- Apr 20, 2016
-
-
Andy Polyakov authored
Reviewed-by:Richard Levitte <levitte@openssl.org>
-
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by:
-
- Apr 18, 2016
-
-
Matt Caswell authored
Fix a problem where an unsigned char was being checked to see if it was negative. Reviewed-by: -
Matt Caswell authored
Commit f0e0fd51 was a bit over-zealous in removing a call to X509_STORE_CTX_cleanup(). The call in question was in a loop and was required to cleanup resources used on each iteration of the loop. Removing this resulted in a memory leak. Reviewed-by:
-
Rich Salz authored
Give the API new names, document it. Reviewed-by: -
Rich Salz authored
Make OBJ_name_cmp internal Rename idea_xxx to IDEA_xxx Rename get_rfc_xxx to BN_get_rfc_xxx Rename v3_addr and v3_asid functions to X509v3_... Reviewed-by: -
Ben Laurie authored
Reviewed-by:Matt Caswell <matt@openssl.org>
-
Ben Laurie authored
Reviewed-by: -
Ben Laurie authored
Reviewed-by:
-
- Apr 17, 2016
-
-
Richard Levitte authored
Recently, OCSP_basic_verify() was changed to always return 0 on error, when it would previously return 0 on error and < 0 on fatal error. This restores the previous semantics back. Reviewed-by:Rich Salz <rsalz@openssl.org>
-
- Apr 16, 2016
-
-
Dr. Stephen Henson authored
Reviewed-by: -
Richard Levitte authored
Reviewed-by:
Stephen Henson <steve@openssl.org>
-
- Apr 15, 2016
-
-
Rich Salz authored
Make X509_OBJECT, X509_STORE_CTX, X509_STORE, X509_LOOKUP, and X509_LOOKUP_METHOD opaque. Remove unused X509_CERT_FILE_CTX Reviewed-by:
-
- Apr 14, 2016
-
-
Matt Caswell authored
Travis identified a problem with freeing the ex_data locks which wasn't quite right in ff234405 . Trying to fix it identified a further problem: the ex_data locks are cleaned up by OPENSSL_cleanup(), which is called explicitly by CRYPTO_mem_leaks(), but then later the BIO passed to CRYPTO_mem_leaks() is freed. An attempt is then made to use the ex_data lock already freed. Reviewed-by:
Tim Hudson <tjh@openssl.org>
-
Matt Caswell authored
Running a "make update" wanted to add err_cleanup to libcrypto.num which is wrong. Reviewed-by: -
Matt Caswell authored
Some locks were not being properly cleaned up during close down. Reviewed-by: -
Shlomi Fish authored
Reviewed-by:
-
Viktor Dukhovni authored
Introduced in: commit 79c7f74d Author: Ben Laurie <ben@links.org> Date: Tue Mar 29 19:37:57 2016 +0100 Fix buffer overrun in ASN1_parse(). Problem input: https://tools.ietf.org/html/draft-ietf-curdle-pkix-eddsa-00#section-8.1 -----BEGIN PUBLIC KEY----- MC0wCAYDK2VkCgECAyEAGb9ECWmEzf6FQbrBZ9w7lshQhqowtrbLDFw4rXAxZuE= -----END PUBLIC KEY----- Previously: 0:d=0 hl=2 l= 45 cons: SEQUENCE 2:d=1 hl=2 l= 8 cons: SEQUENCE 4:d=2 hl=2 l= 3 prim: OBJECT :1.3.101.100 9:d=2 hl=2 l= 1 prim: ENUMERATED :02 Error in encoding 140735164989440:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:../openssl/crypto/asn1/asn1_lib.c:148: Now: 0:d=0 hl=2 l= 45 cons: SEQUENCE 2:d=1 hl=2 l= 8 cons: SEQUENCE 4:d=2 hl=2 l= 3 prim: OBJECT :1.3.101.100 9:d=2 hl=2 l= 1 prim: ENUMERATED :02 12:d=1 hl=2 l= 33 prim: BIT STRING 0000 - 00 19 bf 44 09 69 84 cd-fe 85 41 ba c1 67 dc 3b ...D.i....A..g.; 0010 - 96 c8 50 86 aa 30 b6 b6-cb 0c 5c 38 ad 70 31 66 ..P..0....\8.p1f 0020 - e1 . Reviewed-by:
-
- Apr 13, 2016
-
-
Matt Caswell authored
no-sha is no longer an option so remove OPENSSL_NO_SHA guards. Reviewed-by: -
Matt Caswell authored
no-aes is no longer a Configure option and therefore the OPENSSL_NO_AES guards can be removed. Reviewed-by: -
Rich Salz authored
Reviewed-by: -
Dr. Stephen Henson authored
The check_defer() function was used to ensure that EVP_cleanup() was always called before OBJ_cleanup(). The new cleanup code ensures this so it is no longer needed. Remove obj_cleanup() call in OID config module: it is not needed any more either. Reviewed-by: -
Richard Levitte authored
Don't expose purely libcrypto internal symbols, even to libssl. Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Richard Levitte authored
Instead of absolute hard coding of the libz library name, have it use the macro LIBZ, which is set to defaults we know in case it's undefined. This allows our configuration to set something that's sane on current or older platforms, and allows the user to override it by defining LIBZ themselves. Reviewed-by: -
Matt Caswell authored
There is a preference for suffixes to indicate that a function is internal rather than prefixes. Note: the suffix is only required to disambiguate internal functions and public symbols with the same name (but different case) Reviewed-by:
-
Matt Caswell authored
There was a lot of naming inconsistency, so we try and standardise on one form. Reviewed-by:
-
Matt Caswell authored
CONF_modules_free() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
ENGINE_cleanup() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
OBJ_cleanup() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
EVP_cleanup() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
BIO_sock_cleanup() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
CRYPTO_cleanup_all_ex_data() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
RAND_cleanup() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
ERR_free_strings() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
Matt Caswell authored
COMP_zlib_cleanup() should not be called expicitly - we should leave auto-deinit to clean this up instead. Reviewed-by:
-
