openssl

Author	SHA1	Message	Date
Matt Caswell	6aa8dab2bb	Fix dh_pub_encode The return value from ASN1_STRING_new() was not being checked which could lead to a NULL deref in the event of a malloc failure. Also fixed a mem leak in the error path. Reviewed-by: Rich Salz <rsalz@openssl.org>	2015-03-12 09:22:56 +00:00
Dr. Stephen Henson	a8ae0891d4	Cleanse PKCS#8 private key components. New function ASN1_STRING_clear_free which cleanses an ASN1_STRING structure before freeing it. Call ASN1_STRING_clear_free on PKCS#8 private key components. Reviewed-by: Rich Salz <rsalz@openssl.org>	2015-03-08 16:27:55 +00:00
Matt Caswell	918bb86529	Unchecked malloc fixes Miscellaneous unchecked malloc fixes. Also fixed some mem leaks on error paths as I spotted them along the way. Reviewed-by: Tim Hudson <tjh@openssl.org>	2015-03-05 09:09:57 +00:00
Kurt Roeckx	edac5dc220	Fix memory leak Reviewed-by: Matt Caswell <matt@openssl.org>	2015-02-22 13:18:24 +01:00
Doug Hogan	1549a26520	Avoid a double-free in an error path. Signed-off-by: Kurt Roeckx <kurt@roeckx.be> Reviewed-by: Matt Caswell <matt@openssl.org>	2015-02-22 13:17:40 +01:00
Rich Salz	dfb56425b6	Dead code: crypto/dh,modes,pkcs12,ripemd,rsa,srp And an uncompiled C++ test file. Also remove srp_lcl.h, with help from Richard. Reviewed-by: Richard Levitte <levitte@openssl.org>	2015-02-03 11:20:56 -05:00
Richard Levitte	c6ef15c494	clang on Linux x86_64 complains about unreachable code. Reviewed-by: Rich Salz <rsalz@openssl.org>	2015-01-29 01:54:09 +01:00
Rich Salz	a00ae6c46e	OPENSSL_NO_xxx cleanup: many removals The following compile options (#ifdef's) are removed: OPENSSL_NO_BIO OPENSSL_NO_BUFFER OPENSSL_NO_CHAIN_VERIFY OPENSSL_NO_EVP OPENSSL_NO_FIPS_ERR OPENSSL_NO_HASH_COMP OPENSSL_NO_LHASH OPENSSL_NO_OBJECT OPENSSL_NO_SPEED OPENSSL_NO_STACK OPENSSL_NO_X509 OPENSSL_NO_X509_VERIFY This diff is big because of updating the indents on preprocessor lines. Reviewed-by: Richard Levitte <levitte@openssl.org>	2015-01-27 10:06:22 -05:00
Matt Caswell	0f113f3ee4	Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org>	2015-01-22 09:20:09 +00:00
Matt Caswell	dbd87ffc21	indent has problems with comments that are on the right hand side of a line. Sometimes it fails to format them very well, and sometimes it corrupts them! This commit moves some particularly problematic ones. Reviewed-by: Tim Hudson <tjh@openssl.org>	2015-01-22 09:20:08 +00:00
Matt Caswell	e636e2acd7	Fix source where indent will not be able to cope Reviewed-by: Tim Hudson <tjh@openssl.org>	2015-01-22 09:20:06 +00:00
Rich Salz	4b618848f9	Cleanup OPENSSL_NO_xxx, part 1 OPENSSL_NO_RIPEMD160, OPENSSL_NO_RIPEMD merged into OPENSSL_NO_RMD160 OPENSSL_NO_FP_API merged into OPENSSL_NO_STDIO Two typo's on #endif comments fixed: OPENSSL_NO_ECB fixed to OPENSSL_NO_OCB OPENSSL_NO_HW_SureWare fixed to OPENSSL_NO_HW_SUREWARE Reviewed-by: Richard Levitte <levitte@openssl.org>	2015-01-14 15:57:28 -05:00
Rich Salz	6d23cf9744	RT3548: Remove unsupported platforms This last one for this ticket. Removes WIN16. So long, MS_CALLBACK and MS_FAR. We won't miss you. Reviewed-by: Richard Levitte <levitte@openssl.org>	2015-01-12 17:30:54 -05:00
Andy Polyakov	e464403d0b	Fix irix-cc build. Reviewed-by: Matt Caswell <matt@openssl.org>	2015-01-07 18:39:39 +01:00
Tim Hudson	1d97c84351	mark all block comments that need format preserving so that indent will not alter them when reformatting comments Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org>	2014-12-30 22:10:26 +00:00
Matt Caswell	53e95716f5	Change all instances of OPENSSL_NO_DEPRECATED to OPENSSL_USE_DEPRECATED Introduce use of DECLARE_DEPRECATED Reviewed-by: Rich Salz <rsalz@openssl.org>	2014-12-18 19:57:14 +00:00
Matt Caswell	5bafb04d2e	Remove redundant OPENSSL_NO_DEPRECATED suppression Reviewed-by: Rich Salz <rsalz@openssl.org>	2014-12-18 19:57:05 +00:00
Rich Salz	5cf37957fb	RT3543: Remove #ifdef LINT I also replaced some exit/return wrappers in various programs (from main) to standardize on return. Reviewed-by: Richard Levitte <levitte@openssl.org>	2014-12-10 17:31:04 -05:00
