openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Remove X509V3_EXT extensibility API	tb	2024-03-02	1	-35/+1
\| \| \| \| \| \| \| \| \| \|	You used to be able to define your own X.509 extension handlers. Great. Even greater: the verifier would ignore any custom extensions. So this was only ever useful for serialization and deserialization. In other words, almost entirely pointless. The API was also unused except for a hack in kore-acme, which was fixed recently. ok jsing
*	This table no longer needs to be sorted	tb	2024-01-25	1	-5/+1
\|
*	Remove the custom X509v3 extensions stack	tb	2024-01-25	1	-105/+42
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This is essentially unused. The only consumer, www/kore,-acme is in the process of being fixed. It is also incomplete: in particular, the verifier doesn't learn about extensions added to the list, making the entire exercise rather pointless. So let's ditch that crap. This was the last consumer of the horror that is OBJ_bsearch_(). The even worse OBJ_bsearch_ex_() is still being "used" by M2Crypto... This prepares the removal of X509V3_EXT_{add{,_list,_alias},cleanup}(). and removes another piece of thread-unsafe global state. ok jsing
*	Remove v3_sxnet from the standard extensions	tb	2023-04-25	1	-3/+2
\|
*	Add missing const qualifiers to the v3_* externs	tb	2023-04-17	1	-11/+11
\| \| \| \|	ok jsing
*	Shuffle ext_cmp() and ext_list_free() up a bit	tb	2023-04-16	1	-18/+14
\|
*	Remove unnecessary prototypes in the middle of the code	tb	2023-04-16	1	-5/+1
\| \| \| \|	In addition, ext_cmp() was already prototyped earlier...
*	Use more usual version of inlined nitems(). No binary change.	tb	2023-04-16	1	-2/+2
\|
*	Fix comment formatting and grammar, drop usless and outdated comment	tb	2023-04-16	1	-7/+3
\|
*	Merge ext_dat.h back into x509_lib.c	tb	2023-04-16	1	-2/+77
\| \| \| \| \| \|	There is no point in having this in a separate internal header. discussed with jsing
*	libressl _namespace.h: adjust _ALIAS() to require a semicolon	tb	2023-02-16	1	-11/+11
\| \| \| \| \| \| \| \| \| \|	LCRYPTO_ALIAS() and LSSL_ALIAS() contained a trailing semicolon. This does not conform to style(9), breaks editors and ctags and (most importantly) my workflow. Fix this by neutering them with asm("") so that -Wpedantic doesn't complain. There's precedent in libc's namespace.h fix suggested by & ok jsing
*	Make internal header file names consistent	tb	2022-11-26	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Libcrypto currently has a mess of _lcl.h, _locl.h, and _local.h names used for internal headers. Move all these headers we inherited from OpenSSL to _local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook
*	Hide public symbols in libcrypto/x509 .c files	beck	2022-11-14	1	-1/+11
\| \| \| \|	ok tb@
*	Plug leak in X509V3_add1_i2d()	tb	2022-07-24	1	-2/+3
\| \| \| \| \| \| \| \|	Do not leak the extension that was deleted from the stack. via OpenSSL c3efe5c9. ok jsing
*	Move the now internal X.509-related structs into x509_lcl.h.	tb	2021-11-01	1	-1/+2
\| \| \| \| \| \| \| \|	Garbage collect the now unused LIBRESSL_CRYPTO_INTERNAL and LIBRESSL_OPAQUE_X509. Include "x509_lcl.h" where needed and fix a couple of unnecessary reacharounds. ok jsing
*	Fix potential leak when tmpext fails to be added to	beck	2020-09-14	1	-2/+6
\| \| \| \| \| \| \|	the extension list. found by llvm static analyzer ok tb@
*	Collapse the x509v3 directory into x509.	jsing	2020-06-04	1	-0/+358
	This avoids the need to grep across directories to find functions and prepares for further rototilling and chainsawing. Discussed with tb@ (who also tested the release build)