openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Remove GOST and STREEBOG support from libssl.	beck	2024-02-03	1	-18/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This version of GOST is old and not anywhere close to compliant with modern GOST standards. It is also very intrusive in libssl and makes a mess everywhere. Efforts to entice a suitably minded anyone to care about it have been unsuccessful. At this point it is probably best to remove this, and if someone ever showed up who truly needed a working version, it should be a clean implementation from scratch, and have it use something closer to the typical API in libcrypto so it would integrate less painfully here. This removes it from libssl in preparation for it's removal from libcrypto with a future major bump ok tb@
*	Neuter the SSL_set_debug(3) API	tb	2023-12-29	1	-4/+1
\| \| \| \| \| \| \| \| \| \| \|	The TLSv1.3 stack didn't support this in the first place, and in the legacy stack it only added some dubious BIO_flush(3) calls. The sleep call between SSL_read(3) and SSL_write(3) advertised in the comment next to the flag has been a sleep call in the s_server since time immemorial, nota bene between calls to BIO_gets(3). Anyway. This can all go and what remains will go with the next major bump. ok jsing
*	Convert ssl3_cipher_by_id() to bsearch()	tb	2023-11-29	1	-3/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This was previously the only user of OBJ_bsearch_ssl_cipher_id(), which in turn is the one remaining user of OBJ_bsearch_() outside of libcrypto. OBJ_bsearch_() is OpenSSL's idiosyncratic reimplementation of ANSI C89's bsearch(). Since this used to be hidden behind macro insanity, the result was three inscrutable layers of comparison functions. It is much simpler and cleaner to use the standard API. Move all the code to s3_lib.c, since it's ony used there. In a few further diffs, OBJ_bsearch_() will be removed from libcrypto. Unfortunately, we'll need to keep OBJ_bsearch_ex(), because it is exposed via sk_find_ex(), which is exposed by M2Crypto... ok jsing
*	Use a long for id in ssl3_get_cipher_by_id()	tb	2023-11-29	1	-2/+2
\| \| \| \| \| \| \| \| \|	While the cipher id is effectively a 32-bit value, someone decided that it should be represented by a long in various internal structs, whose mameber is passed as id. So use a long because of this and also to make an upcoming diff simpler. ok jsing
*	Move ssl_cipher_id_cmp() next to its only caller	tb	2023-11-25	1	-2/+1
\| \| \| \| \| \|	It was left alone and forlorn in the middle of other nonsense. Since there is only one caller (the OBJ_bsearch_ stupidity), it can be static and there is no need to prototype it in ssl_local.h.
*	Unifdef OPENSSL_NO_ENGINE in libssl	tb	2023-11-19	1	-7/+1
\| \| \| \| \| \|	As usual, a few manual fixes to avoid duplicate lines. ok jsing
*	unifdef the LIBRESSL_HAS_TLS1_3_[CLIENT\|SERVER] goo	beck	2023-07-06	1	-13/+1
\| \| \| \| \|	And remove the tendrils. This was useful for transition but we are now well past this.
*	Move verified_chain from SSL to SSL_HANDSHAKE	tb	2023-05-26	1	-2/+4
\| \| \| \| \| \| \| \|	This is a better version of the fix for the missing pointer invalidation but a bit larger, so errata got the minimal fix. tested by jcs ok jsing
*	Unbreak tree: file missed in last commit	tb	2023-04-25	1	-1/+3
\| \| \| \|	Reported by anton
*	Randomize the order of TLS extensions	tb	2023-04-23	1	-1/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	On creation of an SSL using SSL_new(), randomize the order in which the extensions will be sent. There are several constraints: the PSK extension must always come last. The order cannot be randomized on a per-message basis as the strict interpretation of the standard chosen in the CH hashing doesn't allow changing the order between first and second ClientHello. Another constraint is that the current code calls callbacks directly on parsing an extension, which means that the order callbacks are called depends on the order in which the peer sent the extensions. This results in breaking apache-httpd setups using virtual hosts with full ranomization because virtual hosts don't work if the SNI is unknown at the time the ALPN callback is called. So for the time being, we ensure that SNI always precedes ALPN to avoid issues until this issue is fixed. This is based on an idea by David Benjamin https://boringssl-review.googlesource.com/c/boringssl/+/48045 Input & ok jsing
*	spelling fixes; from paul tagliamonte	jmc	2022-12-26	1	-2/+2
\| \| \| \|	ok tb
*	Make header guards of internal headers consistent	tb	2022-11-26	1	-2/+2
\| \| \| \| \|	Not all of them, only those that didn't leak into a public header... Yes.
*	Make internal header file names consistent	tb	2022-11-26	1	-0/+1538
	Libcrypto currently has a mess of _lcl.h, _locl.h, and _local.h names used for internal headers. Move all these headers we inherited from OpenSSL to _local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook