Browse source

Changelog

Query
From:
To:
Branch:
Path:
Message:
BugID:
User: +
Format:
: 9 checkins (+132/-92) by 2 people : 8 checkins (+196/-136) by 2 people : 1 checkin (+10/-4) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 4 checkins (+35/-23) by 2 people : 20 checkins (+550/-298) by 2 people : 39 checkins (+1322/-282) by 3 people : 17 checkins (+153/-215) by 2 people : 23 checkins (+307/-192) by 3 people : 8 checkins (+184/-33) by 2 people : 1 checkin (+26/-1) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 1 checkin (+3/-2) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 6 checkins (+91/-15) by 2 people : 7 checkins (+204/-119) by 3 people : 1 checkin (+64/-0) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 1 checkin (+75/-86) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 1 checkin (+93/-121) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 8 checkins (+106/-2) by 2 people : 18 checkins (+94/-20) by 3 people : 10 checkins (+98/-32) by 2 people : 12 checkins (+108/-82) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 13 checkins (+88/-44) by 3 people : 15 checkins (+156/-390) by 3 people : 6 checkins (+118/-59) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 23 checkins (+168/-106) by 3 people : 19 checkins (+332/-177) by 3 people : 58 checkins (+948/-406) by 2 people : 5 checkins (+26/-4) by 2 people : 30 checkins (+1227/-84) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 22 checkins (+573/-56) by 2 people : 23 checkins (+645/-20) by 2 people : 24 checkins (+337/-39) by 2 people : 16 checkins (+227/-126) by 4 people : 3 checkins (+6/-2) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 7 checkins (+60/-2) by Henrik Grubbström (Grubba) <grubba@grubba.org> : 25 checkins (+479/-225) by 4 people : 6 checkins (+316/-435) by 2 people : 12 checkins (+127/-171) by 2 people : 5 checkins (+246/-99) by 2 people : 45 checkins (+1130/-888) by 2 people : 11 checkins (+258/-90) by 2 people Lines added/removed recently

Yesterday; Saturday 28 February 2015

2015-02-28 15:26:03 (18 hours ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Multisets: Fixed some warnings.

This gets rid of some warnings about type-punned pointers
when casting union msnode * to struct rb_node_hdr * by
adding struct rb_node_hdr to the union nsnode.

2015-02-28 14:19:04 (19 hours ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Fixed a few warnings.
Odbc: Fixed a few warnings.

2015-02-28 13:58:26 (19 hours ago) by Arne Goedeke <el@laramies.com>

Stdio.File()->set_buffer_mode: set the correct write cb

Setting this to __fd_set_output in the out buffer results in
Stdio.File()->write() being called with (some) of the buffer content,
which will in turn be readded to the out buffer. This can lead to data
being written to the socket in the wrong order.
Testsuite: added a socket test in buffer mode

This test currently does not terminate. Also replaced all constant
strings by random strings.
Testsuite: added test for SSL.File()->is_open() in blocking mode

It never returns.

2015-02-28 11:25:36 (22 hours ago) by Arne Goedeke <el@laramies.com>

Stdio.File()->set_buffer_mode: set the correct write cb

Setting this to __fd_set_output in the out buffer results in
Stdio.File()->write() being called with (some) of the buffer content,
which will in turn be readded to the out buffer. This can lead to data
being written to the socket in the wrong order.

2015-02-28 11:08:01 (22 hours ago) by Arne Goedeke <el@laramies.com>

Testsuite: added a socket test in buffer mode

This test currently does not terminate. Also replaced all constant
strings by random strings.

2015-02-28 11:02:58 (22 hours ago) by Arne Goedeke <el@laramies.com>

Testsuite: added test for SSL.File()->is_open() in blocking mode

It never returns.

Friday 27 February 2015

2015-02-27 21:41:09 (1 day ago) by Martin Nilsson <nilsson@opera.com>

Checked in a bit too much.

2015-02-27 18:41:29 (2 days ago) by Martin Nilsson <nilsson@opera.com>

release number bumped to 8.0.38 by export.pike
release number bumped to 8.0.39 by export.pike

2015-02-27 18:31:31 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Update year.
Added #pike generation.
Update year.
Added #pike generation.

2015-02-27 18:10:14 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Autodoc fix.

2015-02-27 17:49:39 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Allow verify_certificate_chain to have certificate objects in its chain argument.

2015-02-27 17:32:47 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Move verification code to more appropriate places.

2015-02-27 17:16:21 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Whitespace changes.

2015-02-27 17:13:08 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Use the .PKCS.Signature.Signed accessors instead of indexing raw ASN.1.

2015-02-27 17:04:18 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Fix bug for empty PEM certificates.
BSON module can't be dumped.

2015-02-27 16:50:18 (2 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Postgres: Improved error message.

Thanks to Petter Larsson <petterl@home.se> for the suggestion.

Fixes [bug 3107].
Postgres: Improved error message.

Thanks to Petter Larsson <petterl@home.se> for the suggestion.

Fixes [bug 3107].
Postgres: Improved error message.

Thanks to Petter Larsson <petterl@home.se> for the suggestion.

Fixes [bug 3107].

2015-02-27 16:11:19 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Fix for Nettle without ECC
Fix for Nettle without ECC

2015-02-27 15:29:22 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Remove trailing white spaces.

2015-02-27 15:27:16 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Remove files deprecated in 7.8

2015-02-27 14:52:26 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Whitespace changes.

2015-02-27 14:51:51 (2 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Postgres: Fixed some reference-counting issues.

Each successful call (returning a result set) of big_query()
caused one reference to the connection object to be lost.

The result object would reference freed memory if the
connection object was destructed before it.

Potential fix for [bug 6464] (and probably others).
Postgres: Fixed some reference-counting issues.

Each successful call (returning a result set) of big_query()
caused one reference to the connection object to be lost.

The result object would reference freed memory if the
connection object was destructed before it.

Potential fix for [bug 6464] (and probably others).
Postgres: Fixed some reference-counting issues.

Each successful call (returning a result set) of big_query()
caused one reference to the connection object to be lost.

The result object would reference freed memory if the
connection object was destructed before it.

Potential fix for [bug 6464] (and probably others).

2015-02-27 14:35:47 (2 days ago) by Martin Nilsson <nilsson@opera.com>

Some simple Zip test cases.
Added protected on create and _sprintf
Fix negative seek.

