summaryrefslogtreecommitdiff
path: root/src/lib/libssl/ssl_lib.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Any sane platform has stdio. Stop pretending we will ever use a platformbeck2014-05-291-2/+0
| | | | | that does not. "fire bomb" tedu@
* no space before labeltedu2014-05-291-9/+9
|
* consistent bracestedu2014-05-291-13/+13
|
* unidef DH, ECDH, and ECDSA. there's no purpose to a libssl without them.tedu2014-05-291-20/+0
| | | | ok deraadt jsing
* Make it substantially easier to identify protocol version requirementsjsing2014-05-291-0/+1
| | | | | | | | | | | | | | by adding an enc_flags field to the ssl3_enc_method, specifying four flags that are used with this field and providing macros for evaluating these conditions. Currently the version requirements are identified by continually checking the version number and other criteria. This change also adds separate SSL3_ENC_METHOD data for TLS v1.1 and v1.2, since they have different enc_flags from TLS v1. Based on changes in OpenSSL head. No objection from miod@
* When you have functions that perform specific functions, use them.jsing2014-05-291-18/+9
| | | | | | | | EVP_CIPHER_CTX_free() does a NULL check, then calls EVP_CIPHER_CTX_cleanup() and frees the memory. COMP_CTX_free() also had its own NULL check, so there is no point in duplicating that here. ok beck@
* EVP_MD_CTX_create() calls malloc and can return NULL. However, only one ofjsing2014-05-281-1/+1
| | | | | | | the calls in libssl actually checks the return value before using it. Add NULL checks for the remaining three calls. ok miod@
* There is no point in checking if a pointer is non-NULL before calling free,jsing2014-05-281-19/+11
| | | | | | | | since free already does this for us. Also remove some pointless NULL assignments, where the result from malloc(3) is immediately assigned to the same variable. ok miod@
* remove unused shit. from Alexander Schrijvertedu2014-05-251-4/+0
|
* Remove TLS_DEBUG, SSL_DEBUG, CIPHER_DEBUG and OPENSSL_RI_DEBUG. Much ofjsing2014-05-251-12/+0
| | | | | | | this is sporadic, hacked up and can easily be put back in an improved form should we ever need it. ok miod@
* I'm so sorry to learn that the Diab compiler can't (or used not to) parse Cmiod2014-05-241-5/+1
| | | | code. Remove workaround.
* Use C99 initialisers for SSL3_ENC_METHOD structs.jsing2014-05-241-16/+19
| | | | ok miod@
* Stop including kssl_lcl.h and nuke it from orbit - it is a no-op now.jsing2014-05-221-1/+0
| | | | ok beck@ miod@
* Remove SRP and Kerberos support from libssl. These are complex protocolstedu2014-05-051-27/+0
| | | | | all on their own and we can't effectively maintain them without using them, which we don't. If the need arises, the code can be resurrected.
* Nuke OPENSSL_NO_SOCK since any half sane operating system has sockets.jsing2014-05-021-2/+0
| | | | ok beck@
* More KNF, things that couldn't be verified with md5(1), and some whitespacemcbride2014-04-241-108/+111
| | | | I missed on the first go around.
* KNFmcbride2014-04-241-291/+416
|
* more malloc/realloc/calloc cleanups; ok beck kettenisderaadt2014-04-211-5/+2
|
* Chop off more SSLv2 tentacles and start fixing and noting y2038 issues.guenther2014-04-201-5/+2
| | | | | | | APIs that pass times as longs will have to change at some point... Bump major on both libcrypto and libssl. ok tedu@
* More KNF and style consistency tweaksguenther2014-04-191-69/+71
|
* whack a bunch of disabled code. ok beck lteotedu2014-04-171-8/+0
|
* always build in RSA and DSA. ok deraadt miodtedu2014-04-171-6/+0
|
* kill REF_PRINT/REF_CHECK debugging framework noone would usederaadt2014-04-171-24/+0
| | | | ok miod
* Change library to use intrinsic memory allocation functions instead ofbeck2014-04-171-17/+17
| | | | | | | | OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free
* TANSTAAFL - delete the buf freelist code. if you need a better malloc, gettedu2014-04-161-37/+0
| | | | a better malloc. ok beck deraadt
* add back SRP. i was being too greedy.tedu2014-04-161-0/+6
|
* disentangle SRP code from TLStedu2014-04-161-6/+0
|
* Kill the bogus "send an SSLv3/TLS hello in SSLv2 format" crap fromguenther2014-04-161-52/+32
| | | | | | | | | the SSLv23_* client code. The server continues to accept it. It also kills the bits for SSL2 SESSIONs; even when the server gets an SSLv2-style compat handshake, the session that it creates has the correct version internally. ok tedu@ beck@
* remove FIPS mode support. people who require FIPS can buy something thattedu2014-04-151-7/+0
| | | | | meets their needs, but dumping it in here only penalizes the rest of us. ok miod
* First pass at applying KNF to the OpenSSL code, which almost makes itjsing2014-04-141-1559/+1600
| | | | | readable. This pass is whitespace only and can readily be verified using tr and md5.
* remove last vestiges of OPENSSL_SYS_XXX from src/sslbeck2014-04-141-4/+0
| | | | ok deraadt@
* Merge conflicts; remove MacOS, Netware, OS/2, VMS and Windows build machinery.miod2014-04-131-6/+20
|
* resolve conflictsdjm2012-10-131-22/+225
|
* OpenSSL 1.0.0f: mergedjm2012-01-051-0/+3
|
* openssl-1.0.0e: resolve conflictsdjm2011-11-031-32/+15
|
* resolve conflicts, fix local changesdjm2010-10-011-129/+485
|
* resolve conflictsdjm2009-04-061-0/+2
|
* update to openssl-0.9.8i; tested by several, especially krw@djm2009-01-051-0/+36
|
* resolve conflictsdjm2008-09-061-39/+349
|
* Replace use of strcpy(3) and other pointer goo inmoritz2007-10-101-15/+12
| | | | | | SSL_get_shared_ciphers() with strlcat(3). ok deraadt@ markus@
* Fix off-by-one buffer overflow in SSL_get_shared_ciphers().moritz2007-09-271-11/+11
| | | | | | From OpenSSL_0_9_8-stable branch. ok djm@
* openssl security fixes, diff from markus@, ok & "commit it" djm@pvalchev2006-10-041-1/+1
| | | | http://www.openssl.org/news/secadv_20060928.txt for more
* resolve conflictsdjm2006-06-271-8/+30
|
* resolve conflictsdjm2005-04-291-43/+60
|
* merge 0.9.7c; minor bugsfixes;markus2003-11-111-0/+5
| | | | | API addition: ERR_release_err_state_table [make includes before you build libssl/libcrypto]
* merge 0.9.7b with local changes; crank majors for libssl/libcryptomarkus2003-05-121-16/+28
|
* merge with openssl-0.9.7-stable-SNAP-20020911,markus2002-09-141-10/+14
| | | | | new minor for libcrypto (_X509_REQ_print_ex) tested by miod@, pb@
* merge openssl-0.9.7-beta3, tested on vax by miod@markus2002-09-101-2/+2
|
* apply patches from OpenSSL Security Advisory [30 July 2002],markus2002-07-301-0/+7
| | | | http://marc.theaimsgroup.com/?l=openssl-dev&m=102802395104110&w=2
* OpenSSL 0.9.7 stable 2002 05 08 mergebeck2002-05-151-110/+327
|
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-27 20:30:21 +0000