openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Make internal header file names consistent	tb	2022-11-26	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Libcrypto currently has a mess of _lcl.h, _locl.h, and _local.h names used for internal headers. Move all these headers we inherited from OpenSSL to _local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook
*	Remove BIGNUM consistency macros.	jsing	2022-11-26	1	-13/+1
\| \| \| \| \| \| \| \| \| \| \| \|	Compiling with BN_DEBUG (and if you want to take it further, BN_DEBUG_RAND) supposedly adds consistency checks to the BN code. These are rarely if ever used and introduce a bunch of clutter in the code. Furthermore, there are hacks in place to undo things that the debugging code does. Remove all of this mess and instead rely on always enabled checks, more readable code and proper regress coverage to ensure correct behaviour. "Good riddance." tb@
*	Change bn_expand()/bn_wexpand() to indicate failure/success via 0/1.	jsing	2022-11-24	1	-6/+6
\| \| \| \| \| \| \| \| \|	Currently bn_expand()/bn_wexpand() return a BIGNUM *, however none of the callers use this (and many already treat it as a true/false value). Change these functions to return 0 on failure and 1 on success, revising callers that test against NULL in the process. ok tb@
*	Error out on negative shifts in BN_{r,l}shift()	tb	2022-06-22	1	-1/+13
\| \| \| \| \| \| \| \| \| \|	Without these checks in both functions nw = n / BN_BITS2 will be negative and this leads to out-of-bounds accesses via negative array indices and memset with a negative size. Pointed out by cheloha ok jsing
*	deregister; no binary change	jsg	2014-10-28	1	-2/+2
\| \| \| \|	ok jsing@ miod@
*	Only import cryptlib.h in the four source files that actually need it.	jsing	2014-07-11	1	-2/+1
\| \| \| \| \| \| \| \|	Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes. ok beck@ miod@
*	Stop including standard headers via cryptlib.h - pull in the headers that	jsing	2014-07-10	1	-1/+3
\| \| \| \| \| \|	are needed in the source files that actually require them. ok beck@ miod@
*	tags as requested by miod and tedu	deraadt	2014-06-12	1	-1/+1
\|
*	Emergency knfectomie requested by tedu@.	jsing	2014-05-08	1	-127/+121
\|
*	resolve conflicts	djm	2012-10-13	1	-12/+15
\|
*	resolve conflicts	djm	2009-01-09	1	-1/+1
\|
*	resolve conflicts	djm	2008-09-06	1	-6/+21
\|
*	OpenSSL 0.9.7 stable 2002 05 08 merge	beck	2002-05-15	1	-4/+4
\|
*	openssl-engine-0.9.6a merge	beck	2001-06-22	1	-0/+5
\|
*	openssl-engine-0.9.6 merge	beck	2000-12-15	1	-1/+1
\|
*	OpenSSL 0.9.4 merge	beck	1999-09-29	1	-14/+4
\|
*	Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build	ryker	1998-10-05	1	-0/+210
	functionality for shared libs. Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library. Needs documentation and help from ports for easy upgrade to full functionality where legally possible.