars.
jim [Sun, 4 May 2014 22:26:32 +0000 (22:26 +0000)]
Improve line wrapping for lines exceeding 80 chars.

ok jmc@

10 years agoAdd missing SEE ALSO section header.
jim [Sun, 4 May 2014 22:23:15 +0000 (22:23 +0000)]
Add missing SEE ALSO section header.

yup jmc@

10 years agoRemove trailing whitespace.
jim [Sun, 4 May 2014 21:46:35 +0000 (21:46 +0000)]
Remove trailing whitespace.

fine jmc@

10 years agoRemove a leading whitespace.
jim [Sun, 4 May 2014 21:20:10 +0000 (21:20 +0000)]
Remove a leading whitespace.

ok jmc@

10 years agoAdd missing SEE ALSO section header.
jim [Sun, 4 May 2014 21:15:12 +0000 (21:15 +0000)]
Add missing SEE ALSO section header.

ok jmc@

10 years agoImprove line wrapping for lines exceeding 80 chars.
jim [Sun, 4 May 2014 21:13:41 +0000 (21:13 +0000)]
Improve line wrapping for lines exceeding 80 chars.

ok jmc@

10 years agoRemove trailing whitespace.
jim [Sun, 4 May 2014 21:08:16 +0000 (21:08 +0000)]
Remove trailing whitespace.

ok jmc@

10 years agoFactor out the code to set the expiry, renewal and rebinding times for
krw [Sun, 4 May 2014 21:07:50 +0000 (21:07 +0000)]
Factor out the code to set the expiry, renewal and rebinding times for
a lease. Will be reused in upcoming diff. No intentional behaviour
change.

10 years agodelete useless test code
deraadt [Sun, 4 May 2014 20:40:08 +0000 (20:40 +0000)]
delete useless test code

10 years agoRemove trailing whitespace.
jim [Sun, 4 May 2014 20:31:33 +0000 (20:31 +0000)]
Remove trailing whitespace.

no objection jmc@

10 years agoformat string fixes for bus_addr_t and bus_size_t
sf [Sun, 4 May 2014 20:09:15 +0000 (20:09 +0000)]
format string fixes for bus_addr_t and bus_size_t

bus_addr_t and bus_size_t are u_long everywhere

ok kettenis@

10 years agoremove some hh and h format specifiers
sf [Sun, 4 May 2014 19:27:08 +0000 (19:27 +0000)]
remove some hh and h format specifiers

gcc does not like hh in kprintf and it does not make any difference due
to integer promotion rules. While there, remove some h's, too.

suggested by kettenis@

10 years agoi give up. reuse problem is unfixable. dlg says puppet crashes.
tedu [Sun, 4 May 2014 19:06:40 +0000 (19:06 +0000)]
i give up. reuse problem is unfixable. dlg says puppet crashes.

10 years agoformat string fix for bus_space_tag_t
sf [Sun, 4 May 2014 18:18:36 +0000 (18:18 +0000)]
format string fix for bus_space_tag_t

bus_space_tag_t is a pointer everywhere, except on i386, where it's an int.
Cast to long.

ok kettenis@
'Right idiom' deraadt@

10 years agochange type of handle var to u_int16_t
sf [Sun, 4 May 2014 17:34:17 +0000 (17:34 +0000)]
change type of handle var to u_int16_t

This fixes a format string warning. No change to the format string is
necessary.

suggested by kettenis@

10 years agoEnable the assembler code for BN, which was lost quite some time ago.
miod [Sun, 4 May 2014 17:13:05 +0000 (17:13 +0000)]
Enable the assembler code for BN, which was lost quite some time ago.

10 years agoRemove the !SSLASM conditional. Either there is an arch-specific Makefile.inc,
miod [Sun, 4 May 2014 17:12:19 +0000 (17:12 +0000)]
Remove the !SSLASM conditional. Either there is an arch-specific Makefile.inc,
or the !SSLASM list of files applies. This allows for an arch-specific
Makefile.inc to not specify SSLASM.

