Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | changes to encryption encapsulation for zot6 (backward compatible) | zotlabs | 2017-10-05 | 1 | -0/+4 |
| | |||||
* | make signing methods variable and signable | zotlabs | 2017-07-25 | 1 | -0/+10 |
| | |||||
* | harden security | zotlabs | 2017-04-02 | 1 | -10/+26 |
| | |||||
* | use aes-ctr which is slightly/arguably better than a poke in the eye and ↵ | zotlabs | 2017-04-01 | 1 | -10/+7 |
| | | | | don't restrict the crypto algorithm by server role. | ||||
* | aes256gcm is not ready for prime time. Stay tuned. Until it is, we're pretty ↵ | zotlabs | 2017-03-30 | 1 | -5/+5 |
| | | | | much stuffed unless we go to 3rd party crypto libs. | ||||
* | make aes256gcm the primary crypto mode | zotlabs | 2017-03-30 | 1 | -1/+14 |
| | |||||
* | trim both key and iv on other ciphers | zotlabs | 2016-12-01 | 1 | -0/+2 |
| | |||||
* | trim iv in STD_encapsulate | zotlabs | 2016-12-01 | 1 | -0/+2 |
| | |||||
* | advanced crypto restricted by server role | zotlabs | 2016-11-30 | 1 | -0/+3 |
| | |||||
* | zot 1.2 | zotlabs | 2016-11-30 | 1 | -4/+108 |
| | |||||
* | zot: specify crypto method | zotlabs | 2016-11-20 | 1 | -1/+1 |
| | |||||
* | redundant dev line from an earlier modification causes issue #404 | redmatrix | 2016-05-30 | 1 | -16/+2 |
| | |||||
* | kill off mcrypt | redmatrix | 2016-05-26 | 1 | -6/+8 |
| | |||||
* | issue #319 - NOTE: this does not fix the issue, it only reports it and ↵ | redmatrix | 2016-03-30 | 1 | -10/+1 |
| | | | | continues. We need to examine any logger statements that contain 'stack:' as a result of reporting this issue and find and fix the original problem - which is that set_pconfig is being called without a valid $uid. I'm worried that since we will now continue on without throwing a PHP error that nobody will ever notice or find the problem that is causing this. | ||||
* | rewrite the webfinger discovery logic | redmatrix | 2016-03-22 | 1 | -0/+23 |
| | |||||
* | no xchan here if using zot protocol | redmatrix | 2016-03-17 | 1 | -1/+3 |
| | |||||
* | stop the PHP warnings from Thomas's buggered sitekey | redmatrix | 2016-02-28 | 1 | -1/+1 |
| | |||||
* | backtrace openssl_verify errors so that we can find bad keys - as there is ↵ | redmatrix | 2016-02-25 | 1 | -0/+15 |
| | | | | very little relevant context available at this level. | ||||
* | retire old Friendica RINO encryption functions | redmatrix | 2015-06-09 | 1 | -28/+0 |
| | |||||
* | issue #941 | friendica | 2015-03-28 | 1 | -4/+11 |
| | |||||
* | optionally use openssl encryption functions (higher performance over mcrypt, ↵ | friendica | 2015-01-11 | 1 | -2/+2 |
| | | | | but potentially more likely to have been compromised) | ||||
* | allow the use of openssl crypto | friendica | 2015-01-11 | 1 | -0/+6 |
| | |||||
* | make the old personal xrd interface (old webfinger) work again | friendica | 2014-08-21 | 1 | -2/+3 |
| | |||||
* | bring back some friendica crypto stuff including all the key mangling and ↵ | friendica | 2014-08-15 | 1 | -1/+164 |
| | | | | translation functions. Also add ability to completely supress email notifications for actitivies with private contents. We'll still pass private mail notifications because often the email notification is the only way infrequently used channels get alerted to these. | ||||
* | doc update | friendica | 2014-08-15 | 1 | -3/+8 |
| | |||||
* | pkcs1 to pkcs8 key conversion - this is a lot easier than parsing ASN.1 DER ↵ | friendica | 2014-08-14 | 1 | -0/+24 |
| | | | | formats and rebuilding the darn things like we used to do. Check for illegal hex encoded album names in mod/photo so we don't throw php errors. Don't know where they come from but we get a lot of them. | ||||
* | bloody hell - it isn't defined either. | friendica | 2013-12-15 | 1 | -2/+2 |
| | |||||
* | bloody hell... php version incompatibility with openssl - openssl no longer ↵ | friendica | 2013-12-15 | 1 | -0/+4 |
| | | | | accepts a string as an algorithm. Earlier versions didn't recognise sha256. So we'll look to see if the algorithm constant for sha256 is defined and if so we'll use that instead of the string. | ||||
* | post_activity_item issues | friendica | 2013-12-07 | 1 | -0/+2 |
| | |||||
* | Protocol: now set data['alg'] on all encapsulated encrypted packets, so that ↵ | friendica | 2013-11-20 | 1 | -0/+16 |
| | | | | we can more easily retire 'aes256cbc' once it is no longer viable. | ||||
* | add more siteinfo | friendica | 2013-07-24 | 1 | -2/+0 |
| | |||||
* | recover padding functions which are still used | friendica | 2013-07-24 | 1 | -0/+15 |
| | |||||
* | get rid of legacy (unused) encryption stuff. | friendica | 2013-07-24 | 1 | -174/+1 |
| | |||||
* | not quite so much crypto logging | friendica | 2013-07-24 | 1 | -1/+2 |
| | |||||
* | crypto logging | friendica | 2013-07-23 | 1 | -2/+6 |
| | |||||
* | start formatting for Doxygen | friendica | 2013-02-25 | 1 | -1/+1 |
| | |||||
* | y'all got mail | friendica | 2012-12-05 | 1 | -1/+5 |
| | |||||
* | more cleanup | Mike Macgirvin | 2012-10-23 | 1 | -2/+0 |
| | |||||
* | a few minor changes | friendica | 2012-08-26 | 1 | -2/+0 |
| | |||||
* | simplify | friendica | 2012-07-21 | 1 | -36/+2 |
| | |||||
* | remove obsolete zot encapsulation functions | friendica | 2012-07-05 | 1 | -33/+0 |
| | |||||
* | rev update | friendica | 2012-05-20 | 1 | -1/+35 |
| | |||||
* | Merge branch 'master' of https://github.com/friendica/friendica | Alexander Kampmann | 2012-04-05 | 1 | -0/+0 |
| | | | | | | Conflicts: include/config.php update.php | ||||
* | add remove_user hook (it looks like dreamhost changed all my file ↵ | friendica | 2012-01-18 | 1 | -0/+0 |
| | | | | permissions, this will make a nasty commit) | ||||
* | login_hook | Friendika | 2011-09-01 | 1 | -6/+9 |
| | |||||
* | remove public disclosure risk | Friendika | 2011-08-27 | 1 | -0/+65 |
| | |||||
* | diaspora sign/verify requires SHA0 hash algorithm | Friendika | 2011-08-20 | 1 | -2/+2 |
| | |||||
* | until algorithm is sorted, ignore D* verification failures so we can debug ↵ | Friendika | 2011-08-20 | 1 | -8/+9 |
| | | | | the rest | ||||
* | move encryption functions to crypto file | Friendika | 2011-08-20 | 1 | -1/+41 |
| | |||||
* | incorrect iv length for blocksize | Friendika | 2011-08-19 | 1 | -0/+2 |
| |