| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | Some KNF. | jsing | 2014-06-24 | 1 | -6/+12 | |
| | | ||||||
| * | Replace 48 lines of code with a single inet_pton() call. The previous | jsing | 2014-06-24 | 1 | -48/+3 | |
| | | | | | | | | | | | | | | handrolled version could not even make use of sscanf(), since that would not work with a certain antiquated compiler. It is worth noting that there is a tiny change in behaviour - previously calling BIO_get_host_ip() with something that looked like it might be a valid IP address (for example, "1." or even ".") would result in it returning failure rather than trying a BIO_gethostbyname() - now we'll always try a BIO_gethostbyname() if it was not a valid IPv4 address. ok beck@ miod@ deraadt@ | |||||
| * | Actually make BIO_set_tcp_ndelay() work - TCP_NODELAY will not magically | jsing | 2014-06-24 | 1 | -16/+3 | |
| | | | | | | | appear by itself. ok beck@ miod@ | |||||
| * | Since this is a library, place issetugid() before every getenv() | deraadt | 2014-06-23 | 5 | -13/+24 | |
| | | | | | ok miod | |||||
| * | unbreak build of getentropy_sysctl - we need linux/sysctl.h, and | beck | 2014-06-23 | 2 | -36/+42 | |
| | | | | | RANDOM_UUID is an enum member. | |||||
| * | unbreak - main needs to be extern in here somewhere. | beck | 2014-06-23 | 2 | -2/+4 | |
| | | ||||||
| * | BIO_sock_init() no longer does anything, so stop calling it. | jsing | 2014-06-22 | 1 | -10/+1 | |
| | | ||||||
| * | Just use SOMAXCONN and IPPROTO_TCP, since we know we have them. | jsing | 2014-06-22 | 1 | -14/+4 | |
| | | ||||||
| * | In BIO_get_port(), use strol() with appropriate range checks rather than | jsing | 2014-06-22 | 3 | -34/+50 | |
| | | | | | | | | an atoi() followed by an unsigned short cast. This stops things like "-1" and "66536" from being considered to be "valid" port numbers. ok beck@ deraadt@ | |||||
| * | nuke unused test programs; ok jsing | deraadt | 2014-06-22 | 2 | -46/+2 | |
| | | ||||||
| * | More KNF. | jsing | 2014-06-22 | 1 | -5/+5 | |
| | | ||||||
| * | KNF. | jsing | 2014-06-22 | 3 | -208/+203 | |
| | | ||||||
| * | KNF. | jsing | 2014-06-22 | 6 | -961/+1081 | |
| | | ||||||
| * | More KNF. | jsing | 2014-06-22 | 3 | -9/+9 | |
| | | ||||||
| * | repair indentation for an inner loop; shorten some macros and variable | deraadt | 2014-06-21 | 2 | -258/+270 | |
| | | | | | | names to shorten line lengths ok beck | |||||
| * | Switch to the ISC licensed versions of these files, which Google has made | jsing | 2014-06-21 | 2 | -101/+26 | |
| | | | | | | | available via boringssl. ok deraadt@ | |||||
| * | More KNF. | jsing | 2014-06-21 | 8 | -61/+56 | |
| | | ||||||
| * | KNF | miod | 2014-06-21 | 3 | -124/+137 | |
| | | ||||||
| * | KNF | miod | 2014-06-21 | 3 | -178/+186 | |
| | | ||||||
| * | hash in correct pointer | deraadt | 2014-06-21 | 2 | -4/+4 | |
| | | ||||||
| * | Remove the OPENSSL_*cap getenv's. A program should not be able to | deraadt | 2014-06-20 | 3 | -25/+5 | |
| | | | | | | change the behaviour of the library in such a complicated fashion. ok miod | |||||
| * | wrap getenv OPENSSL_ALLOW_PROXY_CERTS in an issetugid check, to protect | deraadt | 2014-06-20 | 1 | -2/+2 | |
| | | | | | | setuid applications from being fooled. ok miod | |||||
| * | KNF | beck | 2014-06-20 | 2 | -96/+112 | |
| | | ||||||
| * | indent | deraadt | 2014-06-20 | 2 | -4/+4 | |
| | | ||||||
| * | rearrange so that the main function with the important comments is at the top | otto | 2014-06-20 | 2 | -156/+160 | |
| | | | | | ok deraadt@ beck@ | |||||
| * | Work in progress on how to deal with the inherit unreliability of | beck | 2014-06-20 | 2 | -0/+878 | |
| | | | | | | | /dev/urandom. Does well in the fallback case. Get it in tree so it can be worked on. ok otto@ deraadt@ | |||||
| * | Remove OPENSSL_instrument_halt and OPENSSL_far_spin, which both might | miod | 2014-06-20 | 1 | -70/+0 | |
| | | | | | have been used under DJGPP in the previous century (if at all). | |||||
