|  | Commit message (Collapse) | Author | Age | Files | Lines | 
|---|
| | 
| 
| 
| | ok miod@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | jsg@ noticed that some of the lines in libssl and libcrypto are not
indented properly.  At a quick glance, it looks like it has a different
control flow than it really does.  I checked the history in our tree and
in OpenSSL to make sure these were simple mistakes.
ok miod@ jsing@ | 
| | 
| 
| 
| | ok jsing@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | There are currently cases where the return from each call is checked,
the return from only the last call is checked and cases where it is not
checked at all (including code in bn, ec and engine).
Checking the last return value is valid as once the function fails it will
continue to return NULL. However, in order to be consistent check each
call with the same idiom. This makes it easy to verify.
Note there are still a handful of cases that do not follow the idiom -
these will be handled separately.
ok beck@ doug@ | 
| | |  | 
| | 
| 
| 
| | PR #3418 via OpenSSL trunk | 
| | 
| 
| 
| 
| 
| 
| 
| | Remove the openssl public includes from cryptlib.h and add a small number
of includes into the source files that actually need them. While here,
also sort/group/tidy the includes.
ok beck@ miod@ | 
| | 
| 
| 
| 
| 
| 
| 
| 
| | an OPENSSL_NO_* define. This avoids relying on something else pulling it
in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is
never going to do anything, since OPENSSL_NO_XYZ will never defined, due
to the fact that opensslconf.h has not been included.
This also includes some miscellaneous sorting/tidying of headers. | 
| | 
| 
| 
| 
| 
| | all have implicit NULL checks, so we do not need them here.
ok miod@ | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| 
| | compiled-in, with nonfunctional code, to be able to cope with the RSA
patent.
However, we don't use this option, and the RSA patent has expired more than 10
years ago, so just drop this piece. | 
| | |  | 
| | |  | 
| | 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| 
| | avoid unreadable/unmaintainable constructs like that:
const EVP_PKEY_ASN1_METHOD cmac_asn1_meth =
        {
        EVP_PKEY_CMAC,
        EVP_PKEY_CMAC,
        0,
        "CMAC",
        "OpenSSL CMAC method",
        0,0,0,0,
        0,0,0,
        cmac_size,
        0,
        0,0,0,0,0,0,0,
        cmac_key_free,
        0,
        0,0
        };
ok matthew@ deraadt@ | 
| | 
| 
| 
| 
| 
| 
| 
| | OPENSSL_foo wrappers. This changes:
OPENSSL_malloc->malloc
OPENSSL_free->free
OPENSSL_relloc->realloc
OPENSSL_freeFunc->free | 
| | |  | 
| | |  | 
| | |  | 
| | |  | 
| | |  | 
| | |  | 
| | 
| 
| 
| | ok miod@ | 
| | |  | 
| | 
| 
| 
| | http://www.openssl.org/news/secadv_20060928.txt for more | 
| | |  | 
| | |  | 
| | 
| 
| 
| 
| | API addition: ERR_release_err_state_table
[make includes before you build libssl/libcrypto] | 
| | |  | 
| | |  | 
| | 
| 
| 
| | From http://www.openssl.org/~geoff, modified to be enabled at all times. | 
| | 
| 
| 
| | correctly autogenerate obj_mac.h | 
| | |  | 
| | |  | 
| | |  | 
| | |  | 
| | 
| 
| 
| 
| 
| | Sept 21.  Note: This means you shouldn't really be running -current
for anything in the United States. Either wait for Sept 21, or for the
next release, or move to the free world :) | 
| | 
| 
| 
| 
| 
| 
| | thanks niklas@
*WARNING* - this breaks the patch used in the "ssl26" port - you'll
need to use the new minty ssl-intl port, coming right after this | 
| | 
| 
| 
| 
| 
| | *warning* this bumps shared lib minors for libssl and libcrypto from 2.1 to 2.2
if you are using the ssl26 packages for ssh and other things to work you will
need to get new ones (see ~beck/libsslsnap/<arch>) on cvs or ~beck/src-patent.tar.gz on cvs | 
| | |  | 
|  | functionality for shared libs.
Note that routines such as sslv2_init and friends that use RSA will
not work due to lack of RSA in this library.
Needs documentation and help from ports for easy upgrade to full
functionality where legally possible. |