efi-boot-shim.git/PasswordCrypt.c, branch Release_3.0.0 (mirror of https://github.com/vyos/efi-boot-shim.git) https://git.amelek.net/vyos/efi-boot-shim.git/atom?h=Release_3.0.0 2014-04-11T18:41:22+00:00 additional bounds-checking on section sizes 2014-04-11T18:41:22+00:00 Kees Cook kees@outflux.net 2012-12-03T23:52:48+00:00 urn:sha1:5495694c043de510aaf8ff5dcbe17b6547794083 This adds additional bounds-checking on the section sizes. Also adds -Wsign-compare to the Makefile and replaces some signed variables with unsigned counteparts for robustness. Signed-off-by: Kees Cook <kees@ubuntu.com> Revert "additional bounds-checking on section sizes" 2013-10-23T14:50:36+00:00 Peter Jones pjones@redhat.com 2013-10-23T14:50:36+00:00 urn:sha1:56fb385a172890cf4c20c9daa89bb6cccf9c1b4e This reverts commit 21e40f0174814b3d91836e38c7cf95c8f2f1f3a4. In principle I like the idea of what's going on here, but generate_hash() really does need to have the expected result. additional bounds-checking on section sizes 2013-10-22T15:23:51+00:00 Kees Cook kees@outflux.net 2012-12-03T23:52:48+00:00 urn:sha1:21e40f0174814b3d91836e38c7cf95c8f2f1f3a4 This adds additional bounds-checking on the section sizes. Also adds -Wsign-compare to the Makefile and replaces some signed variables with unsigned counteparts for robustness. Signed-off-by: Kees Cook <kees@ubuntu.com> MokManager: support Tradition DES hash 2013-09-26T15:58:01+00:00 Gary Ching-Pang Lin glin@suse.com 2013-01-29T09:10:10+00:00 urn:sha1:be9108a8b9c0433ad1f7a94fd5f8b1a92f4281d0 MokManager: support MD5-based crypt() hash 2013-09-26T15:58:01+00:00 Gary Ching-Pang Lin glin@suse.com 2013-01-29T04:09:34+00:00 urn:sha1:09f6afbe72d662240931564259ffac53b8f12766 MokManager: support blowfish-based crypt() hash 2013-09-26T15:58:01+00:00 Gary Ching-Pang Lin glin@suse.com 2013-05-17T07:10:57+00:00 urn:sha1:83d1c30608d9a7b17763d87327a09810e07b5393 Conflicts: Makefile MokManager: support SHA512-based crypt() hash 2013-09-26T15:58:01+00:00 Gary Ching-Pang Lin glin@suse.com 2013-01-24T10:24:49+00:00 urn:sha1:9b41d26597e03af91de22b84c13d82a350d877ec MokManager: support crypt() password hash 2013-09-26T15:58:01+00:00 Gary Ching-Pang Lin glin@suse.com 2013-01-15T10:01:41+00:00 urn:sha1:afb61e79027d2a5de9edfcab8de163609894f930 The password format is introduced for the password hash generated by crypt(), so that the user can import the password hash from /etc/shadow. The packager, especially those who packages 3rd party drivers, can utilize this feature to import a 3rd party certificate without interfering the package installation. This commit implements the sha256-based crypt() hash function. Conflicts: Makefile MokManager.c