Age | Commit message (Collapse) | Author | |
---|---|---|---|
2018-08-21 | Updated the engine load functionality | Lars Thorsen | |
- engine_load/3/4 can be called multiple times for same engine if it allows it (eg doesn't contain global data) - ensure_engine_loaded/2/3 is new functions that guarantees that the engine is just loaded once by adding it to OpenSSL internal engine list and check that before loading. - ensure_engine_unloaded/1/2 is new functions that is used to unload engines loaded with ensure_engine_loaded (remove it from OpenSSL internal engine list and then unload). - new utility functions engine_by_id/1, engine_add/1, engine_remove/1, engine_get_id/1 and engine_get_name/1 | |||
2018-08-09 | crypto: Fix crash in compute_key(ecdh, ...) on badarg | John Högberg | |
When term2point was passed a non-binary argument, `my_ecpoint` would be left uninitialized and the cleanup code would free a garbage pointer. | |||
2018-05-07 | Merge branch 'hans/crypto/OPENSSL_NO_EC/OTP-15073' into maint-20 | Erlang/OTP | |
* hans/crypto/OPENSSL_NO_EC/OTP-15073: crypto: Disable test_engine if engine is disabled crypto: disable engine if OPENSSL_NO_EC* is set If that flag is set, and openssl/engine.h is included, there will be an erro further down in files included by engine.h | |||
2018-05-04 | crypto: get_engine_load_cmd_list excluded if no engine support | Hans Nilsson | |
2018-05-04 | crypto: Fix compilation for LibreSSL 2.7.x | Hans Nilsson | |
2018-05-04 | crypto: Disable test_engine if engine is disabled | Hans Nilsson | |
2018-05-04 | crypto: disable engine if OPENSSL_NO_EC* is set | Hans Nilsson | |
If that flag is set, and openssl/engine.h is included, there will be an erro further down in files included by engine.h | |||
2018-01-12 | crypto: Disable RSA sslv23 padding for LibreSSL >= 2.6.1 | Hans Nilsson | |
Not supported in newer LibreSSL. | |||
2017-12-04 | [crypto] Add engine_ctrl_cmd_string() to API | Lars Thorsen | |
2017-12-01 | crypto: fix pubkey_to_privkey | Hans Nilsson | |
2017-12-01 | [crypto] Fix memory leak | Lars Thorsen | |
Fix memory leak in engine load code found by valgrind. | |||
2017-11-22 | Merge branch 'hans/crypto/cuddle_tests' into maint | Hans Nilsson | |
2017-11-21 | Merge branch 'sverker/crypto/fix-valgrind-assert' into maint | Sverker Eriksson | |
2017-11-20 | Remove core dump risk in crypto.c | Hans Nilsson | |
2017-11-20 | crypto: Printout polishing | Hans Nilsson | |
2017-11-10 | crypto: Remove faulty valgrind assertion | Sverker Eriksson | |
2017-11-10 | crypto: Add privkey_to_pubkey/2 to get the public key from a priv key in an ↵ | Hans Nilsson | |
Engine Only RSA and DSA so far. | |||
2017-11-10 | crypto: Remove unused 'atom_bad_engine' | Hans Nilsson | |
2017-11-10 | crypto: Update the OTP test engine with pub/priv key storage | Hans Nilsson | |
2017-11-10 | crypto: Enable using pub/priv PKCS8 keys stored in an Engine | Hans Nilsson | |
2017-11-10 | [crypto] Add support for loading an alternative Engine | Lars Thorsen | |
Add support to plug in alternative implementations for some or all of the cryptographic operations supported by the OpenSSL Engine API. When configured appropriately, OpenSSL calls the engine's implementation of these operations instead of its own. | |||
2017-11-01 | Merge branch 'hans/crypto/DH_generate_parameters_deprecated/OTP-14639' into ↵ | Hans Nilsson | |
maint | |||
2017-11-01 | crypto: replaced deprecated DH_generate_parameters | Hans Nilsson | |
2017-11-01 | crypto: Remove returnvalue from void C-fn | Hans Nilsson | |
2017-10-04 | crypto: ifdef of EVP for old cryptolibs (< 1.0.0) | Hans Nilsson | |
2017-10-04 | crypto: Added pkey_crypt_nif from PR838 | Hans Nilsson | |
Testcases for ECDSA and DSA encrypt/decrypt and some other adaptions | |||
2017-07-12 | crypto: Fix compile errors for make target 'valgrind' | Sverker Eriksson | |
introduced in 03f3ec41f5468413235e3923a542a11cfd631089 | |||
