summaryrefslogtreecommitdiffstats
path: root/lib/libssl/src/ssl (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* remove double brackets. fixes build with clang.jsg2014-07-121-2/+2
| | | | ok jsing@
* Provide ssl_version_string() function, which uses one of those modern Cjsing2014-07-124-28/+31
| | | | | | | | constructs (a switch statement) and returns the appropriate string defined by SSL_TXT_* for the given version, including support for DTLSv1 and DTLSv1-bad. Use this function in SSL_get_version() and SSL_SESSION_print(). ok beck@
* Remove extra parenthesis.jsing2014-07-121-2/+2
|
* need_cert is now always true, so remove the variable and associatedjsing2014-07-121-33/+21
| | | | | | conditionals. ok miod@
* if (x) FOO_free(x) -> FOO_free(x).miod2014-07-122-14/+8
| | | | | | | Improves readability, keeps the code smaller so that it is warmer in your cache. review & ok deraadt@
* Remove remnants from PSK, KRB5 and SRP.jsing2014-07-128-159/+43
| | | | ok beck@ miod@
* Place comments in a block above the if statement, rather than attemptingjsing2014-07-122-47/+63
| | | | | to interleave them within the conditions. Also fix wrapping and indentation.
* Make disabling last cipher work.guenther2014-07-121-9/+9
| | | | | From Thijs Alkemade via OpenSSL trunk ok miod@
* As reported by David Ramos, most consumer of ssl_get_message() perform latemiod2014-07-113-53/+148
| | | | | | | | | | | | | | | | | | bounds check, after reading the 2-, 3- or 4-byte size of the next chunk to process. But the size fields themselves are not checked for being entirely contained in the buffer. Since reading past your bounds is bad practice, and may not possible if you are using a secure memory allocator, we need to add the necessary bounds check, at the expense of some readability. As a bonus, a wrong size GOST session key will now trigger an error instead of a printf to stderr and it being handled as if it had the correct size. Creating this diff made my eyes bleed (in the real sense); reviewing it made guenther@'s and beck@'s eyes bleed too (in the literal sense). ok guenther@ beck@
* If the application uses tls_session_secret_cb for session resumption, setmiod2014-07-111-2/+3
| | | | the CCS_OK flag. From OpenSSL trunk.
* In ssl3_get_cert_verify(), allow for larger messages to accomodate keysmiod2014-07-111-3/+2
| | | | | larger than 4096-bit RSA which the most paranoid of us are using; OpenSSL PR #319 via OpenSSL trunk.
* Accept CCS again after `finished' has been sent by the client; at this pointmiod2014-07-111-5/+6
| | | | | | | keys have been correctly set up so it is ok to accept CCS from the server. Without renegotiation can sometimes fail. OpenSSL PR #3400 via OpenSSL trunk.
* In dtls1_clear_queues(), free buffered_add_data.q correctly, it's made ofmiod2014-07-111-4/+4
| | | | | | DTLS1_RECORD_DATA, not hm_fragment. OpenSSL PR #3286 via OpenSSL trunk.
* In ssl3_get_client_key_exchange() parsing a GOST session key, invoke themiod2014-07-111-13/+8
| | | | | regular ASN.1 parser rather than trying to handroll one and potentially misbehave; OpenSSL PR #3335 via OpenSSL trunk.
* Missing initialization for error line in error paths; from Coverity viamiod2014-07-111-1/+4
| | | | OpenSSL trunk.
* Remove the PSK code. We don't need to drag around thisbeck2014-07-1111-653/+12
| | | | | baggage. ok miod@ jsing@
* No need to keep ssl23_foo() flavours mapping to ssl3_foo().miod2014-07-115-45/+14
| | | | ok tedu@
* remove unused variable from ssl3_get_client_hellobcook2014-07-101-3/+2
| | | | ok tedu@ miod@
* Remove more compression tendrils.jsing2014-07-103-14/+4
| | | | ok tedu@
* Remove more compression related code.jsing2014-07-103-20/+3
|
* Put back some parts of the public SSL API that should not have beenjsing2014-07-103-4/+28
| | | | completely decompressed.
* decompress libssl. ok beck jsingtedu2014-07-1025-758/+39
|
* KNF comments, reflowing and moving out of the middle of argument lists inguenther2014-07-103-93/+150
| | | | | | places ok jsing@
* remove unused ecc_pkey_size.bcook2014-07-101-4/+2
| | | | ok jsing@ miod@
* Remove leading underscore from _BYTE_ORDER and _{LITTLE,BIG}_ENDIAN, to bemiod2014-07-091-2/+2
| | | | | more friendly to systems where the underscore flavours may be defined as empty. Found the hard way be bcook@; joint brainstrom with bcook beck and guenther
* Clean up and simplify SSL_CIPHER_description by always using asprintf. Ifjsing2014-07-091-54/+54
| | | | | | | a buffer was supplied then we copy the result into it. Also make the failure case return values match the documentation. Joint work with beck@
* tedu the SSL export cipher handling - since we do not have enabled exportjsing2014-07-0911-385/+48
| | | | | | ciphers we no longer need the flags or code to support it. ok beck@ miod@
* remove unused, private version strings except SSL_version_strbcook2014-07-093-8/+3
| | | | | | Also remove unused des_ver.h, which exports some of these strings, but is not installed. ok miod@ tedu@
* Mark the weakened 40-bit export ciphers as invalid - no one in their rightjsing2014-07-081-9/+9
| | | | | | mind should be using them. ok deraadt@ miod@
* Remove SSL_FIPS.jsing2014-07-083-94/+86
| | | | ok deraadt@ miod@
* Nuke SSL_NOT_EXP since it does nothing.jsing2014-07-082-126/+125
| | | | ok deraadt@ miod@
* pedantic avoidance of division by zero, likely not actuallybeck2014-07-081-1/+6
| | | | | possible to hit for real. ok miod@ jsing@
* Memory leak in error path of the day, from clang via dhill@bitrig;miod2014-07-021-2/+3
| | | | ok dhill@bitrig
* fix the identical leak in three different files.tedu2014-06-303-6/+9
| | | | reported by Brent Cook, original diff by logan
* More KNF.jsing2014-06-291-32/+49
|
* Fix 2 memory leaks.logan2014-06-281-1/+3
| | | | | | (Thanks to Brent Cook) OK from tedu@
* KNF, particularly wrapped lines of calls to PEM_read_bio_FOO() andguenther2014-06-221-24/+44
| | | | | | multiline comments ok jsing@
* always compare memcmp against 0, for clarity.tedu2014-06-213-7/+7
|
* Pull the code that builds a DTLS sequence number out into its own functionjsing2014-06-213-23/+29
| | | | | | to avoid duplication. Also use fewer magic numbers. ok miod@
* Specify the correct strength bits for 3DES cipher suites.jsing2014-06-211-15/+13
| | | | | | From OpenSSL. ok miod@
* Pull out the sequence number selection and handle this up front. Also, thejsing2014-06-211-9/+6
| | | | correct record is already known, so avoid reassignment.
* More KNF and clean up.jsing2014-06-211-13/+9
|
* Fix memory leak in error path.logan2014-06-211-2/+2
| | | | OK from miod@
* convert CRYPTO_memcmp to timingsafe_memcmp based on current policy favoringtedu2014-06-199-22/+22
| | | | | | libc interfaces over libcrypto interfaces. for now we also prefer timingsafe_memcmp over timingsafe_bcmp, even when the latter is acceptable. ok beck deraadt matthew miod
* In ssl3_send_newsession_ticket(), fix a memory leak in an error path.miod2014-06-181-2/+4
|
* Missinc calloc() return value check; ok deraadt@miod2014-06-181-1/+5
|
* Make sure to always invoke EVP_CIPHER_CTX_cleanup() before returning in themiod2014-06-181-4/+10
| | | | | | error paths from tls_decrypt_ticket(). ok tedu@
* Use asprintf() instead of a fixed 128-byte size in SSL_CIPHER_description()miod2014-06-181-11/+11
| | | | | | when no storage buffer is passed. ok deraadt@ tedu@
* In SSL_COMP_add_compression_method(), make sure error cases actually returnmiod2014-06-181-2/+2
| | | | | | `error' rather than `success'. ok deraadt@
* ssl_session_cmp is not a sort function, can use CRYPTO_memcmp here too.tedu2014-06-171-2/+4
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.