openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Ignore ENGINE at the API boundary	tb	2023-11-29	1	-26/+17
\| \| \| \| \| \| \| \|	This removes the remaining ENGINE members from various internal structs and functions. Any ENGINE passed into a public API is now completely ignored functions returning an ENGINE always return NULL. ok jsing
*	Unifdef OPENSSL_NO_ENGINE in libcrypto	tb	2023-11-19	1	-20/+1
\| \| \| \| \| \| \|	This is mechanical apart from a few manual edits to avoid doubled empty lines. ok jsing
*	Make EVP_PKEY_get1_$TYPE a wrapper of EVP_PKEY_get0_$TYPE	tb	2023-09-10	1	-22/+29
\| \| \| \| \| \| \|	Avoids a bit of code duplication and reduces the probability of a fix being applied to only one of get0 and get1 (which happend in p_lib.c r1.35). ok jsing
*	Align EVP_PKEY_get1_RSA() with EVP_PKEY_get0_RSA()	tb	2023-09-02	1	-6/+7
\|
*	Fix EVP_PKEY_get0_RSA() for RSA-PSS	tb	2023-09-01	1	-6/+6
\| \| \| \| \| \|	It currently returns NULL. This is OpenSSL 4088b926 + De Morgan. ok jsing
*	Unbreak the namespace build after a broken mk.conf and tool misfire had	beck	2023-07-07	1	-41/+1
\| \| \| \| \| \| \| \|	me aliasing symbols not in the headers I was procesing. This unbreaks the namespace build so it will pass again ok tb@
*	Hide symbols in hkdf, evp, err, ecdsa, and ec	beck	2023-07-07	1	-1/+41
\| \| \| \| \| \|	(part 2 of commit) ok jsing@
*	Make internal header file names consistent	tb	2022-11-26	1	-3/+3
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Libcrypto currently has a mess of _lcl.h, _locl.h, and _local.h names used for internal headers. Move all these headers we inherited from OpenSSL to _local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook
*	Change the pkey.ptr from char * to void *	tb	2022-11-18	1	-2/+2
\| \| \| \| \| \| \| \|	Now that EVP_PKEY is opaque, there is no reason to keep the ptr member of the pkey union as a weird char pointer, a void pointer will do. This avoids a few stupid casts and simplifies an upcoming diff. ok jsing
*	Port EVP raw key API from OpenSSL.	jsing	2022-11-10	1	-2/+91
\| \| \| \| \| \|	This will be needed to deal with Curve25519 based keys. ok beck@ tb@
*	Prepare to provide EVP_PKEY_security_bits()	tb	2022-06-27	1	-1/+12
\| \| \| \| \| \| \|	This also provides a pkey_security_bits member to the PKEY ASN.1 methods and a corresponding setter EVP_PKEY_asn1_set_security_bits(). ok beck jsing
*	Add check for BIO_indent return value	inoguchi	2022-01-20	1	-2/+3
\| \| \| \| \| \|	CID 24778 ok jsing@ millert@ tb@
*	Include evp_locl.h where it will be needed once most structs from	tb	2021-12-12	1	-1/+2
\| \| \| \| \| \|	evp.h will be moved to evp_locl.h in an upcoming bump. ok inoguchi
*	Prepare to provide EVP_PKEY_new_CMAC_key()	tb	2021-03-29	1	-8/+43
\| \| \| \| \| \| \|	sebastia ran into this when attempting to update security/hcxtools. This will be tested via wycheproof.go once the symbol is public. ok jsing, tested by sebastia
*	Provide EVP_PKEY_get0_hmac(). From OpenSSL 1.1.1 which is still	tb	2019-03-17	1	-1/+17
\| \| \| \| \| \|	freely licensed. From jsing
*	Add a const qualifier to the argument of EVP_PKEY_size().	tb	2018-05-30	1	-2/+2
\| \| \| \| \|	tested in a bulk build by sthen ok jsing
*	Add a const qualifier to the argument of EVP_PKEY_get0(3).	tb	2018-05-13	1	-2/+2
\| \| \| \| \|	tested in a bulk build by sthen ok beck (as part of a larger diff)
