| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2015-09-30 | Remove support for NO_ASN1_TYPEDEFS. | doug | 2 | -42/+2 | |
| This ifdef was introduced 15 years ago and was known to cause problems with STACK_OF() back then. ok jsing@, beck@, jca@ | |||||
| 2015-09-29 | convert "last_time" to a time_t, to handle beyond Y2038 | deraadt | 2 | -14/+14 | |
| ok guenther miod | |||||
| 2015-09-29 | Replace remaining M_ASN1_BIT_STRING_(new|free) macros with calls to | jsing | 6 | -18/+18 | |
| ASN1_BIT_STRING_(new|free). ok beck@ doug@ | |||||
| 2015-09-29 | Instead of declaring a union in multiple places, move it to tls_internal.h. | jsing | 3 | -15/+14 | |
| ok deraadt@ | |||||
| 2015-09-29 | clean some ugly intendation warts | deraadt | 5 | -12/+21 | |
| 2015-09-29 | Add an rfc5280 test suite to test x509_cmp_time. | beck | 2 | -2/+362 | |
| Note some of these will yet fail with the current libcrypto as the current X509_cmp_time is not RFC5280 compliant ok jsing@ | |||||
| 2015-09-29 | Fix sha2 regression test for libcrypto. | doug | 1 | -2/+2 | |
| By default, "openssl sha" used SHA-0. However, it was possible to use the form "openssl sha -sha256" to run SHA-256 instead. The regression test used this form. Since we removed SHA-0 support, the regress tests should now call "openssl <digest>". ok guenther@, bcook@ | |||||
| 2015-09-28 | remove excessive brackets on pointer math | deraadt | 2 | -16/+16 | |
| 2015-09-28 | Explicit NULL checks and style(9) tweaks. | jsing | 1 | -7/+7 | |
| 2015-09-27 | Redo 1.25, without the NULL deref. | miod | 2 | -44/+62 | |
| ok sthen@ bcook@ | |||||
| 2015-09-27 | check if openssl(1) actually works before proceeding | bcook | 1 | -0/+2 | |
| It was possible for this test to pass even if the openssl command itself was missing. | |||||
| 2015-09-27 | bump to 2.3.1 | bcook | 2 | -6/+6 | |
| 2015-09-26 | Use ASN1_item_dup() instead of ASN1_dup(). | jsing | 4 | -14/+10 | |
| ok bcook@ | |||||
| 2015-09-26 | lint is dead: delete useless LINTLIBRARY comments | guenther | 2 | -4/+2 | |
| ok millert@ | |||||
| 2015-09-26 | We don't need no stinking "EXAMPLE OF THE DSA" or README (the credits are | jsing | 4 | -252/+0 | |
| already in the code). ok beck@ miod@ | |||||
| 2015-09-25 | Add DER encoding/decoding coverage for ASN.1 GENERALIZEDTIME and UTCTIME. | jsing | 1 | -39/+158 | |
| 2015-09-25 | Add initial regress tests for ASN.1 times. | jsing | 3 | -1/+372 | |
| 2015-09-25 | avoid trailing .Ns, reduce .Xo and .Sm, drop redundant .Bk | schwarze | 1 | -12/+4 | |
| 2015-09-22 | typos in documentation; better wording, suggested by jmc@libressl-v2.3.0 | sobrado | 51 | -88/+88 | |
| ok jmc@ | |||||
| 2015-09-21 | add a missing NULL check | bcook | 1 | -1/+5 | |
| noted by Bill Parker (dogbert2) on github | |||||
| 2015-09-21 | add a couple of missing NULL checks | bcook | 1 | -3/+3 | |
| noted by Bill Parker (dogbert2) on github | |||||
| 2015-09-21 | remove vestigial bits of sha-0 and md2 from openssl(1) | bcook | 5 | -23/+17 | |
| Noted by kinichiro on github. We probably need a better way to indicate the list of message digests that are allowed, as the current ones are nowhere near exhaustive (sigh - guenther@) OK guenther@ jmc@ | |||||
| 2015-09-20 | Pack the algorithm numbers, to avoid printing a useless (null) 0 0 0 0 | miod | 1 | -34/+34 | |
| line in the summary. | |||||
| 2015-09-19 | Don't wrap initialized variables: binutils appears to be mishandling them | guenther | 1 | -1/+3 | |
| on arm and m88k problems with optind observed by jsg@ | |||||
| 2015-09-18 | avoid void * pointer arithmetic | bcook | 2 | -4/+4 | |
| ok miod@ | |||||
