summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
...
* Remove some stuff that isn't needed.beck2014-04-1313-657/+72
| | | | ok miod@ deraadt@
* Remove the AEP engine: it is not standalone and doesn't seem to bereyk2014-04-1312-1617/+4
| | | | | | | | | relevant anymore. OpenSSL should have a better way to include 3rd party engines: either completely and free or external. But including a wrapper for a non-free wrapper in the code base does not make much sense and could also be provided by the vendor. ok deraadt@
* Remove the Atalla engine: It is not standalone and depends on externalreyk2014-04-1313-940/+1
| | | | | | | | | non-free libraries. OpenSSL should have a better way to include 3rd party engines: either completely free or external. But including a wrapper for a non-free wrapper in the code base does not make much sense and could also be provided by the vendor. ok deraadt@
* Remove the cswift engine: it is not standalone and we don't have thereyk2014-04-1312-1650/+1
| | | | | | | | | | | | | hardware. The vendor_defns/cswift.h does not specify a copyright and theoretically defaults to the OpenSSL license, but it also mentions that it includes parts that have been "clipped" from CryptoSwift's proprietary headers. This file should better include an explicit copyright statement or mention OpenSSL's library instead of the ambiguous "Attribution notice". ok deraadt@
* Remove the "sureware" engine:reyk2014-04-1312-1587/+1
| | | | | | | | | | | | The vendor_defns/sureware.h file by Baltimore Technologies Ltd. has a copyright that does not grant rights! Vendor files should either include a compatible license in the copyright statement or use OpenSSL's defaults, but adding a copyright statement without any terms is not acceptable. It should not have been included in the first place. ok deraadt@
* Remove the Broadcom ubsec engine:reyk2014-04-1314-1460/+1
| | | | | | | | | | | | | The vendor_defns/hw_ubsec.h file has a copyright that does not grant rights! Vendor files should either include a compatible license in the copyright statement or use OpenSSL's defaults, but adding a copyright statement without any terms is not acceptable. It should not have been included in the first place. (The ubsec(4) kernel driver is not affected by this change) ok deraadt@
* Remove the IBM 4758 engine: we don't have this hardware and it is anreyk2014-04-1314-1422/+4
| | | | | | old PCI accelerator that was EOL'ed in 2005. ok deraadt@
* Don't edit on cvs. 23.1 as intended.miod2014-04-132-4/+4
|
* Irrelevant.deraadt2014-04-1310-1603/+0
|
* historical benchmark results. irrelevant.deraadt2014-04-1364-2163/+0
| | | | ok miod
* send this directory of observations from 20 years to oblivionderaadt2014-04-138-451/+0
| | | | ok miod
* Do not install e_os.h, it is not an external header and should not be usedmiod2014-04-131-2/+1
| | | | by anything in userland.
* Move undocumented internal OPENSSL_DIR interface from libcrypto to libssl,miod2014-04-1318-1191/+5
| | | | | | so that libssl no longer need to access the non-external headers of libcrypto to build. No library bump, riding upon the recent update.
* Crank libcrypto minor (addition of BN_consttime_swap and CRYPTO_memcmp)miod2014-04-134-4/+4
| | | | and libssl major (ssl_check_clienthello_tlsext split into two functions)
* No longer define OPENSSL_NO_EC_NISTP_64_GCC_128 on amd64; requested by djmmiod2014-04-132-6/+0
|
* Merge conflicts; remove MacOS, Netware, OS/2, VMS and Windows build machinery.miod2014-04-13466-35459/+3284
|
* This commit was generated by cvs2git to track changes on a CVS vendormiod2014-04-1370-279/+639
|\ | | | | branch.
| * Import OpenSSL 1.0.1gmiod2014-04-13176-963/+2294
| |
| * This commit was manufactured by cvs2git to create branch 'unlabeled-1.1.1'.cvs2svn2013-02-141-0/+790
| |
* | This commit was generated by cvs2git to track changes on a CVS vendormiod2014-04-13111-1172/+3427
|\ \ | | | | | | branch.
| * | Import OpenSSL 1.0.1gmiod2014-04-13134-1395/+3912
| | |
| * | This commit was manufactured by cvs2git to create branch 'OPENSSL'.cvs2svn2013-02-141-0/+790
| | |
* | | This commit was generated by cvs2git to track changes on a CVS vendormiod2014-04-135-5/+18
|\ \ \ | | | | | | | | branch.
| * | | Import OpenSSL 1.0.1gmiod2014-04-13182-1088/+3051
| | | |
* | | | Move build machinery for libcrypto from libssl/crypto to libcrypto, as wellmiod2014-04-1142-977/+4998
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | as configuration files; split manpages and .pc files between libcrypto and libssl. No functional change, only there to make engineering easier, and libcrypto sources are still found in libssl/src/crypto at the moment. ok reyk@, also discussed with deraadt@ beck@ and the usual crypto suspects.
