openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Files	Lines
2018-12-15	bump for LibreSSL 2.8.3libressl-v2.8.3 OPENBSD_6_4	bcook	1	-3/+3

2018-12-15	Backport getentropy changes from deraadt@ on MAIN	bcook	5	-144/+27
	Saw a mention somewhere a while back that the gotdata() function in here could creates non-uniformity since very short fetches of 0 would be excluded. blocks of 0 are just as random as any other data, including blocks of 4 4 4.. This is a misguided attempt to identify errors from the entropy churn/gather code doesn't make sense, errors don't happen. ok bcook
2018-11-17	Implement coordinate blinding for EC_POINT as an additional mitigation	tb	10	-18/+113
	for the portsmash vulnerability. OpenBSD 6.4 errata 003
2018-10-07	whitespace cleanup and other minor things from gofmt	tb	1	-44/+39

2018-10-06	make sure all CStrings are freed	tb	1	-3/+7

2018-10-06	plug a memory leak	tb	1	-1/+2

2018-10-06	wrap a few more overlong lines	tb	1	-14/+36

2018-10-06	wrap some overlong fmt.Printfs	tb	1	-53/+106

2018-10-06	It's slightly simpler to get the ECDH public key as an EC_POINT by using	tb	1	-16/+15
	EC_KEY_set_public_key_affine_coordinates() and EC_KEY_get0_public_key() than using EC_POINT_set_affine_coordinates_GFp() directly.
2018-10-06	free EC_POINT and EC_GROUP	tb	1	-1/+4

2018-10-06	Run Wycheproof ECDH Web Crypto test vectors against libcrypto.	tb	1	-6/+155

2018-10-06	merge runECDSAWebCryptoTest() into runECDSATest()	tb	1	-53/+31

2018-10-06	factor ECDSA signature extraction into its own function	tb	1	-24/+35

2018-10-06	make allocate/use/defer dances more consistent in ECDSA sig extraction	tb	1	-9/+8

2018-10-05	Run Wycheproof ECDSA Web Crypto test vectors against libcrypto.	tb	1	-7/+166

2018-10-04	Better refer to RFC 8422 which obsoletes RFC 4492.	tb	1	-2/+2

2018-10-04	While we don't explicitly support curve secp256r1, we can run 1250 tests	tb	1	-11/+2
	against its ANSI equivalent prime256v1 (compare RFC 4492, Appendix A).
2018-10-04	Plug TLS context leak in nc(1) server and client mode. Move	bluhm	1	-12/+10
	tls_free(3) directly after close(2) to catch all cases. based on a patch from Nan Xiao; OK tb@ deraadt@
2018-10-01	As per POSIX, when str{,r}chr is comparing it should convert c to a char.	martijn	4	-8/+10
	The C implementation of str{,r}chr are not linked to the build, because assembly implementations are used, but change to code for easier reference. At least the i386 and amd64 are checked and seem to do the correct thing. Found thanks to the csh any/strchr change. minor pointers and OK millert@
2018-09-30	in ECDH, gather statistics where it makes more sense	tb	1	-8/+5

2018-09-30	bump for LibreSSL 2.8.2	bcook	1	-3/+3

2018-09-25	-T applies to ip6 too, apparently;	jmc	1	-4/+4
	from nan xiao
2018-09-23	bump for LibreSSL 2.8.1libressl-v2.8.1	bcook	1	-3/+3

2018-09-22	Add a comment on the acceptable RSASSA cases.	tb	1	-2/+3

2018-09-22	gather statistics in checkAead{Open,Seal}() as well.	tb	1	-1/+7

2018-09-22	remove some unneeded checks	tb	1	-15/+5

2018-09-22	gather and print some statistics on the acceptable cases we need to	tb	1	-8/+60
	look into
2018-09-22	more flags printing	tb	1	-23/+23

2018-09-22	improve logic involving acceptableAudit	tb	1	-5/+5

2018-09-22	Swap order of "action" and "wt.Flags" in a few fmt.Printfs.	tb	1	-17/+17

2018-09-22	Introduce a couple of convenience targets to help with auditing the	tb	2	-5/+41
	acceptable cases.
2018-09-21	Print the flags field in INFO: and FAIL: messages. It's helpful in	tb	1	-17/+17
	identifying the important failures while auditing.
2018-09-18	fix order of arguments in fmt.Printf()	tb	1	-2/+2

2018-09-17	Simplify initialization of asn1_cb; use correct spelling of NULL.	tb	1	-4/+2

2018-09-17	Move tally mark printing out of the main benchmark loop; ok tb@	cheloha	1	-14/+21

2018-09-16	add missing default case to switch	tb	1	-1/+3

2018-09-16	EVP_aead_chacha20_poly1305() can't actually fail.	tb	1	-4/+1

2018-09-16	Rename AesCcmOrGcm into the slightly less ugly AesAead.	tb	1	-9/+9

2018-09-15	another typo. time to sleep	tb	1	-2/+2

2018-09-15	typos	tb	1	-3/+3

2018-09-15	add a brief comment on the acceptable AES CCM and AES GCM cases	tb	1	-2/+8

2018-09-15	Also exercise EVP_aead_aes_128_gcm() and EVP_aead_aes_256_gcm().	tb	1	-6/+26

2018-09-15	rename checkChaCha20Poly1305{Open,Seal}() into checkAead{Open,Seal}().	tb	1	-5/+5

2018-09-15	Merge AES CCM, AES GCM and ChaCha20 data structures into	tb	1	-42/+21
	single AEAD types. Will be used in upcoming commits.
2018-09-15	Add missing conversion specifier	tb	1	-2/+2

2018-09-15	Modify regress appstest.sh for interoperability testing with OpenSSL 1.1.x	inoguchi	1	-16/+40
	- add sleep before s_client instead of removing -pause option - change check words for s_client output messages - replace CAfile to CApath for s_time - remove -prexit from s_client - confirm openssl command path is executable
2018-09-14	Add interoperability test mode for regress appstest.sh	inoguchi	1	-35/+79
	- test s_server and s_client between different version by option -i - indicate other version by defining OTHER_OPENSSL environment variable - fix "SSL/TLS" to "TLS/SSL", since TLS is correct as technical term - s/SKIPPNG/SKIPPING/
2018-09-12	sync with mozilla-release (one removal, TURKTRUST, more details at	sthen	1	-48/+1
	https://bugzilla.mozilla.org/show_bug.cgi?id=1439127) ok danj guenther millert
2018-09-12	tweak previous;	jmc	2	-4/+4

2018-09-12	crank to follow minor crank in libcrypto; ok tb@ jsing@	djm	2	-2/+2