openbsd/src/lib/libcrypto/cms, branch libressl-v3.7.0A mirror of https://github.com/libressl/openbsd.git
https://git.lua4.win/openbsd/atom?h=libressl-v3.7.02022-11-26T17:23:18+00:00Make header guards of internal headers consistent2022-11-26T17:23:18+00:00tb2022-11-26T17:23:18+00:00urn:sha1:3a1908508efa61f3f77ac8036694af2f920df947
Not all of them, only those that didn't leak into a public header...
Yes.
Make internal header file names consistent2022-11-26T16:08:57+00:00tb2022-11-26T16:08:57+00:00urn:sha1:81d98bf600a381a625eb11b39a725b08c0ba547f
Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names
used for internal headers. Move all these headers we inherited from
OpenSSL to *_local.h, reserving the name *_internal.h for our own code.
Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h.
constant_time_locl.h is moved to constant_time.h since it's special.
Adjust all .c files in libcrypto, libssl and regress.
The diff is mechanical with the exception of tls13_quic.c, where
#include <ssl_locl.h> was fixed manually.
discussed with jsing,
no objection bcook
Plug memory leak in CMS_add_simple_smimecap() in the unlikely event that2022-08-28T18:27:47+00:00tb2022-08-28T18:27:47+00:00urn:sha1:b0456ada9d95082610b820d3b1226160e07765d5
ASN1_INTEGER_set() fails.
ok jsing
Remove mkerr.pl remnants from LibreSSL2022-07-12T14:42:50+00:00kn2022-07-12T14:42:50+00:00urn:sha1:89e42d5857196a8071fbafb5565388d0e20ec32b
This script is not used at all and files are edited by hand instead.
Thus remove misleading comments incl. the obsolete script/config.
Feedback OK jsing tb
Add check for EVP_CIPHER_CTX_set_key_length return value2022-01-20T10:58:35+00:00inoguchi2022-01-20T10:58:35+00:00urn:sha1:2192f9d8c922d7178d2f2df094d0e82bb30c8afb
It returns 1 on success and 0 for failure, never negative value.
ok jsing@ millert@ tb@
Check return value from EVP_CIPHER_CTX_new in cms_pwri.c2022-01-19T13:47:44+00:00inoguchi2022-01-19T13:47:44+00:00urn:sha1:588ca0cba94f4202b54289ec730f971a07e97001
CID 345137
ok jsing@ tb@
Garbage collect the app_items field of ASN1_ADB2022-01-14T08:16:13+00:00tb2022-01-14T08:16:13+00:00urn:sha1:ec5f7af843436771be5081c868e0fb0b44069ead
This is unused and was removed in OpenSSL 5b70372d when it was
replaced with an ASN.1 ADB callback (which we don't support).
ok inoguchi jsing
Move the now internal X.509-related structs into x509_lcl.h.2021-11-01T20:53:08+00:00tb2021-11-01T20:53:08+00:00urn:sha1:f478d62658b61e2242dbf3575bf454f8c0f432b1
Garbage collect the now unused LIBRESSL_CRYPTO_INTERNAL and
LIBRESSL_OPAQUE_X509. Include "x509_lcl.h" where needed and
fix a couple of unnecessary reacharounds.
ok jsing
Fix leak in cms_RecipientInfo_kekri_decrypt()2021-09-08T14:33:02+00:00tb2021-09-08T14:33:02+00:00urn:sha1:34dad726781647a28729bb3e2fa6f77ca206abe8
Free ec->key before reassigning it.
From OpenSSL 1.1.1, 58e1e397
ok inoguchi
Remove remaining error *_str_functs[]2020-06-05T16:51:12+00:00jsing2020-06-05T16:51:12+00:00urn:sha1:6aa0c4f1ec702bb2c820322709abd9c1767842fa
A number of years ago we dropped the concept of having function names in
errors, since it is not that useful and very quickly gets out of sync when
refactoring. It would seem that some new ones got imported and some missed
the last clean up.
ok tb@ beck@ "kill it with fire"