Code style: space after 'if'
Reviewed-by: Matt Caswell <gitlab@openssl.org>
This commit is contained in:
		| @@ -574,7 +574,7 @@ int password_callback(char *buf, int bufsiz, int verify, PW_CB_DATA *cb_tmp) | |||||||
|         char *prompt = NULL; |         char *prompt = NULL; | ||||||
|  |  | ||||||
|         prompt = UI_construct_prompt(ui, "pass phrase", prompt_info); |         prompt = UI_construct_prompt(ui, "pass phrase", prompt_info); | ||||||
|         if(!prompt) { |         if (!prompt) { | ||||||
|             BIO_printf(bio_err, "Out of memory\n"); |             BIO_printf(bio_err, "Out of memory\n"); | ||||||
|             UI_free(ui); |             UI_free(ui); | ||||||
|             return 0; |             return 0; | ||||||
| @@ -588,7 +588,7 @@ int password_callback(char *buf, int bufsiz, int verify, PW_CB_DATA *cb_tmp) | |||||||
|                                      PW_MIN_LENGTH, bufsiz - 1); |                                      PW_MIN_LENGTH, bufsiz - 1); | ||||||
|         if (ok >= 0 && verify) { |         if (ok >= 0 && verify) { | ||||||
|             buff = (char *)OPENSSL_malloc(bufsiz); |             buff = (char *)OPENSSL_malloc(bufsiz); | ||||||
|             if(!buff) { |             if (!buff) { | ||||||
|                 BIO_printf(bio_err, "Out of memory\n"); |                 BIO_printf(bio_err, "Out of memory\n"); | ||||||
|                 UI_free(ui); |                 UI_free(ui); | ||||||
|                 OPENSSL_free(prompt); |                 OPENSSL_free(prompt); | ||||||
|   | |||||||
							
								
								
									
										10
									
								
								apps/ca.c
									
									
									
									
									
								
							
							
						
						
									
										10
									
								
								apps/ca.c
									
									
									
									
									
								
							| @@ -563,7 +563,7 @@ int MAIN(int argc, char **argv) | |||||||
| #ifdef OPENSSL_SYS_VMS | #ifdef OPENSSL_SYS_VMS | ||||||
|         len = strlen(s) + sizeof(CONFIG_FILE); |         len = strlen(s) + sizeof(CONFIG_FILE); | ||||||
|         tofree = OPENSSL_malloc(len); |         tofree = OPENSSL_malloc(len); | ||||||
|         if(!tofree) { |         if (!tofree) { | ||||||
|             BIO_printf(bio_err, "Out of memory\n"); |             BIO_printf(bio_err, "Out of memory\n"); | ||||||
|             goto err; |             goto err; | ||||||
|         } |         } | ||||||
| @@ -571,7 +571,7 @@ int MAIN(int argc, char **argv) | |||||||
| #else | #else | ||||||
|         len = strlen(s) + sizeof(CONFIG_FILE) + 1; |         len = strlen(s) + sizeof(CONFIG_FILE) + 1; | ||||||
|         tofree = OPENSSL_malloc(len); |         tofree = OPENSSL_malloc(len); | ||||||
|         if(!tofree) { |         if (!tofree) { | ||||||
|             BIO_printf(bio_err, "Out of memory\n"); |             BIO_printf(bio_err, "Out of memory\n"); | ||||||
|             goto err; |             goto err; | ||||||
|         } |         } | ||||||
| @@ -2821,7 +2821,7 @@ int unpack_revinfo(ASN1_TIME **prevtm, int *preason, ASN1_OBJECT **phold, | |||||||
|     ASN1_GENERALIZEDTIME *comp_time = NULL; |     ASN1_GENERALIZEDTIME *comp_time = NULL; | ||||||
|     tmp = BUF_strdup(str); |     tmp = BUF_strdup(str); | ||||||
|  |  | ||||||
|     if(!tmp) { |     if (!tmp) { | ||||||
|         BIO_printf(bio_err, "memory allocation failure\n"); |         BIO_printf(bio_err, "memory allocation failure\n"); | ||||||
|         goto err; |         goto err; | ||||||
|     } |     } | ||||||
| @@ -2843,7 +2843,7 @@ int unpack_revinfo(ASN1_TIME **prevtm, int *preason, ASN1_OBJECT **phold, | |||||||
|  |  | ||||||
|     if (prevtm) { |     if (prevtm) { | ||||||
|         *prevtm = ASN1_UTCTIME_new(); |         *prevtm = ASN1_UTCTIME_new(); | ||||||
|         if(!*prevtm) { |         if (!*prevtm) { | ||||||
|             BIO_printf(bio_err, "memory allocation failure\n"); |             BIO_printf(bio_err, "memory allocation failure\n"); | ||||||
|             goto err; |             goto err; | ||||||
|         } |         } | ||||||
| @@ -2887,7 +2887,7 @@ int unpack_revinfo(ASN1_TIME **prevtm, int *preason, ASN1_OBJECT **phold, | |||||||
|                 goto err; |                 goto err; | ||||||
|             } |             } | ||||||
|             comp_time = ASN1_GENERALIZEDTIME_new(); |             comp_time = ASN1_GENERALIZEDTIME_new(); | ||||||
|             if(!comp_time) { |             if (!comp_time) { | ||||||
|                 BIO_printf(bio_err, "memory allocation failure\n"); |                 BIO_printf(bio_err, "memory allocation failure\n"); | ||||||
|                 goto err; |                 goto err; | ||||||
|             } |             } | ||||||
|   | |||||||
| @@ -463,7 +463,7 @@ int MAIN(int argc, char **argv) | |||||||
|             if (key_param == NULL || key_param->idx != keyidx) { |             if (key_param == NULL || key_param->idx != keyidx) { | ||||||
|                 cms_key_param *nparam; |                 cms_key_param *nparam; | ||||||
|                 nparam = OPENSSL_malloc(sizeof(cms_key_param)); |                 nparam = OPENSSL_malloc(sizeof(cms_key_param)); | ||||||
|                 if(!nparam) { |                 if (!nparam) { | ||||||
|                     BIO_printf(bio_err, "Out of memory\n"); |                     BIO_printf(bio_err, "Out of memory\n"); | ||||||
|                     goto argerr; |                     goto argerr; | ||||||
|                 } |                 } | ||||||
|   | |||||||
| @@ -456,7 +456,7 @@ int ssl_print_curves(BIO *out, SSL *s, int noshared) | |||||||
|     if (ncurves <= 0) |     if (ncurves <= 0) | ||||||
|         return 1; |         return 1; | ||||||
|     curves = OPENSSL_malloc(ncurves * sizeof(int)); |     curves = OPENSSL_malloc(ncurves * sizeof(int)); | ||||||
|     if(!curves) { |     if (!curves) { | ||||||
|         BIO_puts(out, "Malloc error getting supported curves\n"); |         BIO_puts(out, "Malloc error getting supported curves\n"); | ||||||
|         return 0; |         return 0; | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -560,7 +560,7 @@ static char *MS_CALLBACK ssl_give_srp_client_pwd_cb(SSL *s, void *arg) | |||||||
|     PW_CB_DATA cb_tmp; |     PW_CB_DATA cb_tmp; | ||||||
|     int l; |     int l; | ||||||
|  |  | ||||||
|     if(!pass) { |     if (!pass) { | ||||||
|         BIO_printf(bio_err, "Malloc failure\n"); |         BIO_printf(bio_err, "Malloc failure\n"); | ||||||
|         return NULL; |         return NULL; | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -754,7 +754,7 @@ static int ebcdic_write(BIO *b, const char *in, int inl) | |||||||
|             num = inl; |             num = inl; | ||||||
|         wbuf = |         wbuf = | ||||||
|             (EBCDIC_OUTBUFF *) OPENSSL_malloc(sizeof(EBCDIC_OUTBUFF) + num); |             (EBCDIC_OUTBUFF *) OPENSSL_malloc(sizeof(EBCDIC_OUTBUFF) + num); | ||||||
|         if(!wbuf) |         if (!wbuf) | ||||||
|             return 0; |             return 0; | ||||||
|         OPENSSL_free(b->ptr); |         OPENSSL_free(b->ptr); | ||||||
|  |  | ||||||
| @@ -3281,7 +3281,7 @@ static int generate_session_id(const SSL *ssl, unsigned char *id, | |||||||
| { | { | ||||||
|     unsigned int count = 0; |     unsigned int count = 0; | ||||||
|     do { |     do { | ||||||
|         if(RAND_pseudo_bytes(id, *id_len) < 0) |         if (RAND_pseudo_bytes(id, *id_len) < 0) | ||||||
|             return 0; |             return 0; | ||||||
|         /* |         /* | ||||||
|          * Prefix the session_id with the required prefix. NB: If our prefix |          * Prefix the session_id with the required prefix. NB: If our prefix | ||||||
| @@ -3324,7 +3324,7 @@ static int add_session(SSL *ssl, SSL_SESSION *session) | |||||||
|     unsigned char *p; |     unsigned char *p; | ||||||
|  |  | ||||||
|     sess = OPENSSL_malloc(sizeof(simple_ssl_session)); |     sess = OPENSSL_malloc(sizeof(simple_ssl_session)); | ||||||
|     if(!sess) { |     if (!sess) { | ||||||
|         BIO_printf(bio_err, "Out of memory adding session to external cache\n"); |         BIO_printf(bio_err, "Out of memory adding session to external cache\n"); | ||||||
|         return 0; |         return 0; | ||||||
|     } |     } | ||||||
| @@ -3335,12 +3335,12 @@ static int add_session(SSL *ssl, SSL_SESSION *session) | |||||||
|     sess->id = BUF_memdup(SSL_SESSION_get_id(session, NULL), sess->idlen); |     sess->id = BUF_memdup(SSL_SESSION_get_id(session, NULL), sess->idlen); | ||||||
|  |  | ||||||
|     sess->der = OPENSSL_malloc(sess->derlen); |     sess->der = OPENSSL_malloc(sess->derlen); | ||||||
|     if(!sess->id || !sess->der) { |     if (!sess->id || !sess->der) { | ||||||
|         BIO_printf(bio_err, "Out of memory adding session to external cache\n"); |         BIO_printf(bio_err, "Out of memory adding session to external cache\n"); | ||||||
|  |  | ||||||
|         if(sess->id) |         if (sess->id) | ||||||
|             OPENSSL_free(sess->id); |             OPENSSL_free(sess->id); | ||||||
|         if(sess->der) |         if (sess->der) | ||||||
|             OPENSSL_free(sess->der); |             OPENSSL_free(sess->der); | ||||||
|         OPENSSL_free(sess); |         OPENSSL_free(sess); | ||||||
|         return 0; |         return 0; | ||||||
|   | |||||||
| @@ -302,7 +302,7 @@ static int parseArgs(int argc, char **argv) | |||||||
|             if (--argc < 1) |             if (--argc < 1) | ||||||
|                 goto bad; |                 goto bad; | ||||||
|             maxTime = atoi(*(++argv)); |             maxTime = atoi(*(++argv)); | ||||||
|             if(maxTime <= 0) { |             if (maxTime <= 0) { | ||||||
|                 BIO_printf(bio_err, "time must be > 0\n"); |                 BIO_printf(bio_err, "time must be > 0\n"); | ||||||
|                 badop = 1; |                 badop = 1; | ||||||
|             } |             } | ||||||
|   | |||||||
| @@ -2775,7 +2775,7 @@ static void multiblock_speed(const EVP_CIPHER *evp_cipher) | |||||||
|  |  | ||||||
|     inp = OPENSSL_malloc(mblengths[num - 1]); |     inp = OPENSSL_malloc(mblengths[num - 1]); | ||||||
|     out = OPENSSL_malloc(mblengths[num - 1] + 1024); |     out = OPENSSL_malloc(mblengths[num - 1] + 1024); | ||||||
|     if(!inp || !out) { |     if (!inp || !out) { | ||||||
|         BIO_printf(bio_err,"Out of memory\n"); |         BIO_printf(bio_err,"Out of memory\n"); | ||||||
|         goto end; |         goto end; | ||||||
|     } |     } | ||||||
| @@ -2865,9 +2865,9 @@ static void multiblock_speed(const EVP_CIPHER *evp_cipher) | |||||||
|     } |     } | ||||||
|  |  | ||||||
| end: | end: | ||||||
|     if(inp) |     if (inp) | ||||||
|         OPENSSL_free(inp); |         OPENSSL_free(inp); | ||||||
|     if(out) |     if (out) | ||||||
|         OPENSSL_free(out); |         OPENSSL_free(out); | ||||||
| } | } | ||||||
| #endif | #endif | ||||||
|   | |||||||
| @@ -435,7 +435,7 @@ int MAIN(int argc, char **argv) | |||||||
| # ifdef OPENSSL_SYS_VMS | # ifdef OPENSSL_SYS_VMS | ||||||
|             len = strlen(s) + sizeof(CONFIG_FILE); |             len = strlen(s) + sizeof(CONFIG_FILE); | ||||||
|             tofree = OPENSSL_malloc(len); |             tofree = OPENSSL_malloc(len); | ||||||
|             if(!tofree) { |             if (!tofree) { | ||||||
|                 BIO_printf(bio_err, "Out of memory\n"); |                 BIO_printf(bio_err, "Out of memory\n"); | ||||||
|                 goto err; |                 goto err; | ||||||
|             } |             } | ||||||
| @@ -443,7 +443,7 @@ int MAIN(int argc, char **argv) | |||||||
| # else | # else | ||||||
|             len = strlen(s) + sizeof(CONFIG_FILE) + 1; |             len = strlen(s) + sizeof(CONFIG_FILE) + 1; | ||||||
|             tofree = OPENSSL_malloc(len); |             tofree = OPENSSL_malloc(len); | ||||||
|             if(!tofree) { |             if (!tofree) { | ||||||
|                 BIO_printf(bio_err, "Out of memory\n"); |                 BIO_printf(bio_err, "Out of memory\n"); | ||||||
|                 goto err; |                 goto err; | ||||||
|             } |             } | ||||||
|   | |||||||
| @@ -289,7 +289,7 @@ int SMIME_write_ASN1(BIO *bio, ASN1_VALUE *val, BIO *data, int flags, | |||||||
|     if ((flags & SMIME_DETACHED) && data) { |     if ((flags & SMIME_DETACHED) && data) { | ||||||
|         /* We want multipart/signed */ |         /* We want multipart/signed */ | ||||||
|         /* Generate a random boundary */ |         /* Generate a random boundary */ | ||||||
|         if(RAND_pseudo_bytes((unsigned char *)bound, 32) < 0) |         if (RAND_pseudo_bytes((unsigned char *)bound, 32) < 0) | ||||||
|             return 0; |             return 0; | ||||||
|         for (i = 0; i < 32; i++) { |         for (i = 0; i < 32; i++) { | ||||||
|             c = bound[i] & 0xf; |             c = bound[i] & 0xf; | ||||||
|   | |||||||
| @@ -162,7 +162,7 @@ static int ndef_prefix(BIO *b, unsigned char **pbuf, int *plen, void *parg) | |||||||
|  |  | ||||||
|     derlen = ASN1_item_ndef_i2d(ndef_aux->val, NULL, ndef_aux->it); |     derlen = ASN1_item_ndef_i2d(ndef_aux->val, NULL, ndef_aux->it); | ||||||
|     p = OPENSSL_malloc(derlen); |     p = OPENSSL_malloc(derlen); | ||||||
|     if(!p) |     if (!p) | ||||||
|         return 0; |         return 0; | ||||||
|  |  | ||||||
|     ndef_aux->derbuf = p; |     ndef_aux->derbuf = p; | ||||||
| @@ -232,7 +232,7 @@ static int ndef_suffix(BIO *b, unsigned char **pbuf, int *plen, void *parg) | |||||||
|  |  | ||||||
|     derlen = ASN1_item_ndef_i2d(ndef_aux->val, NULL, ndef_aux->it); |     derlen = ASN1_item_ndef_i2d(ndef_aux->val, NULL, ndef_aux->it); | ||||||
|     p = OPENSSL_malloc(derlen); |     p = OPENSSL_malloc(derlen); | ||||||
