openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	This commit was manufactured by cvs2git to create tag 'OPENBSD_5_8_BASE'.OPENBSD_5_8_BASE	cvs2svn	2015-08-02	1	-194/+0
\|
*	Bring back the horrible API that is get_cipher_by_char/put_cipher_by_char.	jsing	2015-02-06	1	-1/+7
\| \| \| \| \| \| \| \|	This API was intended to be an internal only, however like many things in OpenSSL, it is exposed externally and parts of the software ecosystem are now using it since there is no real alternative within the public API. ok doug@, tedu@ and reluctantly miod@
*	Remove trailing whitespace.	jsing	2014-12-14	1	-7/+7
\|
*	Sort and group includes.	jsing	2014-11-16	1	-2/+4
\|
*	Use arc4random_buf() instead of RAND_bytes() or RAND_pseudo_bytes().	jsing	2014-10-18	1	-2/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	arc4random provides high quality pseudo-random numbers, hence there is no need to differentiate between "strong" and "pseudo". Furthermore, the arc4random_buf() function is guaranteed to succeed, which avoids the need to check for and handle failure, simplifying the code. It is worth noting that a number of the replaced RAND_bytes() and RAND_pseudo_bytes() calls were missing return value checks and these functions can fail for a number of reasons (at least in OpenSSL - thankfully they were converted to wrappers around arc4random_buf() some time ago in LibreSSL). ok beck@ deraadt@ miod@
*	Since we no longer need to support SSLv2-style cipher lists, start	jsing	2014-08-10	1	-7/+1
\| \| \| \| \| \| \| \| \| \|	unravelling the maze of function pointers and callbacks by directly calling ssl3_{get,put}_cipher_by_char() and removing the ssl_{get,put}_cipher_by_char macros. Prompted by similar changes in boringssl. ok guenther.
*	tags as requested by miod and tedu	deraadt	2014-06-12	1	-1/+1
\|
*	Make it substantially easier to identify protocol version requirements	jsing	2014-05-29	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	by adding an enc_flags field to the ssl3_enc_method, specifying four flags that are used with this field and providing macros for evaluating these conditions. Currently the version requirements are identified by continually checking the version number and other criteria. This change also adds separate SSL3_ENC_METHOD data for TLS v1.1 and v1.2, since they have different enc_flags from TLS v1. Based on changes in OpenSSL head. No objection from miod@
*	DeIMPLEMENT libssl. Expand the IMPLEMENT_* macros since it is far more	jsing	2014-05-24	1	-9/+114
\| \| \| \| \| \| \| \|	readable and one less layer of abstraction. Use C99 initialisers for clarity, grepability and to protect from future field reordering/removal. ok miod@ (tedu@ also thought it was a wonderful idea, beck@ also agreed, but ran away squealing since it reminded him of the VOP layer...)
*	More KNF.	jsing	2014-04-19	1	-6/+6
\|
*	More KNF and style consistency tweaks	guenther	2014-04-19	1	-6/+6
\|
*	First pass at applying KNF to the OpenSSL code, which almost makes it	jsing	2014-04-14	1	-13/+8
\| \| \| \| \|	readable. This pass is whitespace only and can readily be verified using tr and md5.
*	resolve conflicts	djm	2012-10-13	1	-4/+17
\|
*	resolve conflicts, fix local changes	djm	2010-10-01	1	-2/+2
\|
*	resolve conflicts	djm	2008-09-06	1	-22/+4
\|
*	merge 0.9.7b with local changes; crank majors for libssl/libcrypto	markus	2003-05-12	1	-5/+12
\|
*	merge openssl-0.9.7-beta3, tested on vax by miod@	markus	2002-09-10	1	-1/+1
\|
*	OpenSSL 0.9.4 merge	beck	1999-09-29	1	-9/+9
\|
*	Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD build	ryker	1998-10-05	1	-0/+91
	functionality for shared libs. Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library. Needs documentation and help from ports for easy upgrade to full functionality where legally possible.