| Age | Commit message (Collapse) | Author |
|---|
|
Apply the following automated changes to try to eliminate
no-longer-needed sys/cdefs.h includes as well as now-empty
blank lines in a row.
Remove /^#if.*\n#endif.*\n#include\s+<sys/cdefs.h>.*\n/
Remove /\n+#include\s+<sys/cdefs.h>.*\n+#if.*\n#endif.*\n+/
Remove /\n+#if.*\n#endif.*\n+/
Remove /^#if.*\n#endif.*\n/
Remove /\n+#include\s+<sys/cdefs.h>\n#include\s+<sys/types.h>/
Remove /\n+#include\s+<sys/cdefs.h>\n#include\s+<sys/param.h>/
Remove /\n+#include\s+<sys/cdefs.h>\n#include\s+<sys/capsicum.h>/
Sponsored by: Netflix
|
|
Remove /^[\s*]*__FBSDID\("\$FreeBSD\$"\);?\s*\n/
|
|
Remove /^\s*\*\n \*\s+\$FreeBSD\$$\n/
|
|
This code was originally written for non-reentrant crypt(3).
In 5f521d7ba72, a thread-safe crypt_r(3) was introduced. However,
it looks like the DES implementation is still not re-entrant;
routines like setup_salt() or des_setkey() still use global
variables.
Instead of something drastic, eg removing DES support altogether,
just mark those variables as thread-local. This adds about 30kB
of data per thread.
Given that this only applies to DES, I think the impact is minimal.
Reviewed By: markj
Sponsored by: NetApp, Inc.
Sponsored by: Klara, Inc.
Differential Revision: https://reviews.freebsd.org/D30674
|
|
glibc has a pretty nice function called crypt_r(3), which is nothing
more than crypt(3), but thread-safe. It accomplishes this by introducing
a 'struct crypt_data' structure that contains a buffer that is large
enough to hold the resulting string.
Let's go ahead and also add this function. It would be a shame if a
useful function like this wouldn't be usable in multithreaded apps.
Refactor crypt.c and all of the backends to no longer declare static
arrays, but write their output in a provided buffer.
There is no need to do any buffer length computation here, as we'll just
need to ensure that 'struct crypt_data' is large enough, which it is.
_PASSWORD_LEN is defined to 128 bytes, but in this case I'm picking 256,
as this is going to be part of the actual ABI.
Differential Revision: https://reviews.freebsd.org/D7306
Notes:
svn path=/head/; revision=303920
|
|
crypt_blowfish and many implementations based on it (Apache, PHP, PostgreSQL) implemented $2y$ before OpenBSD went with $2b$. This changes marks them as equivalent.
http://www.openwall.com/lists/announce/2011/07/17/1
This change is required for applications that use the base crypt() implementation (including nginx) to be able to validate $2y$ hashes
Reviewed by: eadler
Approved by: delphij
MFC after: 1 week
Relnotes: yes
Sponsored by: ScaleEngine Inc.
Differential Revision: https://reviews.freebsd.org/D2742
Notes:
svn path=/head/; revision=284483
|
|
MFC after: 2 weeks
Relnotes: default Blowfish crypt(3) format have been changed to $2b$.
Notes:
svn path=/head/; revision=265995
|
|
Notable changes:
- Support of $2b$ password format to address a problem where very
long passwords (more than 256 characters, when an integer
overflow would happen and cause the length to wrap at 256).
- Updated pseudo code in comments to reflect the reality.
- Removed our local shortcut of processing magic string and rely
on the centralized and tigntened validation.
- Diff reduction from upstream.
For now we are still generating the older $02a$ format of password
but we will migrate to the new format once the format is formally
finalized.
MFC after: 1 month
Notes:
svn path=/head/; revision=262501
|
|
Fix a bug in crypt(3) ignoring characters of a passphrase. [12:02]
Security: FreeBSD-SA-12:01.openssl (revised)
Security: FreeBSD-SA-12:02.crypt
Approved by: so (bz, simon)
Notes:
svn path=/head/; revision=236304
|
|
Discussed in: http://www.openwall.com/lists/oss-security/2011/11/15/3
Notes:
svn path=/head/; revision=231986
|
|
required to make crypt(3) blowfish "$2a$..." hashes. Lint and
warnsify.
Notes:
svn path=/head/; revision=115719
|
|
Notes:
svn path=/head/; revision=91754
|
|
deprecated in favor of the POSIX-defined lowercase variants.
o Change all occurrences of NTOHL() and associated marcros in the
source tree to use the lowercase function variants.
o Add missing license bits to sparc64's <machine/endian.h>.
Approved by: jake
o Clean up <machine/endian.h> files.
o Remove unused __uint16_swap_uint32() from i386's <machine/endian.h>.
o Remove prototypes for non-existent bswapXX() functions.
o Include <machine/endian.h> in <arpa/inet.h> to define the
POSIX-required ntohl() family of functions.
o Do similar things to expose the ntohl() family in libstand, <netinet/in.h>,
and <sys/param.h>.
o Prepend underscores to the ntohl() family to help deal with
complexities associated with having MD (asm and inline) versions, and
having to prevent exposure of these functions in other headers that
happen to make use of endian-specific defines.
o Create weak aliases to the canonical function name to help deal with
third-party software forgetting to include an appropriate header.
o Remove some now unneeded pollution from <sys/types.h>.
o Add missing <arpa/inet.h> includes in userland.
Tested on: alpha, i386
Reviewed by: bde, jake, tmm
Notes:
svn path=/head/; revision=90868
|
|
Notes:
svn path=/head/; revision=85358
|
|
gratuitous difference between us and our sister project.
This was given to me _ages_ ago. May apologies to Paul for the length
of time its taken me to commit.
Obtained from: Niels Provos <provos@physnet.uni-hamburg.de>/OpenBSD
Submitted by: Paul Herman <pherman@frenchfries.net>
Notes:
svn path=/head/; revision=74106
|
|
one-way hash functions for authentication purposes. There is no more
"set the libcrypt->libXXXcrypt" nightmare.
- Undo the libmd.so hack, use -D to hide the md5c.c internals.
- Remove the symlink hacks in release/Makefile
- the algorthm is set by set_crypt_format() as before. If this is
not called, it tries to heuristically figure out the hash format, and
if all else fails, it uses the optional auth.conf entry to chose the
overall default hash.
- Since source has non-hidden crypto in it there may be some issues with
having the source it in some countries, so preserve the "secure/*"
division. You can still build a des-free libcrypt library if you want
to badly enough. This should not be a problem in the US or exporting
from the US as freebsd.org had notified BXA some time ago. That makes
this stuff re-exportable by anyone.
- For consistancy, the default in absence of any other clues is md5. This
is to try and minimize POLA across buildworld where folk may suddenly
be activating des-crypt()-hash support. Since the des hash may not
always be present, it seemed sensible to make the stronger md5 algorithm
the default.
All things being equal, no functionality is lost.
Reviewed-by: jkh
(flame-proof suit on)
Notes:
svn path=/head/; revision=70419
|
|
for crypt(3) by now. In any case:
Add crypt_set_format(3) + documentation to -lcrypt.
Add login_setcryptfmt(3) + documentation to -lutil.
Support for switching crypt formats in passwd(8).
Support for switching crypt formats in pw(8).
The simple synopsis is:
edit login.conf; add a passwd_format field set to "des" or "md5"; go nuts :)
Reviewed by: peter
Notes:
svn path=/head/; revision=64918
|
|
symlinks. The name is against my better judgement, but I defer to ancient
tradition here because I'm a nice guy.
Reviewed by: -current
Notes:
svn path=/head/; revision=57582
|
|
Notes:
svn path=/head/; revision=55688
|
|
Notes:
svn path=/head/; revision=55585
|
|
Pointed out by: marcel
Notes:
svn path=/head/; revision=54829
|
|
Notes:
svn path=/head/; revision=51524
|
|
Notes:
svn path=/head/; revision=51511
|
|
Revert the major number back to 2.
libcrypt only export one function, before the recent changes and now:
char *crypt(const char *key, const char *salt);
The prototype didn't changed. Internal representation of `char' and `char *'
didn't changed. Therefore, there is no reason to change the version number.
Notes:
svn path=/head/; revision=51510
|
|
a special SONAME of libcrypt.so.3 and the runtime symlink doesn't work.
Notes:
svn path=/head/; revision=51507
|
|
duplication of effort. Also a large cleanup of the code, inspired
by Brandon Gillespie.
Notes:
svn path=/head/; revision=51461
|
|
Notes:
svn path=/head/; revision=50488
|
|
Notes:
svn path=/head/; revision=50479
|
|
- Be consistent with section names as outlined in mdoc(7).
- Other misc mdoc cleanup.
Notes:
svn path=/head/; revision=49830
|
|
can be found.
Submitted by: Bruce
Notes:
svn path=/head/; revision=43152
|
|
Notes:
svn path=/head/; revision=43091
|
|
the Makefile handles des support by just including the single .c file.
Reviewed by: Mark Murray
Notes:
svn path=/head/; revision=42983
|
|
the US and not allowed to see this. I kept my eyes closed. 8-)
Notes:
svn path=/head/; revision=38664
|
|
Notes:
svn path=/head/; revision=29147
|
|
Notes:
svn path=/head/; revision=22990
|
|
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.
Boy, I'm glad we're not using sup anymore. This update would have been
insane otherwise.
Notes:
svn path=/head/; revision=21673
|
|
really want them) from /usr/src. This is the final version of the
patches, incorporating the feedback I've received from -current.
Notes:
svn path=/head/; revision=16663
|
|
Notes:
svn path=/head/; revision=15228
|
|
Notes:
svn path=/head/; revision=14168
|
|
(DES or MD5) based on the type of salt used. Salt beginning with "$1$"
indicates MD5.
Notes:
svn path=/head/; revision=12884
|
|
Notes:
svn path=/head/; revision=8871
|
|
(Our existing fixes already plugged the security holes involved.)
Submitted by: Geoff Rehmet after consultation with David Burren
Notes:
svn path=/head/; revision=2900
|
|
world of his master plan.
Submitted by: pst
Notes:
svn path=/head/; revision=2539
|
|
so that linking against -lcrypt (-ldescrypt) will give us the good
versions instead of the stubs in libc. (These changes need to be
made to the non-US version of libdescrypt too!)
Allow building and support for bdes program.
A bit more work still needs to be done on secure telnet.
Submitted by: pst
Notes:
svn path=/head/; revision=2536
|
|
Notes:
svn path=/head/; revision=2306
|
|
Notes:
svn path=/head/; revision=2300
|
|
Submitted by: Geoff
Notes:
svn path=/head/; revision=2156
|
|
Submitted by: Geoff Rehmet
Notes:
svn path=/head/; revision=2046
|
|
2) fix .include in secure/lib/Makefile.inc
3) fix afterinstall rule in libcrypt/Makefile
Submitted by: Geoff Rehmet
Notes:
svn path=/head/; revision=2044
|
|
libcrypt. There may be a little modification neede to this makefile once
we start working on tidy make world's.
Submitted by: geoff.
Notes:
svn path=/head/; revision=1990
|
