RubyGems - rugged - Versions diffs - 1.1.1 → 1.2.0 - Mend

rugged 1.1.1 → 1.2.0

Files changed (277) hide show

checksums.yaml +4 -4
data/LICENSE +1 -0
data/README.md +1 -1
data/ext/rugged/rugged.c +7 -4
data/ext/rugged/rugged_object.c +1 -1
data/ext/rugged/rugged_repo.c +3 -3
data/lib/rugged/repository.rb +2 -2
data/lib/rugged/version.rb +1 -1
data/vendor/libgit2/CMakeLists.txt +11 -6
data/vendor/libgit2/COPYING +109 -1
data/vendor/libgit2/cmake/Findfutimens.cmake +14 -0
data/vendor/libgit2/cmake/SelectHTTPSBackend.cmake +4 -0
data/vendor/libgit2/cmake/SelectHashes.cmake +1 -0
data/vendor/libgit2/deps/chromium-zlib/CMakeLists.txt +101 -0
data/vendor/libgit2/deps/ntlmclient/CMakeLists.txt +17 -5
data/vendor/libgit2/deps/ntlmclient/crypt.h +14 -9
data/vendor/libgit2/deps/ntlmclient/crypt_commoncrypto.c +20 -20
data/vendor/libgit2/deps/ntlmclient/crypt_commoncrypto.h +3 -3
data/vendor/libgit2/deps/ntlmclient/crypt_mbedtls.c +37 -36
data/vendor/libgit2/deps/ntlmclient/crypt_mbedtls.h +4 -3
data/vendor/libgit2/deps/ntlmclient/crypt_openssl.c +178 -51
data/vendor/libgit2/deps/ntlmclient/crypt_openssl.h +74 -5
data/vendor/libgit2/deps/ntlmclient/ntlm.c +150 -118
data/vendor/libgit2/deps/ntlmclient/ntlm.h +13 -9
data/vendor/libgit2/deps/ntlmclient/ntlmclient.h +16 -3
data/vendor/libgit2/deps/ntlmclient/unicode.h +10 -4
data/vendor/libgit2/deps/ntlmclient/unicode_builtin.c +16 -27
data/vendor/libgit2/deps/ntlmclient/unicode_builtin.h +20 -0
data/vendor/libgit2/deps/ntlmclient/unicode_iconv.c +28 -52
data/vendor/libgit2/deps/ntlmclient/unicode_iconv.h +22 -0
data/vendor/libgit2/include/git2/attr.h +89 -0
data/vendor/libgit2/include/git2/blame.h +93 -42
data/vendor/libgit2/include/git2/blob.h +14 -2
data/vendor/libgit2/include/git2/branch.h +25 -0
data/vendor/libgit2/include/git2/cert.h +42 -5
data/vendor/libgit2/include/git2/checkout.h +28 -12
data/vendor/libgit2/include/git2/commit.h +35 -19
data/vendor/libgit2/include/git2/common.h +14 -4
data/vendor/libgit2/include/git2/deprecated.h +206 -6
data/vendor/libgit2/include/git2/diff.h +34 -19
data/vendor/libgit2/include/git2/errors.h +6 -6
data/vendor/libgit2/include/git2/filter.h +57 -17
data/vendor/libgit2/include/git2/graph.h +20 -2
data/vendor/libgit2/include/git2/index.h +2 -2
data/vendor/libgit2/include/git2/odb.h +29 -0
data/vendor/libgit2/include/git2/patch.h +8 -0
data/vendor/libgit2/include/git2/rebase.h +25 -1
data/vendor/libgit2/include/git2/refs.h +6 -2
data/vendor/libgit2/include/git2/remote.h +59 -6
data/vendor/libgit2/include/git2/revparse.h +5 -5
data/vendor/libgit2/include/git2/status.h +115 -59
data/vendor/libgit2/include/git2/submodule.h +9 -0
data/vendor/libgit2/include/git2/sys/commit_graph.h +174 -0
data/vendor/libgit2/include/git2/sys/filter.h +49 -28
data/vendor/libgit2/include/git2/sys/midx.h +74 -0
data/vendor/libgit2/include/git2/sys/odb_backend.h +7 -0
data/vendor/libgit2/include/git2/sys/transport.h +1 -0
data/vendor/libgit2/include/git2/tag.h +12 -0
data/vendor/libgit2/include/git2/tree.h +0 -14
data/vendor/libgit2/include/git2/types.h +9 -0
data/vendor/libgit2/include/git2/version.h +4 -4
data/vendor/libgit2/include/git2/worktree.h +1 -0
data/vendor/libgit2/src/CMakeLists.txt +25 -4
data/vendor/libgit2/src/alloc.c +21 -8
data/vendor/libgit2/src/allocators/failalloc.c +92 -0
data/vendor/libgit2/src/allocators/failalloc.h +23 -0
data/vendor/libgit2/src/allocators/stdalloc.c +41 -10
data/vendor/libgit2/src/allocators/win32_leakcheck.c +118 -0
data/vendor/libgit2/src/allocators/{win32_crtdbg.h → win32_leakcheck.h} +3 -3
data/vendor/libgit2/src/annotated_commit.c +21 -9
data/vendor/libgit2/src/apply.c +16 -7
data/vendor/libgit2/src/array.h +11 -11
data/vendor/libgit2/src/attr.c +181 -74
data/vendor/libgit2/src/attr_file.c +84 -39
data/vendor/libgit2/src/attr_file.h +32 -11
data/vendor/libgit2/src/attrcache.c +42 -37
data/vendor/libgit2/src/attrcache.h +4 -5
data/vendor/libgit2/src/blame.c +11 -5
data/vendor/libgit2/src/blob.c +35 -24
data/vendor/libgit2/src/branch.c +69 -17
data/vendor/libgit2/src/buffer.c +334 -25
data/vendor/libgit2/src/buffer.h +153 -2
data/vendor/libgit2/src/cache.c +2 -2
data/vendor/libgit2/src/cache.h +7 -7
data/vendor/libgit2/src/cc-compat.h +10 -2
