| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2015-09-13 | Rename readgptlabel() to spoofgptlabel() because that's what we |   krw | 2 | -66/+42 | |
| really want it to do. Handle all the actual disklabel reading in readdoslabel(). Makes the code much simpler to understand. ok deraadt@ | |||||
| 2015-09-13 | Stop generating private keys in a network buffer. |   jsing | 2 | -58/+58 | |
| The current client key exchange code generates DH and ECDH keys into the same buffer that we use to send data to the network - stop doing this and malloc() a new buffer, which we explicit_bzero() and free() on return. This also benefits from ASLR and means that the keys are no longer generated in a well known location. ok beck@ | |||||
| 2015-09-13 | The number of rounds is just two digits in the salt. We've already |   millert | 1 | -2/+2 | |
| verified that they are there via isdigit() so we can convert from ASCII to an int without using atoi(). OK guenther@ deraadt@ | |||||
| 2015-09-13 | Factor out setup_up / destroy_ui functions. |   bcook | 4 | -58/+58 | |
| This pulls out and renames setup_ui/destroy_ui so we have something that can be replaced as-needed, moving the the console setup code for Windows to app_win.c in -portable, instead of needing a local patch to enable binary console mode ui_read/write are also simplified. | |||||
| 2015-09-13 | Use ECDH_size() instead of rolling our own. | jsing | 4 | -24/+22 | |
| ok beck@ | |||||
| 2015-09-13 | document extra algorithms available with openssl speed command | bcook | 1 | -1/+4 | |
| ok jmc@ | |||||
| 2015-09-13 | Switch to miod's shiny new OPENSSL_cpu_caps() and we can now also enable | jsing | 2 | -6/+6 | |
| the AES acceleration checking for i386. ok beck@ miod@ | |||||
| 2015-09-13 | Locators are long now. |   miod | 3 | -6/+6 | |
| 2015-09-13 | Needs <sys/systm.h> before <sys/syscall_mi.h> now. | miod | 1 | -3/+3 | |
| 2015-09-13 | authdes_create() was never implemented |   guenther | 1 | -3/+1 | |
| 2015-09-13 | intr_barrier(9) for i386. |   kettenis | 2 | -2/+9 | |
| 2015-09-13 | Merge ech_ossl.c into ech_key.c - not much point having one file with a | jsing | 5 | -432/+294 | |
| four line function and a tonne of license text. ok beck@ | |||||
| 2015-09-13 | Wrap <grp.h> so that calls go direct and the symbols are all weak. | guenther | 2 | -1/+42 | |
| 2015-09-13 | intr_barrier(9) | kettenis | 2 | -2/+44 | |
| 2015-09-13 | Nuke openssl/e_os2.h, since nothing should be using it. | jsing | 2 | -86/+1 | |
| ok deraadt@ "hurray! finally!" miod@ "Yay!" sthen@ | |||||
| 2015-09-13 | Provide ECDH_size(). | jsing | 6 | -8/+22 | |
| "jajaja" miod@ | |||||
| 2015-09-13 | Wrap <termios.h> so that calls go direct and the symbols are all weak. | guenther | 3 | -2/+41 | |
| 2015-09-13 | Check ECDH output buffer length and avoid truncation. | jsing | 6 | -12/+32 | |
| Currently, if you call ECDH_compute_key() it will silently truncate the resulting key if the output buffer is less than the key size. Instead, detect this condition and return an error. If the buffer provided is larger than the key length, zero the remainder. ok beck@ miod@ "+ shivers" | |||||
| 2015-09-13 | Introduce intr_barrier(4), an interface that guarantees that an interrupt | kettenis | 2 | -2/+9 | |
| handler that was running has finished. ok miod@, guenther@ (both for the equivalent sparc64 diff) | |||||
| 2015-09-13 | Introduce intr_barrier(4), an interface that guarantees that an interrupt | kettenis | 2 | -2/+10 | |
| handler that was running has finished. ok miod@, guenther@ | |||||
| 2015-09-13 | Wrap <ttyent.h> so that calls go direct and the symbols are all weak. | guenther | 2 | -1/+32 | |
 |
index : wireguard-openbsd | |
| WireGuard implementation for the OpenBSD kernel | Matt Dunwoodie |
| summaryrefslogtreecommitdiffstats |