#
5be22244 |
| 08-Sep-2018 |
tb <tb@openbsd.org> |
ASN1_OBJECTs should be freed with ASN1_OBJECT_free(3), not with free(3).
ok inoguchi, jsing
|
#
3e238a8b |
| 08-Sep-2018 |
tb <tb@openbsd.org> |
indent labels
|
#
5067ae9f |
| 29-Jan-2017 |
beck <beck@openbsd.org> |
Send the function codes from the error functions to the bit bucket, as was done earlier in libssl. Thanks inoguchi@ for noticing libssl had more reacharounds into this. ok jsing@ inoguchi@
|
#
76ce35bf |
| 21-Jan-2017 |
jsing <jsing@openbsd.org> |
Expand DECLARE_OBJ_BSEARCH_CMP_FN and IMPLEMENT_OBJ_BSEARCH_CMP_FN macros.
No change to generated assembly excluding line numbers.
|
#
6fe23c52 |
| 22-Dec-2016 |
inoguchi <inoguchi@openbsd.org> |
OBJ_obj2txt() should return the total amount of space required reported by @rhenium on GitHub ok jsing@
|
#
2c6b01a2 |
| 17-Jul-2016 |
bcook <bcook@openbsd.org> |
remove unused OPENSSL_NO_OBJECT case
ok tedu@
|
#
fe547197 |
| 14-Oct-2015 |
tedu <tedu@openbsd.org> |
better fix for overrun reported by Qualys Security. buf is at all times kept nul terminated, so there is no need to enforce this again upon exit. (no need to move buf around after we exahust space.)
better fix for overrun reported by Qualys Security. buf is at all times kept nul terminated, so there is no need to enforce this again upon exit. (no need to move buf around after we exahust space.) ok beck miod
show more ...
|
#
0ce9fa2c |
| 14-Oct-2015 |
beck <beck@openbsd.org> |
Bail out early if we have no buf_len ok miod@
|
#
32b457e2 |
| 14-Oct-2015 |
tedu <tedu@openbsd.org> |
fix a memory leak reported by Qualys Security. move the bndec variable in tighter since it's not used elsewhere in the loop, then always free it after use. ok bcook miod
|
#
8984dfbc |
| 14-Oct-2015 |
beck <beck@openbsd.org> |
Ensure we don't write a 0 byte past end of the buffer in the error case. ok bcook@ deraadt@
|
#
fca39bf7 |
| 08-Aug-2014 |
guenther <guenther@openbsd.org> |
Fix CVE-2014-3508, pretty printing and OID validation: - make sure the output buffer is always NUL terminated if buf_len was initially greater than zero. - reject OIDs that are too long, too sho
Fix CVE-2014-3508, pretty printing and OID validation: - make sure the output buffer is always NUL terminated if buf_len was initially greater than zero. - reject OIDs that are too long, too short, or not in proper base-127
Based on https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87
ok bcook@
show more ...
|
#
b6ab114e |
| 11-Jul-2014 |
jsing <jsing@openbsd.org> |
Only import cryptlib.h in the four source files that actually need it. Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need t
Only import cryptlib.h in the four source files that actually need it. Remove the openssl public includes from cryptlib.h and add a small number of includes into the source files that actually need them. While here, also sort/group/tidy the includes.
ok beck@ miod@
show more ...
|
#
8cf4d6a6 |
| 10-Jul-2014 |
jsing <jsing@openbsd.org> |
Explicitly include <openssl/opensslconf.h> in every file that references an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifn
Explicitly include <openssl/opensslconf.h> in every file that references an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is never going to do anything, since OPENSSL_NO_XYZ will never defined, due to the fact that opensslconf.h has not been included.
This also includes some miscellaneous sorting/tidying of headers.
show more ...
|
#
a8913c44 |
| 10-Jul-2014 |
jsing <jsing@openbsd.org> |
Stop including standard headers via cryptlib.h - pull in the headers that are needed in the source files that actually require them.
ok beck@ miod@
|
#
c3d6a26a |
| 12-Jun-2014 |
deraadt <deraadt@openbsd.org> |
tags as requested by miod and tedu
|
#
4163340b |
| 07-Jun-2014 |
deraadt <deraadt@openbsd.org> |
malloc() result does not need a cast. ok miod
|
#
183f9028 |
| 01-Jun-2014 |
beck <beck@openbsd.org> |
Clean up some of the nightmare of string and pointer arithmatic in this nasty function.
This gets rid of the nasty tmp variables used to hold temporary strings and the DECIMAL_SIZE hack. it gets rid
Clean up some of the nightmare of string and pointer arithmatic in this nasty function.
This gets rid of the nasty tmp variables used to hold temporary strings and the DECIMAL_SIZE hack. it gets rid of the rather pointless null checks for buf (since the original code dereferences it before checking). It also gets rid of the insane possibility this could return -1 when stuff is using the return values to compute lengths All the failure cases now return 0 and an empty string like the first error case in the original code. ok miod@ tedu@
show more ...
|
#
0b1e3033 |
| 30-May-2014 |
deraadt <deraadt@openbsd.org> |
more: no need for null check before free ok tedu guenther
|
#
12697c6f |
| 20-Apr-2014 |
guenther <guenther@openbsd.org> |
Restore beck's rev 1.21: snprintf() was reviewed
|
#
223e7da0 |
| 19-Apr-2014 |
jsing <jsing@openbsd.org> |
KNF.
|
#
5359f6d5 |
| 19-Apr-2014 |
guenther <guenther@openbsd.org> |
We'll interpret a (void) cast on snprintf() to mean it's been verified that truncation is either desirable, not an issue, or is detected and handled later
ok deraadt@
|
#
143cedbb |
| 19-Apr-2014 |
beck <beck@openbsd.org> |
use intrinsic strlcpy and strlcat everywhere so we only have one set of funcitons to check for incorrect use. keep BUF_strlcpy and BUF_strlcat for API comptibility only. ok tedu@
|
#
afe7d0ac |
| 18-Apr-2014 |
miod <miod@openbsd.org> |
Shrink a local buffer to the size it really needs to be; this is the only discrepancy found while checking proper {HEX,DECIMAL}_SIZE macro usage, which is confusing enough. tweaks and ok jca@, ok gue
Shrink a local buffer to the size it really needs to be; this is the only discrepancy found while checking proper {HEX,DECIMAL}_SIZE macro usage, which is confusing enough. tweaks and ok jca@, ok guenther@
show more ...
|
#
6f3a6cb1 |
| 17-Apr-2014 |
beck <beck@openbsd.org> |
Change library to use intrinsic memory allocation functions instead of OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free
|
#
b4148b70 |
| 15-Apr-2014 |
beck <beck@openbsd.org> |
Send the rotIBM stream cipher (ebcdic) to Valhalla to party for eternity with the bearded ones... some API's that nobody should be using will dissapear with this commit.
|