data/vendor/libgit2/src/checkout.c +48 -26
data/vendor/libgit2/src/cherrypick.c +6 -2
data/vendor/libgit2/src/clone.c +41 -47
data/vendor/libgit2/src/commit.c +41 -28
data/vendor/libgit2/src/commit_graph.c +1209 -0
data/vendor/libgit2/src/commit_graph.h +162 -0
data/vendor/libgit2/src/commit_list.c +46 -0
data/vendor/libgit2/src/commit_list.h +2 -0
data/vendor/libgit2/src/common.h +25 -2
data/vendor/libgit2/src/config.c +37 -15
data/vendor/libgit2/src/config_cache.c +5 -3
data/vendor/libgit2/src/config_file.c +16 -8
data/vendor/libgit2/src/config_parse.c +4 -6
data/vendor/libgit2/src/crlf.c +16 -6
data/vendor/libgit2/src/date.c +4 -3
data/vendor/libgit2/src/delta.c +1 -1
data/vendor/libgit2/src/describe.c +6 -3
data/vendor/libgit2/src/diff.c +11 -8
data/vendor/libgit2/src/diff_driver.c +21 -17
data/vendor/libgit2/src/diff_file.c +2 -6
data/vendor/libgit2/src/diff_generate.c +46 -17
data/vendor/libgit2/src/diff_print.c +19 -6
data/vendor/libgit2/src/diff_stats.c +7 -5
data/vendor/libgit2/src/diff_tform.c +9 -8
data/vendor/libgit2/src/diff_xdiff.c +4 -2
data/vendor/libgit2/src/diff_xdiff.h +1 -1
data/vendor/libgit2/src/errors.c +24 -19
data/vendor/libgit2/src/features.h.in +5 -1
data/vendor/libgit2/src/fetch.c +5 -2
data/vendor/libgit2/src/fetchhead.c +8 -4
data/vendor/libgit2/src/filebuf.c +9 -7
data/vendor/libgit2/src/filter.c +206 -110
data/vendor/libgit2/src/filter.h +24 -5
data/vendor/libgit2/src/futils.c +5 -5
data/vendor/libgit2/src/futils.h +1 -1
data/vendor/libgit2/src/graph.c +64 -9
data/vendor/libgit2/src/hash/sha1/collisiondetect.c +3 -3
data/vendor/libgit2/src/hash/sha1/common_crypto.c +3 -3
data/vendor/libgit2/src/hash/sha1/generic.h +1 -1
data/vendor/libgit2/src/hash/sha1/mbedtls.c +12 -12
data/vendor/libgit2/src/hash/sha1/openssl.c +3 -3
data/vendor/libgit2/src/hash/sha1/sha1dc/sha1.c +0 -2
data/vendor/libgit2/src/hash/sha1/win32.c +15 -11
data/vendor/libgit2/src/hash.c +16 -13
data/vendor/libgit2/src/hash.h +1 -1
data/vendor/libgit2/src/hashsig.c +23 -10
data/vendor/libgit2/src/ident.c +13 -3
data/vendor/libgit2/src/ignore.c +35 -19
data/vendor/libgit2/src/index.c +106 -70
data/vendor/libgit2/src/index.h +1 -1
data/vendor/libgit2/src/indexer.c +31 -29
data/vendor/libgit2/src/integer.h +64 -2
data/vendor/libgit2/src/iterator.c +36 -24
data/vendor/libgit2/src/iterator.h +1 -1
data/vendor/libgit2/src/khash.h +2 -11
data/vendor/libgit2/src/{settings.c → libgit2.c} +117 -50
data/vendor/libgit2/src/libgit2.h +15 -0
data/vendor/libgit2/src/mailmap.c +23 -10
data/vendor/libgit2/src/map.h +3 -3
data/vendor/libgit2/src/merge.c +70 -30
data/vendor/libgit2/src/merge.h +2 -1
data/vendor/libgit2/src/merge_driver.c +19 -13
data/vendor/libgit2/src/merge_file.c +11 -3
data/vendor/libgit2/src/message.c +3 -1
data/vendor/libgit2/src/midx.c +471 -10
data/vendor/libgit2/src/midx.h +28 -1
data/vendor/libgit2/src/mwindow.c +103 -59
data/vendor/libgit2/src/mwindow.h +3 -3
data/vendor/libgit2/src/net.c +127 -3
data/vendor/libgit2/src/net.h +16 -2
data/vendor/libgit2/src/netops.c +6 -4
data/vendor/libgit2/src/netops.h +2 -2
data/vendor/libgit2/src/notes.c +10 -10
data/vendor/libgit2/src/object.c +22 -14
data/vendor/libgit2/src/odb.c +285 -48
data/vendor/libgit2/src/odb.h +16 -2
data/vendor/libgit2/src/odb_loose.c +28 -18
data/vendor/libgit2/src/odb_mempack.c +1 -1
data/vendor/libgit2/src/odb_pack.c +391 -114
data/vendor/libgit2/src/oid.c +5 -4
data/vendor/libgit2/src/pack-objects.c +54 -48
data/vendor/libgit2/src/pack.c +329 -119
data/vendor/libgit2/src/pack.h +25 -7
data/vendor/libgit2/src/patch.c +14 -7
data/vendor/libgit2/src/patch_generate.c +2 -2
data/vendor/libgit2/src/patch_parse.c +2 -1
data/vendor/libgit2/src/path.c +98 -53
data/vendor/libgit2/src/path.h +79 -6
data/vendor/libgit2/src/pathspec.c +8 -8
data/vendor/libgit2/src/pool.c +13 -7
data/vendor/libgit2/src/posix.c +11 -3
data/vendor/libgit2/src/reader.c +10 -6
data/vendor/libgit2/src/rebase.c +93 -49
data/vendor/libgit2/src/refdb.c +30 -13
data/vendor/libgit2/src/refdb_fs.c +121 -69
data/vendor/libgit2/src/reflog.c +19 -14
data/vendor/libgit2/src/refs.c +76 -41
data/vendor/libgit2/src/refspec.c +32 -12
data/vendor/libgit2/src/remote.c +272 -102
data/vendor/libgit2/src/remote.h +2 -1
data/vendor/libgit2/src/repository.c +176 -103
data/vendor/libgit2/src/repository.h +12 -1
data/vendor/libgit2/src/reset.c +7 -6
data/vendor/libgit2/src/revert.c +6 -2
data/vendor/libgit2/src/revparse.c +14 -9
data/vendor/libgit2/src/revwalk.c +32 -15
data/vendor/libgit2/src/runtime.c +162 -0
data/vendor/libgit2/src/runtime.h +62 -0
data/vendor/libgit2/src/settings.h +11 -0
data/vendor/libgit2/src/signature.c +6 -5
data/vendor/libgit2/src/sortedcache.h +10 -8
data/vendor/libgit2/src/stash.c +3 -1
data/vendor/libgit2/src/status.c +7 -4
data/vendor/libgit2/src/strarray.c +2 -1
data/vendor/libgit2/src/streams/mbedtls.c +14 -17
data/vendor/libgit2/src/streams/mbedtls.h +1 -1
data/vendor/libgit2/src/streams/openssl.c +101 -201
data/vendor/libgit2/src/streams/openssl.h +9 -1
data/vendor/libgit2/src/streams/openssl_dynamic.c +309 -0
data/vendor/libgit2/src/streams/openssl_dynamic.h +348 -0
data/vendor/libgit2/src/streams/openssl_legacy.c +203 -0
data/vendor/libgit2/src/streams/openssl_legacy.h +63 -0
data/vendor/libgit2/src/streams/registry.c +5 -6
data/vendor/libgit2/src/streams/socket.c +6 -2
data/vendor/libgit2/src/streams/stransport.c +6 -3
data/vendor/libgit2/src/streams/tls.c +5 -3
data/vendor/libgit2/src/submodule.c +128 -62
data/vendor/libgit2/src/submodule.h +9 -9
data/vendor/libgit2/src/sysdir.c +4 -6
data/vendor/libgit2/src/tag.c +47 -11
data/vendor/libgit2/src/thread.c +140 -0
data/vendor/libgit2/src/thread.h +479 -0
data/vendor/libgit2/src/threadstate.c +83 -0
data/vendor/libgit2/src/threadstate.h +24 -0
data/vendor/libgit2/src/trace.c +2 -2
data/vendor/libgit2/src/trace.h +17 -13
data/vendor/libgit2/src/transaction.c +19 -8
data/vendor/libgit2/src/transport.c +3 -3
data/vendor/libgit2/src/transports/auth.c +1 -1
data/vendor/libgit2/src/transports/auth_negotiate.c +11 -4
data/vendor/libgit2/src/transports/auth_ntlm.c +10 -6
data/vendor/libgit2/src/transports/credential.c +15 -7
data/vendor/libgit2/src/transports/git.c +1 -3
data/vendor/libgit2/src/transports/http.c +19 -17
data/vendor/libgit2/src/transports/http.h +1 -0
data/vendor/libgit2/src/transports/httpclient.c +53 -26
data/vendor/libgit2/src/transports/httpclient.h +1 -1
data/vendor/libgit2/src/transports/local.c +3 -3
data/vendor/libgit2/src/transports/smart.c +12 -7
data/vendor/libgit2/src/transports/smart.h +1 -1
data/vendor/libgit2/src/transports/smart_protocol.c +11 -5
data/vendor/libgit2/src/transports/ssh.c +51 -17
data/vendor/libgit2/src/transports/winhttp.c +41 -31
data/vendor/libgit2/src/tree.c +100 -77
data/vendor/libgit2/src/tree.h +1 -0
data/vendor/libgit2/src/tsort.c +0 -2
data/vendor/libgit2/src/unix/map.c +3 -1
data/vendor/libgit2/src/unix/pthread.h +2 -1
data/vendor/libgit2/src/utf8.c +150 -0
data/vendor/libgit2/src/utf8.h +52 -0
data/vendor/libgit2/src/util.c +53 -129
data/vendor/libgit2/src/util.h +33 -39
data/vendor/libgit2/src/vector.c +23 -19
data/vendor/libgit2/src/vector.h +4 -2
data/vendor/libgit2/src/win32/findfile.c +4 -2
data/vendor/libgit2/src/win32/map.c +1 -1
data/vendor/libgit2/src/win32/msvc-compat.h +9 -1
data/vendor/libgit2/src/win32/path_w32.c +22 -24
data/vendor/libgit2/src/win32/path_w32.h +0 -1
data/vendor/libgit2/src/win32/posix_w32.c +7 -1
data/vendor/libgit2/src/win32/precompiled.h +0 -1
data/vendor/libgit2/src/win32/reparse.h +4 -4
data/vendor/libgit2/src/win32/thread.c +24 -15
data/vendor/libgit2/src/win32/thread.h +1 -1
data/vendor/libgit2/src/win32/w32_buffer.c +3 -3
data/vendor/libgit2/src/win32/w32_common.h +18 -9
data/vendor/libgit2/src/win32/{w32_crtdbg_stacktrace.c → w32_leakcheck.c} +269 -33
data/vendor/libgit2/src/win32/w32_leakcheck.h +222 -0
data/vendor/libgit2/src/win32/w32_util.h +6 -6
data/vendor/libgit2/src/worktree.c +27 -16
data/vendor/libgit2/src/zstream.c +1 -1
metadata +32 -16
data/vendor/libgit2/src/allocators/win32_crtdbg.c +0 -118
data/vendor/libgit2/src/buf_text.c +0 -316
data/vendor/libgit2/src/buf_text.h +0 -122
data/vendor/libgit2/src/global.c +0 -363
data/vendor/libgit2/src/global.h +0 -41
data/vendor/libgit2/src/thread-utils.c +0 -58
data/vendor/libgit2/src/thread-utils.h +0 -369
data/vendor/libgit2/src/win32/w32_crtdbg_stacktrace.h +0 -127
data/vendor/libgit2/src/win32/w32_stack.c +0 -188
data/vendor/libgit2/src/win32/w32_stack.h +0 -140

