summaryrefslogtreecommitdiff
path: root/src/lib/libcrypto/objects (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Fix CVE-2014-3508, pretty printing and OID validation:guenther2014-08-081-2/+7
| | | | | | | | | | | - make sure the output buffer is always NUL terminated if buf_len was initially greater than zero. - reject OIDs that are too long, too short, or not in proper base-127 Based on https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87 ok bcook@
* Fix OID encoding for single components. OpenSSL PR #2556 via OpenSSL trunk.miod2014-07-111-1/+1
| | | | (be sure to make cleandir and make includes before building)
* Only import cryptlib.h in the four source files that actually need it.jsing2014-07-112-7/+7
| | | | | | | | Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes. ok beck@ miod@
* Explicitly include <openssl/opensslconf.h> in every file that referencesjsing2014-07-102-2/+7
| | | | | | | | | an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is never going to do anything, since OPENSSL_NO_XYZ will never defined, due to the fact that opensslconf.h has not been included. This also includes some miscellaneous sorting/tidying of headers.
* Stop including standard headers via cryptlib.h - pull in the headers thatjsing2014-07-102-3/+7
| | | | | | are needed in the source files that actually require them. ok beck@ miod@
* tags as requested by miod and teduderaadt2014-06-127-5/+7
|
* Remove various test stubs. The good ones have been moved by jsingderaadt2014-06-071-28/+0
| | | | | | and others to the regress framework. These remaining ones just muddle us up when re-reading code repeatedly. ok jsing
* malloc() result does not need a cast.deraadt2014-06-072-7/+7
| | | | ok miod
* Clean up some of the nightmare of string and pointer arithmatic inbeck2014-06-011-52/+36
| | | | | | | | | | | | | this nasty function. This gets rid of the nasty tmp variables used to hold temporary strings and the DECIMAL_SIZE hack. it gets rid of the rather pointless null checks for buf (since the original code dereferences it before checking). It also gets rid of the insane possibility this could return -1 when stuff is using the return values to compute lengths All the failure cases now return 0 and an empty string like the first error case in the original code. ok miod@ tedu@
* more: no need for null check before freederaadt2014-05-302-14/+7
| | | | ok tedu guenther
* ok, next pass after review: when possible, put the reallocarray argumentsderaadt2014-05-291-1/+1
| | | | in the "size_t nmemb, size_t size"
* convert 53 malloc(a*b) to reallocarray(NULL, a, b). that is 53deraadt2014-05-292-2/+3
| | | | | | | | | potential integer overflows easily changed into an allocation return of NULL, with errno nicely set if need be. checks for an allocations returning NULL are commonplace, or if the object is dereferenced (quite normal) will result in a nice fault which can be detected & repaired properly. ok tedu
* Turn off MemCheck_on and MemCheck_off. These calls are pointless since thejsing2014-05-251-13/+3
| | | | | | crypto memory debugging code has been castrated. ok miod@ "kill it" beck@
* Almost nothing actually needs to include <openssl/e_os2.h>, however byjsing2014-05-241-1/+2
| | | | | | | including it they get <openssl/opensslconf.h>. So instead of pulling in <openssl/e_os2.h>, just pull in <openssl/opensslconf.h>. "go ahead" miod@
* Update with recently added objects.jsing2014-05-011-0/+18
| | | | ok miod@
* Provide an EVP implementation for ChaCha.jsing2014-05-011-0/+4
| | | | ok miod@
* Add support for the french ANSSI FRP256v1 elliptic curve.miod2014-05-011-0/+2
