Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-07-12 | remove gratuitous differences, ok beck | Theo de Raadt | |
2014-07-12 | remove gratuitous differences, ok beck bcook | Theo de Raadt | |
2014-07-12 | Solaris uses a symbolic link for /dev/urandom which harms best practice of | Bob Beck | |
using O_NOFOLLOW - cope with it as best as possible by trying two different paths. - written by deraadt@ and kettenis@ | |||
2014-07-12 | odds are that some ABI change occured today, no matter how careful everyone | Theo de Raadt | |
is | |||
2014-07-11 | add comment about format requirements | Bob Beck | |
ok miod@ | |||
2014-07-11 | Huge documentation update for libcrypto and libssl, mostly from Matt Caswell, | Miod Vallat | |
Jeff Trawick, Jean-Paul Calderone, Michal Bozon, Jeffrey Walton and Rich Salz, via OpenSSL trunk (with some parts not applying to us, such as SSLv2 support, at least partially removed). | |||
2014-07-11 | i'm a dumbdumb. fix build. | Ted Unangst | |
2014-07-11 | move all the feature settings to a common header. | Ted Unangst | |
probably ok beck jsing miod | |||
2014-07-11 | Fix incorrect duplicate mlinks | Bob Beck | |
ok bcook@ | |||
2014-07-11 | Correct incorrect mlinks | Bob Beck | |
ok bcook@ | |||
2014-07-11 | Fix incorrect mlinks | Bob Beck | |
ok bcook@ | |||
2014-07-11 | Make sure we leave OPENSSL_NO_PSK in the conf files so things | Bob Beck | |
can know... ok jsing@ | |||
2014-07-09 | Update to match the current state of crypto/rand, and remove MLINKS for | Miod Vallat | |
RAND_event and RAND_screen. | |||
2014-07-09 | remove unused variables getentropy for OS X | bcook | |
ok beck@ | |||
2014-07-09 | RSA_NULL used to be a compile option allowing the RSA interfaces to be | Miod Vallat | |
compiled-in, with nonfunctional code, to be able to cope with the RSA patent. However, we don't use this option, and the RSA patent has expired more than 10 years ago, so just drop this piece. | |||
2014-07-08 | Remove undocumented _des_crypt() interface and its companion header file, | Miod Vallat | |
which had never been installed, so it's unlikely something ever used this in the last 15~20 years. ok deraadt@ jsing@ beck@ | |||
2014-07-08 | getentropy for osx and solaris. will be needed for a portable release | Bob Beck | |
2014-07-08 | fix oops, accidental delete.. darn copying of files between machines | Bob Beck | |
2014-07-08 | j should be an int, like repeat | Bob Beck | |
2014-07-08 | unbreak last commit - but same intent, make re-seed less expensive | Bob Beck | |
2014-07-08 | repeat calls to getentrypy() with the same pid likely indicate reseeds. | Theo de Raadt | |
Since we assume the PRNG above is doing "something old, something new" folding, shortcut and do fewer repeats through the timing loop. ok beck | |||
2014-06-26 | fix HD() misuse; from brent cook | Theo de Raadt | |
2014-06-25 | AT_BASE returns us the *address* of the start of ld.so, so | Bob Beck | |
use the address, not what it points to (which is always the same) ok deraadt@ | |||
2014-06-25 | get the page of data at AT_SYSINFO_EHDR | Bob Beck | |
ok deraadt@ | |||
2014-06-25 | comment fixes from theo | Bob Beck | |
2014-06-25 | Possibly obtain a little bit of entropy from addresses returned | Bob Beck | |
by getauxval if we have it. ok deraadt@ | |||
2014-06-25 | O_NOFOLLOW would be very nice to have here if the version of linux | Bob Beck | |
we are running supports it. from enh@google.com | |||
2014-06-24 | Remove BIO_f_reliable(), guilty of playing with EVP_MD_CTX internals it | Miod Vallat | |
should not know anything about. Verified not to be used in ports; riding upon the recent libcrypto major bump. | |||
2014-06-24 | Crank libcrypto major since my previous commit changed the size of the | Joel Sing | |
ChaCha context. Other changes will also ride this crank. | |||
2014-06-23 | unbreak build of getentropy_sysctl - we need linux/sysctl.h, and | Bob Beck | |
RANDOM_UUID is an enum member. | |||
2014-06-23 | unbreak - main needs to be extern in here somewhere. | Bob Beck | |
2014-06-21 | repair indentation for an inner loop; shorten some macros and variable | Theo de Raadt | |
names to shorten line lengths ok beck | |||
2014-06-21 | hash in correct pointer | Theo de Raadt | |
2014-06-20 | KNF | Bob Beck | |
2014-06-20 | indent | Theo de Raadt | |
2014-06-20 | rearrange so that the main function with the important comments is at the top | Otto Moerbeek | |
ok deraadt@ beck@ | |||
2014-06-20 | Work in progress on how to deal with the inherit unreliability of | Bob Beck | |
/dev/urandom. Does well in the fallback case. Get it in tree so it can be worked on. ok otto@ deraadt@ | |||
2014-06-11 | Provide support for non-funopen systems. | Theo de Raadt | |
ok beck | |||
2014-06-10 | Abandon the auto-ENGINE /dev/crypto interface. VIA 3des cbc receives | Theo de Raadt | |
collateral damage. The syncronous nature of this mechanism has hampered performance for symmetric crypto relative to brute-force cpu. The assymetric crypto support never really materialized in drivers. So abandon the complexity. ok tedu beck mikeb some disagrement from djm but if he wants to test /dev/crypto ciphers he should do it without this this gigantic API in the way | |||
2014-06-02 | A few months back there was a big community fuss regarding direct-use | Theo de Raadt | |
of the intel RDRAND instruction. Consensus was RDRAND should probably only be used as an additional source of entropy in a mixer. Guess which library bends over backwards to provide easy access to RDRAND? Yep. Guess which applications are using this support? Not even one... but still, this is being placed as a trap for someone. Send this support straight to the abyss. ok kettenis | |||
2014-05-27 | Fix ia64 cross-gcc target. | Tobias Ulmer | |
opensslconf.h is just a dummy, we're lightyears away from working userspace. ok deraadt@ | |||
2014-05-25 | "for every change..." | Ted Unangst | |
2014-05-25 | define LIBRESSL_INTERNAL, and use it to hide the bad stuff from ourselves | Ted Unangst | |
ok beck | |||
2014-05-16 | When OPENSSL_LOAD_CONF was added it ended up with more #if 0 code, | Joel Sing | |
more #ifdefs and a new source file that contains a single function. Nuke the #if 0 code that is now a macro and move the single function in evp_acnf.c to c_all.c, which is where the other code lives. While here, tidy evp.h slightly, remove an unnecessary #ifdef __OpenBSD__ and nuke a comment that is now a lie. ok miod@ | |||
2014-05-15 | Add a ChaCha20-Poly1305 AEAD EVP implementation to libcrypto, from Adam | Joel Sing | |
Langley's Chromium OpenSSL patches. ok miod@ | |||
2014-05-15 | Add an AEAD EVP interface to libcrypto, along with AES-GCM AEAD | Joel Sing | |
implementations. This largely pulls in Adam Langley's AEAD patches from Chromium's OpenSSL. ok miod@ | |||
2014-05-14 | Add poly1305 to libcrypto utilising Andrew Moon's public domain | Joel Sing | |
implementation. ok miod@ | |||
2014-05-12 | Move the `pqueue' part of libcrypto, which is a glorified sorted linked list | Miod Vallat | |
of 64-bit data, and only used by DTLS, to libssl where it belongs. Remove pqueue_print() which is a debugging interface and serves no useful purpose, except for the regress test, which grows its own pqueue_print() routine. Bump libcrypto major and libssl minor. WARNING: do not update your tree right now, more changes are coming, which will ride the libcrypto major bump. | |||
2014-05-07 | miod forgot about fcrypt_b.c being needed, before he went off to get his | Theo de Raadt | |
beauty sleep. He's probably having a nightmare about this right now.... ok tedu | |||
2014-05-06 | Sort CFLAGS, SRC and SSLASM stanzas by the directories they apply to, to make | Miod Vallat | |
these files similar in layout to the other md Makefile.inc; no functional change. |