| Commit message (Collapse) | Author | Files | Lines |
|---|
|
From Brent Cook.
|
|
Prompted by a diff from Brent Cook.
|
|
more #ifdefs and a new source file that contains a single function.
Nuke the #if 0 code that is now a macro and move the single function in
evp_acnf.c to c_all.c, which is where the other code lives. While here,
tidy evp.h slightly, remove an unnecessary #ifdef __OpenBSD__ and nuke
a comment that is now a lie.
ok miod@
|
|
|
|
ok beck@
|
|
ASN1_TIME_to_generalizedtime() with wrappers around their former
implementations, making sure memory allocated is freed in all failure cases.
help and ok from beck@ and Brendan MacDonell.
|
|
inclusion in <ssl/dtls1.h> by the benign
`struct _pqueue; typedef struct _pqueue *pqueue;'.
Note that said dtls1.h should probably be considered a private header as well...
ok beck@
|
|
installed.
|
|
|
|
Thanks to Piotr Sikora for providing a reference to the source.
|
|
|
|
|
|
|
|
Langley's Chromium OpenSSL patches.
ok miod@
|
|
|
|
|
|
implementations. This largely pulls in Adam Langley's AEAD patches from
Chromium's OpenSSL.
ok miod@
|
|
that were not wrapped with #if PEDANTIC.
ok miod@
|
|
required. try to document this fact and some of the history.
with feedback from deraadt guenther millert
|
|
implementation.
ok miod@
|
|
two keys and four IVs to do much magic, is specified as such with test vectors,
but the implementation actually always uses the first key, and the test vectors
were computed with it, so they are wrong.
Fixing the code to match the intended specification would break
interoperability with existing code (assuming such code would exist), so it is
better to remove this interface, which is obviously too complex for mere
mortals if even its author can not implement it correctly.
Riding on the libcrypto major bump.
|
|
ASN1_unpack_string() from the NO_ASN1_OLD purge; turns out that some Ruby
extensions still use them, unfortunately, so we need to give them some more
time to catch up on ``recent'' interfaces.
Riding on the libcrypto major bump.
|
|
of 64-bit data, and only used by DTLS, to libssl where it belongs.
Remove pqueue_print() which is a debugging interface and serves no useful
purpose, except for the regress test, which grows its own pqueue_print()
routine.
Bump libcrypto major and libssl minor.
WARNING: do not update your tree right now, more changes are coming, which
will ride the libcrypto major bump.
|
|
while changing things, add a crypt_checkpass wrapper that handles most of
the edge cases. (not quite ready for production, though.)
ok deraadt
|
|
deterministic behavior. four selected because it's more than three, less
than five. i.e., no particular reason.
|
|
|
|
|
|
|
|
|
|
reported by Steven Chamberlain
|
|
Thanks to Google for agreeing to offer the code under more agreeable
licensing terms!
|
|
ok jmc@
|
|
can avoid reinventing the wheel
ok guenther schwarze
|
|
Forgotten during yesterday's STRICT_ALIGNMENT cleanup commit.
|
|
|
|
|
|
"fire bomb" tedu@
|
|
|
|
is amusing.
ok deraadt@
|
|
|
|
|
|
|
|
ok miod@
|
|
than defining it for not (i386 and amd64 (and sometimes s390)) only.
Compile-time tests remain compile-time tests, and runtime-test remain
runtime-test instead of being converted to compile-time tests, per matthew@'s
explicit demand (rationale: this makes sure the compiler checks your code even
if you won't run it).
No functional change except on s390 (which we don't run on) and vax (which we
run on, but noone cares about)
ok matthew@
|
|
|
|
reported to openssl by David Ramos (rt 3338)
stealing commit from logan, who's run away. ok miod.
|
|
i've never worked on codebase so resistant to efforts to improve it.
|
|
much debugging work done by otto. ok miod otto.
side note: BN_FLG_STATIC_DATA doesn't actually mean the data is static.
it's also used to indicate the data may be secretly shared behind your back
as a sort of poor man's refcounting, but without the refcounting.
|
|
ok crickets@
|
|
|
