| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | unbreak build of getentropy_sysctl - we need linux/sysctl.h, and | beck | 2014-06-23 | 2 | -36/+42 | |
| | | | | | RANDOM_UUID is an enum member. | |||||
| * | unbreak - main needs to be extern in here somewhere. | beck | 2014-06-23 | 2 | -2/+4 | |
| | | ||||||
| * | BIO_sock_init() no longer does anything, so stop calling it. | jsing | 2014-06-22 | 1 | -10/+1 | |
| | | ||||||
| * | Just use SOMAXCONN and IPPROTO_TCP, since we know we have them. | jsing | 2014-06-22 | 1 | -14/+4 | |
| | | ||||||
| * | In BIO_get_port(), use strol() with appropriate range checks rather than | jsing | 2014-06-22 | 3 | -34/+50 | |
| | | | | | | | | an atoi() followed by an unsigned short cast. This stops things like "-1" and "66536" from being considered to be "valid" port numbers. ok beck@ deraadt@ | |||||
| * | nuke unused test programs; ok jsing | deraadt | 2014-06-22 | 2 | -46/+2 | |
| | | ||||||
| * | More KNF. | jsing | 2014-06-22 | 1 | -5/+5 | |
| | | ||||||
| * | KNF. | jsing | 2014-06-22 | 3 | -208/+203 | |
| | | ||||||
| * | KNF. | jsing | 2014-06-22 | 6 | -961/+1081 | |
| | | ||||||
| * | More KNF. | jsing | 2014-06-22 | 3 | -9/+9 | |
| | | ||||||
| * | repair indentation for an inner loop; shorten some macros and variable | deraadt | 2014-06-21 | 2 | -258/+270 | |
| | | | | | | names to shorten line lengths ok beck | |||||
| * | Switch to the ISC licensed versions of these files, which Google has made | jsing | 2014-06-21 | 2 | -101/+26 | |
| | | | | | | | available via boringssl. ok deraadt@ | |||||
| * | More KNF. | jsing | 2014-06-21 | 8 | -61/+56 | |
| | | ||||||
| * | KNF | miod | 2014-06-21 | 3 | -124/+137 | |
| | | ||||||
| * | KNF | miod | 2014-06-21 | 3 | -178/+186 | |
| | | ||||||
| * | hash in correct pointer | deraadt | 2014-06-21 | 2 | -4/+4 | |
| | | ||||||
| * | Remove the OPENSSL_*cap getenv's. A program should not be able to | deraadt | 2014-06-20 | 3 | -25/+5 | |
| | | | | | | change the behaviour of the library in such a complicated fashion. ok miod | |||||
| * | wrap getenv OPENSSL_ALLOW_PROXY_CERTS in an issetugid check, to protect | deraadt | 2014-06-20 | 1 | -2/+2 | |
| | | | | | | setuid applications from being fooled. ok miod | |||||
| * | KNF | beck | 2014-06-20 | 2 | -96/+112 | |
| | | ||||||
| * | indent | deraadt | 2014-06-20 | 2 | -4/+4 | |
| | | ||||||
| * | rearrange so that the main function with the important comments is at the top | otto | 2014-06-20 | 2 | -156/+160 | |
| | | | | | ok deraadt@ beck@ | |||||
| * | Work in progress on how to deal with the inherit unreliability of | beck | 2014-06-20 | 2 | -0/+878 | |
| | | | | | | | /dev/urandom. Does well in the fallback case. Get it in tree so it can be worked on. ok otto@ deraadt@ | |||||
| * | Remove OPENSSL_instrument_halt and OPENSSL_far_spin, which both might | miod | 2014-06-20 | 1 | -70/+0 | |
| | | | | | have been used under DJGPP in the previous century (if at all). | |||||
| * | Fix incorrect bounds check in amd64 assembly version of bn_mul_mont(); | miod | 2014-06-20 | 2 | -4/+4 | |
| | | | | | | noticed and fix by Fedor Indutny of Joyent ( https://github.com/joyent/node/issues/7704 ) | |||||
| * | check stack push return and make some effort to clean up. ok beck miod | tedu | 2014-06-19 | 1 | -2/+6 | |
| | | ||||||
| * | improve error checking. set error code on error, and check malloc return. | tedu | 2014-06-19 | 1 | -2/+13 | |
| | | | | | add missing unlock in one case. ok lteo miod | |||||
| * | free iv, then cleanse. from Cyril Jouve | tedu | 2014-06-15 | 1 | -2/+2 | |
| | | ||||||
| * | Simplify EVP_MD_CTX_create() by just using calloc(). Also, use 0 rather | jsing | 2014-06-15 | 1 | -9/+4 | |
| | | | | | | | than '\0' for several memset(). ok beck@ miod@ | |||||
| * | Simplify EVP_CIPHER_CTX_new() - stop pretending that EVP_CIPHER_CTX_init() | jsing | 2014-06-15 | 1 | -6/+2 | |
