summaryrefslogtreecommitdiff
path: root/lib/libcrypto
AgeCommit message (Collapse)Author
2014-05-07don't free memory unless we allocated it.Ted Unangst
reported to openssl by David Ramos (rt 3338) stealing commit from logan, who's run away. ok miod.
2014-05-07with the first bug it uncovered fixed, clear all bignums again.Ted Unangst
i've never worked on codebase so resistant to efforts to improve it.
2014-05-07in BN_clear_free, don't cleanse the data if the static data flag is set.Ted Unangst
much debugging work done by otto. ok miod otto. side note: BN_FLG_STATIC_DATA doesn't actually mean the data is static. it's also used to indicate the data may be secretly shared behind your back as a sort of poor man's refcounting, but without the refcounting.
2014-05-07KNF.Joel Sing
2014-05-07KNF.Joel Sing
2014-05-07revert, thanks sthenTed Unangst
2014-05-07add additional includes from eng_cryptodev.cJonathan Gray
makes this compile with OPENSSL_NO_DEPRECATED defined. ok deraadt@
2014-05-07miod forgot about fcrypt_b.c being needed, before he went off to get hisTheo de Raadt
beauty sleep. He's probably having a nightmare about this right now.... ok tedu
2014-05-06Assorted cleanups:Miod Vallat
- replace hardcoded sizes with sizeof() - pqueue_find() apparently used to need to keep track of the previous node when iterating, which causes its logic to be complicated. However, nowadays it only needs to iterate, so replace with a straightforward, much readable logic. - remove #if 0'ed code From ``sin'' from 2f30 dot org on tech@, thanks!
2014-05-06Remove broken-by-design testMiod Vallat
2014-05-06Make sure PKCS7_get_octet_string() return values are checked for NULL.Miod Vallat
Reported by David Ramos (and simultaneously to OpenSSL as PR#3339). ok beck@ logan@
2014-05-06Sort CFLAGS, SRC and SSLASM stanzas by the directories they apply to, to makeMiod Vallat
these files similar in layout to the other md Makefile.inc; no functional change.
2014-05-06knf approximationTed Unangst
2014-05-05inspired by a cloudflare diff, cleanse old memory when expanding a bignum.Ted Unangst
however, instead of trying to audit all the places where a secret bignum is used, apply the big hammer and clear all bignums when freed. ok deraadt miod
2014-05-05Sort and group includes.Joel Sing
2014-05-05Repair BIO_socket_nbio operation.Joel Sing
ok miod@
2014-05-05Enable assembler code for DES. Assembler code for BN is commented out as itMiod Vallat
uses the `umul' and `udiv' instructions directly, which are not supported on v7 processors.
2014-05-04Improve line wrapping for lines exceeding 80 chars.Jim Razmus II
ok jmc@
2014-05-04Remove trailing whitespace.Jim Razmus II
fine jmc@
2014-05-04i give up. reuse problem is unfixable. dlg says puppet crashes.Ted Unangst
2014-05-04Enable the assembler code for BN, which was lost quite some time ago.Miod Vallat
2014-05-03Enable assembler code for AES, DES, GCM, SHA1, SHA256 and SHA512.Miod Vallat
The sparcv9 BN code is not enabled, as it expects to run on a 32-bit userland and will need to be fixed for 64-bit userland first.
2014-05-03Enable assembler code for AES, BN (Montgomery), GCM128, SHA1, SHA256 and SHA512.Miod Vallat
Note that GCM128 Neon code is currently not built (and thus not tested), as the current toolchain does not support Neon instructions.
2014-05-03Do not compile the neon probe code until __ARM_ARCH__ >= 7. Neon-specific codeMiod Vallat
will not get referenced if this condition is not met.
2014-05-03typosMiod Vallat
2014-05-03Correctly enable Montgomery code.Miod Vallat
2014-05-03Add checks for invalid base64 encoded data, specifically relating to theJoel Sing
handling of padding. This fixes a crash that can be triggered by feeding base64 data followed by 64 or more padding characters, which results in a negative output length. This issue was reported by David Ramos, although the same bug has been sitting in the OpenSSL RT since 2011: https://rt.openssl.org/Ticket/Display.html?id=2608 Worse still, BIO_read seems to be completely unable to detect that the base64 input was invalid/corrupt - in particular, enabling BIO_FLAGS_BASE64_NO_NL results in a stream of zero value bytes rather than no input (possibly a good replacement for /dev/null...), which could result in nasty consequences. Prior to this fix some zero value bytes were also injected without this flag being enabled. The recently added base64 regress triggers and documents these issues (and also ensures that this change retains functional behaviour).
2014-05-03It is definitly not the correct spelling.Joel Sing
2014-05-03KNF.Joel Sing
2014-05-03KNF.Joel Sing
2014-05-03Enable assembler bits for BN (Montgomery), SHA1 and SHA256.Miod Vallat
Assembler bits for AES remain commented out as they run slower than the C code.
2014-05-03Detect Altivec support with the machdep.altivec sysctl rather than setmp andMiod Vallat
a SIGILL handler. Do not attempt to detect and use a 64-bit FPU yet.
2014-05-02Correctly enable assembler Montgomery routine.Miod Vallat
2014-05-02More use of 64-bit registers which needs to be disabled under OpenBSD.Miod Vallat
2014-05-02Correctly enable assembler Montgomery routine.Miod Vallat
2014-05-02Reenable assembler code for SHA384 and SHA512 now that it no longer miscomputesMiod Vallat
things. Worth doing as it's twice faster than the C code.
2014-05-02The assembly sha512 code detects at runtime if it is running on a 64-bitMiod Vallat
processor (PA2.0) and, if so, switches to 64-bit code. However, when running under a 32-bit OpenBSD/hppa kernel, there is no guarantee that the upper part of the registers will be preserved accross context switches (or even userland->kernel boundaries), which causes this code to fail. Wrap the generated code within #ifndef __OpenBSD__ in that case, to avoid using the 64-bit code completely. (OpenBSD/hppa64, once stable, will not be affected by this)
2014-05-02Disable assembler version of SHA512 for now, it produces wrong results.Miod Vallat
2014-05-01Enable use of assembly code for AES, BN (Montgomery), SHA1, SHA256 and SHA512.Miod Vallat
RC4 assembler code is not used, as it runs about 35% slower than the C code.
2014-05-01Do not output SOM-specific directives.Miod Vallat
2014-05-01Remove unreferenced OPENSSL_instrument_bus and OPENSSL_instrument_bus2 routines.Miod Vallat
2014-05-01Make the implicit `l' in `impicit' explicit.Miod Vallat
2014-05-01Enable use of the assembly code for BN (Montgomery) and SHA1.Miod Vallat
2014-05-01Fix include filename to get register name aliases under BSDMiod Vallat
2014-05-01Pass -Werror in the !BN_LLONG !BN_UMULT_LOHI !BN_UMULT_HIGH case.Miod Vallat
2014-05-01Enable use of the assembly code for AES, BN, SHA1, SHA256 and SHA512.Miod Vallat
2014-05-01dead meatMiod Vallat
2014-05-01+ e_chacha.c, and bump minorMiod Vallat
2014-05-01Update with recently added objects.Joel Sing
ok miod@
2014-05-01Nuke unused evptests.txt - the real one is over in regress.Joel Sing
ok miod@