| * | Fix incorrect bounds check in amd64 assembly version of bn_mul_mont(); | miod | 2014-06-20 | 2 | -4/+4 | |
| | | | | | | noticed and fix by Fedor Indutny of Joyent ( https://github.com/joyent/node/issues/7704 ) | |||||
| * | check stack push return and make some effort to clean up. ok beck miod | tedu | 2014-06-19 | 1 | -2/+6 | |
| | | ||||||
| * | improve error checking. set error code on error, and check malloc return. | tedu | 2014-06-19 | 1 | -2/+13 | |
| | | | | | add missing unlock in one case. ok lteo miod | |||||
| * | free iv, then cleanse. from Cyril Jouve | tedu | 2014-06-15 | 1 | -2/+2 | |
| | | ||||||
| * | Simplify EVP_MD_CTX_create() by just using calloc(). Also, use 0 rather | jsing | 2014-06-15 | 1 | -9/+4 | |
| | | | | | | | than '\0' for several memset(). ok beck@ miod@ | |||||
| * | Simplify EVP_CIPHER_CTX_new() - stop pretending that EVP_CIPHER_CTX_init() | jsing | 2014-06-15 | 1 | -6/+2 | |
| | | | | | | | does something special... just use calloc() instead. ok beck@ miod@ | |||||
| * | Add missing OPENSSL_cleanse() in aead_aes_gcm_cleanup(). | jsing | 2014-06-15 | 1 | -1/+2 | |
| | | | | | ok beck@ miod@ | |||||
| * | The OPENSSL_cleanse() in aes_gcm_cleanup() only cleans the gcm field of the | jsing | 2014-06-15 | 1 | -2/+2 | |
| | | | | | | | | EVP_AES_GCM_CTX, leaving the AES key untouched - clean the entire context, rather than just part of it. ok beck@ miod@ | |||||
| * | Add more bounded attributes to the buffer and md5/sha headers in libssl | avsm | 2014-06-14 | 3 | -19/+35 | |
| | | | | | ok miod@ | |||||
| * | typo | miod | 2014-06-13 | 1 | -2/+2 | |
| | | ||||||
| * | replace atoi() calls with strtol(). Follow the idiomatic pattern in our | deraadt | 2014-06-12 | 3 | -40/+97 | |
| | | | | | | | | | | manual page strictly. Return -2 if the strings are not strict numbers. The numbers remain in the range of "int". Range checking for these parameters is done later in the pkey_*_ctl() functions, or sometimes in functions much further downstream... but not always!!! ok millert miod mikeb | |||||
| * | tags as requested by miod and tedu | deraadt | 2014-06-12 | 690 | -609/+697 | |
| | | ||||||
| * | Stop setting the EVP_MD_CTX_FLAG_NON_FIPS_ALLOW - it has been ignored since | jsing | 2014-06-11 | 1 | -1/+0 | |
| | | | | | | | OpenSSL 1.0.0. ok miod@ (a little while back) | |||||
| * | Tsk. Tsk. Someone forgot to compile test the other half. | jsing | 2014-06-11 | 1 | -2/+2 | |
| | | ||||||
| * | Provide support for non-funopen systems. | deraadt | 2014-06-11 | 2 | -10/+32 | |
| | | | | | ok beck | |||||
| * | c-file-style hints, begone; ok beck | deraadt | 2014-06-11 | 45 | -45/+45 | |
| | | ||||||
| * | Abandon the auto-ENGINE /dev/crypto interface. VIA 3des cbc receives | deraadt | 2014-06-10 | 5 | -1370/+3 | |
| | | | | | | | | | | | | | | collateral damage. The syncronous nature of this mechanism has hampered performance for symmetric crypto relative to brute-force cpu. The assymetric crypto support never really materialized in drivers. So abandon the complexity. ok tedu beck mikeb some disagrement from djm but if he wants to test /dev/crypto ciphers he should do it without this this gigantic API in the way | |||||
| * | KNF. | jsing | 2014-06-10 | 8 | -756/+756 | |
| | | ||||||
| * | KNF. | jsing | 2014-06-10 | 11 | -435/+516 | |
| | | ||||||
| * | Use C99 initialisers for EVP_MD structs, for clarity, grepability and to | jsing | 2014-06-10 | 11 | -180/+266 | |
| | | | | | | | protect from future field reordering/removal. No difference in generated assembly. | |||||
| * | use memset instead of bzero | deraadt | 2014-06-09 | 1 | -2/+2 | |
| | | ||||||
| * | do not include dso.h where it is not needed; ok miod | deraadt | 2014-06-09 | 3 | -3/+0 | |
| | | ||||||
| * | Stop using DSO_global_lookup to reach getaddrinfo() and friends | deraadt | 2014-06-08 | 1 | -40/+3 | |
| | | | | | discussed with tedu, ok jsing | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |