openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Files	Lines
2014-07-11	Only import cryptlib.h in the four source files that actually need it.	jsing	690	-2194/+2290
	Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes. ok beck@ miod@
2014-07-11	Add a small note about LibReSSL at the start of this.	beck	2	-0/+14
	ok jsing@
2014-07-11	No need to keep ssl23_foo() flavours mapping to ssl3_foo().	miod	9	-86/+24
	ok tedu@
2014-07-11	Remove JPAKE remnants - there is no jpake.h, so if OPENSSL_NO_JPAKE was	jsing	4	-16/+2
	removed from opensslconf.h, this would no longer compile.
2014-07-11	Fix dumb copy/paste mistake.	matthew	1	-3/+3
	Noticed testing with clang.
2014-07-11	Fix explicit_bzero regress for Solaris and OS X compatibility	matthew	1	-27/+68
	Solaris and OS X clobber the signal stack when returning to the main stack, which caused the original testing strategy (inspecting the signal stack once we're back on the main stack) to fail. To be compatible with this behavior, the regress test now inspects the signal stack space while we're still executing on it. This is a bit iffy because we might clobber it ourselves while inspecting it, but we as long as its not completely clobbered we should be okay. thx bcook for the Solaris test account
2014-07-10	Explicitly include <openssl/opensslconf.h> in every file that references	jsing	394	-550/+1462
	an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is never going to do anything, since OPENSSL_NO_XYZ will never defined, due to the fact that opensslconf.h has not been included. This also includes some miscellaneous sorting/tidying of headers.
2014-07-10	OPENSSL_stderr() is unused so nuke it. OPENSSL_showfatal() is only used by	jsing	4	-24/+6
	OpenSSLDie(), which is in the same file, so just make it static. ok miod@
2014-07-10	Use size_t as realloc() size argument whenever possible. ok tedu@	miod	4	-12/+16

2014-07-10	Simplify realloc() usage; ok tedu@	miod	2	-30/+12

2014-07-10	Upon realloc() failure, free() the original pointer and remove the stupid	miod	2	-6/+6
	comments implying you don't have to. ok tedu@
2014-07-10	KNF	miod	2	-52/+68

2014-07-10	Fix a double free in a can't-fail error path in PKCS7_decrypt(), by removing	miod	2	-20/+12
	the error path altogether and simplifying the local variables as a result. joint work with jsing@; ok jsing@ tedu@
2014-07-10	remove unused variable from ssl3_get_client_hello	bcook	2	-6/+4
	ok tedu@ miod@
2014-07-10	as noted by google/android via kettenis, atexit handlers can install new	tedu	1	-1/+8
	handlers. if this happens, restart the loop. ok kettenis matthew millert miod
2014-07-10	Inline the only use of the HEX_SIZE macro and nuke both DECIMAL_SIZE and	jsing	4	-14/+6
	HEX_SIZE. ok beck@ miod@
2014-07-10	Make sure srp_Calc_k() digest operations are checked for error; from	miod	2	-18/+34
	Florian Zumbiehl (florz , florz . de) on tech@
2014-07-10	Make sure SRP_Calc_client_key() returns NULL instead of a pristine BN_new()	miod	2	-8/+18
	upon error; from Florian Zumbiehl (florz , florz . de) on tech@
2014-07-10	Nuke OPENSSL_NONPIC_relocated since nothing uses it.	jsing	4	-8/+4
	ok miod@
2014-07-10	Kill a blatantly outdated (and now wrong) comment	miod	2	-8/+2

2014-07-10	Fix examples description, and use less ambiguous wording.	miod	1	-4/+4

2014-07-10	Try and fix the horrible coding style of the example code snippets.	miod	19	-398/+445

2014-07-10	Stop including standard headers via cryptlib.h - pull in the headers that	jsing	268	-420/+906
	are needed in the source files that actually require them. ok beck@ miod@
2014-07-10	Remove empty sections and references to des_modes(7) which we don't have.	miod	67	-218/+32

