| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | RSA_setup_blinding() gets a BN with BN_CTX_get(), returns `out of memory' | miod | 2014-07-10 | 2 | -12/+2 |
| | | | | | | | | | if it fails, then never uses it anymore, and may invoke a function which needs more than one BN from the BN_CTX anyway, so this is pointless - remove the BN_CTX_get() call and the test. ok jsing | ||||
| * | make asn1 free safe to call with null pointers of any type. | tedu | 2014-07-10 | 2 | -8/+6 |
| | | | | | ok jsing miod | ||||
| * | One sure hopes that OPENSSL_cleanse will: | jsing | 2014-07-10 | 2 | -4/+4 |
| | | | | | /* Clear password from memory */ | ||||
| * | Remove #if 0 code which dumps your data to stdout. | miod | 2014-07-10 | 2 | -18/+2 |
| | | |||||
| * | Tweak some comments. We do not really need to know that "New!" flags were | jsing | 2014-07-10 | 2 | -18/+16 |
| | | | | | added 10+ years ago (they're kinda somewhat stale by now...) | ||||
| * | Uncompress ssltest. | jsing | 2014-07-10 | 1 | -50/+0 |
| | | |||||
| * | Remove more compression tendrils. | jsing | 2014-07-10 | 6 | -28/+8 |
| | | | | | ok tedu@ | ||||
| * | Stop playing with the RSA_FLAG_BLINDING flag. It does nothing. | jsing | 2014-07-10 | 2 | -6/+2 |
| | | | | | ok miod@ | ||||
| * | delete some casts. ok miod | tedu | 2014-07-10 | 24 | -70/+70 |
| | | |||||
| * | Missing allocation checks and potential NULL pointer dereference in the | miod | 2014-07-10 | 2 | -14/+30 |
| | | | | | error path in PEM_X509_INFO_read_bio(); ok guenther@ jsing@ | ||||
| * | Remove RSA_FLAG_NO_EXP_CONSTTIME, which was deprecated 12+ years ago. | jsing | 2014-07-10 | 2 | -26/+2 |
| | | | | | | | sthen@ confirmed that no ports are referencing it. ok miod@. | ||||
| * | Remove more compression related code. | jsing | 2014-07-10 | 6 | -40/+6 |
| | | |||||
| * | Remove DEBUG_KEYGEN and DEBUG_DECRYPT support. | miod | 2014-07-10 | 4 | -98/+4 |
| | | |||||
| * | replace getservbyname_r with getaddrinfo for portability | bcook | 2014-07-10 | 2 | -12/+22 |
| | | | | | ok jsing@ | ||||
| * | Tame the tedu... we still want to know that Compression and Expansion are | jsing | 2014-07-10 | 1 | -1/+5 |
| | | | | | NONE, even if this is due to the fact that we do not support compression. | ||||
| * | Put back some parts of the public SSL API that should not have been | jsing | 2014-07-10 | 6 | -8/+56 |
| | | | | | completely decompressed. | ||||
| * | forgot to decompress here too | tedu | 2014-07-10 | 2 | -17/+2 |
| | | |||||
| * | Remove bogus preprocessor statements trying to pick the largest integer | miod | 2014-07-10 | 8 | -64/+8 |
| | | | | | | | | | type for BF_LONG, MD[45]_LONG and SHA_LONG. First, the preprocessor symbols they check for a 64-bit system is __ILP64__ which no sane system provides; second, on the platforms which have assembler code to speed things up, the assembler code assumes a 32-bit type will be used. | ||||
| * | check return value of write. | bcook | 2014-07-10 | 1 | -4/+15 |
| | | | | | ok beck@ jsing@ | ||||
| * | crank major for decompression feature | tedu | 2014-07-10 | 2 | -2/+2 |
| | | |||||
| * | decompress libssl. ok beck jsing | tedu | 2014-07-10 | 49 | -1469/+77 |
| | | |||||
| * | KNF comments, reflowing and moving out of the middle of argument lists in | guenther | 2014-07-10 | 6 | -186/+300 |
| | | | | | | | places ok jsing@ | ||||
| * | remove unused ecc_pkey_size. | bcook | 2014-07-10 | 2 | -8/+4 |
| | | | | | ok jsing@ miod@ | ||||
| * | BN_free, BN_clear_free, BN_CTX_free, BN_BLINDING_free and BN_MONT_CTX_free | jsing | 2014-07-10 | 12 | -110/+64 |
| | | | | | | | all have implicit NULL checks, so we do not need them here. ok miod@ | ||||
| * | Use a while loop instead of an ifdowhile loop. | jsing | 2014-07-10 | 4 | -24/+20 |
| | | | | | ok miod@ tedu@ | ||||
| * | Add some extra sanity checks to make sure the test functions actually | matthew | 2014-07-09 | 1 | -1/+13 |
