openbsd/src, branch libressl-v2.9.0

add a -R option to set/unset resolver flags.

2018-12-15T15:16:12+00:00

use strcasecmp for reading args.

Delete a note taken during the rev. 1.1 man page splite

2018-12-14T20:18:27+00:00

that should have been deleted before commit. The cross reference is already present below SEE ALSO. Glitch noticed by jsing@.

Improve speed for the multi-threaded case by reducing lock contention.

2018-12-10T07:57:49+00:00

tested by many; ok florian@

Keep usage in sync with logic if OPENSSL_NO_DES is set.

2018-12-09T19:30:34+00:00

ok jmc@, jsing@

style; OK otto

2018-12-09T11:32:02+00:00

Remove an ugly hack in the client certificate verification code that works

2018-12-07T07:22:09+00:00

around broken GOST implementations. It looks like client certificates with GOST have been completely broken since reimport of the GOST code, so no-one is using LibreSSL this way. The client side was fixed only last week for TLSv1.0 and TLSv1.1. This workaround is now in the way of much needed simplifcation and cleanup, so it is time for it to go. suggested by and ok jsing

remove a stray line accidentally left behind in rev. 1.120;

2018-12-05T17:11:59+00:00

patch from Hiltjo Posthuma

Send SSL_AD_DECODE alerts in the case of a bad hello request or an

2018-12-03T17:16:12+00:00

invalid change cipher spec. Found due to dead assignment warnings by the Clang static analyzer. ok inoguchi (previous version), jsing

Restore function prototype for ASN1_dup, fixing usage on I32LP64 platforms.

2018-11-30T04:51:19+00:00

This prototype was removed inadvertantly in r1.50. OK jsing@

This test does not terminate if malloc conf is preconfigured with

2018-11-29T22:23:22+00:00

J. Clear that option to allow running full regress with paranoid malloc flags. This is the same fix as for malloc_ulimit1.