| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | Add support for TLS 1.3 post handshake messages and key updating. | beck | 2019-11-26 | 3 | -20/+217 | |
| | | | | | | | tested against openssl 1.1's server. ok jsing@ tb@ | |||||
| * | gcc3, like clang and unlike our gcc4, doesn't support redirecting builtins | guenther | 2019-11-25 | 1 | -6/+12 | |
| | | | | | | | | like mem{set,cpy,move} or __stack_smash_handler using asm() renaming. So treat gcc3 like clang and mark such functions as protected instead. ok ayoma@ | |||||
| * | A touch of style(9) | tim | 2019-11-21 | 1 | -6/+6 | |
| | | | | | OK tb@ tedu@ | |||||
| * | Use explicit_bzero() to clear key material | tim | 2019-11-21 | 1 | -1/+2 | |
| | | | | | OK tb@ tedu@ | |||||
| * | Add accessors to change the buffer in a handshake message. | beck | 2019-11-20 | 3 | -3/+20 | |
| | | | | | | | Needed for doing TLS 1.3 Post Handshake Handshake messages. ok jsing@ | |||||
| * | Fix rsa key output format | inoguchi | 2019-11-20 | 1 | -5/+12 | |
| | | | | | | | This fixes openssl(1) rsa -text output format ok tb@ | |||||
| * | Add prototypes for the functions that update application secrets | beck | 2019-11-18 | 1 | -1/+3 | |
| | | | | | so that the regress tests will work for them | |||||
| * | Provide a clean interface for sending TLSv1.3 alerts. | jsing | 2019-11-18 | 2 | -5/+17 | |
| | | | | | ok beck@ | |||||
| * | Change tls13_record_layer_phh() to take a CBS as this avoids ownership | jsing | 2019-11-17 | 2 | -8/+6 | |
| | | | | | | | issues and makes call sites cleaner. ok beck@ | |||||
| * | Correct update of application traffic secrets to use an empty context | beck | 2019-11-17 | 1 | -3/+7 | |
| | | | | | | | rather than the hash of an empty context ok jsing@ | |||||
| * | Bring back the ssl_shutdown internal method pointer. | jsing | 2019-11-17 | 3 | -4/+21 | |
| | | | | | | | | For now ssl3_shutdown() is called in all cases, however TLSv1.3 will soon get its own version. ok beck@ | |||||
| * | Add a reference for the non-standard post-handshake handshake (PHH). | tb | 2019-11-17 | 1 | -2/+2 | |
| | | | | | ok beck, jsing | |||||
| * | Ensure that we are never operating in plaintext mode once the handshake | jsing | 2019-11-17 | 1 | -1/+7 | |
| | | | | | | | is complete, which should never occur. ok beck@ | |||||
| * | Provide framework for sending alerts and post-handshake handshake messages. | jsing | 2019-11-17 | 2 | -15/+174 | |
| | | | | | | | Discussed at length with beck@ ok beck@ tb@ | |||||
| * | indent with a tab instead of 8 spaces | tb | 2019-11-17 | 1 | -2/+2 | |
| | | ||||||
| * | Move the TLSv1.3 server message handling stubs. | jsing | 2019-11-17 | 2 | -125/+125 | |
| | | ||||||
| * | Add the initial framework for the TLSv1.3 server. | jsing | 2019-11-17 | 3 | -3/+84 | |
| | | | | | ok beck@ | |||||
| * | tls13_connect() should be static. | jsing | 2019-11-17 | 1 | -2/+2 | |
| | | ||||||
| * | Fix backoff to legacy when in client auth mode. | beck | 2019-11-17 | 1 | -2/+2 | |
| | | | | | ok jsing@ | |||||
| * | Drop back to the legacy tls method if we are doing client authenticaiton | beck | 2019-11-17 | 1 | -1/+7 | |
| | | | | | | | from a tls 1.3 connection, for now. ok jsing@ | |||||
| * | Separate the callbacks for recieved and completed post handshake messages | beck | 2019-11-17 | 3 | -10/+22 | |
| | | | | | | | from the record layer ok jsing@ | |||||
| * | Allow 1.3 ciphers in libtls. | beck | 2019-11-16 | 1 | -2/+2 | |
| | | | | | ok jsing@ | |||||
| * | Revert previous deduplication diff, I broke portable in a strange way. | beck | 2019-11-16 | 1 | -47/+58 | |
| | | | | | | I'll figure it out a bit later. Found and diagnosed by inoguchi@ | |||||
| * | Allow portable to override the default CA bundle location | beck | 2019-11-16 | 2 | -3/+7 | |
| | | | | | ok kinichiro@ jsing@ | |||||
| * | Deduplicate some extension processing code. | beck | 2019-11-15 | 1 | -58/+47 | |
| | | | | | ok tb@ inoguchi@ | |||||
| * | Add missing cross-reference to NOTES section. | millert | 2019-11-14 | 1 | -3/+3 | |
| | | | | | OK kn@ tb@ | |||||
| * | Allow ip addresses as argument to SSL_set1_host() but be careful to not | otto | 2019-11-04 | 1 | -2/+14 | |
| | | | | | poison the context. ok and help jsing@ tb@ | |||||
| * | Reshuffle RSA_PSS_PARAMS and RSA_OAEP_PARAMS to avoid duplicate typedef. | jsing | 2019-11-04 | 1 | -21/+19 | |
| | | | | | | | Issue spotted by bcook@ ok bcook@ inoguchi@ | |||||
| * | Sort standard_methods by pkey_id. | inoguchi | 2019-11-02 | 1 | -4/+4 | |
| | | | | | ok jsing@ | |||||
| * | CMS didn't make the 6.6 release: adjust the text in the HISTORY sections | schwarze | 2019-11-02 | 23 | -69/+69 | |
| | | ||||||
| * | .Xr CMS_ContentInfo_new 3 | schwarze | 2019-11-02 | 1 | -2/+3 | |
| | | ||||||
| * | .Xr BIO_new_CMS 3 | schwarze | 2019-11-02 | 1 | -2/+3 | |
| | | ||||||
| * | document PEM_read_CMS(3), PEM_read_bio_CMS(3), PEM_write_CMS(3), and | schwarze | 2019-11-02 | 1 | -3/+46 | |
| | | | | | PEM_write_bio_CMS(3) which jsing@ just enabled in Symbols.list rev. 1.91 | |||||
| * | In Symbols.list rev. 1.91, jsing enabled many CMS functions. | schwarze | 2019-11-02 | 1 | -1/+24 | |
| | | | | | Install the new manual pages documenting the majority of them. | |||||
| * | Bring back some icky buffer allocation code so that pkey_rsa_print() | jsing | 2019-11-02 | 1 | -9/+41 | |
| | | | | | | | works again with the horrific API that is ASN1_bn_print(). Issue spotted by inoguchi@ | |||||
| * | Bump libcrypto, libssl and libtls minors due to symbol additions. | jsing | 2019-11-02 | 3 | -3/+3 | |
| | | ||||||
| * | Provide RSA_PKCS1_OpenSSL(). | jsing | 2019-11-02 | 3 | -3/+10 | |
| | | | | | Prompted by inoguchi@ | |||||
| * | Make RSA_padding_{add,check}_PKCS1_OAEP_mgf1() public. | jsing | 2019-11-02 | 3 | -9/+10 | |
| | | ||||||
| * | Make RSA_OAEP_PARAMs public. | jsing | 2019-11-02 | 3 | -17/+22 | |
| | | ||||||
| * | Document tls_conn_cipher_strength(). | jsing | 2019-11-02 | 1 | -2/+14 | |
| | | | | | ok schwarze@ | |||||
| * | Enable CMS in LibreSSL. | jsing | 2019-11-02 | 3 | -2/+135 | |
| | | | | | ok bcook@ deraadt@ inoguchi@ job@ tb@ | |||||
| * | Provide tls_conn_cipher_strength(). | jsing | 2019-11-02 | 4 | -3/+15 | |
| | | | | | | | | | | This returns the strength in bits of the symmetric cipher used for the connection. Diff from gilles@ ok tb@ | |||||
| * | In evp/pmeth_lib.c rev. 1.16, jsing@ enabled EVP_PKEY_RSA_PSS. | schwarze | 2019-11-01 | 1 | -3/+5 | |
| | | | | | Document it. | |||||
| * | In rsa.h rev. 1.45, jsing@ provided | schwarze | 2019-11-01 | 1 | -8/+16 | |
| | | | | | | | the three macro constants RSA_PSS_SALTLEN_*; document them. The wording is a combination of our existing text and the wording in the OpenSSL 1.1.1 branch, which is still under a free license. | |||||
| * | Add DSA CMS support. | jsing | 2019-11-01 | 1 | -1/+25 | |
| | | | | | | | From OpenSSL 1.1.1d. ok tb@ | |||||
| * | Add RSA CMS support. | jsing | 2019-11-01 | 3 | -5/+262 | |
| | | | | | | | From OpenSSL 1.1.1d. ok tb@ | |||||
| * | Provide NID for pSpecified. | jsing | 2019-11-01 | 2 | -0/+2 | |
| | | | | | ok tb@ | |||||
| * | Wire up PKEY methods for RSA-PSS. | jsing | 2019-11-01 | 1 | -2/+6 | |
| | | | | | ok tb@ | |||||
| * | Wire up ASN.1 methods for RSA-PSS. | jsing | 2019-11-01 | 1 | -1/+5 | |
| | | | | | ok tb@ | |||||
| * | In rsa.h rev. 1.45, jsing@ provided the three | schwarze | 2019-11-01 | 2 | -6/+64 | |
| | | | | | | | macros EVP_PKEY_CTX_set_rsa_pss_keygen_*(3); document them. Text mostly taken from the OpenSSL 1.1.1 branch, which is still under a free license, but rearranged to fit the structure of our manual pages. | |||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |