summaryrefslogtreecommitdiff
path: root/lib/libcrypto
AgeCommit message (Collapse)Author
2014-07-12remove gratuitous differences, ok beckTheo de Raadt
2014-07-12remove gratuitous differences, ok beck bcookTheo de Raadt
2014-07-12Solaris uses a symbolic link for /dev/urandom which harms best practice ofBob Beck
using O_NOFOLLOW - cope with it as best as possible by trying two different paths. - written by deraadt@ and kettenis@
2014-07-12odds are that some ABI change occured today, no matter how careful everyoneTheo de Raadt
is
2014-07-11add comment about format requirementsBob Beck
ok miod@
2014-07-11Huge documentation update for libcrypto and libssl, mostly from Matt Caswell,Miod Vallat
Jeff Trawick, Jean-Paul Calderone, Michal Bozon, Jeffrey Walton and Rich Salz, via OpenSSL trunk (with some parts not applying to us, such as SSLv2 support, at least partially removed).
2014-07-11i'm a dumbdumb. fix build.Ted Unangst
2014-07-11move all the feature settings to a common header.Ted Unangst
probably ok beck jsing miod
2014-07-11Fix incorrect duplicate mlinksBob Beck
ok bcook@
2014-07-11Correct incorrect mlinksBob Beck
ok bcook@
2014-07-11Fix incorrect mlinksBob Beck
ok bcook@
2014-07-11Make sure we leave OPENSSL_NO_PSK in the conf files so thingsBob Beck
can know... ok jsing@
2014-07-09Update to match the current state of crypto/rand, and remove MLINKS forMiod Vallat
RAND_event and RAND_screen.
2014-07-09remove unused variables getentropy for OS Xbcook
ok beck@
2014-07-09RSA_NULL used to be a compile option allowing the RSA interfaces to beMiod Vallat
compiled-in, with nonfunctional code, to be able to cope with the RSA patent. However, we don't use this option, and the RSA patent has expired more than 10 years ago, so just drop this piece.
2014-07-08Remove undocumented _des_crypt() interface and its companion header file,Miod Vallat
which had never been installed, so it's unlikely something ever used this in the last 15~20 years. ok deraadt@ jsing@ beck@
2014-07-08getentropy for osx and solaris. will be needed for a portable releaseBob Beck
2014-07-08fix oops, accidental delete.. darn copying of files between machinesBob Beck
2014-07-08j should be an int, like repeatBob Beck
2014-07-08unbreak last commit - but same intent, make re-seed less expensiveBob Beck
2014-07-08repeat calls to getentrypy() with the same pid likely indicate reseeds.Theo de Raadt
Since we assume the PRNG above is doing "something old, something new" folding, shortcut and do fewer repeats through the timing loop. ok beck
2014-06-26fix HD() misuse; from brent cookTheo de Raadt
2014-06-25AT_BASE returns us the *address* of the start of ld.so, soBob Beck
use the address, not what it points to (which is always the same) ok deraadt@
2014-06-25get the page of data at AT_SYSINFO_EHDRBob Beck
ok deraadt@
2014-06-25comment fixes from theoBob Beck
2014-06-25Possibly obtain a little bit of entropy from addresses returnedBob Beck
by getauxval if we have it. ok deraadt@
2014-06-25O_NOFOLLOW would be very nice to have here if the version of linuxBob Beck
we are running supports it. from enh@google.com
2014-06-24Remove BIO_f_reliable(), guilty of playing with EVP_MD_CTX internals itMiod Vallat
should not know anything about. Verified not to be used in ports; riding upon the recent libcrypto major bump.
2014-06-24Crank libcrypto major since my previous commit changed the size of theJoel Sing
ChaCha context. Other changes will also ride this crank.
2014-06-23unbreak build of getentropy_sysctl - we need linux/sysctl.h, andBob Beck
RANDOM_UUID is an enum member.
2014-06-23unbreak - main needs to be extern in here somewhere.Bob Beck
2014-06-21repair indentation for an inner loop; shorten some macros and variableTheo de Raadt
names to shorten line lengths ok beck
2014-06-21hash in correct pointerTheo de Raadt
2014-06-20KNFBob Beck
2014-06-20indentTheo de Raadt
2014-06-20rearrange so that the main function with the important comments is at the topOtto Moerbeek
ok deraadt@ beck@
2014-06-20Work in progress on how to deal with the inherit unreliability ofBob Beck
/dev/urandom. Does well in the fallback case. Get it in tree so it can be worked on. ok otto@ deraadt@
2014-06-11Provide support for non-funopen systems.Theo de Raadt
ok beck
2014-06-10Abandon the auto-ENGINE /dev/crypto interface. VIA 3des cbc receivesTheo de Raadt
collateral damage. The syncronous nature of this mechanism has hampered performance for symmetric crypto relative to brute-force cpu. The assymetric crypto support never really materialized in drivers. So abandon the complexity. ok tedu beck mikeb some disagrement from djm but if he wants to test /dev/crypto ciphers he should do it without this this gigantic API in the way
2014-06-02A few months back there was a big community fuss regarding direct-useTheo de Raadt
of the intel RDRAND instruction. Consensus was RDRAND should probably only be used as an additional source of entropy in a mixer. Guess which library bends over backwards to provide easy access to RDRAND? Yep. Guess which applications are using this support? Not even one... but still, this is being placed as a trap for someone. Send this support straight to the abyss. ok kettenis
2014-05-27Fix ia64 cross-gcc target.Tobias Ulmer
opensslconf.h is just a dummy, we're lightyears away from working userspace. ok deraadt@
2014-05-25"for every change..."Ted Unangst
2014-05-25define LIBRESSL_INTERNAL, and use it to hide the bad stuff from ourselvesTed Unangst
ok beck
2014-05-16When OPENSSL_LOAD_CONF was added it ended up with more #if 0 code,Joel Sing
more #ifdefs and a new source file that contains a single function. Nuke the #if 0 code that is now a macro and move the single function in evp_acnf.c to c_all.c, which is where the other code lives. While here, tidy evp.h slightly, remove an unnecessary #ifdef __OpenBSD__ and nuke a comment that is now a lie. ok miod@
2014-05-15Add a ChaCha20-Poly1305 AEAD EVP implementation to libcrypto, from AdamJoel Sing
Langley's Chromium OpenSSL patches. ok miod@
2014-05-15Add an AEAD EVP interface to libcrypto, along with AES-GCM AEADJoel Sing
implementations. This largely pulls in Adam Langley's AEAD patches from Chromium's OpenSSL. ok miod@
2014-05-14Add poly1305 to libcrypto utilising Andrew Moon's public domainJoel Sing
implementation. ok miod@
2014-05-12Move the `pqueue' part of libcrypto, which is a glorified sorted linked listMiod Vallat
of 64-bit data, and only used by DTLS, to libssl where it belongs. Remove pqueue_print() which is a debugging interface and serves no useful purpose, except for the regress test, which grows its own pqueue_print() routine. Bump libcrypto major and libssl minor. WARNING: do not update your tree right now, more changes are coming, which will ride the libcrypto major bump.
2014-05-07miod forgot about fcrypt_b.c being needed, before he went off to get hisTheo de Raadt
beauty sleep. He's probably having a nightmare about this right now.... ok tedu
2014-05-06Sort CFLAGS, SRC and SSLASM stanzas by the directories they apply to, to makeMiod Vallat
these files similar in layout to the other md Makefile.inc; no functional change.