plan9front.git - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2014-04-26	tlshand: cleanup 36 -> MD5dlen+SHA1dlen	cinap_lenrek

2014-04-26	tlshand: fix memory leaks, fix alloc element size for certs pointer array, ↵	cinap_lenrek
	error handling
2014-02-28	libsec: fix memory leaks in seq_decode() and octet_decode() of asn1 parser	cinap_lenrek

2014-02-28	libsec: skip missing thumbprint files; not an error	cinap_lenrek

2014-02-28	libsec: improve thumbprint code	cinap_lenrek
	1) handle errors when loading thumbprint file. initThumbprints() now returns nil and sets errstr on error. a syntax error in a thumbprint file should be reported instead of silently ignored! (have to check users) 2) fix memory leak in initThumbprints(); we have to use freeThumbprints() instead of free to release crltab. 3) use the actual head entries for thumbprint storage in the thumbprints array. most thumbprint files are rather sparse. 4) remove private emalloc() function. we shouldnt just exit the calling process on allocation error, instead handle error properly. this is a library!
2014-02-25	libsec: add aes_128_cbc and aes_256_cbc ciphers	mischief

2014-02-25	libsec: move static sendbuf into TlsConnection and give receive buffer a ↵	mischief
	better name
2014-02-20	fix blowfish endianess confusion (thanks erik)	cinap_lenrek
	from /n/sources/patch/blowfish/readme: Blowfish is broken. The order of the bytes in the ciphertext is wrong. The problem is the conversion from the ciphertext plaintext block to the array of u32int used by the core funcions and vice versa. This code has been tested on big endian and little endian machines. A test program is also included, bftets.c. It uses the test vectors of blowfish available at https://www.schneier.com/code/vectors.txt
2014-02-01	libc and ape support for amd64	cinap_lenrek

2013-09-14	tls: fix various tlsClient()/tlsServer() related bugs	cinap_lenrek
	- TLSconn structure on stack but not initialized (zeroed) - original filedescriptor double closed in error case - original filedescriptor leaked in success case - leaked TLSconn.sessionID and TLSconn.cert - clarify in pushtls(2) and pushssl(2)
2013-08-15	libsec: only send client cert when we have one (fix regression from ↵	cinap_lenrek
	r6e976b2004dd)
2012-11-15	fix spaces	cinap_lenrek

2012-11-15	add C-Keens tls-client-auth	cinap_lenrek
	This patch adds client TLS authentication to libsec in compliance with rfc 4346. A new -c flag has been introduced for tlsclient allowing the user to specify a certificate in pem(8) format which will be provided to the server upon request. A -D debug flag has been introduced to enable debugging output. The patch has been tested against OpenSSL 0.9.7j 04 May 2006. It exists today because of the great (debugging) help and insight provided by Matthias Bauer. TODOs: - specification of a certain client key in factotum is not possible at the moment - tlssrv should support this too These will get added in another patch. The first try to submit this patch failed due to a network error. Sorry for the duplication! Kind regards, Christian
2012-08-18	libsec: add sha256WithRSAEncryption signature alg	cinap_lenrek

2012-06-08	more btc stuff	aiju

2012-06-06	added ecdsa to factotum	aiju

2012-06-04	added elliptic curve stuff and RIPEMD-160	aiju

2011-11-16	libsec: setmalloctag	cinap_lenrek

2011-05-24	devfs crypto code - alpha version	taruti

2011-03-30	Import sources from 2011-03-30 iso image - lib	Taru Karttunen

2011-03-30	Import sources from 2011-03-30 iso image	Taru Karttunen