* | | | oops, typo, spotted by Matthias Schelerderaadt2014-04-101-2/+2
| | | |
* | | | Piotr Sikora pointed me at a more refined diff for the buffer releasetedu2014-04-102-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | issue. Apply that version. Maybe someday upstream will wake up and then we can have the same code. https://rt.openssl.org/Ticket/Display.html?id=2167&user=guest&pass=guest
* | | | crank major; struct ssl_ctx_st changes; ok teduderaadt2014-04-102-2/+2
| | | |
* | | | Disable Segglemann's RFC520 hearbeat.deraadt2014-04-101-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I am completely blown away that the same IETF that cannot efficiently allocate needed protocol, service numbers, or other such things when they are needed, can so quickly and easily rubber stamp the addition of a 64K Covert Channel in a critical protocol. The organization should look at itself very carefully, find out how this this happened, and everyone who allowed this to happen on their watch should be evicted from the decision making process. IETF, I don't trust you. ok tedu markus
* | | | disable buf freelists. we'll see what happens next.tedu2014-04-101-1/+2
| | | | | | | | | | | | | | | | ok deraadt
* | | | don't release the read buffer if we're not done reading from it.tedu2014-04-102-4/+0
| | | | | | | | | | | | | | | | ok benno deraadt
* | | | Remove CA certificates which are not listed in Mozilla's certdata.txt.sthen2014-04-091-1823/+0
| | | | | | | | | | | | | | | | | | | | | | | | Notably this removes CAcert who it turns out have strict requirements on redistribution (http://www.cacert.org/policy/RootDistributionLicense.php) which we don't meet.
* | | | Use root CAs that are used by TeleSec (Deutsche Telekom AG):reyk2014-04-091-0/+313
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Baltimore CyberTrust Root - Deutsche Telekom Root CA 2 - T-TeleSec GlobalRoot Class 2 - T-TeleSec GlobalRoot Class 3 ok sthen@
* | | | use char * for strings, saving casts. add return codes to base64 functionstedu2014-04-081-15/+26
| | | |
* | | | cherrypick fix for CVE-2014-0160 "heartbleed" vulnerability fromdjm2014-04-074-26/+54
| | | | | | | | | | | | | | | | OpenSSL git; ok sthen@
* | | | Add some missing names to the NAME sections.schwarze2014-04-075-15/+19
| | | | | | | | | | | | | | | | | | | | | | | | For inet(3), go the other way, remove some bogus symlinks. Found while testing the new makewhatis(8). ok jmc@
* | | | Update Copyright notice; ok otto@ beck@ deraadt@.schwarze2014-04-031-2/+4
| | | | | | | | | | | | | | | | | | | | This is merely a by-product of figuring out the amount of phk@ code contained herein; i'm not planning to hack on this file.
* | | | I have discussed these licenses with Poul-Henning Kamp and he has agreed tobeck2014-04-031-8/+17
| | | | | | | | | | | | | | | | this license change. We will remember that we all still like beer.
* | | | Poul-Henning Kamp informed me he is allright with this licensing change.beck2014-03-251-11/+4
| | | |
* | | | oops, merge errortedu2014-03-241-2/+2
| | | |
* | | | clear stack variables, suggested by djmtedu2014-03-231-1/+4
| | | |
* | | | some improvements suggested by djm.tedu2014-03-231-4/+6
| | | | | | | | | | | | | | | | | | | | | | | | use better constant for salt size. always copy ":" to gerror, in case somebody is dumb enough to overwrite it timingsafe_bcmp before somebody whines about strcmp
* | | | two functions don't need to be exportedtedu2014-03-231-3/+3
| | | |
* | | | minimal change to implementation of bcrypt to not require static globals.tedu2014-03-231-39/+88
| | | | | | | | | | | | | | | | | | | | | | | | add some friendlier functions. move the classic static data api into wrapper functions. a few more changes to come...
* | | | remove the never used bm string functionstedu2014-03-233-329/+3
| | | |
* | | | switch to shorter ISC license. this was ok with Niels Provos.tedu2014-03-221-27/+12
| | | |
* | | | consolidate the base64 code in one place, and remove inadequate test codetedu2014-03-191-86/+56
| | | |
* | | | right or wrong, bcrypt() is declared in pwd.h, not unistd.htedu2014-03-191-2/+3
| | | |
* | | | Retire hp300, mvme68k and mvme88k ports. These ports have no users, keepingmiod2014-03-182-278/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | this hardware alive is becoming increasingly difficult, and I should heed the message sent by the three disks which have died on me over the last few days. Noone sane will mourn these ports anyway. So long, and thanks for the fish.
* | | | * Fix another instance of directly writing to the target with a utilityschwarze2014-03-181-4/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | that might fail. * Keep the build log clean. * Make sure syntax checks run again when doing: make clean; make ok espie@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-26 12:12:36 +0000