diff options
| author |   deraadt <deraadt@openbsd.org> | 2014-04-10 18:09:08 +0000 |
|---|---|---|
| committer | deraadt <deraadt@openbsd.org> | 2014-04-10 18:09:08 +0000 |
| commit | e4cbae70730082823bfee30aa277639ff22b10a7 (patch) | |
| tree | d5520a3e612d374cab2143ca2967e8fe24289aa9 | |
| parent | disable buf freelists. we'll see what happens next. (diff) | |
| download | wireguard-openbsd-e4cbae70730082823bfee30aa277639ff22b10a7.tar.xz wireguard-openbsd-e4cbae70730082823bfee30aa277639ff22b10a7.zip | |
Disable Segglemann's RFC520 hearbeat.
I am completely blown away that the same IETF that cannot efficiently
allocate needed protocol, service numbers, or other such things when
they are needed, can so quickly and easily rubber stamp the addition
of a 64K Covert Channel in a critical protocol. The organization
should look at itself very carefully, find out how this this happened,
and everyone who allowed this to happen on their watch should be
evicted from the decision making process. IETF, I don't trust you.
ok tedu markus
| -rw-r--r-- | lib/libssl/ssl/Makefile | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/libssl/ssl/Makefile b/lib/libssl/ssl/Makefile index ff511eb3393..194f1a3a74f 100644 --- a/lib/libssl/ssl/Makefile +++ b/lib/libssl/ssl/Makefile @@ -1,4 +1,4 @@ -# $OpenBSD: Makefile,v 1.28 2014/04/10 18:03:44 tedu Exp $ +# $OpenBSD: Makefile,v 1.29 2014/04/10 18:09:08 deraadt Exp $ LIB= ssl @@ -9,7 +9,7 @@ LSSL_SRC= ${.CURDIR}/../${SSLEAYDIST}/ssl CFLAGS+= -DTERMIOS -DANSI_SOURCE CFLAGS+= -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 CFLAGS+= -DOPENSSL_NO_SSL2 -CFLAGS+= -DOPENSSL_NO_BUF_FREELISTS +CFLAGS+= -DOPENSSL_NO_BUF_FREELISTS -DOPENSSL_NO_HEARTBEAT CFLAGS+= -I${.CURDIR}/../${SSLEAYDIST} -I${.CURDIR}/../${SSLEAYDIST}/crypto SRCS=\ |