10 years agoCreate a new default RSA engine instead of patching the existing one
reyk [Sun, 4 May 2014 16:38:19 +0000 (16:38 +0000)]
Create a new default RSA engine instead of patching the existing one
if none is available.  Fixes SSL/TLS and a possible fatalx() on
machines without a default RSA engine.

Thanks to Bjorn Ketelaars for reporting and testing.

ok gilles@ (for the relayd part)

10 years agoMake use of usbd_xfer_isread() instead of rerolling it everywhere.
mpi [Sun, 4 May 2014 14:42:36 +0000 (14:42 +0000)]
Make use of usbd_xfer_isread() instead of rerolling it everywhere.

This has the side effect of simplifying and reducing the differences
between the various *hci_alloc_*_chain() functions since they are the
principal place where we want to known if the transfer is a read or a
write.

10 years agoGet rid of EHCI_NULL. No functional change.
mpi [Sun, 4 May 2014 14:31:50 +0000 (14:31 +0000)]
Get rid of EHCI_NULL.  No functional change.

10 years agoRevert previous. Insufficient discussion. Introduces
krw [Sun, 4 May 2014 13:08:39 +0000 (13:08 +0000)]
Revert previous. Insufficient discussion. Introduces
inconsistancy between configured and unconfigured interfaces.

Requested by deraadt@

10 years agoFix bogus error check; spotted by clang.
kettenis [Sun, 4 May 2014 12:24:26 +0000 (12:24 +0000)]
Fix bogus error check; spotted by clang.
Submitted upstream by brad@ (and subsequently committed there).

ok jca@, mikeb@, brad@

10 years agoMake answering 'none' to the installer question "IPv6 address?" result
krw [Sun, 4 May 2014 10:47:25 +0000 (10:47 +0000)]
Make answering 'none' to the installer question "IPv6 address?" result
in no IPv6 address, by appending '-inet6' to the generated hostname.<if>
file.

Less surprising to many people.

ok henning@ reyk@ beck@ rpe@

10 years agoRemove the Z flag from the list of malloc options as it
logan [Sun, 4 May 2014 10:40:59 +0000 (10:40 +0000)]
Remove the Z flag from the list of malloc options as it
was removed from malloc.c 10 days ago.

OK from miod@

10 years agoWith the recent change by deraadt@ to introduce kern.nosuidcoredump=3,
reyk [Sun, 4 May 2014 10:32:32 +0000 (10:32 +0000)]
With the recent change by deraadt@ to introduce kern.nosuidcoredump=3,
we don't need the horrible debug hack anymore that disabled privdrop
and chroot to get core dumps of privsep processes.  No functional
change for the normal binary, only if it is compiled with the
non-default -DDEBUG option.

10 years agotweak previous;
jmc [Sun, 4 May 2014 07:01:10 +0000 (07:01 +0000)]
tweak previous;

10 years agoAdd PS_SYSTEM, the process-level mirror of the thread-level P_SYSTEM,
guenther [Sun, 4 May 2014 05:03:26 +0000 (05:03 +0000)]
Add PS_SYSTEM, the process-level mirror of the thread-level P_SYSTEM,
and FORK_SYSTEM as a flag to set them.  This eliminates needing to
peek into other processes threads in various places.  Inspired by NetBSD

ok miod@ matthew@

10 years agoWhen kern.nosuidcoredump=3, act like =2 but try to dump cores into
deraadt [Sun, 4 May 2014 03:53:37 +0000 (03:53 +0000)]
When kern.nosuidcoredump=3, act like =2 but try to dump cores into
the /var/crash/programname/ directory, as root. For instance,
    # mkdir /var/crash/bgpd/
    # chmod 700 /var/crash/bgpd/    # If you skip this step, you are a moron
    # sysctl kern.nosuidcoredump=3
    # bgpd
    # pkill -ABRT bgpd
    # ls /var/crash/bgpd/
    14764.core   23207.core   6423.core
Of course, in real life the idea is that you don't kill the daemon but it
crashes and you collect parallel cores.  Careful you don't fill your /var.
Further tuneables are being considered.

