summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Code using malloc() in ssl23_get_client_hello() got removed 12 years ago,miod2014-05-242-64/+54
| | | | | it's time to remove the test for a possible need to free(). ok jsing@
* Use sizeof(cryptopro_ext) instead of 36 when applicable.miod2014-05-242-8/+8
| | | | ok jsing@
* Invoke OPENSSL_cleanse() with the size of the variable you are cleaning.miod2014-05-242-2/+2
| | | | ok jsing@
* We have shared global variables - unifdef OPENSSL_EXPORT_VAR_AS_FUNCTION.jsing2014-05-245-146/+0
| | | | ok miod@ beck@
* Move ssltest.c to a regress test.jsing2014-05-247-0/+330
|
* remove OPENSSL_malloc and CRYPTO_malloc goo from the regress tests.beck2014-05-246-77/+22
| | | | ok miod@ jsing@ guenther@
* make this compile again - actually include stdio and friends ourselves.beck2014-05-241-1/+3
|
* Move the regress tests that are in lib/libssl to usr.sbin/openssl,jsing2014-05-248-245/+0
| | | | | | | since they are really testing openssl(1) (although this also tests libcrypto and libssl), rather than actual parts of the libssl library. Discussed with miod@
* Expand the OPENSSL_.*GLOBAL.* macros and stop including e_os2.h.jsing2014-05-246-16/+14
| | | | ok miod@ beck@
* Include <openssl/opensslconf.h> - currently ssl.h is relying on it beingjsing2014-05-242-2/+4
| | | | | | | pulled in elsewhere, even though it is makes use of the OPENSSL_NO_* defines. While here, remove kssl.h since it is a no-op. ok beck@ miod@
* DeIMPLEMENT libssl. Expand the IMPLEMENT_* macros since it is far morejsing2014-05-2424-412/+1308
| | | | | | | | readable and one less layer of abstraction. Use C99 initialisers for clarity, grepability and to protect from future field reordering/removal. ok miod@ (tedu@ also thought it was a wonderful idea, beck@ also agreed, but ran away squealing since it reminded him of the VOP layer...)
* Another e_os2.h -> opensslconf.h.jsing2014-05-242-2/+6
|
* e_os2.h is not needed here.jsing2014-05-242-2/+2
|
* Explicitly include <openssl/openssl.conf>. des.h still needs e_os2.h (atjsing2014-05-242-4/+6
| | | | least for a little while longer...)
* Almost nothing actually needs to include <openssl/e_os2.h>, however byjsing2014-05-2452-56/+98
| | | | | | | including it they get <openssl/opensslconf.h>. So instead of pulling in <openssl/e_os2.h>, just pull in <openssl/opensslconf.h>. "go ahead" miod@
* Expand OPENSSL_{GLOBAL,EXTERN} macros that I missed last time around,jsing2014-05-244-4/+4
| | | | | | since they are hiding in the #define forest. ok miod@
* Spell ssize_t correctly (the incorrect spelling is ossl_ssize_t).jsing2014-05-248-30/+30
| | | | ok miod@
* No OPENSSL_SYS_WINDOWS wanted.jsing2014-05-242-6/+0
| | | | ok miod@
* Take an axe to rc5speed.c - strip out everything that is for otherjsing2014-05-232-168/+18
| | | | platforms.
* We have stdio and are not WIN16.jsing2014-05-232-4/+0
|
* Not OPENSSL_SYS_SUNOS.jsing2014-05-232-6/+0
|
* Clean up the SSL cipher initialisation and use C99 initialisers forjsing2014-05-232-3418/+3424
| | | | | | clarity, grepability and to protect from future field reordering/removal. ok miod@
* signal.h is not needed here.jsing2014-05-231-1/+0
|
* Stop pulling signal.h into apps.h - just include it from openssl.c wherejsing2014-05-232-2/+1
| | | | it is needed.
