summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Files in /etc/ssl belong to root. ok deraadtnatano2016-09-111-4/+4
|
* missing space after commatb2016-09-091-2/+2
| | | | | | (this was apparently lost during the repo surgery) ok bcook
* back out calls to EVP_CIPHER_CTX_cleanup() in EVP_Cipher/Encrypt/DecryptFinalbcook2016-09-091-4/+1
| | | | | Software that refers to ctx after calling Final breaks with these changes. revert parts of 1.31 and 1.32
* shorten smime;jmc2016-09-081-344/+83
|
* remove a cms leftoverderaadt2016-09-051-2/+1
|
* remove CMS manuals; beck@ agress with the general ideaschwarze2016-09-0523-2347/+1
|
* Enable mbrtowc(3) and wcrtomb(3) tests now that mbsinit(3) works.schwarze2016-09-051-2/+2
| | | | Related to locale/multibyte_citrus.c rev. 1.7.
* shorten sess_id;jmc2016-09-041-84/+44
|
* fix Dt;jmc2016-09-041-2/+2
|
* Nuke one more cms tendrilbeck2016-09-041-4/+1
| | | | ok jsing@
* bye bye cms. send it to the atticbeck2016-09-042-1144/+2
| | | | ok jsing@
* Remove cms.jsing2016-09-041-8/+1
|
* Remove cms.jsing2016-09-0415-7541/+0
| | | | ok beck@, guenther@, tedu@
* Expand DECLARE_ASN1_.*FUNCTIONS macros.jsing2016-09-045-69/+293
| | | | No change in preprocessed output, ignoring whitespace and line numbers.
* Expand DECLARE_ASN1_.*FUNCTIONS macros.jsing2016-09-042-7/+27
| | | | No change in preprocessed output, ignoring whitespace and line numbers.
* Set errno more consistently, and fix a warning, ok tedunicm2016-09-041-21/+29
|
* Expand DECLARE_ASN1_.*FUNCTIONS macros.jsing2016-09-041-33/+133
| | | | No change in preprocessed output, ignoring whitespace.
* minor tweaks;jmc2016-09-041-7/+7
|
* rmtedu2016-09-041-68/+0
|
* oops, name file after main functiontedu2016-09-041-0/+68
|
* it doesn't say anything yet, but start adding a man pagetedu2016-09-041-0/+68
|
* Place IMPLEMENT_PEM macros under #ifndef LIBRESSL_INTERNAL.jsing2016-09-041-2/+4
|
* Sort and group functions.jsing2016-09-045-250/+226
|
* Expand IMPLEMENT_PEM macros.jsing2016-09-041-2/+29
| | | | No change in generated assembly.
* Expand IMPLEMENT_PEM macros.jsing2016-09-044-30/+545
| | | | No change in generated assembly.
* Make the key sizes and offsets arrays const, ok tedunicm2016-09-041-2/+2
|
* Less S390.jsing2016-09-0412-4596/+2
| | | | ok deraadt@
* Bump TLS_API for addition of callbacks.jsing2016-09-041-2/+2
|
* Less IA64.jsing2016-09-0410-6846/+1
| | | | ok deraadt@
* Less vax.jsing2016-09-044-617/+1
| | | | ok deraadt@
* Maintain consistency with function naming.jsing2016-09-042-8/+8
|
* Sort headers and use the installed tls.h, rather than the local one.jsing2016-09-041-5/+5
|
* $OpenBSD$ tagjsing2016-09-041-1/+1
|
* New sentence, new line. Also wrap at 80 chars.jsing2016-09-041-3/+7
|
* include <sys/types.h> to get <sys/cdefs.h> instead (for __warn_references)bcook2016-09-041-2/+2
| | | | corrected by deraadt@ / guenther@
* Add callback-based interface to libtls.bcook2016-09-0410-37/+371
| | | | | | | This allows working with buffers and callback functions instead of directly on sockets or file descriptors. Original patch from Tobias Pape <tobias_at_netshed.de>. ok beck@
* include <sys/cdefs.h> for portablebcook2016-09-041-1/+3
|
* State that libtls functions apply to both clients and servers, unlessjsing2016-09-041-47/+16
| | | | | | | | | | noted otherwise. Remove all of the now redundant "client and server" notations and change the client and server notations to "client only" and "server only". With input from jmc@. ok beck@ jmc@
* Add ISRG Root X1, the letsencrypt CA root. This is now included in its ownsthen2016-09-041-1/+55
| | | | | right in Mozilla's CA list, rather than relying on IdenTrust cross-signing. ok beck@ jca@
* only regen pkg-config files when required; ok jaspernatano2016-09-042-8/+10
|
* test wcrtomb(3)schwarze2016-09-042-0/+93
|
* Options that take a time argument....take an argumentguenther2016-09-041-2/+3
| | | | diff from Kinichiro Inoguchi (kinichiro.inoguchi (at) gmail.com)
* test mbrtowc(3) in conjunction with mbsinit(3)schwarze2016-09-032-0/+93
|
* squash some possibly-used-uninitialized warningsbcook2016-09-031-3/+3
|
* switch to a constant-time gather procedure for amd64 mont5 asmbcook2016-09-031-199/+314
| | | | | | | from OpenSSL commit 7f98aa7403a1244cf17d1aa489f5bb0f39bae431 CVE-2016-0702 ok beck@
* import new BN tests from OpenSSLbcook2016-09-032-167/+434
| | | | | | | New tests that various BIGNUM methods behave correctly on zero/even inputs. from OpenSSL ok beck@
* add constant-time MOD_EXP_CTIME_COPY_FROM_PREBUF.bcook2016-09-031-16/+55
| | | | | | | | | | Patch based on OpenSSL commit d7a854c055ff22fb7da80c3b0e7cb08d248591d0 "Performance penalty varies from platform to platform, and even key length. For rsa2048 sign it was observed to reach almost 10%." CVE-2016-0702 ok beck@
* BN_mod_exp_mont_consttime: check for zero modulus.bcook2016-09-031-9/+33
| | | | | | | Don't dereference d when top is zero. Original patch from OpenSSL commit d46e946d2603c64df6e1e4f9db0c70baaf1c4c03 ok jsing@
* remove unneeded reach-around includebcook2016-09-031-2/+2
|
* add iOS support for getentropybcook2016-09-031-1/+12
| | | | from Jacob Berkman, ok beck@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-28 12:17:12 +0000