| 2015-09-18 | Revert bn_print.c:r1.25 ("handle negative-zero in BN_bn2dec() too") for | sthen | 2 | -62/+44 | |
| now, it has a NULL deref. Segfault reported by Mikolaj Kucharski, ok bcook | |||||
| 2015-09-17 | Remove more EVP_sha() SHA-0 references. | bcook | 3 | -6/+5 | |
| 2015-09-17 | Re-add missing comma from SHA-0 removal which breaks mlinks generation. | sthen | 2 | -2/+2 | |
| Worked out by bcook@ | |||||
| 2015-09-17 | include stdint.h for uint64_t | bcook | 2 | -2/+4 | |
| noted by Bernard Spil | |||||
| 2015-09-16 | Zap RANDFILE. | lteo | 2 | -5/+3 | |
| 2015-09-14 | tweak previous; | jmc | 1 | -2/+2 | |
| 2015-09-14 | Provide tls_config_insecure_noverifytime() in order to be able to disable | jsing | 6 | -6/+29 | |
| certificate validity checking. ok beck@ | |||||
| 2015-09-14 | Add support for disabling certificate and CRL validity checking. | jsing | 4 | -22/+30 | |
| Loosely based on changes in OpenSSL. ok beck@ | |||||
| 2015-09-14 | delete bogus trailing .Ns from SYNOPSIS .Ft macros | schwarze | 2 | -12/+12 | |
| 2015-09-14 | fix formatting by adding the required quotes to .Fa in the SYNOPSIS | schwarze | 4 | -22/+22 | |
| 2015-09-14 | Remove useless quoting from .Fo and .Fn function names, to prevent | schwarze | 3 | -10/+10 | |
| development of a cargo cult in case people look at existing files for examples. This achieves a consistent .Fo and .Fn quoting style across the whole tree. | |||||
| 2015-09-14 | some conn_version and conn_cipher bits; | jmc | 2 | -9/+10 | |
| 2015-09-14 | Only two of the *rand48.c files need <math.h>, so just #include it in them | guenther | 3 | -4/+5 | |
| 2015-09-14 | use .Va for global variables, and .Vt where the type is included | schwarze | 1 | -4/+3 | |
| 2015-09-14 | Expose EOF without close-notify via tls_close(). | jsing | 2 | -6/+14 | |
| Make tls_read(3)/tls_write(3) follow read(2)/write(2) like semantics and return 0 on EOF with and without close-notify. However, if we saw an EOF from the underlying file descriptors without getting a close-notify, save this and make it visible when tls_close(3) is called. This keeps the semantics we want, but makes it possible to detect truncation at higher layers, if necessary. ok beck@ guenther@ | |||||
| 2015-09-14 | Return an error if tls_handshake() or tls_close() is called on a context | jsing | 1 | -2/+13 | |
| for which they are not valid operations. ok beck@ | |||||
| 2015-09-14 | add missing function return types | schwarze | 1 | -2/+3 | |
| 2015-09-14 | Wrap <ifaddrs.h>, <netinet/in.h>, and <netinet/if_ether.h> so internal | guenther | 3 | -3/+7 | |
| calls go direct and all the symbols are weak | |||||
| 2015-09-14 | Wrap <net/if.h> and <net/if_dl.h> so internal calls go direct and all the | guenther | 2 | -2/+4 | |
| symbols are weak | |||||
| 2015-09-14 | Remove cast of int* to int* | guenther | 1 | -2/+2 | |
| 2015-09-14 | Finish wrapping <netdb.h> so that calls go direct and the symbols are all weak | guenther | 9 | -9/+24 | |
| 2015-09-14 | Test the exported strsignal() API, not the (now hidden) internal API | guenther | 1 | -8/+2 | |
| noted by daniel@ | |||||
| 2015-09-14 | Temporarily revive MD4 for MS CHAP support. | doug | 35 | -59/+1505 | |
| 2015-09-13 | Crank major version due to removal of SHA-0 and MD4 from libcrypto. | doug | 5 | -10/+10 | |
| 2015-09-13 | Remove MD4 support from LibreSSL. | doug | 35 | -1504/+58 | |
| MD4 should have been removed a long time ago. Also, RFC 6150 moved it to historic in 2011. Rides the major crank from removing SHA-0. Discussed with many including beck@, millert@, djm@, sthen@ ok jsing@, input + ok bcook@ | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |