summaryrefslogtreecommitdiff
path: root/src/lib/libcrypto/pem (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Use arc4random_buf() instead of RAND_bytes() or RAND_pseudo_bytes().jsing2014-10-222-8/+6
| | | | | | | | arc4random_buf() is guaranteed to always succeed - it is worth noting that a number of the replaced function calls were already missing return value checks. ok deraadt@
* None of these need to include <openssl/rand.h>jsing2014-10-185-10/+5
|
* Make sure PEM_def_callback() correctly handles negative buffer sizes; all usesmiod2014-07-231-10/+17
| | | | | | | within libcrypto are safe, but until we can change this function prototype to use size_t instead of int, better be safe than sorry. tweaks and ok guenther@
* if (x) FOO_free(x) -> FOO_free(x).miod2014-07-123-21/+12
| | | | | | | Improves readability, keeps the code smaller so that it is warmer in your cache. review & ok deraadt@
* Missing bounds check in do_PVK_body(); OpenSSL RT #2277, from OpenSSL trunk,miod2014-07-111-4/+10
| | | | but without a memory leak.
* Only import cryptlib.h in the four source files that actually need it.jsing2014-07-1111-53/+61
| | | | | | | | Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes. ok beck@ miod@
* Explicitly include <openssl/opensslconf.h> in every file that referencesjsing2014-07-107-7/+22
| | | | | | | | | an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is never going to do anything, since OPENSSL_NO_XYZ will never defined, due to the fact that opensslconf.h has not been included. This also includes some miscellaneous sorting/tidying of headers.
* Stop including standard headers via cryptlib.h - pull in the headers thatjsing2014-07-105-7/+17
| | | | | | are needed in the source files that actually require them. ok beck@ miod@
* delete some casts. ok miodtedu2014-07-101-2/+2
|
* Missing allocation checks and potential NULL pointer dereference in themiod2014-07-101-7/+15
| | | | error path in PEM_X509_INFO_read_bio(); ok guenther@ jsing@
* remove unused, private version strings except SSL_version_strbcook2014-07-091-3/+1
| | | | | | Also remove unused des_ver.h, which exports some of these strings, but is not installed. ok miod@ tedu@
* tags as requested by miod and teduderaadt2014-06-1214-12/+14
|
* malloc() result does not need a cast.deraadt2014-06-073-3/+3
| | | | ok miod
* Avoid the use of an uninitialised variable. In reality, this is a non-issuejsing2014-06-011-2/+1
| | | | | | | since the calculated value is not actually used in the uninitialised case. Change the code so that we only do the calculation if we actually need it. Issue detected by clang and reported by both brad@ and Brent Cook.
* more: no need for null check before freederaadt2014-05-303-18/+9
| | | | ok tedu guenther
* convert 53 malloc(a*b) to reallocarray(NULL, a, b). that is 53deraadt2014-05-292-3/+3
| | | | | | | | | potential integer overflows easily changed into an allocation return of NULL, with errno nicely set if need be. checks for an allocations returning NULL are commonplace, or if the object is dereferenced (quite normal) will result in a nice fault which can be detected & repaired properly. ok tedu
* Everything sane has stdio, and FILE *. we don't need ifdefs for this.beck2014-05-296-45/+0
| | | | ok to firebomb from tedu@
* We don't really to keep history in constructs such as:miod2014-05-261-6/+0
| | | | | | | | #if 1 /* new with openssl 0.9.4 */ current code; #else obsolete code; #endif
* Almost nothing actually needs to include <openssl/e_os2.h>, however byjsing2014-05-241-1/+2
| | | | | | | including it they get <openssl/opensslconf.h>. So instead of pulling in <openssl/e_os2.h>, just pull in <openssl/opensslconf.h>. "go ahead" miod@
* if (x) free(x) -> free(x); semantic patch generated with coccinelle, carefullymiod2014-05-221-2/+1
| | | | eyeballed before applying. Contributed by Cyril Roelandt on tech@
* Replace all use of ERR_add_error_data with ERR_asprintf_error_data.beck2014-04-261-1/+1
| | | | | | | | This avoids a lot of ugly gymnastics to do snprintfs before sending the bag of strings to ERR, and eliminates at least one place in dso_dlfctn.c where it was being called with the incorrect number of arguments and using random things off the stack as addresses of strings. ok krw@, jsing@
* Unifdef -UPEDANTIC. ok beck@ tedu@miod2014-04-231-6/+0
|
* More KNF.jsing2014-04-214-8/+8
|
* KNF.jsing2014-04-2114-1570/+1612
|
* Restore beck's rev 1.7: snprintf() was reviewed.guenther2014-04-201-2/+4
| | | | Also, use sizeof() for snprintf()'s size argument
* We'll interpret a (void) cast on snprintf() to mean it's been verified thatguenther2014-04-191-2/+2
| | | | | | truncation is either desirable, not an issue, or is detected and handled later ok deraadt@
* use intrinsic strlcpy and strlcat everywhere so we only have one set ofbeck2014-04-191-6/+6
| | | | | | funcitons to check for incorrect use. keep BUF_strlcpy and BUF_strlcat for API comptibility only. ok tedu@
* fix some of the leaksjsg2014-04-171-1/+3
| | | | ok miod@ looks good deraadt@
* Change library to use intrinsic memory allocation functions instead ofbeck2014-04-177-43/+43
| | | | | | | | OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free
* Do not feed RSA private key information to the random subsystem asderaadt2014-04-171-1/+0
| | | | | | | | entropy. It might be fed to a pluggable random subsystem.... What were they thinking?! ok guenther
* we don't use these files for buildingtedu2014-04-151-78/+0
|
* remove FIPS mode support. people who require FIPS can buy something thattedu2014-04-151-157/+0
| | | | | meets their needs, but dumping it in here only penalizes the rest of us. ok beck deraadt
* Send the rotIBM stream cipher (ebcdic) to Valhalla to party for eternitybeck2014-04-151-15/+0
| | | | | with the bearded ones... some API's that nobody should be using will dissapear with this commit.
* Part 1 of eliminating BIO_snprintf(). This fixes mechanical conversionsbeck2014-04-151-2/+2
| | | | | where the return value is ignored changing to (void) snprintf. ok deraadt@
* remove auto-generated dependencies from the old unused build system, soderaadt2014-04-141-180/+0
| | | | | that it is easier to find code pieces. They are getting in the way. ok miod
* Cope with the removal of openssl/symhacks.hderaadt2014-04-131-2/+0
|
* Merge conflicts; remove MacOS, Netware, OS/2, VMS and Windows build machinery.miod2014-04-134-12/+183
|
* This commit was generated by cvs2git to track changes on a CVS vendordjm2012-10-131-23/+35
|\ | | | | branch.
| * import OpenSSL-1.0.1cdjm2012-10-131-23/+35
| |
* | openssl-1.0.0e: resolve conflictsdjm2011-11-031-2/+0
| |
* | This commit was generated by cvs2git to track changes on a CVS vendordjm2011-11-031-7/+3
|\| | | | | branch.
| * import OpenSSL 1.0.0edjm2011-11-032-9/+3
| |
* | resolve conflicts, fix local changesdjm2010-10-0110-767/+299
| |
* | This commit was generated by cvs2git to track changes on a CVS vendordjm2010-10-011-0/+942
|\| | | | | branch.
| * import OpenSSL-1.0.0adjm2010-10-0110-431/+1241
| |
| * import of OpenSSL 0.9.8kdjm2009-04-061-0/+4
| |
| * import openssl-0.9.8jdjm2009-01-095-2/+180
| |
| * import of OpenSSL 0.9.8hdjm2008-09-0610-201/+343
| |
| * import of openssl-0.9.7jdjm2006-06-271-42/+46
| |
| * import of openssl-0.9.7g; tested on platforms from alpha to zaurus, ok deraadt@djm2005-04-293-5/+130
| |
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-20 02:20:20 +0000