Commits · 295c3f41113f4ff537fb95e29f7f709ba03c6a21 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

26 Mar, 2015 29 commits
- Move s->rstate to s->rlayer.rstate · 295c3f41
  Matt Caswell authored Feb 03, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  295c3f41
- Move s->packet and s->packet_length into s->rlayer · 7a7048af
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  7a7048af
- Remove unneccessary use of accessor function now code is moved into record · 24a90afd
  Matt Caswell authored Feb 02, 2015
```
layer

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  24a90afd
- Make rrec, wrec, rbuf and wbuf fully private to the record layer. Also, clean · 88c23039
  Matt Caswell authored Feb 02, 2015
```
up some access to them. Now that various functions have been moved into the
record layer they no longer need to use the accessor macros.

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  88c23039
- Removed dependency on rrec from heartbeat processing · 2c60ed04
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  2c60ed04
- Introduce macro RECORD_LAYER_setup_comp_buffer · bd2e3a95
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  bd2e3a95
- Fix bug where rrec was being released...should have been removed by one of · 75d40c93
  Matt Caswell authored Feb 02, 2015
```
the earlier record layer commits

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  75d40c93
- Move ssl3_pending into the record layer · d5a25ae0
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  d5a25ae0
- Remove RECORD_LAYER_set_ssl and introduce RECORD_LAYER_init · c036e210
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  c036e210
- Provide RECORD_LAYER_set_data function · bbcd6d7f
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  bbcd6d7f
- Introduce the functions RECORD_LAYER_release, RECORD_LAYER_read_pending, and · f161995e
  Matt Caswell authored Feb 02, 2015
```
RECORD_LAYER_write_pending.

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  f161995e
- Create RECORD_LAYER_clear function. · af9752e5
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  af9752e5
- Tidy up rec_layer.h. Add some comments regarding which functions should be · a0682a5e
  Matt Caswell authored Feb 02, 2015
```
being used for what purpose.

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  a0682a5e
- Moved s3_pkt.c, s23_pkt.c and d1_pkt.c into the record layer. · 999005e4
  Matt Caswell authored Feb 02, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  999005e4
- Split out non record layer functions out of s3_pkt.c and d1_pkt.c into · c103c7e2
  Matt Caswell authored Feb 02, 2015
```
the new files s3_msg.c and s1_msg.c respectively.

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  c103c7e2
- Move more SSL3_RECORD oriented functions into ssl3_record.c · 02a36fda
  Matt Caswell authored Feb 01, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  02a36fda
- Move SSL3_RECORD oriented functions into ssl3_record.c · fe589e61
  Matt Caswell authored Feb 01, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  fe589e61
- Move SSL3_BUFFER set up and release code into ssl3_buffer.c · 76042020
  Matt Caswell authored Feb 01, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  76042020
- Move s->s3->wrec to s>rlayer>wrec · 4e08d4a8
  Matt Caswell authored Feb 01, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  4e08d4a8
- Encapsulate s->s3->wrec · 92ffa83d
  Matt Caswell authored Feb 01, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  92ffa83d
- Move s->s3->rrec to s->rlayer->rrec · cd986e55
  Matt Caswell authored Jan 30, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  cd986e55
- Encapsulate s->s3->rrec · 258f8721
  Matt Caswell authored Jan 30, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  258f8721
- Move s->s3->wbuf to s->rlayer->wbuf · ab97b2cd
  Matt Caswell authored Jan 30, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  ab97b2cd
- Encapsulate access to s->s3->wbuf · db9a32e7
  Matt Caswell authored Jan 30, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  db9a32e7
- Move s->s3->rrec into s->rlayer · 33d23b87
  Matt Caswell authored Jan 30, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  33d23b87
- Encapsulate SSL3_BUFFER and all access to s->s3->rbuf. · 28d59af8
  Matt Caswell authored Jan 30, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  28d59af8
- Create a RECORD_LAYER structure and move read_ahead into it. · 52e1d7b1
  Matt Caswell authored Jan 30, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  52e1d7b1
- update ordinals · 8e3f0c98
  Dr. Stephen Henson authored Mar 25, 2015
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
  8e3f0c98
- Move more internal only functions to asn1_locl.h · c315a547
  Dr. Stephen Henson authored Mar 25, 2015
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
  c315a547
25 Mar, 2015 11 commits

Rich Salz authored Mar 25, 2015



This gets EC_GROUP_clear_free EC_GROUP_free, EC_KEY_free,
EC_POINT_clear_free, EC_POINT_free

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

8fdc3734

Resolve swallowed returns codes · 17dd65e6

Matt Caswell authored Mar 24, 2015



The recent updates to libssl to enforce stricter return code checking, left
a small number of instances behind where return codes were being swallowed
(typically because the function they were being called from was declared as
void). This commit fixes those instances to handle the return codes more
appropriately.

Reviewed-by: Richard Levitte <levitte@openssl.org>

17dd65e6

make update · cb14aec7
Dr. Stephen Henson authored Mar 25, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
cb14aec7
Move internal only ASN.1 functions to asn1_locl.h · c1ee50aa
Dr. Stephen Henson authored Mar 25, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
c1ee50aa

Remove X509_ATTRIBUTE hack. · e20b5727

Dr. Stephen Henson authored Mar 25, 2015



The X509_ATTRIBUTE structure includes a hack to tolerate malformed
attributes that encode as the type instead of SET OF type. This form
is never created by OpenSSL and shouldn't be needed any more.

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

e20b5727

free NULL cleanup · ca3a82c3

Rich Salz authored Mar 25, 2015



This commit handles BIO_ACCEPT_free BIO_CB_FREE BIO_CONNECT_free
BIO_free BIO_free_all BIO_vfree

Reviewed-by: Matt Caswell <matt@openssl.org>

ca3a82c3

Support key loading from certificate file · 2011b169

Dr. Stephen Henson authored Feb 16, 2015



Support loading of key and certificate from the same file if
SSL_CONF_FLAG_REQUIRE_PRIVATE is set. This is done by remembering the
filename used for each certificate type and attempting to load a private
key from the file when SSL_CONF_CTX_finish is called.

Update docs.

Reviewed-by: Richard Levitte <levitte@openssl.org>

2011b169

make depend · 9837bfbf
Dr. Stephen Henson authored Mar 25, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
9837bfbf
make X509_NAME opaque · 2743e38c
Dr. Stephen Henson authored Mar 16, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
2743e38c
Fix bug in s_client. Previously default verify locations would only be loaded · 70e5fd87
Matt Caswell authored Feb 25, 2015
```
if CAfile or CApath were also supplied and successfully loaded first.

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
70e5fd87
Fix HMAC to pass invalid key len test · c62e94d8
Matt Caswell authored Feb 10, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
c62e94d8