openbsd/src/lib/libcrypto/evp, branch libressl-v3.9.2A mirror of https://github.com/libressl/openbsd.git
https://git.lua4.win/openbsd/atom?h=libressl-v3.9.22024-03-02T13:39:28+00:00Remove some GOST relics2024-03-02T13:39:28+00:00tb2024-03-02T13:39:28+00:00urn:sha1:b67dd091b5f82f671c4de5665606d30a7de36db5Unhook and remove GOST and STREEBOG2024-03-02T11:17:27+00:00tb2024-03-02T11:17:27+00:00urn:sha1:8ea5a70cb7cc8a88e0f55a52b08b9bf917e9ab4d
This stops compiling the GOST source. The current implementation is low
quality and got in the way, especially in libssl. While we would be open
for GOST support, it needs to be significantly better than what we have
had and it also needs a maintainer.
Add OPENSSL_NO_GOST to opensslfeatures and stop installing gost.h.
Some code wrapped in #ifndef OPENSSL_NO_GOST will be removed later.
ok jsing
Garbage collect CUSTOM_KEY_LENGTH/SET_KEY_LENGTH2024-03-02T10:21:12+00:00tb2024-03-02T10:21:12+00:00urn:sha1:474387b306decca4ad18d10dde947d4e106601e7
These are unused defines that used to add unwanted complications in
EVP_CIPHER_CTX_set_key_lenght().
ok jsing
Remove more PBE stuff from the public API2024-03-02T10:20:27+00:00tb2024-03-02T10:20:27+00:00urn:sha1:207b3a197be2d83ff1333f7fa2dccd6d5271b120
This is still needed internally for CMS and its predecessors. This
removal will enable disentangling some of its innards.
ok jsing
Remove most PBEPARAM stuff from public visibility2024-03-02T10:17:37+00:00tb2024-03-02T10:17:37+00:00urn:sha1:4083f4c7fda85159558b8c05200130506dc51c45
The struct itself needs to remain public, unfortunately.
ok jsing
Remove a lot of PKCS12 garbage from the public API2024-03-02T10:15:16+00:00tb2024-03-02T10:15:16+00:00urn:sha1:3660b6a445c7a10167a56fab6d7e882cdf782d91
PKCS12 is a hot mess. Please participate in the survey at the end of
https://www.cs.auckland.ac.nz/~pgut001/pubs/pfx.html to increase its
credibility and unanimity.
ok jsing
Remove RC4-HMAC-MD5 and AES-{128,256}-CBC-HMAC-SHA-12024-03-02T10:13:13+00:00tb2024-03-02T10:13:13+00:00urn:sha1:feacafd961cf1e2403e9dcb6c3f6a0722730e87d
"Stitched" mode AEADs were removed from libssl a long time ago. Nothing
uses these CIPHERs anymore.
ok jsing
Make legacy cipher methods internal2024-03-02T10:08:29+00:00tb2024-03-02T10:08:29+00:00urn:sha1:6952f7a4dea03a42ca5c0da4f3344dd7ddaf041e
These are ASN.1 handlers for CIPHERs, still used by CMS and its
predecessors. They should never have been public.
ok jsing
Remove EVP_PBE_* API from public visibility2024-03-02T10:06:48+00:00tb2024-03-02T10:06:48+00:00urn:sha1:705576b96a445d220b98a9940401456c7bf52a10
You can no longer add your custom PBE algorithm. Pity. EVP_PBE_CipherInit()
stays for internal use, the rest goes away copmletely.
ok jsing
Remove EVP_PKEY_meth_*() API2024-03-02T10:04:40+00:00tb2024-03-02T10:04:40+00:00urn:sha1:f133870188c9e5cfe00cc09b92ee4f957e5448ac
After ameth, the second bit of custom EVP_PKEY API removal.
ok jsing