Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | fix Dt; | jmc | 2016-09-04 | 1 | -2/+2 |
| | |||||
* | Nuke one more cms tendril | beck | 2016-09-04 | 1 | -4/+1 |
| | | | | ok jsing@ | ||||
* | bye bye cms. send it to the attic | beck | 2016-09-04 | 2 | -1144/+2 |
| | | | | ok jsing@ | ||||
* | Remove cms. | jsing | 2016-09-04 | 1 | -8/+1 |
| | |||||
* | Remove cms. | jsing | 2016-09-04 | 15 | -7541/+0 |
| | | | | ok beck@, guenther@, tedu@ | ||||
* | Expand DECLARE_ASN1_.*FUNCTIONS macros. | jsing | 2016-09-04 | 5 | -69/+293 |
| | | | | No change in preprocessed output, ignoring whitespace and line numbers. | ||||
* | Expand DECLARE_ASN1_.*FUNCTIONS macros. | jsing | 2016-09-04 | 2 | -7/+27 |
| | | | | No change in preprocessed output, ignoring whitespace and line numbers. | ||||
* | Set errno more consistently, and fix a warning, ok tedu | nicm | 2016-09-04 | 1 | -21/+29 |
| | |||||
* | Expand DECLARE_ASN1_.*FUNCTIONS macros. | jsing | 2016-09-04 | 1 | -33/+133 |
| | | | | No change in preprocessed output, ignoring whitespace. | ||||
* | minor tweaks; | jmc | 2016-09-04 | 1 | -7/+7 |
| | |||||
* | rm | tedu | 2016-09-04 | 1 | -68/+0 |
| | |||||
* | oops, name file after main function | tedu | 2016-09-04 | 1 | -0/+68 |
| | |||||
* | it doesn't say anything yet, but start adding a man page | tedu | 2016-09-04 | 1 | -0/+68 |
| | |||||
* | Place IMPLEMENT_PEM macros under #ifndef LIBRESSL_INTERNAL. | jsing | 2016-09-04 | 1 | -2/+4 |
| | |||||
* | Sort and group functions. | jsing | 2016-09-04 | 5 | -250/+226 |
| | |||||
* | Expand IMPLEMENT_PEM macros. | jsing | 2016-09-04 | 1 | -2/+29 |
| | | | | No change in generated assembly. | ||||
* | Expand IMPLEMENT_PEM macros. | jsing | 2016-09-04 | 4 | -30/+545 |
| | | | | No change in generated assembly. | ||||
* | Make the key sizes and offsets arrays const, ok tedu | nicm | 2016-09-04 | 1 | -2/+2 |
| | |||||
* | Less S390. | jsing | 2016-09-04 | 12 | -4596/+2 |
| | | | | ok deraadt@ | ||||
* | Bump TLS_API for addition of callbacks. | jsing | 2016-09-04 | 1 | -2/+2 |
| | |||||
* | Less IA64. | jsing | 2016-09-04 | 10 | -6846/+1 |
| | | | | ok deraadt@ | ||||
* | Less vax. | jsing | 2016-09-04 | 4 | -617/+1 |
| | | | | ok deraadt@ | ||||
* | Maintain consistency with function naming. | jsing | 2016-09-04 | 2 | -8/+8 |
| | |||||
* | Sort headers and use the installed tls.h, rather than the local one. | jsing | 2016-09-04 | 1 | -5/+5 |
| | |||||
* | $OpenBSD$ tag | jsing | 2016-09-04 | 1 | -1/+1 |
| | |||||
* | New sentence, new line. Also wrap at 80 chars. | jsing | 2016-09-04 | 1 | -3/+7 |
| | |||||
* | include <sys/types.h> to get <sys/cdefs.h> instead (for __warn_references) | bcook | 2016-09-04 | 1 | -2/+2 |
| | | | | corrected by deraadt@ / guenther@ | ||||
* | Add callback-based interface to libtls. | bcook | 2016-09-04 | 10 | -37/+371 |
| | | | | | | | This allows working with buffers and callback functions instead of directly on sockets or file descriptors. Original patch from Tobias Pape <tobias_at_netshed.de>. ok beck@ | ||||
* | include <sys/cdefs.h> for portable | bcook | 2016-09-04 | 1 | -1/+3 |
| | |||||
* | State that libtls functions apply to both clients and servers, unless | jsing | 2016-09-04 | 1 | -47/+16 |
| | | | | | | | | | | noted otherwise. Remove all of the now redundant "client and server" notations and change the client and server notations to "client only" and "server only". With input from jmc@. ok beck@ jmc@ | ||||