* Replace (sometimes conditional) use of alloca with malloc, and clearingmiod2014-05-234-78/+32
| | | | | | through volatile pointers with explicit_bzero(). ok beck@ jsing@
* Calling signal once to ignore SIGPIPE is sufficient - we do not need to dojsing2014-05-2337-67/+0
| | | | | | this again in each app. ok miod@
* Move include to the top and nuke pointless comments.jsing2014-05-231-8/+1
|
* don't deprecate until at least the base src tree is clean.tedu2014-05-232-24/+16
|
* Mark the malloc wrapper functions as deprecated so warnings willbeck2014-05-222-16/+24
| | | | | happen on their use. ok miod@
* Convert OPENSSL_malloc stuff back to intrinsics, a few were missedbeck2014-05-226-12/+12
| | | | | as new stuff was brought in. ok miod@
* if (x) free(x) -> free(x); semantic patch generated with coccinelle, carefullymiod2014-05-2251-164/+85
| | | | eyeballed before applying. Contributed by Cyril Roelandt on tech@
* Add explicit #include lines for stdio.h, stdlib.h and string.h; these filesmiod2014-05-222-0/+6
| | | | | | | | | | | | used to be pulled via <openssl/pqueue.h> which got removed, and it turns out that there is code in the wild which currently relies upon these headers to be brought in scope by including <openssl/dtls1.h>. Although such code needs to be fixed to not rely upon any system header being automagically included by including ssl headers, our goal is not to break code for the sake of it (ok, maybe from time to time). Hopefully, this commit can be reverted in a not-so-distant future.
* Expand the OPENSSL_{GLOBAL,EXPORT,IMPORT,EXTERN} macros - this rids thejsing2014-05-2214-44/+40
| | | | | | libssl tree from all uses of these defines. ok miod@
* There are two actual uses of e_os2.h in libssl - an OPENSSL_GLOBAL (anjsing2014-05-228-14/+4
| | | | | | | | | empty define) and an OPENSSL_EXTERN (which is defined as, well... extern). The use of OPENSSL_EXTERN is already inconsistent since the lines above and below just use plain old "extern". Expand the two uses of these macros and stop including e_os2.h in libssl. ok miod@
* Stop pulling pqueue.h into ssl_locl.h since only a small part of libssljsing2014-05-2212-12/+16
| | | | | | | | | | actually needs it. Instead, just include it in the files where it is actually necessary. Also remove standard includes from pqueue.h so that they are not available as a side effect. Just add the two includes that are needed to pqueue.c. ok miod@
* Stop including kssl_lcl.h and nuke it from orbit - it is a no-op now.jsing2014-05-229-72/+0
| | | | ok beck@ miod@
* Hello? Yes, you're speaking with OPENSSL_SYS_UNIX.jsing2014-05-222-56/+0
| | | | ok beck@ miod@
* mark BIO_snprintf as deprecated, so warnings will be generated for it'sbeck2014-05-222-4/+4
| | | | use. ok miod@ tedu@
* KNF.jsing2014-05-226-342/+308
|
* More KNF.jsing2014-05-222-368/+388
|
* Make this build cleanly even with UTF8_{putc,getc} moved from theguenther2014-05-222-2/+6
| | | | | public header to the internal. Make some variables unsigned to eliminate some warnings
* No uses of UTF8_{getc,putc}() in ports, so remove them from the public header.guenther2014-05-224-18/+16
| | | | ok miod@
* fix MALLOC_STATS (not compiled in by default); ok tedu@otto2014-05-211-18/+19
|
* KSSL is dead... nuke KSSL_DEBUG from orbit.jsing2014-05-2010-276/+0
| | | | ok beck@ miod@
* Use errc/warnc to simplify code.guenther2014-05-202-9/+9
| | | | | | Also, in 'ftp', always put the error message last, after the hostname/ipaddr. ok jsing@ krw@ millert@
* Bring UTF8_{getc,putc} up-to-date: it's been a decade since 5- and 6-byteguenther2014-05-208-186/+176
| | | | | | | | encodings and encoding of surrogate pair code points were banned. Add checks for those, both to those functions and to the code decoding the BMP and UNIV encodings. ok miod@
* Fix several bounds checks in ssl_add_clienthello_tlsext() andmiod2014-05-192-68/+78
| | | | | | | | | ssl_add_serverhello_tlsext(), and convert all of them to the same idiom, for easier review. Math is hard, let's go webshopping. Help and ok guenther@
* More KNF.jsing2014-05-191-60/+60
|
* More whack-a-mole^Wfips.jsing2014-05-192-18/+1
| | | | ok miod@
* It is perfectly valid to call free(NULL), so stop checking for non-NULLjsing2014-05-1929-128/+80
| | | | before calling free - of some course parts of the code already did this.
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-01 11:49:14 +0000