data/vendor/libgit2/deps/ntlmclient/crypt.h CHANGED Viewed

@@ -9,6 +9,9 @@
 #ifndef PRIVATE_CRYPT_COMMON_H__
 #define PRIVATE_CRYPT_COMMON_H__
+#include "ntlmclient.h"
+#include "ntlm.h"
 #if defined(CRYPT_OPENSSL)
 # include "crypt_openssl.h"
 #elif defined(CRYPT_MBEDTLS)
@@ -25,40 +28,42 @@
 typedef unsigned char ntlm_des_block[CRYPT_DES_BLOCKSIZE];
+typedef struct ntlm_crypt_ctx ntlm_crypt_ctx;
+extern bool ntlm_crypt_init(ntlm_client *ntlm);
 extern bool ntlm_random_bytes(
-	ntlm_client *ntlm,
 	unsigned char *out,
+	ntlm_client *ntlm,
 	size_t len);
 extern bool ntlm_des_encrypt(
 	ntlm_des_block *out,
+	ntlm_client *ntlm,
 	ntlm_des_block *plaintext,
 	ntlm_des_block *key);
 extern bool ntlm_md4_digest(
 	unsigned char out[CRYPT_MD4_DIGESTSIZE],
+	ntlm_client *ntlm,
 	const unsigned char *in,
 	size_t in_len);
-extern ntlm_hmac_ctx *ntlm_hmac_ctx_init(void);
-extern bool ntlm_hmac_ctx_reset(ntlm_hmac_ctx *ctx);
 extern bool ntlm_hmac_md5_init(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *key,
 	size_t key_len);
 extern bool ntlm_hmac_md5_update(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *data,
 	size_t data_len);
 extern bool ntlm_hmac_md5_final(
 	unsigned char *out,
 	size_t *out_len,
-	ntlm_hmac_ctx *ctx);
+	ntlm_client *ntlm);
-extern void ntlm_hmac_ctx_free(ntlm_hmac_ctx *ctx);
+extern void ntlm_crypt_shutdown(ntlm_client *ntlm);
 #endif /* PRIVATE_CRYPT_COMMON_H__ */

data/vendor/libgit2/deps/ntlmclient/crypt_commoncrypto.c CHANGED Viewed

@@ -18,9 +18,15 @@
 #include "ntlm.h"
 #include "crypt.h"
+bool ntlm_crypt_init(ntlm_client *ntlm)
+{
+	memset(&ntlm->crypt_ctx, 0, sizeof(ntlm_crypt_ctx));
+	return true;
+}
 bool ntlm_random_bytes(
-	ntlm_client *ntlm,
 	unsigned char *out,
+	ntlm_client *ntlm,
 	size_t len)
 {
 	int fd, ret;
@@ -49,11 +55,14 @@ bool ntlm_random_bytes(
 bool ntlm_des_encrypt(
 	ntlm_des_block *out,
+	ntlm_client *ntlm,
 	ntlm_des_block *plaintext,
 	ntlm_des_block *key)
 {
 	size_t written;
+	NTLM_UNUSED(ntlm);
 	CCCryptorStatus result = CCCrypt(kCCEncrypt,
 		kCCAlgorithmDES, kCCOptionECBMode,
 		key, sizeof(ntlm_des_block), NULL,
@@ -65,56 +74,47 @@ bool ntlm_des_encrypt(
 bool ntlm_md4_digest(
 	unsigned char out[CRYPT_MD4_DIGESTSIZE],
+	ntlm_client *ntlm,
 	const unsigned char *in,
 	size_t in_len)
 {
+	NTLM_UNUSED(ntlm);
 	return !!CC_MD4(in, in_len, out);
 }
-ntlm_hmac_ctx *ntlm_hmac_ctx_init(void)
-{
-	return calloc(1, sizeof(ntlm_hmac_ctx));
-}
-bool ntlm_hmac_ctx_reset(ntlm_hmac_ctx *ctx)
-{
-	memset(ctx, 0, sizeof(ntlm_hmac_ctx));
-	return true;
-}
 bool ntlm_hmac_md5_init(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *key,
 	size_t key_len)
 {
-	CCHmacInit(&ctx->native, kCCHmacAlgMD5, key, key_len);
+	CCHmacInit(&ntlm->crypt_ctx.hmac, kCCHmacAlgMD5, key, key_len);
 	return true;
 }
 bool ntlm_hmac_md5_update(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *data,
 	size_t data_len)
 {
-	CCHmacUpdate(&ctx->native, data, data_len);
+	CCHmacUpdate(&ntlm->crypt_ctx.hmac, data, data_len);
 	return true;
 }
 bool ntlm_hmac_md5_final(
 	unsigned char *out,
 	size_t *out_len,
-	ntlm_hmac_ctx *ctx)
+	ntlm_client *ntlm)
 {
 	if (*out_len < CRYPT_MD5_DIGESTSIZE)
 		return false;
-	CCHmacFinal(&ctx->native, out);
+	CCHmacFinal(&ntlm->crypt_ctx.hmac, out);
 	*out_len = CRYPT_MD5_DIGESTSIZE;
 	return true;
 }
-void ntlm_hmac_ctx_free(ntlm_hmac_ctx *ctx)
+void ntlm_crypt_shutdown(ntlm_client *ntlm)
 {
-	free(ctx);
+	NTLM_UNUSED(ntlm);
 }

data/vendor/libgit2/deps/ntlmclient/crypt_commoncrypto.h CHANGED Viewed

@@ -11,8 +11,8 @@
 #include <CommonCrypto/CommonCrypto.h>
-typedef struct {
-	CCHmacContext native;
-} ntlm_hmac_ctx;
+struct ntlm_crypt_ctx {
+	CCHmacContext hmac;
+};
 #endif /* PRIVATE_CRYPT_COMMONCRYPTO_H__ */

