| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Hide symbols in hkdf, evp, err, ecdsa and ec | beck | 2023-07-07 | 5 | -0/+769 |
| | | | | | ok jsing@ | ||||
| * | Hide symbols in lhash, pem, and rc2 | beck | 2023-07-07 | 22 | -19/+534 |
| | | | | | ok jsing@ | ||||
| * | Hit idea with the loving mallet of knfmt | beck | 2023-07-07 | 7 | -380/+399 |
| | | | | | ok knfmt | ||||
| * | hide symbols in sm, rand, and poly1305 | beck | 2023-07-07 | 11 | -6/+192 |
| | | | | | ok jsing@ | ||||
| * | Replace HOST_l2c() with htob32() or crypto_store_htobe32(). | jsing | 2023-07-07 | 1 | -17/+15 |
| | | | | | ok beck@ | ||||
| * | Rename RSA_eay_* to rsa_*. | jsing | 2023-07-07 | 1 | -44/+33 |
| | | | | | | | | | Rename all of the RSA_eay_* functions to rsa_*, as well as changing the method name (and naming). Reorder things slightly so that we can remove all of the prototypes for static functions. ok tb@ | ||||
| * | Enable reading RSA-PSS certificates | tb | 2023-07-07 | 1 | -1/+2 |
| | | | | | ok beck jsing | ||||
| * | Hit rc2 with the loving mallet of knfmt. | beck | 2023-07-07 | 7 | -413/+425 |
| | | | | | ok tb@ | ||||
| * | Add test coverage for leading zero octet dance | tb | 2023-07-07 | 1 | -1/+15 |
| | | |||||
| * | fixup for MS compilers | bcook | 2023-07-07 | 1 | -1/+8 |
| | | |||||
| * | Hide symbols in ts | beck | 2023-07-07 | 13 | -11/+608 |
| | | | | | ok jsing@ | ||||
| * | Use an unsigned long long and corresponding formats | tb | 2023-07-07 | 1 | -3/+3 |
| | | | | | | | Fixes build on 32 bit. Reported by claudio | ||||
| * | Mop up remaining uses of ASN1_bn_print() | tb | 2023-07-07 | 4 | -140/+38 |
| | | | | | | | | This removes lots of silly buffers and will allow us to make this API go away. ok jsing | ||||
| * | Insert leading octet if high bit of first nibble is 1 | tb | 2023-07-07 | 1 | -1/+7 |
| | | | | | | | | The reason the function this replaces is called ASN1_bn_print() is that it actually prints a representation of the ASN.1 encoding. ok jsing | ||||
| * | One source file per line. | jsing | 2023-07-07 | 1 | -5/+10 |
| | | |||||
| * | Convert ecpk_print_explicit_parameters() to bn_printf() | tb | 2023-07-06 | 1 | -34/+8 |
| | | | | | | | | This eliminates a few stupid dances the horrible ASN1_bn_print() API required. ok jsing | ||||
| * | bn_print: remove unused bio, plug leak | tb | 2023-07-06 | 1 | -5/+3 |
| | | |||||
| * | Add regress coverage for bn_printf | tb | 2023-07-06 | 2 | -1/+283 |
| | | | | | | This must be one of the ugliest tests I've ever written, but I can't think of a better way of doing it. | ||||
| * | Add bn_printf(), a replacement for ASN1_bn_print() | tb | 2023-07-06 | 3 | -2/+154 |
| | | | | | | | | | | | ASN1_bn_print() will be removed in an upcoming bump. This adds an internal API that covers the same functionality but doesn't require that the caller pass in a sufficiently large scratch space that ASN1_bn_print() may or may not use. In addition, this takes a format string, which allows us to ditch some extra dances. ok jsing | ||||
| * | unifdef the LIBRESSL_HAS_TLS1_3_[CLIENT|SERVER] goo | beck | 2023-07-06 | 3 | -54/+3 |
| | | | | | | And remove the tendrils. This was useful for transition but we are now well past this. | ||||
| * | define OPENSSL_NO_DTLS1_1 since we no longer have that either. | beck | 2023-07-06 | 1 | -2/+5 |
| | | | | | ok tb@ | ||||
| * | Define the 'standard' OPENSSL_NO_BLAHBLAH's for no tls 1.0 or 1.1 | beck | 2023-07-06 | 1 | -3/+4 |
| | | | | | | | | | | | We have no tls 1.0 or 1.1 or methods for them. These "in theory" will make things that check the openssl #ifdef soup for all the floating eyeballs make the correct decisions, or if they do not they at least can not blame us. ok tb@ | ||||
| * | Hide symbols in asn1 and bio | beck | 2023-07-05 | 80 | -80/+1511 |
| | | | | | ok jsing@ | ||||
