src - FreeBSD source tree

diff options


context:
space:
mode:

author	Jung-uk Kim <jkim@FreeBSD.org>	2020-03-17 21:27:57 +0000
committer	Jung-uk Kim <jkim@FreeBSD.org>	2020-03-17 21:27:57 +0000
commit	aa144ced5d61b5c7fb74acaebb37d85bd08f0416 (patch)
tree	2de6902cff4b007f4fae30a7d6c546b4dd3d1740 /include/openssl
parent	fbc3ad1ae1976eb5f2bac351260f2c5ee255c27f (diff)
download	src-aa144ced5d61b5c7fb74acaebb37d85bd08f0416.tar.gz src-aa144ced5d61b5c7fb74acaebb37d85bd08f0416.zip

Import OpenSSL 1.1.1e.vendor/openssl/1.1.1e

Notes

Notes: svn path=/vendor-crypto/openssl/dist/; revision=359051 svn path=/vendor-crypto/openssl/1.1.1e/; revision=359052; tag=vendor/openssl/1.1.1e

Diffstat (limited to 'include/openssl')

-rw-r--r--

include/openssl/__DECC_INCLUDE_EPILOGUE.H

-rw-r--r--

include/openssl/__DECC_INCLUDE_PROLOGUE.H

-rw-r--r--

include/openssl/bio.h

-rw-r--r--

include/openssl/ct.h

-rw-r--r--

include/openssl/dsa.h

-rw-r--r--

include/openssl/dtls1.h

-rw-r--r--

include/openssl/evp.h

-rw-r--r--

include/openssl/evperr.h

-rw-r--r--

include/openssl/lhash.h

-rw-r--r--

include/openssl/obj_mac.h

-rw-r--r--

include/openssl/ocsp.h

-rw-r--r--

include/openssl/opensslv.h

-rw-r--r--

include/openssl/ossl_typ.h

-rw-r--r--

include/openssl/randerr.h

-rw-r--r--

include/openssl/rsa.h

-rw-r--r--

include/openssl/sslerr.h

16 files changed, 78 insertions, 27 deletions

diff --git a/include/openssl/__DECC_INCLUDE_EPILOGUE.H b/include/openssl/__DECC_INCLUDE_EPILOGUE.H
index c350018ad190..ad0a5f56dc9d 100644
--- a/include/openssl/__DECC_INCLUDE_EPILOGUE.H
+++ b/include/openssl/__DECC_INCLUDE_EPILOGUE.H

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -8,9 +8,15 @@

- * This file is only used by HP C on VMS, and is included automatically

+ * This file is only used by HP C/C++ on VMS, and is included automatically

* after each header file from this directory

+/*

+ * The C++ compiler doesn't understand these pragmas, even though it

+ * understands the corresponding command line qualifier.

+ */

+#ifndef __cplusplus

/* restore state. Must correspond to the save in __decc_include_prologue.h */

-#pragma names restore

+# pragma names restore

+#endif

diff --git a/include/openssl/__DECC_INCLUDE_PROLOGUE.H b/include/openssl/__DECC_INCLUDE_PROLOGUE.H
index 9a9c777f93f8..5f5513e821ac 100644
--- a/include/openssl/__DECC_INCLUDE_PROLOGUE.H
+++ b/include/openssl/__DECC_INCLUDE_PROLOGUE.H

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -8,13 +8,19 @@

- * This file is only used by HP C on VMS, and is included automatically

+ * This file is only used by HP C/C++ on VMS, and is included automatically

* after each header file from this directory

+/*

+ * The C++ compiler doesn't understand these pragmas, even though it

+ * understands the corresponding command line qualifier.

+ */

+#ifndef __cplusplus

/* save state */

-#pragma names save

+# pragma names save

/* have the compiler shorten symbols larger than 31 chars to 23 chars

* followed by a 8 hex char CRC

-#pragma names as_is,shortened

+# pragma names as_is,shortened

+#endif

diff --git a/include/openssl/bio.h b/include/openssl/bio.h
index e1fddfb7969d..ae559a510507 100644
--- a/include/openssl/bio.h
+++ b/include/openssl/bio.h

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -169,6 +169,7 @@ extern "C" {

# define BIO_FLAGS_MEM_RDONLY 0x200

# define BIO_FLAGS_NONCLEAR_RST 0x400

+# define BIO_FLAGS_IN_EOF 0x800

typedef union bio_addr_st BIO_ADDR;

typedef struct bio_addrinfo_st BIO_ADDRINFO;

diff --git a/include/openssl/ct.h b/include/openssl/ct.h
index d4262fa04804..ebdba34d6777 100644
--- a/include/openssl/ct.h
+++ b/include/openssl/ct.h

@@ -463,8 +463,6 @@ __owur int CTLOG_STORE_load_file(CTLOG_STORE *store, const char *file);

* Loads the default CT log list into a |store|.

- * See internal/cryptlib.h for the environment variable and file path that are

- * consulted to find the default file.

* Returns 1 if loading is successful, or 0 otherwise.

__owur int CTLOG_STORE_load_default_file(CTLOG_STORE *store);

diff --git a/include/openssl/dsa.h b/include/openssl/dsa.h
index 822eff347a29..6d8a18a4ad5a 100644
--- a/include/openssl/dsa.h
+++ b/include/openssl/dsa.h

@@ -162,6 +162,12 @@ DH *DSA_dup_DH(const DSA *r);

# define EVP_PKEY_CTX_set_dsa_paramgen_bits(ctx, nbits) \

EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_DSA, EVP_PKEY_OP_PARAMGEN, \

EVP_PKEY_CTRL_DSA_PARAMGEN_BITS, nbits, NULL)

+# define EVP_PKEY_CTX_set_dsa_paramgen_q_bits(ctx, qbits) \

+ EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_DSA, EVP_PKEY_OP_PARAMGEN, \

+ EVP_PKEY_CTRL_DSA_PARAMGEN_Q_BITS, qbits, NULL)

+# define EVP_PKEY_CTX_set_dsa_paramgen_md(ctx, md) \

+ EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_DSA, EVP_PKEY_OP_PARAMGEN, \

+ EVP_PKEY_CTRL_DSA_PARAMGEN_MD, 0, (void *)(md))

# define EVP_PKEY_CTRL_DSA_PARAMGEN_BITS (EVP_PKEY_ALG_CTRL + 1)

# define EVP_PKEY_CTRL_DSA_PARAMGEN_Q_BITS (EVP_PKEY_ALG_CTRL + 2)

diff --git a/include/openssl/dtls1.h b/include/openssl/dtls1.h
index a312e386cf9a..d55ca9c332dd 100644
--- a/include/openssl/dtls1.h
+++ b/include/openssl/dtls1.h

@@ -43,7 +43,7 @@ extern "C" {

# define DTLS1_AL_HEADER_LENGTH 2

-/* Timeout multipliers (timeout slice is defined in apps/timeouts.h */

+/* Timeout multipliers */

# define DTLS1_TMO_READ_COUNT 2

# define DTLS1_TMO_WRITE_COUNT 2

diff --git a/include/openssl/evp.h b/include/openssl/evp.h
index 545654a98b1c..a411f3f2f949 100644
--- a/include/openssl/evp.h
+++ b/include/openssl/evp.h

@@ -180,7 +180,7 @@ int (*EVP_MD_meth_get_ctrl(const EVP_MD *md))(EVP_MD_CTX *ctx, int cmd,

* if the following flag is set.

