openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Rename X509V3_get_section() to X509V3_get0_section()	tb	2025-03-06	1	-2/+2
\| \| \| \| \| \| \| \|	This makes it clear for those fluent in OpenSSL API gibberish that nothing needs to be freed here. This is because it returns something hanging off a hash entry owned by cnf. ok jsing
*	Garbage collect X509V3_section_free()	tb	2025-03-06	1	-2/+1
\| \| \| \| \| \| \| \|	Historically, X509V3_section_free() could be customized by the conf db method to release memory allocated by X509V3_get_section(). This is no longer supported, so it is always a noop and can be removed. ok jsing
*	Unify X.509v3 extension methods	tb	2024-07-13	1	-50/+68
\| \| \| \| \| \| \| \| \| \| \| \|	Use C99 initializers for all structs (some were forgotten). Make all the structs static, call them x509v3_ext_* matching NID_. Add accessors called x509v3_ext_method_ and use these to implement X509V3_EXT_get_nid(). This adds consistency and avoids a few contortions like grouping a few extensions in arrays to save a couple externs. ok beck jsing
*	Fix leaks in copy_issuer()	tb	2023-08-30	1	-8/+14
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	The stack of subject alternative names from the issuer is parsed using X509V3_EXT_d2i(), so it must be freed with sk_GENERAL_NAME_pop_free(). It's not worth doing complicated ownership handling when the individual alternative names can be copied with GENERAL_NAME_dup(). Previously, ialt and its remaining members would be leaked when the call to sk_GENERAL_NAME_push() failed halfway through. This is only reachable via the issuer:copy x509v3.cnf(5) directive. ok jsing
*	libressl _namespace.h: adjust _ALIAS() to require a semicolon	tb	2023-02-16	1	-8/+8
\| \| \| \| \| \| \| \| \| \|	LCRYPTO_ALIAS() and LSSL_ALIAS() contained a trailing semicolon. This does not conform to style(9), breaks editors and ctags and (most importantly) my workflow. Fix this by neutering them with asm("") so that -Wpedantic doesn't complain. There's precedent in libc's namespace.h fix suggested by & ok jsing
*	Hide public symbols in libcrypto/x509 .c files	beck	2022-11-14	1	-1/+8
\| \| \| \|	ok tb@
*	Start CBS-ifying the name constraints code.	beck	2022-11-11	1	-3/+5
\| \| \| \|	ok jsing@ tb@
*	name constraints: be more careful with NULs	tb	2022-03-26	1	-4/+7
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	An IA5STRING is a Pascal string that can have embedded NULs and is not NUL terminated (except that for legacy reasons it happens to be). Instead of taking the strlen(), use the already known ASN.1 length and use strndup() instead of strdup() to generate NUL terminated strings after some existing code has checked that there are no embedded NULs. In v2i_GENERAL_NAME_ex() use %.*s to print the bytes. This is not optimal and might be switched to using strvis() later. ok beck inoguchi jsing
*	Rework ownership handling in x509_constraints_validate()	tb	2022-03-14	1	-7/+4
\| \| \| \| \| \| \| \| \| \|	Instead of having the caller allocate and pass in a new x509_constraints_name struct, handle allocation inside x509_constraints_validate(). Also make the error optional. All this is done to simplify the call sites and to make it more obvious that there are no leaks. ok jsing
*	Check name constraints using the proper API	tb	2022-03-13	1	-4/+21
\| \| \| \| \| \| \| \|	The previous versions were too strict and disallowed leading dots. From Alex Wilson ok jsing
*	style tweak	tb	2022-03-13	1	-2/+2
\|
*	Fix length check of IP addresses for name constraints	tb	2022-02-11	1	-2/+3
\| \| \| \| \| \| \| \| \|	An IP address in a name constraint is actually an IP address concatenated with a netmask, so it is twice as long as usual. This fixes a third bug introduced in r1.3 and reported by Volker Schlecht ok jsing
*	Add missing error check for a2i_GENERAL_NAME()	tb	2022-02-11	1	-1/+3
\| \| \| \| \| \|	Fixes a segfault reported by Volker Schlecht. ok jsing
*	Fix a double free in v2i_NAME_CONSTRAINTS()	tb	2022-02-11	1	-2/+3
\| \| \| \| \| \| \| \| \| \| \|	a2i_GENERAL_NAME() modifies and returns the out argument that was passed in unless out == NULL, in which case it returns something freshly allocated. Thus, in v2i_GENERAL_NAME_ex() we must only free ret if out == NULL so v2i_NAME_CONSTRAINTS() can free correctly. Issue reported by Volker Schlecht ok jsing
*	Bring back r1.3, ok beck	tb	2021-10-28	1	-3/+47
\| \| \| \| \| \| \| \| \| \| \|	Original commit message from beck: Validate Subject Alternate Names when they are being added to certificates. With this change we will reject adding SAN DNS, EMAIL, and IP addresses that are malformed at certificate creation time. ok jsing@ tb@
*	Revert version 1.3 - not allowing the creation of bogus certificates	beck	2021-10-27	1	-47/+3
\| \| \| \| \| \| \| \| \|	breaks the ruby regression tests that expect to make bogus certificates and see that they are rejected :( I am reverting this for now to make the regress tests pass, and will bring it back if we decide to patch the regress tests to remove the problem cases
*	Validate Subject Alternate Names when they are being added to certificates.	beck	2021-10-26	1	-3/+47
\| \| \| \| \| \| \|	With this change we will reject adding SAN DNS, EMAIL, and IP addresses that are malformed at certificate creation time. ok jsing@ tb@
*	Fix various read buffer overflow when printing ASN.1 strings (which are	tb	2021-08-24	1	-4/+7
\| \| \| \| \| \| \| \|	not necessarily NUL terminated). Same as schwarze's fix in t_x509a.c r1.9. From David Benjamin and Matt Caswell (part of the fixes in OpenSSL 1.1.1l) ok inoguchi
*	Collapse the x509v3 directory into x509.	jsing	2020-06-04	1	-0/+699
	This avoids the need to grep across directories to find functions and prepares for further rototilling and chainsawing. Discussed with tb@ (who also tested the release build)