2015-02-27 13:10:44 (2 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Filesystem.Tar: Survive existing paths with restricted permissions.

extract() now attempts to temporarily alter permissions for
existing directories and files if they are likely to cause
the extraction to fail.

The typical case is a write-protected directory or file in a tar
file which is extracted on top of an earlier extraction. This
earlier caused extract() to fail with "Failed to create \"xx\":
Permission denied." or similar.

Fixes [bug 7350].

Thursday 26 February 2015

2015-02-26 17:47:17 (3 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Filesystem.Tar: Survive existing paths with restricted permissions.

extract() now attempts to temporarily alter permissions for
existing directories and files if they are likely to cause
the extraction to fail.

The typical case is a write-protected directory or file in a tar
file which is extracted on top of an earlier extraction. This
earlier caused extract() to fail with "Failed to create \"xx\":
Permission denied." or similar.

Fixes [bug 7350].

2015-02-26 17:00:08 (3 days ago) by Martin Nilsson <nilsson@opera.com>

Move certificate selection to a different function.

2015-02-26 15:51:52 (3 days ago) by Martin Nilsson <nilsson@opera.com>

Properly handle curve points formatted with the wrong encoding (as in first sending an fatal alert before closing).

Wednesday 25 February 2015

2015-02-25 19:05:59 (4 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: Fixed debug message.

2015-02-25 17:25:06 (4 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Forward ported push_numeric() from Pike 7.8.

push_numeric() used APIs that are only available in Pike 8.1 and later.

Fixes compilation errors.

2015-02-25 02:10:59 (4 days ago) by Martin Nilsson <nilsson@opera.com>

Rename id to session_id.
Abstract the fatal alerts a bit.

2015-02-25 01:53:49 (4 days ago) by Martin Nilsson <nilsson@opera.com>

Moved common preprocesor defines to tls.h

Tuesday 24 February 2015

2015-02-24 23:22:20 (4 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ClientConnection: Improved handling of version upgrades.

Send an ALERT_protocol_version if the server attempts a higher
protocol version than we asked for (instead of silently down-
grading to the original version).

2015-02-24 23:19:05 (4 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ClientConnection: Improved handling of version upgrades.

Send an ALERT_protocol_version if the server attempts a higher
protocol version than we asked for (instead of silently down-
grading to the original version).

2015-02-24 17:49:30 (5 days ago) by Martin Nilsson <nilsson@opera.com>

Abstract the fatal alerts a bit.

2015-02-24 03:51:42 (5 days ago) by Martin Nilsson <nilsson@opera.com>

Update some draft references.

Monday 23 February 2015

2015-02-23 18:30:31 (6 days ago) by Martin Nilsson <nilsson@opera.com>

Use the full ECC mask for the post filtering of certificate chains.

2015-02-23 17:50:52 (6 days ago) by Martin Nilsson <nilsson@opera.com>

Null ciphers are still allowed in TLS 1.1, it's just null_with_null_null that is forbidden.

2015-02-23 17:05:08 (6 days ago) by Martin Nilsson <nilsson@opera.com>

Fortuna.random_string(): No need to allocate more than the final string, as we only copy as many bytes from the last block as we need.

2015-02-23 16:37:29 (6 days ago) by Martin Nilsson <nilsson@opera.com>

RSA PSK now works.

2015-02-23 16:23:41 (6 days ago) by Arne Goedeke <el@laramies.com>

Stdio.Buffer: trigger write cb when adding to empty buffer

When the buffer was empty and a new string was added to it,
the write callback was not triggered.

2015-02-23 16:18:28 (6 days ago) by Marcus Wellhardh <wellhardh@roxen.com>

release number bumped to 923 by export.pike
release number bumped to 922 by export.pike

2015-02-23 15:25:49 (6 days ago) by Arne Goedeke <el@laramies.com>

Stdio.Buffer: trigger write cb when adding to empty buffer

When the buffer was empty and a new string was added to it,
the write callback was not triggered.

2015-02-23 15:02:37 (6 days ago) by Martin Nilsson <nilsson@opera.com>

Move some variable checks closer to where the data is parsed, in particular the cipher_len check to before it is used. Renamed id to session_id.

2015-02-23 14:54:12 (6 days ago) by Martin Nilsson <nilsson@opera.com>

Small cleanup.
Fix so that it is possible to connect with PSK and DHE PSK to a server with certificates.
Test case for PSK and DHE PSK against server with RSA certificate.

2015-02-23 14:53:52 (6 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Java [NT]: Improved dll-search for jvm.

In some installations "HKCU\SOFTWARE\JavaSoft\Java Runtime Environment"
exists but doesn't contain a JVM, so retry with the corresponding HKLM
key in that case.

Fixes testsuite issue in Roxen's build farm.
Java [NT]: Improved dll-search for jvm.

In some installations "HKCU\SOFTWARE\JavaSoft\Java Runtime Environment"
exists but doesn't contain a JVM, so retry with the corresponding HKLM
key in that case.

Fixes testsuite issue in Roxen's build farm.
Java [NT]: Improved dll-search for jvm.

In some installations "HKCU\SOFTWARE\JavaSoft\Java Runtime Environment"
exists but doesn't contain a JVM, so retry with the corresponding HKLM
key in that case.

Fixes testsuite issue in Roxen's build farm.

2015-02-23 14:04:49 (6 days ago) by Martin Nilsson <nilsson@opera.com>

Remove all ECC from KE mask when no common curves were found.

2015-02-23 13:41:19 (6 days ago) by Martin Nilsson <nilsson@opera.com>

We already filter out ECC suites in Session, so no need to do that in ServerConnection as well. Moved point format check.

2015-02-23 13:27:39 (6 days ago) by Martin Nilsson <nilsson@opera.com>

Added cpp gaurds for SHA384 (Added in Nettle 2.1)

Sunday 22 February 2015

2015-02-22 19:37:49 (7 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL: Implemented EXTENSION_extended_master_secret.

2015-02-22 19:29:20 (7 days ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ServerConnection: Prepare for EXTENSION_extended_master_secret.

This makes sure that handshake_messages isn't altered for
HANDSHAKE_client_key_exchange until after the master secret
is generated.

Saturday 21 February 2015

2015-02-21 14:03:26 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL: Added note about draft-ietf-tls-session-hash.
SSL: Updated the TLS 1.3 draft to version 04.

2015-02-21 14:00:26 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL: Prohibit RC4 is now RFC 7465.

Friday 20 February 2015

2015-02-20 17:31:49 (1 week ago) by Per Hedbor <ph@opera.com>

Fixed optimization of X = X+y again.

The softcast that is automatically installed by the "+=" style
operators caused the optimization to be disabled.
Fixed optimization of X = X+y again.

The softcast that is automatically installed by the "+=" style
operators caused the optimization to be disabled.

2015-02-20 17:28:04 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Stop after finding the first compatible cipher suite. No need to validate all of them.

2015-02-20 14:13:05 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Fix for the RSA padding check.

2015-02-20 13:24:30 (1 week ago) by Marcus Wellhardh <wellhardh@roxen.com>

release number bumped to 921 by export.pike
release number bumped to 920 by export.pike

2015-02-20 12:38:32 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Push an INT64 instead of a SQLBIGINT.

They're usually the same, but in some circumstances the latter
may be a struct of the same size.

Fixes compilation issues on RHEL 5/x86.
Odbc: Push an INT64 instead of a SQLBIGINT.

They're usually the same, but in some circumstances the latter
may be a struct of the same size.

Fixes compilation issues on RHEL 5/x86.

2015-02-20 12:36:21 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Push an INT64 instead of a SQLBIGINT.

They're usually the same, but in some circumstances the latter
may be a struct of the same size.

Fixes compilation issues on RHEL 5/x86.

2015-02-20 12:28:14 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Use the typedefs instead of the struct tags.

The <sqltypes.h> header file doesn't declare struct tagSQLGUID
when GUID_DEFINED is defined, so use the typedef instead.

Do the same for the rest of the related structs just in case.

Fixes compilation on NT.
Odbc: Use the typedefs instead of the struct tags.

The <sqltypes.h> header file doesn't declare struct tagSQLGUID
when GUID_DEFINED is defined, so use the typedef instead.

Do the same for the rest of the related structs just in case.

Fixes compilation on NT.
Odbc: Use the typedefs instead of the struct tags.

The <sqltypes.h> header file doesn't declare struct tagSQLGUID
when GUID_DEFINED is defined, so use the typedef instead.

Do the same for the rest of the related structs just in case.

Fixes compilation on NT.

2015-02-20 09:59:31 (1 week ago) by Marcus Wellhardh <wellhardh@roxen.com>

release number bumped to 919 by export.pike
release number bumped to 918 by export.pike

2015-02-20 03:39:40 (1 week ago) by Martin Nilsson <nilsson@opera.com>

PSK is implemented, except for ECDHE and RSA.

2015-02-20 03:33:09 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Implemented RSA PSK key exchange. select_cipher_suite() in Session however requires a rewrite to work with these suites.

Thursday 19 February 2015

2015-02-19 18:57:30 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Stdio.Sendfile: Don't attempt nonblocking I/O on plain files.

Potential fix for "This file does not support nonblocking operation."
in Stdio.Sendfile->writer_done().
Stdio.Sendfile: Don't attempt nonblocking I/O on plain files.

Potential fix for "This file does not support nonblocking operation."
in Stdio.Sendfile->writer_done().

2015-02-19 18:53:31 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Stdio.Sendfile: Don't attempt nonblocking I/O on plain files.

Potential fix for "This file does not support nonblocking operation."
in Stdio.Sendfile->writer_done().

2015-02-19 18:22:04 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added some more space for decimal values.

Floating point and fixed point values needed additional space
for the leading zero and decimal characters.
Odbc: Added some more space for decimal values.

Floating point and fixed point values needed additional space
for the leading zero and decimal characters.

2015-02-19 18:19:00 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added some more space for decimal values.

Floating point and fixed point values needed additional space
for the leading zero and decimal characters.

2015-02-19 18:13:10 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL: Survive without Camellia and GCM.

2015-02-19 17:27:20 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Documentation of CIPHER_SUITES
Ops.

2015-02-19 17:17:17 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Added support for DHE PSK.

2015-02-19 16:29:27 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Return appropriate alert if key id or hint was not recognized.

2015-02-19 16:24:49 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Return appropriate alert if key id or hint was not recognized.

2015-02-19 15:53:32 (1 week ago) by Martin Nilsson <nilsson@opera.com>

Removed stray debug.
Testcases for PSK.
Some documentation. Perhaps we want to move all this to an abstract class PSKContext?
Suite definitions for PSK suites.

2015-02-19 13:45:32 (1 week ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Compiler [amd64]: Fix bug in F_FOREACH.

The initial foreach counter may be set to non-zero when foreach goes
over a ranged array. If the initial foreach counter is larger than
the size of the array F_FOREACH started indexing outside the array.

Fixes [bug 7426].

FIXME: Is there a corresponding problem with negative ranges?
Compiler [amd64]: Fix bug in F_FOREACH.

The initial foreach counter may be set to non-zero when foreach goes
over a ranged array. If the initial foreach counter is larger than
the size of the array F_FOREACH started indexing outside the array.

Fixes [bug 7426].

FIXME: Is there a corresponding problem with negative ranges?

Wednesday 18 February 2015

2015-02-18 18:37:15 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

Support for plain PSK.

2015-02-18 17:57:02 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

Fixed so that anonymous mode actually works.

2015-02-18 17:26:05 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

Improve the locality in client hello a bit.
KE_psk and KE_dhe_psk also doesn't need a certificate.

2015-02-18 14:26:41 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about UUID values.
Odbc: big_typed_query() now knows about UUID values.
Odbc: big_typed_query() now knows about UUID values.

2015-02-18 14:18:32 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about time values.
Odbc: big_typed_query() now knows about time values.
Odbc: big_typed_query() now knows about time values.

2015-02-18 12:16:58 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about timestamps and dates.
Odbc: big_typed_query() now knows about timestamps and dates.
Odbc: big_typed_query() now knows about timestamps and dates.

Tuesday 17 February 2015

2015-02-17 17:30:40 (2 weeks ago) by Tobias S. Josefowitz <tobij@tobij.de>

Stdio.exece(): Don't give away refs to members from the env mapping

Because it's not too good in the case we fail to exec(), at least.
Stdio.exece(): Don't give away refs to members from the env mapping

Because it's not too good in the case we fail to exec(), at least.
Stdio.exece(): Don't give away refs to members from the env mapping

Because it's not too good in the case we fail to exec(), at least.

Conflicts:
src/modules/files/efuns.c

2015-02-17 16:04:00 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about numeric/decimal values.
Bignums: get_auto_bignum_program{,_or_zero}() now actually work...

program_from_function() wants an svalue that contains a function,
but the auto_bignum_program svalue typically contains a program...

2015-02-17 15:16:49 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about numeric/decimal values.

2015-02-17 15:06:49 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about numeric/decimal values.

2015-02-17 11:40:28 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Code cleanup in typed_result()->fetch_row().
Odbc: Code cleanup in typed_result()->fetch_row().
Odbc: Code cleanup in typed_result()->fetch_row().

2015-02-17 11:26:54 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about floating point values.
Odbc: big_typed_query() now knows about floating point values.

2015-02-17 11:24:28 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about floating point values.

2015-02-17 11:20:52 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about integer types.
Odbc: big_typed_query() now knows about integer types.

2015-02-17 11:18:06 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: big_typed_query() now knows about integer types.

Monday 16 February 2015

2015-02-16 16:58:23 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added support for value factories.

Adds some more fields to struct field_info.

These are intended to be used to convert binary data from
the SQL server to appropriate values to in turn be returned
by typed_result()->fetch_row().
Odbc: Added support for value factories.

Adds some more fields to struct field_info.

These are intended to be used to convert binary data from
the SQL server to appropriate values to in turn be returned
by typed_result()->fetch_row().

2015-02-16 16:53:42 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added support for value factories.

Adds some more fields to struct field_info.

These are intended to be used to convert binary data from
the SQL server to appropriate values to in turn be returned
by typed_result()->fetch_row().

2015-02-16 16:48:37 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Default the field type to SQL_C_CHAR in odbc_fix_fields().

This allows for removing the fix-up loop at the end of odbc_fix_fields().
Odbc: Default the field type to SQL_C_CHAR in odbc_fix_fields().

This allows for removing the fix-up loop at the end of odbc_fix_fields().

2015-02-16 16:43:38 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Default the field type to SQL_C_CHAR in odbc_fix_fields().

This allows for removing the fix-up loop at the end of odbc_fix_fields().

2015-02-16 14:12:32 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: typed_result->fetch_row() now returns Val.null for NULL.

2015-02-16 14:10:18 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: typed_result->fetch_row() now returns Val.null for NULL.

2015-02-16 14:07:47 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: typed_result->fetch_row() now returns Val.null for NULL.

2015-02-16 13:53:31 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Emulate bindings in big_typed_query().
Odbc: Emulate bindings in big_typed_query().
Odbc: Emulate bindings in big_typed_query().

2015-02-16 13:50:04 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added big_typed_query().

Note that the typed_result objects that this function returns
still behave as the untyped result objects. This will be fixed
soon.
Odbc: Added big_typed_query().

Note that the typed_result objects that this function returns
still behave as the untyped result objects. This will be fixed
soon.

2015-02-16 13:46:44 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added big_typed_query().

Note that the typed_result objects that this function returns
still behave as the untyped result objects. This will be fixed
soon.

2015-02-16 13:42:37 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added typed_result.

This class will be used to implement {,big_}typed_query().
Odbc: Added typed_result.

This class will be used to implement {,big_}typed_query().

2015-02-16 13:39:29 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Odbc: Added typed_result.

This class will be used to implement {,big_}typed_query().

Sunday 15 February 2015

2015-02-15 22:17:06 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

No need to use Crypto.Random here
Added _sprintf.

2015-02-15 12:50:38 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Postgres: Fixed some compilation warnings.

2015-02-15 12:47:56 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Compat: Fixed 8.0::Protocols.HTTP.

Inheriting a directory module is not a good idea...

2015-02-15 12:20:34 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Compat: Compat with 7.8 is based on compat for 8.0.

Also makes sure that 7.8::master() returns the 7.8-compatibility
master object.

Saturday 14 February 2015

2015-02-14 13:03:10 (2 weeks ago) by Arne Goedeke <el@laramies.com>

Testsuite: test ++ and -- on UNDEFINED
Interpreter: fix handling of UNDEFINED in ++ and --

This is done by always using the slow path for integer 0, which could be
undefined. It would be nicer to have a svalue equivalent to
get_pointer_if_this_type to check the subtype, but not all lvalues are
svalues, so that wont work, either.
Interpreter: fix handling of UNDEFINED in ++ and --

This is done by always using the slow path for integer 0, which could be
undefined. It would be nicer to have a svalue equivalent to
get_pointer_if_this_type to check the subtype, but not all lvalues are
svalues, so that wont work, either.
Testsuite: test ++ and -- on UNDEFINED

2015-02-14 12:42:49 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Crypto.ECC.Curve.Point: Added LFUN::_equal().

It is now possible to compare ECC points with predef::equal().

2015-02-14 12:21:17 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Sql.tds: Added some missing TDS_CONV_WERRORs.
Sql.tds: Added some missing TDS_CONV_WERRORs.

2015-02-14 11:49:38 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Updated to tzdata2015a.
Updated to tzdata2015a.
Updated to tzdata2015a.

Friday 13 February 2015

2015-02-13 17:45:19 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

Added method to determine hamming distance between two numbers.

2015-02-13 17:29:14 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Got rid of temporary arrays in odbc_fix_fields().

This reduces the complexity of the code somewhat, and
allows for adding more stuff to struct field_info.
ODBC: Got rid of temporary arrays in odbc_fix_fields().

This reduces the complexity of the code somewhat, and
allows for adding more stuff to struct field_info.

2015-02-13 17:22:18 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Got rid of temporary arrays in odbc_fix_fields().

This reduces the complexity of the code somewhat, and
allows for adding more stuff to struct field_info.

2015-02-13 16:40:17 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

Leave upper case digits out of the API.

2015-02-13 16:37:07 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

Fix size() to work with bases 37..62 and -256.
Enable initialization of base 37..62 when running GMP 5.0 or later.
Support 37.62 in digits()

2015-02-13 16:18:37 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: odbc_fix_fields() now knows about the remaining SQL_SS_* types.
ODBC: odbc_fix_fields() now knows about the remaining SQL_SS_* types.

2015-02-13 16:16:17 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: odbc_fix_fields() now knows about the remaining SQL_SS_* types.

2015-02-13 14:49:20 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

GMP 5.0 added support for 0b and 0B as prefix for binary numbers.

2015-02-13 14:30:32 (2 weeks ago) by Martin Karlgren <marty@roxen.com>

release number bumped to 917 by export.pike
release number bumped to 916 by export.pike

Thursday 12 February 2015

2015-02-12 18:14:00 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: odbc_fix_fields() now knows about SQL_SS_UDT.
ODBC: odbc_fix_fields() now knows about SQL_SS_UDT.
ODBC: odbc_fix_fields() now knows about SQL_SS_UDT.

2015-02-12 18:08:22 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: odbc_fix_fields() now knows about SQL_GUID.
ODBC: odbc_fix_fields() now knows about SQL_GUID.
ODBC: odbc_fix_fields() now knows about SQL_GUID.

2015-02-12 18:02:21 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Odbc.odbc_result is now Odbc.odbc.result.

This allows for overloading of the result class, and is in preparation
for implementing big_typed_query().
ODBC: Odbc.odbc_result is now Odbc.odbc.result.

This allows for overloading of the result class, and is in preparation
for implementing big_typed_query().

2015-02-12 18:00:10 (2 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Odbc.odbc_result is now Odbc.odbc.result.

This allows for overloading of the result class, and is in preparation
for implementing big_typed_query().

2015-02-12 13:46:07 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

Some more simplifications.

2015-02-12 12:55:29 (2 weeks ago) by Martin Nilsson <nilsson@opera.com>

A few simplifications.
Enabled now working utf-8 test.

2015-02-12 09:20:55 (2 weeks ago) by Marcus Agehall <agehall@gmail.com>

Added UTF-8 decoding of indices in BSON structures.
Added UTF-8 decoding of indices in BSON structures.

Wednesday 11 February 2015

2015-02-11 15:40:15 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Gmp.mpz: Support import/export from reversed network byte order.

2015-02-11 15:35:12 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Gmp.mpz: Support import/export from reversed network byte order.

2015-02-11 15:31:43 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Gmp.mpz: Support import/export from reversed network byte order.

Tuesday 10 February 2015

2015-02-10 17:42:59 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Unifdef SQL_WCHAR.

SQL_WCHAR has been available in all ODBC implementations
for the last 10 years.

2015-02-10 17:38:01 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Unifdef SQL_WCHAR.

SQL_WCHAR has been available in all ODBC implementations
for the last 10 years.
ODBC: Unifdef SQL_WCHAR.

SQL_WCHAR has been available in all ODBC implementations
for the last 10 years.

2015-02-10 17:08:57 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Compiler: Documented a few more #pragmas.
Compiler: Improved output for #pragma disassemble.

2015-02-10 17:02:57 (3 weeks ago) by Martin Nilsson <nilsson@opera.com>

Added some basic and spotty tests.
Don't silently accept objects that can't be encoded.

2015-02-10 11:04:08 (3 weeks ago) by Arne Goedeke <el@laramies.com>

Protocols.HTTP.Query: make sure connections are in nonblocking mode

When connections are reused (either Stdio.File or SSL.File) they are
initially in blocking mode. Make sure to switch the file object to
nonblocking mode before calling is_open().
Protocols.HTTP.Query: make sure connections are in nonblocking mode

When connections are reused (either Stdio.File or SSL.File) they are
initially in blocking mode. Make sure to switch the file object to
nonblocking mode before calling is_open().

Monday 09 February 2015

2015-02-09 15:04:06 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Fixed typo in comment.
ODBC: Fixed typo in comment.
ODBC: Fixed typo in comment.

2015-02-09 14:59:28 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SQL.tds: Fixed support for fetching negative NUMERIC and DECIMAL.
SQL.tds: Fixed support for fetching negative NUMERIC and DECIMAL.
SQL.tds: Fixed support for fetching negative NUMERIC and DECIMAL.

2015-02-09 14:56:57 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ODBC: Allow space for a sign character in numeric fields.

Fixes failure to fetch negative values in MSSQL NUMERIC(1,0) fields.
ODBC: Allow space for a sign character in numeric fields.

Fixes failure to fetch negative values in MSSQL NUMERIC(1,0) fields.
ODBC: Allow space for a sign character in numeric fields.

Fixes failure to fetch negative values in MSSQL NUMERIC(1,0) fields.

2015-02-09 14:19:33 (3 weeks ago) by Martin Nilsson <nilsson@opera.com>

Use side channel silent powm.
Use side channel silent powm.

2015-02-09 11:07:41 (3 weeks ago) by Martin Karlgren <marty@roxen.com>

Filesystem.Monitor: Add way to treat files as immediately stable.

Sunday 08 February 2015

2015-02-08 20:37:05 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Runtime: o_append_mapping() now cares about setters.

Fixes testsuite test of F_APPEND_MAPPING.
Interpreter: object_index_no_free() et al now return the type.
Interpreter: lvalue_to_svalue_no_free() now returns the type of lvalue.

2015-02-08 20:27:58 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Runtime: o_append_mapping() now cares about setters.

Fixes testsuite test of F_APPEND_MAPPING.

2015-02-08 20:13:30 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Interpreter: object_index_no_free() et al now return the type.

2015-02-08 19:58:48 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Interpreter: lvalue_to_svalue_no_free() now returns the type of lvalue.

Saturday 07 February 2015

2015-02-07 14:02:49 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Optimizer: Handle more cases of CLEAR_{,N_}LOCAL.

This improves the code generated by the previous commit.
Compiler: Clear local variables on pop.

Local variables may get reused after pop, and such code expects
getting clean variables. This also reduces the lifetime for
various locks and similar to the expected range.

Note that this reduces the quality of the generated code somewhat.

2015-02-07 14:00:26 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Optimizer: Handle more cases of CLEAR_{,N_}LOCAL.

This improves the code generated by the previous commit.

2015-02-07 13:55:19 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Compiler: Clear local variables on pop.

Local variables may get reused after pop, and such code expects
getting clean variables. This also reduces the lifetime for
various locks and similar to the expected range.

Note that this reduces the quality of the generated code somewhat.

2015-02-07 12:21:09 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Nettle.ECC_Curve: Survive old versions of Nettle.

Thanks to Chris Angelico <rosuav@gmail.com> for the report.

2015-02-07 02:24:23 (3 weeks ago) by Chris Angelico <rosuav@gmail.com>

Survive lack of nettle/ecdsa.h

Macro definitions inside the guard block were being used outside it,
and thus failing in the absence of that header.

Friday 06 February 2015

2015-02-06 21:33:30 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Compiler: Fixed over-optimization of initialization to false.

This optimization may only be done when the value being assigned
actually is a zero.

Also adds a corresponding diagnostic.
Testsuite: Fixed typo in test of __INIT with zero.

2015-02-06 21:28:38 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Compiler: Fixed over-optimization of initialization to false.

This optimization may only be done when the value being assigned
actually is a zero.

Also adds a corresponding diagnostic.

2015-02-06 21:25:45 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Testsuite: Fixed typo in test of __INIT with zero.

2015-02-06 18:01:09 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Sql.tds: Added support for SYBFLTN.

This is the type used by MSSQL for fields declared "float" or "real".
Sql.tds: Added support for SYBFLTN.

This is the type used by MSSQL for fields declared "float" or "real".
Sql.tds: Added support for SYBFLTN.

This is the type used by MSSQL for fields declared "float" or "real".

2015-02-06 17:58:21 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Sql.tds: Added support for SYBUNIQUE.

This is the type used by MSSQL for fields declared "uniqueidentifier".
Sql.tds: Added support for SYBUNIQUE.

This is the type used by MSSQL for fields declared "uniqueidentifier".
Sql.tds: Added support for SYBUNIQUE.

This is the type used by MSSQL for fields declared "uniqueidentifier".

2015-02-06 17:54:51 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Sql.tds: Added support for SYBDECIMAL.

This is the type used by MSSQL for fields declared "decimal".
Sql.tds: Added support for SYBDECIMAL.

This is the type used by MSSQL for fields declared "decimal".
Sql.tds: Added support for SYBDECIMAL.

This is the type used by MSSQL for fields declared "decimal".

2015-02-06 15:34:56 (3 weeks ago) by Arne Goedeke <el@laramies.com>

Testsuite: initialization bug

Variables which are initialized with objects that are logically false,
end up being 0. This happens for instance whith Val.null and Val.false.
Testsuite: initialization bug

Variables which are initialized with objects that are logically false,
end up being 0. This happens for instance whith Val.null and Val.false.

2015-02-06 14:20:17 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Session: reusable_as() now looks at ffdhe_groups too.

2015-02-06 12:10:58 (3 weeks ago) by Chris Angelico <rosuav@gmail.com>

Oops, pushed too soon... fix typo in previous commit
Use callablep() rather than functionp() for Process.run() redirection

Thursday 05 February 2015

2015-02-05 12:26:20 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ZXID: Survive zxid from before 20121020-142800.

The number of arguments to zxid_parse_cgi() changed in version
20121020-142800.

2015-02-05 12:24:15 (3 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

ZXID: Survive zxid from before 20121020-142800.

The number of arguments to zxid_parse_cgi() changed in version
20121020-142800.

2015-02-05 09:27:11 (3 weeks ago) by Martin Karlgren <marty@roxen.com>

release number bumped to 8.0.37 by export.pike
release number bumped to 8.0.36 by export.pike

Wednesday 04 February 2015

2015-02-04 18:01:27 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: KeyExchangeECDH now uses init_{server,client}().

Reverses the inheritance order for KeyExchangeECDH and KeyExchangeECDHE
to reduce the code complexity a bit.

Tuesday 03 February 2015

2015-02-03 19:14:29 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: Merged DHKeyExchange into KeyExchangeDHE.

This removes one layer of indirection, and reduces name confusion.

Monday 02 February 2015

2015-02-02 14:44:05 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Context: get_suites() now also filters on the version range.

Sunday 01 February 2015

2015-02-01 23:57:02 (4 weeks ago) by Martin Nilsson <nilsson@opera.com>

Verify that the algorithm identifiers match in the certificate.

2015-02-01 16:45:30 (4 weeks ago) by Arne Goedeke <el@laramies.com>

Testsuite: added test for a regression

This worked fine before F_APPEND_MAPPING has been added.
Testsuite: added test for a regression

This worked fine before F_APPEND_MAPPING has been added.

2015-02-01 13:07:09 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: KeyExchangeDH now uses init_{server,client}().

Reverses the inheritance order for KeyExchangeDH and KeyExchangeDHE
to reduce the code complexity a bit.

2015-02-01 10:26:38 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher.KeyExchange: Added init_{client,server}().

Added separate initialization functions for key exchange on
client and server. These will later be used for certificate-
based key exchanges.

Saturday 31 January 2015

2015-01-31 17:13:24 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: Fixed some debug messages.

2015-01-31 13:57:54 (4 weeks ago) by Arne Goedeke <el@laramies.com>

Testsuite: added testcase for undefined variables in sscanf

The value of variables declared in sscanf calls is undefined if the
sscanf call does not actually happen. It is impossible to detect this at
compile time, so generating an error in cases where they are incorrectly
used is not an option. The behavior proposed by this testcase is to
always initialize them to UNDEFINED.

Thanks to Chris Angelico for bringing this issue up and providing a
testcase.
Testsuite: fixed syntax error

2015-01-31 13:46:58 (4 weeks ago) by Arne Goedeke <el@laramies.com>

Testsuite: added testcase for undefined variables in sscanf

The value of variables declared in sscanf calls is undefined if the
sscanf call does not actually happen. It is impossible to detect this at
compile time, so generating an error in cases where they are incorrectly
used is not an option. The behavior proposed by this testcase is to
always initialize them to UNDEFINED.

Thanks to Chris Angelico for bringing this issue up and providing a
testcase.
Testsuite: fixed syntax error

2015-01-31 12:41:57 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ServerConnection: Improved group selection for TLS 1.3.

Now uses the guidelines from RFC 3766 to select a suitable FFDHE group.

Selects the smallest available group that is large enough if possible,
and otherwise the largest available group.

The same algorithm is also used in the corresponding ECC code.

Friday 30 January 2015

2015-01-30 15:57:59 (4 weeks ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ServerConnection: Fixed broken debug message.

Thursday 29 January 2015

2015-01-29 14:27:37 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ClientConnection: Improve interoperability with stupid servers.

It seems there are many SSL/TLS servers out there that refuse packets
that have a higher version than the TLS version that they support.

There are also TLS servers that refuse packets that have version SSL 3.0.

Note that all of the above servers are in violation of RFC 5246 E.1:

Thus, TLS servers compliant with this specification MUST accept any
value {03,XX} as the record layer version number for ClientHello.

All ClientHello packets are now sent with packet version TLS 1.0 except
ClientHello SSL 3.0 which is sent with packet version SSL 3.0. All other
packets are sent with the negotiated version of SSL/TLS.

This should improve interoperability with the affected servers somewhat.

Wednesday 28 January 2015

2015-01-28 22:59:24 (1 month ago) by Arne Goedeke <el@laramies.com>

ADT.Bloom: doc typo

2015-01-28 22:43:39 (1 month ago) by Arne Goedeke <el@laramies.com>

ADT.Bloom: Added Bloom filter class for integers

2015-01-28 18:33:04 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Nettle.ECC_Curve: Survive Nettle 2.7.1.

ecc_bit_size() is a very new function in Nettle...

2015-01-28 18:30:21 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher.KeyExchange: Require server_key_exchange for {EC,}DHE.

Inspired by similar bug in LibreSSL.

2015-01-28 18:27:33 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher.KeyExchange: Require server_key_exchange for {EC,}DHE.

Inspired by similar bug in LibreSSL.

2015-01-28 17:28:57 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ServerConnection: No HANDSHAKE_client_key_exchange in TLS 1.3.

Tuesday 27 January 2015

2015-01-27 23:50:33 (1 month ago) by Martin Nilsson <nilsson@opera.com>

A bit more consistent use of H() and S().

2015-01-27 23:25:17 (1 month ago) by Martin Nilsson <nilsson@opera.com>

The low level API for curve selection only supported a subset of NIST curves. Change into a easier to use and easier to extend API in preparation for curve25519.

2015-01-27 23:24:06 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Crypto.ECC.Curve: Added LFUN::`==().

2015-01-27 21:40:26 (1 month ago) by Arne Goedeke <el@laramies.com>

gdb_backtraces: do not use Pike_sp

Pike_interpreter_pointer is not the correct one when printing the
stack of a thread, which is not swapped in. It can even be NULL, when
no thread is swapped in, which will lead to gdb_backtrace() to segfault.
This happens when debugging deadlock situations.
gdb_backtraces: do not use Pike_sp

Pike_interpreter_pointer is not the correct one when printing the
stack of a thread, which is not swapped in. It can even be NULL, when
no thread is swapped in, which will lead to gdb_backtrace() to segfault.
This happens when debugging deadlock situations.

2015-01-27 18:45:37 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Stop ASN.1 decoding client cert requests. It doesn't matter if it is legal ASN.1 or not, as we match it against DN of certs in the context later in send_certs. Illegal ASN.1 will simply not match anything and be ignored.

2015-01-27 18:35:28 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Fixed the fix.
Fixed an alert message.
Updated comment.
Verify client certificates against supported hash/sign algorithms.

2015-01-27 18:14:50 (1 month ago) by Arne Goedeke <el@laramies.com>

equal: allow comparing objects with getters

setters/getters are marked as variables with special run_time_type.
object_equal_p() did not handle that case and ended up calling
low_is_equal with type PIKE_T_GET_SET which would lead to a
fatal.

This change makes object_equal_p() ignore getters.
equal: allow comparing objects with getters

setters/getters are marked as variables with special run_time_type.
object_equal_p() did not handle that case and ended up calling
low_is_equal with type PIKE_T_GET_SET which would lead to a
fatal.

This change makes object_equal_p() ignore getters.

2015-01-27 16:56:09 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Fix for SSL 3

2015-01-27 16:41:47 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Send Buffer objects to got_client_key_exchange.

2015-01-27 16:09:15 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher.KeyExchange: Renamed function.

Renames server_key_exchange() to got_server_key_exchange()
to have a more consistent naming scheme.

2015-01-27 16:05:16 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Default to secp192r1 instead of escp521r1 to save computations. All curves are tested in the specific curve test.

Monday 26 January 2015

2015-01-26 20:24:39 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher.KeyExchange: Removed obsolete derive_master_secret().

This function is no longer used (SSL.Connection::derive_master_secret()
is used instead).

2015-01-26 17:56:48 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Use peer_public_key insteand of peer_certificate_chain to determine if we got any certificates.

2015-01-26 17:49:54 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Always check that the certifiate handshake packet is fully consumed. Don't decode certificates more than once.

2015-01-26 17:29:28 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Merge common certificate decoding code. No changes in behavior.

2015-01-26 16:34:24 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Added some const

2015-01-26 16:21:10 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Graphics.Graph.create_graph: Fixed legend color box border.

The bottom left corner was off by one pixel to the right.

Fixes [bug 1826].
Graphics.Graph.create_graph: Cleaned up some code.
Graphics.Graph.create_graph: Fixed legend color box border.

The bottom left corner was off by one pixel to the right.

Fixes [bug 1826].
Graphics.Graph.create_graph: Cleaned up some code.

2015-01-26 16:16:10 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Graphics.Graph.create_graph: Fixed legend color box border.

The bottom left corner was off by one pixel to the right.

Fixes [bug 1826].
Graphics.Graph.create_graph: Cleaned up some code.

Sunday 25 January 2015

2015-01-25 20:18:21 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: Fixed debug message.

2015-01-25 20:10:54 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher.KeyExchange: Changed API for client_key_exchange_packet().

It now returns the premaster secret, and fills in the
packet data in the provided buffer. This change allows
the corresponding function in SSL.ClientConnection to
use SSL.Connection.derive_master_secret().

2015-01-25 12:09:41 (1 month ago) by Arne Goedeke <el@laramies.com>

ADT.Bloom.Simple: byte order independent hashing for wide strings
ADT.Bloom.SValue: corrected comment
ADT.Bloom.Simple: use byte order independent hashing
add popcount32 and popcount64
siphash: make key and return value INT64
Added ADT.Bloom

Added several different Bloom filters. They all use the same base class
but differ in what keys they accept and how the hash functions are
constructed. Consult the documentation for more information.

