summaryrefslogtreecommitdiff
path: root/lib/libc/crypt
AgeCommit message (Collapse)Author
2015-09-13Wrap <pwd.h> so that calls go direct and the symbols are all weak.Philip Guenther
Hide bcrypt_autorounds(), prefixing with an underbar for static builds.
2015-09-13The number of rounds is just two digits in the salt. We've alreadyTodd C. Miller
verified that they are there via isdigit() so we can convert from ASCII to an int without using atoi(). OK guenther@ deraadt@
2015-09-13Wrap <stdlib.h> so that calls go direct and the symbols not in thePhilip Guenther
C standard are all weak. Apply __{BEGIN,END}_HIDDEN_DECLS to gdtoa{,imp}.h, hiding the arch-specific __strtorx, __ULtox_D2A, __strtorQ, __ULtoQ_D2A symbols.
2015-09-12Wrap <unistd.h> so that internal calls go direct and they're all weak symbolsPhilip Guenther
Delete unused 'fd' argument from internal function oldttyname()
2015-09-11Wrap blowfish, sha*, md5, and rmd160 so that internal calls go directPhilip Guenther
ok deraadt@
2015-09-10Add support for building arc4random with MSVC.Brent Cook
By default, MSVC's stdlib.h defines min(), so we need to spell out something less common to avoid picking it up. ok deraadt@ beck@ miod@
2015-07-23call it bcrypt in the man page tooTed Unangst
2015-07-23permit "bcrypt" as an alias for "blowfish". this is, after all, whatTed Unangst
99% of the world calls it. allow just "bcrypt" without params to mean auto-tune ("bcrypt,a"). default remains 8 rounds (for now) ok deraadt
2015-07-18Unbreak, add errno headerJeremy Evans
OK tedu@
2015-07-18set errno in null cases, just in case.Ted Unangst
2015-07-18standards compliant error return (null). will make ruby happier, at least.Ted Unangst
ok deraadt jeremy
2015-05-13If crypt(3) is called with an unknown setting, return NULL insteadAlexander Bluhm
of some undefined value. OK tedu@
2015-04-06bludgeon DES support out of crypt. long live the bcrypt.Ted Unangst
2015-02-24we don't let strtonum errors bleed through now.Ted Unangst
2015-02-24Set errno to EINVAL, instead of letting ERANGE escape out.Ted Unangst
Printing strerror() in that case will say result too large, even if rounds is actually too small. invalid is less specific, but less incorrect. ok millert
2015-02-11use a width specifier for lists, and Sq rather than Dq for single lettersJason McIntyre
to avoid swamping it;
2015-02-11the possible algos for pref should be documented hereTed Unangst
2015-01-28dial the time back to about 0.1s, closer to the original targets andTed Unangst
friendlier for users. requested by deraadt
2015-01-16Move to the <limits.h> universe.Theo de Raadt
review by millert, binary checking process with doug, concept with guenther
2015-01-15remove unused variableCharles Longeau
ok tedu@
2015-01-15back in september I did the large abstraction refactoring to allow theseTheo de Raadt
other systems to fit into the same mold, so add copyright
2015-01-12rename blocks to words. bcrypt "blocks" are unrelated to blowfish blocks,Ted Unangst
nor are they the same size.
2015-01-07stupid me. need errno.hTed Unangst
2015-01-07set errno = EINVAL for invalid salts and hashes in most functions.Ted Unangst
remember to set EACCES in bcrypt_checkpass for hash differences. the higher level crypt_checkpass function will reset errno to EACCES in all cases, which is probably the right behavior, but this change gives code working with the lower level functions the correct errno if they care.
2015-01-05convert clock() to clock_gettime() for improved precision (and accuracy?)Ted Unangst
guenther suggested using thread time, which actually may improve accuracy if somebody puts this in a threaded program.
2014-12-30copy bcrypt autotune from encrypt(1) and expose via crypt_newhashTed Unangst
ok deraadt miod
2014-12-24simplify crypt_checkpass. The API promise is that this function doesn'tTed Unangst
use global data. The simplest fix is to only check blowfish passwords, and implicitly lock out DES passwords. crypt_checkpass is currently only used in one place, passwd, to verify the local user's password, so this is probably acceptable. Gives people a little more time to migrate away from DES before introduing checkpass into more places.
2014-12-08delete documentation for deleted DES interfacesTed Unangst
2014-12-08remove setkey and encrypt interfaces. they are useless and dangerous.Ted Unangst
ok deraadt naddy
2014-12-02macro cleanup; kaspars at bankovskis dot netIngo Schwarze
2014-11-25rand48(3) not drand48(3) to align with the actual man page and XrTodd C. Miller
entries.
2014-11-25no need for md5 xrTed Unangst
2014-11-25revert the bludgeoning of DES. if we need a thread safe crypt, maybe it'sTed Unangst
better to find one instead of continuing to mangle this mess.
2014-11-25push some global data down into functions to make this threadlier.Ted Unangst
only doing what's needed for crypt_hashpass. sigh.
2014-11-24introduce a hashspace define and check that there's enough space toTed Unangst
write out a hash. also simplify writing out the hash.
2014-11-24check crypt() for null. noticed by Jonas TermansenTed Unangst
2014-11-21space needed between macro args and punctuation;Jason McIntyre
2014-11-21add ERRORS, HISTORY, AUTHORS, Copyright year, and some missing macros;Ingo Schwarze
ok tedu@ on a previous version
2014-11-21Let crypt_checkpass() set EACCES after bcrypt_checkpass() failure;Ingo Schwarze
ok tedu@
2014-11-21change prototype for crypt_newhash. the login_cap_t is a holdover from itsTed Unangst
pwd_gensalt origins, but a string argument works equally work and is more friendly to consumers beyond local user accounts. ok deraadt
2014-11-20split crypt_checkpass off into a new fileTed Unangst
2014-11-18add crypt_newhash to NAME and add an MLINK;Jason McIntyre
2014-11-17add new function crypt_newhash to simplify creating new hashes.Ted Unangst
does most of the work pwd_gensalt did, but also creates the hash. (unused yet)
2014-07-21missing newlineTheo de Raadt
2014-07-20Move more OS-specific functionality to arc4random.h headers.bcook
Move <sys/mman.h> and raise(SIGKILL) calls to OS-specific headers. On OpenBSD, move thread_private.h as well to arc4random.h. On Windows, use TerminateProcess on getentropy failure. ok deraadt@
2014-07-20From ISO/IEC 9899:1999 and 9899:201x,Philip Guenther
6.11.5 - Storage-class specifiers: The placement of a storage-class specifier other than at the beginning of the declaration specifiers in a declaration is an obsolescent feature. Diff from Jean-Philippe Ouellet (jean-philippe (at) ouellet.biz)
2014-07-19arc4random re-seeds with getentropy() now; ok deraadt@ jmc@Christian Weisgerber
2014-07-19Change _rs_allocate so it can combine the two regions (rs and rsx)Theo de Raadt
into one if a system has an awesome getentropy(). In that case it is valid to totally throw away the rsx state in the child. If the getentropy() is not very good and has a lazy reseed operation, this combining is a bad idea, and the reseed should probably continue to use the "something old, something new" mix. _rs_allocate() can accomodate either method, but not on the fly. ok matthew
2014-07-18Seperate arc4random's os-dependent parts into static inline functions,Theo de Raadt
making it much easier for libressl -portable to fill in the gaps. ok bcook beck
2014-07-17"Race-free because we're running single-threaded in a newTheo de Raadt
address space, and once allocated rs is never deallocated." document the forkhandler to save reviewers time, with matthew