Sorry to be picking on bgpd for this example.  I've watched the "too
difficult to debug privsep code" angst for far too long.
ok guenther

10 years agoIf P_ZOMBIE(pr->ps_mainproc) is true, then (pr->ps_flags & PS_EXITING)
guenther [Sat, 3 May 2014 23:30:04 +0000 (23:30 +0000)]
If P_ZOMBIE(pr->ps_mainproc) is true, then (pr->ps_flags & PS_EXITING)
is, so eliminate the check of the former and instead use the EINVAL
error for the latter.  Also, consistently check for PS_EXITING
before check creds.

suggestion to split this from another diff miod@

10 years agoFix whitespace fail in previous commit
guenther [Sat, 3 May 2014 22:49:43 +0000 (22:49 +0000)]
Fix whitespace fail in previous commit

10 years agoMove the u-area allocation and pmap-magic logic to its own function
guenther [Sat, 3 May 2014 22:44:36 +0000 (22:44 +0000)]
Move the u-area allocation and pmap-magic logic to its own function
uvm_uarea_alloc()

function name from NetBSD; arm testing by miod@

10 years agoEnable assembler code for AES, DES, GCM, SHA1, SHA256 and SHA512.
miod [Sat, 3 May 2014 20:06:13 +0000 (20:06 +0000)]
Enable assembler code for AES, DES, GCM, SHA1, SHA256 and SHA512.

The sparcv9 BN code is not enabled, as it expects to run on a 32-bit
userland and will need to be fixed for 64-bit userland first.

10 years agoEnable assembler code for AES, BN (Montgomery), GCM128, SHA1, SHA256 and SHA512.
miod [Sat, 3 May 2014 19:38:25 +0000 (19:38 +0000)]
Enable assembler code for AES, BN (Montgomery), GCM128, SHA1, SHA256 and SHA512.
Note that GCM128 Neon code is currently not built (and thus not tested), as
the current toolchain does not support Neon instructions.

10 years agoDo not compile the neon probe code until __ARM_ARCH__ >= 7. Neon-specific code
miod [Sat, 3 May 2014 19:36:47 +0000 (19:36 +0000)]
Do not compile the neon probe code until __ARM_ARCH__ >= 7. Neon-specific code
will not get referenced if this condition is not met.

10 years agotypos
miod [Sat, 3 May 2014 19:10:58 +0000 (19:10 +0000)]
typos

10 years agoAdd tests for with and without compression, with and without privsep.
dtucker [Sat, 3 May 2014 18:46:14 +0000 (18:46 +0000)]
Add tests for with and without compression, with and without privsep.

10 years agoCorrectly enable Montgomery code.
miod [Sat, 3 May 2014 17:23:55 +0000 (17:23 +0000)]
Correctly enable Montgomery code.

10 years agounbreak compression, by re-init-ing the compression code in the
markus [Sat, 3 May 2014 17:20:34 +0000 (17:20 +0000)]
unbreak compression, by re-init-ing the compression code in the
post-auth child. the new buffer code is more strict, and requires
buffer_init() while the old code was happy after a bzero();
originally from djm@

10 years agonow that 5.5 has been released with compatibility for 2b hashes,
tedu [Sat, 3 May 2014 17:12:53 +0000 (17:12 +0000)]
now that 5.5 has been released with compatibility for 2b hashes,
switch to generating them by default. prodded by deraadt and sthen

10 years agoUpdate the base64 regress test and enable a test that would previously
jsing [Sat, 3 May 2014 17:00:45 +0000 (17:00 +0000)]
Update the base64 regress test and enable a test that would previously
have resulted in a segfault. Also update the resulting output bytes now
that the invalid/corrupt input is detected and rejected; unless you're
using BIO_FLAGS_BASE64_NO_NL, in which case you still get a stream of
zero value bytes and no way of knowing that the data is invalid/corrupt.

10 years agoAdd checks for invalid base64 encoded data, specifically relating to the
jsing [Sat, 3 May 2014 16:54:48 +0000 (16:54 +0000)]
Add checks for invalid base64 encoded data, specifically relating to the
handling of padding. This fixes a crash that can be triggered by feeding
base64 data followed by 64 or more padding characters, which results in a
negative output length.

This issue was reported by David Ramos, although the same bug has been
sitting in the OpenSSL RT since 2011:

  https://rt.openssl.org/Ticket/Display.html?id=2608

Worse still, BIO_read seems to be completely unable to detect that the
base64 input was invalid/corrupt - in particular, enabling
BIO_FLAGS_BASE64_NO_NL results in a stream of zero value bytes rather than
no input (possibly a good replacement for /dev/null...), which could
result in nasty consequences. Prior to this fix some zero value bytes were
also injected without this flag being enabled.

The recently added base64 regress triggers and documents these issues
(and also ensures that this change retains functional behaviour).

10 years ago1. Drop support for no minor. This variant doesn't exist anymore.
tedu [Sat, 3 May 2014 16:33:35 +0000 (16:33 +0000)]
1. Drop support for no minor. This variant doesn't exist anymore.
2. Pull up the actual minor processing code into the switch that
parses it.
3. atoi is actually simpler than strtonum in this case, but check the
input beforehand so we don't get unexpected results.
4. Slightly more consistent style between various parse and check and
increment operations on salt.
ok deraadt

10 years agoIt is definitly not the correct spelling.
jsing [Sat, 3 May 2014 16:30:53 +0000 (16:30 +0000)]
It is definitly not the correct spelling.

10 years agoKNF.
jsing [Sat, 3 May 2014 16:22:28 +0000 (16:22 +0000)]
KNF.

10 years agoAnnotate wide character routines so they get protected by Wbounded.
martynas [Sat, 3 May 2014 16:19:53 +0000 (16:19 +0000)]
Annotate wide character routines so they get protected by Wbounded.
OK millert@

10 years ago- Provide extended-precision math constants req'd by POSIX
martynas [Sat, 3 May 2014 16:13:03 +0000 (16:13 +0000)]
- Provide extended-precision math constants req'd by POSIX
- Explicitly cast double-precision constants as needed for
FLT_EVAL_METHOD = 2 archs
OK guenther@, ratchov@

10 years agoNuke more defines - we have setvbuf() and _IONBF.
jsing [Sat, 3 May 2014 16:03:54 +0000 (16:03 +0000)]
Nuke more defines - we have setvbuf() and _IONBF.

ok deraadt@

10 years agoKNF.
jsing [Sat, 3 May 2014 15:50:24 +0000 (15:50 +0000)]
KNF.

10 years agoInitial version of a base64 regress.
jsing [Sat, 3 May 2014 15:07:46 +0000 (15:07 +0000)]
Initial version of a base64 regress.

10 years agomore tweaking; ok sthen
jmc [Sat, 3 May 2014 14:13:52 +0000 (14:13 +0000)]
more tweaking; ok sthen

10 years agoNoncharacters 0xFFFE and 0xFFFF don't render a UTF-8 string invalid
stsp [Sat, 3 May 2014 14:10:20 +0000 (14:10 +0000)]
Noncharacters 0xFFFE and 0xFFFF don't render a UTF-8 string invalid
so stop rejecting them in our citrus UTF-8 parser.

This is a common misinterpretation of the Unicode standard which resulted
in a corrigendum last year: http://www.unicode.org/versions/corrigendum9.html

Pointed out by jilles@freebsd (via pfg@freebsd), thanks!

10 years agoAdd #ifndef NO_PRINTF_PERCENT_N. Since we are fully standardized, we
deraadt [Sat, 3 May 2014 12:36:45 +0000 (12:36 +0000)]
Add #ifndef NO_PRINTF_PERCENT_N.  Since we are fully standardized, we
don't use disable %n ourselves.  But Google's Android libc is based
on our libc....  Giving them an easy knob to disable this dangerous
feature easily make their job easier without making our job any harder.
Request from Elliott @ google

10 years agoEnable assembler bits for BN (Montgomery), SHA1 and SHA256.
miod [Sat, 3 May 2014 11:41:05 +0000 (11:41 +0000)]
Enable assembler bits for BN (Montgomery), SHA1 and SHA256.
Assembler bits for AES remain commented out as they run slower than the C code.