Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
171,013 Commits 606 Branches 0 Tags 3.1 GiB
b163716d45
Commit Graph

1212 Commits

Author SHA1 Message Date
mgrooms
b163716d45 Correct a phase2 status event. Submitted by Timmo Teras. 2008-06-18 06:11:37 +00:00
tls
f5792c6ee8 Apply patch from Darryl Miles which adjusts SSL_shutdown's behavior for 
non-blocking BIOs so that it is sane -- so that, in other words, -1 with
a meaningful library error code (WANT_READ or WANT_WRITE) is returned
when we would block for I/O.  Without this change, you have to sleep or
spin -- you can't know how to put the underlying socket in your select
or poll set.

Patch from http://marc.info/?l=openssl-dev&m=115154030723033&w=2 and
rationale at http://marc.info/?l=openssl-dev&m=115153998821797&w=2 where
sadly they were overlooked by the OpenSSL team for some time.  It is hoped
that now that we've brought this change to their attention they will
integrate it into their sources and we can lose the local change in
NetBSD.
 2008-06-10 19:45:00 +00:00
tonnerre
31197b7671 Fix two Denial of Service vulnerabilities in OpenSSL: 
- Fix flaw if server key exchange message is omitted from a TLS handshake
   which could lead to a silent crash.
 - Fix double free in TLS server name extensions which could lead to a
   remote crash.

