Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-05-07 | don't free memory unless we allocated it. | Ted Unangst | |
reported to openssl by David Ramos (rt 3338) stealing commit from logan, who's run away. ok miod. | |||
2014-05-07 | with the first bug it uncovered fixed, clear all bignums again. | Ted Unangst | |
i've never worked on codebase so resistant to efforts to improve it. | |||
2014-05-07 | in BN_clear_free, don't cleanse the data if the static data flag is set. | Ted Unangst | |
much debugging work done by otto. ok miod otto. side note: BN_FLG_STATIC_DATA doesn't actually mean the data is static. it's also used to indicate the data may be secretly shared behind your back as a sort of poor man's refcounting, but without the refcounting. | |||
2014-05-07 | KNF. | Joel Sing | |
2014-05-07 | KNF. | Joel Sing | |
2014-05-07 | revert, thanks sthen | Ted Unangst | |
2014-05-07 | add additional includes from eng_cryptodev.c | Jonathan Gray | |
makes this compile with OPENSSL_NO_DEPRECATED defined. ok deraadt@ | |||
2014-05-07 | miod forgot about fcrypt_b.c being needed, before he went off to get his | Theo de Raadt | |
beauty sleep. He's probably having a nightmare about this right now.... ok tedu | |||
2014-05-06 | Assorted cleanups: | Miod Vallat | |
- replace hardcoded sizes with sizeof() - pqueue_find() apparently used to need to keep track of the previous node when iterating, which causes its logic to be complicated. However, nowadays it only needs to iterate, so replace with a straightforward, much readable logic. - remove #if 0'ed code From ``sin'' from 2f30 dot org on tech@, thanks! | |||
2014-05-06 | Remove broken-by-design test | Miod Vallat | |
2014-05-06 | Make sure PKCS7_get_octet_string() return values are checked for NULL. | Miod Vallat | |
Reported by David Ramos (and simultaneously to OpenSSL as PR#3339). ok beck@ logan@ | |||
2014-05-06 | Sort CFLAGS, SRC and SSLASM stanzas by the directories they apply to, to make | Miod Vallat | |
these files similar in layout to the other md Makefile.inc; no functional change. | |||
2014-05-06 | knf approximation | Ted Unangst | |
2014-05-05 | inspired by a cloudflare diff, cleanse old memory when expanding a bignum. | Ted Unangst | |
however, instead of trying to audit all the places where a secret bignum is used, apply the big hammer and clear all bignums when freed. ok deraadt miod | |||
2014-05-05 | Sort and group includes. | Joel Sing | |
2014-05-05 | Repair BIO_socket_nbio operation. | Joel Sing | |
ok miod@ | |||
2014-05-05 | Enable assembler code for DES. Assembler code for BN is commented out as it | Miod Vallat | |
uses the `umul' and `udiv' instructions directly, which are not supported on v7 processors. | |||
2014-05-04 | Improve line wrapping for lines exceeding 80 chars. | Jim Razmus II | |
ok jmc@ | |||
2014-05-04 | Remove trailing whitespace. | Jim Razmus II | |
fine jmc@ | |||
2014-05-04 | i give up. reuse problem is unfixable. dlg says puppet crashes. | Ted Unangst | |
2014-05-04 | Enable the assembler code for BN, which was lost quite some time ago. | Miod Vallat | |
2014-05-03 | Enable assembler code for AES, DES, GCM, SHA1, SHA256 and SHA512. | Miod Vallat | |
The sparcv9 BN code is not enabled, as it expects to run on a 32-bit userland and will need to be fixed for 64-bit userland first. | |||
2014-05-03 | Enable assembler code for AES, BN (Montgomery), GCM128, SHA1, SHA256 and SHA512. | Miod Vallat | |
Note that GCM128 Neon code is currently not built (and thus not tested), as the current toolchain does not support Neon instructions. | |||
2014-05-03 | Do not compile the neon probe code until __ARM_ARCH__ >= 7. Neon-specific code | Miod Vallat | |
will not get referenced if this condition is not met. | |||