# define EVP_MD_CTX_FLAG_FINALISE 0x0200

-/* NOTE: 0x0400 is reserved for internal usage in evp_int.h */

+/* NOTE: 0x0400 is reserved for internal usage */

EVP_CIPHER *EVP_CIPHER_meth_new(int cipher_type, int block_size, int key_len);

EVP_CIPHER *EVP_CIPHER_meth_dup(const EVP_CIPHER *cipher);

@@ -1512,6 +1512,20 @@ void EVP_PKEY_meth_set_ctrl(EVP_PKEY_METHOD *pmeth,

const char *type,

const char *value));

+void EVP_PKEY_meth_set_digestsign(EVP_PKEY_METHOD *pmeth,

+ int (*digestsign) (EVP_MD_CTX *ctx,

+ unsigned char *sig,

+ size_t *siglen,

+ const unsigned char *tbs,

+ size_t tbslen));

+void EVP_PKEY_meth_set_digestverify(EVP_PKEY_METHOD *pmeth,

+ int (*digestverify) (EVP_MD_CTX *ctx,

+ const unsigned char *sig,

+ size_t siglen,

+ const unsigned char *tbs,

+ size_t tbslen));

void EVP_PKEY_meth_set_check(EVP_PKEY_METHOD *pmeth,

int (*check) (EVP_PKEY *pkey));

@@ -1617,6 +1631,20 @@ void EVP_PKEY_meth_get_ctrl(const EVP_PKEY_METHOD *pmeth,

const char *type,

const char *value));

+void EVP_PKEY_meth_get_digestsign(EVP_PKEY_METHOD *pmeth,

+ int (**digestsign) (EVP_MD_CTX *ctx,

+ unsigned char *sig,

+ size_t *siglen,

+ const unsigned char *tbs,

+ size_t tbslen));

+void EVP_PKEY_meth_get_digestverify(EVP_PKEY_METHOD *pmeth,

+ int (**digestverify) (EVP_MD_CTX *ctx,

+ const unsigned char *sig,

+ size_t siglen,

+ const unsigned char *tbs,

+ size_t tbslen));

void EVP_PKEY_meth_get_check(const EVP_PKEY_METHOD *pmeth,

int (**pcheck) (EVP_PKEY *pkey));

diff --git a/include/openssl/evperr.h b/include/openssl/evperr.h
index 6a651f556354..d2b26ea582de 100644
--- a/include/openssl/evperr.h
+++ b/include/openssl/evperr.h

@@ -1,6 +1,6 @@

* Generated by util/mkerr.pl DO NOT EDIT

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -160,6 +160,7 @@ int ERR_load_EVP_strings(void);

# define EVP_R_INPUT_NOT_INITIALIZED 111

# define EVP_R_INVALID_DIGEST 152

# define EVP_R_INVALID_FIPS_MODE 168

+# define EVP_R_INVALID_IV_LENGTH 194

# define EVP_R_INVALID_KEY 163

# define EVP_R_INVALID_KEY_LENGTH 130

# define EVP_R_INVALID_OPERATION 148

diff --git a/include/openssl/lhash.h b/include/openssl/lhash.h
index 47b99d17fb8a..2e42d727d4d6 100644
--- a/include/openssl/lhash.h
+++ b/include/openssl/lhash.h

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -120,9 +120,8 @@ void OPENSSL_LH_node_usage_stats_bio(const OPENSSL_LHASH *lh, BIO *out);

# define DEFINE_LHASH_OF(type) \

LHASH_OF(type) { union lh_##type##_dummy { void* d1; unsigned long d2; int d3; } dummy; }; \

- static ossl_inline LHASH_OF(type) * \

- lh_##type##_new(unsigned long (*hfn)(const type *), \

- int (*cfn)(const type *, const type *)) \

+ static ossl_unused ossl_inline LHASH_OF(type) *lh_##type##_new(unsigned long (*hfn)(const type *), \

+ int (*cfn)(const type *, const type *)) \

{ \

return (LHASH_OF(type) *) \

OPENSSL_LH_new((OPENSSL_LH_HASHFUNC)hfn, (OPENSSL_LH_COMPFUNC)cfn); \

diff --git a/include/openssl/obj_mac.h b/include/openssl/obj_mac.h
index 47dafe48d056..483fc0509e19 100644
--- a/include/openssl/obj_mac.h
+++ b/include/openssl/obj_mac.h

@@ -2,7 +2,7 @@

* WARNING: do not edit!

* Generated by crypto/objects/objects.pl

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

* in the file LICENSE in the source distribution or at

@@ -1290,12 +1290,12 @@

#define OBJ_ms_efs 1L,3L,6L,1L,4L,1L,311L,10L,3L,4L

#define SN_ms_smartcard_login "msSmartcardLogin"

-#define LN_ms_smartcard_login "Microsoft Smartcardlogin"

+#define LN_ms_smartcard_login "Microsoft Smartcard Login"

#define NID_ms_smartcard_login 648

#define OBJ_ms_smartcard_login 1L,3L,6L,1L,4L,1L,311L,20L,2L,2L

#define SN_ms_upn "msUPN"

-#define LN_ms_upn "Microsoft Universal Principal Name"

+#define LN_ms_upn "Microsoft User Principal Name"

#define NID_ms_upn 649

#define OBJ_ms_upn 1L,3L,6L,1L,4L,1L,311L,20L,2L,3L

diff --git a/include/openssl/ocsp.h b/include/openssl/ocsp.h
index 8582fe1ee1a4..4d759a49de43 100644
--- a/include/openssl/ocsp.h
+++ b/include/openssl/ocsp.h

@@ -123,7 +123,7 @@ typedef struct ocsp_service_locator_st OCSP_SERVICELOC;

(char *(*)())d2i_OCSP_REQUEST,PEM_STRING_OCSP_REQUEST, \

bp,(char **)(x),cb,NULL)

-# define PEM_read_bio_OCSP_RESPONSE(bp,x,cb)(OCSP_RESPONSE *)PEM_ASN1_read_bio(\

+# define PEM_read_bio_OCSP_RESPONSE(bp,x,cb) (OCSP_RESPONSE *)PEM_ASN1_read_bio(\

(char *(*)())d2i_OCSP_RESPONSE,PEM_STRING_OCSP_RESPONSE, \

bp,(char **)(x),cb,NULL)

diff --git a/include/openssl/opensslv.h b/include/openssl/opensslv.h
index c28e632c4425..dd8ef3df722f 100644
--- a/include/openssl/opensslv.h
+++ b/include/openssl/opensslv.h

@@ -39,8 +39,8 @@ extern "C" {

* (Prior to 0.9.5a beta1, a different scheme was used: MMNNFFRBB for

* major minor fix final patch/beta)

-# define OPENSSL_VERSION_NUMBER 0x1010104fL

-# define OPENSSL_VERSION_TEXT "OpenSSL 1.1.1d 10 Sep 2019"

+# define OPENSSL_VERSION_NUMBER 0x1010105fL

+# define OPENSSL_VERSION_TEXT "OpenSSL 1.1.1e 17 Mar 2020"

/*-

* The macros below are to be used for shared library (.so, .dll, ...)

diff --git a/include/openssl/ossl_typ.h b/include/openssl/ossl_typ.h
index 7993ca28f3da..e0edfaaf4760 100644
--- a/include/openssl/ossl_typ.h
+++ b/include/openssl/ossl_typ.h

@@ -109,6 +109,7 @@ typedef struct dsa_method DSA_METHOD;

typedef struct rsa_st RSA;

typedef struct rsa_meth_st RSA_METHOD;

+typedef struct rsa_pss_params_st RSA_PSS_PARAMS;

typedef struct ec_key_st EC_KEY;

typedef struct ec_key_method_st EC_KEY_METHOD;

diff --git a/include/openssl/randerr.h b/include/openssl/randerr.h
index 70d1a17a4c6b..79d57905e3cb 100644
--- a/include/openssl/randerr.h
+++ b/include/openssl/randerr.h

@@ -1,6 +1,6 @@

* Generated by util/mkerr.pl DO NOT EDIT

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -21,6 +21,7 @@ int ERR_load_RAND_strings(void);

* RAND function codes.