2017-07-07 | crypto: Fix compatibility problems with openssl 1.0.0 cryptolib | Hans Nilsson | |
2017-07-07 | crypto: introduced preproc symbol HAS_EVP_PKEY_CTX | Hans Nilsson | |
2017-07-07 | crypto: pk verify with new function from PR838 | Hans Nilsson | |
Same comment as previous commit applies. | |||
2017-07-07 | crypto: pk sign with new function from PR838 | Hans Nilsson | |
The function pkey_verify_nif handles pk signing with a general approach that is enabled by EVP api in OpenSSL 1.0.0 The rejected PR838 introduced that function and lots of other stuff so far neglected. It also made some different rsa padding methods possible (included). Since the crypto code base has changed significantly, it was an overhelming work to try a git merge. Therefore this commit is a manual move of the source code from the PR into current maint. This commit concentrates to use the new function compatible with the old functions. This includes some #if:s for different versions, compatibility code for 0.9.8. Lacking: test cases, exporting the more general erlang api, documentation... | |||
2017-07-07 | crypto: Made {rsa,dss,ecdsa}_{sign,verify}_nif similar and all with evp api | Hans Nilsson | |
2017-07-07 | crypto: added a 'macs' entry to proplist in crypto:supports/0 | Hans Nilsson | |
2017-06-02 | Merge pull request #1473 from SalikhovDinislam/static_code | Lukas Larsson | |
Make some C code static | |||
2017-05-29 | Merge pull request #1462 from Vagabond/adt-fix-aes-cfb128 | Hans Nilsson | |
Fix backwards equality check in aes cfb128 function OTP-14435 | |||
2017-05-21 | crypto: Make internal arrays static | Salikhov Dinislam | |
2017-05-15 | Fix backwards equality check in aes cfb128 function | Andrew Thompson | |
2017-05-09 | Remove duplicate aes_gcm from a list of ciphers | Daniil Fedotov | |
2017-05-04 | Update copyright year | Raimo Niskanen | |
2017-04-04 | Merge branch 'maint' | Ingela Anderton Andin | |
Conflicts: OTP_VERSION erts/vsn.mk lib/crypto/c_src/crypto.c lib/crypto/src/crypto.erl lib/ssh/src/ssh.erl | |||
2017-03-29 | Fix bug with AES CFB 128 | Kelly McLaughlin | |
Fix a bug with the use of the aes_cfb128 cipher by calling the correct underlying openssl interface function when the cipher is specified. | |||
2017-03-29 | Demonstrate the bug with AES CFB 128 encryption | Kelly McLaughlin | |
Demonstrate a bug with AES CFB 128 for certain key sizes introduced with the Erlang 19.0 release. The code in the block_crypt_nif function in the crypto.c source file incorrectly calls aes_cfb_8_crypt when the specified cipher is aes_cfb8 or aes_cfb128 and the key size is 24 or 32. The aes_cfb_8_crypt function calls the AES_cfb8_encrypt function from the openssl interface, but this is incorrect when the cipher is aes_cfb128. Unfortunately the test cases in the crypto test suite are insufficient to detect an issue like this because it exercises the encryption and decryption roundtrip using the same incorrect underlying function. The problem was observed when trying to update an application to Erlang 19 that attempted to decrypt data that was encrypted using aes_cfb128 by another source. In this commit I altered the crypto test suite to provide a demonstration of this problem. | |||
2017-03-18 | Restyle crypto strong numeric generators | Guilherme Andrade | |
for usage in rand | |||
2017-03-14 | Support generation of strong random numbers | Guilherme Andrade | |
2017-03-13 | Merge branch 'wiml/crypto/rsa-generate-key/ERL-165/PR-1299/OTP-14140' | Hans Nilsson | |
2017-03-10 | Update copyright year | Rickard Green | |
2017-03-09 | crypto: removed error function from PR and added error handling in crypto.erl | Hans Nilsson | |
2017-03-02 | crypto: Enable usage of LibreSSL | Hans Nilsson | |
2017-01-31 | Merge branch 'maint' | Hans Nilsson | |
Conflicts: lib/crypto/c_src/crypto.c lib/crypto/src/crypto.erl | |||
2017-01-27 | crypto: Added optional length to paramlist in generate_key | Hans Nilsson | |