data/vendor/libgit2/deps/ntlmclient/crypt_mbedtls.c CHANGED Viewed

@@ -17,9 +17,24 @@
 #include "ntlm.h"
 #include "crypt.h"
+bool ntlm_crypt_init(ntlm_client *ntlm)
+{
+	const mbedtls_md_info_t *info = mbedtls_md_info_from_type(MBEDTLS_MD_MD5);
+	mbedtls_md_init(&ntlm->crypt_ctx.hmac);
+	if (mbedtls_md_setup(&ntlm->crypt_ctx.hmac, info, 1) != 0) {
+		ntlm_client_set_errmsg(ntlm, "could not setup mbedtls digest");
+		return false;
+	}
+	return true;
+}
 bool ntlm_random_bytes(
-	ntlm_client *ntlm,
 	unsigned char *out,
+	ntlm_client *ntlm,
 	size_t len)
 {
 	mbedtls_ctr_drbg_context ctr_drbg;
@@ -51,6 +66,7 @@ bool ntlm_random_bytes(
 bool ntlm_des_encrypt(
 	ntlm_des_block *out,
+	ntlm_client *ntlm,
 	ntlm_des_block *plaintext,
 	ntlm_des_block *key)
 {
@@ -60,8 +76,10 @@ bool ntlm_des_encrypt(
 	mbedtls_des_init(&ctx);
 	if (mbedtls_des_setkey_enc(&ctx, *key) ||
-		mbedtls_des_crypt_ecb(&ctx, *plaintext, *out))
+	    mbedtls_des_crypt_ecb(&ctx, *plaintext, *out)) {
+		ntlm_client_set_errmsg(ntlm, "DES encryption failed");
 		goto done;
+	}
 	success = true;
@@ -72,11 +90,14 @@ done:
 bool ntlm_md4_digest(
 	unsigned char out[CRYPT_MD4_DIGESTSIZE],
+	ntlm_client *ntlm,
 	const unsigned char *in,
 	size_t in_len)
 {
 	mbedtls_md4_context ctx;
+	NTLM_UNUSED(ntlm);
 	mbedtls_md4_init(&ctx);
 	mbedtls_md4_starts(&ctx);
 	mbedtls_md4_update(&ctx, in, in_len);
@@ -86,60 +107,40 @@ bool ntlm_md4_digest(
 	return true;
 }
-ntlm_hmac_ctx *ntlm_hmac_ctx_init(void)
-{
-	ntlm_hmac_ctx *ctx;
-	const mbedtls_md_info_t *info = mbedtls_md_info_from_type(MBEDTLS_MD_MD5);
-	if ((ctx = calloc(1, sizeof(ntlm_hmac_ctx))) == NULL)
-		return NULL;
-	mbedtls_md_init(&ctx->mbed);
-	if (mbedtls_md_setup(&ctx->mbed, info, 1) != 0) {
-		free(ctx);
-		return false;
-	}
-	return ctx;
-}
-bool ntlm_hmac_ctx_reset(ntlm_hmac_ctx *ctx)
-{
-	return !mbedtls_md_hmac_reset(&ctx->mbed);
-}
 bool ntlm_hmac_md5_init(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *key,
 	size_t key_len)
 {
-	return !mbedtls_md_hmac_starts(&ctx->mbed, key, key_len);
+	if (ntlm->crypt_ctx.hmac_initialized) {
+		if (mbedtls_md_hmac_reset(&ntlm->crypt_ctx.hmac))
+			return false;
+	}
+	ntlm->crypt_ctx.hmac_initialized = !mbedtls_md_hmac_starts(&ntlm->crypt_ctx.hmac, key, key_len);
+	return ntlm->crypt_ctx.hmac_initialized;
 }
 bool ntlm_hmac_md5_update(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *in,
 	size_t in_len)
 {
-	return !mbedtls_md_hmac_update(&ctx->mbed, in, in_len);
+	return !mbedtls_md_hmac_update(&ntlm->crypt_ctx.hmac, in, in_len);
 }
 bool ntlm_hmac_md5_final(
 	unsigned char *out,
 	size_t *out_len,
-	ntlm_hmac_ctx *ctx)
+	ntlm_client *ntlm)
 {
 	if (*out_len < CRYPT_MD5_DIGESTSIZE)
 		return false;
-	return !mbedtls_md_hmac_finish(&ctx->mbed, out);
+	return !mbedtls_md_hmac_finish(&ntlm->crypt_ctx.hmac, out);
 }
-void ntlm_hmac_ctx_free(ntlm_hmac_ctx *ctx)
+void ntlm_crypt_shutdown(ntlm_client *ntlm)
 {
-	if (ctx) {
-		mbedtls_md_free(&ctx->mbed);
-		free(ctx);
-	}
+	mbedtls_md_free(&ntlm->crypt_ctx.hmac);
 }

data/vendor/libgit2/deps/ntlmclient/crypt_mbedtls.h CHANGED Viewed

@@ -11,8 +11,9 @@
 #include "mbedtls/md.h"
-typedef struct {
-	mbedtls_md_context_t mbed;
-} ntlm_hmac_ctx;
+struct ntlm_crypt_ctx {
+	mbedtls_md_context_t hmac;
+	unsigned int hmac_initialized : 1;
+};
 #endif /* PRIVATE_CRYPT_MBEDTLS_H__ */

