| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
| |
Fixes bug in f57883a39.
|
| |
|
|
|
|
|
|
|
|
| |
(This would be everywhere running OpenSSL 0.9.7x and earlier, including
all current Macintosh users.)
The code is based on Tom St Denis's LibTomCrypt implementation,
modified to be way less general and use Tor's existing facilities. I
picked this one because it was pretty fast and pretty free, and
because Python uses it too.
|
| |
|
|
| |
This adds an openssl 0.9.8 dependency. Let's see if anybody cares.
|
| |\ |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| |/ |
|
| |
|
|
|
|
|
|
|
|
| |
crypto_global_init gets called. Also have it be crypto_global_init
that calls crypto_seed_rng, so we are not dependent on OpenSSL's
RAND_poll in these fiddly cases.
Should fix bug 907. Bugfix on 0.0.9pre6. Backport candidate.
svn:r18210
|
| |
|
|
|
|
|
|
| |
The subversion $Id$ fields made every commit force a rebuild of
whatever file got committed. They were not actually useful for
telling the version of Tor files in the wild.
svn:r17867
|
| |
|
|
| |
svn:r17804
|
| |
|
|
| |
svn:r17741
|
| |
|
|
| |
svn:r17734
|
| |
|
|
|
|
| |
comments so that they will get recognized as doxygen.
svn:r17729
|
| |
|
|
|
|
| |
and isn't actually a security thing.
svn:r17685
|
| |
|
|
|
|
| |
reference counts. Bugfix on 0.1.0.1-rc.
svn:r17672
|
| |
|
|
|
|
| |
anywhere, and remove the ones that we really want gone.
svn:r17651
|
| |
|
|
| |
svn:r16778
|
| |
|
|
|
|
| |
authorization data. Tweaked a bit: see comments on or-dev.
svn:r16475
|
| |
|
|
|
|
|
| |
fix for bug 704; found by sjmurdoch. Windows and recent openssl both want to define OCSP_RESPONSE; do not let them.
svn:r15533
|
| |
|
|
|
|
| |
openssl uses them.
svn:r15222
|
| |
|
|
| |
svn:r14950
|
| |
|
|
|
|
|
| |
New (temporary) tool to dump the modulus of a key. May help with a project of weasel's.
svn:r14580
|
| |
|
|
|
|
|
| |
Use RAND_poll() again: the bug that made us stop using it has been fixed.
svn:r14150
|
| |
|
|
|
|
|
| |
Whitespace fixes
svn:r13700
|
| |
|
|
|
|
|
| |
More 64-to-32 fixes. Partial backport candidate. still not done.
svn:r13680
|
| |
|
|
|
|
|
| |
Fix all remaining shorten-64-to-32 errors in src/common. Some were genuine problems. Many were compatibility errors with libraries (openssl, zlib) that like predate size_t. Partial backport candidate.
svn:r13665
|
| |
|
|
|
|
|
| |
Apply warnings about implicit 64-to-32 conversions; some from Sebastian Hahn; some not.
svn:r13664
|
| |
|
|
|
|
|
| |
Replace the hefty tor_strpartition with a simple function to replace its only (trivial) use.
svn:r13532
|
| |
|
|
| |
svn:r13440
|
| |
|
|
|
|
|
| |
Change DNs in x509 certificates to be harder to fingerprint. Raise common code. Refactor random hostname generation into crypto.c
svn:r13429
|
| |
|
|
|
|
|
| |
Fix bug in last patch that made secret_to_key crash.
svn:r13415
|
| |
|
|
|
|
|
| |
Be more thorough about memory poisoning and clearing. Add an in-place version of aes_crypt in order to remove a memcpy from relay_crypt_one_payload.
svn:r13414
|
| |
|
|
| |
svn:r13412
|
| |
|
|
|
|
|
| |
Remove some dead code; fix some XXX020s; turn some XXX020s into XXXX_IP6s (i.e., "needs to be fixed when we add ipv6 support").
svn:r13382
|
| |
|
|
|
|
|
| |
Do not segfault if symetric key generation somehow fails in crypto_hybrid_encrypt.
svn:r13132
|
| |
|
|
|
|
|
| |
Remove some dead code.
svn:r13053
|
| |
|
|
| |
svn:r12786
|
| |
|
|
| |
svn:r12580
|
| |
|
|
|
|
|
| |
Parse CERT cells and act correctly when we get them.
svn:r12396
|
| |
|
|
|
|
|
| |
Use HMAC() function from openssl. Oops.
svn:r12304
|
| |
|
|
|
|
|
| |
HMAC-SHA-1 implementation, with unit tests based on vectors from RVFC2202. Steven's stuff will need this.
svn:r12289
|
| |
|
|
|
|
|
| |
Drop support for OpenSSL 0.9.6.
svn:r12191
|
| |
|
|
|
|
|
| |
oprofile was telling me that a fair bit of our time in openssl was spent in base64_decode, so replace base64_decode with an all-at-once fairly optimized implementation. For decoding keys and digests, it seems 3-3.5x faster than calling out to openssl. (Yes, I wrote it from scratch.)
svn:r12002
|
| |
|
|
|
|
|
| |
Fix bug 528: fix memory leak in base32_decode(). While there, also make base32_decode() accept upper-case inputs.
svn:r11946
|
| |
|
|
|
|
|
| |
Remove a bunch of redundant includes in crypto.c
svn:r11885
|
| |
|
|
|
|
|
| |
Patch from karsten: remove cbc and make unit tests handle aes-ctr-with-iv.
svn:r11538
|
| |
|
|
|
|
|
| |
New (untested) code to implement AES-with-IV. Currently, IVs are generated randomly. Once tested, should be (almost) a drop-in replacement for the CBC functions.
svn:r11519
|
| |
|
|
| |
svn:r11490
|