openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Provide a ssl3_get_cipher_by_id() function that allows ciphers to be looked	jsing	2014-08-11	1	-13/+2
\| \| \| \| \| \| \| \|	up by their ID. For one, this avoids an ugly mess in ssl_sess.c, where the cipher value is manually written into a buffer, just so the cipher can be located using ssl3_get_cipher_by_char(). ok bcook@ miod@
*	Since we no longer need to support SSLv2-style cipher lists, start	jsing	2014-08-10	1	-3/+3
\| \| \| \| \| \| \| \| \| \|	unravelling the maze of function pointers and callbacks by directly calling ssl3_{get,put}_cipher_by_char() and removing the ssl_{get,put}_cipher_by_char macros. Prompted by similar changes in boringssl. ok guenther.
*	The bell tolls for BUF_strdup - Start the migration to using	beck	2014-07-13	1	-2/+2
\| \| \| \| \| \|	intrinsics. This is the easy ones, a few left to check one at a time. ok miod@ deraadt@
*	Apply a large dose of KNF.	jsing	2014-07-12	1	-126/+202
\|
*	Remove the PSK code. We don't need to drag around this	beck	2014-07-11	1	-9/+1
\| \| \| \| \|	baggage. ok miod@ jsing@
*	decompress libssl. ok beck jsing	tedu	2014-07-10	1	-3/+2
\|
*	always compare memcmp against 0, for clarity.	tedu	2014-06-21	1	-2/+2
\|
*	convert CRYPTO_memcmp to timingsafe_memcmp based on current policy favoring	tedu	2014-06-19	1	-2/+2
\| \| \| \| \| \|	libc interfaces over libcrypto interfaces. for now we also prefer timingsafe_memcmp over timingsafe_bcmp, even when the latter is acceptable. ok beck deraadt matthew miod
*	tags as requested by miod and tedu	deraadt	2014-06-12	1	-1/+1
\|
*	without overthinking it, replace a few memcmp calls with CRYPTO_memcmp	tedu	2014-06-04	1	-1/+1
\| \| \| \|	where it is feasible to do so. better safe than sorry.
*	ECDH and ECDSA will not work overly well if there is no EC, so unifdef	jsing	2014-05-31	1	-6/+0
\| \| \| \| \| \|	OPENSSL_NO_EC. ok tedu@
*	TLS would not be entirely functional without extensions, so unifdef	jsing	2014-05-31	1	-16/+0
\| \| \| \| \| \|	OPENSSL_NO_TLSEXT. ok tedu@
*	There is no point in checking if a pointer is non-NULL before calling free,	jsing	2014-05-28	1	-21/+9
\| \| \| \| \| \| \| \|	since free already does this for us. Also remove some pointless NULL assignments, where the result from malloc(3) is immediately assigned to the same variable. ok miod@
*	Remove SRP and Kerberos support from libssl. These are complex protocols	tedu	2014-05-05	1	-16/+0
\| \| \| \| \|	all on their own and we can't effectively maintain them without using them, which we don't. If the need arises, the code can be resurrected.
*	whitespace	tedu	2014-04-23	1	-2/+2
\|
*	more malloc/realloc/calloc cleanups; ok beck kettenis	deraadt	2014-04-21	1	-3/+2
\|
*	Chop off more SSLv2 tentacles and start fixing and noting y2038 issues.	guenther	2014-04-20	1	-4/+6
\| \| \| \| \| \| \|	APIs that pass times as longs will have to change at some point... Bump major on both libcrypto and libssl. ok tedu@
*	More KNF and style consistency tweaks	guenther	2014-04-19	1	-12/+12
\|
*	kill REF_PRINT/REF_CHECK debugging framework noone would use	deraadt	2014-04-17	1	-9/+0
\| \| \| \|	ok miod
*	Change library to use intrinsic memory allocation functions instead of	beck	2014-04-17	1	-16/+16
\| \| \| \| \| \| \| \|	OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free
*	add back SRP. i was being too greedy.	tedu	2014-04-16	1	-0/+7
\|
*	disentangle SRP code from TLS	tedu	2014-04-16	1	-7/+0
\|
*	Kill the bogus "send an SSLv3/TLS hello in SSLv2 format" crap from	guenther	2014-04-16	1	-27/+13
\| \| \| \| \| \| \| \| \|	the SSLv23_* client code. The server continues to accept it. It also kills the bits for SSL2 SESSIONs; even when the server gets an SSLv2-style compat handshake, the session that it creates has the correct version internally. ok tedu@ beck@
*	First pass at applying KNF to the OpenSSL code, which almost makes it	jsing	2014-04-14	1	-555/+539
\| \| \| \| \|	readable. This pass is whitespace only and can readily be verified using tr and md5.
*	resolve conflicts	djm	2012-10-13	1	-48/+112
\|
*	resolve conflicts, fix local changes	djm	2010-10-01	1	-32/+221
\|
*	update to openssl-0.9.8i; tested by several, especially krw@	djm	2009-01-05	1	-0/+22
\|
*	resolve conflicts	djm	2008-09-06	1	-30/+159
\|
*	resolve conflicts	djm	2006-06-27	1	-2/+2
\|
*	resolve conflicts	djm	2005-04-29	1	-6/+7
\|
*	merge 0.9.7c; minor bugsfixes;	markus	2003-11-11	1	-2/+2
\| \| \| \| \|	API addition: ERR_release_err_state_table [make includes before you build libssl/libcrypto]
*	merge 0.9.7b with local changes; crank majors for libssl/libcrypto	markus	2003-05-12	1	-7/+10
\|
*	merge with openssl-0.9.7-stable-SNAP-20020911,	markus	2002-09-14	1	-1/+6
\| \| \| \| \|	new minor for libcrypto (_X509_REQ_print_ex) tested by miod@, pb@
*	apply patches from OpenSSL Security Advisory [30 July 2002],	markus	2002-07-30	1	-0/+1
\| \| \| \|	http://marc.theaimsgroup.com/?l=openssl-dev&m=102802395104110&w=2
*	OpenSSL 0.9.7 stable 2002 05 08 merge	beck	2002-05-15	1	-29/+93
\|
*	openssl-engine-0.9.6a merge	beck	2001-06-22	1	-0/+1
\|
*	openssl-engine-0.9.6 merge	beck	2000-12-15	1	-3/+3
\|
*	OpenSSL 0.9.5 merge	beck	2000-03-19	1	-23/+66
\| \| \| \| \| \|	warning this bumps shared lib minors for libssl and libcrypto from 2.1 to 2.2 if you are using the ssl26 packages for ssh and other things to work you will need to get new ones (see ~beck/libsslsnap/<arch>) on cvs or ~beck/src-patent.tar.gz on cvs
*	OpenSSL 0.9.4 merge	beck	1999-09-29	1	-101/+156
\|
*	Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build	ryker	1998-10-05	1	-0/+582
	functionality for shared libs. Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library. Needs documentation and help from ports for easy upgrade to full functionality where legally possible.