openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Bring back r1.3, ok beck	tb	2021-10-28	1	-3/+47
\| \| \| \| \| \| \| \| \| \| \|	Original commit message from beck: Validate Subject Alternate Names when they are being added to certificates. With this change we will reject adding SAN DNS, EMAIL, and IP addresses that are malformed at certificate creation time. ok jsing@ tb@
*	Revert version 1.3 - not allowing the creation of bogus certificates	beck	2021-10-27	1	-47/+3
\| \| \| \| \| \| \| \| \|	breaks the ruby regression tests that expect to make bogus certificates and see that they are rejected :( I am reverting this for now to make the regress tests pass, and will bring it back if we decide to patch the regress tests to remove the problem cases
*	Validate Subject Alternate Names when they are being added to certificates.	beck	2021-10-26	1	-3/+47
\| \| \| \| \| \| \|	With this change we will reject adding SAN DNS, EMAIL, and IP addresses that are malformed at certificate creation time. ok jsing@ tb@
*	Fix various read buffer overflow when printing ASN.1 strings (which are	tb	2021-08-24	1	-4/+7
\| \| \| \| \| \| \| \|	not necessarily NUL terminated). Same as schwarze's fix in t_x509a.c r1.9. From David Benjamin and Matt Caswell (part of the fixes in OpenSSL 1.1.1l) ok inoguchi
*	Collapse the x509v3 directory into x509.	jsing	2020-06-04	1	-0/+699
	This avoids the need to grep across directories to find functions and prepares for further rototilling and chainsawing. Discussed with tb@ (who also tested the release build)