wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
16174 commits 20 branches 302 tags 153 MiB
Commit graph

7809 commits

Author SHA1 Message Date
Matt Caswell
f334461fac Add functions for creating BIO_METHODs 
BIO_METHODs are soon to be opaque so we need to have functions available
to set them up.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-29 17:40:54 +01:00
FdaSilvaYY
1a50b8139a Fix a big leak when using stack-allocated BIO items. 
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
 2016-03-29 17:40:54 +01:00
Andy Polyakov
bbe9769ba6 poly1305/asm/poly1305-x86.pl: don't loose 59-th bit. 
RT#4439

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2016-03-29 09:55:43 +02:00
Andy Polyakov
0f3ab9a34c crypto/seed: add small-footprint path. 
The space saving is >5x on x86_64 at ~40% performance penalty.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-29 09:53:51 +02:00
Richard Levitte
828d04afe4 VMS: update the properties of symbol search 
In this OpenSSL version, we deliver engines with lower case symbol
names.  The DSO symbol finder must be updated to allow for mixed case
symbols or it won't fine them.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-23 19:58:12 +01:00
Rich Salz
921de151d2 Move dso.h to internal 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-23 09:12:11 -04:00
Rich Salz
3d8b2ec42b Remove several unused undocumented functions. 
Removed the following:
    DSO_bind_var, DSO_bind_var, DSO_get_default_method,
    DSO_get_loaded_filename, DSO_get_loaded_filename, DSO_get_method,
    DSO_new_method, DSO_pathbyaddr, DSO_set_default_method, DSO_set_method,
    DSO_set_name_converter, DSO_set_name_converter

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-23 08:34:33 -04:00
FdaSilvaYY
de70582410 Fix error code 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-23 08:15:55 -04:00
Richard Levitte
ac722c9af0 Small fixups in DSO 
- VMS configs had no dso_scheme
- Incorrect return of NULL method.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2016-03-23 08:40:56 +01:00
Rob Percival
7def9fae39 Removed unused fields of CT_POLICY_EVAL_CTX 
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-22 21:58:04 -04:00
Dr. Stephen Henson
d577a69a0f remove unused references field 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-22 19:42:19 +00:00
Rich Salz
38186bfd4e Have only one DSO_METHOD_openssl 
Instead of have every DSO_METHOD_xxx in all platforms, ensure that only
one DSO_METHOD_openssl is available on all platforms.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2016-03-22 13:35:03 -04:00
Rich Salz
73decf5975 Make DSO opaque. 
This was really easy.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2016-03-22 13:16:54 -04:00
Dr. Stephen Henson
29fa0a1af4 Make X509_PUBKEY opaque 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2016-03-22 15:28:11 +00:00
Dr. Stephen Henson
91829e456c move x_pubkey.c to crypto/x509 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2016-03-22 15:28:11 +00:00
David Benjamin
04f6b0fd91 RT4660: BIO_METHODs should be const. 
BIO_new, etc., don't need a non-const BIO_METHOD. This allows all the
built-in method tables to live in .rodata.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-21 16:49:10 -04:00
Rob Percival
367071f121 Adds s2i function for ct_precert_poison X509 extension 
Allows CONF files for certificate requests to specify that a pre-
certificate should be created (see RFC6962).

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
 2016-03-21 13:02:12 -04:00
Steven Linsell
55327ddfc1 Fix memory leak where fdlookup linked list is not freed during 
ASYNC_WAIT_CTX_free

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
 2016-03-21 16:57:34 +00:00
Matt Caswell
f9e5503412 Fix no-sock 
Misc fixes for no-sock

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-21 16:33:59 +00:00
Dr. Stephen Henson
ac19ae151c Don't use hardcoded values for types 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-21 15:19:35 +00:00
Matt Caswell
8d9fb8c8db Fix no-seed 
Fix compilation with --strict-warnings and no-seed

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-21 14:42:46 +00:00
Matt Caswell
83ae8124de Fix no-dsa 
Misc fixes for no-dsa.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-21 14:28:56 +00:00
Andy Polyakov
b75ac3c2a3 Build system: VC-WIN64I fixups. 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-21 11:44:27 +01:00
Andy Polyakov
acf1525966 Windows build system: get uplink right. 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-21 11:27:57 +01:00
Richard Levitte
007c80eae4 Remove the remainder of util/mk1mf.pl and companion scripts 
This removes all scripts that deal with MINFO as well, since that's
only used by mk1mf.

Reviewed-by: Andy Polyakov <appro@openssl.org>
 2016-03-21 11:02:00 +01:00
Viktor Dukhovni
89ff989d01 Add a comment on dane_verify() logic 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-20 21:03:47 -04:00
Rich Salz
3c27208fab Remove #error from include files. 
Don't have #error statements in header files, but instead wrap
the contents of that file in #ifndef OPENSSL_NO_xxx
This means it is now always safe to include the header file.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-20 19:48:36 -04:00
Rich Salz
d57611ea1f ct_int.h only needed by crypto/ct 
Merge ct_int.h into ct_locl.h

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
 2016-03-20 16:02:22 -04:00
Dr. Stephen Henson
99cccf3643 constify DSA_SIG_get0() 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-20 19:56:56 +00:00
Rich Salz
01ce6f746d Move blake2_loclh to blake2 directory 
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
 2016-03-20 15:15:08 -04:00
Dr. Stephen Henson
34c2db9b56 constify ECDSA_SIG_get0() 
PR#4436

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
 2016-03-19 22:04:38 +00:00
Schüller Felix
c6aca19bb5 Don't free up EVP_MD_CTX. 
Don't free up passed EVP_MD_CTX in ASN1_item_sign_ctx(). This
simplifies handling and retains compatiblity with previous behaviour.

PR#4446

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Stephen Henson <steve@openssl.org>
 2016-03-19 01:02:02 +00:00
Richard Levitte
1c0e7dadab Correct incorrect path 
In crypto, buildinf.h depends on ../configdata.pm, not ./configdata.pm

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-19 01:25:37 +01:00
Richard Levitte
f38526357e Implement support for no-ts 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-18 20:17:19 +01:00
Matt Caswell
96bea0002b Fix no-des 
Numerous fixes for no-des.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-18 17:07:11 +00:00
Matt Caswell
b4a3aeebd9 Fix no-cmac 
There were a couple of CMAC references without OPENSSL_NO_CMAC guards.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-18 17:07:11 +00:00
Matt Caswell
114de5b595 Ensure that no-comp functions are flagged as such 
mkdef.pl was not detecting no-comp functions. This updates the header file
so that mkdef.pl detects that no-comp applies, and the functions are marked
accordingly.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-18 12:09:27 +00:00
Matt Caswell
c4aede204e Mark OCB as an AEAD cipher 
OCB is AEAD capable but was not marked as such with the
EVP_CIPH_FLAG_AEAD_CIPHER flag.

Reviewed-by: Andy Polyakov <appro@openssl.org>
 2016-03-18 12:05:29 +00:00
Matt Caswell
ffe9150b15 Fix a potential double free in EVP_DigestInit_ex 
There is a potential double free in EVP_DigestInit_ex. This is believed
to be reached only as a result of programmer error - but we should fix it
anyway.

Issue reported by Guido Vranken.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-18 11:40:00 +00:00
Rich Salz
507c7c0ed6 Fix build; CPP syntax error. 
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
 2016-03-18 07:35:18 -04:00
Rich Salz
1fbab1dc6f Remove Netware and OS/2 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-17 17:06:57 -04:00
Rich Salz
23d38992fc Remove ultrix/mips support. 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-17 15:29:15 -04:00
Dr. Stephen Henson
4f59fd4d55 Use correct C format for keysets.pl 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-17 19:08:07 +00:00
Ben Laurie
43c1fd6b64 Deal with DSA_SIG opaqueness. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-16 18:26:06 +00:00
Matt Caswell
c521edc3a1 Some platforms provide getcontext() but it does not work 
Some platforms claim to be POSIX but their getcontext() implementation
does not work. Therefore we update the ASYNC_is_capable() function to test
for this.

RT#4366

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-16 18:12:56 +01:00
Andy Polyakov
2460c7f133 poly1305/asm/poly1305-x86_64.pl: make it work with linux-x32. 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-15 23:58:31 +01:00
Emilia Kasper
0a86f66821 On Windows, page walking is known as __chkstk. 
Reviewed-by: Andy Polyakov <appro@openssl.org>
 2016-03-15 23:56:23 +01:00
Emilia Kasper
1bf80d9302 Explain *cough*-dows 
Reviewed-by: Andy Polyakov <appro@openssl.org>
 2016-03-15 23:56:17 +01:00
Emilia Kasper
3ddd1d0458 Fix CRYPTO_THREAD_run_once return value checks 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-03-15 17:59:09 +01:00
Richard Levitte
a4d8bcf1f2 Small typo 
OPENSSL_INIT_ONCE and OPENSSL_INIT_ONCE_STATIC_INIT are really
CRYPTO_ONCE and CRYPTO_ONCE_STATIC_INIT.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-15 14:06:34 +01:00