- 14 Sep, 2016 1 commit
-
-
Matt Caswell authored
The internal SRP function t_fromb64() converts from base64 to binary. It does not validate that the size of the destination is sufficiently large - that is up to the callers. In some places there was such a check, but not in others. Add an argument to t_fromb64() to provide the size of the destination buffer and validate that we don't write too much data. Also add some sanity checks to the callers where appropriate. With thanks to Shi Lei for reporting this issue. Reviewed-by:Richard Levitte <levitte@openssl.org>
-
- 13 Sep, 2016 30 commits
-
-
Matt Caswell authored
Don't call WPACKET_sub_memcpy(), WPACKET_sub_allocation_bytes() and WPACKET_start_sub_packet_len() directly. Reviewed-by:Rich Salz <rsalz@openssl.org>
-
Matt Caswell authored
Remove extra indentation at the start of an "if". Reviewed-by: -
Matt Caswell authored
Updated the construction code to use the new function. Also added some convenience macros for WPACKET_sub_memcpy(). Reviewed-by: -
Matt Caswell authored
Reviewed-by: -
Richard Levitte authored
Also, enlarge test group 20 to include openssl commands that aren't tested otherwise Reviewed-by: -
Richard Levitte authored
RT#4674 Reviewed-by: -
FdaSilvaYY authored
Add comments, document -valid option. Add some const qualifiers. Reviewed-by:
Andy Polyakov <appro@openssl.org> Reviewed-by:
-
Rich Salz authored
Reviewed-by: -
Andy Grundman authored
This flag got moved after -xarch=v9 in 1.1.0 and had the unexpected side effect of the compiler building for 32-bit v8plusa instead of v9. GH#1521 CLA: none; trivial Signed-off-by:
Tim Hudson <tjh@openssl.org>
-
Viktor Szakats authored
Reviewed-by:
Matt Caswell <matt@openssl.org> Reviewed-by:
-
Viktor Szakats authored
it appears when using gcc/mingw: ``` apps/s_client.c:815:9: warning: variable 'at_eof' set but not used [-Wunused-but-set-variable] int at_eof = 0; ^~~~~~ ``` Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Traditionally Configure passed $ENV{PERL} to Makefile. But this resulted in ambiguilty as Configure script could be executed by interpreter different from one executing remaining scripts. Since we separate compile- and run-time interpreters with HASHBANGPERL variable, there is no reason to segment the build procedure. Reviewed-by: -
Matt Caswell authored
A peer continually sending unrecognised warning alerts could mean that we make no progress on a connection. We should abort rather than continuing if we receive an unrecognised warning alert. Thanks to Shi Lei for reporting this issue. Reviewed-by: -
Matt Caswell authored
Addressing more feedback comments. Reviewed-by: -
Matt Caswell authored
Reviewed-by: -
Matt Caswell authored
Two locations had the same loop for writing out a value. Pull it out into a function. Reviewed-by: -
Matt Caswell authored
This is an internal API. Some of the tests were for programmer erorr and "should not happen" situations, so a soft assert is reasonable. Reviewed-by: -
Matt Caswell authored
A few style tweaks here and there. The main change is that curr and packet_len are now offsets into the buffer to account for the fact that the pointers can change if the buffer grows. Also dropped support for the WPACKET_set_packet_len() function. I thought that was going to be needed but so far it hasn't been. It doesn't really work any more due to the offsets change. Reviewed-by: -
Matt Caswell authored
Reviewed-by: -
Matt Caswell authored
The PACKET documentation is already in packet_locl.h so it makes sense to have the WPACKET documentation there as well. Reviewed-by: -
Matt Caswell authored
The tests will only work in no-shared builds because WPACKET is an internal only API that does not get exported by the shared library. Reviewed-by: -
Matt Caswell authored
Otherwise a mem leak can occur. Reviewed-by: -
Matt Caswell authored
Also added the WPACKET_cleanup() function to cleanup a WPACKET if we hit an error. Reviewed-by: -
Matt Caswell authored
Reviewed-by: -
Matt Caswell authored
No need to declare an explicit sub-packet. Just start one. Reviewed-by: -
Matt Caswell authored
To avoid confusion with the read PACKET structure. Reviewed-by: -
Matt Caswell authored
Reviewed-by: -
Matt Caswell authored
Reviewed-by:
-
- 12 Sep, 2016 1 commit
-
-
David Woodhouse authored
Reviewed-by:
-
- 11 Sep, 2016 3 commits
-
-
Richard Levitte authored
Reviewed-by: -
Richard Levitte authored
The DSO API was picky about casing of symbol names on VMS. There's really no reason to be that picky, it's mostly just annoying. Therefore, we take away the possibility to flag for a choice, and will instead first try to find a symbol with exact case, and failing that, we try to find it in upper case. Reviewed-by: -
Matt Caswell authored
Signed-off-by:
-
- 09 Sep, 2016 2 commits
-
-
Tim Hudson authored
even when the public key is not present in an EC_KEY Reviewed-by:Stephen Henson <steve@openssl.org>
-
Rich Salz authored
With extensive help and feedback from Richard and Andy. Reviewed-by:
-
- 08 Sep, 2016 3 commits
-
-
Richard Levitte authored
This is generalised by having the following macros for stuff that won't be installed: NO_INST_LIB_CFLAGS, used instead of LIB_CFLAGS NO_INST_DSO_CFLAGS, used instead of DSO_CFLAGS NO_INST_BIN_CFLAGS, used instead of BIN_CFLAGS They take values from corresponding target config fields if those are defined, otherwise they take the respective values from LIB_CFLAGS, DSO_CFLAGS and BIN_CFLAGS. Reviewed-by: -
Richard Levitte authored
Send a bit information to the build file template functions. For src2obj(), the additional option 'product' holds the name of the final file that the object file will go into. Additionally, the diverse functions will get the option 'installed', with a value that evaluates true if the final product is to be installed, otherwise false. Reviewed-by: -
Richard Levitte authored
VMS sets that errno when the device part of a file spec is malformed or a logical name that doesn't exist. Reviewed-by:
-