| * | upstream hidden file #include_next workaround for MS C compilers | bcook | 2023-07-05 | 10 | -10/+50 |
| | | | | | ok beck@, tb@ | ||||
| * | don't return in a void function | bcook | 2023-07-05 | 1 | -2/+2 |
| | | | | | ok tb@ | ||||
| * | Merge bio.h patch from libressl-portable | tb | 2023-07-05 | 1 | -1/+15 |
| | | | | | ok beck@ | ||||
| * | whitespace | tb | 2023-07-05 | 1 | -4/+4 |
| | | |||||
| * | Correct formatting | beck | 2023-07-05 | 1 | -17/+9 |
| | | | | | ok jsing@ | ||||
| * | Avoid undefined behavior in tlsexttest | tb | 2023-07-05 | 1 | -11/+18 |
| | | | | | | | | | | An empty array cannot be initialized and it is an incomplete type, so the sizeof() operator can't be applied to it. Therefore initialize it with a zero byte and replace sizeof() use with lengths. Slightly tweaked version of a patch by inoguchi in portable. Discussed with bcook, beck, kettenis | ||||
| * | Mop up last uses of ECDHerror() and ECDSAerror() | tb | 2023-07-05 | 4 | -25/+33 |
| | | | | | ok jsing | ||||
| * | Hide symbols in chacha | beck | 2023-07-05 | 3 | -1/+43 |
| | | | | | ok jsing@ | ||||
| * | One more ECDSAerror goes. | tb | 2023-07-05 | 1 | -2/+2 |
| | | |||||
| * | ECDHerror() and ECDSAerror will go away | tb | 2023-07-05 | 2 | -45/+45 |
| | | | | | | | Move some trivial ones to ECerror(). discussed with jsing | ||||
| * | Adjust the public declaration of OpenSSLDie to use a portable | bcook | 2023-07-05 | 1 | -2/+10 |
| | | | | | | | method of indicating that the function does not return. ok tb@ | ||||
| * | Drop an incorrect part from a comment | tb | 2023-07-05 | 1 | -2/+2 |
| | | |||||
| * | Missing . in comment | tb | 2023-07-05 | 1 | -2/+2 |
| | | |||||
| * | Fix #includes | tb | 2023-07-05 | 1 | -2/+6 |
| | | |||||
| * | Remove local prototypes for public API (?!) | tb | 2023-07-05 | 1 | -6/+1 |
| | | |||||
| * | Improve BN_bn2bin() error check for readability | tb | 2023-07-05 | 1 | -2/+2 |
| | | |||||
| * | Merge ECDH code that will stay into ecdh.c | tb | 2023-07-05 | 3 | -125/+65 |
| | | |||||
| * | Move ECDSA_size() to a more sensible place in this file | tb | 2023-07-05 | 1 | -28/+28 |
| | | |||||
| * | Merge ECDSA code that will stay into ecdsa.c | tb | 2023-07-05 | 3 | -160/+97 |
| | | | | | discussed with jsing | ||||
| * | Rename ecs_local.h into ecdsa_local.h | tb | 2023-07-05 | 7 | -13/+13 |
| | | |||||
| * | Make variables in prototypes match function declarations | tb | 2023-07-05 | 1 | -6/+6 |
| | | |||||
| * | Drop useless ossl_ prefixes | tb | 2023-07-05 | 8 | -40/+52 |
| | | | | | discussed with jsing | ||||
| * | Avoid outputting invalid signatures | tb | 2023-07-04 | 1 | -1/+11 |
| | | | | | | | | | | | | | The caller can provide an r which will be added to the ECDSA_SIG unchecked. This can happen via ECDSA_{,do_}sign_ex() or ECDSA_sign_setup() or else via a custom sign_sig() handler. Therefore add a check that it is in the bounds required. Since k was long thrown away, there's no way to check kinv, so it needs to be trusted. Misdesigned APIs that will output garbage everywhere... ok jsing | ||||
| * | Clean up ECDSA verification | tb | 2023-07-04 | 1 | -14/+29 |
| | | | | | | | | | Use variable names that correspond more closely to the standard. Use an additional variable for s^-1 for readability. Annotate the code with the corresponding steps from FIPS 186-5. ok jsing | ||||
| * | ECDSA signing: annotate code with steps corresponding to FIPS 185-6. | tb | 2023-07-04 | 1 | -3/+25 |
| | | | | | ok jsing | ||||
| * | Extract private key and group order in s computation | tb | 2023-07-04 | 1 | -19/+18 |
| | | | | | | | | This pushes a few variables no longer needed in ossl_ecdsa_sign_sig() into ecdsa_compute_s() separating API logic and pure computation a bit more. ok beck | ||||
| * | Use key for the EC_KEY everywhere | tb | 2023-07-04 | 1 | -39/+38 |
| | | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |