generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
14,767 Commits 16 Branches 258 Tags
Commit Graph

7285 Commits

Author SHA1 Message Date
Pascal Cuoq
9f6795e7d2 BN_usub: Don't copy when r and a the same 
Signed-off-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Rich Salz <rsalz@akamai.com>

RT #4100, MR #1264
 2015-11-20 22:29:53 +01:00
Dr. Stephen Henson
e20b472751 Add support for signer_digest option in TS. 
Based on PR#2145

Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-11-20 13:40:53 +00:00
Andy Polyakov
ce24d2ed23 aes/asm/vpaes-ppc.pl: eliminate overhung stores in misaligned cases. 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-11-18 11:56:21 +01:00
Rich Salz
bf1605518a Rename RSA_eay_xxx to rsa_ossl_xxx 
Final part of flushing out SSLEay API's.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-11-17 17:14:28 -05:00
Richard Levitte
a22c01244b make update 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-11-17 15:17:36 +01:00
Matt Caswell
9ae720b4dc Check error return from sysconf in secure memory code 
We use the sysconf function to provide details about the page size in the
secure memory code. This function can return -1 on error so we should check
for this before proceeding.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
 2015-11-17 11:23:51 +00:00
Andy Polyakov
e4693b4e2a bn/asm/ppc64-mont.pl: adapt for little-endian. 
The problem remained unnoticed so far, because it's never called by default.
You have to craft OPENSSL_ppccap environment variable to trigger the problem.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-11-16 13:40:41 +01:00
Andy Polyakov
27186da715 crypto/sec_mem.c: fix anonymous mmap on legacy systems. 
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
 2015-11-16 13:15:00 +01:00
Andy Polyakov
9d0e4dc635 bn/asm/s390x.S: improve performance on z196 and z13 by up to 26%. [even z10 is couple percent faster]. Triggered by RT#4128, but solves the problem by real modulo-scheduling. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-11-16 13:10:45 +01:00
Andy Polyakov
a5fd24d19b aesni-sha256-x86_64.pl: fix crash on AMD Jaguar. 
It was also found that stich performs suboptimally on AMD Jaguar, hence
execution is limited to XOP-capable and Intel processors.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
 2015-11-16 13:06:10 +01:00
Viktor Dukhovni
39e46af6bb Explicit OpenSSL_version_num() implementation prototype 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-11-15 00:02:57 -05:00
Dr. Stephen Henson
699f163524 Use accessors for X509_print_ex(). 
Print certificate details using accessor functions.

Since X509_CERT_AUX_print is only used in one place and can't
be used by applications (it uses an internal X509_CERT_AUX structure)
this has been removed and replaced by a function X509_aux_print which
takes an X509 pointer instead.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-11-14 00:13:08 +00:00
Dr. Stephen Henson
748118a838 Add new X509 accessors 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-11-14 00:13:08 +00:00
Graeme Perrow
0704343f13 RT32671: wrong multiple errs TS_check_status_info 
Reviewed-by: Tim Hudson <tjh@openssl.org>
Signed-off-by: Rich Salz <rsalz@openssl.org>
 2015-11-13 16:36:43 -05:00
Andy Polyakov
fbab8badde modes/asm/ghash-armv4.pl: extend Apple fix to all clang cases. 
Triggered by RT#3989.

Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-11-11 22:09:18 +01:00
Matt Caswell
90945fa31a Continue standardising malloc style for libcrypto 
Continuing from previous commit ensure our style is consistent for malloc
return checks.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
 2015-11-09 22:48:41 +00:00
Dr. Stephen Henson
b8fb59897b Rebuild error source files. 
Rebuild error source files: the new mkerr.pl functionality will now
pick up and translate static function names properly.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-11-05 15:48:37 +00:00
Dr. Stephen Henson
525cc5e777 fix discrepancy 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-11-05 15:48:37 +00:00
Richard Levitte
2443030466 BIO_s_datagram() ctrl doesn't support SEEK/TELL, so don't pretend it does 
Reviewed-by: Andy Polyakov <appro@openssl.org>
 2015-11-02 17:36:49 +01:00
Richard Levitte
4b72d5f80c Have BIO_get_conn_int_port use BIO_ctrl instead BIO_int_ctrl 
BIO_int_ctrl isn't made for the purpose BIO_get_conn_int_port used it
for.

This also changes BIO_C_GET_CONNECT to actually return the port
instead of assigning it to a pointer that was never returned back to
the caller.

Reviewed-by: Andy Polyakov <appro@openssl.org>
 2015-11-02 17:36:49 +01:00
Rich Salz
b92fafcc2f Remove des_ver.h; broke build. 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-11-01 08:09:57 -05:00
Rich Salz
b0700d2c8d Replace "SSLeay" in API with OpenSSL 
All instances of SSLeay (any combination of case) were replaced with
the case-equivalent OpenSSL.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-30 17:21:42 -04:00
Matt Caswell
8ba708e516 Reorganise state machine files 
Pull out the state machine into a separate sub directory. Also moved some
functions which were nothing to do with the state machine but were in state
machine files. Pulled all the SSL_METHOD definitions into one place...most
of those files had very little left in them any more.

Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-30 08:38:18 +00:00
Pascal Cuoq
94b3664a52 BN_GF2m_mod_inv(): check bn_wexpand return value 
Signed-off-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Rich Salz <rsalz@akamai.com>

MR #1276, RT #4107
 2015-10-29 20:34:24 +01:00
Ben Laurie
d2c3d5d4fc Probably fix travis (wine build). 
Reviewed-by: Stephen Henson <steve@openssl.org>
 2015-10-25 17:23:57 +00:00
Ben Laurie
84cf97af06 Improve make depend. 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-24 17:34:21 +01:00
Ben Laurie
2f1a5d1694 Fix undeclared variable warnings. 
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
 2015-10-24 16:42:51 +01:00
Alessandro Ghedini
070c23325a Remove useless code 
RT#4081

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-23 19:52:08 +02:00
Alessandro Ghedini
8cf9d71a3a Check memory allocation 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-23 19:52:08 +02:00
Alessandro Ghedini
d900a015b5 Fix typos 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-23 19:52:08 +02:00
Alessandro Ghedini
c2319cf9fc Set salt length after the malloc has succeeded 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-23 19:52:08 +02:00
Alessandro Ghedini
3f6c769187 Fix memory leaks and other mistakes on errors 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-23 19:52:08 +02:00
Alessandro Ghedini
8acaabec42 Replace malloc+strlcpy with strdup 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-23 19:52:08 +02:00
Alessandro Ghedini
dad0b512e6 Remove bugs/ and crypto/threads/ 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-10-23 18:41:04 +02:00
Richard Levitte
5212d39bd9 Only include SRP headers when OPENSSL_NO_SRP is undefined 
[fixes github issue #447]

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-10-22 23:45:45 +02:00
Richard Levitte
15db6a40d3 make update 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-10-21 23:57:29 +02:00
Richard Levitte
a0e8da5d92 Don't forget to load the CT error strings 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-10-21 23:57:29 +02:00
Richard Levitte
cc79f06c0a Handle CT error macros separately 
Because the default error macro generator assumes the header file with
error macros is in include/openssl and therefore generates a C file
with error texts that include <openssl/{name}.h>, we need to generate
the error macros and texts for CT separately, since the CT module
doesn't follow the default criteria.

Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-10-21 23:57:29 +02:00
Richard Levitte
788d72ba02 ct_locl.h moved, reflect it in crypto/ct/Makefile 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-10-18 21:31:21 +02:00
Richard Levitte
338cb76220 make update 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-18 20:35:22 +02:00
Richard Levitte
eb6d5f9983 Because ct_locl.h is used between modules, move it to internal headers 
Rename it to ct_int.h

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-18 20:35:22 +02:00
Dr. Stephen Henson
7f3e6f8c24 set string type when embedding 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-10-18 12:13:54 +01:00
Matt Caswell
8b7080b0b7 Remove Obsolete engines 
There are a number of engines in the OpenSSL source code which are now
obsolete. The following engines have been removed: 4758cca, aep, atalla,
cswift, nuron, sureware.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 17:02:06 +01:00
Dr. Stephen Henson
f51e5ed6b4 Fix self signed handling. 
Don't mark a certificate as self signed if keyUsage is present and
certificate signing not asserted.

PR#3979

Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
34a42e1489 embed CRL serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
81e4943843 embed certificate serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
4392479c08 embed value field of X509_EXTENSION 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
4002da0f52 Handle embed flag in ASN1_STRING_copy(). 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:57 +01:00
Emilia Kasper
6f73d28c20 Remove EVP_CHECK_DES_KEY 
Thanks to the OpenBSD community for bringing this to our attention.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-14 18:45:33 +02:00
Emilia Kasper
b84939cc96 ct_locl.h: fix some comments 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-14 17:19:35 +02:00