summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Collapse)Author
2014-07-09Remove RSA_memory_lock(). This undocumented function sort-of serializes yourMiod Vallat
RSA components to memory and clears them, but there is no unserializing function, so its usefulness is close to zero. A grep through the ports tree sources show that it is only present in ports embedding their own openssl copy, and never used otherwise. ok jsing@
2014-07-09remove unused dynamic_cmd_defns_empty structure.bcook
ok miod@ deraadt@ guenther@
2014-07-09RSA_NULL used to be a compile option allowing the RSA interfaces to beMiod Vallat
compiled-in, with nonfunctional code, to be able to cope with the RSA patent. However, we don't use this option, and the RSA patent has expired more than 10 years ago, so just drop this piece.
2014-07-09KNFMiod Vallat
2012-10-13import OpenSSL-1.0.1cDamien Miller
2009-04-06import of OpenSSL 0.9.8kDamien Miller
2014-07-08Mark the weakened 40-bit export ciphers as invalid - no one in their rightJoel Sing
mind should be using them. ok deraadt@ miod@
2014-07-08Remove SSL_FIPS.Joel Sing
ok deraadt@ miod@
2014-07-08Nuke SSL_NOT_EXP since it does nothing.Joel Sing
ok deraadt@ miod@
2014-07-08Document SSL_CIPHER_description() will now use asprintf if passed a NULLMiod Vallat
buffer.
2014-07-08Do not suggest using BUF_strdup() preferably to strdup() for fallaciousMiod Vallat
reasons.
2014-07-08Match the current state of the code.Miod Vallat
2014-07-08replace malloc(strlen())/strlcpy with strdupbcook
ok beck@ jsing@
2014-07-08Define SMALL_REGISTER_BANK on arm and vax, for it generates faster code forMiod Vallat
these systems (vax being 30% faster!). (surprisingly, the prime candidate for SMALL_REGISTER_BANK, SuperH, runs actually slower in that case)
2014-07-08Remove undocumented _des_crypt() interface and its companion header file,Miod Vallat
which had never been installed, so it's unlikely something ever used this in the last 15~20 years. ok deraadt@ jsing@ beck@
2014-07-08pedantic avoidance of division by zero, likely not actuallyBob Beck
possible to hit for real. ok miod@ jsing@
2014-07-08add missing stdint. include for uint32_t, etc.bcook
ok beck@ jsing@
2014-07-08We do not care about broken Borland C pre-processors.Joel Sing
ok beck@ deraadt@
2014-07-08Pretty much everything has SO_REUSEADDR - nuke the #ifdefs.Joel Sing
ok beck@
2014-07-08We have EAI_FAMILY - remove the #ifdefs.Joel Sing
ok beck@
2014-07-08More KNF.Joel Sing
2014-07-08Avoid locking in BIO_get_port() by using getservbyname_r() instead ofJoel Sing
getservbyname(). While here, provide a common/single return path. ok deraadt@
2014-07-08KNF.Joel Sing
2014-07-08KNF.Joel Sing
2014-07-08More KNF.Joel Sing
2014-07-08Simplify various BIO_sock_* fuctions - less code, better variable names,Joel Sing
correct types and fewer casts. ok deraadt@ miod@
2014-07-03Memory-leak-in-error-path of the day in X509_ATTRIBUTE_set1_data().Miod Vallat
ok logan@ beck@
2014-07-02Memory leak in error path of the day, from clang via dhill@bitrig;Miod Vallat
ok dhill@bitrig
2014-07-02pk7_doit.c r1.20 introduced a NULL check that ensures that the signatureJoel Sing
contents are not NULL, however this breaks detached signature processing. Fix this by allowing the signature contents to be NULL when operating with a detached signature. Found the hard way by sthen@. ok sthen@
2014-07-02Remove more unused cruft.Joel Sing
No objection from the usual suspects.
2014-07-02KNF.Joel Sing
2014-07-01Avoid a NULL deref in i2d_ECPrivateKey() when an EC_KEY lacks the public keyMiod Vallat
member (which is perfectly acceptable). From BoringSSL (Adam Langley), commit f71a27920a903c9c36bcb31e68781b17674d3fd2
2014-06-30simplify and unobfuscate a variable to fix a mem leak.Ted Unangst
original diff by logan
2014-06-30fix the identical leak in three different files.Ted Unangst
reported by Brent Cook, original diff by logan
2014-06-29Free "data" when it's no longer in use.Loganaden Velvindron
(Thanks to Brent Cook) OK from jsing@
2014-06-29Fix file descriptor leakLoganaden Velvindron
(Thanks to Brent Cook) OK from jsing@
2014-06-29Remove yet another unused file... a backup copy (minus copyright andJoel Sing
includes) follows this commit message:
2014-06-29KNF.Joel Sing
I just spent too long chasing a bug in here and really should have done this first. Gem of the day... is it an if test or a for loop? No, it is a super ifloop! if (!(flags & PKCS7_NOVERIFY)) for (k = 0; k < sk_X509_num(signers); k++) {
2014-06-29Remove another unused source file - I got suspicious when I found aJoel Sing
function that ended with: if (ret & 0x01) if (ret & V_ASN1_CONSTRUCTED) }
2014-06-29More KNF.Joel Sing
2014-06-29correct issetugid sense as spotted by Stijn van Drongelen.Theo de Raadt
Substantially expand the conditional to reduce potential for error.
2014-06-28Add a missing word.Jeremie Courreges-Anglas
2014-06-28Fix a memory leak and another one that occurs in the error paths.Loganaden Velvindron
(Thanks to Brent Cook) OK from tedu@
2014-06-28Fix 9 memory leaks.Loganaden Velvindron
(Thanks to Brent Cook) With help from tedu@ OK from tedu@
2014-06-28Fix 2 memory leaks.Loganaden Velvindron
(Thanks to Brent Cook) OK from tedu@
2014-06-28Use strtonum() instead of atoi(), and then impose what are we thinkTheo de Raadt
are the current range checks. Help from millert and lteo. Please test now that it is deployed and let us know if any numbers are off.. ok lteo
2014-06-27When building a BN on the stack in BN_div(), make sure to initialize all itsMiod Vallat
fields (i.e. the flags field) before using it. This is currently harmless, but might not be if we end up invoking other BN functions checking for constant-time processing requirement in the future.
2014-06-27save_errno botch; spotted by miodTheo de Raadt
2014-06-27hand-KNF macro the do { } while loopsTheo de Raadt
2014-06-27hand-KNF the remaining bitsTheo de Raadt