2014-05-03 | typos | Miod Vallat | |
2014-05-03 | Correctly enable Montgomery code. | Miod Vallat | |
2014-05-03 | Add checks for invalid base64 encoded data, specifically relating to the | Joel Sing | |
handling of padding. This fixes a crash that can be triggered by feeding base64 data followed by 64 or more padding characters, which results in a negative output length. This issue was reported by David Ramos, although the same bug has been sitting in the OpenSSL RT since 2011: https://rt.openssl.org/Ticket/Display.html?id=2608 Worse still, BIO_read seems to be completely unable to detect that the base64 input was invalid/corrupt - in particular, enabling BIO_FLAGS_BASE64_NO_NL results in a stream of zero value bytes rather than no input (possibly a good replacement for /dev/null...), which could result in nasty consequences. Prior to this fix some zero value bytes were also injected without this flag being enabled. The recently added base64 regress triggers and documents these issues (and also ensures that this change retains functional behaviour). | |||
2014-05-03 | It is definitly not the correct spelling. | Joel Sing | |
2014-05-03 | KNF. | Joel Sing | |
2014-05-03 | KNF. | Joel Sing | |
2014-05-03 | Enable assembler bits for BN (Montgomery), SHA1 and SHA256. | Miod Vallat | |
Assembler bits for AES remain commented out as they run slower than the C code. | |||
2014-05-03 | Detect Altivec support with the machdep.altivec sysctl rather than setmp and | Miod Vallat | |
a SIGILL handler. Do not attempt to detect and use a 64-bit FPU yet. | |||
2014-05-02 | Correctly enable assembler Montgomery routine. | Miod Vallat | |
2014-05-02 | More use of 64-bit registers which needs to be disabled under OpenBSD. | Miod Vallat | |
2014-05-02 | Correctly enable assembler Montgomery routine. | Miod Vallat | |
2014-05-02 | Reenable assembler code for SHA384 and SHA512 now that it no longer miscomputes | Miod Vallat | |
things. Worth doing as it's twice faster than the C code. | |||
2014-05-02 | The assembly sha512 code detects at runtime if it is running on a 64-bit | Miod Vallat | |
processor (PA2.0) and, if so, switches to 64-bit code. However, when running under a 32-bit OpenBSD/hppa kernel, there is no guarantee that the upper part of the registers will be preserved accross context switches (or even userland->kernel boundaries), which causes this code to fail. Wrap the generated code within #ifndef __OpenBSD__ in that case, to avoid using the 64-bit code completely. (OpenBSD/hppa64, once stable, will not be affected by this) | |||
2014-05-02 | Disable assembler version of SHA512 for now, it produces wrong results. | Miod Vallat | |
2014-05-01 | Enable use of assembly code for AES, BN (Montgomery), SHA1, SHA256 and SHA512. | Miod Vallat | |
RC4 assembler code is not used, as it runs about 35% slower than the C code. | |||
2014-05-01 | Do not output SOM-specific directives. | Miod Vallat | |
2014-05-01 | Remove unreferenced OPENSSL_instrument_bus and OPENSSL_instrument_bus2 routines. | Miod Vallat | |
2014-05-01 | Make the implicit `l' in `impicit' explicit. | Miod Vallat | |
2014-05-01 | Enable use of the assembly code for BN (Montgomery) and SHA1. | Miod Vallat | |
2014-05-01 | Fix include filename to get register name aliases under BSD | Miod Vallat | |
2014-05-01 | Pass -Werror in the !BN_LLONG !BN_UMULT_LOHI !BN_UMULT_HIGH case. | Miod Vallat | |
2014-05-01 | Enable use of the assembly code for AES, BN, SHA1, SHA256 and SHA512. | Miod Vallat | |
2014-05-01 | dead meat | Miod Vallat | |
2014-05-01 | + e_chacha.c, and bump minor | Miod Vallat | |
2014-05-01 | Update with recently added objects. | Joel Sing | |
ok miod@ | |||
2014-05-01 | Nuke unused evptests.txt - the real one is over in regress. | Joel Sing | |
ok miod@ |