*	Add a const qualifier to the argument of EVP_PKEY_bits(3).	tb	2018-05-13	1	-2/+2
\| \| \| \| \|	tested in a bulk build by sthen ok beck (as part of a larger diff)
*	make ENGINE_finish() succeed on NULL and simplify callers as in	tb	2018-04-14	1	-13/+7
\| \| \| \| \| \| \| \| \| \| \|	OpenSSL commit 7c96dbcdab9 by Rich Salz. This cleans up the caller side quite a bit and reduces the number of lines enclosed in #ifndef OPENSSL_NO_ENGINE. codesearch.debian.net shows that almost nothing checks the return value of ENGINE_finish(). While there, replace a few nearby 'if (!ptr)' with 'if (ptr == NULL)'. ok jsing, tested by & ok inoguchi
*	Provide EVP_PKEY_get0_EC_KEY() and 'if (ret)' vs 'if (ret != 0)' cosmetics.	tb	2018-02-20	1	-11/+20
\| \| \| \|	ok jsing
*	Provide further parts of the OpenSSL 1.1 API: {DH,DSA}_get0_{key,pqg}(),	tb	2018-02-17	1	-19/+48
\| \| \| \| \| \|	EVP_PKEY_get0_{DH,DSA,RSA}(), RSA_{g,s}et0_key(). ok jsing
*	Provide EVP_PKEY_up_ref().	jsing	2018-02-14	1	-1/+8
\|
*	Send the function codes from the error functions to the bit bucket,	beck	2017-01-29	1	-11/+9
\| \| \| \| \| \|	as was done earlier in libssl. Thanks inoguchi@ for noticing libssl had more reacharounds into this. ok jsing@ inoguchi@
*	No need to include asn1_mac.h here.	miod	2014-07-12	1	-2/+1
\|
*	Only import cryptlib.h in the four source files that actually need it.	jsing	2014-07-11	1	-8/+8
\| \| \| \| \| \| \| \|	Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes. ok beck@ miod@
*	Explicitly include <openssl/opensslconf.h> in every file that references	jsing	2014-07-10	1	-1/+4
\| \| \| \| \| \| \| \| \|	an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is never going to do anything, since OPENSSL_NO_XYZ will never defined, due to the fact that opensslconf.h has not been included. This also includes some miscellaneous sorting/tidying of headers.
*	tags as requested by miod and tedu	deraadt	2014-06-12	1	-1/+1
\|
*	malloc() result does not need a cast.	deraadt	2014-06-07	1	-1/+1
\| \| \| \|	ok miod
*	KNF.	jsing	2014-05-07	1	-165/+186
\|
*	kill REF_PRINT/REF_CHECK debugging framework noone would use	deraadt	2014-04-17	1	-10/+1
\| \| \| \|	ok miod
*	Change library to use intrinsic memory allocation functions instead of	beck	2014-04-17	1	-2/+2
\| \| \| \| \| \| \| \|	OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free
*	openssl-1.0.0e: resolve conflicts	djm	2011-11-03	1	-0/+3
\|
*	resolve conflicts, fix local changes	djm	2010-10-01	1	-215/+179
\|
*	resolve conflicts	djm	2008-09-06	1	-6/+171
\|
*	OpenSSL 0.9.7 stable 2002 05 08 merge	beck	2002-05-15	1	-21/+25
\|
*	openssl-engine-0.9.6 merge	beck	2000-12-15	1	-2/+2
\|
*	OpenSSL 0.9.5 merge	beck	2000-03-19	1	-3/+61
\| \| \| \| \| \|	warning this bumps shared lib minors for libssl and libcrypto from 2.1 to 2.2 if you are using the ssl26 packages for ssh and other things to work you will need to get new ones (see ~beck/libsslsnap/<arch>) on cvs or ~beck/src-patent.tar.gz on cvs
*	OpenSSL 0.9.4 merge	beck	1999-09-29	1	-36/+17
\|
*	Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build	ryker	1998-10-05	1	-0/+294
	functionality for shared libs. Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library. Needs documentation and help from ports for easy upgrade to full functionality where legally possible.