summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Make tree build againbeck2016-09-036-12/+482
|
* remove unused variablebeck2016-09-031-2/+1
|
* Fix some very unnecessary convoultion.beck2016-09-031-16/+6
| | | | ok krw@
* crank minor for API addiiton of x509_email, etc. functionsbeck2016-09-032-2/+2
|
* Bring in functions used by stunnel and exim from BoringSSL - this bringsbeck2016-09-032-2/+452
| | | | | | in X509_check_host, X509_check_email, X509_check_ip, and X509_check_ip_asc, with some cleanup on the way in by myself and jsing@ ok bcook@
* Remove the libcrypto/crypto directorybeck2016-09-0341-6330/+0
|
* Remove the libssl/ssl directorybeck2016-09-032-54/+0
|
* Remove the libssl/src directorybeck2016-09-031190-386114/+0
|
* Print SKIPPED if a regress test cannot be executed for some reason.bluhm2016-09-021-2/+3
| | | | This allows to identify such tests by looking at their output.
* shorten s_server;jmc2016-09-021-134/+72
|
* Fix build of regress after source movesbeck2016-09-021-2/+2
|
* Make this regress build againbeck2016-09-022-4/+4
|
* Less lock contention by using more pools for mult-threaded programs.otto2016-09-012-94/+190
| | | | tested by many (thanks!) ok tedu, guenther@
* black magic for sparc page size can gotedu2016-09-011-4/+2
|
* shorten s_client;jmc2016-09-011-142/+50
|
* Crank minor due to API additionbeck2016-08-311-1/+1
|
* We don't need any VMS access tricks.deraadt2016-08-311-27/+4
| | | | ok beck tedu
* Add OPTION_ARG_TIME for parsing a (64 bit if needed) time_tderaadt2016-08-303-4/+15
| | | | prodding & ok jsing
* buf[][] with strange use all over the place is ridiculous, especiallyderaadt2016-08-301-15/+14
| | | | | if buf[1] is never used. ok guenther beck
* Fix 32-bit time handling, using time_t and make it work on systemsderaadt2016-08-302-24/+25
| | | | | where that is long long. ok beck guenther
* shorten rsautl;jmc2016-08-301-152/+13
|
* shorten the rsa text; of note, i've also reduced the descriptionjmc2016-08-281-278/+44
| | | | | for -inform/-outform/-text and removed the oft-repeated header/footer blurb;
* Don't call lstat() before readlink() just to see if it's a symlink,guenther2016-08-281-14/+17
| | | | | | as readlink() will tell you that more cheaply. ok millert@
* shorten the req text;jmc2016-08-271-452/+189
|
* Enable ALPN regress now that it passes.jsing2016-08-271-4/+2
|
* Be more strict when parsing TLS extensions.jsing2016-08-272-34/+74
| | | | | | Based on a diff from Kinichiro Inoguchi. ok beck@
* Pull in <stdio.h> for NULLguenther2016-08-271-1/+2
| | | | ok deraadt@
* Repeated occurances of the idiom buf[5][BUFSIZ] -- ridiculous. Give eachderaadt2016-08-261-86/+87
| | | | | | buf a special name, recognize that most are PATH_MAX, and remove a few that are not needed at all. ok jsing beck
* Pull in <time.h> for clock_gettime()guenther2016-08-261-1/+2
| | | | ok deraadt@
* shorten the pkeyutl text;jmc2016-08-251-83/+40
| | | | help/ok guenther
* shorten the pkeyparam text;jmc2016-08-241-23/+8
|
* shorten the pkey text;jmc2016-08-241-73/+25
|
* shorten pkcs12;jmc2016-08-231-187/+42
|
* Various clean up and reorganisation of the connection info handling code.jsing2016-08-223-69/+97
| | | | | | | | | In particular, rename tls_free_conninfo() to tls_conninfo_free() and make it a real free function. Rename tls_get_conninfo() to tls_conninfo_populate() and have it allocate the struct tls_conninfo (after freeing any existing one). ok beck@
* Stick with the usual 'if NULL return NULL' idiom.jsing2016-08-221-10/+10
| | | | ok beck@
* Bump TLS_API due to the addition of server side SNI functions.jsing2016-08-221-2/+2
|
* Bump libtls minor due to the addition of symbols.jsing2016-08-221-1/+1
|
* Provide an API that enables server side SNI support - add the ability tojsing2016-08-225-6/+107
| | | | | | | | provide additional keypairs (via tls_config_add_keypair_{file,mem}()) and allow the server to determine what servername the client requested (via tls_conn_servername()). ok beck@
* Create contexts for server side SNI - these include the additional SSL_CTXjsing2016-08-223-3/+174
| | | | | | | | | that is required for certificate switching with libssl and the certificate itself so that we can match against the subject and SANs. Hook up the servername callback and switch to the appropriate SSL_CTX if we find a matching certificate. ok beck@
* shorten the pkcs8 text;jmc2016-08-221-179/+63
|
* Sorry Andrew and Luke, I'm pretty sure we deleted your IRIX and VMS code.deraadt2016-08-221-4/+1
|
* shorten pkcs7 text;jmc2016-08-201-58/+37
|
* shorten the passwd text; ok jsingjmc2016-08-201-48/+14
|
* shorten the ocsp text; ok beckjmc2016-08-191-199/+71
|
* Split out the TLS server SSL_CTX allocation and configuration code, sojsing2016-08-181-19/+37
| | | | | | that it can be reused to allocate the additional SSL_CTXs needed for SNI. ok reyk@
* Rework parts of the libtls man page for clarity. Split out the connectionjsing2016-08-181-45/+35
| | | | | | | information related functions under their own heading and dedup the text relating to when these functions can be called. With input from and ok jmc@
* shorten the nseq text;jmc2016-08-181-41/+17
|
* wrterror() is fatal, delete dead code; ok tom@ natano@ tedu@otto2016-08-171-61/+22
|
* shorten genrsa; ok jsingjmc2016-08-161-42/+18
|
* The tls_conninfo serial is also unused.jsing2016-08-151-2/+1
|
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-22 07:57:21 +0000