openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Rename libressl to libtls to avoid confusion and to make it easier to	jsing	2014-10-31	1	-201/+0
\| \| \| \| \| \|	distinguish between LibreSSL (the project) and libressl (the library). Discussed with many.
*	allow disabling hostname and cert verification separately.	tedu	2014-10-03	1	-4/+11
\| \| \| \| \| \|	if you're careful, cert only verification can be useful. always enable both though, to avoid accidentally leaving one off. ok jsing
*	Allow "auto" to be specified as an ECDH curve name and make this the	jsing	2014-10-03	1	-5/+9
\| \| \| \| \| \|	default. This enables automatic handling of ephemeral EC keys. Discussed with reyk@ and tedu@
*	Add an option that allows the enabled SSL protocols to be explicitly	jsing	2014-09-29	1	-2/+10
\| \| \| \| \| \| \| \|	configured. Discussed with several. ok bcook@
*	When freeing the config, explicitly call ressl_config_clear_keys() rather	jsing	2014-09-29	1	-5/+6
\| \| \| \| \| \|	than rerolling our own key clearing code. ok tedu@
*	Provide a ressl config function that explicitly clears keys.	jsing	2014-09-28	1	-1/+8
\| \| \| \| \| \| \| \| \|	Now that ressl config takes copies of the keys passed to it, the keys need to be explicitly cleared. While this can be done by calling the appropriate functions with a NULL pointer, it is simpler and more obvious to call one function that does this for you. ok tedu@
*	revamp the config interface to own memory. easier to use correctly without	tedu	2014-09-28	1	-37/+84
\| \| \| \| \| \|	caller worrying about leaks or lifetimes. after feedback from jsing
*	Add the API function ressl_config_set_ecdhcurve(config, name) to set a	reyk	2014-08-27	1	-1/+14
\| \| \| \| \| \|	non-standard ECDH curve by name or to disable it by passing NULL. OK jsing@
*	Add support for loading the public/private key from memory, rather than	jsing	2014-08-06	1	-1/+15
\| \| \| \|	directly from file.
*	Add $OpenBSD$ tags.	jsing	2014-08-05	1	-0/+1
\|
*	Add configuration handling for certificate and key files.	jsing	2014-07-13	1	-6/+18
\|
*	Tabs, not spaces.	jsing	2014-07-13	1	-5/+5
\|
*	Rename various configuration handling functions.	jsing	2014-07-13	1	-6/+6
\| \| \| \|	Requested by and discussed with tedu@.
*	Use a single ressl.h header file.	jsing	2014-07-13	1	-2/+1
\| \| \| \|	Discussed with beck@ and tedu@.
*	Initial version of libressl - a library that provides a clean, simple,	jsing	2014-07-12	1	-0/+88
	consistent and secure-by-default API for SSL clients (and soon servers). This is a long way from complete and the interface will likely change substantially - committing now so that further work can happen in the tree. Initiated by tedu@ and inspired by discussions with tedu@, beck@ and other developers.