|     if(!p) |     if (!p) | ||||||
|         return 0; |         return 0; | ||||||
|  |  | ||||||
|     ndef_aux->derbuf = p; |     ndef_aux->derbuf = p; | ||||||
|   | |||||||
| @@ -290,7 +290,7 @@ static int asn1_item_print_ctx(BIO *out, ASN1_VALUE **fld, int indent, | |||||||
|         for (i = 0, tt = it->templates; i < it->tcount; i++, tt++) { |         for (i = 0, tt = it->templates; i < it->tcount; i++, tt++) { | ||||||
|             const ASN1_TEMPLATE *seqtt; |             const ASN1_TEMPLATE *seqtt; | ||||||
|             seqtt = asn1_do_adb(fld, tt, 1); |             seqtt = asn1_do_adb(fld, tt, 1); | ||||||
|             if(!seqtt) |             if (!seqtt) | ||||||
|                 return 0; |                 return 0; | ||||||
|             tmpfld = asn1_get_field_ptr(fld, seqtt); |             tmpfld = asn1_get_field_ptr(fld, seqtt); | ||||||
|             if (!asn1_template_print_ctx(out, tmpfld, |             if (!asn1_template_print_ctx(out, tmpfld, | ||||||
|   | |||||||
| @@ -177,7 +177,7 @@ X509 *d2i_X509_AUX(X509 **a, const unsigned char **pp, long length) | |||||||
|     /* Save start position */ |     /* Save start position */ | ||||||
|     q = *pp; |     q = *pp; | ||||||
|  |  | ||||||
|     if(!a || *a == NULL) { |     if (!a || *a == NULL) { | ||||||
|         freeret = 1; |         freeret = 1; | ||||||
|     } |     } | ||||||
|     ret = d2i_X509(a, pp, length); |     ret = d2i_X509(a, pp, length); | ||||||
| @@ -192,7 +192,7 @@ X509 *d2i_X509_AUX(X509 **a, const unsigned char **pp, long length) | |||||||
|         goto err; |         goto err; | ||||||
|     return ret; |     return ret; | ||||||
|  err: |  err: | ||||||
|     if(freeret) { |     if (freeret) { | ||||||
|         X509_free(ret); |         X509_free(ret); | ||||||
|         if (a) |         if (a) | ||||||
|             *a = NULL; |             *a = NULL; | ||||||
|   | |||||||
| @@ -710,7 +710,7 @@ doapr_outch(char **sbuffer, | |||||||
|                 if (*maxlen == 0) |                 if (*maxlen == 0) | ||||||
|                     *maxlen = 1024; |                     *maxlen = 1024; | ||||||
|                 *buffer = OPENSSL_malloc(*maxlen); |                 *buffer = OPENSSL_malloc(*maxlen); | ||||||
|                 if(!*buffer) { |                 if (!*buffer) { | ||||||
|                     /* Panic! Can't really do anything sensible. Just return */ |                     /* Panic! Can't really do anything sensible. Just return */ | ||||||
|                     return; |                     return; | ||||||
|                 } |                 } | ||||||
| @@ -722,7 +722,7 @@ doapr_outch(char **sbuffer, | |||||||
|             } else { |             } else { | ||||||
|                 *maxlen += 1024; |                 *maxlen += 1024; | ||||||
|                 *buffer = OPENSSL_realloc(*buffer, *maxlen); |                 *buffer = OPENSSL_realloc(*buffer, *maxlen); | ||||||
|                 if(!*buffer) { |                 if (!*buffer) { | ||||||
|                     /* Panic! Can't really do anything sensible. Just return */ |                     /* Panic! Can't really do anything sensible. Just return */ | ||||||
|                     return; |                     return; | ||||||
|                 } |                 } | ||||||
|   | |||||||
| @@ -139,7 +139,7 @@ static int nbiof_read(BIO *b, char *out, int outl) | |||||||
|  |  | ||||||
|     BIO_clear_retry_flags(b); |     BIO_clear_retry_flags(b); | ||||||
| #if 1 | #if 1 | ||||||
|     if(RAND_pseudo_bytes(&n, 1) < 0) |     if (RAND_pseudo_bytes(&n, 1) < 0) | ||||||
|         return -1; |         return -1; | ||||||
|     num = (n & 0x07); |     num = (n & 0x07); | ||||||
|  |  | ||||||
| @@ -179,7 +179,7 @@ static int nbiof_write(BIO *b, const char *in, int inl) | |||||||
|         num = nt->lwn; |         num = nt->lwn; | ||||||
|         nt->lwn = 0; |         nt->lwn = 0; | ||||||
|     } else { |     } else { | ||||||
|         if(RAND_pseudo_bytes(&n, 1) < 0) |         if (RAND_pseudo_bytes(&n, 1) < 0) | ||||||
|             return -1; |             return -1; | ||||||
|         num = (n & 7); |         num = (n & 7); | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -1012,7 +1012,7 @@ BIO *BIO_new_dgram_sctp(int fd, int close_flag) | |||||||
|      */ |      */ | ||||||
|     sockopt_len = (socklen_t) (sizeof(sctp_assoc_t) + 256 * sizeof(uint8_t)); |     sockopt_len = (socklen_t) (sizeof(sctp_assoc_t) + 256 * sizeof(uint8_t)); | ||||||
|     authchunks = OPENSSL_malloc(sockopt_len); |     authchunks = OPENSSL_malloc(sockopt_len); | ||||||
|     if(!authchunks) { |     if (!authchunks) { | ||||||
|         BIO_vfree(bio); |         BIO_vfree(bio); | ||||||
|         return (NULL); |         return (NULL); | ||||||
|     } |     } | ||||||
| @@ -1423,7 +1423,7 @@ static int dgram_sctp_write(BIO *b, const char *in, int inl) | |||||||
|     if (data->save_shutdown && !BIO_dgram_sctp_wait_for_dry(b)) { |     if (data->save_shutdown && !BIO_dgram_sctp_wait_for_dry(b)) { | ||||||
|         char *tmp; |         char *tmp; | ||||||
|         data->saved_message.bio = b; |         data->saved_message.bio = b; | ||||||
|         if(!(tmp = OPENSSL_malloc(inl))) { |         if (!(tmp = OPENSSL_malloc(inl))) { | ||||||
|             BIOerr(BIO_F_DGRAM_SCTP_WRITE, ERR_R_MALLOC_FAILURE); |             BIOerr(BIO_F_DGRAM_SCTP_WRITE, ERR_R_MALLOC_FAILURE); | ||||||
|             return -1; |             return -1; | ||||||
|         } |         } | ||||||
|   | |||||||
| @@ -157,7 +157,7 @@ static int bnrand(int pseudorand, BIGNUM *rnd, int bits, int top, int bottom) | |||||||
|         unsigned char c; |         unsigned char c; | ||||||
|  |  | ||||||
|         for (i = 0; i < bytes; i++) { |         for (i = 0; i < bytes; i++) { | ||||||
|             if(RAND_pseudo_bytes(&c, 1) < 0) |             if (RAND_pseudo_bytes(&c, 1) < 0) | ||||||
|                 goto err; |                 goto err; | ||||||
|             if (c >= 128 && i > 0) |             if (c >= 128 && i > 0) | ||||||
|                 buf[i] = buf[i - 1]; |                 buf[i] = buf[i - 1]; | ||||||
|   | |||||||
| @@ -231,7 +231,7 @@ static int kek_unwrap_key(unsigned char *out, size_t *outlen, | |||||||
|         return 0; |         return 0; | ||||||
|     } |     } | ||||||
|     tmp = OPENSSL_malloc(inlen); |     tmp = OPENSSL_malloc(inlen); | ||||||
|     if(!tmp) |     if (!tmp) | ||||||
|         return 0; |         return 0; | ||||||
|     /* setup IV by decrypting last two blocks */ |     /* setup IV by decrypting last two blocks */ | ||||||
|     EVP_DecryptUpdate(ctx, tmp + inlen - 2 * blocklen, &outl, |     EVP_DecryptUpdate(ctx, tmp + inlen - 2 * blocklen, &outl, | ||||||
|   | |||||||
| @@ -456,7 +456,7 @@ void doencryption(void) | |||||||
|             len = l - rem; |             len = l - rem; | ||||||
