aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Only allow Microsoft assembler with no-asm on WindowsRichard Levitte2016-04-191-7/+29
| | | | | | | This also restores the possibility to have ml used with VC-WIN32 with no-asm, which was lost during the mk1mf -> unified transition. Reviewed-by: Andy Polyakov <appro@openssl.org>
* Build: Make 'test' depend on 'tests'Richard Levitte2016-04-192-3/+5
| | | | | | | | Because we have a directory 'test', the target 'test' may be confusing to make. However, if we make it depend on 'tests', which doesn't exist, make should never fail to run the actions. Reviewed-by: Andy Polyakov <appro@openssl.org>
* Prepare for 1.1.0-pre6-devMatt Caswell2016-04-192-4/+4
| | | | Reviewed-by: Rich Salz <rsalz@openssl.org>
* Prepare for 1.1.0-pre5 releaseOpenSSL_1_1_0-pre5Matt Caswell2016-04-192-3/+3
| | | | Reviewed-by: Rich Salz <rsalz@openssl.org>
* Unsigned chars can't be negativeMatt Caswell2016-04-181-4/+5
| | | | | | | Fix a problem where an unsigned char was being checked to see if it was negative. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Fix PKCS7 memory leakMatt Caswell2016-04-181-0/+1
| | | | | | | | | Commit f0e0fd51f was a bit over-zealous in removing a call to X509_STORE_CTX_cleanup(). The call in question was in a loop and was required to cleanup resources used on each iteration of the loop. Removing this resulted in a memory leak. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Make string_to_hex/hex_to_string publicRich Salz2016-04-1824-178/+175
| | | | | | Give the API new names, document it. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Rename some lowercase API'sRich Salz2016-04-1821-205/+231
| | | | | | | | | Make OBJ_name_cmp internal Rename idea_xxx to IDEA_xxx Rename get_rfc_xxx to BN_get_rfc_xxx Rename v3_addr and v3_asid functions to X509v3_... Reviewed-by: Richard Levitte <levitte@openssl.org>
* NOTES files will contain more requirements, make that explicitRichard Levitte2016-04-181-2/+2
| | | | Reviewed-by: Rich Salz <rsalz@openssl.org>
* Haiku x86-64 doesn't need RC4_CHAR.Jérôme Duval2016-04-181-1/+2
| | | | | | | * add a comment about Haiku being built with no-asm. Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org>
* Free methods on destroy.Ben Laurie2016-04-181-4/+10
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Free engine on error.Ben Laurie2016-04-181-0/+6
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Opacity.Ben Laurie2016-04-181-69/+65
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Signed/unsigned compare.Ben Laurie2016-04-181-1/+1
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Restore OCSP_basic_verify() error return semanticsRichard Levitte2016-04-173-15/+24
| | | | | | | | Recently, OCSP_basic_verify() was changed to always return 0 on error, when it would previously return 0 on error and < 0 on fatal error. This restores the previous semantics back. Reviewed-by: Rich Salz <rsalz@openssl.org>
* Remove declaration of function that isn't implementedRichard Levitte2016-04-172-2/+1
| | | | Reviewed-by: Rich Salz <rsalz@openssl.org>
* Add X509_STORE_CTX_set0_untrusted function.Dr. Stephen Henson2016-04-164-1/+12
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* Small OCSP fixupRichard Levitte2016-04-161-2/+2
| | | | | Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Stephen Henson <steve@openssl.org>
* Make many X509_xxx types opaque.Rich Salz2016-04-1526-353/+542
| | | | | | | | | Make X509_OBJECT, X509_STORE_CTX, X509_STORE, X509_LOOKUP, and X509_LOOKUP_METHOD opaque. Remove unused X509_CERT_FILE_CTX Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
* Don't use a default for --with-zlib-lib on Windows with option 'zlib'Richard Levitte2016-04-151-1/+1
| | | | | | | | To begin with, the default should have been the import library, not the DLL itself. However, we don't know what directory it's installed in either way, so we may as well demand the full path from the user Reviewed-by: Matt Caswell <matt@openssl.org>
* ex_libs settings have to be added to, not overriden, on Windows tooRichard Levitte2016-04-151-8/+8
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Update Travis and Appveyor for change to shared by defaultMatt Caswell2016-04-142-11/+11
| | | | | | | Update the Travis and Appveyor builds to explicitly state no-shared where applicable. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Make "shared" builds the defaultMatt Caswell2016-04-144-14/+14
| | | | | | | In most cases we expect that people will be using shared libraries not static ones, therefore we make that the default. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Fix ex_data locks issueMatt Caswell2016-04-145-9/+29
| | | | | | | | | | | Travis identified a problem with freeing the ex_data locks which wasn't quite right in ff2344052. Trying to fix it identified a further problem: the ex_data locks are cleaned up by OPENSSL_cleanup(), which is called explicitly by CRYPTO_mem_leaks(), but then later the BIO passed to CRYPTO_mem_leaks() is freed. An attempt is then made to use the ex_data lock already freed. Reviewed-by: Tim Hudson <tjh@openssl.org>
* Add Haiku support.Jérôme Duval2016-04-144-4/+46
| | | | | | Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org>
* Fix installation on VMS for no-stdio and no-autoalginitRichard Levitte2016-04-141-0/+2
| | | | | Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org>
* Fix installation for no-stdio and no-autoalginitRichard Levitte2016-04-142-2/+6
| | | | | Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org>
* Fix no-stdio and no-autoalginitMatt Caswell2016-04-146-223/+245
| | | | | | | | | | | | | | no-stdio does not work with the apps. Since the tests also need the apps it doesn't support that either. Therefore we disable building of both. no-autoalginit is not compatible with the apps because it requires explicit loading of the algorithms, and the apps don't do that. Therefore we disable building the apps for this option. Similarly the tests depend on the apps so we also disable the tests. Finally the whole point about no-autoalginit is to avoid excessive executable sizes when doing static linking. Therefore we disable "shared" if this option is selected. Reviewed-by: Richard Levitte <levitte@openssl.org>
* The err_cleanup() funtion is internal so shouldn't be exportedMatt Caswell2016-04-143-2/+2
| | | | | | | Running a "make update" wanted to add err_cleanup to libcrypto.num which is wrong. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Write POD page.Rich Salz2016-04-141-0/+28
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* Add SSL_SESSION_get0_hostname()Lyon Chen2016-04-143-0/+7
| | | | Reviewed-by: Rich Salz <rsalz@openssl.org>
* Ensure all locks are properly cleaned upMatt Caswell2016-04-149-10/+41
| | | | | | Some locks were not being properly cleaned up during close down. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Fix the spelling of "implement".Shlomi Fish2016-04-143-3/+3
| | | | | Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org>
* Fix AFALG kernel and headers mismatch problemMatt Caswell2016-04-142-0/+19
| | | | | | | | | | | | During Configure we attempt to check the kernel version of this platform to see whether we can compile the AFALG engine. If the kernel version looks recent enough then we enable AFALG. However when we compile e_afalg.c we check the version of the linux headers. If there is a mismatch between the linux headers and the currently running kernel then we don't compile the AFLAG engine and continue. This was causing a link error. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Bugfix: in asn1parse avoid erroneous len after a sub-sequenceViktor Dukhovni2016-04-141-3/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Introduced in: commit 79c7f74d6cefd5d32fa20e69195ad3de834ce065 Author: Ben Laurie <ben@links.org> Date: Tue Mar 29 19:37:57 2016 +0100 Fix buffer overrun in ASN1_parse(). Problem input: https://tools.ietf.org/html/draft-ietf-curdle-pkix-eddsa-00#section-8.1 -----BEGIN PUBLIC KEY----- MC0wCAYDK2VkCgECAyEAGb9ECWmEzf6FQbrBZ9w7lshQhqowtrbLDFw4rXAxZuE= -----END PUBLIC KEY----- Previously: 0:d=0 hl=2 l= 45 cons: SEQUENCE 2:d=1 hl=2 l= 8 cons: SEQUENCE 4:d=2 hl=2 l= 3 prim: OBJECT :1.3.101.100 9:d=2 hl=2 l= 1 prim: ENUMERATED :02 Error in encoding 140735164989440:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:../openssl/crypto/asn1/asn1_lib.c:148: Now: 0:d=0 hl=2 l= 45 cons: SEQUENCE 2:d=1 hl=2 l= 8 cons: SEQUENCE 4:d=2 hl=2 l= 3 prim: OBJECT :1.3.101.100 9:d=2 hl=2 l= 1 prim: ENUMERATED :02 12:d=1 hl=2 l= 33 prim: BIT STRING 0000 - 00 19 bf 44 09 69 84 cd-fe 85 41 ba c1 67 dc 3b ...D.i....A..g.; 0010 - 96 c8 50 86 aa 30 b6 b6-cb 0c 5c 38 ad 70 31 66 ..P..0....\8.p1f 0020 - e1 . Reviewed-by: Richard Levitte <levitte@openssl.org>
* Don't use deprecated CONF_modules_free() in testsViktor Dukhovni2016-04-141-1/+0
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* make updateMatt Caswell2016-04-132-59/+67
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* Add a CHANGES entry for removal of Configure optionsMatt Caswell2016-04-131-1/+6
| | | | | | Document removal of no-aes, no-hmac, no-rsa, no-sha and no-md5. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Update INSTALL file based on feedbackMatt Caswell2016-04-131-3/+4
| | | | | | Update the config options documentation based on feedback. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Update the INSTALL instructions with lots of optionsMatt Caswell2016-04-131-36/+226
| | | | | | | There were a lot of options missing from INSTALL. This adds descriptions for them. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Remove OPENSSL_NO_HMACMatt Caswell2016-04-131-3/+0
| | | | | | no-hmac is no longer an option so remove OPENSSL_NO_HMAC guards. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Remove OPENSSL_NO_SHA guardsMatt Caswell2016-04-134-16/+1
| | | | | | no-sha is no longer an option so remove OPENSSL_NO_SHA guards. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Remove OPENSSL_NO_AES guardsMatt Caswell2016-04-1313-485/+413
| | | | | | | no-aes is no longer a Configure option and therefore the OPENSSL_NO_AES guards can be removed. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Remove no-aes, no-rsa, no-sha, no-md5 and no-hmacMatt Caswell2016-04-131-5/+0
| | | | | | | | These algorithms are fundamental and extensively used. The "no-" options do not work either in 1.1.0 or in other released branches. Therefore the ability to disable them should be removed. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Need err_load_crypto_strings_int declared.Rich Salz2016-04-131-1/+1
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* make updateDr. Stephen Henson2016-04-131-1/+1
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Remove check_defer()Dr. Stephen Henson2016-04-135-28/+3
| | | | | | | | | | | The check_defer() function was used to ensure that EVP_cleanup() was always called before OBJ_cleanup(). The new cleanup code ensures this so it is no longer needed. Remove obj_cleanup() call in OID config module: it is not needed any more either. Reviewed-by: Matt Caswell <matt@openssl.org>
* Rename internal symbol to follow internal naming patternRichard Levitte2016-04-131-1/+1
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Cleanup libcrypto.num and make updateRichard Levitte2016-04-132-6/+4
| | | | Reviewed-by: Matt Caswell <matt@openssl.org>
* Move a declaration that's private to libcryptoRichard Levitte2016-04-133-1/+17
| | | | | | Don't expose purely libcrypto internal symbols, even to libssl. Reviewed-by: Matt Caswell <matt@openssl.org>
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-19 10:26:57 +0000