2014-07-10	Fewer lies, also do not document DES_3cbc_encrypt anymore.	miod	2	-44/+12

2014-07-10	Features introduce in OpenSSL 0.9.8 do not deserve their own section.	miod	2	-42/+38
	Instead, fold their description in the main documentation, and update the history section to mention them as well.
2014-07-10	Attempt to (incompletely) document EVP_aes_*().	miod	7	-23/+30
	When EVP_des_cbc() was suggested, suggest EVP_aes_256_cbc() instead. Remove mention of EVP_des_ede3_cbc() being the algorithm of choice for S/MIME. Don't mention US-export limited RC2 algorithms, you'd better not know about them.
2014-07-10	RSA_setup_blinding() gets a BN with BN_CTX_get(), returns `out of memory'	miod	2	-12/+2
	if it fails, then never uses it anymore, and may invoke a function which needs more than one BN from the BN_CTX anyway, so this is pointless - remove the BN_CTX_get() call and the test. ok jsing
2014-07-10	make asn1 free safe to call with null pointers of any type.	tedu	2	-8/+6
	ok jsing miod
2014-07-10	One sure hopes that OPENSSL_cleanse will:	jsing	2	-4/+4
	/* Clear password from memory */
2014-07-10	Remove #if 0 code which dumps your data to stdout.	miod	2	-18/+2

2014-07-10	Tweak some comments. We do not really need to know that "New!" flags were	jsing	2	-18/+16
	added 10+ years ago (they're kinda somewhat stale by now...)
2014-07-10	Uncompress ssltest.	jsing	1	-50/+0

2014-07-10	Remove more compression tendrils.	jsing	6	-28/+8
	ok tedu@
2014-07-10	Stop playing with the RSA_FLAG_BLINDING flag. It does nothing.	jsing	2	-6/+2
	ok miod@
2014-07-10	delete some casts. ok miod	tedu	24	-70/+70

2014-07-10	Missing allocation checks and potential NULL pointer dereference in the	miod	2	-14/+30
	error path in PEM_X509_INFO_read_bio(); ok guenther@ jsing@
2014-07-10	Remove RSA_FLAG_NO_EXP_CONSTTIME, which was deprecated 12+ years ago.	jsing	2	-26/+2
	sthen@ confirmed that no ports are referencing it. ok miod@.
2014-07-10	Remove more compression related code.	jsing	6	-40/+6

2014-07-10	Remove DEBUG_KEYGEN and DEBUG_DECRYPT support.	miod	4	-98/+4

2014-07-10	replace getservbyname_r with getaddrinfo for portability	bcook	2	-12/+22
	ok jsing@
2014-07-10	Tame the tedu... we still want to know that Compression and Expansion are	jsing	1	-1/+5
	NONE, even if this is due to the fact that we do not support compression.
2014-07-10	Put back some parts of the public SSL API that should not have been	jsing	6	-8/+56
	completely decompressed.
2014-07-10	forgot to decompress here too	tedu	2	-17/+2

2014-07-10	Remove bogus preprocessor statements trying to pick the largest integer	miod	8	-64/+8
	type for BF_LONG, MD[45]_LONG and SHA_LONG. First, the preprocessor symbols they check for a 64-bit system is __ILP64__ which no sane system provides; second, on the platforms which have assembler code to speed things up, the assembler code assumes a 32-bit type will be used.
2014-07-10	check return value of write.	bcook	1	-4/+15
	ok beck@ jsing@
2014-07-10	crank major for decompression feature	tedu	2	-2/+2

2014-07-10	decompress libssl. ok beck jsing	tedu	49	-1469/+77

2014-07-10	KNF comments, reflowing and moving out of the middle of argument lists in	guenther	6	-186/+300
	places ok jsing@
2014-07-10	remove unused ecc_pkey_size.	bcook	2	-8/+4
	ok jsing@ miod@