data/vendor/libgit2/deps/ntlmclient/crypt_openssl.c CHANGED Viewed

@@ -9,26 +9,166 @@
 #include <stdlib.h>
 #include <string.h>
-#include <openssl/rand.h>
-#include <openssl/des.h>
-#include <openssl/md4.h>
-#include <openssl/hmac.h>
-#include <openssl/err.h>
+#ifdef CRYPT_OPENSSL_DYNAMIC
+# include <dlfcn.h>
+#else
+# include <openssl/rand.h>
+# include <openssl/des.h>
+# include <openssl/md4.h>
+# include <openssl/hmac.h>
+# include <openssl/err.h>
+#endif
 #include "ntlm.h"
 #include "compat.h"
 #include "util.h"
 #include "crypt.h"
+#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(CRYPT_OPENSSL_DYNAMIC)
+static inline HMAC_CTX *HMAC_CTX_new(void)
+{
+	return calloc(1, sizeof(HMAC_CTX));
+}
+static inline int HMAC_CTX_reset(HMAC_CTX *ctx)
+{
+	ntlm_memzero(ctx, sizeof(HMAC_CTX));
+	return 1;
+}
+static inline void HMAC_CTX_free(HMAC_CTX *ctx)
+{
+	free(ctx);
+}
+#endif
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L || defined(CRYPT_OPENSSL_DYNAMIC)
+static inline void HMAC_CTX_cleanup(HMAC_CTX *ctx)
+{
+	NTLM_UNUSED(ctx);
+}
+#endif
+#ifdef CRYPT_OPENSSL_DYNAMIC
+static bool ntlm_crypt_init_functions(ntlm_client *ntlm)
+{
+	void *handle;
+	if ((handle = dlopen("libssl.so.1.1", RTLD_NOW)) == NULL &&
+	    (handle = dlopen("libssl.1.1.dylib", RTLD_NOW)) == NULL &&
+	    (handle = dlopen("libssl.so.1.0.0", RTLD_NOW)) == NULL &&
+	    (handle = dlopen("libssl.1.0.0.dylib", RTLD_NOW)) == NULL &&
+	    (handle = dlopen("libssl.so.10", RTLD_NOW)) == NULL) {
+		ntlm_client_set_errmsg(ntlm, "could not open libssl");
+		return false;
+	}
+	ntlm->crypt_ctx.des_set_key_fn = dlsym(handle, "DES_set_key");
+	ntlm->crypt_ctx.des_ecb_encrypt_fn = dlsym(handle, "DES_ecb_encrypt");
+	ntlm->crypt_ctx.err_get_error_fn = dlsym(handle, "ERR_get_error");
+	ntlm->crypt_ctx.err_lib_error_string_fn = dlsym(handle, "ERR_lib_error_string");
+	ntlm->crypt_ctx.evp_md5_fn = dlsym(handle, "EVP_md5");
+	ntlm->crypt_ctx.hmac_ctx_new_fn = dlsym(handle, "HMAC_CTX_new");
+	ntlm->crypt_ctx.hmac_ctx_free_fn = dlsym(handle, "HMAC_CTX_free");
+	ntlm->crypt_ctx.hmac_ctx_reset_fn = dlsym(handle, "HMAC_CTX_reset");
+	ntlm->crypt_ctx.hmac_init_ex_fn = dlsym(handle, "HMAC_Init_ex");
+	ntlm->crypt_ctx.hmac_update_fn = dlsym(handle, "HMAC_Update");
+	ntlm->crypt_ctx.hmac_final_fn = dlsym(handle, "HMAC_Final");
+	ntlm->crypt_ctx.md4_fn = dlsym(handle, "MD4");
+	ntlm->crypt_ctx.rand_bytes_fn = dlsym(handle, "RAND_bytes");
+	if (!ntlm->crypt_ctx.des_set_key_fn ||
+	    !ntlm->crypt_ctx.des_ecb_encrypt_fn ||
+	    !ntlm->crypt_ctx.err_get_error_fn ||
+	    !ntlm->crypt_ctx.err_lib_error_string_fn ||
+	    !ntlm->crypt_ctx.evp_md5_fn ||
+	    !ntlm->crypt_ctx.hmac_init_ex_fn ||
+	    !ntlm->crypt_ctx.hmac_update_fn ||
+	    !ntlm->crypt_ctx.hmac_final_fn ||
+	    !ntlm->crypt_ctx.md4_fn ||
+	    !ntlm->crypt_ctx.rand_bytes_fn) {
+		ntlm_client_set_errmsg(ntlm, "could not load libssl functions");
+		dlclose(handle);
+		return false;
+	}
+	/* Toggle legacy HMAC context functions */
+	if (ntlm->crypt_ctx.hmac_ctx_new_fn &&
+	    ntlm->crypt_ctx.hmac_ctx_free_fn &&
+	    ntlm->crypt_ctx.hmac_ctx_reset_fn) {
+		ntlm->crypt_ctx.hmac_ctx_cleanup_fn = HMAC_CTX_cleanup;
+	} else {
+		ntlm->crypt_ctx.hmac_ctx_cleanup_fn = dlsym(handle, "HMAC_CTX_cleanup");
+		if (!ntlm->crypt_ctx.hmac_ctx_cleanup_fn) {
+			ntlm_client_set_errmsg(ntlm, "could not load legacy libssl functions");
+			dlclose(handle);
+			return false;
+		}
+		ntlm->crypt_ctx.hmac_ctx_new_fn = HMAC_CTX_new;
+		ntlm->crypt_ctx.hmac_ctx_free_fn = HMAC_CTX_free;
+		ntlm->crypt_ctx.hmac_ctx_reset_fn = HMAC_CTX_reset;
+	}
+	ntlm->crypt_ctx.openssl_handle = handle;
+	return true;
+}
+#else /* CRYPT_OPENSSL_DYNAMIC */
+static bool ntlm_crypt_init_functions(ntlm_client *ntlm)
+{
+	ntlm->crypt_ctx.des_set_key_fn = DES_set_key;
+	ntlm->crypt_ctx.des_ecb_encrypt_fn = DES_ecb_encrypt;
+	ntlm->crypt_ctx.err_get_error_fn = ERR_get_error;
+	ntlm->crypt_ctx.err_lib_error_string_fn = ERR_lib_error_string;