Fixes CVE-2008-1672.
 2008-06-05 15:30:10 +00:00
christos
90318d80f4 PR/38728: Tomoyuki Okazaki: Enable Camellia 2008-05-26 16:39:45 +00:00
christos
a41e5a83be Add coverity alloc comment. 2008-05-24 20:07:00 +00:00
christos
cfb67f710f add a coverity alloc comment. 2008-05-24 20:05:52 +00:00
christos
e520f14ae6 Coverity CID 5003: Fix memory leak. 2008-05-24 20:00:07 +00:00
christos
e3ee1b22da Coverity CID 5004: Fix double free. 2008-05-24 19:58:01 +00:00
christos
78dc0fbbfc Add a coverity alloc comment. 2008-05-24 19:54:43 +00:00
christos
13ebcc71fb Add a coverity alloc comment 2008-05-24 19:52:36 +00:00
christos
c2e438738f Coverity CID 5007: Avoid double free. 2008-05-24 19:48:27 +00:00
christos
677bd71b1f Add a coverity allocation comment. 2008-05-24 19:46:32 +00:00
christos
66009f62a3 Coverity CID 5010: Avoid buf[-1] = '\0' on error. 2008-05-24 19:32:28 +00:00
christos
aa3b40a116 Coverity CID 5018: Fix double frees. 2008-05-24 18:39:40 +00:00
christos
b6c10a6fe5 avoid using free_func as an argument because it is already a typedef. 2008-05-10 16:52:05 +00:00
christos
33d34d249c fix version string 2008-05-09 22:10:19 +00:00
christos
2149db96e3 resolve conflicts 2008-05-09 21:49:39 +00:00
christos
b69a53abf2 import today's snapshot! Hi <tls> 2008-05-09 21:34:04 +00:00
manu
2a499f37b6 From Christian Hohnstaedt: allow out of tree building 2008-05-08 12:24:50 +00:00
martin
11a6dbe728 Convert TNF licenses to new 2 clause variant 2008-04-30 13:10:46 +00:00
martin
ce099b4099 Remove clause 3 and 4 from TNF licenses 2008-04-28 20:22:51 +00:00
jmmv
098f566eb9 Do as in revision 1.26 of sshd_config: add a sample, commented-out line 
for X.org's xauth.
 2008-04-25 15:01:45 +00:00
vanhu
ed9bfcd9c2 From Timo Teras: extract port numbers from SADB_X_EXT_NAT_T[SD]PORT if present in purge_ipsec_spi(). 2008-04-25 14:41:18 +00:00
vanhu
c6898eabf6 extract ports information from SADB_X_EXT_NAT_T_[SD]PORT if present in purge_ipsec_spi() 2008-04-25 14:41:17 +00:00
martin
795befa36d namespace police to make it buildable (no, it still does not work), 
add rcsid.
 2008-04-20 15:01:14 +00:00
martin
41de77d985 Sync SCM_RIGHTS passing code with the version used in racoon (i.e. 
set message header and controll message size to the same value again)
 2008-04-19 22:15:30 +00:00
christos
57a7ea54be for symmetry set controllen the same way we set it on the receiving side. 2008-04-13 21:45:19 +00:00
christos
03409c55d7 Don't use variable size allocation on the stack. 2008-04-13 21:44:14 +00:00
adrianp
c09e4a3a8c Fix for CVE-2007-3108 
The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and
earlier does not properly perform Montgomery multiplication, which might
allow local users to conduct a side-channel attack and retrieve RSA
private keys.
 2008-04-10 14:19:59 +00:00
jnemeth
1d2009704e fix another build breaker 2008-04-07 07:37:07 +00:00
christos
1f7a577d0e re-add removed files. 2008-04-06 23:39:05 +00:00
christos
cbdb6c7a40 resolve conflicts. 2008-04-06 23:38:19 +00:00
christos
49d015609b Import 5.0 2008-04-06 21:18:28 +00:00
adrianp
fe2ff28dc6 Add no-user-rc option which disables execution of ~/.ssh/rc 
(backport from OpenSSH 4.9)
 2008-04-05 17:20:53 +00:00
adrianp
11a00dfcb8 Fix two vulnerabilities in OpenSSH: 
- X11 forwarding information disclosure (CVE-2008-1483)
- ForceCommand bypass vulnerability
 2008-04-03 13:09:14 +00:00
manu
1c3bd4b930 fix Linux build 2008-04-02 19:02:50 +00:00
christos
5ae92982aa properly fix the variable stack allocation code. 2008-03-28 21:18:45 +00:00
manu
fe6642740b Still from Cyrus Rahman: fix file descriptor leak introduced by previous 
commit.
 2008-03-28 20:28:14 +00:00
manu
1d223a6207 From Cyrus Rahman: Allow interface reconfiguration when running in privilege separation mode, document privilege separation 2008-03-28 04:18:52 +00:00
manu
182dbe8881 From Cyrus Rahman <crahman@gmail.com> 
Allow interface reconfiguration when running in privilege separation mode,
document privilege separation
 2008-03-28 04:18:51 +00:00
mlelstv
eaec738d10 align cast with heimdal source 
http://loka.it.su.se/fisheye/changelog/heimdal/?cs=22773
 2008-03-24 20:05:57 +00:00
mlelstv
0b9b01afa9 Heimdal cannot easily detect wether the system uses kerberos or not 
on a client. For now, turn on the hack, that causes heimdal to fail
when there is no config file. ok'd by lha.
 2008-03-24 13:56:41 +00:00
dogcow
d0bda29ecc fix compilation on alpha. 2008-03-24 08:27:23 +00:00
he
b2156dc123 The sig_atomic_t type isn't necessarily compatible with %d printf format; 
cast to int before printing.
 2008-03-23 23:09:04 +00:00
mlelstv
7ae544fc2d Remove computed source files that may confuse mkdep. 2008-03-22 19:15:21 +00:00
mlelstv
fcf1d7cd15 Remove computed source files that may confuse mkdep. 2008-03-22 16:17:50 +00:00
mlelstv
e160244ccb match whitespace after RCSID 2008-03-22 13:08:21 +00:00
mlelstv
1ea66c56df NetBSD uses __RCSID 2008-03-22 13:03:05 +00:00
mlelstv
5d9c8e15e0 Import Heimdal-1.1 
one more missing file
 2008-03-22 10:35:47 +00:00
mlelstv
d5be9e9c1d Import Heimdal-1.1 
more files
 2008-03-22 09:39:22 +00:00