A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=libressl-v3.8.2 2023-07-28T10:23:19+00:00 2023-07-28T10:23:19+00:00 tb 2023-07-28T10:23:19+00:00 urn:sha1:2a8a0e16fff5736c54d6005280b83c07587cb5d8 Ever wondered how many entries populate the various err hashes? Me neither. Remove this garbage. ok jsing 2023-07-28T10:21:01+00:00 tb 2023-07-28T10:21:01+00:00 urn:sha1:6f0a25f56e69a07f9a33663b857ea58bc32efba0 Much like ex_data, applications can make the library use their own error stack implementation. Well, except as of right now they no longer can. ok jsing 2023-07-28T09:46:36+00:00 tb 2023-07-28T09:46:36+00:00 urn:sha1:f94d1800c2bcef623d825d9ec18437897e187e0e DSO and in particular dlopen() was used for dynamic engines, which we removed a long time ago and for dynamic conf modules, which we removed only very recently. Now remove this dangerous interface. ok jsing 2023-07-28T09:19:59+00:00 tb 2023-07-28T09:19:59+00:00 urn:sha1:a90aeb58faecc32cf7d4158977677efa3db85477 Much like the ECDSA errors, the ECDH errors have been unused for a while. Garbage collect them. ok jsing 2023-07-28T09:01:25+00:00 tb 2023-07-28T09:01:25+00:00 urn:sha1:92f3766713986fcccdc079df784442dcfde4921c These error codes have been unused for a while, so the public API loading them is pointless. ok jsing 2023-07-07T19:37:54+00:00 beck 2023-07-07T19:37:54+00:00 urn:sha1:1ca8095297adf80b48019b5a2d18010ff9e3427f me aliasing symbols not in the headers I was procesing. This unbreaks the namespace build so it will pass again ok tb@ 2023-07-07T13:54:46+00:00 beck 2023-07-07T13:54:46+00:00 urn:sha1:f9fcde20a6214da85e802190ccd3a2bf5f891559 (part 2 of commit) ok jsing@ 2023-06-11T05:35:43+00:00 tb 2023-06-11T05:35:43+00:00 urn:sha1:97a013bc68d60ad211d8cdb339f38ccb4020ade6 This has long been unused code and compilation with -DZLIB was broken for a long time after BIO was made opaque. ok jsing 2023-04-09T19:10:23+00:00 tb 2023-04-09T19:10:23+00:00 urn:sha1:180ac4430773db8fb86b3343279cc5790eee08e6 Geoff Thorpe added OPENSSL_NO_DEPRECATED nearly two decades ago. The hope was that at some point some functions can be dropped. Most of the functions marked deprecated are actually unused nowadays but unfortunately some of them are still used in the ecosystem. Move them out of OPENSSL_NO_DEPRECATED so we can define it without breaking the consumers in the next bump. ERR_remove_state() is still used by a dozen or so ports. This isn't a big deal since it is just a stupid wrapper for the not quite as deprecated ERR_remove_thread_state(). It's not worth patching these ports. Annoyingly, {DH,DSA}_generate_parameters() and RSA_generate_key() are still used. They "make use" of the old-style BN_GENCB callback, which is therefore more difficult to remove - in case you don't know know: that's the thing responsible for printing pretty '.', '+' and '*' when you generate keys. Most annoyingly, DH_generate_parameters() was added to rust-openssl in 2020 for "advanced DH support". This is very unfortunate since cargo bundles a rust-openssl and updates it only every few years or so. As a consequence we're going to be stuck with this nonsense for a good while. ok beck jsing 2023-03-27T09:15:45+00:00 jan 2023-03-27T09:15:45+00:00 urn:sha1:a1ba7edeaa4500f47680c5e16b40d8efa2802629 ok tb@