| | | | | | | | | | While not to be considered a good choice of elliptic curve (refer to http://safecurves.cr.yp.to/ for more details), it is nevertheless deemed a good decision to allow developers with requirements to use such a curve, to be able to do this via a crypto library allowing for much better choices to be made, without having to change (much of) their code to get better crypto. ok beck@ deraadt@
* Add Brainpool elliptic curves. From OpenSSL RT#2239 via ${DAYJOB}.miod2014-05-011-0/+17
| | | | | Be sure to rerun `make includes' after updating. ok tedu@ beck@ deraadt@
* Restore beck's rev 1.21: snprintf() was reviewedguenther2014-04-201-1/+1
|
* KNF.jsing2014-04-196-813/+814
|
* We'll interpret a (void) cast on snprintf() to mean it's been verified thatguenther2014-04-191-1/+1
| | | | | | truncation is either desirable, not an issue, or is detected and handled later ok deraadt@
* use intrinsic strlcpy and strlcat everywhere so we only have one set ofbeck2014-04-191-3/+3
| | | | | | funcitons to check for incorrect use. keep BUF_strlcpy and BUF_strlcat for API comptibility only. ok tedu@
* Shrink a local buffer to the size it really needs to be; this is the onlymiod2014-04-181-1/+1
| | | | | | discrepancy found while checking proper {HEX,DECIMAL}_SIZE macro usage, which is confusing enough. tweaks and ok jca@, ok guenther@
* a little less obfuscationtedu2014-04-171-17/+2
|
* Change library to use intrinsic memory allocation functions instead ofbeck2014-04-174-30/+30
| | | | | | | | OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free
* we don't use these files for buildingtedu2014-04-151-88/+0
|
* Send the rotIBM stream cipher (ebcdic) to Valhalla to party for eternitybeck2014-04-151-16/+0
| | | | | with the bearded ones... some API's that nobody should be using will dissapear with this commit.
* Part 1 of eliminating BIO_snprintf(). This fixes mechanical conversionsbeck2014-04-151-1/+1
| | | | | where the return value is ignored changing to (void) snprintf. ok deraadt@
* remove auto-generated dependencies from the old unused build system, soderaadt2014-04-141-42/+0
| | | | | that it is easier to find code pieces. They are getting in the way. ok miod
* Remove some stuff that isn't needed.beck2014-04-131-1/+1
| | | | ok miod@ deraadt@
* Merge conflicts; remove MacOS, Netware, OS/2, VMS and Windows build machinery.miod2014-04-131-1/+1
|
* resolve conflictsdjm2012-10-132-4/+64
|
* This commit was generated by cvs2git to track changes on a CVS vendordjm2012-10-133-3/+12
|\ | | | | branch.
| * import OpenSSL-1.0.1cdjm2012-10-135-7/+76
| |
* | resolve conflicts, fix local changesdjm2010-10-0110-261/+324
| |
* | This commit was generated by cvs2git to track changes on a CVS vendordjm2010-10-014-0/+455
|\| | | | | branch.
| * import OpenSSL-1.0.0adjm2010-10-0113-138/+779
| |
| * import openssl-0.9.8jdjm2009-01-093-2/+178
| |
| * import of OpenSSL 0.9.8hdjm2008-09-068-90/+493
| |
| * import of openssl-0.9.7jdjm2006-06-273-19/+45
| |
| * import of openssl-0.9.7g; tested on platforms from alpha to zaurus, ok deraadt@djm2005-04-296-7/+58
| |
| * import openssl-0.9.7dmarkus2004-04-072-2/+6
| |
| * import 0.9.7b (without idea and rc5)markus2003-05-113-5/+10
| |
| * import openssl-0.9.7-stable-SNAP-20020911 (without idea)markus2002-09-121-1/+1
| |
| * import openssl-0.9.7-beta3markus2002-09-053-1/+287
| |
| * import openssl-0.9.7-beta1markus2002-09-059-416/+1828
| |
| * This commit was manufactured by cvs2git to create branch 'unlabeled-1.1.1'.cvs2svn2002-05-154-0/+903
| |
* | This commit was generated by cvs2git to track changes on a CVS vendordjm2010-10-011-5/+16
|\ \ | | | | | | branch.
| * | import OpenSSL-1.0.0adjm2010-10-013-2538/+2879
| | |
* | | resolve conflictsdjm2009-01-093-1/+8
| | |
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-27 06:27:36 +0000