openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Hide symbols in bn	beck	2023-07-08	1	-1/+5
\| \| \| \|	ok tb@
*	Avoid negative zero.	jsing	2023-02-13	1	-5/+5
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Whenever setting negative to one (or when it could potentially be one), always use BN_set_negative() since it checks for a zero valued bignum and will not permit negative to be set in this case. Since BN_is_zero() currently relies on top == 0, call BN_set_negative() after top has been set (or bn_correct_top() has been called). This fixes a long standing issue where -0 and +0 have been permitted, however multiple code paths (such as BN_cmp()) fail to treat these as equivalent. Prompted by Guido Vranken who is adding negative zero fuzzing to oss-fuzz. ok tb@
*	Replace BN_lshift1()/BN_rshift1() with calls to BN_lshift()/BN_rshift().	jsing	2023-01-11	1	-125/+42
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Currently, BN_lshift1() and BN_rshift1() are separate implementations that are intended to be faster since the shift is known (and only one bit crosses a word boundary). However, with the rewrite of BN_lshift() and BN_rshift(), they are either slower or only minimally faster (depending on architecture). Avoid duplication and turn BN_lshift1()/BN_rshift1() into functions that call inlined versions of BN_lshift()/BN_rshift(), making BN_lshift() and BN_rshift() call the same inlined implementation. This results in a single implementation and BN_lshift1()/BN_rshift1() that out perform the previous versions (in part due to compiler optimisation). Now that none of the original code exists, replace the license and copyright for this file. ok tb@
*	Rewrite BN_lshift()	jsing	2023-01-10	1	-26/+57
\| \| \| \| \| \| \| \|	This improves readability and eliminates special handling for various cases, making the code cleaner and closer to constant time. Basic benchmarking shows a performance gain on modern 64 bit architectures. ok tb@
*	Rewrite BN_rshift()	jsing	2023-01-05	1	-37/+42
\| \| \| \| \| \| \| \| \| \| \| \|	This improves readability and eliminates special handling for various cases, making the code cleaner and closer to constant time. Basic benchmarking shows a performance gain on modern 64 bit architectures, while there is a decrease on legacy 32 bit architectures (i386), particularly for the zero bit shift case (which is now handled in the same code path). ok tb@
*	Make internal header file names consistent	tb	2022-11-26	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Libcrypto currently has a mess of _lcl.h, _locl.h, and _local.h names used for internal headers. Move all these headers we inherited from OpenSSL to _local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook
*	Remove BIGNUM consistency macros.	jsing	2022-11-26	1	-13/+1
\| \| \| \| \| \| \| \| \| \| \| \|	Compiling with BN_DEBUG (and if you want to take it further, BN_DEBUG_RAND) supposedly adds consistency checks to the BN code. These are rarely if ever used and introduce a bunch of clutter in the code. Furthermore, there are hacks in place to undo things that the debugging code does. Remove all of this mess and instead rely on always enabled checks, more readable code and proper regress coverage to ensure correct behaviour. "Good riddance." tb@
*	Change bn_expand()/bn_wexpand() to indicate failure/success via 0/1.	jsing	2022-11-24	1	-6/+6
\| \| \| \| \| \| \| \| \|	Currently bn_expand()/bn_wexpand() return a BIGNUM *, however none of the callers use this (and many already treat it as a true/false value). Change these functions to return 0 on failure and 1 on success, revising callers that test against NULL in the process. ok tb@
*	Error out on negative shifts in BN_{r,l}shift()	tb	2022-06-22	1	-1/+13
\| \| \| \| \| \| \| \| \| \|	Without these checks in both functions nw = n / BN_BITS2 will be negative and this leads to out-of-bounds accesses via negative array indices and memset with a negative size. Pointed out by cheloha ok jsing
*	deregister; no binary change	jsg	2014-10-28	1	-2/+2
\| \| \| \|	ok jsing@ miod@
*	Only import cryptlib.h in the four source files that actually need it.	jsing	2014-07-11	1	-2/+1
\| \| \| \| \| \| \| \|	Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes. ok beck@ miod@
*	Stop including standard headers via cryptlib.h - pull in the headers that	jsing	2014-07-10	1	-1/+3
\| \| \| \| \| \|	are needed in the source files that actually require them. ok beck@ miod@
*	tags as requested by miod and tedu	deraadt	2014-06-12	1	-1/+1
\|
*	Emergency knfectomie requested by tedu@.	jsing	2014-05-08	1	-127/+121
\|
*	resolve conflicts	djm	2012-10-13	1	-12/+15
\|
*	resolve conflicts	djm	2009-01-09	1	-1/+1
\|
*	resolve conflicts	djm	2008-09-06	1	-6/+21
\|
*	OpenSSL 0.9.7 stable 2002 05 08 merge	beck	2002-05-15	1	-4/+4
\|
*	openssl-engine-0.9.6a merge	beck	2001-06-22	1	-0/+5
\|
*	openssl-engine-0.9.6 merge	beck	2000-12-15	1	-1/+1
\|
*	OpenSSL 0.9.4 merge	beck	1999-09-29	1	-14/+4
\|
*	Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build	ryker	1998-10-05	1	-0/+210
	functionality for shared libs. Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library. Needs documentation and help from ports for easy upgrade to full functionality where legally possible.