Matt Caswell	829ccf6ab6	Implement internally opaque bn access from dh Reviewed-by: Tim Hudson <tjh@openssl.org>	2014-12-08 21:40:32 +00:00
Dr. Stephen Henson	73e45b2dd1	remove OPENSSL_FIPSAPI Reviewed-by: Tim Hudson <tjh@openssl.org>	2014-12-08 13:25:38 +00:00
Dr. Stephen Henson	1bfffe9bd0	Remove FIPS module code from crypto/dh Reviewed-by: Tim Hudson <tjh@openssl.org>	2014-12-08 13:25:38 +00:00
Dr. Stephen Henson	f072785eb4	Remove fipscanister build functionality from makefiles. Reviewed-by: Tim Hudson <tjh@openssl.org>	2014-12-08 13:23:45 +00:00
Rich Salz	8cfe08b4ec	Remove all .cvsignore files Reviewed-by: Tim Hudson <tjh@openssl.org>	2014-11-28 18:32:43 -05:00
Rich Salz	df8c39d522	RT3549: Remove obsolete files in crypto Reviewed-by: Andy Polyakov <appro@openssl.org>	2014-10-01 16:05:47 -04:00
Dr. Stephen Henson	2514fa79ac	Add functions returning security bits. Add functions to return the "bits of security" for various public key algorithms. Based on SP800-57.	2014-03-28 14:49:04 +00:00
Andy Polyakov	53e5161231	dh_check.c: check BN_CTX_get's return value.	2014-03-06 14:19:37 +01:00
Dr. Stephen Henson	4cfeb00be9	make depend	2014-02-19 20:09:08 +00:00
Veres Lajos	478b50cf67	misspellings fixes by https://github.com/vlajos/misspell_fixer	2013-09-05 21:39:42 +01:00
Ben Laurie	a0aaa5660a	Fix compile errors.	2013-08-21 04:21:42 +01:00
Dr. Stephen Henson	bd59f2b91d	CMS RFC2631 X9.42 DH enveloped data support.	2013-08-05 16:23:13 +01:00
Dr. Stephen Henson	dc1ce3bc64	Add KDF for DH. Add X9.42 DH KDF. Move sharedinfo generation code to CMS library as the same structure is used by DH and ECDH. Move ASN1_OBJECT typedef to ossl_typ.h so it can be picked up by dh headers without the need to use ASN1.	2013-08-05 15:45:01 +01:00
Dr. Stephen Henson	3909087801	Extend DH parameter generation support. Add support for DH parameter generation using DSA methods including FIPS 186-3.	2013-08-05 15:45:01 +01:00
Dr. Stephen Henson	d3cc91eee2	Enhance DH dup functions. Make DHparams_dup work properly with X9.42 DH parameters.	2013-08-05 15:45:01 +01:00
Dr. Stephen Henson	c9577ab5ea	If present print j, seed and counter values for DH	2013-08-05 15:45:00 +01:00
Ben Laurie	71fa451343	Version skew reduction: trivia (I hope).	2012-06-03 22:00:21 +00:00
Dr. Stephen Henson	84b6e277d4	make update	2011-12-27 14:46:03 +00:00
Dr. Stephen Henson	afb14cda8c	Initial experimental support for X9.42 DH parameter format to handle RFC5114 parameters and X9.42 DH public and private keys.	2011-12-07 00:32:34 +00:00
Dr. Stephen Henson	0798170966	Update DH_check() to peform sensible checks when q parameter is present.	2011-12-01 17:27:36 +00:00
Dr. Stephen Henson	28ff14779e	Correct some parameter values.	2011-12-01 17:26:58 +00:00
Dr. Stephen Henson	20bee9684d	Add RFC5114 DH parameters to OpenSSL. Add test data to dhtest.	2011-11-13 14:07:36 +00:00
Dr. Stephen Henson	cd366cf7ec	print out subgroup order if present	2011-10-11 17:44:26 +00:00
Bodo Möller	ae53b299fa	make update	2011-09-05 09:46:15 +00:00
Dr. Stephen Henson	4960411e1f	Add flags for DH FIPS method. Update/fix prototypes in fips.h	2011-06-08 15:53:08 +00:00
Dr. Stephen Henson	c2fd598994	Rename FIPS_mode_set and FIPS_mode. Theses symbols will be defined in the FIPS capable OpenSSL.	2011-05-11 14:43:38 +00:00
Dr. Stephen Henson	74fac927b0	Return errors instead of aborting when selftest fails.	2011-04-22 11:12:56 +00:00
Dr. Stephen Henson	31360957fb	DH keys have an (until now) unused 'q' parameter. When creating from DSA copy q across and if q present generate DH key in the correct range.	2011-04-07 15:01:48 +00:00
Richard Levitte	c6dbe90895	make update	2011-03-24 22:59:02 +00:00
Ben Laurie	edc032b5e3	Add SRP support.	2011-03-12 17:01:19 +00:00
Dr. Stephen Henson	bc91494e06	New SP 800-56A compliant version of DH_compute_key().	2011-03-08 19:07:26 +00:00
Dr. Stephen Henson	b7056b6414	Update dependencies.	2011-02-21 17:51:59 +00:00

1 2 3 4 5

234 commits