mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-12-15 06:01:37 +08:00
Code Issues Packages Projects Releases Wiki Activity
27,688 Commits 34 Branches 385 Tags 513 MiB
3c667d9888
Commit Graph

2628 Commits

Author SHA1 Message Date
Richard Levitte
3c667d9888 Switch deprecation method for Whirlpool 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
f2e9454364 Switch deprecation method for OSSL_STORE 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
3be1dc50aa Switch deprecation method for SSL 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
2b3f59fd49 Switch deprecation method for SRP 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
033b8d5ee0 Switch deprecation method for SHA 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
0038fff07d Switch deprecation method for SEED 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
632fb5259f Switch deprecation method for RIPEMD 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
17fbbe7727 Switch deprecation method for RC5 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
53a14afee9 Switch deprecation method for RC4 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
1b6d1f51b4 Switch deprecation method for RC2 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
00639486b0 Switch deprecation method for RAND 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
be8e9b39a3 Switch deprecation method for PKCS#12 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
be5b2b64a5 Switch deprecation method for MDC2 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
5fb0f3178f Switch deprecation method for MD5 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
4ea7e4e013 Switch deprecation method for MD4 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
0c5f728456 Switch deprecation method for MD2 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
4b361f87a9 Switch deprecation method for IDEA 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
ba21405888 Switch deprecation method for HMAC 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
306265819b Switch deprecation method for EVP 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
f6be9ae210 Switch deprecation method for ERR 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
d43788bd20 Switch deprecation method for ENGINE 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
27147678ca Switch deprecation method for DES 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
05cb22388f Switch deprecation method for CRYPTO 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:24 +01:00
Richard Levitte
7f7c856c66 Switch deprecation method for CONF 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:23 +01:00
Richard Levitte
db617a4a6b Switch deprecation method for CMAC 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:23 +01:00
Richard Levitte
ebafdfac73 Switch deprecation method for CAST 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:23 +01:00
Richard Levitte
0294097253 Switch deprecation method for Camellia 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:23 +01:00
Richard Levitte
4b66e5256f Switch deprecation method for BIGNUM 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:23 +01:00
Richard Levitte
6638749f0f Switch deprecation method for Blowfish 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:22 +01:00
Richard Levitte
894fe6e1d6 Switch deprecation method for BIO 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:22 +01:00
Richard Levitte
d1b99dd905 Switch deprecation method for ASN.1 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:22 +01:00
Richard Levitte
0016a034a7 Switch deprecation method for AES 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13460)
 2020-12-04 20:44:22 +01:00
Shane Lontis
ddfd7182cf Fix EVP_PKEY_CTX propq so that it uses a copy 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/12700)
 2020-12-04 08:22:24 +10:00
Shane Lontis
c22139a786 Fix x509_crl propq so that it uses a copy 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/12700)
 2020-12-04 08:22:24 +10:00
Shane Lontis
22b9230f39 Fix X509 propq so it does not use references 
Fixes #13486

Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/12700)
 2020-12-04 08:22:24 +10:00
Pauli
a7e6a3d8ef tag unused function arguments as ossl_unused 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13577)
 2020-12-03 11:22:06 +10:00
Matt Caswell
c195c88233 Fix a compile error with the no-sock option 
BIO_do_connect() can work even in no-sock builds (non socket based BIOs
have the right ctrls). Therefore we move the macro outside of the
OPENSSL_NO_SOCK guards

Fixes #12207

Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13587)
 2020-12-02 17:04:54 +00:00
Richard Levitte
cbcbac644c ENCODER: Don't pass libctx to OSSL_ENCODER_CTX_new_by_EVP_PKEY() 
The passed 'pkey' already contains a library context, and the encoder
implementations should be found within the same context, so passing an
explicit library context seems unnecessary, and potentially dangerous.

It should be noted that it's possible to pass an EVP_PKEY with a
legacy internal key.  The condition there is that it doesn't have a
library context assigned to it, so the NULL library context is used
automatically, thus requiring that appropriate encoders are available
through that context.

Fixes #13544

Reviewed-by: Tim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13545)
 2020-12-02 13:36:49 +01:00
Shane Lontis
89cccbea51 Add EVP_KDF-X942 to the fips module 
The X942 KDF had been modified so that it supports all optional fields - not
just the fields used by CMS.

As there are 2 types of KDF for X942 - this has been made a bit clearer
by adding an X942KDF-ASN1 alias. X942KDF-CONCAT has also been added as an
alias of X963KDF.

This work was instigated as a result of the ACVP tests optionally being
able to use keybits for the supp_pubinfo field.
Setting the parameter OSSL_KDF_PARAM_X942_USE_KEYBITS to 0 allows this
to be disabled.

Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13418)
 2020-12-02 12:15:05 +10:00
Richard Levitte
af2f14ace5 ERR: Drop or deprecate dangerous or overly confusing functions 
ERR_get_error_line() is deprecated, and ERR_get_error_func() and
ERR_get_error_data() are removed in favor of ERR_get_error_all(),
since they pop the error record, leaving the caller with only partial
error record data and no way to get the rest if the wish.

If it's desirable to retrieve data piecemeal, the caller should
consider using the diverse ERR_peek functions and finish off with
ERR_get_error().

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/13466)
 2020-11-28 15:28:46 +10:00
Dr. David von Oheimb
ee46dfbf2c X509_dup: fix copying of libctx and propq using new ASN1_OP_DUP_POST cb operation 
Fixes #12680

Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/12687)
 2020-11-27 16:53:32 +01:00
Dr. David von Oheimb
4f7e08c83e asn1t.h: Improve comments documenting ASN1_ITYPE_... and the 'funcs' field 
Also move the #define(s) for the ASN1_ITYPE_.. before their first use.

Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/12687)
 2020-11-27 16:53:32 +01:00
Richard Levitte
888bdbfd39 EVP_PKEY & DSA: Make DSA EVP_PKEY_CTX parameter ctrls / setters more available 
EVP_PKEY_CTX_set_dsa_ functions were only available when DSA was
enabled ('no-dsa' not configured).  However, that makes it impossible
to use these functions with an engine or a provider that happens to
implement DSA.  This change solves that problem by shuffling these
functions to more appropriate places.

Fixes #13529

Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13530)
 2020-11-27 15:30:51 +01:00
Matt Caswell
c9f71df31b Convert DH deprecations to the new way of deprecating functions 
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13138)
 2020-11-27 11:04:54 +00:00
Matt Caswell
25e49af92a Deprecate more DH functions 
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13138)
 2020-11-27 11:04:54 +00:00
Matt Caswell
4d8e8a2d37 Deprecate the DHparams and DHxparams PEM routines 
The functions return a DH object and therefore need to be deprecated.

Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13138)
 2020-11-27 11:04:54 +00:00
Matt Caswell
5a2674163d Deprecate EVP_PKEY_assign_DH and other similar macros 
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13138)
 2020-11-27 11:04:54 +00:00
Matt Caswell
0a68a445ae Deprecate functions for getting and setting DH values in an EVP_PKEY 
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13138)
 2020-11-27 11:04:54 +00:00
Matt Caswell
752419d8f7 Deprecate DH_new as well as i2d_DHparams and d2i_DHparams 
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13138)
 2020-11-27 11:04:54 +00:00
Matt Caswell
605856d72c Update copyright year 
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13533)
 2020-11-26 14:18:57 +00:00