| | | | | | run on altstack. | ||||
| * | include <limits.h> for LONG_MIN/LONG_MAX. | bcook | 2014-07-09 | 2 | -4/+4 |
| | | | | | | | | Also remove <sys/filio.h> added from previous commit. This was the wrong way to get FIONBIO. ok jsing@ | ||||
| * | ASN1_STRING_free can handle NULL, so callers don't need to check. ok miod | tedu | 2014-07-09 | 10 | -54/+34 |
| | | |||||
| * | unfidef RL_DEBUG. hopefully it's been debugged by now | tedu | 2014-07-09 | 2 | -50/+2 |
| | | |||||
| * | firebomb some MDEBUG leftovers | tedu | 2014-07-09 | 1 | -87/+1 |
| | | |||||
| * | unifdef a whole bunch of NO RSA/DSA/ECDH defines i deleted from libssl | tedu | 2014-07-09 | 12 | -190/+12 |
| | | |||||
| * | clean up if 0/if 1 code. we don't care anymore. | tedu | 2014-07-09 | 2 | -119/+3 |
| | | |||||
| * | move a comment | tedu | 2014-07-09 | 1 | -3/+3 |
| | | |||||
| * | reset host, port, path to null after freeing so the caller doesn't | tedu | 2014-07-09 | 2 | -2/+8 |
| | | | | | | accidentally free them again. actually a bug in the caller and (hey hey) apps/ocsp.c has exactly that bug, but it's easier/safer to fix here. | ||||
| * | stale prototype | tedu | 2014-07-09 | 2 | -4/+2 |
| | | |||||
| * | Make comments readable. | jsing | 2014-07-09 | 2 | -54/+66 |
| | | |||||
| * | More KNF. | jsing | 2014-07-09 | 38 | -644/+662 |
| | | |||||
| * | KNF. | jsing | 2014-07-09 | 4 | -246/+216 |
| | | |||||
| * | reduce obvious dependency on global g_pool by moving to local aliases | tedu | 2014-07-09 | 1 | -42/+48 |
| | | | | | ok otto | ||||
| * | ocsp_check_ids says "If algoritm mismatch let caller deal with it" before | tedu | 2014-07-09 | 2 | -12/+2 |
| | | | | | | | returning 2. The one and only caller doesn't check for that, so... Stop returning it. ok miod | ||||
| * | Minor cleanups | matthew | 2014-07-09 | 1 | -5/+12 |
| | | | | | | | | | | | | | | Rename _waitpid() to safewaitpid() to avoid POSIX reserved identifier namespace. KNF nit: return value expressions should be surrounded by parentheses, per style(9). Ensure SIGCHLD is set to SIG_DFL, not SIG_IGN. POSIX allows (and requires under XSI) that terminated child processes not leave zombies if SIGCHLD is set to SIG_IGN, and it also allows execve() to leave SIGCHLD set to SIG_IGN. | ||||
| * | Better workaround for OS X sigaltstack() bug | matthew | 2014-07-09 | 1 | -15/+20 |
| | | | | | | | | OS X's sigaltstack() fails with ENOMEM if ss_size < MINSIGSTKSZ even if SS_DISABLE is specified in ss_flags. Rather than add code to try to cope with this stupidity, just don't bother restoring the original signal stack. | ||||
| * | Update to match the current state of crypto/rand, and remove MLINKS for | miod | 2014-07-09 | 9 | -199/+31 |
| | | | | | RAND_event and RAND_screen. | ||||
| * | Remove mention that the PRNG needs to be seeded before invoking some | miod | 2014-07-09 | 28 | -73/+8 |
| | | | | | functions. | ||||
| * | Unifdef -UPKCS_TESTVECT - we don't want the random data used in OAEP padding | miod | 2014-07-09 | 2 | -12/+2 |
| | | | | | to get overwritten by a known value, ever. | ||||
| * | rephrase the stpcpy() warning | naddy | 2014-07-09 | 1 | -2/+2 |
| | | | | | new wording agreed by at least kettenis@ millert@ otto@ | ||||
| * | {malloc,reallocarray} + memset(,0,) -> calloc | miod | 2014-07-09 | 4 | -14/+10 |
| | | | | | ok tedu@ | ||||
| * | Clean up after arc4random u_int32_t uint32_t change | beck | 2014-07-09 | 1 | -5/+5 |
| | | | | | ok jsing@ | ||||
| * | changes to improve portability | bcook | 2014-07-09 | 1 | -10/+11 |
| | | | | | ok beck@ deraadt@ jsing@ guenther@ | ||||
| * | Replace memset(a, 0, ...); free(a); by explicit_bzero(a, ...); free(a); in | miod | 2014-07-09 | 2 | -4/+4 |
| | | | | | | | | fear a smartass-optimizing compiler decides memset is useless immediately before free(). ok jsing@ deraadt@ tedu@ | ||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |