| #
643a378d |
| 08-May-2023 |
christos <christos@NetBSD.org> |
make tests support both 1.x and 3.x.
Lot of work needed to add all the 3.x tests, but that can wait until all
is switched
|
| #
375cbd04 |
| 23-Sep-2018 |
christos <christos@NetBSD.org> |
Merge openssl-1.1.1
|
| #
a6354c44 |
| 22-Feb-2018 |
martin <martin@NetBSD.org> |
PR lib/53044: remove tests not provided by OpenSSL 1.1.x
|
| #
9b1af88f |
| 08-Feb-2018 |
christos <christos@NetBSD.org> |
adjust tests for 1.1
|
| #
a77d0f42 |
| 21-May-2017 |
riastradh <riastradh@NetBSD.org> |
Remove MKCRYPTO option.
Originally, MKCRYPTO was introduced because the United States
classified cryptography as a munition and restricted its export. The
export controls were substantially relaxed
Remove MKCRYPTO option.
Originally, MKCRYPTO was introduced because the United States
classified cryptography as a munition and restricted its export. The
export controls were substantially relaxed fifteen years ago, and are
essentially irrelevant for software with published source code.
In the intervening time, nobody bothered to remove the option after
its motivation -- the US export restriction -- was eliminated. I'm
not aware of any other operating system that has a similar option; I
expect it is mainly out of apathy for churn that we still have it.
Today, cryptography is an essential part of modern computing -- you
can't use the internet responsibly without cryptography.
The position of the TNF board of directors is that TNF makes no
representation that MKCRYPTO=no satisfies any country's cryptography
regulations.
My personal position is that the availability of cryptography is a
basic human right; that any local laws restricting it to a privileged
few are fundamentally immoral; and that it is wrong for developers to
spend effort crippling cryptography to work around such laws.
As proposed on tech-crypto, tech-security, and tech-userlevel to no
objections:
https://mail-index.netbsd.org/tech-crypto/2017/05/06/msg000719.html
https://mail-index.netbsd.org/tech-security/2017/05/06/msg000928.html
https://mail-index.netbsd.org/tech-userlevel/2017/05/06/msg010547.html
P.S. Reviewing all the uses of MKCRYPTO in src revealed a lot of
*bad* crypto that was conditional on it, e.g. DES in telnet... That
should probably be removed too, but on the grounds that it is bad,
not on the grounds that it is (nominally) crypto.
show more ...
|
| #
b1a37343 |
| 21-May-2017 |
riastradh <riastradh@NetBSD.org> |
Remove MKCRYPTO_RC5. Unconditionally include RC5 in libcrypto.so.
This option existed only because RC5 is covered by patents that, twenty
years ago, we had reason to suspect the patent holder, RSA,
Remove MKCRYPTO_RC5. Unconditionally include RC5 in libcrypto.so.
This option existed only because RC5 is covered by patents that, twenty
years ago, we had reason to suspect the patent holder, RSA, Inc., might
litigate. The two US patents in question are 5,724,428 and 5,835,600.
According to the USPTO Patent Term Calculator web site at
<https://www.uspto.gov/patent/laws-and-regulations/patent-term-calculator#heading-5>
(retrieved 2017-05-21), patents filed after 1995-06-07 expire twenty
years after the filing date.
number filing date
5,724,428 1995-11-01
5,835,600 1997-04-21
Thus, these patents appear to be expired.
As proposed on tech-crypto and tech-security:
https://mail-index.netbsd.org/tech-crypto/2017/05/05/msg000718.html
https://mail-index.netbsd.org/tech-security/2017/05/05/msg000927.html
show more ...
|
| #
34b37e66 |
| 14-Jul-2012 |
christos <christos@NetBSD.org> |
MKCRYPTO_{IDEA,MDC2} is no more
|
| #
b26b50e4 |
| 22-Oct-2011 |
mrg <mrg@NetBSD.org> |
fix a build issue with MKCRYPTO=no.
|
| #
2f86045b |
| 09-Jun-2011 |
spz <spz@NetBSD.org> |
add tests for evb and srp
|
| #
9d0b4b5b |
| 13-Jul-2010 |
jmmv <jmmv@NetBSD.org> |
Get rid of static Atffiles and let bsd.test.mk generate them on the fly.
|
| #
6479f6e5 |
| 11-Jul-2010 |
mrg <mrg@NetBSD.org> |
ldap is configured to depend upon MKCRYPTO no, so force MKLAP=no if
MKCRYPTO=no.
don't build pkg_install, libcrypto tests or rump_smbfs if MKCRYPTO=no.
mark librumpcrypto, rump_smb, pkg_*
fix set li
ldap is configured to depend upon MKCRYPTO no, so force MKLAP=no if
MKCRYPTO=no.
don't build pkg_install, libcrypto tests or rump_smbfs if MKCRYPTO=no.
mark librumpcrypto, rump_smb, pkg_*
fix set lists as appropriate.
show more ...
|
| #
b9866b6c |
| 10-Jul-2010 |
jmmv <jmmv@NetBSD.org> |
Do not use awk to generate the test program. Instead, just expand the
code.
While doing this, split the big monolithic test program into more granular
but cohesive test programs.
|
| #
3baa49a1 |
| 13-Feb-2009 |
jmmv <jmmv@NetBSD.org> |
Convert the threads libcrypto test to ATF and enable it. Drop the old one
in regress.
|
| #
0601c2c7 |
| 13-Feb-2009 |
jmmv <jmmv@NetBSD.org> |
Remove threads from the list of subdirs. Commited by mistake.
|
| #
fd2c7cbd |
| 13-Feb-2009 |
jmmv <jmmv@NetBSD.org> |
Convert libcrypto tests to ATF. Original work done by Lukasz Strzygowski
in the GSoC 2008 atfify project. Reorganization of files and build system
reworked by me.
|