| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2014-07-16 | Only call getauxval(3) if HAVE_GETAUXVAL is defined. Fixes build on older | kettenis | 2 | -2/+6 | |
| Linux (such as Ubuntu 12.04LTS) that don't have it yet. Seems the AT_XXX defines are pulled in by <link.h> now. ok beck@ | |||||
| 2014-07-16 | do not need a variable to track locking, since all code paths have it | deraadt | 2 | -10/+4 | |
| locked throughout. | |||||
| 2014-07-16 | #ifdef wrap the _rs_forkhandler | deraadt | 1 | -1/+3 | |
| 2014-07-16 | added handler for an atfork hook from kettenis@ | bcook | 1 | -1/+10 | |
| ok deraadt@ beck@ kettenis@ | |||||
| 2014-07-14 | not needed anymore | deraadt | 2 | -1173/+0 | |
| 2014-07-14 | Fix memory leak upon error in ssl_parse_clienthello_use_srtp_ext(). | miod | 2 | -12/+12 | |
| From BoringSSL. | |||||
| 2014-07-14 | whitespace | deraadt | 45 | -172/+172 | |
| 2014-07-14 | Improve RAND_write_file(), chmod crud, etc. | deraadt | 2 | -54/+38 | |
| ok tedu | |||||
| 2014-07-13 | Add configuration handling for certificate and key files. | jsing | 3 | -7/+22 | |
| 2014-07-13 | Add stubs for the proposed server API. | jsing | 3 | -1/+72 | |
| 2014-07-13 | Stop leaking internal library pointers in error messages. | jsing | 2 | -4/+4 | |
| Requested by miod@ | |||||
| 2014-07-13 | Tabs, not spaces. | jsing | 3 | -22/+22 | |
| 2014-07-13 | Rename the context allocation from ressl_new to ressl_client, which makes | jsing | 3 | -1/+30 | |
| it completely obvious what the context is for. Ensure client functions are used on client contexts. | |||||
| 2014-07-13 | Split the context allocation out from the configuration. This will allow | jsing | 2 | -5/+14 | |
| us to properly report errors that occur during configuration processing. Discussed with tedu@ | |||||
| 2014-07-13 | Move the client code into a separate file. | jsing | 3 | -161/+185 | |
| 2014-07-13 | Rename various configuration handling functions. | jsing | 2 | -13/+14 | |
| Requested by and discussed with tedu@. | |||||
| 2014-07-13 | Use a single ressl.h header file. | jsing | 5 | -45/+18 | |
| Discussed with beck@ and tedu@. | |||||
| 2014-07-13 | Explicitly initialise slen - this was not previously done due to a missing | jsing | 2 | -2/+4 | |
| M_ASN1_D2I_begin macro. | |||||
| 2014-07-13 | Convert error handling to SSLerr and ERR_asprintf_error_data. | jsing | 2 | -118/+108 | |
| 2014-07-13 | tweak previous; | jmc | 1 | -2/+2 | |
| 2014-07-13 | missing bracket in previous; | jmc | 1 | -2/+2 | |
| 2014-07-13 | Convert d2i_SSL_SESSION to ASN1 primitives, instead of the horrific | jsing | 2 | -52/+594 | |
| asn1_mac.h macros. This still needs a lot of improvement, but immediately becomes readable. ok miod@ (sight unseen!) | |||||
| 2014-07-13 | Remove license introduced with the PSK code, which has since been removed. | jsing | 2 | -54/+2 | |
| ok deraadt@ | |||||
| 2014-07-13 | Another compression remnant. | jsing | 2 | -4/+2 | |
| 2014-07-13 | Expand the tlsext_sigalg macros. The end result is about the same number | jsing | 2 | -32/+38 | |
| of lines and much more readable. ok miod@ | |||||
| 2014-07-13 | Rewrite i2d_SSL_SESSION to use the ASN1 primitives, rather than using the | jsing | 2 | -150/+196 | |
| horrific macros from asn1_mac.h. This is a classic example of using macros to obfuscate code, in an attempt to reduce the line count. The end result is so ridiculously convoluted that it is completely unreadable and it takes hours to deconstruct the macros and figure out what is actually going on behind the scenes. ok miod@ | |||||
| 2014-07-13 | Add a regress test for the ASN1 handling of SSL session tickets. | jsing | 3 | -1/+389 | |
| 2014-07-13 | The bell tolls for BUF_strdup - Start the migration to using | beck | 40 | -145/+155 | |
| intrinsics. This is the easy ones, a few left to check one at a time. ok miod@ deraadt@ | |||||
| 2014-07-13 | Fix memory leak. | logan | 2 | -2/+4 | |
| OK from beck@ and miod@ | |||||
| 2014-07-13 | OPENSSL_{malloc,free} -> {malloc,free} | miod | 19 | -27/+27 | |
| 2014-07-13 | Warn about the use of BUF_strdup. | miod | 1 | -2/+4 | |
| 2014-07-13 | Update BUGS section. | miod | 1 | -4/+6 | |
| 2014-07-13 | oops, i deleted the wrong word | tedu | 1 | -2/+2 | |
| 2014-07-13 | remove a lie spotted by guenther | tedu | 1 | -5/+4 | |
| 2014-07-13 | once srandomdev() is called, switch to using arc4random() but mask off the | tedu | 1 | -12/+10 | |
| high bit as required by posix. wouldn't want to break any standards. idea and ok deraadt | |||||
| 2014-07-13 | unbreak build this needed to be an and.. | beck | 8 | -16/+16 | |
| ok jsing@ | |||||
| 2014-07-13 | Use dl_iterate_phdr() to iterate over the segments and throw the addresses | deraadt | 4 | -4/+56 | |
| into the hash; hoping the system has some ASLR or PIE. This replaces and substantially improves upon &main which proved problematic with some picky linkers. Work with kettenis, testing by beck | |||||
| 2014-07-13 | Split out ntoh[ls] and hton[ls] into their own manpage. | guenther | 3 | -136/+199 | |
| Update byteorder(3) to cover the new functions in <endian.h> ok deraadt@ millert@ | |||||
| 2014-07-13 | Provide a link to the canonical API specification. | deraadt | 8 | -8/+32 | |
| ok beck | |||||
| 2014-07-13 | Make sure all error conditions in RSA_padding_add_PKCS1_PSS_mgf1() cause | miod | 2 | -6/+8 | |
| EVP_MD_CTX_cleanup() to be called. | |||||
| 2014-07-13 | Possible PBEPARAM leak in the error path. | miod | 2 | -12/+16 | |
| 2014-07-13 | dsa_priv_decode(): only destroy the object we've created, and with the | miod | 2 | -6/+10 | |
| appropriate function. Checking for privkey != NULL is not enough since privkey points to a member of ndsa if ndsa != NULL. dsa_priv_encode(): possible double free in error path. | |||||
| 2014-07-13 | Check X509_NAME_oneline() return value when it will have to allocate memory. | miod | 2 | -2/+6 | |
| 2014-07-13 | EVP_DigestInit_ex() may be used to recycle an existing EVP_MD_CTX without having | miod | 2 | -6/+18 | |
| to reinitialize all of it, especially if it is used with the same MD algorithm. However, when the MD algorithm changes, it needs to perform more cleanups. Make that code more closer to what EVP_MD_CTX_cleanup() does by: - only freeing md_data if EVP_MD_CTX_FLAG_REUSE is not set - performing an explicit_bzero of md_data before freeing it - making sure we call EVP_PKEY_CTX_free on the pctx if the allocation for the new md_data fails. ok tedu@ | |||||
| 2014-07-13 | Don't include asn1_mac.h if all you need is asn1.h. | miod | 2 | -4/+4 | |
| 2014-07-13 | Take out __bounded__ in the include files we use it in when not on OpenBSD. | beck | 8 | -10/+32 | |
| while we can take it out in portable at compile time, it is still a problem when we install this header file on a system that doesn't support __bounded__ if this is unguarded. ok miod@ bcook@ | |||||
| 2014-07-13 | While we thought this would make portable life easier it actually | beck | 1 | -3/+1 | |
| makes it much harder. ok bcook@ kettenis@ | |||||
| 2014-07-13 | No need to include evp_locl.h in there. | miod | 12 | -36/+12 | |
| 2014-07-13 | Take away the use of the address of main as a source of entropy. Causes | beck | 6 | -6/+30 | |
| distractions to people testing and seeing link errors in some setups. This will come back in another form ok deraadt@ | |||||
| 2014-07-13 | KNF and some code cleaning. | jsing | 2 | -72/+92 | |
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |