| #
3dca7526 |
| 24-Jun-2024 |
tb <tb@openbsd.org> |
libcrypto: constify most error string tables
These constitute the bulk of the remaining global mutable state in
libcrypto. This commit moves most of them into data.rel.ro, leaving
out ERR_str_{funct
libcrypto: constify most error string tables
These constitute the bulk of the remaining global mutable state in
libcrypto. This commit moves most of them into data.rel.ro, leaving
out ERR_str_{functs,libraries,reasons} (which require a slightly
different approach) and SYS_str_reasons which is populated on startup.
The main observation is that if ERR_load_strings() is called with a 0 lib
argument, the ERR_STRING_DATA argument is not actually modified. We could
use this fact to cast away const on the caller side and be done with it.
We can make this cleaner by adding a helper ERR_load_const_strings() which
explicitly avoids the assignment to str->error overriding the error code
already set in the table.
In order for this to work, we need to sprinkle some const in err/err.c.
CMS called ERR_load_strings() with non-0 lib argument, but this didn't
actually modify the error data since it ored in the value already stored
in the table.
Annoyingly, we need to cast const away once, namely in the call to
lh_insert() in int_err_set_item(). Fixing this would require changing
the public API and is going to be tricky since it requires that the
LHASH_DOALL_FN_* types adjust.
ok jsing
show more ...
|
| #
1da36015 |
| 08-Jul-2023 |
beck <beck@openbsd.org> |
Hide symbols in rsa
ok tb@
|
| #
aeccd9ed |
| 12-Jul-2022 |
kn <kn@openbsd.org> |
Remove mkerr.pl remnants from LibreSSL
This script is not used at all and files are edited by hand instead.
Thus remove misleading comments incl. the obsolete script/config.
Feedback OK jsing tb
|
| #
c4380ae9 |
| 01-Nov-2019 |
jsing <jsing@openbsd.org> |
Add RSA CMS support.
From OpenSSL 1.1.1d.
ok tb@
|
| #
e119b44a |
| 01-Nov-2019 |
jsing <jsing@openbsd.org> |
Update RSA ASN.1 code to handle RSA-PSS.
From OpenSSL 1.1.1d.
ok tb@
|
| #
ba05ae2d |
| 31-Oct-2019 |
jsing <jsing@openbsd.org> |
Add support for RSA-PSS.
From OpenSSL 1.1.1d.
ok inoguchi@
|
| #
5067ae9f |
| 29-Jan-2017 |
beck <beck@openbsd.org> |
Send the function codes from the error functions to the bit bucket,
as was done earlier in libssl. Thanks inoguchi@ for noticing
libssl had more reacharounds into this.
ok jsing@ inoguchi@
|
| #
cd9e90e9 |
| 15-Feb-2015 |
miod <miod@openbsd.org> |
Regen
|
| #
8cf4d6a6 |
| 10-Jul-2014 |
jsing <jsing@openbsd.org> |
Explicitly include <openssl/opensslconf.h> in every file that references
an OPENSSL_NO_* define. This avoids relying on something else pulling it
in for us, plus it fixes several cases where the #ifn
Explicitly include <openssl/opensslconf.h> in every file that references
an OPENSSL_NO_* define. This avoids relying on something else pulling it
in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is
never going to do anything, since OPENSSL_NO_XYZ will never defined, due
to the fact that opensslconf.h has not been included.
This also includes some miscellaneous sorting/tidying of headers.
show more ...
|
| #
14a995a9 |
| 09-Jul-2014 |
jsing <jsing@openbsd.org> |
More KNF.
|
| #
0c0a30ad |
| 09-Jul-2014 |
miod <miod@openbsd.org> |
RSA_NULL used to be a compile option allowing the RSA interfaces to be
compiled-in, with nonfunctional code, to be able to cope with the RSA
patent.
However, we don't use this option, and the RSA pa
RSA_NULL used to be a compile option allowing the RSA interfaces to be
compiled-in, with nonfunctional code, to be able to cope with the RSA
patent.
However, we don't use this option, and the RSA patent has expired more than 10
years ago, so just drop this piece.
show more ...
|
| #
c3d6a26a |
| 12-Jun-2014 |
deraadt <deraadt@openbsd.org> |
tags as requested by miod and tedu
|
| #
5cdd308e |
| 13-Oct-2012 |
djm <djm@openbsd.org> |
resolve conflicts
|
| #
0a5d6ede |
| 01-Oct-2010 |
djm <djm@openbsd.org> |
resolve conflicts, fix local changes
|
| #
e6841c1d |
| 09-Jan-2009 |
djm <djm@openbsd.org> |
resolve conflicts
|
| #
4fcf65c5 |
| 06-Sep-2008 |
djm <djm@openbsd.org> |
resolve conflicts
|
| #
ee1f122a |
| 04-Oct-2006 |
pvalchev <pvalchev@openbsd.org> |
openssl security fixes, diff from markus@, ok & "commit it" djm@
http://www.openssl.org/news/secadv_20060928.txt for more
|
| #
6d388760 |
| 27-Jun-2006 |
djm <djm@openbsd.org> |
resolve conflicts
|
| #
da347917 |
| 15-May-2002 |
beck <beck@openbsd.org> |
OpenSSL 0.9.7 stable 2002 05 08 merge
|
| #
f6e3f262 |
| 15-Apr-2000 |
beck <beck@openbsd.org> |
OpenSSL 0.9.5a merge
|
| #
ba5406e9 |
| 19-Mar-2000 |
beck <beck@openbsd.org> |
OpenSSL 0.9.5 merge
*warning* this bumps shared lib minors for libssl and libcrypto from 2.1 to 2.2
if you are using the ssl26 packages for ssh and other things to work you will
need to get new ones
OpenSSL 0.9.5 merge
*warning* this bumps shared lib minors for libssl and libcrypto from 2.1 to 2.2
if you are using the ssl26 packages for ssh and other things to work you will
need to get new ones (see ~beck/libsslsnap/<arch>) on cvs or ~beck/src-patent.tar.gz on cvs
show more ...
|
| #
913ec974 |
| 29-Sep-1999 |
beck <beck@openbsd.org> |
OpenSSL 0.9.4 merge
|
| #
5b37fcf3 |
| 05-Oct-1998 |
ryker <ryker@openbsd.org> |
Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build
functionality for shared libs.
Note that routines such as sslv2_init and friends that use RSA will
not work due to lack of RSA in th
Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build
functionality for shared libs.
Note that routines such as sslv2_init and friends that use RSA will
not work due to lack of RSA in this library.
Needs documentation and help from ports for easy upgrade to full
functionality where legally possible.
show more ...
|