Bloom filters can be faster than hash tables However, this speed
advantage is hard to get to from pike, due to the extra cost of
calling lfuns vs mapping lookups. Therefore, the only advantage
these bloom filters have over pike mappings is the much lower
memory footprint.
SipHash24: added byte order independent versions for wide strings

- the current siphash version does not know about wide strings, so
the hash value for wide strings depends on the byte order. added
versions for both 16 and 32 bit wide chars
- also replaced the manual little endian reading routines by the
get_unaligned_le64 macros, which generate much shorter code for
x86_64
- added siphash24_pike_string which will generate a byte order
independent hash value
- use siphash24_pike_string in ADT.Bloom.String

2015-01-25 02:33:56 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Changed curve() into get_curve() to be consistent with the other methods, and to properly mask the get_curve() in Nettle.ECC_Curve.ECDSA.

2015-01-25 02:31:10 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Changed curve() into get_curve() to be consistent with the other methods, and to properly mask the get_curve() in Nettle.ECC_Curve.ECDSA.

2015-01-25 02:17:14 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Move from pubx/puby to point.

2015-01-25 02:12:43 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Added some basic Point support.

2015-01-25 01:57:00 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Synchronize with latest FF-DHE draft.

2015-01-25 01:47:14 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Fixed testsuite after name changes. Added FFDHE2048 test case.

Saturday 24 January 2015

2015-01-24 15:42:35 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Testsuite [Nettle]: Updated to new ECC API.

FIXME: Crypto.ECC.Curve and Crypto.ECC.Curve.Point ought to
implement LFUN::_equal() and/or LFUN::`==().

2015-01-24 15:39:36 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Testsuite [Nettle]: Updated to new ECC API.

FIXME: Crypto.ECC.Curve and Crypto.ECC.Curve.Point ought to
implement LFUN::_equal() and/or LFUN::`==().

2015-01-24 15:31:11 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: Updated ECDH(E) key exchanges to new ECC API.

2015-01-24 15:21:55 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Nettle.ECC_Curve: Curve-multiplication now returns Points.

NB: This is not backward compatible with previous releases of Pike 8.0.
Nettle.ECC_Curve: Added some documentation.
__builtin.Nettle.ECC_Curve: Some indentation changes.
__builtin.Nettle.ECC_Curve.Point: Use parent reference to size().
__builtin.Nettle: Moved Point to ECC_Curve.Point.

This will allow for using parent references in ECC_Curve.Point.

2015-01-24 15:19:59 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Bugfixes and support for serialization.
A surgical introduction of the ECC Point object. What really should happen is that ECC Curve operations generate Point objects instead of gmp arrays. Then all x/y variables should be replaced with Point objects in Cipher.
ECC_Curve.Point can now deserialize x9.62 curve points.

2015-01-24 15:19:58 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Nettle.ECC: Added initial implementation of Curve.Point.

This is to simplify handling of points on ECC curves.

Currently the code is sufficient to perform ECDSA, but
eg encode and decode would be nice.

TODO: Other code needs to be updated to accept Points.

2015-01-24 13:45:48 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.ServerConnection: Reduced code duplication somewhat.

All server-side derivation of the master secret is now done by
SSL.Connection::derive_master_secret().

2015-01-24 11:59:03 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher.KeyExchange: Introduced got_client_key_exchange().

Renames ke->server_derive_master_secret() to
ke->got_client_key_exchange(), and changes it
to return the premaster secret.

This will reduce the amount of code duplication soon.

Friday 23 January 2015

2015-01-23 16:35:17 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

SSL.Cipher: Updated ECDH(E) key exchanges to new ECC API.

2015-01-23 16:31:41 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Nettle.ECC_Curve: Curve-multiplication now returns Points.

NB: This is not backward compatible with current Pike 8.0.

2015-01-23 16:19:49 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Pad signature to the same size as the key.

2015-01-23 14:17:42 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Crypto.RandomString: Reduce entropy waste.

random_string() used to want as much entropy added as was extracted.
This had a tendency to cause frequent (expensive) reseeding for no
good reason. This patch changes the entropy estimates, and speeds up
random_string() about a factor 200.

Thursday 22 January 2015

2015-01-22 17:21:44 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Testsuite [SSL]: Use SSL.File instead of SSL.sslfile.

Also improved error handling on running out of fds.

Wednesday 21 January 2015

2015-01-21 20:32:39 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Nettle.ECC_Curve: Added some documentation.

2015-01-21 20:25:14 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

__builtin.Nettle.ECC_Curve: Some indentation changes.
__builtin.Nettle.ECC_Curve.Point: Use parent reference to size().

2015-01-21 20:19:03 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

__builtin.Nettle: Moved Point to ECC_Curve.Point.

This will allow for using parent references in ECC_Curve.Point.

2015-01-21 18:23:09 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Know about some primes in active use.

2015-01-21 17:10:22 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Testsuite [SSL]: Fixed the client certificate tests.

Tuesday 20 January 2015

2015-01-20 17:16:01 (1 month ago) by Henrik Grubbström (Grubba) <grubba@grubba.org>

Standards.PKCS.Signature: Added decode_signed().

2015-01-20 16:10:40 (1 month ago) by Martin Nilsson <nilsson@opera.com>

A surgical introduction of the ECC Point object. What really should happen is that ECC Curve operations generate Point objects instead of gmp arrays. Then all x/y variables should be replaced with Point objects in Cipher.

2015-01-20 15:13:11 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Bugfixes and support for serialization.

2015-01-20 14:15:15 (1 month ago) by Martin Nilsson <nilsson@opera.com>

ECC_Curve.Point can now deserialize x9.62 curve points.

2015-01-20 10:54:07 (1 month ago) by Martin Nilsson <nilsson@opera.com>

Line wrap comment.
Don't crash when q[d] is already cleared.

[permalink]

Bugs mentioned

  1826RESOLVEDDiagram module generates non-square boxes
  3107RESOLVEDPostgresql-module doesn't return error
  6464NEWpike segv using postgres driver
  7350ASSIGNEDRe-installing fails
  7426RESOLVEDforeach/array indexing bug
  916RESOLVEDThread.Fifo()->read_array() does not work
  922RESOLVEDSSI tags case sensitive
  923RESOLVEDhtaccess directives partly case sensitive
Bugs? Suggestions?