|             if (feof(DES_IN)) { |             if (feof(DES_IN)) { | ||||||
|                 for (i = 7 - rem; i > 0; i--) { |                 for (i = 7 - rem; i > 0; i--) { | ||||||
|                     if(RAND_pseudo_bytes(buf + l++, 1) < 0) |                     if (RAND_pseudo_bytes(buf + l++, 1) < 0) | ||||||
|                         goto problems; |                         goto problems; | ||||||
|                 } |                 } | ||||||
|                 buf[l++] = rem; |                 buf[l++] = rem; | ||||||
|   | |||||||
| @@ -132,7 +132,7 @@ int DES_enc_write(int fd, const void *_buf, int len, | |||||||
|     if (len < 8) { |     if (len < 8) { | ||||||
|         cp = shortbuf; |         cp = shortbuf; | ||||||
|         memcpy(shortbuf, buf, len); |         memcpy(shortbuf, buf, len); | ||||||
|         if(RAND_pseudo_bytes(shortbuf + len, 8 - len) < 0) { |         if (RAND_pseudo_bytes(shortbuf + len, 8 - len) < 0) { | ||||||
|             return -1; |             return -1; | ||||||
|         } |         } | ||||||
|         rnum = 8; |         rnum = 8; | ||||||
|   | |||||||
| @@ -160,7 +160,7 @@ static int dh_pub_encode(X509_PUBKEY *pk, const EVP_PKEY *pkey) | |||||||
|     dh = pkey->pkey.dh; |     dh = pkey->pkey.dh; | ||||||
|  |  | ||||||
|     str = ASN1_STRING_new(); |     str = ASN1_STRING_new(); | ||||||
|     if(!str) { |     if (!str) { | ||||||
|         DHerr(DH_F_DH_PUB_ENCODE, ERR_R_MALLOC_FAILURE); |         DHerr(DH_F_DH_PUB_ENCODE, ERR_R_MALLOC_FAILURE); | ||||||
|         goto err; |         goto err; | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -462,7 +462,7 @@ static int pkey_dh_derive(EVP_PKEY_CTX *ctx, unsigned char *key, | |||||||
|         ret = 0; |         ret = 0; | ||||||
|         Zlen = DH_size(dh); |         Zlen = DH_size(dh); | ||||||
|         Z = OPENSSL_malloc(Zlen); |         Z = OPENSSL_malloc(Zlen); | ||||||
|         if(!Z) { |         if (!Z) { | ||||||
|             goto err; |             goto err; | ||||||
|         } |         } | ||||||
|         if (DH_compute_key_padded(Z, dhpub, dh) <= 0) |         if (DH_compute_key_padded(Z, dhpub, dh) <= 0) | ||||||
|   | |||||||
| @@ -204,7 +204,7 @@ int dsa_builtin_paramgen(DSA *ret, size_t bits, size_t qbits, | |||||||
|                 goto err; |                 goto err; | ||||||
|  |  | ||||||
|             if (!seed_len) { |             if (!seed_len) { | ||||||
|                 if(RAND_pseudo_bytes(seed, qsize) < 0) |                 if (RAND_pseudo_bytes(seed, qsize) < 0) | ||||||
|                     goto err; |                     goto err; | ||||||
|                 seed_is_random = 1; |                 seed_is_random = 1; | ||||||
|             } else { |             } else { | ||||||
|   | |||||||
| @@ -106,23 +106,23 @@ static DSA_METHOD openssl_dsa_meth = { | |||||||
| #define DSA_MOD_EXP(err_instr,dsa,rr,a1,p1,a2,p2,m,ctx,in_mont) \ | #define DSA_MOD_EXP(err_instr,dsa,rr,a1,p1,a2,p2,m,ctx,in_mont) \ | ||||||
|         do { \ |         do { \ | ||||||
|         int _tmp_res53; \ |         int _tmp_res53; \ | ||||||
|         if((dsa)->meth->dsa_mod_exp) \ |         if ((dsa)->meth->dsa_mod_exp) \ | ||||||
|                 _tmp_res53 = (dsa)->meth->dsa_mod_exp((dsa), (rr), (a1), (p1), \ |                 _tmp_res53 = (dsa)->meth->dsa_mod_exp((dsa), (rr), (a1), (p1), \ | ||||||
|                                 (a2), (p2), (m), (ctx), (in_mont)); \ |                                 (a2), (p2), (m), (ctx), (in_mont)); \ | ||||||
|         else \ |         else \ | ||||||
|                 _tmp_res53 = BN_mod_exp2_mont((rr), (a1), (p1), (a2), (p2), \ |                 _tmp_res53 = BN_mod_exp2_mont((rr), (a1), (p1), (a2), (p2), \ | ||||||
|                                 (m), (ctx), (in_mont)); \ |                                 (m), (ctx), (in_mont)); \ | ||||||
|         if(!_tmp_res53) err_instr; \ |         if (!_tmp_res53) err_instr; \ | ||||||
|         } while(0) |         } while(0) | ||||||
| #define DSA_BN_MOD_EXP(err_instr,dsa,r,a,p,m,ctx,m_ctx) \ | #define DSA_BN_MOD_EXP(err_instr,dsa,r,a,p,m,ctx,m_ctx) \ | ||||||
|         do { \ |         do { \ | ||||||
|         int _tmp_res53; \ |         int _tmp_res53; \ | ||||||
|         if((dsa)->meth->bn_mod_exp) \ |         if ((dsa)->meth->bn_mod_exp) \ | ||||||
|                 _tmp_res53 = (dsa)->meth->bn_mod_exp((dsa), (r), (a), (p), \ |                 _tmp_res53 = (dsa)->meth->bn_mod_exp((dsa), (r), (a), (p), \ | ||||||
|                                 (m), (ctx), (m_ctx)); \ |                                 (m), (ctx), (m_ctx)); \ | ||||||
|         else \ |         else \ | ||||||
|                 _tmp_res53 = BN_mod_exp_mont((r), (a), (p), (m), (ctx), (m_ctx)); \ |                 _tmp_res53 = BN_mod_exp_mont((r), (a), (p), (m), (ctx), (m_ctx)); \ | ||||||
|         if(!_tmp_res53) err_instr; \ |         if (!_tmp_res53) err_instr; \ | ||||||
|         } while(0) |         } while(0) | ||||||
|  |  | ||||||
| const DSA_METHOD *DSA_OpenSSL(void) | const DSA_METHOD *DSA_OpenSSL(void) | ||||||
|   | |||||||
| @@ -285,7 +285,7 @@ DSO_FUNC_TYPE DSO_bind_func(DSO *dso, const char *symname) | |||||||
|  * honest. For one thing, I think I have to return a negative value for any |  * honest. For one thing, I think I have to return a negative value for any | ||||||
|  * error because possible DSO_ctrl() commands may return values such as |  * error because possible DSO_ctrl() commands may return values such as | ||||||
|  * "size"s that can legitimately be zero (making the standard |  * "size"s that can legitimately be zero (making the standard | ||||||
|  * "if(DSO_cmd(...))" form that works almost everywhere else fail at odd |  * "if (DSO_cmd(...))" form that works almost everywhere else fail at odd | ||||||
|  * times. I'd prefer "output" values to be passed by reference and the return |  * times. I'd prefer "output" values to be passed by reference and the return | ||||||
|  * value as success/failure like usual ... but we conform when we must... :-) |  * value as success/failure like usual ... but we conform when we must... :-) | ||||||
|  */ |  */ | ||||||
|   | |||||||
| @@ -539,7 +539,7 @@ static char *vms_name_converter(DSO *dso, const char *filename) | |||||||
| { | { | ||||||
|     int len = strlen(filename); |     int len = strlen(filename); | ||||||
|     char *not_translated = OPENSSL_malloc(len + 1); |     char *not_translated = OPENSSL_malloc(len + 1); | ||||||
|     if(not_translated) |     if (not_translated) | ||||||
|         strcpy(not_translated, filename); |         strcpy(not_translated, filename); | ||||||
|     return (not_translated); |     return (not_translated); | ||||||
| } | } | ||||||
|   | |||||||
| @@ -491,7 +491,7 @@ static int sig_out(BIO *b) | |||||||
|      * FIXME: there's absolutely no guarantee this makes any sense at all, |      * FIXME: there's absolutely no guarantee this makes any sense at all, | ||||||
|      * particularly now EVP_MD_CTX has been restructured. |      * particularly now EVP_MD_CTX has been restructured. | ||||||
|      */ |      */ | ||||||
|     if(RAND_pseudo_bytes(md->md_data, md->digest->md_size) < 0) |     if (RAND_pseudo_bytes(md->md_data, md->digest->md_size) < 0) | ||||||
|         goto berr; |         goto berr; | ||||||
|     memcpy(&(ctx->buf[ctx->buf_len]), md->md_data, md->digest->md_size); |     memcpy(&(ctx->buf[ctx->buf_len]), md->md_data, md->digest->md_size); | ||||||
|     longswap(&(ctx->buf[ctx->buf_len]), md->digest->md_size); |     longswap(&(ctx->buf[ctx->buf_len]), md->digest->md_size); | ||||||
|   | |||||||
| @@ -447,7 +447,7 @@ static int des_ede3_wrap(EVP_CIPHER_CTX *ctx, unsigned char *out, | |||||||
|     memcpy(out + inl + 8, sha1tmp, 8); |     memcpy(out + inl + 8, sha1tmp, 8); | ||||||
|     OPENSSL_cleanse(sha1tmp, SHA_DIGEST_LENGTH); |     OPENSSL_cleanse(sha1tmp, SHA_DIGEST_LENGTH); | ||||||
|     /* Generate random IV */ |     /* Generate random IV */ | ||||||
|     if(RAND_bytes(ctx->iv, 8) <= 0) |     if (RAND_bytes(ctx->iv, 8) <= 0) | ||||||
|         return -1; |         return -1; | ||||||
|     memcpy(out, ctx->iv, 8); |     memcpy(out, ctx->iv, 8); | ||||||
|     /* Encrypt everything after IV in place */ |     /* Encrypt everything after IV in place */ | ||||||
|   | |||||||
| @@ -248,7 +248,7 @@ int EVP_DecodeUpdate(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl, | |||||||
|  |  | ||||||
|     /* We parse the input data */ |     /* We parse the input data */ | ||||||
|     for (i = 0; i < inl; i++) { |     for (i = 0; i < inl; i++) { | ||||||
|         /* If the current line is > 80 characters, scream alot */ |         /* If the current line is > 80 characters, scream a lot */ | ||||||
|         if (ln >= 80) { |         if (ln >= 80) { | ||||||
|             rv = -1; |             rv = -1; | ||||||
|             goto end; |             goto end; | ||||||
|   | |||||||
| @@ -101,13 +101,13 @@ int HMAC_Init_ex(HMAC_CTX *ctx, const void *key, int len, | |||||||
|     if (md != NULL) { |     if (md != NULL) { | ||||||
|         reset = 1; |         reset = 1; | ||||||
|         ctx->md = md; |         ctx->md = md; | ||||||
|     } else if(ctx->md) { |     } else if (ctx->md) { | ||||||
|         md = ctx->md; |         md = ctx->md; | ||||||
|     } else { |     } else { | ||||||
|         return 0; |         return 0; | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     if(!ctx->key_init && key == NULL) |     if (!ctx->key_init && key == NULL) | ||||||
|         return 0; |         return 0; | ||||||
|  |  | ||||||
|     if (key != NULL) { |     if (key != NULL) { | ||||||
| @@ -123,7 +123,7 @@ int HMAC_Init_ex(HMAC_CTX *ctx, const void *key, int len, | |||||||
|                                     &ctx->key_length)) |                                     &ctx->key_length)) | ||||||
|                 goto err; |                 goto err; | ||||||
|         } else { |         } else { | ||||||
|             if(len < 0 || len > (int)sizeof(ctx->key)) |             if (len < 0 || len > (int)sizeof(ctx->key)) | ||||||
|                 return 0; |                 return 0; | ||||||
|             memcpy(ctx->key, key, len); |             memcpy(ctx->key, key, len); | ||||||
|             ctx->key_length = len; |             ctx->key_length = len; | ||||||
| @@ -169,7 +169,7 @@ int HMAC_Update(HMAC_CTX *ctx, const unsigned char *data, size_t len) | |||||||
|     if (FIPS_mode() && !ctx->i_ctx.engine) |     if (FIPS_mode() && !ctx->i_ctx.engine) | ||||||
|         return FIPS_hmac_update(ctx, data, len); |         return FIPS_hmac_update(ctx, data, len); | ||||||
| #endif | #endif | ||||||
|     if(!ctx->key_init) |     if (!ctx->key_init) | ||||||
|         return 0; |         return 0; | ||||||
|  |  | ||||||
|     return EVP_DigestUpdate(&ctx->md_ctx, data, len); |     return EVP_DigestUpdate(&ctx->md_ctx, data, len); | ||||||
| @@ -184,7 +184,7 @@ int HMAC_Final(HMAC_CTX *ctx, unsigned char *md, unsigned int *len) | |||||||
|         return FIPS_hmac_final(ctx, md, len); |         return FIPS_hmac_final(ctx, md, len); | ||||||
| #endif | #endif | ||||||
|  |  | ||||||
|     if(!ctx->key_init) |     if (!ctx->key_init) | ||||||
|         goto err; |         goto err; | ||||||
|  |  | ||||||
|     if (!EVP_DigestFinal_ex(&ctx->md_ctx, buf, &i)) |     if (!EVP_DigestFinal_ex(&ctx->md_ctx, buf, &i)) | ||||||
| @@ -218,7 +218,7 @@ int HMAC_CTX_copy(HMAC_CTX *dctx, HMAC_CTX *sctx) | |||||||
|     if (!EVP_MD_CTX_copy(&dctx->md_ctx, &sctx->md_ctx)) |     if (!EVP_MD_CTX_copy(&dctx->md_ctx, &sctx->md_ctx)) | ||||||
|         goto err; |         goto err; | ||||||
|     dctx->key_init = sctx->key_init; |     dctx->key_init = sctx->key_init; | ||||||
|     if(sctx->key_init) { |     if (sctx->key_init) { | ||||||
|         memcpy(dctx->key, sctx->key, HMAC_MAX_MD_CBLOCK); |         memcpy(dctx->key, sctx->key, HMAC_MAX_MD_CBLOCK); | ||||||
|         dctx->key_length = sctx->key_length; |         dctx->key_length = sctx->key_length; | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -173,22 +173,22 @@ int main(int argc, char *argv[]) | |||||||
|  |  | ||||||
| /* test4 */ | /* test4 */ | ||||||
|     HMAC_CTX_init(&ctx); |     HMAC_CTX_init(&ctx); | ||||||
|     if(HMAC_Init_ex(&ctx, NULL, 0, NULL, NULL)) { |     if (HMAC_Init_ex(&ctx, NULL, 0, NULL, NULL)) { | ||||||
|         printf("Should fail to initialise HMAC with empty MD and key (test 4)\n"); |         printf("Should fail to initialise HMAC with empty MD and key (test 4)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test5; |         goto test5; | ||||||
|     } |     } | ||||||
|     if(HMAC_Update(&ctx, test[4].data, test[4].data_len)) { |     if (HMAC_Update(&ctx, test[4].data, test[4].data_len)) { | ||||||
|         printf("Should fail HMAC_Update with ctx not set up (test 4)\n"); |         printf("Should fail HMAC_Update with ctx not set up (test 4)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test5; |         goto test5; | ||||||
|     } |     } | ||||||
|     if(HMAC_Init_ex(&ctx, NULL, 0, EVP_sha1(), NULL)) { |     if (HMAC_Init_ex(&ctx, NULL, 0, EVP_sha1(), NULL)) { | ||||||
|         printf("Should fail to initialise HMAC with empty key (test 4)\n"); |         printf("Should fail to initialise HMAC with empty key (test 4)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test5; |         goto test5; | ||||||
|     } |     } | ||||||
|     if(HMAC_Update(&ctx, test[4].data, test[4].data_len)) { |     if (HMAC_Update(&ctx, test[4].data, test[4].data_len)) { | ||||||
|         printf("Should fail HMAC_Update with ctx not set up (test 4)\n"); |         printf("Should fail HMAC_Update with ctx not set up (test 4)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test5; |         goto test5; | ||||||
| @@ -196,32 +196,32 @@ int main(int argc, char *argv[]) | |||||||
|     printf("test 4 ok\n"); |     printf("test 4 ok\n"); | ||||||
| test5: | test5: | ||||||
|     HMAC_CTX_init(&ctx); |     HMAC_CTX_init(&ctx); | ||||||
|     if(HMAC_Init_ex(&ctx, test[4].key, test[4].key_len, NULL, NULL)) { |     if (HMAC_Init_ex(&ctx, test[4].key, test[4].key_len, NULL, NULL)) { | ||||||
|         printf("Should fail to initialise HMAC with empty MD (test 5)\n"); |         printf("Should fail to initialise HMAC with empty MD (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(HMAC_Update(&ctx, test[4].data, test[4].data_len)) { |     if (HMAC_Update(&ctx, test[4].data, test[4].data_len)) { | ||||||
|         printf("Should fail HMAC_Update with ctx not set up (test 5)\n"); |         printf("Should fail HMAC_Update with ctx not set up (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(HMAC_Init_ex(&ctx, test[4].key, -1, EVP_sha1(), NULL)) { |     if (HMAC_Init_ex(&ctx, test[4].key, -1, EVP_sha1(), NULL)) { | ||||||
|         printf("Should fail to initialise HMAC with invalid key len(test 5)\n"); |         printf("Should fail to initialise HMAC with invalid key len(test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Init_ex(&ctx, test[4].key, test[4].key_len, EVP_sha1(), NULL)) { |     if (!HMAC_Init_ex(&ctx, test[4].key, test[4].key_len, EVP_sha1(), NULL)) { | ||||||
|         printf("Failed to initialise HMAC (test 5)\n"); |         printf("Failed to initialise HMAC (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Update(&ctx, test[4].data, test[4].data_len)) { |     if (!HMAC_Update(&ctx, test[4].data, test[4].data_len)) { | ||||||
|         printf("Error updating HMAC with data (test 5)\n"); |         printf("Error updating HMAC with data (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Final(&ctx, buf, &len)) { |     if (!HMAC_Final(&ctx, buf, &len)) { | ||||||
|         printf("Error finalising data (test 5)\n"); |         printf("Error finalising data (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
| @@ -233,17 +233,17 @@ test5: | |||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Init_ex(&ctx, NULL, 0, EVP_sha256(), NULL)) { |     if (!HMAC_Init_ex(&ctx, NULL, 0, EVP_sha256(), NULL)) { | ||||||
|         printf("Failed to reinitialise HMAC (test 5)\n"); |         printf("Failed to reinitialise HMAC (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Update(&ctx, test[5].data, test[5].data_len)) { |     if (!HMAC_Update(&ctx, test[5].data, test[5].data_len)) { | ||||||
|         printf("Error updating HMAC with data (sha256) (test 5)\n"); |         printf("Error updating HMAC with data (sha256) (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Final(&ctx, buf, &len)) { |     if (!HMAC_Final(&ctx, buf, &len)) { | ||||||
|         printf("Error finalising data (sha256) (test 5)\n"); |         printf("Error finalising data (sha256) (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
| @@ -255,17 +255,17 @@ test5: | |||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Init_ex(&ctx, test[6].key, test[6].key_len, NULL, NULL)) { |     if (!HMAC_Init_ex(&ctx, test[6].key, test[6].key_len, NULL, NULL)) { | ||||||
|         printf("Failed to reinitialise HMAC with key (test 5)\n"); |         printf("Failed to reinitialise HMAC with key (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Update(&ctx, test[6].data, test[6].data_len)) { |     if (!HMAC_Update(&ctx, test[6].data, test[6].data_len)) { | ||||||
|         printf("Error updating HMAC with data (new key) (test 5)\n"); |         printf("Error updating HMAC with data (new key) (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Final(&ctx, buf, &len)) { |     if (!HMAC_Final(&ctx, buf, &len)) { | ||||||
|         printf("Error finalising data (new key) (test 5)\n"); |         printf("Error finalising data (new key) (test 5)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto test6; |         goto test6; | ||||||
| @@ -280,22 +280,22 @@ test5: | |||||||
|     } |     } | ||||||
| test6: | test6: | ||||||
|     HMAC_CTX_init(&ctx); |     HMAC_CTX_init(&ctx); | ||||||
|     if(!HMAC_Init_ex(&ctx, test[7].key, test[7].key_len, EVP_sha1(), NULL)) { |     if (!HMAC_Init_ex(&ctx, test[7].key, test[7].key_len, EVP_sha1(), NULL)) { | ||||||
|         printf("Failed to initialise HMAC (test 6)\n"); |         printf("Failed to initialise HMAC (test 6)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto end; |         goto end; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Update(&ctx, test[7].data, test[7].data_len)) { |     if (!HMAC_Update(&ctx, test[7].data, test[7].data_len)) { | ||||||
|         printf("Error updating HMAC with data (test 6)\n"); |         printf("Error updating HMAC with data (test 6)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto end; |         goto end; | ||||||
|     } |     } | ||||||
|     if(!HMAC_CTX_copy(&ctx2, &ctx)) { |     if (!HMAC_CTX_copy(&ctx2, &ctx)) { | ||||||
|         printf("Failed to copy HMAC_CTX (test 6)\n"); |         printf("Failed to copy HMAC_CTX (test 6)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto end; |         goto end; | ||||||
|     } |     } | ||||||
|     if(!HMAC_Final(&ctx2, buf, &len)) { |     if (!HMAC_Final(&ctx2, buf, &len)) { | ||||||
|         printf("Error finalising data (test 6)\n"); |         printf("Error finalising data (test 6)\n"); | ||||||
|         err++; |         err++; | ||||||
|         goto end; |         goto end; | ||||||
|   | |||||||
| @@ -313,7 +313,7 @@ void OBJ_NAME_do_all_sorted(int type, | |||||||
|     d.names = |     d.names = | ||||||
|         OPENSSL_malloc(lh_OBJ_NAME_num_items(names_lh) * sizeof *d.names); |         OPENSSL_malloc(lh_OBJ_NAME_num_items(names_lh) * sizeof *d.names); | ||||||
|     /* Really should return an error if !d.names...but its a void function! */ |     /* Really should return an error if !d.names...but its a void function! */ | ||||||
|     if(d.names) { |     if (d.names) { | ||||||
|         d.n = 0; |         d.n = 0; | ||||||
|         OBJ_NAME_do_all(type, do_all_sorted_fn, &d); |         OBJ_NAME_do_all(type, do_all_sorted_fn, &d); | ||||||
|  |  | ||||||
|   | |||||||
| @@ -361,7 +361,7 @@ static int ocsp_add1_nonce(STACK_OF(X509_EXTENSION) **exts, | |||||||
|     ASN1_put_object(&tmpval, 0, len, V_ASN1_OCTET_STRING, V_ASN1_UNIVERSAL); |     ASN1_put_object(&tmpval, 0, len, V_ASN1_OCTET_STRING, V_ASN1_UNIVERSAL); | ||||||
|     if (val) |     if (val) | ||||||
|         memcpy(tmpval, val, len); |         memcpy(tmpval, val, len); | ||||||
|     else if(RAND_pseudo_bytes(tmpval, len) < 0) |     else if (RAND_pseudo_bytes(tmpval, len) < 0) | ||||||
|         goto err; |         goto err; | ||||||
|     if (!X509V3_add1_i2d(exts, NID_id_pkix_OCSP_Nonce, |     if (!X509V3_add1_i2d(exts, NID_id_pkix_OCSP_Nonce, | ||||||
|                          &os, 0, X509V3_ADD_REPLACE)) |                          &os, 0, X509V3_ADD_REPLACE)) | ||||||
|   | |||||||
| @@ -149,7 +149,7 @@ int RAND_poll(void) | |||||||
|     if (DosQuerySysState) { |     if (DosQuerySysState) { | ||||||
|         char *buffer = OPENSSL_malloc(256 * 1024); |         char *buffer = OPENSSL_malloc(256 * 1024); | ||||||
|  |  | ||||||
|         if(!buffer) |         if (!buffer) | ||||||
|             return 0; |             return 0; | ||||||
|  |  | ||||||
|         if (DosQuerySysState(0x1F, 0, 0, 0, buffer, 256 * 1024) == 0) { |         if (DosQuerySysState(0x1F, 0, 0, 0, buffer, 256 * 1024) == 0) { | ||||||
|   | |||||||
| @@ -497,7 +497,7 @@ SRP_user_pwd *SRP_VBASE_get_by_user(SRP_VBASE *vb, char *username) | |||||||
|     if (!SRP_user_pwd_set_ids(user, username, NULL)) |     if (!SRP_user_pwd_set_ids(user, username, NULL)) | ||||||
|         goto err; |         goto err; | ||||||
|  |  | ||||||
|     if(RAND_pseudo_bytes(digv, SHA_DIGEST_LENGTH) < 0) |     if (RAND_pseudo_bytes(digv, SHA_DIGEST_LENGTH) < 0) | ||||||
|         goto err; |         goto err; | ||||||
|     EVP_MD_CTX_init(&ctxt); |     EVP_MD_CTX_init(&ctxt); | ||||||
|     EVP_DigestInit_ex(&ctxt, EVP_sha1(), NULL); |     EVP_DigestInit_ex(&ctxt, EVP_sha1(), NULL); | ||||||
| @@ -550,7 +550,7 @@ char *SRP_create_verifier(const char *user, const char *pass, char **salt, | |||||||
|     } |     } | ||||||
|  |  | ||||||
|     if (*salt == NULL) { |     if (*salt == NULL) { | ||||||
|         if(RAND_pseudo_bytes(tmp2, SRP_RANDOM_SALT_LEN) < 0) |         if (RAND_pseudo_bytes(tmp2, SRP_RANDOM_SALT_LEN) < 0) | ||||||
|             goto err; |             goto err; | ||||||
|  |  | ||||||
|         s = BN_bin2bn(tmp2, SRP_RANDOM_SALT_LEN, NULL); |         s = BN_bin2bn(tmp2, SRP_RANDOM_SALT_LEN, NULL); | ||||||
| @@ -611,7 +611,7 @@ int SRP_create_verifier_BN(const char *user, const char *pass, BIGNUM **salt, | |||||||
|     srp_bn_print(g); |     srp_bn_print(g); | ||||||
|  |  | ||||||
|     if (*salt == NULL) { |     if (*salt == NULL) { | ||||||
|         if(RAND_pseudo_bytes(tmp2, SRP_RANDOM_SALT_LEN) < 0) |         if (RAND_pseudo_bytes(tmp2, SRP_RANDOM_SALT_LEN) < 0) | ||||||
|             goto err; |             goto err; | ||||||
|  |  | ||||||
|         *salt = BN_bin2bn(tmp2, SRP_RANDOM_SALT_LEN, NULL); |         *salt = BN_bin2bn(tmp2, SRP_RANDOM_SALT_LEN, NULL); | ||||||
|   | |||||||
| @@ -117,7 +117,7 @@ void CRYPTO_thread_setup(void) | |||||||
|     int i; |     int i; | ||||||
|  |  | ||||||
|     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(HANDLE)); |     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(HANDLE)); | ||||||
|     if(!lock_cs) { |     if (!lock_cs) { | ||||||
|         /* Nothing we can do about this...void function! */ |         /* Nothing we can do about this...void function! */ | ||||||
|         return; |         return; | ||||||
|     } |     } | ||||||
| @@ -172,7 +172,7 @@ void CRYPTO_thread_setup(void) | |||||||
| # else | # else | ||||||
|     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(rwlock_t)); |     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(rwlock_t)); | ||||||
| # endif | # endif | ||||||
|     if(!lock_cs) { |     if (!lock_cs) { | ||||||
|         /* Nothing we can do about this...void function! */ |         /* Nothing we can do about this...void function! */ | ||||||
|         return; |         return; | ||||||
|     } |     } | ||||||
| @@ -260,7 +260,7 @@ void CRYPTO_thread_setup(void) | |||||||
|     char filename[20]; |     char filename[20]; | ||||||
|  |  | ||||||
|     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(usema_t *)); |     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(usema_t *)); | ||||||
|     if(!lock_cs) { |     if (!lock_cs) { | ||||||
|         /* Nothing we can do about this...void function! */ |         /* Nothing we can do about this...void function! */ | ||||||
|         return; |         return; | ||||||
|     } |     } | ||||||
| @@ -328,11 +328,11 @@ void CRYPTO_thread_setup(void) | |||||||
|  |  | ||||||
|     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(pthread_mutex_t)); |     lock_cs = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(pthread_mutex_t)); | ||||||
|     lock_count = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(long)); |     lock_count = OPENSSL_malloc(CRYPTO_num_locks() * sizeof(long)); | ||||||
|     if(!lock_cs || !lock_count) { |     if (!lock_cs || !lock_count) { | ||||||
|         /* Nothing we can do about this...void function! */ |         /* Nothing we can do about this...void function! */ | ||||||
|         if(lock_cs) |         if (lock_cs) | ||||||
|             OPENSSL_free(lock_cs); |             OPENSSL_free(lock_cs); | ||||||
|         if(lock_count) |         if (lock_count) | ||||||
|             OPENSSL_free(lock_count); |             OPENSSL_free(lock_count); | ||||||
|         return; |         return; | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -230,11 +230,11 @@ static POLICYINFO *policy_section(X509V3_CTX *ctx, | |||||||
|                 goto merr; |                 goto merr; | ||||||
|             if (!sk_POLICYQUALINFO_push(pol->qualifiers, qual)) |             if (!sk_POLICYQUALINFO_push(pol->qualifiers, qual)) | ||||||
|                 goto merr; |                 goto merr; | ||||||
|             if(!(qual->pqualid = OBJ_nid2obj(NID_id_qt_cps))) { |             if (!(qual->pqualid = OBJ_nid2obj(NID_id_qt_cps))) { | ||||||
|                 X509V3err(X509V3_F_POLICY_SECTION, ERR_R_INTERNAL_ERROR); |                 X509V3err(X509V3_F_POLICY_SECTION, ERR_R_INTERNAL_ERROR); | ||||||
|                 goto err; |                 goto err; | ||||||
|             } |             } | ||||||
|             if(!(qual->d.cpsuri = M_ASN1_IA5STRING_new())) |             if (!(qual->d.cpsuri = M_ASN1_IA5STRING_new())) | ||||||
|                 goto merr; |                 goto merr; | ||||||
|             if (!ASN1_STRING_set(qual->d.cpsuri, cnf->value, |             if (!ASN1_STRING_set(qual->d.cpsuri, cnf->value, | ||||||
|                                  strlen(cnf->value))) |                                  strlen(cnf->value))) | ||||||
| @@ -294,7 +294,7 @@ static POLICYQUALINFO *notice_section(X509V3_CTX *ctx, | |||||||
|     POLICYQUALINFO *qual; |     POLICYQUALINFO *qual; | ||||||
|     if (!(qual = POLICYQUALINFO_new())) |     if (!(qual = POLICYQUALINFO_new())) | ||||||
|         goto merr; |         goto merr; | ||||||
|     if(!(qual->pqualid = OBJ_nid2obj(NID_id_qt_unotice))) { |     if (!(qual->pqualid = OBJ_nid2obj(NID_id_qt_unotice))) { | ||||||
|         X509V3err(X509V3_F_NOTICE_SECTION, ERR_R_INTERNAL_ERROR); |         X509V3err(X509V3_F_NOTICE_SECTION, ERR_R_INTERNAL_ERROR); | ||||||
|         goto err; |         goto err; | ||||||
|     } |     } | ||||||
| @@ -304,7 +304,7 @@ static POLICYQUALINFO *notice_section(X509V3_CTX *ctx, | |||||||
