summaryrefslogtreecommitdiff
path: root/src/lib/libssl (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Fix memory leaks upon failure.miod2014-05-152-27/+39
| | | | ok beck@
* Replace ASN1_GENERALIZEDTIME_adj(), ASN1_UTCTIME_adj() andmiod2014-05-153-25/+73
| | | | | | | ASN1_TIME_to_generalizedtime() with wrappers around their former implementations, making sure memory allocated is freed in all failure cases. help and ok from beck@ and Brendan MacDonell.
* No longer make pqueue.h a public (and installed) header file. Replace itsmiod2014-05-157-6/+12
| | | | | | | | | inclusion in <ssl/dtls1.h> by the benign `struct _pqueue; typedef struct _pqueue *pqueue;'. Note that said dtls1.h should probably be considered a private header as well... ok beck@
* More KNF.jsing2014-05-154-7/+7
|
* Use C99 initialisers for the AEAD struct.jsing2014-05-151-9/+9
|
* KNF.jsing2014-05-151-70/+67
|
* Add a ChaCha20-Poly1305 AEAD EVP implementation to libcrypto, from Adamjsing2014-05-153-0/+272
| | | | | | Langley's Chromium OpenSSL patches. ok miod@
* KNF.jsing2014-05-155-283/+343
|
* Add an AEAD EVP interface to libcrypto, along with AES-GCM AEADjsing2014-05-155-33/+549
| | | | | | | implementations. This largely pulls in Adam Langley's AEAD patches from Chromium's OpenSSL. ok miod@
* Stop being a dummy... presumably these are left overs from pedantic modejsing2014-05-159-22/+2
| | | | | | that were not wrapped with #if PEDANTIC. ok miod@
* Add poly1305 to libcrypto utilising Andrew Moon's public domainjsing2014-05-143-0/+348
| | | | | | implementation. ok miod@
* Remove AES_bi_ige_encrypt() from libcrypto. This routine is supposed to usemiod2014-05-122-116/+0
| | | | | | | | | | | | | two keys and four IVs to do much magic, is specified as such with test vectors, but the implementation actually always uses the first key, and the test vectors were computed with it, so they are wrong. Fixing the code to match the intended specification would break interoperability with existing code (assuming such code would exist), so it is better to remove this interface, which is obviously too complex for mere mortals if even its author can not implement it correctly. Riding on the libcrypto major bump.
* Bring back ASN1_seq_pack(), ASN1_seq_unpack(), ASN1_pack_string() andmiod2014-05-123-0/+215
| | | | | | | | ASN1_unpack_string() from the NO_ASN1_OLD purge; turns out that some Ruby extensions still use them, unfortunately, so we need to give them some more time to catch up on ``recent'' interfaces. Riding on the libcrypto major bump.
* Move the `pqueue' part of libcrypto, which is a glorified sorted linked listmiod2014-05-127-24/+323
| | | | | | | | | | | | | of 64-bit data, and only used by DTLS, to libssl where it belongs. Remove pqueue_print() which is a debugging interface and serves no useful purpose, except for the regress test, which grows its own pqueue_print() routine. Bump libcrypto major and libssl minor. WARNING: do not update your tree right now, more changes are coming, which will ride the libcrypto major bump.
* More KNF.jsing2014-05-115-16/+27
|
* KNF.jsing2014-05-112-322/+287
|
* __bounded => __attribute__((__bounded__djm2014-05-101-5/+5
|
* Typo in C99 field initializer introduced in r1.3;miod2014-05-091-1/+1
| | | | reported by Steven Chamberlain
* Replace Apache v2 license with ISC license.matthew2014-05-094-50/+50
| | | | | Thanks to Google for agreeing to offer the code under more agreeable licensing terms!
* Replace hand-crafted STRICT_ALIGNMENT with system provided __STRICT_ALIGNMENT.miod2014-05-081-17/+7
| | | | Forgotten during yesterday's STRICT_ALIGNMENT cleanup commit.
* More KNF.jsing2014-05-0811-45/+94
|
* KNF.jsing2014-05-0812-308/+383
|
* Remove KSSL debug code.jsing2014-05-081-21/+0
| | | | "fire bomb" tedu@
* KNF.jsing2014-05-087-912/+917
|
* Nuke OPENSSL_FIPS - having #ifdefs inside a #ifndef for the same thingjsing2014-05-082-18/+0
| | | | | | is amusing. ok deraadt@
* KNF.jsing2014-05-0816-1499/+1544
|
* knfectomie.jsing2014-05-081-653/+818
|
* Emergency knfectomie requested by tedu@.jsing2014-05-0830-6133/+6618
|
* kill some more VMS ifdefsgiovanni2014-05-084-16/+0
| | | | ok miod@
* Get __STRICT_ALIGNMENT from <machine/endian.h> and decide upon it, rathermiod2014-05-079-35/+26
| | | | | | | | | | | | | | than defining it for not (i386 and amd64 (and sometimes s390)) only. Compile-time tests remain compile-time tests, and runtime-test remain runtime-test instead of being converted to compile-time tests, per matthew@'s explicit demand (rationale: this makes sure the compiler checks your code even if you won't run it). No functional change except on s390 (which we don't run on) and vax (which we run on, but noone cares about) ok matthew@
* less than jpaketedu2014-05-074-317/+4
|
* don't free memory unless we allocated it.tedu2014-05-071-2/+4
| | | | | reported to openssl by David Ramos (rt 3338) stealing commit from logan, who's run away. ok miod.
* with the first bug it uncovered fixed, clear all bignums again.tedu2014-05-071-17/+9
| | | | i've never worked on codebase so resistant to efforts to improve it.
* in BN_clear_free, don't cleanse the data if the static data flag is set.tedu2014-05-071-3/+2
| | | | | | | | much debugging work done by otto. ok miod otto. side note: BN_FLG_STATIC_DATA doesn't actually mean the data is static. it's also used to indicate the data may be secretly shared behind your back as a sort of poor man's refcounting, but without the refcounting.
* KNF.jsing2014-05-0714-944/+984
|
* revert, thanks sthentedu2014-05-071-9/+17
|
* add additional includes from eng_cryptodev.cjsg2014-05-071-0/+5
| | | | | makes this compile with OPENSSL_NO_DEPRECATED defined. ok deraadt@
* small fix from mancha1. currently unused file, but no harm fixing it.tedu2014-05-061-1/+2
|
* Assorted cleanups:miod2014-05-061-14/+4
| | | | | | | | | | | - replace hardcoded sizes with sizeof() - pqueue_find() apparently used to need to keep track of the previous node when iterating, which causes its logic to be complicated. However, nowadays it only needs to iterate, so replace with a straightforward, much readable logic. - remove #if 0'ed code From ``sin'' from 2f30 dot org on tech@, thanks!
* Remove broken-by-design testmiod2014-05-061-95/+0
|
* Make sure PKCS7_get_octet_string() return values are checked for NULL.miod2014-05-061-2/+10
| | | | | | Reported by David Ramos (and simultaneously to OpenSSL as PR#3339). ok beck@ logan@
* knf approximationtedu2014-05-0624-8619/+9136
|
* "stay backwards-compatible with 0.9.5; this should go away soon"tedu2014-05-061-8/+0
| | | | it's your lucky day!
* remove Kerberostedu2014-05-062-41/+0
|
* move a comment to make unifdef happiertedu2014-05-061-2/+3
|
* bye bye SRPtedu2014-05-064-975/+0
|
* inspired by a cloudflare diff, cleanse old memory when expanding a bignum.tedu2014-05-051-17/+9
| | | | | | however, instead of trying to audit all the places where a secret bignum is used, apply the big hammer and clear all bignums when freed. ok deraadt miod
* Sort and group includes.jsing2014-05-052-10/+11
|
* Repair BIO_socket_nbio operation.jsing2014-05-051-2/+3
| | | | ok miod@
* During the great e_os.h nukathon we stopped pulling in <sys/filio.h> viajsing2014-05-053-35/+6
| | | | | | | | | the ifdef maze, meaning that FIONBIO was no longer defined. This removes non-blocking I/O support from s_{client,server,time}. Remove all FIONBIO ifdefs and import <sys/ioctl.h>, renabling -nbio. ok miod@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-08-22 02:08:19 +0000