index
:
openbsd
OPENBSD_2_0
OPENBSD_2_1
OPENBSD_2_2
OPENBSD_2_3
OPENBSD_2_4
OPENBSD_2_5
OPENBSD_2_6
OPENBSD_2_7
OPENBSD_2_8
OPENBSD_2_9
OPENBSD_3_0
OPENBSD_3_1
OPENBSD_3_2
OPENBSD_3_3
OPENBSD_3_4
OPENBSD_3_5
OPENBSD_3_6
OPENBSD_3_7
OPENBSD_3_8
OPENBSD_3_9
OPENBSD_4_0
OPENBSD_4_1
OPENBSD_4_2
OPENBSD_4_3
OPENBSD_4_4
OPENBSD_4_5
OPENBSD_4_6
OPENBSD_4_7
OPENBSD_4_8
OPENBSD_4_9
OPENBSD_5_0
OPENBSD_5_1
OPENBSD_5_2
OPENBSD_5_3
OPENBSD_5_4
OPENBSD_5_5
OPENBSD_5_6
OPENBSD_5_7
OPENBSD_5_8
OPENBSD_5_9
OPENBSD_6_0
OPENBSD_6_1
OPENBSD_6_2
OPENBSD_6_3
OPENBSD_6_4
OPENBSD_6_5
OPENBSD_6_6
OPENBSD_6_7
OPENBSD_6_8
OPENBSD_6_9
OPENBSD_7_0
OPENBSD_7_1
OPENBSD_7_2
OPENBSD_7_3
OPENBSD_7_4
OPENBSD_7_5
OPENBSD_7_6
OPENBSD_7_7
master
A mirror of https://github.com/libressl/openbsd.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
src
/
lib
/
libtls
/
tls.c
(
follow
)
Commit message (
Expand
)
Author
Age
Files
Lines
*
Add support for providing CRLs to libtls - once a CRL is provided we
jsing
2017-07-06
1
-1
/
+41
*
Use the tls_password_cb() callback with all PEM_read_bio_*() calls, so that
jsing
2017-06-22
1
-6
/
+6
*
Fix incorrect indentation.
jsing
2017-06-22
1
-2
/
+2
*
Plug a memory leak in tls_keypair_cert_hash(), introduced in r1.60.
jsing
2017-06-22
1
-1
/
+3
*
Remove dead code that has remained hiding since ressl.c r1.14!
jsing
2017-06-22
1
-4
/
+1
*
Return an error if tls_handshake() is called on a TLS context that has
jsing
2017-05-07
1
-1
/
+6
*
Perform reference counting for tls_config. This allows tls_config_free() to
jsing
2017-05-06
1
-3
/
+10
*
Add tls_peer_cert_chain_pem - To retreive the peer certificate and chain
beck
2017-04-05
1
-1
/
+4
*
Internal changes to allow for relayd engine privsep. sends the hash of the
beck
2017-04-05
1
-2
/
+65
*
Use a flag to track when we need to call SSL_shutdown(). This avoids an
jsing
2017-01-26
1
-2
/
+3
*
Disable session cache and tickets by default.
claudio
2017-01-22
1
-1
/
+5
*
whitespace
deraadt
2017-01-13
1
-3
/
+3
*
If certificate verification has been disabled, do not attempt to load a
jsing
2017-01-03
1
-5
/
+9
*
Revert previous - the original code was correct since X509_verify_cert()
jsing
2017-01-03
1
-5
/
+5
*
fix cert verify. a cert with an alt chain may verify but leave an error
tedu
2017-01-02
1
-5
/
+5
*
Hook up a certificate verify callback so that we can set user friendly
jsing
2016-12-26
1
-4
/
+29
*
rename ocsp_ctx to ocsp
beck
2016-11-05
1
-6
/
+6
*
Only set an error from libssl related code, if an error has not already
jsing
2016-11-03
1
-6
/
+41
*
Add OCSP client side support to libtls.
beck
2016-11-02
1
-1
/
+6
*
Add callback-based interface to libtls.
bcook
2016-09-04
1
-1
/
+5
*
Various clean up and reorganisation of the connection info handling code.
jsing
2016-08-22
1
-8
/
+5
*
Create contexts for server side SNI - these include the additional SSL_CTX
jsing
2016-08-22
1
-1
/
+27
*
Explicitly pass in an SSL_CTX * to the functions that operate on one,
jsing
2016-08-15
1
-23
/
+21
*
Load CA, certificate and key files into memory when the appropriate
jsing
2016-08-13
1
-27
/
+25
*
Add ALPN support to libtls.
jsing
2016-08-12
1
-1
/
+9
*
Revert previous since it adds new symbols.
jsing
2016-08-02
1
-9
/
+1
*
Add ALPN support to libtls.
jsing
2016-08-01
1
-1
/
+9
*
Revert previous - it introduces problems with a common privsep use case.
jsing
2016-07-07
1
-3
/
+20
*
Always load CA, key and certificate files at the time the configuration
jsing
2016-07-06
1
-20
/
+3
*
Correctly handle an EOF that occurs prior to the TLS handshake completing.
jsing
2016-07-06
1
-3
/
+6
*
Rename some of the internal error setting functions to more closely follow
jsing
2016-05-27
1
-8
/
+36
*
Factor our the keypair handling in libtls. This results in more readable
jsing
2016-04-28
1
-22
/
+23
*
Rework the error handling in libtls so that we can associate errors with
jsing
2016-04-28
1
-15
/
+44
*
Call BIO_sock_init() from tls_init() to ensure sockets are enabled on Windows.
bcook
2016-01-18
1
-1
/
+4
*
Allow us to get cipher and version even if there is not a peer certificate.
beck
2015-10-07
1
-5
/
+6
*
clean some ugly intendation warts
deraadt
2015-09-29
1
-2
/
+2
*
Provide tls_config_insecure_noverifytime() in order to be able to disable
jsing
2015-09-14
1
-1
/
+6
*
Expose EOF without close-notify via tls_close().
jsing
2015-09-14
1
-4
/
+11
*
Return an error if tls_handshake() or tls_close() is called on a context
jsing
2015-09-14
1
-2
/
+13
*
work around the stupid semantics of SSL_read and SSL_write to make sure
beck
2015-09-13
1
-3
/
+3
*
Don't leak conninfo - spotted by marko kreen.
beck
2015-09-13
1
-2
/
+3
*
Move connection info into it's own private structure allocated and filled in
beck
2015-09-12
1
-4
/
+13
*
Ensure that we clear the libssl error stack before we make a function call
jsing
2015-09-12
1
-3
/
+6
*
Store a reference to the peer certificate (if any) upon completion of the
jsing
2015-09-11
1
-1
/
+6
*
Call tls_set_errorx() instead of tls_set_error() in
jsing
2015-09-10
1
-5
/
+5
*
comment for errno clobbering, to indicate why we do this.
beck
2015-09-10
1
-1
/
+5
*
change TLS_READ_AGAIN to TLS_WANT_POLLIN and TLS_WRITE_AGAIN to TLS_WANT_POLLOUT
beck
2015-09-10
1
-4
/
+4
*
Change tls_read and tls_write semantics to return an ssize_t to better
beck
2015-09-10
1
-17
/
+11
*
Split tls_handshake() out from tls_accept/tls_connect. By doing this the
jsing
2015-09-10
1
-5
/
+30
*
Indent labels with a space so that diff -p is more friendly.
jsing
2015-09-09
1
-4
/
+4
[next]
