#
b205d946 |
| 28-Apr-2024 |
florian <florian@openbsd.org> |
gmtime(3) / locatime(3) can fail when timestamps are way off.
Add missing error checks to all calls under sbin/
Input & OK millert
|
#
7834797c |
| 22-Oct-2021 |
bluhm <bluhm@openbsd.org> |
After deleting hifn(4) the only provider for the LZS compression algorithm is gone. Reomve all LZS references from the tree. The v42bis in isakmpd also looks unsupported. OK mvs@ patrick@ sthen@
|
#
515e489c |
| 03-Jul-2019 |
deraadt <deraadt@openbsd.org> |
snprintf/vsnprintf return < 0 on error, rather than -1.
|
#
df69c215 |
| 28-Jun-2019 |
deraadt <deraadt@openbsd.org> |
When system calls indicate an error they return -1, not some arbitrary value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if
When system calls indicate an error they return -1, not some arbitrary value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if this strictness helps us in the future.
show more ...
|
#
2f1aa25b |
| 15-Jan-2018 |
mpi <mpi@openbsd.org> |
Spacing, no object change.
|
#
c03203f3 |
| 04-Jan-2018 |
mpi <mpi@openbsd.org> |
space -> tab
No object change.
|
#
025f5691 |
| 22-Nov-2013 |
deraadt <deraadt@openbsd.org> |
Whole bunch of (unsigned char) casts carefully added for ctype calls. Careful second audit by millert
|
#
5f9b15b4 |
| 16-Apr-2013 |
deraadt <deraadt@openbsd.org> |
remove casts to time_t * which are not needed
|
#
82bad92d |
| 21-Mar-2013 |
deraadt <deraadt@openbsd.org> |
remove excessive includes
|
#
5f649d51 |
| 30-Jun-2012 |
naddy <naddy@openbsd.org> |
enable use of AES-{192,256}-CTR, and explicitly of AES-128-CTR, for IPsec ESP ok mikeb@
|
#
691235ad |
| 06-Apr-2011 |
miod <miod@openbsd.org> |
Avoid using NULL in non-pointer contexts: use 0 for integer values and '\0' for chars.
|
#
7ebc7616 |
| 22-Sep-2010 |
mikeb <mikeb@openbsd.org> |
Support for use of AES-GCM-16 (as AESGCM) and ENCR_NULL_AUTH_AES_GMAC (as AESGMAC) ciphers in the ISAKMP Phase 2 (aka Quick Mode).
Thoroughly tested by me and naddy. Works fine with Linux.
Require
Support for use of AES-GCM-16 (as AESGCM) and ENCR_NULL_AUTH_AES_GMAC (as AESGMAC) ciphers in the ISAKMP Phase 2 (aka Quick Mode).
Thoroughly tested by me and naddy. Works fine with Linux.
Requires updated pfkeyv2.h include file.
ok naddy
show more ...
|
#
05442ddf |
| 05-Aug-2007 |
tom <tom@openbsd.org> |
Allow key exchange with RSA signature authentication to work with Cisco IOS and other initiators that only send their certs in response to CERT_REQUEST.
With input and help from cloder@, Stuart Hend
Allow key exchange with RSA signature authentication to work with Cisco IOS and other initiators that only send their certs in response to CERT_REQUEST.
With input and help from cloder@, Stuart Henderson, mpf@, and several others who did lots of testing - thanks to all.
ok hshoexer@
show more ...
|
#
b7984483 |
| 16-Apr-2007 |
moritz <moritz@openbsd.org> |
There's no point in checking ptr for NULL before doing free(ptr) since free(NULL) is just fine.
ok hshoexer@
|
#
94b319d3 |
| 03-Mar-2007 |
cloder <cloder@openbsd.org> |
keynote_cert_obtain should not leak in case of error. OK moritz@
|
#
b5b3e571 |
| 17-Jun-2006 |
hshoexer <hshoexer@openbsd.org> |
Do not leak file descriptor in error path. From Andrey Matveev <evol at online dot ptt dot ru>, thanks!
|
#
e9cbd6b9 |
| 14-Nov-2005 |
deraadt <deraadt@openbsd.org> |
use snprintf; ok cloder. also looked at by a few other people
|
#
0d57c490 |
| 14-Jun-2005 |
hshoexer <hshoexer@openbsd.org> |
add ENCAP_UDP_{TUNNEL,TRANSPORT} types according to rfc 3947
ok markus
|
#
e789a0db |
| 08-Apr-2005 |
cloder <cloder@openbsd.org> |
Make deterministic randomness (only ever used for testing) a compile-time option. Reduces chances of somehow setting regrand when it's not supposed to be set. Remove "-r" option from man page. Als
Make deterministic randomness (only ever used for testing) a compile-time option. Reduces chances of somehow setting regrand when it's not supposed to be set. Remove "-r" option from man page. Also xref certpatch(8) while we are in there. And remove some include sysdep.h where it is no longer needed. OK hshoexer
show more ...
|
#
df39db00 |
| 08-Apr-2005 |
deraadt <deraadt@openbsd.org> |
we have IPPROTO_ETHERIP
|
#
e08f7a80 |
| 08-Apr-2005 |
deraadt <deraadt@openbsd.org> |
nat-traversal always
|
#
9d6bd3cf |
| 06-Apr-2005 |
deraadt <deraadt@openbsd.org> |
knf, ok cloder
|
#
8cd03bd8 |
| 04-Apr-2005 |
deraadt <deraadt@openbsd.org> |
spacing; ok cloder
|
#
e340c8ba |
| 03-Mar-2005 |
hshoexer <hshoexer@openbsd.org> |
handle return value of snprintf more carefully
ok cloder ho
|
#
0dc10397 |
| 27-Feb-2005 |
hshoexer <hshoexer@openbsd.org> |
where possible, use bzero instead of memset
ok cloder henning
|