|  | Commit message (Collapse) | Author | Files | Lines | 
|---|
|  | into a new EVP_sha1(3) manual page, and also mention EVP_md4(3) there.
Using input from tb@ and jsing@, who like the general direction. | 
|  | the "len" argument and the return value of EVP_PKEY_asn1_find_str(3) | 
|  |  | 
|  |  | 
|  | and add the missing link to evp(3) | 
|  | Put it here rather than into EVP_EncryptInit(3) because similar to
EVP_CIPHER_CTX_get_cipher_data(3), application software should not
use it.  These functions will likely not be needed except by people
implementing custom encryption algorithms. | 
|  | and EVP_CIPHER_CTX_encrypting(3) from scratch | 
|  |  | 
|  |  | 
|  | and be more specific below RETURN VALUES;
OK tb@ | 
|  | and EVP_CIPHER_CTX_set_cipher_data(3).
Import the manual page from the OpenSSL 1.1 branch, which is still
under a free licence, with several improvements by me. | 
|  |  | 
|  | OK tb@ jsing@ | 
|  |  | 
|  | Fix some copy-paste errors in the prototypes, tweak the explanatory text
and add some more details. | 
|  |  | 
|  | These and EVP_{add,remove}_{cipher,digest}_alias() are mostly for internal
use. | 
|  |  | 
|  | Make it a static function and remove its prototype from the internal
header. | 
|  | More idiomatic error checking and drop an always false test for !*pos. Use
a slightly closer approximation to actual English sentences in comments.
ok jsing | 
|  | Rename cmsbio into cms_bio and use {,in_}content_bio for {,i}cont.
ok jsing | 
|  | RFC 7539 was superseded by RFC 8439, incorporating errata and making
editorial improvements. Very little of substance changed, in particular
section numbers remain the same.
Prompted by a question from schwarze | 
|  | Incorrect OpenSSL documentation was moved here and inherited parts of a
comment that was fixed in evp/e_chacha.c r1.13. Adjust the manual page
accordingly.
Discussed with schwarze | 
|  | EVP_chacha20() was aligned to follow OpenSSL's nonconformant implementation
during a2k20 by djm and myself in an effort to allow OpenSSH to use the
OpenSSL 1.1 API. Some corresponding OpenSSL 1.1 documentation was imported
at the same time. A comment attempted to translate between implementation
and the incorrect documentation, which was necessarily gibberish. Improve
the situation by rephrasing and dropping nonsensical bits.
Prompted by a question of schwarze | 
|  | Mention portability considerations regarding the EVP_AEAD API.
Avoid confusing words like "older" and "native" API, be specific.
Mention RFC 7905.
Move publications we don't implement from STANDARDS to CAVEATS.
Based on input from jsing@ and tb@, OK tb@. | 
|  | ok jsing | 
|  | This and ts/ts_rsp_sign.c r1.32 were part of OpenSSL 309e73df.
ok jsing | 
|  | ok jsing | 
|  | Factor eckey_param_free() out of eckey_pub_encode(). ASN1_OBJECT_free()
is not actually needed. This will be addressed later.
i2o_ECPublicKey() allocates internally if *out == NULL, so no need to do
the two-call dance. Its return value is documented to be <= 0 on error,
which is wrong in the sense that only 0 is returned. Keep using the same
check for <= 0 as everywhere else.
Set of EC_PKEY_NO_PARAMETERS after the poorly named eckey_param2type() to
avoid potential underhanded side effects.
In eckey_priv_encode(), error exits would leak pval was leaked a few times.
Avoid this and simplify using i2d's internal allocation. Reinstate the
flags in a single error path.
ok jsing | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  |  | 
|  | On failure invalidate the cert with EXFLAG_INVALID. It's unlikely that
a cert would make it through to the end of this function without setting
the flag, but it's bad style anyway.
ok jsing | 
|  |  | 
|  | ok jsing | 
|  |  | 
|  |  | 
|  | ok jsing | 
|  | This also avoids more undefined behavior with memcmp().
ok jsing
PS: Unsolicited advice for no one in particular: there is this awesome tool
called grep. If someone reports an issue, you might want to use it to find
more instances. | 
|  | If a->length is 0, either a->data or b->data could be NULL and memcmp()
will rely on undefined behavior to compare them as equal. So avoid this
comparison in the first place.
ok jsing | 
|  |  | 
|  | document the control operations supported by EVP_chacha20_poly1305(3),
and add the missing STANDARDS and HISTORY sections.
This replaces all text written by Matt Caswell and all text Copyrighted
by OpenSSL in the year 2019. | 
|  |  | 
|  | quirks and invariants. |