- 23 May, 2016 19 commits
-
-
Richard Levitte authored
Reviewed-by:Rich Salz <rsalz@openssl.org>
-
Richard Levitte authored
Reviewed-by: -
Richard Levitte authored
Especially on Windows, the .pl suffix is associated with the perl interpreter, and therefore make those scripts usable as commands of their own. On VMS, it simply looks better. Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Todd Short authored
The buf-freelists option was removed in master. There may be some things that try to disable it, so don't error out. Reviewed-by:
Matt Caswell <matt@openssl.org>
-
Rich Salz authored
Add script to find unused err/reason codes Remove unused reason codes. Remove entries for unused functions Reviewed-by: -
Dr. Stephen Henson authored
Reviewed-by:Viktor Dukhovni <viktor@openssl.org>
-
Dr. Stephen Henson authored
Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Dr. Stephen Henson authored
Reviewed-by: -
Dr. Stephen Henson authored
Add new function PEM_write_bio_PrivateKey_traditional() to enforce the use of legacy "traditional" private key format. Add -traditional option to pkcs8 and pkey utilities. Reviewed-by: -
Richard Levitte authored
README is a fairly independent document, and so is INSTALL. NOTES are merely addendums to INSTALL. Therefore , INSTALL.DJGPP and README.PERL get renamed to NOTES.DJGPP and NOTES.PERL. Reviewed-by: -
Rich Salz authored
Reviewed-by:Richard Levitte <levitte@openssl.org>
-
Todd Short authored
Reviewed-by:
-
FdaSilvaYY authored
Fix possible leak in danetest.c Reviewed-by:
-
FdaSilvaYY authored
from BoringSSL 306ece31bcaaed49e0240a2e5555f8901ebb2d45 Reviewed-by:
-
FdaSilvaYY authored
Inspired from PR #873. Nearly same as 2bbf0baa . Reviewed-by:
-
FdaSilvaYY authored
Reviewed-by:
-
Richard Levitte authored
Reviewed-by:
-
- 22 May, 2016 9 commits
-
-
Richard Levitte authored
LHASH_NODE was used internally, which doesn't work when configured 'no-deprecated' Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Richard Levitte authored
(i.e. remove some bugs) Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Kurt Roeckx authored
Found by tis-interpreter Reviewed-by: -
Kurt Roeckx authored
Found by tis-interpreter Reviewed-by:
-
- 21 May, 2016 5 commits
-
-
Richard Levitte authored
Reviewed-by: -
Dr. Stephen Henson authored
RT#4471 Reviewed-by:Tim Hudson <tjh@openssl.org>
-
FdaSilvaYY authored
tofree pointer is no more used... Reviewed-by:
-
Rich Salz authored
Reviewed-by: -
Rich Salz authored
Fix some code examples, trailing whitespace Fix TBA sections in verify, remove others. Remove empty sections Use Mixed Case not ALL CAPS in head2 Enhance doc-nits script. Remove extra =cut line Reviewed-by:
-
- 20 May, 2016 7 commits
-
-
Matt Caswell authored
The function InitOnceExceuteOnce is the best way to support the implementation of CRYPTO_THREAD_run_once() on Windows. Unfortunately WinXP doesn't have it. To get around that we had two different implementations: one for WinXP and one for later versions. Which one was used was based on the value of _WIN32_WINNT. This approach was starting to cause problems though because other parts of OpenSSL assume _WIN32_WINNT is going to be 0x0501 and crashes were occurring dependant on include file ordering. In addition a conditional based on _WIN32_WINNT had made its way into a public header file through commit 5c4328f0 . This is problematic because the value of this macro can vary between OpenSSL build time and application build time. The simplest solution to this mess is just to always use the WinXP version of CRYPTO_THREAD_run_once(). Its perhaps slightly sub-optimal but probably not noticably. GitHub Issue #1086 Reviewed-by:
-
Rich Salz authored
Rename sk_xxx to OPENSSL_sk_xxx and _STACK to OPENSSL_STACK Rename lh_xxx API to OPENSSL_LH_xxx and LHASH_NODE to OPENSSL_LH_NODE Make lhash stuff opaque. Use typedefs for function pointers; makes the code simpler. Remove CHECKED_xxx macros. Add documentation; remove old X509-oriented doc. Add API-compat names for entire old API Reviewed-by:Dr. Stephen Henson <steve@openssl.org>
-
Richard Levitte authored
Reviewed-by:Andy Polyakov <appro@openssl.org>
-
Richard Levitte authored
Giving setbuf() a 64-bit pointer isn't faulty, as the argument is passed by a 64-bit register anyway, so you only get a warning (MAYLOSEDATA2) pointing out that only the least significant 32 bits will be used. However, we know that a FILE* returned by fopen() and such really is a 32-bit pointer (a study of the system header files make that clear), so we temporarly turn off that warning when calling setbuf(). Reviewed-by: -
Matt Caswell authored
This adds an async IO test. There are two test runs. The first one does a normal handshake with lots of async IO events. The second one does the same but this time breaks up all the written records into multiple records of one byte in length. We do this all the way up until the CCS. Reviewed-by: -
Matt Caswell authored
In the new state machine if using nbio and we get the header of a handshake message is one record with the body in the next, with an nbio event in the middle, then the connection was failing. This is because s->init_num was getting reset. We should only reset it after we have read the whole message. RT#4394 Reviewed-by: -
David Benjamin authored
ChangeCipherSpec messages have a defined value. They also may not occur in the middle of a handshake message. The current logic will accept a ChangeCipherSpec with value 2. It also would accept up to three bytes of handshake data before the ChangeCipherSpec which it would discard (because s->init_num gets reset). Instead, require that s->init_num is 0 when a ChangeCipherSpec comes in. RT#4391 Reviewed-by:
-