|     for (i = 0; i < sk_CONF_VALUE_num(unot); i++) { |     for (i = 0; i < sk_CONF_VALUE_num(unot); i++) { | ||||||
|         cnf = sk_CONF_VALUE_value(unot, i); |         cnf = sk_CONF_VALUE_value(unot, i); | ||||||
|         if (!strcmp(cnf->name, "explicitText")) { |         if (!strcmp(cnf->name, "explicitText")) { | ||||||
|             if(!(not->exptext = M_ASN1_VISIBLESTRING_new())) |             if (!(not->exptext = M_ASN1_VISIBLESTRING_new())) | ||||||
|                 goto merr; |                 goto merr; | ||||||
|             if (!ASN1_STRING_set(not->exptext, cnf->value, |             if (!ASN1_STRING_set(not->exptext, cnf->value, | ||||||
|                                  strlen(cnf->value))) |                                  strlen(cnf->value))) | ||||||
|   | |||||||
| @@ -761,7 +761,7 @@ SSL_CTX *tls_create_ctx(struct tls_create_ctx_args a, void *apparg) | |||||||
|         if (tls_dhe1024 == NULL) { |         if (tls_dhe1024 == NULL) { | ||||||
|             int i; |             int i; | ||||||
|  |  | ||||||
|             if(RAND_bytes((unsigned char *)&i, sizeof i) <= 0) |             if (RAND_bytes((unsigned char *)&i, sizeof i) <= 0) | ||||||
|                 goto err_return; |                 goto err_return; | ||||||
|             /* |             /* | ||||||
|              * make sure that i is non-negative -- pick one of the provided |              * make sure that i is non-negative -- pick one of the provided | ||||||
|   | |||||||
| @@ -1420,7 +1420,7 @@ int dtls1_process_heartbeat(SSL *s) | |||||||
|         memcpy(bp, pl, payload); |         memcpy(bp, pl, payload); | ||||||
|         bp += payload; |         bp += payload; | ||||||
|         /* Random padding */ |         /* Random padding */ | ||||||
|         if(RAND_pseudo_bytes(bp, padding) < 0) { |         if (RAND_pseudo_bytes(bp, padding) < 0) { | ||||||
|             OPENSSL_free(buffer); |             OPENSSL_free(buffer); | ||||||
|             return -1; |             return -1; | ||||||
|         } |         } | ||||||
| @@ -1505,11 +1505,11 @@ int dtls1_heartbeat(SSL *s) | |||||||
|     /* Sequence number */ |     /* Sequence number */ | ||||||
|     s2n(s->tlsext_hb_seq, p); |     s2n(s->tlsext_hb_seq, p); | ||||||
|     /* 16 random bytes */ |     /* 16 random bytes */ | ||||||
|     if(RAND_pseudo_bytes(p, 16) < 0) |     if (RAND_pseudo_bytes(p, 16) < 0) | ||||||
|         goto err; |         goto err; | ||||||
|     p += 16; |     p += 16; | ||||||
|     /* Random padding */ |     /* Random padding */ | ||||||
|     if(RAND_pseudo_bytes(p, padding) < 0) |     if (RAND_pseudo_bytes(p, padding) < 0) | ||||||
|         goto err; |         goto err; | ||||||
|  |  | ||||||
|     ret = dtls1_write_bytes(s, TLS1_RT_HEARTBEAT, buf, 3 + payload + padding); |     ret = dtls1_write_bytes(s, TLS1_RT_HEARTBEAT, buf, 3 + payload + padding); | ||||||
|   | |||||||
| @@ -2847,7 +2847,7 @@ int ssl3_send_client_key_exchange(SSL *s) | |||||||
|  |  | ||||||
|             EVP_PKEY_encrypt_init(pkey_ctx); |             EVP_PKEY_encrypt_init(pkey_ctx); | ||||||
|             /* Generate session key */ |             /* Generate session key */ | ||||||
|             if(RAND_bytes(premaster_secret, 32) <= 0) { |             if (RAND_bytes(premaster_secret, 32) <= 0) { | ||||||
|                 EVP_PKEY_CTX_free(pkey_ctx); |                 EVP_PKEY_CTX_free(pkey_ctx); | ||||||
|                 goto err; |                 goto err; | ||||||
|             } |             } | ||||||
|   | |||||||
| @@ -708,7 +708,7 @@ int ssl3_write_bytes(SSL *s, int type, const void *buf_, int len) | |||||||
|                 packlen *= 4; |                 packlen *= 4; | ||||||
|  |  | ||||||
|             wb->buf = OPENSSL_malloc(packlen); |             wb->buf = OPENSSL_malloc(packlen); | ||||||
|             if(!wb->buf) { |             if (!wb->buf) { | ||||||
|                 SSLerr(SSL_F_SSL3_WRITE_BYTES, ERR_R_MALLOC_FAILURE); |                 SSLerr(SSL_F_SSL3_WRITE_BYTES, ERR_R_MALLOC_FAILURE); | ||||||
|                 return -1; |                 return -1; | ||||||
|             } |             } | ||||||
|   | |||||||
| @@ -260,7 +260,7 @@ static int tls1_PRF(long digest_mask, | |||||||
|         if ((m << TLS1_PRF_DGST_SHIFT) & digest_mask) |         if ((m << TLS1_PRF_DGST_SHIFT) & digest_mask) | ||||||
|             count++; |             count++; | ||||||
|     } |     } | ||||||
|     if(!count) { |     if (!count) { | ||||||
|         /* Should never happen */ |         /* Should never happen */ | ||||||
|         SSLerr(SSL_F_TLS1_PRF, ERR_R_INTERNAL_ERROR); |         SSLerr(SSL_F_TLS1_PRF, ERR_R_INTERNAL_ERROR); | ||||||
|         goto err; |         goto err; | ||||||
|   | |||||||
| @@ -3849,7 +3849,7 @@ int tls1_process_heartbeat(SSL *s) | |||||||
|         memcpy(bp, pl, payload); |         memcpy(bp, pl, payload); | ||||||
|         bp += payload; |         bp += payload; | ||||||
|         /* Random padding */ |         /* Random padding */ | ||||||
|         if(RAND_pseudo_bytes(bp, padding) < 0) { |         if (RAND_pseudo_bytes(bp, padding) < 0) { | ||||||
|             OPENSSL_free(buffer); |             OPENSSL_free(buffer); | ||||||
|             return -1; |             return -1; | ||||||
|         } |         } | ||||||
| @@ -3935,13 +3935,13 @@ int tls1_heartbeat(SSL *s) | |||||||
|     /* Sequence number */ |     /* Sequence number */ | ||||||
|     s2n(s->tlsext_hb_seq, p); |     s2n(s->tlsext_hb_seq, p); | ||||||
|     /* 16 random bytes */ |     /* 16 random bytes */ | ||||||
|     if(RAND_pseudo_bytes(p, 16) < 0) { |     if (RAND_pseudo_bytes(p, 16) < 0) { | ||||||
|         SSLerr(SSL_F_TLS1_HEARTBEAT, ERR_R_INTERNAL_ERROR); |         SSLerr(SSL_F_TLS1_HEARTBEAT, ERR_R_INTERNAL_ERROR); | ||||||
|         goto err; |         goto err; | ||||||
|     } |     } | ||||||
|     p += 16; |     p += 16; | ||||||
|     /* Random padding */ |     /* Random padding */ | ||||||
|     if(RAND_pseudo_bytes(p, padding) < 0) { |     if (RAND_pseudo_bytes(p, padding) < 0) { | ||||||
|         SSLerr(SSL_F_TLS1_HEARTBEAT, ERR_R_INTERNAL_ERROR); |         SSLerr(SSL_F_TLS1_HEARTBEAT, ERR_R_INTERNAL_ERROR); | ||||||
|         goto err; |         goto err; | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -454,7 +454,7 @@ int SRP_Calc_A_param(SSL *s) | |||||||
| { | { | ||||||
|     unsigned char rnd[SSL_MAX_MASTER_KEY_LENGTH]; |     unsigned char rnd[SSL_MAX_MASTER_KEY_LENGTH]; | ||||||
|  |  | ||||||
|     if(RAND_bytes(rnd, sizeof(rnd)) <= 0) |     if (RAND_bytes(rnd, sizeof(rnd)) <= 0) | ||||||
|         return -1; |         return -1; | ||||||
|     s->srp_ctx.a = BN_bin2bn(rnd, sizeof(rnd), s->srp_ctx.a); |     s->srp_ctx.a = BN_bin2bn(rnd, sizeof(rnd), s->srp_ctx.a); | ||||||
|     OPENSSL_cleanse(rnd, sizeof(rnd)); |     OPENSSL_cleanse(rnd, sizeof(rnd)); | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user
	 Viktor Dukhovni
					Viktor Dukhovni