+# define RAND_F_DATA_COLLECT_METHOD 127

# define RAND_F_DRBG_BYTES 101

# define RAND_F_DRBG_GET_ENTROPY 105

# define RAND_F_DRBG_SETUP 117

@@ -46,6 +47,7 @@ int ERR_load_RAND_strings(void);

# define RAND_F_RAND_POOL_BYTES_NEEDED 115

# define RAND_F_RAND_POOL_GROW 125

# define RAND_F_RAND_POOL_NEW 116

+# define RAND_F_RAND_PSEUDO_BYTES 126

# define RAND_F_RAND_WRITE_FILE 112

diff --git a/include/openssl/rsa.h b/include/openssl/rsa.h
index cdce1264eb5c..5e76365c0dfe 100644
--- a/include/openssl/rsa.h
+++ b/include/openssl/rsa.h

@@ -224,6 +224,7 @@ const BIGNUM *RSA_get0_q(const RSA *d);

const BIGNUM *RSA_get0_dmp1(const RSA *r);

const BIGNUM *RSA_get0_dmq1(const RSA *r);

const BIGNUM *RSA_get0_iqmp(const RSA *r);

+const RSA_PSS_PARAMS *RSA_get0_pss_params(const RSA *r);

void RSA_clear_flags(RSA *r, int flags);

int RSA_test_flags(const RSA *r, int flags);

void RSA_set_flags(RSA *r, int flags);

@@ -279,14 +280,14 @@ int RSA_pkey_ctx_ctrl(EVP_PKEY_CTX *ctx, int optype, int cmd, int p1, void *p2);

DECLARE_ASN1_ENCODE_FUNCTIONS_const(RSA, RSAPublicKey)

DECLARE_ASN1_ENCODE_FUNCTIONS_const(RSA, RSAPrivateKey)

-typedef struct rsa_pss_params_st {

+struct rsa_pss_params_st {

X509_ALGOR *hashAlgorithm;

X509_ALGOR *maskGenAlgorithm;

ASN1_INTEGER *saltLength;

ASN1_INTEGER *trailerField;

/* Decoded hash algorithm from maskGenAlgorithm */

X509_ALGOR *maskHash;

-} RSA_PSS_PARAMS;

+};

DECLARE_ASN1_FUNCTIONS(RSA_PSS_PARAMS)

diff --git a/include/openssl/sslerr.h b/include/openssl/sslerr.h
index 3d6850dea36e..0ef684f3c131 100644
--- a/include/openssl/sslerr.h
+++ b/include/openssl/sslerr.h

@@ -1,6 +1,6 @@

* Generated by util/mkerr.pl DO NOT EDIT

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -88,6 +88,7 @@ int ERR_load_SSL_strings(void);

# define SSL_F_OSSL_STATEM_SERVER_CONSTRUCT_MESSAGE 431

# define SSL_F_OSSL_STATEM_SERVER_POST_PROCESS_MESSAGE 601

# define SSL_F_OSSL_STATEM_SERVER_POST_WORK 602

+# define SSL_F_OSSL_STATEM_SERVER_PRE_WORK 640

# define SSL_F_OSSL_STATEM_SERVER_PROCESS_MESSAGE 603

# define SSL_F_OSSL_STATEM_SERVER_READ_TRANSITION 418

# define SSL_F_OSSL_STATEM_SERVER_WRITE_TRANSITION 604

@@ -733,6 +734,7 @@ int ERR_load_SSL_strings(void);

# define SSL_R_UNABLE_TO_LOAD_SSL3_SHA1_ROUTINES 243

# define SSL_R_UNEXPECTED_CCS_MESSAGE 262

# define SSL_R_UNEXPECTED_END_OF_EARLY_DATA 178

+# define SSL_R_UNEXPECTED_EOF_WHILE_READING 294

# define SSL_R_UNEXPECTED_MESSAGE 244

# define SSL_R_UNEXPECTED_RECORD 245

# define SSL_R_UNINITIALIZED 276