* | Add ISRG Root X1, the letsencrypt CA root. This is now included in its own | sthen | 2016-09-04 | 1 | -1/+55 |
| | | | | | right in Mozilla's CA list, rather than relying on IdenTrust cross-signing. ok beck@ jca@ | ||||
* | only regen pkg-config files when required; ok jasper | natano | 2016-09-04 | 2 | -8/+10 |
| | |||||
* | test wcrtomb(3) | schwarze | 2016-09-04 | 2 | -0/+93 |
| | |||||
* | Options that take a time argument....take an argument | guenther | 2016-09-04 | 1 | -2/+3 |
| | | | | diff from Kinichiro Inoguchi (kinichiro.inoguchi (at) gmail.com) | ||||
* | test mbrtowc(3) in conjunction with mbsinit(3) | schwarze | 2016-09-03 | 2 | -0/+93 |
| | |||||
* | squash some possibly-used-uninitialized warnings | bcook | 2016-09-03 | 1 | -3/+3 |
| | |||||
* | switch to a constant-time gather procedure for amd64 mont5 asm | bcook | 2016-09-03 | 1 | -199/+314 |
| | | | | | | | from OpenSSL commit 7f98aa7403a1244cf17d1aa489f5bb0f39bae431 CVE-2016-0702 ok beck@ | ||||
* | import new BN tests from OpenSSL | bcook | 2016-09-03 | 2 | -167/+434 |
| | | | | | | | New tests that various BIGNUM methods behave correctly on zero/even inputs. from OpenSSL ok beck@ | ||||
* | add constant-time MOD_EXP_CTIME_COPY_FROM_PREBUF. | bcook | 2016-09-03 | 1 | -16/+55 |
| | | | | | | | | | | Patch based on OpenSSL commit d7a854c055ff22fb7da80c3b0e7cb08d248591d0 "Performance penalty varies from platform to platform, and even key length. For rsa2048 sign it was observed to reach almost 10%." CVE-2016-0702 ok beck@ | ||||
* | BN_mod_exp_mont_consttime: check for zero modulus. | bcook | 2016-09-03 | 1 | -9/+33 |
| | | | | | | | Don't dereference d when top is zero. Original patch from OpenSSL commit d46e946d2603c64df6e1e4f9db0c70baaf1c4c03 ok jsing@ | ||||
* | remove unneeded reach-around include | bcook | 2016-09-03 | 1 | -2/+2 |
| | |||||
* | add iOS support for getentropy | bcook | 2016-09-03 | 1 | -1/+12 |
| | | | | from Jacob Berkman, ok beck@ | ||||
* | deprecate EVP_EncryptFinal(), EVP_DecryptFinal() and EVP_CipherFinal() | bcook | 2016-09-03 | 2 | -7/+23 |
| | | | | | | | | | | This switches EVP_CipherFinal() to work as EVP_EncryptFinal() and EVP_DecryptFinal() do, always clearing the cipher context on completion. Indicate that, since it is not possible to tell whether this function will clear the context (the API has changed over time in OpenSSL), it is better to use the _ex() variants and explicitly clear instead. ok beck@ | ||||
* | BN_mod_exp_mont_consttime: check for zero modulus. | bcook | 2016-09-03 | 1 | -4/+5 |
| | | | | | | | Don't dereference |d| when |top| is zero. Also test that various BIGNUM methods behave correctly on zero/even inputs. Original patch from OpenSSL commit d46e946d2603c64df6e1e4f9db0c70baaf1c4c03 | ||||
* | Avoid undefined-behavior right-shifting by a word-size # of bits. | bcook | 2016-09-03 | 1 | -3/+2 |
| | | | | Found with STACK, originally from OpenSSL, ok @beck | ||||
* | shorten s_time; help/ok bcook | jmc | 2016-09-03 | 1 | -91/+22 |
| | |||||
* | Make tree build again | beck | 2016-09-03 | 6 | -12/+482 |
| | |||||
* | remove unused variable | beck | 2016-09-03 | 1 | -2/+1 |
| | |||||
* | Fix some very unnecessary convoultion. | beck | 2016-09-03 | 1 | -16/+6 |
| | | | | ok krw@ | ||||
* | crank minor for API addiiton of x509_email, etc. functions | beck | 2016-09-03 | 2 | -2/+2 |
| |