| | | | | | | | does something special... just use calloc() instead. ok beck@ miod@ | |||||
| * | Add missing OPENSSL_cleanse() in aead_aes_gcm_cleanup(). | jsing | 2014-06-15 | 1 | -1/+2 | |
| | | | | | ok beck@ miod@ | |||||
| * | The OPENSSL_cleanse() in aes_gcm_cleanup() only cleans the gcm field of the | jsing | 2014-06-15 | 1 | -2/+2 | |
| | | | | | | | | EVP_AES_GCM_CTX, leaving the AES key untouched - clean the entire context, rather than just part of it. ok beck@ miod@ | |||||
| * | Add more bounded attributes to the buffer and md5/sha headers in libssl | avsm | 2014-06-14 | 3 | -19/+35 | |
| | | | | | ok miod@ | |||||
| * | typo | miod | 2014-06-13 | 1 | -2/+2 | |
| | | ||||||
| * | replace atoi() calls with strtol(). Follow the idiomatic pattern in our | deraadt | 2014-06-12 | 3 | -40/+97 | |
| | | | | | | | | | | manual page strictly. Return -2 if the strings are not strict numbers. The numbers remain in the range of "int". Range checking for these parameters is done later in the pkey_*_ctl() functions, or sometimes in functions much further downstream... but not always!!! ok millert miod mikeb | |||||
| * | tags as requested by miod and tedu | deraadt | 2014-06-12 | 690 | -609/+697 | |
| | | ||||||
| * | Stop setting the EVP_MD_CTX_FLAG_NON_FIPS_ALLOW - it has been ignored since | jsing | 2014-06-11 | 1 | -1/+0 | |
| | | | | | | | OpenSSL 1.0.0. ok miod@ (a little while back) | |||||
| * | Tsk. Tsk. Someone forgot to compile test the other half. | jsing | 2014-06-11 | 1 | -2/+2 | |
| | | ||||||
| * | Provide support for non-funopen systems. | deraadt | 2014-06-11 | 2 | -10/+32 | |
| | | | | | ok beck | |||||
| * | c-file-style hints, begone; ok beck | deraadt | 2014-06-11 | 45 | -45/+45 | |
| | | ||||||
| * | Abandon the auto-ENGINE /dev/crypto interface. VIA 3des cbc receives | deraadt | 2014-06-10 | 5 | -1370/+3 | |
| | | | | | | | | | | | | | | collateral damage. The syncronous nature of this mechanism has hampered performance for symmetric crypto relative to brute-force cpu. The assymetric crypto support never really materialized in drivers. So abandon the complexity. ok tedu beck mikeb some disagrement from djm but if he wants to test /dev/crypto ciphers he should do it without this this gigantic API in the way | |||||
| * | KNF. | jsing | 2014-06-10 | 8 | -756/+756 | |
| | | ||||||
| * | KNF. | jsing | 2014-06-10 | 11 | -435/+516 | |
| | | ||||||
| * | Use C99 initialisers for EVP_MD structs, for clarity, grepability and to | jsing | 2014-06-10 | 11 | -180/+266 | |
| | | | | | | | protect from future field reordering/removal. No difference in generated assembly. | |||||
| * | use memset instead of bzero | deraadt | 2014-06-09 | 1 | -2/+2 | |
| | | ||||||
| * | do not include dso.h where it is not needed; ok miod | deraadt | 2014-06-09 | 3 | -3/+0 | |
| | | ||||||
| * | Stop using DSO_global_lookup to reach getaddrinfo() and friends | deraadt | 2014-06-08 | 1 | -40/+3 | |
| | | | | | discussed with tedu, ok jsing | |||||
| * | Remove various test stubs. The good ones have been moved by jsing | deraadt | 2014-06-07 | 24 | -2907/+0 | |
| | | | | | | | and others to the regress framework. These remaining ones just muddle us up when re-reading code repeatedly. ok jsing | |||||
| * | malloc() result does not need a cast. | deraadt | 2014-06-07 | 48 | -71/+69 | |
| | | | | | ok miod | |||||
| * | s/assember/assembler/ before someone gets offended. At the last | deraadt | 2014-06-06 | 10 | -15/+15 | |
| | | | | | | hackathon, just saying 'ass ember' was enough to start giggles. Unfortunately far more offensive stuff remains in here... | |||||
| * | Fix a leak that can occur when len == 0, and as a result we leak a \0 byte. | logan | 2014-06-04 | 1 | -1/+1 | |
| | | | | | | | (From Frantisek Boranek) OK from miod@ | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |