openbsd/src/lib/libcrypto/objects, branch libressl-v3.8.0 A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=libressl-v3.8.0 2023-05-23T11:51:12+00:00 Simplify OBJ_obj2txt() 2023-05-23T11:51:12+00:00 tb 2023-05-23T11:51:12+00:00 urn:sha1:6825aba8c0202893f32509537fbfa606a2459325 Instead of adding a NUL termination to OBJ_obj2txt(), move the aobj == NULL or aobj->data == NULL checks to i2t_ASN1_OBJECT_internal(). The only other caller, i2t_ASN1_OBJECT(), fails on aobj == NULL and aobj->length == 0, and the latter condition is implied by aobj->data. Cleaner solution for obj_dat.c r1.52 suggested by/ok jsing Always NUL terminate buf in OBJ_obj2txt() 2023-05-23T11:04:04+00:00 tb 2023-05-23T11:04:04+00:00 urn:sha1:5672c2cf8adbc84eb1793f1ee0a0ca8ef9a966f0 OBJ_obj2txt() is often called without error checking and is used for reporting unexpected or malformed objects. As such, we should ensure buf is a string even on failure. This had long been the case before it was lost in a recent rewrite. If obj and obj->data are both non-NULL this is already taken care of by i2t_ASN1_OBJECT_internal(), so many callers were still safe. ok miod Add NIDs for truncated SHA-2, SHA-3 and related things 2023-04-25T15:46:54+00:00 tb 2023-04-25T15:46:54+00:00 urn:sha1:e31d00f52ea2bb3e49d823cd43d5879322be2285 From jsing spelling fixes; from paul tagliamonte 2022-12-26T07:18:53+00:00 jmc 2022-12-26T07:18:53+00:00 urn:sha1:2eb7e5ff6bb69760f9dd4a43e7e3520ebb930120 i removed the arithmetics -> arithmetic changes, as i felt they were not clearly correct ok tb Make internal header file names consistent 2022-11-26T16:08:57+00:00 tb 2022-11-26T16:08:57+00:00 urn:sha1:81d98bf600a381a625eb11b39a725b08c0ba547f Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names used for internal headers. Move all these headers we inherited from OpenSSL to *_local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook Add ED25519 aliases for NID, SN and OBJ 2022-11-13T14:03:13+00:00 tb 2022-11-13T14:03:13+00:00 urn:sha1:d8bfcdb1812e07af680a4667d084849f2181657a The Ed25519 versions already existed, but OpenSSL chose to uppercase the D. Stop pretending that obj_mac.h is optional. 2022-11-11T11:53:24+00:00 jsing 2022-11-11T11:53:24+00:00 urn:sha1:fd62f2b8865d2908f2ef9a53dcd73faa76f153c3 This is effectively: unifdef -m -DUSE_OBJ_MAC objects/objects.h ok beck@, with extreme prejudice. Map objects for ED25519 to Ed25519. 2022-11-10T16:04:31+00:00 jsing 2022-11-10T16:04:31+00:00 urn:sha1:da349424ffa0e6350ca7def648b5e51645739d85 OpenSSL used ED25519, even though the RFCs use Ed25519 - as such, we get to provide both. ok tb@ In case lh_OBJ_NAME_insert returns NULL due to a failed malloc, onp 2022-11-08T23:19:09+00:00 mbuhl 2022-11-08T23:19:09+00:00 urn:sha1:d1f12376ca496271031d725c13ba958205ad3105 is leaked in OBJ_NAME_add. ok tb Found by CodeChecker. Add OID for RPKI signedTAL objects 2022-09-15T08:20:34+00:00 job 2022-09-15T08:20:34+00:00 urn:sha1:5e986ba9f9b316020df4d510e27b6b7d1a19effe IANA made a permanent registration in the SMI Security for S/MIME CMS Content Type registry at https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml#security-smime-1 for signed objects conforming to draft-ietf-sidrops-signed-tal. OK tb@