+	ntlm->crypt_ctx.evp_md5_fn = EVP_md5;
+	ntlm->crypt_ctx.hmac_ctx_new_fn = HMAC_CTX_new;
+	ntlm->crypt_ctx.hmac_ctx_free_fn = HMAC_CTX_free;
+	ntlm->crypt_ctx.hmac_ctx_reset_fn = HMAC_CTX_reset;
+	ntlm->crypt_ctx.hmac_ctx_cleanup_fn = HMAC_CTX_cleanup;
+	ntlm->crypt_ctx.hmac_init_ex_fn = HMAC_Init_ex;
+	ntlm->crypt_ctx.hmac_update_fn = HMAC_Update;
+	ntlm->crypt_ctx.hmac_final_fn = HMAC_Final;
+	ntlm->crypt_ctx.md4_fn = MD4;
+	ntlm->crypt_ctx.rand_bytes_fn = RAND_bytes;
+	return true;
+}
+#endif /* CRYPT_OPENSSL_DYNAMIC */
+bool ntlm_crypt_init(ntlm_client *ntlm)
+{
+	if (!ntlm_crypt_init_functions(ntlm))
+		return false;
+	ntlm->crypt_ctx.hmac = ntlm->crypt_ctx.hmac_ctx_new_fn();
+	if (ntlm->crypt_ctx.hmac == NULL) {
+		ntlm_client_set_errmsg(ntlm, "out of memory");
+		return false;
+	}
+	return true;
+}
 bool ntlm_random_bytes(
-	ntlm_client *ntlm,
 	unsigned char *out,
+	ntlm_client *ntlm,
 	size_t len)
 {
-	int rc = RAND_bytes(out, len);
+	int rc = ntlm->crypt_ctx.rand_bytes_fn(out, len);
 	if (rc != 1) {
-		ntlm_client_set_errmsg(ntlm, ERR_lib_error_string(ERR_get_error()));
+		ntlm_client_set_errmsg(ntlm, ntlm->crypt_ctx.err_lib_error_string_fn(ntlm->crypt_ctx.err_get_error_fn()));
 		return false;
 	}
@@ -37,94 +177,81 @@ bool ntlm_random_bytes(
 bool ntlm_des_encrypt(
 	ntlm_des_block *out,
+	ntlm_client *ntlm,
 	ntlm_des_block *plaintext,
 	ntlm_des_block *key)
 {
 	DES_key_schedule keysched;
+	NTLM_UNUSED(ntlm);
 	memset(out, 0, sizeof(ntlm_des_block));
-	DES_set_key(key, &keysched);
-	DES_ecb_encrypt(plaintext, out, &keysched, DES_ENCRYPT);
+	ntlm->crypt_ctx.des_set_key_fn(key, &keysched);
+	ntlm->crypt_ctx.des_ecb_encrypt_fn(plaintext, out, &keysched, DES_ENCRYPT);
 	return true;
 }
 bool ntlm_md4_digest(
 	unsigned char out[CRYPT_MD4_DIGESTSIZE],
+	ntlm_client *ntlm,
 	const unsigned char *in,
 	size_t in_len)
 {
-	MD4(in, in_len, out);
+	ntlm->crypt_ctx.md4_fn(in, in_len, out);
 	return true;
 }
-#if OPENSSL_VERSION_NUMBER < 0x10100000L
-static inline void HMAC_CTX_free(HMAC_CTX *ctx)
-{
-	if (ctx)
-		HMAC_CTX_cleanup(ctx);
-	free(ctx);
-}
-static inline int HMAC_CTX_reset(HMAC_CTX *ctx)
-{
-	HMAC_CTX_cleanup(ctx);
-	ntlm_memzero(ctx, sizeof(HMAC_CTX));
-	return 1;
-}
-static inline HMAC_CTX *HMAC_CTX_new(void)
-{
-	return calloc(1, sizeof(HMAC_CTX));
-}
-#endif
-ntlm_hmac_ctx *ntlm_hmac_ctx_init(void)
-{
-	return HMAC_CTX_new();
-}
-bool ntlm_hmac_ctx_reset(ntlm_hmac_ctx *ctx)
-{
-	return HMAC_CTX_reset(ctx);
-}
 bool ntlm_hmac_md5_init(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *key,
 	size_t key_len)
 {
-	return HMAC_Init_ex(ctx, key, key_len, EVP_md5(), NULL);
+	const EVP_MD *md5 = ntlm->crypt_ctx.evp_md5_fn();
+	ntlm->crypt_ctx.hmac_ctx_cleanup_fn(ntlm->crypt_ctx.hmac);
+	return ntlm->crypt_ctx.hmac_ctx_reset_fn(ntlm->crypt_ctx.hmac) &&
+	       ntlm->crypt_ctx.hmac_init_ex_fn(ntlm->crypt_ctx.hmac, key, key_len, md5, NULL);
 }
 bool ntlm_hmac_md5_update(
-	ntlm_hmac_ctx *ctx,
+	ntlm_client *ntlm,
 	const unsigned char *in,
 	size_t in_len)
 {
-	return HMAC_Update(ctx, in, in_len);
+	return ntlm->crypt_ctx.hmac_update_fn(ntlm->crypt_ctx.hmac, in, in_len);
 }
 bool ntlm_hmac_md5_final(
 	unsigned char *out,
 	size_t *out_len,
-	ntlm_hmac_ctx *ctx)
+	ntlm_client *ntlm)
 {
 	unsigned int len;
 	if (*out_len < CRYPT_MD5_DIGESTSIZE)
 		return false;
-	if (!HMAC_Final(ctx, out, &len))
+	if (!ntlm->crypt_ctx.hmac_final_fn(ntlm->crypt_ctx.hmac, out, &len))
 		return false;
 	*out_len = len;
 	return true;
 }
-void ntlm_hmac_ctx_free(ntlm_hmac_ctx *ctx)
+void ntlm_crypt_shutdown(ntlm_client *ntlm)
 {
-	HMAC_CTX_free(ctx);
+	if (ntlm->crypt_ctx.hmac) {
+		ntlm->crypt_ctx.hmac_ctx_cleanup_fn(ntlm->crypt_ctx.hmac);
+		ntlm->crypt_ctx.hmac_ctx_free_fn(ntlm->crypt_ctx.hmac);
+	}
+#ifdef CRYPT_OPENSSL_DYNAMIC
+	if (ntlm->crypt_ctx.openssl_handle)
+		dlclose(ntlm->crypt_ctx.openssl_handle);
+#endif
+	memset(&ntlm->crypt_ctx, 0, sizeof(ntlm_crypt_ctx));
 }